$ rpki-client -vvf rpki.apnic.net/member_repository/A917C36A/40934280C7B211ED9357A23CC4F9AE02/R1MAyW65ok4zHQs5AHDEWinJXmk.mft File: R1MAyW65ok4zHQs5AHDEWinJXmk.mft (raw, json) Hash identifier: 5D5iRZhsPDNUgW0Q0KmJAEZsCWWP2D+GVjEQRKGxj0g= Subject key identifier: 1E:9E:33:AB:20:CB:FC:CE:26:F3:BB:52:42:7C:E2:1C:CC:A3:06:C3 Authority key identifier: 47:53:00:C9:6E:B9:A2:4E:33:1D:0B:39:00:70:C4:5A:29:C9:5E:69 Certificate issuer: /CN=A917C36A/serialNumber=475300C96EB9A24E331D0B390070C45A29C95E69 Certificate serial: 0199 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/R1MAyW65ok4zHQs5AHDEWinJXmk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917C36A/40934280C7B211ED9357A23CC4F9AE02/R1MAyW65ok4zHQs5AHDEWinJXmk.mft Manifest number: 0194 Signing time: Mon 05 May 2025 02:29:21 +0000 Manifest this update: Mon 05 May 2025 02:29:21 +0000 Manifest next update: Mon 12 May 2025 02:29:21 +0000 Files and hashes: 1: R1MAyW65ok4zHQs5AHDEWinJXmk.crl (hash: nm1PwhrEe0Nk5DfwjHtw952tp9UA9yk3N08Qt5qYLYY=) 2: 9CB879ECC7B511ED9411183FC4F9AE02.roa (hash: YSCK3SyvL0QhIHXS6YXGQBk1/DrCgOSt2WKrCd8HBC8=) 3: 4156CE4E8B8811EF99CAC23CC4F9AE02.roa (hash: aC5CXVsf3TUJUqObfYO8YqGBcyfi/oOuuM/n6aK5tiE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917C36A/40934280C7B211ED9357A23CC4F9AE02/R1MAyW65ok4zHQs5AHDEWinJXmk.crl rsync://rpki.apnic.net/member_repository/A917C36A/40934280C7B211ED9357A23CC4F9AE02/R1MAyW65ok4zHQs5AHDEWinJXmk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/R1MAyW65ok4zHQs5AHDEWinJXmk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 12 May 2025 02:29:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 409 (0x199) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917C36A, serialNumber=475300C96EB9A24E331D0B390070C45A29C95E69 Validity Not Before: May 5 02:29:21 2025 GMT Not After : May 12 02:29:21 2025 GMT Subject: CN=68182281-1a3c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:d6:6f:63:a8:91:6b:72:20:57:70:35:aa:15: bd:25:39:2a:73:17:47:26:13:44:8d:6a:36:2b:51: eb:f1:d6:5b:3c:f1:54:5a:a1:3a:1d:57:33:3f:57: fc:17:55:7c:ca:dd:34:4a:14:f0:9b:19:e1:22:24: 60:36:62:9e:01:08:16:8c:ea:f5:8e:a0:74:ef:53: de:f8:a8:01:32:7b:0c:35:f8:bf:1f:7b:f8:c9:5e: 92:cc:71:e7:cd:17:23:5a:3f:af:36:ea:c1:12:80: 75:38:b1:44:b6:56:78:19:85:ea:2c:2f:1d:98:e0: 3d:57:f6:ba:24:0a:8c:18:58:55:37:e8:a2:01:a9: d4:f1:5a:0d:4d:53:95:44:e8:f1:81:11:19:a2:a2: 96:65:ae:b3:7c:2d:a8:a5:7c:37:aa:fa:1b:e0:9d: 9a:d3:e7:f4:4c:f0:bf:63:2c:36:c6:7a:48:35:ba: f5:a9:a0:d9:a1:cb:a2:1b:81:dc:80:84:6e:9d:19: 89:96:19:7d:91:f5:88:45:b1:bc:c1:e9:55:53:cf: c7:94:6e:e9:fa:2e:16:7a:46:22:f6:e7:a8:8a:72: d2:99:33:80:4d:a8:23:da:9b:59:9b:2e:33:eb:49: 97:f8:94:ef:09:4b:fd:31:1b:4c:08:22:c8:67:63: 5b:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1E:9E:33:AB:20:CB:FC:CE:26:F3:BB:52:42:7C:E2:1C:CC:A3:06:C3 X509v3 Authority Key Identifier: keyid:47:53:00:C9:6E:B9:A2:4E:33:1D:0B:39:00:70:C4:5A:29:C9:5E:69 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917C36A/40934280C7B211ED9357A23CC4F9AE02/R1MAyW65ok4zHQs5AHDEWinJXmk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/R1MAyW65ok4zHQs5AHDEWinJXmk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917C36A/40934280C7B211ED9357A23CC4F9AE02/R1MAyW65ok4zHQs5AHDEWinJXmk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 02:09:81:fc:79:fe:82:2d:bd:89:37:3e:22:29:1a:eb:0b:5c: 5b:e3:cb:e2:7c:e3:be:32:bf:71:02:0e:22:56:9e:a8:f7:78: 2d:5c:2d:f8:84:81:60:e7:41:90:32:2c:af:aa:39:f5:02:6a: 90:44:dc:3b:d1:7b:43:e9:78:a4:cb:37:31:91:95:e2:6e:7f: e3:22:23:6c:f5:10:79:31:a8:90:ce:4b:17:4f:a1:5a:08:97: 4e:54:12:ef:30:70:61:85:21:c0:d5:61:ed:3f:16:5f:2b:e2: e0:8c:ef:34:8f:66:cf:80:7c:61:cb:2e:a4:7b:d5:2d:53:80: f0:7d:9a:54:8e:f8:86:1a:b9:9a:6d:ef:d7:af:69:b5:08:46: 05:56:9a:ab:a3:a9:39:6f:ce:54:7b:7e:5b:36:17:0b:2d:4d: ab:79:55:7e:94:b3:be:b2:86:d7:a8:2a:ef:e1:54:84:9b:bf: 7e:a2:6b:2a:40:2a:9f:1b:89:38:be:37:ab:c2:08:4a:27:42: 38:9f:c6:b7:31:7d:87:a8:4d:9a:db:ab:d5:63:4a:d8:d2:7a: 17:7d:d7:93:26:e6:a1:38:da:62:6a:45:36:34:a8:d1:69:35: ae:3c:c5:41:db:e2:47:17:8f:06:08:35:15:9c:f5:67:48:ae: dd:91:f7:3a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAZkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0MzNkExMTAvBgNVBAUTKDQ3NTMwMEM5NkVCOUEyNEUzMzFEMEIzOTAwNzBDNDVB MjlDOTVFNjkwHhcNMjUwNTA1MDIyOTIxWhcNMjUwNTEyMDIyOTIxWjAYMRYwFAYD VQQDEw02ODE4MjI4MS0xYTNjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAotZvY6iRa3IgV3A1qhW9JTkqcxdHJhNEjWo2K1Hr8dZbPPFUWqE6HVczP1f8 F1V8yt00ShTwmxnhIiRgNmKeAQgWjOr1jqB071Pe+KgBMnsMNfi/H3v4yV6SzHHn zRcjWj+vNurBEoB1OLFEtlZ4GYXqLC8dmOA9V/a6JAqMGFhVN+iiAanU8VoNTVOV ROjxgREZoqKWZa6zfC2opXw3qvob4J2a0+f0TPC/Yyw2xnpINbr1qaDZocuiG4Hc gIRunRmJlhl9kfWIRbG8welVU8/HlG7p+i4WekYi9ueoinLSmTOATagj2ptZmy4z 60mX+JTvCUv9MRtMCCLIZ2NbowIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFB6eM6sg y/zOJvO7UkJ84hzMowbDMB8GA1UdIwQYMBaAFEdTAMluuaJOMx0LOQBwxFopyV5p MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QzM2QS80MDkzNDI4MEM3 QjIxMUVEOTM1N0EyM0NDNEY5QUUwMi9SMU1BeVc2NW9rNHpIUXM1QUhERVdpbkpY bWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1IxTUF5VzY1b2s0ekhRczVBSERFV2luSlhtay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QzM2QS80MDkzNDI4MEM3QjIxMUVEOTM1N0EyM0NDNEY5QUUwMi9SMU1BeVc2NW9r NHpIUXM1QUhERVdpbkpYbWsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQACCYH8ef6CLb2JNz4iKRrrC1xb48vifOO+Mr9xAg4iVp6o93gtXC34 hIFg50GQMiyvqjn1AmqQRNw70XtD6XikyzcxkZXibn/jIiNs9RB5MaiQzksXT6Fa CJdOVBLvMHBhhSHA1WHtPxZfK+LgjO80j2bPgHxhyy6ke9UtU4DwfZpUjviGGrma be/Xr2m1CEYFVpqro6k5b85Ue35bNhcLLU2reVV+lLO+sobXqCrv4VSEm79+omsq QCqfG4k4vjerwghKJ0I4n8a3MX2HqE2a26vVY0rY0noXfdeTJuahONpiakU2NKjR aTWuPMVB2+JHF48GCDUVnPVnSK7dkfc6 -----END CERTIFICATE-----Generated at Wed May 7 01:14:00 2025 by rpki-client