$ rpki-client -vvf rpki.apnic.net/member_repository/A917A67E/67B4CB841BD311EE965FEF38C4F9AE02/S3IqOmeTvzLJvPUuTncuCm86Yxk.mft File: S3IqOmeTvzLJvPUuTncuCm86Yxk.mft (raw, json) Hash identifier: c7RSa3rew9flaxTNJfpLwWAyV//diL6p3KJvFt3tapY= Subject key identifier: 4E:98:F9:DB:5D:DB:81:2D:A9:63:04:0E:99:66:AF:47:75:31:73:B8 Authority key identifier: 4B:72:2A:3A:67:93:BF:32:C9:BC:F5:2E:4E:77:2E:0A:6F:3A:63:19 Certificate issuer: /CN=A917A67E/serialNumber=4B722A3A6793BF32C9BCF52E4E772E0A6F3A6319 Certificate serial: 0162 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/S3IqOmeTvzLJvPUuTncuCm86Yxk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917A67E/67B4CB841BD311EE965FEF38C4F9AE02/S3IqOmeTvzLJvPUuTncuCm86Yxk.mft Manifest number: 015F Signing time: Tue 13 May 2025 03:15:28 +0000 Manifest this update: Tue 13 May 2025 03:15:28 +0000 Manifest next update: Tue 20 May 2025 03:15:28 +0000 Files and hashes: 1: S3IqOmeTvzLJvPUuTncuCm86Yxk.crl (hash: FeUw5dg81Cy4/bRf6XGZRYv225EctQsUjM1G1CbF+8Y=) 2: E3901F981BD711EEB9597921C4F9AE02.roa (hash: gXQtBkkUAb9x4NlHq240u/Z9LPp8ccDpu+5MVL1TOAI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917A67E/67B4CB841BD311EE965FEF38C4F9AE02/S3IqOmeTvzLJvPUuTncuCm86Yxk.crl rsync://rpki.apnic.net/member_repository/A917A67E/67B4CB841BD311EE965FEF38C4F9AE02/S3IqOmeTvzLJvPUuTncuCm86Yxk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/S3IqOmeTvzLJvPUuTncuCm86Yxk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 20 May 2025 03:15:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 354 (0x162) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917A67E, serialNumber=4B722A3A6793BF32C9BCF52E4E772E0A6F3A6319 Validity Not Before: May 13 03:15:28 2025 GMT Not After : May 20 03:15:28 2025 GMT Subject: CN=6822b950-2c96 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:da:fe:f4:f1:8f:8d:6c:d1:38:cf:e5:be:c4: 61:d4:31:46:84:3e:ba:56:c3:93:1e:39:90:75:92: da:0b:37:be:f0:12:a4:59:d4:39:fb:89:c3:ed:6e: 4d:52:01:df:f3:21:56:91:01:f1:6b:95:52:b2:31: 87:e9:a0:cf:61:3c:c8:d5:3a:79:f5:38:2b:9c:56: a5:68:b0:18:08:56:61:b4:85:5f:8f:60:b3:81:84: 67:01:74:ee:08:c1:cc:ec:fc:31:a0:3c:16:da:47: 78:02:b3:77:f2:28:7a:1c:71:40:48:f0:bd:ad:ee: d5:2f:b2:dd:98:e3:ec:30:1c:c2:82:85:fb:a5:8e: bf:91:c6:06:e6:5c:63:eb:3c:a8:7a:b1:fc:ec:70: 7c:36:0a:16:72:52:24:75:bc:fa:22:94:9b:4e:d3: bd:bc:d3:0c:14:42:3b:4b:c8:75:64:d3:5a:cf:2d: be:5c:9d:63:0b:4e:99:5f:3f:7b:14:66:19:0b:43: 1c:f6:53:ff:a7:dd:59:7d:3c:3f:9c:9b:e1:2b:4c: df:d4:28:e4:98:68:7d:00:51:f4:17:ee:c0:39:d5: 36:01:5b:fb:49:9c:9c:80:19:e2:a3:8f:46:a2:c3: 04:3d:41:71:77:4e:d7:7b:96:8c:d7:b5:c3:18:d5: 2a:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4E:98:F9:DB:5D:DB:81:2D:A9:63:04:0E:99:66:AF:47:75:31:73:B8 X509v3 Authority Key Identifier: keyid:4B:72:2A:3A:67:93:BF:32:C9:BC:F5:2E:4E:77:2E:0A:6F:3A:63:19 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917A67E/67B4CB841BD311EE965FEF38C4F9AE02/S3IqOmeTvzLJvPUuTncuCm86Yxk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/S3IqOmeTvzLJvPUuTncuCm86Yxk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917A67E/67B4CB841BD311EE965FEF38C4F9AE02/S3IqOmeTvzLJvPUuTncuCm86Yxk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 82:c0:9b:20:ae:57:93:a2:35:53:24:cb:1e:9d:58:c5:73:85: ea:b1:92:5b:f6:76:2e:ad:c1:fc:3b:85:2f:04:cc:ae:84:fb: 12:57:62:50:26:45:5e:3c:0a:8a:ad:68:9a:32:17:18:6c:00: e6:f0:e4:34:2c:d4:ce:46:af:6b:31:3e:95:d0:7f:14:71:26: 60:48:ae:62:1a:05:82:2b:9b:d3:13:64:31:67:f0:f5:bd:fc: 4c:e5:13:65:97:8c:56:84:b0:e3:da:45:ca:0c:bd:b0:b3:26: 25:8c:3e:1b:02:2a:3c:27:f6:c6:b0:84:16:c7:0d:94:b3:f3: 23:21:fe:4b:95:b8:db:60:91:ce:43:03:53:66:ec:c7:ce:36: b8:8e:43:23:6e:98:59:c7:e8:58:55:ad:87:50:05:b6:ae:2e: f6:62:04:92:5e:87:8f:07:54:2a:4a:a4:03:25:40:06:ff:4a: b4:17:8d:ea:43:91:7d:fe:8b:e1:fd:87:e1:aa:d2:2d:dc:3f: 52:f6:c4:b4:3d:b1:c2:49:3b:ec:0b:43:ff:df:bd:8c:6e:af: 23:78:8b:ae:43:e6:da:61:dd:7e:64:af:a6:ee:0d:90:1e:c8: 50:ce:84:f3:1e:d1:ad:f4:39:e2:ac:ca:27:b1:a8:a0:cc:f5: 67:b5:0a:92 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAWIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0E2N0UxMTAvBgNVBAUTKDRCNzIyQTNBNjc5M0JGMzJDOUJDRjUyRTRFNzcyRTBB NkYzQTYzMTkwHhcNMjUwNTEzMDMxNTI4WhcNMjUwNTIwMDMxNTI4WjAYMRYwFAYD VQQDEw02ODIyYjk1MC0yYzk2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAutr+9PGPjWzROM/lvsRh1DFGhD66VsOTHjmQdZLaCze+8BKkWdQ5+4nD7W5N UgHf8yFWkQHxa5VSsjGH6aDPYTzI1Tp59TgrnFalaLAYCFZhtIVfj2CzgYRnAXTu CMHM7PwxoDwW2kd4ArN38ih6HHFASPC9re7VL7LdmOPsMBzCgoX7pY6/kcYG5lxj 6zyoerH87HB8NgoWclIkdbz6IpSbTtO9vNMMFEI7S8h1ZNNazy2+XJ1jC06ZXz97 FGYZC0Mc9lP/p91ZfTw/nJvhK0zf1CjkmGh9AFH0F+7AOdU2AVv7SZycgBnio49G osMEPUFxd07Xe5aM17XDGNUqJwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFE6Y+dtd 24EtqWMEDplmr0d1MXO4MB8GA1UdIwQYMBaAFEtyKjpnk78yybz1Lk53LgpvOmMZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QTY3RS82N0I0Q0I4NDFC RDMxMUVFOTY1RkVGMzhDNEY5QUUwMi9TM0lxT21lVHZ6TEp2UFV1VG5jdUNtODZZ eGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1MzSXFPbWVUdnpMSnZQVXVUbmN1Q204Nll4ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QTY3RS82N0I0Q0I4NDFCRDMxMUVFOTY1RkVGMzhDNEY5QUUwMi9TM0lxT21lVHZ6 TEp2UFV1VG5jdUNtODZZeGsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCCwJsgrleTojVTJMsenVjFc4XqsZJb9nYurcH8O4UvBMyuhPsSV2JQ JkVePAqKrWiaMhcYbADm8OQ0LNTORq9rMT6V0H8UcSZgSK5iGgWCK5vTE2QxZ/D1 vfxM5RNll4xWhLDj2kXKDL2wsyYljD4bAio8J/bGsIQWxw2Us/MjIf5LlbjbYJHO QwNTZuzHzja4jkMjbphZx+hYVa2HUAW2ri72YgSSXoePB1QqSqQDJUAG/0q0F43q Q5F9/ovh/YfhqtIt3D9S9sS0PbHCSTvsC0P/372Mbq8jeIuuQ+baYd1+ZK+m7g2Q HshQzoTzHtGt9DnirMonsaigzPVntQqS -----END CERTIFICATE-----Generated at Tue May 13 08:14:03 2025 by rpki-client