$ rpki-client -vvf rpki.apnic.net/member_repository/A917C156/142E64DE1C0311F0A5DC1556C4F9AE02/rIf9aQzGskx4_D9x0y3eDbookNs.mft File: rIf9aQzGskx4_D9x0y3eDbookNs.mft (raw, json) Hash identifier: 1ICEgcug+tFU8cIK6ReQenxqo1Un23OE9/bY+gzEEYQ= Subject key identifier: E5:02:A1:DA:5B:3D:15:67:7C:E9:B5:70:F7:0F:4F:70:EF:2C:03:26 Authority key identifier: AC:87:FD:69:0C:C6:B2:4C:78:FC:3F:71:D3:2D:DE:0D:BA:28:90:DB Certificate issuer: /CN=A917C156/serialNumber=AC87FD690CC6B24C78FC3F71D32DDE0DBA2890DB Certificate serial: 19 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rIf9aQzGskx4_D9x0y3eDbookNs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917C156/142E64DE1C0311F0A5DC1556C4F9AE02/rIf9aQzGskx4_D9x0y3eDbookNs.mft Manifest number: 15 Signing time: Sat 17 May 2025 07:31:07 +0000 Manifest this update: Sat 17 May 2025 07:31:06 +0000 Manifest next update: Sat 24 May 2025 07:31:06 +0000 Files and hashes: 1: rIf9aQzGskx4_D9x0y3eDbookNs.crl (hash: 3TckLYgYVdJ3WR9SC/9Rpce5qegdR7GJAIF7hlDHs7A=) 2: 82B7AD281C2811F0AF6EDC47C4F9AE02.roa (hash: TOct4YZ3x0uVg6PIqVFGhW7Pj8+y8nCLAaZLvcpqBvw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917C156/142E64DE1C0311F0A5DC1556C4F9AE02/rIf9aQzGskx4_D9x0y3eDbookNs.crl rsync://rpki.apnic.net/member_repository/A917C156/142E64DE1C0311F0A5DC1556C4F9AE02/rIf9aQzGskx4_D9x0y3eDbookNs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rIf9aQzGskx4_D9x0y3eDbookNs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 24 May 2025 07:31:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 25 (0x19) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917C156, serialNumber=AC87FD690CC6B24C78FC3F71D32DDE0DBA2890DB Validity Not Before: May 17 07:31:06 2025 GMT Not After : May 24 07:31:06 2025 GMT Subject: CN=68283b3a-498c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:6a:9a:25:e4:81:f9:ff:76:47:3d:32:15:57: bb:70:26:1b:84:6d:dc:7e:77:60:c8:76:be:62:1d: 98:7f:c5:cf:38:6b:d7:79:dd:9b:24:a0:5c:05:71: 2a:90:68:73:75:ff:63:d0:c5:d5:c5:b8:bf:36:6b: 94:c8:fa:48:30:24:72:2d:ce:96:77:75:ac:a7:23: c8:5a:7b:43:44:24:b6:5e:13:95:43:d6:7a:61:28: e1:ca:bb:fe:06:1f:5c:fb:30:e4:49:4b:89:aa:14: e8:5b:f7:0c:f6:23:0f:db:7c:d2:c2:01:a3:69:16: 2e:db:35:b9:da:4f:b3:71:75:40:0e:56:e3:53:1c: 1d:d3:39:b9:73:27:29:5c:8f:9b:a9:e5:30:93:95: 9e:13:1c:42:a5:24:0e:d9:8b:48:14:08:fd:42:de: 59:c4:4f:83:15:9b:37:1e:9d:59:bd:4a:3b:12:fd: d2:16:62:e3:0a:f4:1c:5c:92:06:2e:b9:b2:cb:8d: 0a:f3:e7:8d:1e:43:11:db:03:37:b0:6d:43:41:bc: 88:fb:bb:bf:1b:94:83:5d:9e:4b:f4:50:d4:5c:19: 37:33:03:f3:47:c8:c6:a5:6e:7e:cc:9d:f8:f5:2a: f0:99:df:bb:7b:f9:0f:33:bf:42:56:66:1e:50:a4: 02:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E5:02:A1:DA:5B:3D:15:67:7C:E9:B5:70:F7:0F:4F:70:EF:2C:03:26 X509v3 Authority Key Identifier: keyid:AC:87:FD:69:0C:C6:B2:4C:78:FC:3F:71:D3:2D:DE:0D:BA:28:90:DB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917C156/142E64DE1C0311F0A5DC1556C4F9AE02/rIf9aQzGskx4_D9x0y3eDbookNs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rIf9aQzGskx4_D9x0y3eDbookNs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917C156/142E64DE1C0311F0A5DC1556C4F9AE02/rIf9aQzGskx4_D9x0y3eDbookNs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 36:e8:6d:5f:2c:8c:91:46:01:46:de:6f:c5:fc:72:c2:32:f0: eb:72:a8:86:73:57:70:2d:d5:b5:02:1e:77:be:24:f9:67:5f: 83:26:04:6b:0b:60:e4:ae:3f:ba:18:9e:96:19:05:44:6f:98: cc:20:13:29:e8:b6:ef:66:d1:34:6b:76:20:b3:8c:5d:05:a6: 51:04:87:27:11:86:a6:a2:40:89:c3:50:ae:d8:f2:5f:f9:c8: cc:9b:72:4c:d2:ba:fa:3f:5b:21:45:6a:cf:e3:54:a8:8e:16: 55:77:15:92:a3:12:c6:ba:7f:d5:a2:c3:37:82:60:32:24:23: fb:4c:f6:6d:03:83:be:37:f3:f0:7f:f2:cc:ef:1b:27:32:52: 43:06:ed:8b:b2:92:07:07:53:4d:bc:8d:38:80:ce:96:c6:67: bc:67:5e:c4:c6:ed:88:33:1c:04:00:09:d9:4b:29:29:41:40: 55:48:3c:b5:2a:30:69:54:f5:67:f3:d9:f3:af:9e:e2:0c:f3: 04:36:e4:dd:9f:95:fb:3b:1e:0e:64:a8:80:2e:9b:94:40:a2: 30:2d:49:55:a6:d2:1a:c6:2a:5b:3a:84:2f:ac:11:24:33:63: 0f:13:05:a4:cb:86:78:9d:81:9a:d3:33:f1:dd:ba:42:cc:f2: d8:2b:3f:72 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBGTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 QzE1NjExMC8GA1UEBRMoQUM4N0ZENjkwQ0M2QjI0Qzc4RkMzRjcxRDMyRERFMERC QTI4OTBEQjAeFw0yNTA1MTcwNzMxMDZaFw0yNTA1MjQwNzMxMDZaMBgxFjAUBgNV BAMTDTY4MjgzYjNhLTQ5OGMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDdapol5IH5/3ZHPTIVV7twJhuEbdx+d2DIdr5iHZh/xc84a9d53ZskoFwFcSqQ aHN1/2PQxdXFuL82a5TI+kgwJHItzpZ3daynI8hae0NEJLZeE5VD1nphKOHKu/4G H1z7MORJS4mqFOhb9wz2Iw/bfNLCAaNpFi7bNbnaT7NxdUAOVuNTHB3TOblzJylc j5up5TCTlZ4THEKlJA7Zi0gUCP1C3lnET4MVmzcenVm9SjsS/dIWYuMK9BxckgYu ubLLjQrz540eQxHbAzewbUNBvIj7u78blINdnkv0UNRcGTczA/NHyMalbn7Mnfj1 KvCZ37t7+Q8zv0JWZh5QpAKjAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU5QKh2ls9 FWd86bVw9w9PcO8sAyYwHwYDVR0jBBgwFoAUrIf9aQzGskx4/D9x0y3eDbookNsw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTdDMTU2LzE0MkU2NERFMUMw MzExRjBBNURDMTU1NkM0RjlBRTAyL3JJZjlhUXpHc2t4NF9EOXgweTNlRGJvb2tO cy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvcklmOWFRekdza3g0X0Q5eDB5M2VEYm9va05zLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTdD MTU2LzE0MkU2NERFMUMwMzExRjBBNURDMTU1NkM0RjlBRTAyL3JJZjlhUXpHc2t4 NF9EOXgweTNlRGJvb2tOcy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBADbobV8sjJFGAUbeb8X8csIy8OtyqIZzV3At1bUCHne+JPlnX4MmBGsL YOSuP7oYnpYZBURvmMwgEynotu9m0TRrdiCzjF0FplEEhycRhqaiQInDUK7Y8l/5 yMybckzSuvo/WyFFas/jVKiOFlV3FZKjEsa6f9WiwzeCYDIkI/tM9m0Dg7438/B/ 8szvGycyUkMG7YuykgcHU028jTiAzpbGZ7xnXsTG7YgzHAQACdlLKSlBQFVIPLUq MGlU9Wfz2fOvnuIM8wQ25N2flfs7Hg5kqIAum5RAojAtSVWm0hrGKls6hC+sESQz Yw8TBaTLhnidgZrTM/HdukLM8tgrP3I= -----END CERTIFICATE-----Generated at Sat May 17 09:44:42 2025 by rpki-client