$ rpki-client -vvf rpki.apnic.net/member_repository/A9184AB8/3B0A9C64D1B011EF8C20DD32C4F9AE02/MYj5ufXpCvsNsN5lZfAskL7qSNA.mft File: MYj5ufXpCvsNsN5lZfAskL7qSNA.mft (raw, json) Hash identifier: +NoEziOVBCdeE7MzbfDWkkxtDsAKJXMHilOHkv6P7Kg= Subject key identifier: 3F:28:AB:13:CC:52:92:BB:09:63:7A:AB:E1:9B:88:28:F2:8E:71:D1 Authority key identifier: 31:88:F9:B9:F5:E9:0A:FB:0D:B0:DE:65:65:F0:2C:90:BE:EA:48:D0 Certificate issuer: /CN=A9184AB8/serialNumber=3188F9B9F5E90AFB0DB0DE6565F02C90BEEA48D0 Certificate serial: 4A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MYj5ufXpCvsNsN5lZfAskL7qSNA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9184AB8/3B0A9C64D1B011EF8C20DD32C4F9AE02/MYj5ufXpCvsNsN5lZfAskL7qSNA.mft Manifest number: 46 Signing time: Thu 15 May 2025 06:46:08 +0000 Manifest this update: Thu 15 May 2025 06:46:08 +0000 Manifest next update: Thu 22 May 2025 06:46:08 +0000 Files and hashes: 1: MYj5ufXpCvsNsN5lZfAskL7qSNA.crl (hash: DdCHg+3f0Mxm1+qO9FXWzWnhwLTBJsMpYhDa+s29pnE=) 2: ED63E306F5EC11EFBB174335C4F9AE02.roa (hash: sDxPGPWuMnoYPL5SXwZzSX89Yi7Im2b2Bj3YLGK0a00=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9184AB8/3B0A9C64D1B011EF8C20DD32C4F9AE02/MYj5ufXpCvsNsN5lZfAskL7qSNA.crl rsync://rpki.apnic.net/member_repository/A9184AB8/3B0A9C64D1B011EF8C20DD32C4F9AE02/MYj5ufXpCvsNsN5lZfAskL7qSNA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MYj5ufXpCvsNsN5lZfAskL7qSNA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 22 May 2025 06:46:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 74 (0x4a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9184AB8, serialNumber=3188F9B9F5E90AFB0DB0DE6565F02C90BEEA48D0 Validity Not Before: May 15 06:46:08 2025 GMT Not After : May 22 06:46:08 2025 GMT Subject: CN=68258db0-141c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:09:8f:42:05:35:d2:de:c7:07:93:37:32:19: c8:fe:9b:25:1b:8b:b0:06:9e:f5:9f:2d:e8:ec:b0: cd:f0:98:bd:c7:77:2b:7c:e8:02:d0:31:81:80:b6: 5e:aa:f2:45:b2:30:10:46:a2:72:64:c4:3b:d6:81: 8e:a4:fd:34:a2:64:89:aa:e9:cb:e2:89:57:96:bd: 69:59:7f:42:19:80:24:ef:19:bd:e8:9e:ba:eb:84: 15:68:e7:1d:0b:4b:37:84:c2:47:20:ce:81:36:68: 28:9d:cc:d4:dd:4c:82:bf:63:1c:aa:70:56:d4:ce: 60:43:79:cd:66:9d:fe:3f:84:6a:12:95:9e:89:3d: e0:e9:36:2f:ca:c0:02:15:ee:f5:b5:2d:0f:d5:08: 85:85:28:be:6f:9e:e5:44:73:68:08:1f:91:a0:53: e5:60:f4:44:f0:9e:c6:09:7e:aa:f4:38:47:7d:58: 3c:86:2d:b4:05:b0:46:5c:fe:90:44:15:c2:f4:9b: 5a:26:25:15:29:39:d7:84:b7:21:2b:9d:f4:2b:78: fc:49:87:22:72:41:93:c9:ad:c8:54:5d:ac:c6:7c: 9d:29:81:47:e4:84:10:00:ba:4a:38:e7:4c:8d:e5: 16:3e:09:e4:e4:ac:17:96:6a:f1:35:2a:01:31:c0: 08:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3F:28:AB:13:CC:52:92:BB:09:63:7A:AB:E1:9B:88:28:F2:8E:71:D1 X509v3 Authority Key Identifier: keyid:31:88:F9:B9:F5:E9:0A:FB:0D:B0:DE:65:65:F0:2C:90:BE:EA:48:D0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9184AB8/3B0A9C64D1B011EF8C20DD32C4F9AE02/MYj5ufXpCvsNsN5lZfAskL7qSNA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MYj5ufXpCvsNsN5lZfAskL7qSNA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9184AB8/3B0A9C64D1B011EF8C20DD32C4F9AE02/MYj5ufXpCvsNsN5lZfAskL7qSNA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 14:92:53:c2:e2:d2:54:1a:53:c9:47:73:fe:e8:6d:4a:ff:aa: 83:78:04:66:3c:2a:08:2d:45:42:23:9a:48:80:2b:05:28:c5: 9c:96:23:a8:f8:85:00:a0:9d:fd:dc:87:da:60:b2:f4:bd:8a: a8:50:f3:16:c3:56:b3:ea:4d:55:3b:ab:41:ad:5b:c2:ca:83: bc:5d:68:ed:43:bc:96:18:71:76:e7:ba:d6:2b:8d:50:ee:9c: f7:32:46:ae:5c:bc:68:9b:95:19:7d:7a:1b:ca:88:85:60:6c: cb:c2:17:8f:57:64:98:96:df:34:cd:53:eb:21:1e:cc:82:01: 67:5e:a7:78:fa:e4:7a:05:03:10:c1:51:18:d9:f9:63:20:24: 2e:6f:1b:32:72:c1:05:b5:85:e8:9d:8b:28:29:37:3f:72:02: 33:f0:8f:9f:0d:93:6b:a4:71:e1:15:21:0c:89:38:26:0d:cf: 27:cd:7c:18:ff:ed:3f:ab:86:2b:63:17:db:31:6c:48:d1:7a: 1e:a9:76:98:55:21:f2:91:40:40:b6:db:71:e0:a7:db:fe:e9: 9d:23:43:c8:93:15:27:e7:4f:e4:9a:cb:ae:f2:e8:c6:a0:3e: d5:bf:cc:79:6e:04:2b:aa:b6:ca:ed:ca:e1:16:6c:b9:a5:fa: f2:48:94:86 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBSjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE4 NEFCODExMC8GA1UEBRMoMzE4OEY5QjlGNUU5MEFGQjBEQjBERTY1NjVGMDJDOTBC RUVBNDhEMDAeFw0yNTA1MTUwNjQ2MDhaFw0yNTA1MjIwNjQ2MDhaMBgxFjAUBgNV BAMTDTY4MjU4ZGIwLTE0MWMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDZCY9CBTXS3scHkzcyGcj+myUbi7AGnvWfLejssM3wmL3Hdyt86ALQMYGAtl6q 8kWyMBBGonJkxDvWgY6k/TSiZImq6cviiVeWvWlZf0IZgCTvGb3onrrrhBVo5x0L SzeEwkcgzoE2aCidzNTdTIK/YxyqcFbUzmBDec1mnf4/hGoSlZ6JPeDpNi/KwAIV 7vW1LQ/VCIWFKL5vnuVEc2gIH5GgU+Vg9ETwnsYJfqr0OEd9WDyGLbQFsEZc/pBE FcL0m1omJRUpOdeEtyErnfQrePxJhyJyQZPJrchUXazGfJ0pgUfkhBAAuko450yN 5RY+CeTkrBeWavE1KgExwAhPAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUPyirE8xS krsJY3qr4ZuIKPKOcdEwHwYDVR0jBBgwFoAUMYj5ufXpCvsNsN5lZfAskL7qSNAw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTg0QUI4LzNCMEE5QzY0RDFC MDExRUY4QzIwREQzMkM0RjlBRTAyL01ZajV1ZlhwQ3ZzTnNONWxaZkFza0w3cVNO QS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvTVlqNXVmWHBDdnNOc041bFpmQXNrTDdxU05BLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTg0 QUI4LzNCMEE5QzY0RDFCMDExRUY4QzIwREQzMkM0RjlBRTAyL01ZajV1ZlhwQ3Zz TnNONWxaZkFza0w3cVNOQS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBABSSU8Li0lQaU8lHc/7obUr/qoN4BGY8KggtRUIjmkiAKwUoxZyWI6j4 hQCgnf3ch9pgsvS9iqhQ8xbDVrPqTVU7q0GtW8LKg7xdaO1DvJYYcXbnutYrjVDu nPcyRq5cvGiblRl9ehvKiIVgbMvCF49XZJiW3zTNU+shHsyCAWdep3j65HoFAxDB URjZ+WMgJC5vGzJywQW1heidiygpNz9yAjPwj58Nk2ukceEVIQyJOCYNzyfNfBj/ 7T+rhitjF9sxbEjReh6pdphVIfKRQEC223Hgp9v+6Z0jQ8iTFSfnT+Say67y6Mag PtW/zHluBCuqtsrtyuEWbLml+vJIlIY= -----END CERTIFICATE-----Generated at Thu May 15 09:18:59 2025 by rpki-client