$ rpki-client -vvf rpki.apnic.net/member_repository/A918A05D/C1EFB0804E2511EEAAAE6D49C4F9AE02/D1ReYnPXyX6ZlUEfdtXE8Aa7UYY.mft File: D1ReYnPXyX6ZlUEfdtXE8Aa7UYY.mft (raw, json) Hash identifier: ZJMDeq4Q64HNJ1cihnJOTNphskZYvfjZ7aWp0YF2AnE= Subject key identifier: 9C:1C:E9:40:95:3F:BE:AA:E8:C6:09:74:AB:DC:98:6E:88:1D:9C:72 Authority key identifier: 0F:54:5E:62:73:D7:C9:7E:99:95:41:1F:76:D5:C4:F0:06:BB:51:86 Certificate issuer: /CN=A918A05D/serialNumber=0F545E6273D7C97E9995411F76D5C4F006BB5186 Certificate serial: 0172 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D1ReYnPXyX6ZlUEfdtXE8Aa7UYY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918A05D/C1EFB0804E2511EEAAAE6D49C4F9AE02/D1ReYnPXyX6ZlUEfdtXE8Aa7UYY.mft Manifest number: 015B Signing time: Thu 15 May 2025 03:45:45 +0000 Manifest this update: Thu 15 May 2025 03:45:44 +0000 Manifest next update: Thu 22 May 2025 03:45:44 +0000 Files and hashes: 1: D1ReYnPXyX6ZlUEfdtXE8Aa7UYY.crl (hash: sH/OVc7zx0OVquaNIsy9Vf3AFMm9BrPbAOfW2LJZHYw=) 2: E506BE2CF03811EFAD4C2257C4F9AE02.roa (hash: l3vFzxttEXhfOuZjeQF8CrGkxbV17axCXSipPqSoFKA=) 3: B67EFE26A2DB11EEABACB981C4F9AE02.roa (hash: ra0yVXf7WKyMc/TV/KsDqYCa6PLBvgSOfzPKvq7nVBw=) 4: A045C92CB46611EEAFEE8758C4F9AE02.roa (hash: VlIb3exIwpSPjFwHyuIwV8wlOpGvSIVB8uNPjyxZHoM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918A05D/C1EFB0804E2511EEAAAE6D49C4F9AE02/D1ReYnPXyX6ZlUEfdtXE8Aa7UYY.crl rsync://rpki.apnic.net/member_repository/A918A05D/C1EFB0804E2511EEAAAE6D49C4F9AE02/D1ReYnPXyX6ZlUEfdtXE8Aa7UYY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D1ReYnPXyX6ZlUEfdtXE8Aa7UYY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 22 May 2025 03:45:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 370 (0x172) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918A05D, serialNumber=0F545E6273D7C97E9995411F76D5C4F006BB5186 Validity Not Before: May 15 03:45:44 2025 GMT Not After : May 22 03:45:44 2025 GMT Subject: CN=68256368-23e5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:9a:04:c4:81:92:b8:4e:6d:01:a4:47:fc:36: 95:10:9f:0a:bb:7f:ac:a2:1e:b5:d8:70:56:3e:c2: f1:ee:21:e5:b4:10:44:41:6d:9c:4b:85:eb:37:63: 39:45:d1:7c:e3:9a:14:de:91:55:84:21:e6:aa:e6: 12:dc:c0:3f:0e:6e:8d:80:cb:98:9a:32:a9:13:d3: fe:07:77:1f:61:a2:56:a1:20:3c:ab:09:e4:ba:6b: fa:ba:59:6b:8a:c8:6e:9d:a9:5b:a6:e6:77:e4:04: bf:1f:d7:0a:3c:63:5e:54:6d:f5:e2:aa:60:0e:0c: be:36:d4:56:a8:35:46:41:9e:0e:a2:4b:4b:20:6e: de:34:11:cc:3e:0a:87:af:97:04:de:87:90:f5:63: 69:85:ea:9e:0f:a6:19:32:70:e0:53:11:0d:ee:c7: 26:8d:aa:0e:e1:78:ba:9a:b9:5d:d8:81:60:a2:f5: fa:2a:36:a6:75:50:85:5c:31:45:3e:d4:c5:08:4b: 14:33:46:c2:2b:58:03:25:38:86:16:cb:eb:20:be: 38:d0:c6:11:a9:1f:f2:7a:59:75:e8:0c:69:2c:45: 73:ac:1c:3e:57:a3:7d:bf:6a:d0:af:8b:a3:db:a1: c0:b9:01:e1:cc:a8:68:8c:6b:ca:c4:17:10:0c:d9: d6:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9C:1C:E9:40:95:3F:BE:AA:E8:C6:09:74:AB:DC:98:6E:88:1D:9C:72 X509v3 Authority Key Identifier: keyid:0F:54:5E:62:73:D7:C9:7E:99:95:41:1F:76:D5:C4:F0:06:BB:51:86 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918A05D/C1EFB0804E2511EEAAAE6D49C4F9AE02/D1ReYnPXyX6ZlUEfdtXE8Aa7UYY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D1ReYnPXyX6ZlUEfdtXE8Aa7UYY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918A05D/C1EFB0804E2511EEAAAE6D49C4F9AE02/D1ReYnPXyX6ZlUEfdtXE8Aa7UYY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption aa:77:53:67:72:2f:39:41:f2:6d:07:30:8e:e8:e9:88:ad:25: 6c:6d:53:fe:f8:29:1d:96:5d:d8:cf:23:c3:ef:69:bb:00:5d: d6:17:2f:85:81:61:b7:6b:74:e2:e2:ac:ac:c3:d6:c7:47:12: 46:84:61:22:e7:1e:44:4b:99:4e:d3:f3:50:c4:37:ce:c8:9c: d8:6d:41:b6:2c:f9:ff:44:0a:cc:3b:42:0d:ab:d6:74:ac:ee: b1:65:13:b8:af:41:31:99:5d:df:39:11:0c:6e:ca:d8:3e:ff: d6:4e:4c:fe:9a:79:3d:80:1b:61:6c:9a:d0:79:56:a4:36:c5: 11:76:10:d2:f9:47:12:aa:16:43:fe:54:a0:32:3e:54:41:a0: 8d:1a:12:b3:9d:16:62:77:c5:b1:6d:e0:dc:1f:6d:8b:d6:9a: 26:5d:85:cc:df:f1:f4:b4:d1:c8:33:60:a0:d8:b6:4d:93:13: 35:40:02:50:25:19:8b:5b:b4:e7:0f:37:e5:ae:8e:1a:02:17: fe:9d:f5:33:2c:de:6e:19:30:61:d7:c8:20:38:1a:07:65:64: 95:23:d3:d4:06:fc:81:27:3a:62:b4:18:17:9a:6e:01:29:68: 33:c0:67:c7:65:63:25:07:5e:f9:62:4e:73:91:51:83:a0:d0: b1:4e:ec:a8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAXIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEEwNUQxMTAvBgNVBAUTKDBGNTQ1RTYyNzNEN0M5N0U5OTk1NDExRjc2RDVDNEYw MDZCQjUxODYwHhcNMjUwNTE1MDM0NTQ0WhcNMjUwNTIyMDM0NTQ0WjAYMRYwFAYD VQQDEw02ODI1NjM2OC0yM2U1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4poExIGSuE5tAaRH/DaVEJ8Ku3+soh612HBWPsLx7iHltBBEQW2cS4XrN2M5 RdF845oU3pFVhCHmquYS3MA/Dm6NgMuYmjKpE9P+B3cfYaJWoSA8qwnkumv6ullr ishunalbpuZ35AS/H9cKPGNeVG314qpgDgy+NtRWqDVGQZ4OoktLIG7eNBHMPgqH r5cE3oeQ9WNpheqeD6YZMnDgUxEN7scmjaoO4Xi6mrld2IFgovX6KjamdVCFXDFF PtTFCEsUM0bCK1gDJTiGFsvrIL440MYRqR/yell16AxpLEVzrBw+V6N9v2rQr4uj 26HAuQHhzKhojGvKxBcQDNnWhwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJwc6UCV P76q6MYJdKvcmG6IHZxyMB8GA1UdIwQYMBaAFA9UXmJz18l+mZVBH3bVxPAGu1GG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4QTA1RC9DMUVGQjA4MDRF MjUxMUVFQUFBRTZENDlDNEY5QUUwMi9EMVJlWW5QWHlYNlpsVUVmZHRYRThBYTdV WVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0QxUmVZblBYeVg2WmxVRWZkdFhFOEFhN1VZWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 QTA1RC9DMUVGQjA4MDRFMjUxMUVFQUFBRTZENDlDNEY5QUUwMi9EMVJlWW5QWHlY NlpsVUVmZHRYRThBYTdVWVkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCqd1Nnci85QfJtBzCO6OmIrSVsbVP++Ckdll3YzyPD72m7AF3WFy+F gWG3a3Ti4qysw9bHRxJGhGEi5x5ES5lO0/NQxDfOyJzYbUG2LPn/RArMO0INq9Z0 rO6xZRO4r0ExmV3fOREMbsrYPv/WTkz+mnk9gBthbJrQeVakNsURdhDS+UcSqhZD /lSgMj5UQaCNGhKznRZid8WxbeDcH22L1pomXYXM3/H0tNHIM2Cg2LZNkxM1QAJQ JRmLW7TnDzflro4aAhf+nfUzLN5uGTBh18ggOBoHZWSVI9PUBvyBJzpitBgXmm4B KWgzwGfHZWMlB175Yk5zkVGDoNCxTuyo -----END CERTIFICATE-----Generated at Thu May 15 12:16:30 2025 by rpki-client