$ rpki-client -vvf rpki.apnic.net/member_repository/A9165BD7/8A62C82AC95811ED918E8C34C4F9AE02/a0lXZirUwhvUIqh9tBuLz8nW3Y4.mft File: a0lXZirUwhvUIqh9tBuLz8nW3Y4.mft (raw, json) Hash identifier: uq5rNmjdDpf7b0c3BLj6fBg0n8R+zyNlskfCEuSqwSI= Subject key identifier: 45:A9:19:79:72:31:B2:84:42:C3:5F:83:1F:09:43:23:1D:63:59:F5 Authority key identifier: 6B:49:57:66:2A:D4:C2:1B:D4:22:A8:7D:B4:1B:8B:CF:C9:D6:DD:8E Certificate issuer: /CN=A9165BD7/serialNumber=6B4957662AD4C21BD422A87DB41B8BCFC9D6DD8E Certificate serial: 0199 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/a0lXZirUwhvUIqh9tBuLz8nW3Y4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9165BD7/8A62C82AC95811ED918E8C34C4F9AE02/a0lXZirUwhvUIqh9tBuLz8nW3Y4.mft Manifest number: 0195 Signing time: Thu 15 May 2025 02:54:41 +0000 Manifest this update: Thu 15 May 2025 02:54:40 +0000 Manifest next update: Thu 22 May 2025 02:54:40 +0000 Files and hashes: 1: a0lXZirUwhvUIqh9tBuLz8nW3Y4.crl (hash: ac3kgTCOG2H5hwHHVq0kvy9WfT2pALwfzv9/nMIC6oA=) 2: A92EC53AC95B11ED9ABE6935C4F9AE02.roa (hash: gnoiGXKkrmhYTwfXU41IB03BpkGU00B0FHz74SrCkdc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9165BD7/8A62C82AC95811ED918E8C34C4F9AE02/a0lXZirUwhvUIqh9tBuLz8nW3Y4.crl rsync://rpki.apnic.net/member_repository/A9165BD7/8A62C82AC95811ED918E8C34C4F9AE02/a0lXZirUwhvUIqh9tBuLz8nW3Y4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/a0lXZirUwhvUIqh9tBuLz8nW3Y4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 22 May 2025 02:54:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 409 (0x199) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9165BD7, serialNumber=6B4957662AD4C21BD422A87DB41B8BCFC9D6DD8E Validity Not Before: May 15 02:54:40 2025 GMT Not After : May 22 02:54:40 2025 GMT Subject: CN=68255770-1519 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f0:79:43:a3:5d:df:bc:0f:0e:20:03:23:8f:c9: be:54:b8:a0:d8:86:d2:04:79:e1:51:4f:0a:92:17: fb:07:36:c7:06:51:65:0a:1d:ad:28:73:80:67:cf: 5f:2b:f7:15:83:ee:25:ce:d6:53:fd:86:fe:80:88: 21:ce:0b:67:8f:4c:b5:ce:d8:38:d5:b4:b9:af:ef: 4b:8f:7d:9e:ec:f6:d0:b1:e0:85:2f:8b:eb:9e:64: 66:9d:61:6c:27:eb:d1:b4:40:c0:74:a6:c0:05:48: 98:d9:53:fd:ee:3e:0b:1b:58:42:c2:3a:13:15:c4: c8:29:5f:d7:3a:f0:b7:aa:4c:5c:ed:ac:4c:84:0f: f0:63:ea:ab:16:45:18:9d:91:0f:df:77:30:1f:2a: 8c:f8:6d:cd:c9:61:82:51:58:70:b9:69:b3:1c:ec: 87:29:1f:a5:b1:f0:e9:a3:04:9c:de:db:1f:2d:45: 33:4e:a8:8a:b8:98:a9:ac:47:32:25:3b:08:ba:52: 89:d2:92:43:4d:52:8f:59:1e:80:61:a4:81:f2:9c: 52:11:5d:1c:25:d8:d6:57:29:fa:66:ae:70:9d:48: 2d:11:be:c1:77:c0:24:39:73:a1:db:43:b6:8b:a3: f2:bb:eb:eb:35:4b:4e:8c:4c:f9:c1:b4:80:d8:9d: 4d:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 45:A9:19:79:72:31:B2:84:42:C3:5F:83:1F:09:43:23:1D:63:59:F5 X509v3 Authority Key Identifier: keyid:6B:49:57:66:2A:D4:C2:1B:D4:22:A8:7D:B4:1B:8B:CF:C9:D6:DD:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9165BD7/8A62C82AC95811ED918E8C34C4F9AE02/a0lXZirUwhvUIqh9tBuLz8nW3Y4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/a0lXZirUwhvUIqh9tBuLz8nW3Y4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9165BD7/8A62C82AC95811ED918E8C34C4F9AE02/a0lXZirUwhvUIqh9tBuLz8nW3Y4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 60:2d:98:31:84:c3:bd:1a:4c:d3:ed:52:1c:cb:fa:9e:c7:e4: 00:b8:1c:b8:ea:c0:ee:63:fc:e9:0f:f5:26:72:b3:bc:2c:21: 6f:35:1f:ad:37:1b:c9:5c:05:48:00:46:f1:9b:53:ee:95:be: 44:1c:62:e5:39:55:ef:8f:df:6b:fe:3c:fa:93:ac:41:96:98: 70:fa:70:e1:9b:ad:b5:e9:f6:4a:dd:a0:1c:68:88:f7:e5:1a: 66:68:40:75:5a:44:db:24:ab:cc:c8:b1:e8:ab:48:0c:66:e3: 2e:76:ad:84:c6:3f:22:1a:fc:93:64:8a:f6:e1:a8:39:bf:2b: aa:16:a4:c0:8e:ff:f0:84:d5:54:67:9d:a8:53:67:56:5d:93: 7d:36:b6:d6:f9:6b:31:87:4f:a7:bc:d0:1c:4a:50:a2:e1:8a: 1e:2b:3b:9d:c5:02:ed:eb:38:14:27:8c:98:b6:87:a0:21:34: ac:94:8f:31:43:52:9b:b5:e4:cf:68:16:94:0c:29:2b:fb:20: e7:08:d1:bd:94:eb:73:eb:19:55:f1:c1:48:f2:12:99:aa:b7: 65:1c:9a:2a:14:92:24:31:d3:74:fb:b0:21:fa:49:bd:df:42: ff:e8:74:82:b5:d0:21:e9:20:30:52:cc:86:a2:cd:74:2c:72: 4e:b4:5e:b3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAZkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjVCRDcxMTAvBgNVBAUTKDZCNDk1NzY2MkFENEMyMUJENDIyQTg3REI0MUI4QkNG QzlENkREOEUwHhcNMjUwNTE1MDI1NDQwWhcNMjUwNTIyMDI1NDQwWjAYMRYwFAYD VQQDEw02ODI1NTc3MC0xNTE5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8HlDo13fvA8OIAMjj8m+VLig2IbSBHnhUU8Kkhf7BzbHBlFlCh2tKHOAZ89f K/cVg+4lztZT/Yb+gIghzgtnj0y1ztg41bS5r+9Lj32e7PbQseCFL4vrnmRmnWFs J+vRtEDAdKbABUiY2VP97j4LG1hCwjoTFcTIKV/XOvC3qkxc7axMhA/wY+qrFkUY nZEP33cwHyqM+G3NyWGCUVhwuWmzHOyHKR+lsfDpowSc3tsfLUUzTqiKuJiprEcy JTsIulKJ0pJDTVKPWR6AYaSB8pxSEV0cJdjWVyn6Zq5wnUgtEb7Bd8AkOXOh20O2 i6Pyu+vrNUtOjEz5wbSA2J1N3wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEWpGXly MbKEQsNfgx8JQyMdY1n1MB8GA1UdIwQYMBaAFGtJV2Yq1MIb1CKofbQbi8/J1t2O MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NUJENy84QTYyQzgyQUM5 NTgxMUVEOTE4RThDMzRDNEY5QUUwMi9hMGxYWmlyVXdodlVJcWg5dEJ1THo4blcz WTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2EwbFhaaXJVd2h2VUlxaDl0QnVMejhuVzNZNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 NUJENy84QTYyQzgyQUM5NTgxMUVEOTE4RThDMzRDNEY5QUUwMi9hMGxYWmlyVXdo dlVJcWg5dEJ1THo4blczWTQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBgLZgxhMO9GkzT7VIcy/qex+QAuBy46sDuY/zpD/UmcrO8LCFvNR+t NxvJXAVIAEbxm1Pulb5EHGLlOVXvj99r/jz6k6xBlphw+nDhm6216fZK3aAcaIj3 5RpmaEB1WkTbJKvMyLHoq0gMZuMudq2Exj8iGvyTZIr24ag5vyuqFqTAjv/whNVU Z52oU2dWXZN9NrbW+Wsxh0+nvNAcSlCi4YoeKzudxQLt6zgUJ4yYtoegITSslI8x Q1KbteTPaBaUDCkr+yDnCNG9lOtz6xlV8cFI8hKZqrdlHJoqFJIkMdN0+7Ah+km9 30L/6HSCtdAh6SAwUsyGos10LHJOtF6z -----END CERTIFICATE-----Generated at Thu May 15 19:27:54 2025 by rpki-client