$ rpki-client -vvf rpki.apnic.net/member_repository/A91724A6/18E5D484C3C311EDAA5ACB47C4F9AE02/0nYmctKXWA5IQijBceWokHMMF28.mft File: 0nYmctKXWA5IQijBceWokHMMF28.mft (raw, json) Hash identifier: EANO+84/+Uq64OM8ChdYpupSh6zp13SIcPpbijWFDT4= Subject key identifier: DB:7C:C7:D6:58:D2:94:13:74:B5:D4:8E:9C:11:8A:11:FB:91:3E:99 Authority key identifier: D2:76:26:72:D2:97:58:0E:48:42:28:C1:71:E5:A8:90:73:0C:17:6F Certificate issuer: /CN=A91724A6/serialNumber=D2762672D297580E484228C171E5A890730C176F Certificate serial: 019C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0nYmctKXWA5IQijBceWokHMMF28.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91724A6/18E5D484C3C311EDAA5ACB47C4F9AE02/0nYmctKXWA5IQijBceWokHMMF28.mft Manifest number: 0198 Signing time: Sun 11 May 2025 02:24:14 +0000 Manifest this update: Sun 11 May 2025 02:24:14 +0000 Manifest next update: Sun 18 May 2025 02:24:14 +0000 Files and hashes: 1: 0nYmctKXWA5IQijBceWokHMMF28.crl (hash: HFHLkMTlzKA2KiHUwoex6JBpbZRfm4CEVZDwTBMEGWY=) 2: 950A55CCC3C711ED8419AA64C4F9AE02.roa (hash: GrQm9NlurYpVLIwLedH2/MNa+h8258HeOnrxmNS0v54=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91724A6/18E5D484C3C311EDAA5ACB47C4F9AE02/0nYmctKXWA5IQijBceWokHMMF28.crl rsync://rpki.apnic.net/member_repository/A91724A6/18E5D484C3C311EDAA5ACB47C4F9AE02/0nYmctKXWA5IQijBceWokHMMF28.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0nYmctKXWA5IQijBceWokHMMF28.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 18 May 2025 02:24:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 412 (0x19c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91724A6, serialNumber=D2762672D297580E484228C171E5A890730C176F Validity Not Before: May 11 02:24:14 2025 GMT Not After : May 18 02:24:14 2025 GMT Subject: CN=68200a4e-3ea7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:74:73:a8:ba:06:32:d1:6b:2f:1b:9d:b9:af: 41:15:f7:ec:20:9f:4d:d9:fa:51:f4:f8:a5:e2:47: f9:36:0e:25:0e:d9:1c:54:92:a2:98:db:ff:40:fc: 2c:a0:ab:87:ac:22:b7:17:32:c3:87:cc:f3:82:31: 93:da:e3:38:f4:03:bf:fe:dd:2d:12:94:4f:76:2e: 63:d5:1a:29:74:c9:ac:c3:9e:f9:6e:10:00:cb:9e: cf:17:ee:50:5c:d0:4e:89:53:ca:ec:7d:0a:c0:c2: 79:4d:b7:62:94:df:0a:d9:8e:2e:61:d4:ee:79:54: 75:13:bf:93:fa:41:ca:9a:eb:b5:c8:f1:08:1b:41: b3:02:e3:65:25:47:7e:e5:d9:56:54:be:d6:62:0a: 01:cc:8a:c4:40:42:36:e2:8b:f7:87:62:c5:6a:45: e5:e0:c4:7c:54:1e:c4:74:66:54:2b:02:03:b1:d2: b3:b2:0a:6f:ac:d1:45:e1:af:03:84:37:69:15:34: 90:a3:46:09:08:c7:b0:63:ec:3f:2e:d5:d3:8e:1d: aa:f3:ca:e9:46:df:6e:fb:50:2d:4d:e9:ad:fd:af: ab:64:01:b7:6e:35:58:2f:56:af:1b:ea:f0:2d:99: 1d:8c:b9:db:03:7b:ec:7f:14:70:45:99:a8:9c:35: 0e:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DB:7C:C7:D6:58:D2:94:13:74:B5:D4:8E:9C:11:8A:11:FB:91:3E:99 X509v3 Authority Key Identifier: keyid:D2:76:26:72:D2:97:58:0E:48:42:28:C1:71:E5:A8:90:73:0C:17:6F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91724A6/18E5D484C3C311EDAA5ACB47C4F9AE02/0nYmctKXWA5IQijBceWokHMMF28.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0nYmctKXWA5IQijBceWokHMMF28.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91724A6/18E5D484C3C311EDAA5ACB47C4F9AE02/0nYmctKXWA5IQijBceWokHMMF28.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2e:a7:ea:4b:12:72:c4:49:cf:f7:5f:9c:93:31:c6:51:f3:91: 27:28:36:f9:93:1b:92:c1:b7:d5:0d:90:8d:c5:f0:bd:b2:e3: 2c:b3:ab:48:b8:b1:50:c1:a1:e1:a1:a1:a7:1c:ec:1a:b2:59: 44:04:6d:bf:5c:2a:50:2a:03:10:3b:9f:9b:70:d3:c1:4f:ac: 44:b8:5e:9f:56:37:29:e8:fe:d5:f1:01:84:2b:09:2e:e1:b9: 7e:b0:a1:42:5f:5a:77:4b:7d:19:fe:80:6c:a7:ea:e5:8a:a5: 32:e8:27:b6:97:2c:db:7a:27:06:66:ba:eb:20:af:84:91:2c: dc:b9:61:fe:e6:20:99:26:cc:b2:a1:20:19:6b:29:d2:0d:37: 6d:ee:a9:48:69:62:d4:46:70:c1:5a:ba:ec:4e:98:ce:c4:7a: f7:17:ed:63:cd:6d:59:e2:fe:09:b9:2e:82:06:dd:a5:71:62: d9:e4:4d:f6:a9:d6:ec:0d:00:ae:46:a6:d2:9e:a5:fb:64:65: 0c:18:a4:6d:29:08:0c:ee:e7:42:a5:f4:e2:05:d5:06:a4:c4: 4d:50:e7:b7:ec:78:c9:5c:ab:86:b6:67:6c:28:4b:86:01:72: 29:62:e3:1a:25:0b:bc:69:cb:75:c4:f9:20:c0:9f:c4:31:49: f2:b6:d2:2e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAZwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzI0QTYxMTAvBgNVBAUTKEQyNzYyNjcyRDI5NzU4MEU0ODQyMjhDMTcxRTVBODkw NzMwQzE3NkYwHhcNMjUwNTExMDIyNDE0WhcNMjUwNTE4MDIyNDE0WjAYMRYwFAYD VQQDEw02ODIwMGE0ZS0zZWE3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAr3RzqLoGMtFrLxudua9BFffsIJ9N2fpR9Pil4kf5Ng4lDtkcVJKimNv/QPws oKuHrCK3FzLDh8zzgjGT2uM49AO//t0tEpRPdi5j1RopdMmsw575bhAAy57PF+5Q XNBOiVPK7H0KwMJ5TbdilN8K2Y4uYdTueVR1E7+T+kHKmuu1yPEIG0GzAuNlJUd+ 5dlWVL7WYgoBzIrEQEI24ov3h2LFakXl4MR8VB7EdGZUKwIDsdKzsgpvrNFF4a8D hDdpFTSQo0YJCMewY+w/LtXTjh2q88rpRt9u+1AtTemt/a+rZAG3bjVYL1avG+rw LZkdjLnbA3vsfxRwRZmonDUOIwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNt8x9ZY 0pQTdLXUjpwRihH7kT6ZMB8GA1UdIwQYMBaAFNJ2JnLSl1gOSEIowXHlqJBzDBdv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MjRBNi8xOEU1RDQ4NEMz QzMxMUVEQUE1QUNCNDdDNEY5QUUwMi8wblltY3RLWFdBNUlRaWpCY2VXb2tITU1G MjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzBuWW1jdEtYV0E1SVFpakJjZVdva0hNTUYyOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MjRBNi8xOEU1RDQ4NEMzQzMxMUVEQUE1QUNCNDdDNEY5QUUwMi8wblltY3RLWFdB NUlRaWpCY2VXb2tITU1GMjgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAup+pLEnLESc/3X5yTMcZR85EnKDb5kxuSwbfVDZCNxfC9suMss6tI uLFQwaHhoaGnHOwasllEBG2/XCpQKgMQO5+bcNPBT6xEuF6fVjcp6P7V8QGEKwku 4bl+sKFCX1p3S30Z/oBsp+rliqUy6Ce2lyzbeicGZrrrIK+EkSzcuWH+5iCZJsyy oSAZaynSDTdt7qlIaWLURnDBWrrsTpjOxHr3F+1jzW1Z4v4JuS6CBt2lcWLZ5E32 qdbsDQCuRqbSnqX7ZGUMGKRtKQgM7udCpfTiBdUGpMRNUOe37HjJXKuGtmdsKEuG AXIpYuMaJQu8act1xPkgwJ/EMUnyttIu -----END CERTIFICATE-----Generated at Sun May 11 18:57:10 2025 by rpki-client