$ rpki-client -vvf rpki.apnic.net/member_repository/A9171B1A/51FFC4E4F41111E9A435B04CC4F9AE02/kY5yieKMGkkiojy1Zb2CG34gphE.mft File: kY5yieKMGkkiojy1Zb2CG34gphE.mft (raw, json) Hash identifier: YLp7OoXgmlDa6KoRoroiCzqZwWErXKnlcwxdJxHDlGE= Subject key identifier: E6:A4:3A:1E:8F:4E:1C:C3:B8:3F:C8:D4:41:BD:46:13:C4:B7:7D:7E Authority key identifier: 91:8E:72:89:E2:8C:1A:49:22:A2:3C:B5:65:BD:82:1B:7E:20:A6:11 Certificate issuer: /CN=A9171B1A/serialNumber=918E7289E28C1A4922A23CB565BD821B7E20A611 Certificate serial: 0C9C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kY5yieKMGkkiojy1Zb2CG34gphE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9171B1A/51FFC4E4F41111E9A435B04CC4F9AE02/kY5yieKMGkkiojy1Zb2CG34gphE.mft Manifest number: 0C90 Signing time: Fri 16 May 2025 18:25:16 +0000 Manifest this update: Fri 16 May 2025 18:25:15 +0000 Manifest next update: Fri 23 May 2025 18:25:15 +0000 Files and hashes: 1: kY5yieKMGkkiojy1Zb2CG34gphE.crl (hash: G7GHdXXat/CjsYuJHZq64HfKZlj0Xcl18fsvDj3P0pc=) 2: 6D9433B0F41211E9AAF5924EC4F9AE02.roa (hash: hSO23qhSJreuhOLk9R8p+4DtFYxsss4sjYdKljRJK2k=) 3: 6E3B1338F41211E9AAF5924EC4F9AE02.roa (hash: 7iLE2NbcVEE13k7k5xb5wiFVYhBSAES33qNPZQmTZqs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9171B1A/51FFC4E4F41111E9A435B04CC4F9AE02/kY5yieKMGkkiojy1Zb2CG34gphE.crl rsync://rpki.apnic.net/member_repository/A9171B1A/51FFC4E4F41111E9A435B04CC4F9AE02/kY5yieKMGkkiojy1Zb2CG34gphE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kY5yieKMGkkiojy1Zb2CG34gphE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 23 May 2025 18:25:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3228 (0xc9c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9171B1A, serialNumber=918E7289E28C1A4922A23CB565BD821B7E20A611 Validity Not Before: May 16 18:25:15 2025 GMT Not After : May 23 18:25:15 2025 GMT Subject: CN=6827830c-4cb9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:40:2d:ef:b2:7a:b3:92:a2:bb:f1:b5:9d:f8: 55:0f:10:1f:50:8f:99:0a:b3:18:7b:23:1c:67:98: 57:8e:db:c1:25:d0:5d:76:4a:f3:ba:d9:0b:a9:3d: 6f:ae:79:c9:61:4f:19:4c:31:3a:7f:ba:a1:2d:e1: 25:e7:8f:69:fd:8d:83:94:f1:dc:c1:0c:0c:be:f9: e8:ed:d2:46:bc:d6:a2:8d:d2:be:88:6b:a0:e0:46: 40:91:e9:3d:7f:4d:f9:ac:8f:df:1e:e4:ef:1e:bb: 13:ab:f8:69:74:96:21:12:1d:c1:ed:9b:6b:b1:81: 0e:74:11:3b:c8:a5:82:df:a1:b8:7d:8e:f0:31:1d: 88:59:51:e8:a8:42:77:53:39:ec:1d:bf:ea:53:92: 53:8e:dc:8d:d5:f2:8f:9f:b6:31:8d:71:12:c3:54: 8f:c9:c2:a0:54:2d:03:ca:e3:3f:1a:c6:e5:28:1b: 83:ee:a6:97:42:2e:d4:02:55:69:fe:04:37:27:06: ca:4e:78:08:45:e9:f3:1b:11:7e:c4:b0:24:88:a8: 70:b9:2a:d7:45:95:5a:45:e0:2b:86:60:1c:03:98: 90:13:ba:e6:f2:32:c4:e4:89:b4:d8:23:e4:e6:39: 6d:fa:93:0d:cf:d1:19:64:26:db:c3:da:4e:ba:88: b6:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E6:A4:3A:1E:8F:4E:1C:C3:B8:3F:C8:D4:41:BD:46:13:C4:B7:7D:7E X509v3 Authority Key Identifier: keyid:91:8E:72:89:E2:8C:1A:49:22:A2:3C:B5:65:BD:82:1B:7E:20:A6:11 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9171B1A/51FFC4E4F41111E9A435B04CC4F9AE02/kY5yieKMGkkiojy1Zb2CG34gphE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kY5yieKMGkkiojy1Zb2CG34gphE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9171B1A/51FFC4E4F41111E9A435B04CC4F9AE02/kY5yieKMGkkiojy1Zb2CG34gphE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 46:16:b9:ee:74:73:18:f3:98:35:6d:33:e8:63:ac:ef:ec:9b: 74:c0:ad:7c:57:29:dc:a9:81:61:23:6f:35:80:b9:df:4e:15: 40:30:dd:a6:d3:81:3a:01:cc:1e:f7:02:2c:df:34:0a:6b:6d: 8f:7c:ab:e3:6a:f5:fe:be:65:37:5a:25:5f:8e:14:5f:54:9c: 96:e1:73:5a:04:90:f6:36:68:17:2c:64:df:8c:ff:fb:83:8d: ef:f3:da:4d:0a:53:7d:8f:7c:d0:67:b3:41:b7:1d:1a:92:77: cf:52:5b:8c:58:4b:01:13:18:9c:b7:00:88:4a:92:7d:78:e7: 57:2d:32:97:57:9e:da:6a:45:22:1b:3f:8e:b5:87:54:ee:e1: e1:85:d2:d3:2b:2f:0b:89:7d:e1:ba:57:d1:ce:86:42:11:42: bb:29:ec:29:6a:7f:76:08:48:b1:2b:99:db:d3:80:9a:e3:6f: 53:7c:6c:9e:16:4d:3a:bf:2d:5f:d8:3f:03:f0:47:d9:8d:0c: 63:f6:76:f5:5a:76:ef:6c:7a:b7:b3:75:3a:f0:42:c2:18:b5: c9:4d:32:84:21:ee:2f:df:9e:69:f0:a9:8b:a2:68:4f:46:dc: 8c:6d:4c:fb:d6:ad:f8:d8:bc:61:d8:65:b3:02:bd:b3:94:ca: 14:70:9d:02 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDJwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzFCMUExMTAvBgNVBAUTKDkxOEU3Mjg5RTI4QzFBNDkyMkEyM0NCNTY1QkQ4MjFC N0UyMEE2MTEwHhcNMjUwNTE2MTgyNTE1WhcNMjUwNTIzMTgyNTE1WjAYMRYwFAYD VQQDEw02ODI3ODMwYy00Y2I5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsEAt77J6s5Kiu/G1nfhVDxAfUI+ZCrMYeyMcZ5hXjtvBJdBddkrzutkLqT1v rnnJYU8ZTDE6f7qhLeEl549p/Y2DlPHcwQwMvvno7dJGvNaijdK+iGug4EZAkek9 f035rI/fHuTvHrsTq/hpdJYhEh3B7ZtrsYEOdBE7yKWC36G4fY7wMR2IWVHoqEJ3 UznsHb/qU5JTjtyN1fKPn7YxjXESw1SPycKgVC0DyuM/GsblKBuD7qaXQi7UAlVp /gQ3JwbKTngIRenzGxF+xLAkiKhwuSrXRZVaReArhmAcA5iQE7rm8jLE5Im02CPk 5jlt+pMNz9EZZCbbw9pOuoi2cwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOakOh6P ThzDuD/I1EG9RhPEt31+MB8GA1UdIwQYMBaAFJGOconijBpJIqI8tWW9ght+IKYR MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MUIxQS81MUZGQzRFNEY0 MTExMUU5QTQzNUIwNENDNEY5QUUwMi9rWTV5aWVLTUdra2lvankxWmIyQ0czNGdw aEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tZNXlpZUtNR2traW9qeTFaYjJDRzM0Z3BoRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MUIxQS81MUZGQzRFNEY0MTExMUU5QTQzNUIwNENDNEY5QUUwMi9rWTV5aWVLTUdr a2lvankxWmIyQ0czNGdwaEUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBGFrnudHMY85g1bTPoY6zv7Jt0wK18VyncqYFhI281gLnfThVAMN2m 04E6Acwe9wIs3zQKa22PfKvjavX+vmU3WiVfjhRfVJyW4XNaBJD2NmgXLGTfjP/7 g43v89pNClN9j3zQZ7NBtx0aknfPUluMWEsBExictwCISpJ9eOdXLTKXV57aakUi Gz+OtYdU7uHhhdLTKy8LiX3hulfRzoZCEUK7Kewpan92CEixK5nb04Ca429TfGye Fk06vy1f2D8D8EfZjQxj9nb1WnbvbHq3s3U68ELCGLXJTTKEIe4v355p8KmLomhP RtyMbUz71q342Lxh2GWzAr2zlMoUcJ0C -----END CERTIFICATE-----Generated at Sat May 17 03:14:26 2025 by rpki-client