$ rpki-client -vvf rpki.apnic.net/member_repository/A9174125/FAB6BE885D6011E8B349A80FC4F9AE02/aMYRl-ukGmTYXyVZ4dQNbnX8txA.mft File: aMYRl-ukGmTYXyVZ4dQNbnX8txA.mft (raw, json) Hash identifier: HgWY/JHOpYTv4Rme+nTOuvJA/tufyrLr9FPHQehLDC0= Subject key identifier: 16:AB:F0:B0:7E:B1:78:28:3C:2F:D3:29:F2:74:F3:E7:42:B8:95:19 Authority key identifier: 68:C6:11:97:EB:A4:1A:64:D8:5F:25:59:E1:D4:0D:6E:75:FC:B7:10 Certificate issuer: /CN=A9174125/serialNumber=68C61197EBA41A64D85F2559E1D40D6E75FCB710 Certificate serial: 149F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aMYRl-ukGmTYXyVZ4dQNbnX8txA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9174125/FAB6BE885D6011E8B349A80FC4F9AE02/aMYRl-ukGmTYXyVZ4dQNbnX8txA.mft Manifest number: 149F Signing time: Wed 14 May 2025 16:56:47 +0000 Manifest this update: Wed 14 May 2025 16:56:47 +0000 Manifest next update: Wed 21 May 2025 16:56:47 +0000 Files and hashes: 1: aMYRl-ukGmTYXyVZ4dQNbnX8txA.crl (hash: Qvr5i0ANEUpt7zsr6Gh65TEjP5VpHelrifJzCZYtfyU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9174125/FAB6BE885D6011E8B349A80FC4F9AE02/aMYRl-ukGmTYXyVZ4dQNbnX8txA.crl rsync://rpki.apnic.net/member_repository/A9174125/FAB6BE885D6011E8B349A80FC4F9AE02/aMYRl-ukGmTYXyVZ4dQNbnX8txA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aMYRl-ukGmTYXyVZ4dQNbnX8txA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 21 May 2025 16:56:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5279 (0x149f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9174125, serialNumber=68C61197EBA41A64D85F2559E1D40D6E75FCB710 Validity Not Before: May 14 16:56:47 2025 GMT Not After : May 21 16:56:47 2025 GMT Subject: CN=6824cb4f-20c0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:d2:db:40:07:c4:b4:ad:e9:54:58:1c:71:00: f5:7b:9f:9c:d5:12:98:a5:b7:8a:35:88:32:cf:84: 3d:07:a8:fd:be:ca:0c:d8:17:1d:f3:92:85:93:e5: f3:87:d0:84:2e:d9:29:a0:01:bf:d5:50:6f:d2:27: f2:40:dd:9a:2b:64:6c:4b:3d:43:33:64:30:47:40: 4a:f0:05:77:1f:f6:37:46:95:28:0f:31:93:ff:49: dd:80:df:84:7a:8f:f6:b6:dd:9f:a5:50:cd:b4:7e: be:ce:d8:10:68:ae:f7:c5:53:f1:de:f6:7c:f0:42: c1:4b:31:34:2f:04:03:dc:c6:c3:28:89:49:91:da: 13:ca:b7:61:51:bb:4e:e4:7e:67:a8:4d:b7:5e:06: cd:03:c8:84:ad:b4:cf:03:44:38:16:d6:c6:45:cf: 3b:47:bf:3a:9c:5c:43:76:22:23:53:6c:83:96:2a: 52:77:c8:01:99:ce:0e:df:38:e5:1a:04:4c:fc:89: 59:7f:16:1c:04:f8:63:ba:66:02:1e:73:db:ca:26: 37:98:7c:99:b0:dc:ed:41:d7:39:92:c5:27:87:3e: 1b:81:18:02:e7:ee:36:f9:6b:6a:4e:89:f9:2d:8c: a3:52:36:40:91:69:82:1f:83:12:ff:62:fa:44:4d: 5b:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 16:AB:F0:B0:7E:B1:78:28:3C:2F:D3:29:F2:74:F3:E7:42:B8:95:19 X509v3 Authority Key Identifier: keyid:68:C6:11:97:EB:A4:1A:64:D8:5F:25:59:E1:D4:0D:6E:75:FC:B7:10 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9174125/FAB6BE885D6011E8B349A80FC4F9AE02/aMYRl-ukGmTYXyVZ4dQNbnX8txA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aMYRl-ukGmTYXyVZ4dQNbnX8txA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9174125/FAB6BE885D6011E8B349A80FC4F9AE02/aMYRl-ukGmTYXyVZ4dQNbnX8txA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 64:64:ce:63:99:f1:85:12:d1:62:9f:86:85:45:18:bb:d9:7b: fa:58:a4:a7:e3:5c:d5:08:8c:38:f2:7e:8e:86:bb:10:3a:42: 78:19:0a:cb:91:36:a1:3c:e9:9a:3e:71:97:40:6b:9b:39:62: 5d:dc:b3:c7:d2:ab:dc:f2:bb:bd:a5:97:93:f7:0c:20:36:d3: b2:e5:06:a5:32:30:4e:e4:ec:f6:c4:df:ca:7d:5c:16:bc:18: 52:b9:4d:86:af:f9:2f:7c:f9:7b:e2:03:a2:32:3e:2f:2a:87: 58:2c:8c:09:d8:2d:8f:a4:bb:a8:14:0e:ba:c0:11:e9:fa:ae: e2:e3:4c:35:46:05:8f:6f:51:81:81:fe:77:26:7a:49:16:89: 7c:6a:3a:2d:74:bb:1b:50:50:f4:09:3f:ed:45:63:31:91:79: c9:91:4c:11:bd:76:aa:eb:a5:8a:2d:b3:8e:f7:a5:00:6b:b2: 13:7a:d8:21:de:27:1a:a2:dd:d9:f5:c6:ad:51:7c:a0:2c:28: b1:30:14:65:38:14:dd:be:f6:e3:79:bb:60:22:e6:47:dc:d6: dc:7b:db:39:99:95:8d:92:2f:8c:97:00:c3:e6:33:3e:ae:ad: 2a:6f:43:70:69:90:0e:54:3a:31:91:65:19:de:35:3d:6f:4f: d6:d7:0c:b0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICFJ8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzQxMjUxMTAvBgNVBAUTKDY4QzYxMTk3RUJBNDFBNjREODVGMjU1OUUxRDQwRDZF NzVGQ0I3MTAwHhcNMjUwNTE0MTY1NjQ3WhcNMjUwNTIxMTY1NjQ3WjAYMRYwFAYD VQQDEw02ODI0Y2I0Zi0yMGMwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw9LbQAfEtK3pVFgccQD1e5+c1RKYpbeKNYgyz4Q9B6j9vsoM2Bcd85KFk+Xz h9CELtkpoAG/1VBv0ifyQN2aK2RsSz1DM2QwR0BK8AV3H/Y3RpUoDzGT/0ndgN+E eo/2tt2fpVDNtH6+ztgQaK73xVPx3vZ88ELBSzE0LwQD3MbDKIlJkdoTyrdhUbtO 5H5nqE23XgbNA8iErbTPA0Q4FtbGRc87R786nFxDdiIjU2yDlipSd8gBmc4O3zjl GgRM/IlZfxYcBPhjumYCHnPbyiY3mHyZsNztQdc5ksUnhz4bgRgC5+42+WtqTon5 LYyjUjZAkWmCH4MS/2L6RE1b1QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBar8LB+ sXgoPC/TKfJ08+dCuJUZMB8GA1UdIwQYMBaAFGjGEZfrpBpk2F8lWeHUDW51/LcQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NDEyNS9GQUI2QkU4ODVE NjAxMUU4QjM0OUE4MEZDNEY5QUUwMi9hTVlSbC11a0dtVFlYeVZaNGRRTmJuWDh0 eEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FNWVJsLXVrR21UWVh5Vlo0ZFFOYm5YOHR4QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 NDEyNS9GQUI2QkU4ODVENjAxMUU4QjM0OUE4MEZDNEY5QUUwMi9hTVlSbC11a0dt VFlYeVZaNGRRTmJuWDh0eEEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBkZM5jmfGFEtFin4aFRRi72Xv6WKSn41zVCIw48n6OhrsQOkJ4GQrL kTahPOmaPnGXQGubOWJd3LPH0qvc8ru9pZeT9wwgNtOy5QalMjBO5Oz2xN/KfVwW vBhSuU2Gr/kvfPl74gOiMj4vKodYLIwJ2C2PpLuoFA66wBHp+q7i40w1RgWPb1GB gf53JnpJFol8ajotdLsbUFD0CT/tRWMxkXnJkUwRvXaq66WKLbOO96UAa7ITetgh 3icaot3Z9catUXygLCixMBRlOBTdvvbjebtgIuZH3Nbce9s5mZWNki+MlwDD5jM+ rq0qb0NwaZAOVDoxkWUZ3jU9b0/W1wyw -----END CERTIFICATE-----Generated at Fri May 16 10:36:34 2025 by rpki-client