$ rpki-client -vvf rpki.apnic.net/member_repository/A916A3EE/5B97A8B8701211EB8907BB1FC4F9AE02/aWryPZMpXC9f3fMqlVE7Ldu_zhs.mft File: aWryPZMpXC9f3fMqlVE7Ldu_zhs.mft (raw, json) Hash identifier: DSoiOSvBC/RRAXMGO/JvUiEvUKtygB6qovmDG0QtVhg= Subject key identifier: 03:10:71:C9:D4:99:76:F6:40:6F:E5:EE:F9:7A:32:54:D3:98:E4:18 Authority key identifier: 69:6A:F2:3D:93:29:5C:2F:5F:DD:F3:2A:95:51:3B:2D:DB:BF:CE:1B Certificate issuer: /CN=A916A3EE/serialNumber=696AF23D93295C2F5FDDF32A95513B2DDBBFCE1B Certificate serial: 068C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aWryPZMpXC9f3fMqlVE7Ldu_zhs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916A3EE/5B97A8B8701211EB8907BB1FC4F9AE02/aWryPZMpXC9f3fMqlVE7Ldu_zhs.mft Manifest number: 0687 Signing time: Wed 14 May 2025 22:19:08 +0000 Manifest this update: Wed 14 May 2025 22:19:07 +0000 Manifest next update: Wed 21 May 2025 22:19:07 +0000 Files and hashes: 1: aWryPZMpXC9f3fMqlVE7Ldu_zhs.crl (hash: KhUWSnrIrMHPvMnslv4e5fx+oWA428hufXnPmqi2pj8=) 2: 76F5B630701311EB9C85DF1FC4F9AE02.roa (hash: qir+UT8zyDGjYz1YRKkq2v/pYcPeSxEZXiWVhwGwNRY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916A3EE/5B97A8B8701211EB8907BB1FC4F9AE02/aWryPZMpXC9f3fMqlVE7Ldu_zhs.crl rsync://rpki.apnic.net/member_repository/A916A3EE/5B97A8B8701211EB8907BB1FC4F9AE02/aWryPZMpXC9f3fMqlVE7Ldu_zhs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aWryPZMpXC9f3fMqlVE7Ldu_zhs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 21 May 2025 22:19:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1676 (0x68c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916A3EE, serialNumber=696AF23D93295C2F5FDDF32A95513B2DDBBFCE1B Validity Not Before: May 14 22:19:07 2025 GMT Not After : May 21 22:19:07 2025 GMT Subject: CN=682516dc-8429 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:4b:a0:3f:0c:14:c1:13:16:b6:1e:54:41:72: a7:3e:10:e6:19:2c:c8:2e:b5:0a:ab:1c:5c:3a:39: 9a:03:62:30:b0:14:78:64:79:77:8c:ce:1d:46:c1: a8:e1:98:9d:99:86:1c:78:37:ae:45:dd:fe:a6:38: b5:1b:d7:d0:27:e0:91:c5:4f:31:53:57:e8:15:4c: a2:09:09:99:99:cc:d4:60:34:72:cf:21:52:74:50: 10:18:d0:a4:bd:0a:4b:b7:25:11:ab:96:97:69:a4: d5:13:06:13:3a:59:1b:f5:5d:0e:d9:07:18:d2:92: 10:a8:df:dc:47:f6:b8:00:65:fb:ae:60:c3:49:a1: d7:89:53:d7:6c:3c:d9:e3:ec:69:66:a4:44:a9:45: 93:20:c5:06:5c:a1:90:58:84:71:5d:17:2b:1b:d9: 56:f1:ee:04:00:ae:cc:dd:d5:b9:0a:67:a8:a0:ae: 6c:d2:1b:0e:2d:ef:c7:db:0e:3a:2e:b0:f6:f9:5b: 1e:18:f8:12:76:56:e5:40:80:8f:61:58:2f:de:d1: dd:10:60:2f:52:87:ae:c0:bc:25:b3:7a:d8:e5:20: a4:d9:e3:40:0f:fa:f5:52:77:51:35:94:71:55:dd: 92:6e:c7:c5:89:2a:17:92:ef:84:7e:0b:79:3b:bf: 18:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 03:10:71:C9:D4:99:76:F6:40:6F:E5:EE:F9:7A:32:54:D3:98:E4:18 X509v3 Authority Key Identifier: keyid:69:6A:F2:3D:93:29:5C:2F:5F:DD:F3:2A:95:51:3B:2D:DB:BF:CE:1B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916A3EE/5B97A8B8701211EB8907BB1FC4F9AE02/aWryPZMpXC9f3fMqlVE7Ldu_zhs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aWryPZMpXC9f3fMqlVE7Ldu_zhs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916A3EE/5B97A8B8701211EB8907BB1FC4F9AE02/aWryPZMpXC9f3fMqlVE7Ldu_zhs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 97:c9:42:d4:b7:74:82:f6:88:a0:a0:b9:36:c1:01:c0:be:63: 43:d5:6d:0c:c5:2d:a5:d8:66:5a:df:ff:1b:df:ea:eb:fe:3e: a8:b2:98:d0:54:ac:fe:64:9a:37:21:3f:6d:28:f8:3e:37:08: eb:5a:50:0a:28:e4:76:7f:4a:2b:14:b0:d4:2a:91:52:88:82: 09:f8:44:79:4a:ea:f0:9a:57:9b:ba:df:1c:98:de:c8:51:68: 7f:ae:f4:79:de:82:d4:67:35:64:22:ed:50:4e:94:02:9d:d6: f1:78:d1:eb:15:76:0e:e6:95:b9:a6:ef:8c:86:7e:f1:83:ac: f0:f7:bf:ac:0a:6f:c2:21:d0:88:b2:08:3a:fa:05:9c:3d:89: db:ac:44:99:cc:05:48:3f:21:2f:74:fc:46:bd:3e:c6:ea:1f: 82:f4:3a:4c:51:c9:5d:87:7b:94:ec:e7:e4:92:3d:84:fa:43: 6d:87:77:15:ea:6e:b9:64:29:70:fd:5d:8e:8e:4f:20:f8:6d: d1:57:e4:64:34:3b:dd:26:c6:41:6d:09:22:2b:a5:4f:da:6b: 0c:52:07:9a:3c:66:14:40:c7:f8:5e:93:7d:b8:a9:f0:b9:2f: ea:85:9a:f3:1c:89:97:4d:1f:d6:46:82:0c:4f:ac:fb:69:fe: 1b:0f:0d:36 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBowwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkEzRUUxMTAvBgNVBAUTKDY5NkFGMjNEOTMyOTVDMkY1RkRERjMyQTk1NTEzQjJE REJCRkNFMUIwHhcNMjUwNTE0MjIxOTA3WhcNMjUwNTIxMjIxOTA3WjAYMRYwFAYD VQQDEw02ODI1MTZkYy04NDI5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzUugPwwUwRMWth5UQXKnPhDmGSzILrUKqxxcOjmaA2IwsBR4ZHl3jM4dRsGo 4ZidmYYceDeuRd3+pji1G9fQJ+CRxU8xU1foFUyiCQmZmczUYDRyzyFSdFAQGNCk vQpLtyURq5aXaaTVEwYTOlkb9V0O2QcY0pIQqN/cR/a4AGX7rmDDSaHXiVPXbDzZ 4+xpZqREqUWTIMUGXKGQWIRxXRcrG9lW8e4EAK7M3dW5CmeooK5s0hsOLe/H2w46 LrD2+VseGPgSdlblQICPYVgv3tHdEGAvUoeuwLwls3rY5SCk2eNAD/r1UndRNZRx Vd2SbsfFiSoXku+Efgt5O78YNwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAMQccnU mXb2QG/l7vl6MlTTmOQYMB8GA1UdIwQYMBaAFGlq8j2TKVwvX93zKpVROy3bv84b MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QTNFRS81Qjk3QThCODcw MTIxMUVCODkwN0JCMUZDNEY5QUUwMi9hV3J5UFpNcFhDOWYzZk1xbFZFN0xkdV96 aHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FXcnlQWk1wWEM5ZjNmTXFsVkU3TGR1X3pocy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 QTNFRS81Qjk3QThCODcwMTIxMUVCODkwN0JCMUZDNEY5QUUwMi9hV3J5UFpNcFhD OWYzZk1xbFZFN0xkdV96aHMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCXyULUt3SC9oigoLk2wQHAvmND1W0MxS2l2GZa3/8b3+rr/j6ospjQ VKz+ZJo3IT9tKPg+NwjrWlAKKOR2f0orFLDUKpFSiIIJ+ER5Surwmlebut8cmN7I UWh/rvR53oLUZzVkIu1QTpQCndbxeNHrFXYO5pW5pu+Mhn7xg6zw97+sCm/CIdCI sgg6+gWcPYnbrESZzAVIPyEvdPxGvT7G6h+C9DpMUcldh3uU7Ofkkj2E+kNth3cV 6m65ZClw/V2Ojk8g+G3RV+RkNDvdJsZBbQkiK6VP2msMUgeaPGYUQMf4XpN9uKnw uS/qhZrzHImXTR/WRoIMT6z7af4bDw02 -----END CERTIFICATE-----Generated at Thu May 15 13:22:15 2025 by rpki-client