$ rpki-client -vvf rpki.apnic.net/member_repository/A9186249/A1F2343CD17011EEA6151C4DC4F9AE02/rOKNq-U2SWN_puTjId4bY0Y7g88.mft File: rOKNq-U2SWN_puTjId4bY0Y7g88.mft (raw, json) Hash identifier: s8/wOtae7wG2JVzzY9XfUb6nLqwuXLb9cn1wuUxspT4= Subject key identifier: 71:37:F4:0E:FD:7C:08:DC:A5:DD:DA:10:FF:CE:67:2A:4F:C5:6A:60 Authority key identifier: AC:E2:8D:AB:E5:36:49:63:7F:A6:E4:E3:21:DE:1B:63:46:3B:83:CF Certificate issuer: /CN=A9186249/serialNumber=ACE28DABE53649637FA6E4E321DE1B63463B83CF Certificate serial: EB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rOKNq-U2SWN_puTjId4bY0Y7g88.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9186249/A1F2343CD17011EEA6151C4DC4F9AE02/rOKNq-U2SWN_puTjId4bY0Y7g88.mft Manifest number: E8 Signing time: Tue 13 May 2025 04:37:54 +0000 Manifest this update: Tue 13 May 2025 04:37:54 +0000 Manifest next update: Tue 20 May 2025 04:37:54 +0000 Files and hashes: 1: rOKNq-U2SWN_puTjId4bY0Y7g88.crl (hash: HNrT/9I0sLGnEww0bFxDkXeq01W9eO/pIZLtU9P35YI=) 2: E7F6D15AD17411EE87F7325DC4F9AE02.roa (hash: roB5hg8LbgyHBq3NzG2BxN4ORRxykj532WnJpDlGnj0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9186249/A1F2343CD17011EEA6151C4DC4F9AE02/rOKNq-U2SWN_puTjId4bY0Y7g88.crl rsync://rpki.apnic.net/member_repository/A9186249/A1F2343CD17011EEA6151C4DC4F9AE02/rOKNq-U2SWN_puTjId4bY0Y7g88.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rOKNq-U2SWN_puTjId4bY0Y7g88.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 20 May 2025 04:37:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 235 (0xeb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9186249, serialNumber=ACE28DABE53649637FA6E4E321DE1B63463B83CF Validity Not Before: May 13 04:37:54 2025 GMT Not After : May 20 04:37:54 2025 GMT Subject: CN=6822cca2-067e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:cc:bc:cb:79:06:f8:a0:b1:ba:d4:27:c3:12: eb:a9:d2:c4:d9:f8:4c:0a:a3:39:a4:0b:c9:c2:f7: 76:e6:43:9b:78:da:db:11:8b:b3:f0:6f:fb:5f:eb: ad:0c:06:0c:b8:cc:dc:cd:93:a9:ca:7a:1e:58:f4: 32:a1:3f:2c:c8:bf:3b:50:cc:37:af:ad:dc:ce:74: 69:d5:12:bc:97:fd:fc:f9:b3:2e:77:a2:61:e1:07: 63:99:85:ee:3c:f2:52:ce:2f:a7:38:f8:b3:35:2a: 22:7d:0d:c5:6f:07:70:67:73:be:81:46:ea:fc:d0: 4b:af:f5:15:3a:12:f9:e3:1d:ec:4f:91:04:e0:07: 77:18:43:74:88:6a:28:6d:9b:48:32:eb:b3:5d:0a: a6:5a:d1:c5:62:3c:77:81:a3:9a:98:f9:90:17:aa: a1:75:d8:92:4b:1d:fc:e3:31:74:f6:7c:16:8d:26: 6d:dc:5b:f1:c0:9c:89:f1:ab:57:29:84:05:a1:bb: 3a:74:fb:c6:3b:5d:f4:55:29:6f:9c:71:d6:dc:9e: b6:2f:f9:5f:a9:2c:08:82:22:41:e7:39:b8:82:12: 05:93:7f:f5:13:53:c7:0c:76:7a:47:2a:71:6e:2a: 3c:3a:61:07:5b:8d:46:a3:70:60:55:91:a5:1b:59: 54:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 71:37:F4:0E:FD:7C:08:DC:A5:DD:DA:10:FF:CE:67:2A:4F:C5:6A:60 X509v3 Authority Key Identifier: keyid:AC:E2:8D:AB:E5:36:49:63:7F:A6:E4:E3:21:DE:1B:63:46:3B:83:CF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9186249/A1F2343CD17011EEA6151C4DC4F9AE02/rOKNq-U2SWN_puTjId4bY0Y7g88.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rOKNq-U2SWN_puTjId4bY0Y7g88.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9186249/A1F2343CD17011EEA6151C4DC4F9AE02/rOKNq-U2SWN_puTjId4bY0Y7g88.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a0:9b:30:d1:a5:1a:80:a5:ce:5b:cb:97:6b:95:75:c8:f3:fa: 67:16:f4:c3:7f:df:60:91:88:28:a0:d6:94:42:5f:49:ff:fa: a7:d1:b0:4a:c7:b6:14:46:b3:52:ed:1d:03:20:dc:c6:b6:86: e5:df:83:13:21:18:16:00:5b:d2:88:6c:b5:5a:9f:7a:de:a8: cd:48:3d:5b:9b:83:1a:8c:77:92:95:e8:59:1f:f9:75:92:49: 6d:71:6c:99:27:e3:22:50:f5:a6:0b:f0:51:5e:be:4a:d7:7f: 9f:52:76:e6:71:e1:84:99:89:6a:73:9d:eb:e6:61:2c:12:40: c8:3c:cb:83:0c:52:d8:40:78:9e:0f:8e:a4:c5:03:ab:5d:c2: 60:cf:02:c0:40:32:8e:a3:2d:9f:b4:84:b0:8d:5a:c8:e6:1d: 99:80:23:39:9f:9c:71:57:6d:14:7e:f1:0b:97:6b:a5:f8:d7: f4:bb:24:dd:fe:bd:b2:b6:90:af:fd:93:44:83:b6:11:29:47: 6d:37:2d:60:5c:5a:a9:5a:19:94:c1:61:b9:bb:e4:9b:9e:62: 32:f6:6b:24:8a:5d:da:e4:41:23:f1:ff:58:d7:70:65:3c:5a: a2:12:ef:66:cc:17:f8:99:0d:6b:44:c9:bd:75:f3:77:7a:a7: 86:80:82:f3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAOswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODYyNDkxMTAvBgNVBAUTKEFDRTI4REFCRTUzNjQ5NjM3RkE2RTRFMzIxREUxQjYz NDYzQjgzQ0YwHhcNMjUwNTEzMDQzNzU0WhcNMjUwNTIwMDQzNzU0WjAYMRYwFAYD VQQDEw02ODIyY2NhMi0wNjdlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzsy8y3kG+KCxutQnwxLrqdLE2fhMCqM5pAvJwvd25kObeNrbEYuz8G/7X+ut DAYMuMzczZOpynoeWPQyoT8syL87UMw3r63cznRp1RK8l/38+bMud6Jh4QdjmYXu PPJSzi+nOPizNSoifQ3FbwdwZ3O+gUbq/NBLr/UVOhL54x3sT5EE4Ad3GEN0iGoo bZtIMuuzXQqmWtHFYjx3gaOamPmQF6qhddiSSx384zF09nwWjSZt3FvxwJyJ8atX KYQFobs6dPvGO130VSlvnHHW3J62L/lfqSwIgiJB5zm4ghIFk3/1E1PHDHZ6Rypx bio8OmEHW41Go3BgVZGlG1lUFQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHE39A79 fAjcpd3aEP/OZypPxWpgMB8GA1UdIwQYMBaAFKzijavlNkljf6bk4yHeG2NGO4PP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NjI0OS9BMUYyMzQzQ0Qx NzAxMUVFQTYxNTFDNERDNEY5QUUwMi9yT0tOcS1VMlNXTl9wdVRqSWQ0YlkwWTdn ODguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JPS05xLVUyU1dOX3B1VGpJZDRiWTBZN2c4OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NjI0OS9BMUYyMzQzQ0QxNzAxMUVFQTYxNTFDNERDNEY5QUUwMi9yT0tOcS1VMlNX Tl9wdVRqSWQ0YlkwWTdnODgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCgmzDRpRqApc5by5drlXXI8/pnFvTDf99gkYgooNaUQl9J//qn0bBK x7YURrNS7R0DINzGtobl34MTIRgWAFvSiGy1Wp963qjNSD1bm4MajHeSlehZH/l1 kkltcWyZJ+MiUPWmC/BRXr5K13+fUnbmceGEmYlqc53r5mEsEkDIPMuDDFLYQHie D46kxQOrXcJgzwLAQDKOoy2ftISwjVrI5h2ZgCM5n5xxV20UfvELl2ul+Nf0uyTd /r2ytpCv/ZNEg7YRKUdtNy1gXFqpWhmUwWG5u+SbnmIy9mskil3a5EEj8f9Y13Bl PFqiEu9mzBf4mQ1rRMm9dfN3eqeGgILz -----END CERTIFICATE-----Generated at Wed May 14 08:21:05 2025 by rpki-client