$ rpki-client -vvf rpki.apnic.net/member_repository/A9168C73/8E5C9CC0C31411ED97A0A37FC4F9AE02/CmFSg04SmcEc9uB4ZfdlsjhlY4k.mft File: CmFSg04SmcEc9uB4ZfdlsjhlY4k.mft (raw, json) Hash identifier: oJi/mCXERCsjwjoMbJcA0AXIoKbGsUrumGREKb23Bm8= Subject key identifier: 75:74:EE:1B:3C:CF:47:0E:E3:96:2E:3A:27:93:E1:85:8A:AC:FE:E2 Authority key identifier: 0A:61:52:83:4E:12:99:C1:1C:F6:E0:78:65:F7:65:B2:38:65:63:89 Certificate issuer: /CN=A9168C73/serialNumber=0A6152834E1299C11CF6E07865F765B238656389 Certificate serial: 019D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CmFSg04SmcEc9uB4ZfdlsjhlY4k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9168C73/8E5C9CC0C31411ED97A0A37FC4F9AE02/CmFSg04SmcEc9uB4ZfdlsjhlY4k.mft Manifest number: 019A Signing time: Thu 15 May 2025 02:52:12 +0000 Manifest this update: Thu 15 May 2025 02:52:12 +0000 Manifest next update: Thu 22 May 2025 02:52:12 +0000 Files and hashes: 1: CmFSg04SmcEc9uB4ZfdlsjhlY4k.crl (hash: H5Ao129Gjp/wF3Vbisujn7bzl8apL3riDzPkh37R3JQ=) 2: D8EC2D84C6FF11EDA93A1D43C4F9AE02.roa (hash: 1DI+mqIXwfIJnsuS//oB0VNc4iGbxjDEhe/n7gNnlpo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9168C73/8E5C9CC0C31411ED97A0A37FC4F9AE02/CmFSg04SmcEc9uB4ZfdlsjhlY4k.crl rsync://rpki.apnic.net/member_repository/A9168C73/8E5C9CC0C31411ED97A0A37FC4F9AE02/CmFSg04SmcEc9uB4ZfdlsjhlY4k.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CmFSg04SmcEc9uB4ZfdlsjhlY4k.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 22 May 2025 02:52:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 413 (0x19d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9168C73, serialNumber=0A6152834E1299C11CF6E07865F765B238656389 Validity Not Before: May 15 02:52:12 2025 GMT Not After : May 22 02:52:12 2025 GMT Subject: CN=682556dc-dcac Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:e3:f3:6d:eb:97:a8:56:d1:fd:4f:9a:ba:86: d4:c3:33:dc:61:2c:01:75:bb:f8:e1:32:39:90:d0: a7:0b:5c:af:b1:43:c2:42:37:7b:55:b0:6b:52:3d: 50:97:53:ef:f0:04:48:ae:a7:8f:b8:17:4d:a1:bd: 05:83:7a:b6:fa:4d:f9:41:e0:87:4a:79:72:cb:6b: 58:53:19:2c:4c:8e:ea:7f:d5:ef:16:a9:94:40:1c: ed:8a:2f:c2:b7:01:89:4f:0c:4c:3f:c8:03:7b:c7: 83:3b:14:dd:f7:07:db:11:41:eb:36:82:db:82:01: 69:0a:ae:69:60:8a:2a:b9:9c:da:c5:50:fc:5f:50: 15:25:77:13:01:8d:c9:b1:64:41:40:7a:f0:49:92: c2:35:cc:80:ce:63:0e:f0:a2:fc:4f:f5:e6:9f:78: e9:cd:64:da:d5:10:b9:7a:7c:cf:4b:0a:bc:6c:7a: 4d:ff:b4:a1:9f:23:7e:84:d6:b6:b4:4c:4d:df:fc: 60:8d:38:f6:66:24:7d:73:ec:57:b0:65:a9:39:fa: 11:26:bb:d7:34:53:09:a8:d2:00:6d:9e:b9:d8:54: eb:d5:da:62:9d:16:6d:58:db:05:2d:d6:22:cc:ef: c3:9a:fa:43:0f:01:40:5b:b3:5b:6f:33:9b:c6:75: 68:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 75:74:EE:1B:3C:CF:47:0E:E3:96:2E:3A:27:93:E1:85:8A:AC:FE:E2 X509v3 Authority Key Identifier: keyid:0A:61:52:83:4E:12:99:C1:1C:F6:E0:78:65:F7:65:B2:38:65:63:89 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9168C73/8E5C9CC0C31411ED97A0A37FC4F9AE02/CmFSg04SmcEc9uB4ZfdlsjhlY4k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CmFSg04SmcEc9uB4ZfdlsjhlY4k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9168C73/8E5C9CC0C31411ED97A0A37FC4F9AE02/CmFSg04SmcEc9uB4ZfdlsjhlY4k.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4d:f6:17:74:63:59:73:33:8c:a6:06:65:70:8a:09:34:a9:ba: 92:06:81:2a:32:93:e8:b8:02:8f:ed:46:ba:63:0b:29:d4:04: 4d:0a:24:cd:58:29:00:2c:d7:29:5d:e9:36:04:35:83:30:1e: eb:be:09:05:31:e5:71:c7:1c:45:a8:05:4b:c8:40:58:d6:39: 6a:a0:51:4c:0c:47:fc:19:a9:89:d2:a2:93:32:71:f1:fc:28: 10:b6:96:8a:bb:d5:6f:89:18:46:87:31:33:e8:80:81:70:0d: a6:13:c1:03:a0:a9:13:95:cc:7b:2f:a6:69:06:c6:1b:ae:ff: a7:aa:56:e1:8c:4c:2d:85:f4:c1:ad:fb:65:0e:3f:a8:d9:e1: ba:6b:6b:31:cd:a6:6c:24:ce:a7:04:50:1a:0d:bb:38:2f:ac: a7:f9:9b:b3:de:8a:a0:7b:c8:ab:4a:4a:0b:57:12:9b:98:9d: d8:3e:d3:a0:62:56:bb:23:de:6c:c9:a1:3d:ec:af:0e:ad:8e: 55:d1:7e:70:48:c5:71:ba:9d:03:78:a4:15:83:de:f8:25:92: b1:92:bb:ea:45:71:03:3d:9d:ea:6e:cf:6e:f6:3e:b6:e6:23: 54:49:95:68:9a:dd:6b:0c:a3:dc:1e:f0:3a:2b:ca:c5:79:62: 0b:a6:a2:0c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAZ0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjhDNzMxMTAvBgNVBAUTKDBBNjE1MjgzNEUxMjk5QzExQ0Y2RTA3ODY1Rjc2NUIy Mzg2NTYzODkwHhcNMjUwNTE1MDI1MjEyWhcNMjUwNTIyMDI1MjEyWjAYMRYwFAYD VQQDEw02ODI1NTZkYy1kY2FjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1ePzbeuXqFbR/U+auobUwzPcYSwBdbv44TI5kNCnC1yvsUPCQjd7VbBrUj1Q l1Pv8ARIrqePuBdNob0Fg3q2+k35QeCHSnlyy2tYUxksTI7qf9XvFqmUQBztii/C twGJTwxMP8gDe8eDOxTd9wfbEUHrNoLbggFpCq5pYIoquZzaxVD8X1AVJXcTAY3J sWRBQHrwSZLCNcyAzmMO8KL8T/Xmn3jpzWTa1RC5enzPSwq8bHpN/7ShnyN+hNa2 tExN3/xgjTj2ZiR9c+xXsGWpOfoRJrvXNFMJqNIAbZ652FTr1dpinRZtWNsFLdYi zO/DmvpDDwFAW7NbbzObxnVoWQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHV07hs8 z0cO45YuOieT4YWKrP7iMB8GA1UdIwQYMBaAFAphUoNOEpnBHPbgeGX3ZbI4ZWOJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2OEM3My84RTVDOUNDMEMz MTQxMUVEOTdBMEEzN0ZDNEY5QUUwMi9DbUZTZzA0U21jRWM5dUI0WmZkbHNqaGxZ NGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NtRlNnMDRTbWNFYzl1QjRaZmRsc2pobFk0ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 OEM3My84RTVDOUNDMEMzMTQxMUVEOTdBMEEzN0ZDNEY5QUUwMi9DbUZTZzA0U21j RWM5dUI0WmZkbHNqaGxZNGsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBN9hd0Y1lzM4ymBmVwigk0qbqSBoEqMpPouAKP7Ua6Ywsp1ARNCiTN WCkALNcpXek2BDWDMB7rvgkFMeVxxxxFqAVLyEBY1jlqoFFMDEf8GamJ0qKTMnHx /CgQtpaKu9VviRhGhzEz6ICBcA2mE8EDoKkTlcx7L6ZpBsYbrv+nqlbhjEwthfTB rftlDj+o2eG6a2sxzaZsJM6nBFAaDbs4L6yn+Zuz3oqge8irSkoLVxKbmJ3YPtOg Yla7I95syaE97K8OrY5V0X5wSMVxup0DeKQVg974JZKxkrvqRXEDPZ3qbs9u9j62 5iNUSZVomt1rDKPcHvA6K8rFeWILpqIM -----END CERTIFICATE-----Generated at Thu May 15 13:30:52 2025 by rpki-client