$ rpki-client -vvf rpki.apnic.net/member_repository/A9167FF5/27204392C17811EDAF54A95FC4F9AE02/v68jY3V3Ke4FqyG3HSBatBjhuDQ.mft File: v68jY3V3Ke4FqyG3HSBatBjhuDQ.mft (raw, json) Hash identifier: 8f31sjNbdJtc1C7kYdktqB50V1LwWF1DUEhxKujStgs= Subject key identifier: 29:2A:71:88:72:52:8A:39:E9:D3:DB:22:39:4C:64:91:39:7F:7A:B2 Authority key identifier: BF:AF:23:63:75:77:29:EE:05:AB:21:B7:1D:20:5A:B4:18:E1:B8:34 Certificate issuer: /CN=A9167FF5/serialNumber=BFAF2363757729EE05AB21B71D205AB418E1B834 Certificate serial: 0198 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/v68jY3V3Ke4FqyG3HSBatBjhuDQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9167FF5/27204392C17811EDAF54A95FC4F9AE02/v68jY3V3Ke4FqyG3HSBatBjhuDQ.mft Manifest number: 0195 Signing time: Fri 09 May 2025 02:36:34 +0000 Manifest this update: Fri 09 May 2025 02:36:33 +0000 Manifest next update: Fri 16 May 2025 02:36:33 +0000 Files and hashes: 1: v68jY3V3Ke4FqyG3HSBatBjhuDQ.crl (hash: 9BH3Q2zPS5HfhIHTKRa4IWfSCV1L2TKnz5b6xi6vPN8=) 2: DCEA0362C17C11ED92AD7D85C4F9AE02.roa (hash: iJgF3xLl/F7BTTiuttHhI1X4PDcUoYj6A2s1rvrmJk0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9167FF5/27204392C17811EDAF54A95FC4F9AE02/v68jY3V3Ke4FqyG3HSBatBjhuDQ.crl rsync://rpki.apnic.net/member_repository/A9167FF5/27204392C17811EDAF54A95FC4F9AE02/v68jY3V3Ke4FqyG3HSBatBjhuDQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/v68jY3V3Ke4FqyG3HSBatBjhuDQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 16 May 2025 02:36:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 408 (0x198) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9167FF5, serialNumber=BFAF2363757729EE05AB21B71D205AB418E1B834 Validity Not Before: May 9 02:36:33 2025 GMT Not After : May 16 02:36:33 2025 GMT Subject: CN=681d6a31-cfca Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:c9:3f:d8:8c:db:5d:67:6d:cd:cb:79:e3:80: 4a:7f:2f:0c:85:50:bb:16:77:e8:8d:21:84:db:fd: 04:a9:b7:af:a3:f8:09:01:58:22:30:b8:50:00:e3: 71:ae:7e:72:7b:fb:09:b1:0d:d1:23:66:33:5b:0b: bd:2c:63:bd:94:b0:f8:dc:3d:10:83:32:1c:2f:79: 0f:b2:d5:49:ff:10:c6:37:fd:f6:c3:02:4d:9b:c8: 23:d7:a9:98:c6:7d:9b:57:64:05:f9:bd:93:57:5b: d6:3c:22:95:2a:9c:7d:7f:4d:15:d6:36:b9:d5:0b: a3:49:41:2d:4c:4a:2b:2b:e3:f1:09:ff:3c:59:93: e7:6d:53:dc:88:d4:44:c8:97:5a:57:7d:c6:5a:c3: 86:e1:ae:e7:ae:74:00:1a:4d:74:1c:9e:f2:0f:09: c6:1f:c2:6a:61:41:3e:6e:e1:82:26:bf:2c:96:28: 32:83:36:c6:96:37:54:85:c5:16:bd:23:66:24:b9: c8:70:0d:72:83:d6:f2:e3:45:92:0b:1b:a5:14:95: fc:8a:31:87:60:14:f4:ef:47:ea:a7:23:af:9d:07: 64:4f:71:09:86:65:44:6d:9d:01:9d:2c:f7:a7:90: d2:96:a2:d9:59:54:b7:17:10:29:62:f6:e6:92:17: 33:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 29:2A:71:88:72:52:8A:39:E9:D3:DB:22:39:4C:64:91:39:7F:7A:B2 X509v3 Authority Key Identifier: keyid:BF:AF:23:63:75:77:29:EE:05:AB:21:B7:1D:20:5A:B4:18:E1:B8:34 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9167FF5/27204392C17811EDAF54A95FC4F9AE02/v68jY3V3Ke4FqyG3HSBatBjhuDQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/v68jY3V3Ke4FqyG3HSBatBjhuDQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9167FF5/27204392C17811EDAF54A95FC4F9AE02/v68jY3V3Ke4FqyG3HSBatBjhuDQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4c:2c:91:49:67:13:60:95:e0:cb:a8:55:4b:12:2c:2a:71:5b: a7:c7:b9:01:d7:4a:58:6f:58:b8:cb:59:bf:e9:af:d9:c1:88: a0:f2:92:fd:1a:8e:c7:2c:3d:58:8e:48:d7:5e:75:31:41:59: 57:76:69:88:82:1c:a4:c4:d0:91:03:b8:71:d5:a0:ca:27:ac: 6c:80:54:f9:31:37:48:7e:0b:a5:c4:df:b8:2c:25:b1:ad:0c: 28:3b:c2:5b:7a:56:6a:ba:96:55:27:13:3a:3e:b2:a2:6b:96: 33:72:37:ff:ca:00:8f:c6:da:a2:46:b7:50:a5:cd:8f:37:01: 22:5f:ac:f5:89:a2:49:ae:86:12:e7:3c:5b:2a:36:34:09:65: 31:65:af:5d:4e:74:75:13:00:86:03:8d:37:45:17:3a:16:bb: 13:9f:86:71:a2:0f:d8:ab:6d:9f:bc:fc:eb:ce:53:99:68:34: 00:93:18:fb:18:f4:c4:77:c5:c6:3d:56:59:c6:4f:4f:ce:ec: 96:67:a1:38:c6:79:3f:fa:48:07:88:dc:36:f1:2a:a3:6a:3b: 2b:d4:c1:e2:d0:fb:43:d5:78:66:8b:0e:a3:38:3f:fb:ec:be: 5a:a5:74:ce:d7:fc:85:c6:ac:8a:b6:c1:39:ef:d5:25:94:e6: e6:ec:42:e5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAZgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjdGRjUxMTAvBgNVBAUTKEJGQUYyMzYzNzU3NzI5RUUwNUFCMjFCNzFEMjA1QUI0 MThFMUI4MzQwHhcNMjUwNTA5MDIzNjMzWhcNMjUwNTE2MDIzNjMzWjAYMRYwFAYD VQQDEw02ODFkNmEzMS1jZmNhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsck/2IzbXWdtzct544BKfy8MhVC7FnfojSGE2/0Eqbevo/gJAVgiMLhQAONx rn5ye/sJsQ3RI2YzWwu9LGO9lLD43D0QgzIcL3kPstVJ/xDGN/32wwJNm8gj16mY xn2bV2QF+b2TV1vWPCKVKpx9f00V1ja51QujSUEtTEorK+PxCf88WZPnbVPciNRE yJdaV33GWsOG4a7nrnQAGk10HJ7yDwnGH8JqYUE+buGCJr8sligygzbGljdUhcUW vSNmJLnIcA1yg9by40WSCxulFJX8ijGHYBT070fqpyOvnQdkT3EJhmVEbZ0BnSz3 p5DSlqLZWVS3FxApYvbmkhczzwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCkqcYhy Uoo56dPbIjlMZJE5f3qyMB8GA1UdIwQYMBaAFL+vI2N1dynuBashtx0gWrQY4bg0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2N0ZGNS8yNzIwNDM5MkMx NzgxMUVEQUY1NEE5NUZDNEY5QUUwMi92NjhqWTNWM0tlNEZxeUczSFNCYXRCamh1 RFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3Y2OGpZM1YzS2U0RnF5RzNIU0JhdEJqaHVEUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 N0ZGNS8yNzIwNDM5MkMxNzgxMUVEQUY1NEE5NUZDNEY5QUUwMi92NjhqWTNWM0tl NEZxeUczSFNCYXRCamh1RFEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBMLJFJZxNgleDLqFVLEiwqcVunx7kB10pYb1i4y1m/6a/ZwYig8pL9 Go7HLD1YjkjXXnUxQVlXdmmIghykxNCRA7hx1aDKJ6xsgFT5MTdIfgulxN+4LCWx rQwoO8JbelZqupZVJxM6PrKia5Yzcjf/ygCPxtqiRrdQpc2PNwEiX6z1iaJJroYS 5zxbKjY0CWUxZa9dTnR1EwCGA403RRc6FrsTn4Zxog/Yq22fvPzrzlOZaDQAkxj7 GPTEd8XGPVZZxk9PzuyWZ6E4xnk/+kgHiNw28Sqjajsr1MHi0PtD1Xhmiw6jOD/7 7L5apXTO1/yFxqyKtsE579UllObm7ELl -----END CERTIFICATE-----Generated at Sun May 11 01:35:44 2025 by rpki-client