$ rpki-client -vvf rpki.apnic.net/member_repository/A9168BA2/99DF386254C411EA84F4E72DC4F9AE02/ymLkOPmNhRjS8qXZ9nZWUeWtpg4.mft File: ymLkOPmNhRjS8qXZ9nZWUeWtpg4.mft (raw, json) Hash identifier: QwSaKtHvOGUjQUaLTiaTKqHoeSdQD9gSdTfJJ5R2INQ= Subject key identifier: D6:DB:93:7E:50:7B:8F:F5:EE:0E:01:A1:11:89:42:DA:8C:CA:70:CA Authority key identifier: CA:62:E4:38:F9:8D:85:18:D2:F2:A5:D9:F6:76:56:51:E5:AD:A6:0E Certificate issuer: /CN=A9168BA2/serialNumber=CA62E438F98D8518D2F2A5D9F6765651E5ADA60E Certificate serial: 0ADA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ymLkOPmNhRjS8qXZ9nZWUeWtpg4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9168BA2/99DF386254C411EA84F4E72DC4F9AE02/ymLkOPmNhRjS8qXZ9nZWUeWtpg4.mft Manifest number: 0AC2 Signing time: Wed 14 May 2025 19:40:13 +0000 Manifest this update: Wed 14 May 2025 19:40:13 +0000 Manifest next update: Wed 21 May 2025 19:40:13 +0000 Files and hashes: 1: ymLkOPmNhRjS8qXZ9nZWUeWtpg4.crl (hash: t2LqQgpygTUZPubrjDwexZP/gbF/JLSElw0bEk02DFk=) 2: EF29C95E69C311EF82BCE77AC4F9AE02.roa (hash: b6XLk77YmW0zXiOErVi5OmWJQw5FWv6IwcAZrV/V3KA=) 3: BA7B024C04D811EDBE98F982C4F9AE02.roa (hash: GniYTYc+rkB55fqBkTbtJuPpFjVN9/DglrpXWuCGSdc=) 4: A2AF0622853711EFA09C892EC4F9AE02.roa (hash: DBysmfWMy9lYVGepCi0Ma5VGyIIRzRfP58+h2cMR+Ls=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9168BA2/99DF386254C411EA84F4E72DC4F9AE02/ymLkOPmNhRjS8qXZ9nZWUeWtpg4.crl rsync://rpki.apnic.net/member_repository/A9168BA2/99DF386254C411EA84F4E72DC4F9AE02/ymLkOPmNhRjS8qXZ9nZWUeWtpg4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ymLkOPmNhRjS8qXZ9nZWUeWtpg4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 21 May 2025 19:40:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2778 (0xada) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9168BA2, serialNumber=CA62E438F98D8518D2F2A5D9F6765651E5ADA60E Validity Not Before: May 14 19:40:13 2025 GMT Not After : May 21 19:40:13 2025 GMT Subject: CN=6824f19d-f54a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:b0:df:86:43:aa:6e:f4:e8:41:bc:1c:6c:d0: 42:62:b4:c9:90:21:64:ac:53:5f:79:ea:1c:24:c8: a3:1c:eb:47:0b:23:ec:37:16:ca:70:6b:f6:73:e5: c2:d2:08:7d:f8:e5:dd:f5:8c:4c:dd:80:db:74:c3: 7c:e5:23:a4:11:af:7e:f3:9d:51:1f:d7:64:92:e2: b8:21:d5:8e:07:a7:ec:c1:cd:0b:2e:4e:09:33:34: 26:55:8f:45:dd:8e:44:ed:bd:6f:96:82:50:14:4b: 9c:f0:27:97:0f:ea:d7:b7:7e:fc:73:bb:3e:1f:e3: 97:ac:96:d8:fd:bc:b2:db:d5:3a:e8:1b:60:10:ea: 55:d4:9e:09:6f:7c:d1:0a:9c:8b:64:86:80:ab:09: db:b0:0c:e7:ab:c4:4e:27:61:d5:0c:ff:82:49:57: bb:7a:af:1b:93:59:e0:c2:37:80:7c:fc:3b:78:bc: 44:27:94:31:04:3a:bc:98:83:c2:02:b9:08:dc:fd: 85:64:dc:84:41:02:34:20:0c:9c:b0:6e:0f:42:7a: 8c:73:d4:b4:0f:e4:2b:85:98:b9:73:e4:80:fe:2e: 16:07:bc:31:03:d4:a8:33:57:c4:49:8b:0e:e4:3e: c8:ca:89:e9:99:f5:f0:39:03:3c:b7:d5:ba:85:93: b7:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D6:DB:93:7E:50:7B:8F:F5:EE:0E:01:A1:11:89:42:DA:8C:CA:70:CA X509v3 Authority Key Identifier: keyid:CA:62:E4:38:F9:8D:85:18:D2:F2:A5:D9:F6:76:56:51:E5:AD:A6:0E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9168BA2/99DF386254C411EA84F4E72DC4F9AE02/ymLkOPmNhRjS8qXZ9nZWUeWtpg4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ymLkOPmNhRjS8qXZ9nZWUeWtpg4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9168BA2/99DF386254C411EA84F4E72DC4F9AE02/ymLkOPmNhRjS8qXZ9nZWUeWtpg4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 71:00:cc:2f:08:fe:e2:85:3b:bb:95:37:6d:2e:68:55:21:53: 0f:0c:56:0c:c0:cf:62:12:39:7d:07:16:76:55:31:2b:f1:92: 01:ad:04:d9:b7:3b:d2:9f:95:1d:5d:e4:90:48:ef:05:d7:9e: 42:04:80:12:22:29:54:aa:a5:6d:ae:65:bb:7d:2f:08:a1:69: 6f:4e:28:01:23:3c:b0:c6:cc:6a:ff:fb:4b:e3:32:2a:5a:c8: 80:c8:72:fa:0a:e1:cc:86:91:6b:f3:27:f2:b8:02:88:2c:80: a9:e4:7f:04:b9:37:8e:0c:8b:3c:8e:d4:fc:eb:c5:d6:60:03: 43:87:51:9b:8c:e7:2b:9a:2c:de:3b:24:e5:47:a0:85:a1:e4: 0e:5d:1a:85:5a:b8:47:79:63:d5:7c:8a:1c:a4:fc:99:35:a9: 26:71:ee:13:d8:d9:5e:63:6b:81:9b:95:34:6c:e7:ba:15:73: 66:3f:f0:14:36:68:9a:b4:60:d6:69:4d:c6:75:f5:77:f5:b3: 4e:ed:9c:90:d1:ef:78:d7:74:aa:8f:5a:c2:ef:50:56:1a:1f: 41:23:b6:63:4d:83:bc:00:ef:42:7f:7f:6f:69:88:6c:07:ac: 8b:ea:6d:24:ba:ad:17:1b:a5:7b:15:ee:d2:7f:5e:2a:3b:32: 44:13:a8:d3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCtowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjhCQTIxMTAvBgNVBAUTKENBNjJFNDM4Rjk4RDg1MThEMkYyQTVEOUY2NzY1NjUx RTVBREE2MEUwHhcNMjUwNTE0MTk0MDEzWhcNMjUwNTIxMTk0MDEzWjAYMRYwFAYD VQQDEw02ODI0ZjE5ZC1mNTRhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4rDfhkOqbvToQbwcbNBCYrTJkCFkrFNfeeocJMijHOtHCyPsNxbKcGv2c+XC 0gh9+OXd9YxM3YDbdMN85SOkEa9+851RH9dkkuK4IdWOB6fswc0LLk4JMzQmVY9F 3Y5E7b1vloJQFEuc8CeXD+rXt378c7s+H+OXrJbY/byy29U66BtgEOpV1J4Jb3zR CpyLZIaAqwnbsAznq8ROJ2HVDP+CSVe7eq8bk1ngwjeAfPw7eLxEJ5QxBDq8mIPC ArkI3P2FZNyEQQI0IAycsG4PQnqMc9S0D+QrhZi5c+SA/i4WB7wxA9SoM1fESYsO 5D7IyonpmfXwOQM8t9W6hZO37wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNbbk35Q e4/17g4BoRGJQtqMynDKMB8GA1UdIwQYMBaAFMpi5Dj5jYUY0vKl2fZ2VlHlraYO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2OEJBMi85OURGMzg2MjU0 QzQxMUVBODRGNEU3MkRDNEY5QUUwMi95bUxrT1BtTmhSalM4cVhaOW5aV1VlV3Rw ZzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3ltTGtPUG1OaFJqUzhxWFo5blpXVWVXdHBnNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 OEJBMi85OURGMzg2MjU0QzQxMUVBODRGNEU3MkRDNEY5QUUwMi95bUxrT1BtTmhS alM4cVhaOW5aV1VlV3RwZzQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBxAMwvCP7ihTu7lTdtLmhVIVMPDFYMwM9iEjl9BxZ2VTEr8ZIBrQTZ tzvSn5UdXeSQSO8F155CBIASIilUqqVtrmW7fS8IoWlvTigBIzywxsxq//tL4zIq WsiAyHL6CuHMhpFr8yfyuAKILICp5H8EuTeODIs8jtT868XWYANDh1GbjOcrmize OyTlR6CFoeQOXRqFWrhHeWPVfIocpPyZNakmce4T2NleY2uBm5U0bOe6FXNmP/AU NmiatGDWaU3GdfV39bNO7ZyQ0e9413Sqj1rC71BWGh9BI7ZjTYO8AO9Cf39vaYhs B6yL6m0kuq0XG6V7Fe7Sf14qOzJEE6jT -----END CERTIFICATE-----Generated at Fri May 16 05:06:44 2025 by rpki-client