$ rpki-client -vvf rpki.apnic.net/member_repository/A9198996/66030F5ED06011ECBA40FC83C4F9AE02/aSE1YIaDdV6U2OylfYsLNY7OFxg.mft File: aSE1YIaDdV6U2OylfYsLNY7OFxg.mft (raw, json) Hash identifier: rCDlKHBCHSYOVZeth88j0eL78dFt+vm3R8M889vcoMI= Subject key identifier: 3C:F3:6A:85:87:09:AB:50:B1:E3:E7:2F:F2:75:72:9A:40:CE:D7:2D Authority key identifier: 69:21:35:60:86:83:75:5E:94:D8:EC:A5:7D:8B:0B:35:8E:CE:17:18 Certificate issuer: /CN=A9198996/serialNumber=692135608683755E94D8ECA57D8B0B358ECE1718 Certificate serial: 0347 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aSE1YIaDdV6U2OylfYsLNY7OFxg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9198996/66030F5ED06011ECBA40FC83C4F9AE02/aSE1YIaDdV6U2OylfYsLNY7OFxg.mft Manifest number: 0329 Signing time: Thu 15 May 2025 01:14:11 +0000 Manifest this update: Thu 15 May 2025 01:14:10 +0000 Manifest next update: Thu 22 May 2025 01:14:10 +0000 Files and hashes: 1: aSE1YIaDdV6U2OylfYsLNY7OFxg.crl (hash: 0h5PGMqbeLn5DEDtaftBtAFQy6d8H+8vL6lILlv8bEg=) 2: EFEEF8165BB211EE88BB1945C4F9AE02.roa (hash: i6v8Xf+0KkaEGhb/TJ+saEyWBQY2o3H9ZszygH46Hd4=) 3: 593105685BB711EE8E69584CC4F9AE02.roa (hash: lkS26BT0D3kjQ+vvaIE4qPZCY0e62oxAQkxFZOHBmsQ=) 4: D0D44F9A7A7311EF9B70B061C4F9AE02.roa (hash: P57quaW3DlfcRg6H6EBZQJvqJnGiJw0/9o3VwlNBZ7w=) 5: 3E6E7A0C5FFB11EDBDF5A627C4F9AE02.roa (hash: yRSOmcUbcPon9jEF0ergwI8+pr3n7/XtmbTEl4aDVyo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9198996/66030F5ED06011ECBA40FC83C4F9AE02/aSE1YIaDdV6U2OylfYsLNY7OFxg.crl rsync://rpki.apnic.net/member_repository/A9198996/66030F5ED06011ECBA40FC83C4F9AE02/aSE1YIaDdV6U2OylfYsLNY7OFxg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aSE1YIaDdV6U2OylfYsLNY7OFxg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 22 May 2025 01:14:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 839 (0x347) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9198996, serialNumber=692135608683755E94D8ECA57D8B0B358ECE1718 Validity Not Before: May 15 01:14:10 2025 GMT Not After : May 22 01:14:10 2025 GMT Subject: CN=68253fe2-2f50 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:73:8e:9b:62:d9:b9:a7:84:57:63:15:e4:54: d1:d2:d4:11:ae:d3:21:f8:82:d9:ad:76:78:62:5d: 0d:ea:da:d1:22:51:2b:29:85:09:4d:85:b4:32:ea: 06:7e:02:b9:b6:d0:1b:2e:50:48:4f:b6:cf:8c:73: d4:1a:f7:56:e6:08:6b:41:fb:44:cb:51:69:75:7d: f1:23:f2:09:6f:65:19:d8:0d:1f:17:dd:ce:40:d7: be:81:dc:ee:ff:18:98:4d:6c:dc:c4:9d:cb:54:6c: 8c:c1:c1:42:f3:59:43:d2:8e:27:b7:5a:0c:15:42: 7c:b9:04:b5:73:fd:87:bd:77:df:c1:1d:f4:31:0a: 25:90:f4:9f:d3:57:7c:9b:2d:92:50:9a:5b:0e:bd: 23:aa:de:ce:53:47:4f:7c:55:15:f6:56:5e:24:88: df:51:f0:36:f3:5d:0e:cf:4a:07:44:9b:88:32:15: ad:52:53:3d:36:bc:bd:bc:99:ab:c9:88:0e:6b:21: 11:93:5c:c7:e1:5e:53:80:03:b3:24:56:47:71:a1: 61:75:5a:02:54:31:94:4d:b4:d8:a5:f9:ac:61:f2: 0d:53:74:2a:63:99:c0:f4:3d:89:08:74:54:07:59: 62:49:b4:c6:f5:6a:4d:f0:40:87:ff:b1:a8:c9:03: 90:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3C:F3:6A:85:87:09:AB:50:B1:E3:E7:2F:F2:75:72:9A:40:CE:D7:2D X509v3 Authority Key Identifier: keyid:69:21:35:60:86:83:75:5E:94:D8:EC:A5:7D:8B:0B:35:8E:CE:17:18 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9198996/66030F5ED06011ECBA40FC83C4F9AE02/aSE1YIaDdV6U2OylfYsLNY7OFxg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aSE1YIaDdV6U2OylfYsLNY7OFxg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9198996/66030F5ED06011ECBA40FC83C4F9AE02/aSE1YIaDdV6U2OylfYsLNY7OFxg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a8:34:a5:32:ce:fb:65:75:1e:a2:ec:f1:2b:a4:65:a5:75:99: 95:d6:67:ad:81:62:f2:f8:43:13:93:92:c0:a5:32:91:ea:00: 6b:4f:33:67:b6:f0:a4:3e:1f:12:14:24:a3:ec:68:7a:90:f1: 0d:39:ed:8b:1e:75:e2:17:a6:e5:8a:3b:47:b5:3a:a8:3b:24: ff:ec:d4:cf:a3:e6:8d:d2:d9:94:71:79:b3:c2:62:78:c5:91: b9:0e:69:f1:e3:12:7c:ad:29:2a:de:17:a0:2a:48:ea:ea:49: b2:58:4c:96:0c:84:9b:60:d3:a1:9a:33:d7:07:0e:6d:ab:f0: 50:5c:26:c2:f0:20:df:28:2f:9d:66:7d:49:0d:e0:2d:f4:53: 5f:a7:2a:48:21:69:f1:f7:1b:10:33:26:b7:af:6d:75:4d:05: a7:d0:56:e3:55:70:d9:94:4e:eb:a4:ab:55:cd:5d:11:8f:e9: 4e:da:c1:44:c0:84:c1:1e:f8:3d:e4:77:51:a4:cf:62:74:25: 01:9c:67:54:a5:1a:d6:e8:8c:3e:f3:70:21:80:5c:4e:aa:cb: 65:92:78:2d:df:71:0e:23:3f:be:01:8e:b5:d3:6d:6d:a8:d1: 29:15:26:ce:e6:4f:40:1e:c3:bc:7b:ce:5e:9b:57:5d:f6:65: 3e:ac:1f:6f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA0cwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTg5OTYxMTAvBgNVBAUTKDY5MjEzNTYwODY4Mzc1NUU5NEQ4RUNBNTdEOEIwQjM1 OEVDRTE3MTgwHhcNMjUwNTE1MDExNDEwWhcNMjUwNTIyMDExNDEwWjAYMRYwFAYD VQQDEw02ODI1M2ZlMi0yZjUwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtnOOm2LZuaeEV2MV5FTR0tQRrtMh+ILZrXZ4Yl0N6trRIlErKYUJTYW0MuoG fgK5ttAbLlBIT7bPjHPUGvdW5ghrQftEy1FpdX3xI/IJb2UZ2A0fF93OQNe+gdzu /xiYTWzcxJ3LVGyMwcFC81lD0o4nt1oMFUJ8uQS1c/2HvXffwR30MQolkPSf01d8 my2SUJpbDr0jqt7OU0dPfFUV9lZeJIjfUfA2810Oz0oHRJuIMhWtUlM9Nry9vJmr yYgOayERk1zH4V5TgAOzJFZHcaFhdVoCVDGUTbTYpfmsYfINU3QqY5nA9D2JCHRU B1liSbTG9WpN8ECH/7GoyQOQaQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDzzaoWH CatQsePnL/J1cppAztctMB8GA1UdIwQYMBaAFGkhNWCGg3VelNjspX2LCzWOzhcY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5ODk5Ni82NjAzMEY1RUQw NjAxMUVDQkE0MEZDODNDNEY5QUUwMi9hU0UxWUlhRGRWNlUyT3lsZllzTE5ZN09G eGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FTRTFZSWFEZFY2VTJPeWxmWXNMTlk3T0Z4Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 ODk5Ni82NjAzMEY1RUQwNjAxMUVDQkE0MEZDODNDNEY5QUUwMi9hU0UxWUlhRGRW NlUyT3lsZllzTE5ZN09GeGcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCoNKUyzvtldR6i7PErpGWldZmV1metgWLy+EMTk5LApTKR6gBrTzNn tvCkPh8SFCSj7Gh6kPENOe2LHnXiF6blijtHtTqoOyT/7NTPo+aN0tmUcXmzwmJ4 xZG5Dmnx4xJ8rSkq3hegKkjq6kmyWEyWDISbYNOhmjPXBw5tq/BQXCbC8CDfKC+d Zn1JDeAt9FNfpypIIWnx9xsQMya3r211TQWn0FbjVXDZlE7rpKtVzV0Rj+lO2sFE wITBHvg95HdRpM9idCUBnGdUpRrW6Iw+83AhgFxOqstlkngt33EOIz++AY61021t qNEpFSbO5k9AHsO8e85em1dd9mU+rB9v -----END CERTIFICATE-----Generated at Thu May 15 22:59:36 2025 by rpki-client