$ rpki-client -vvf rpki.apnic.net/member_repository/A919FA55/0F9E616E40FC11EEB8206744C4F9AE02/YCdrQR9t9pTdNkxP04LyXJ5qYGI.mft File: YCdrQR9t9pTdNkxP04LyXJ5qYGI.mft (raw, json) Hash identifier: e4Ec9nBpGvcc3ztWObY5Y8QC1PM7fBjKMq5Lpj23yIw= Subject key identifier: E3:63:55:FB:F0:A1:85:A4:B0:0A:E5:1B:EF:12:59:A5:4C:60:55:A6 Authority key identifier: 60:27:6B:41:1F:6D:F6:94:DD:36:4C:4F:D3:82:F2:5C:9E:6A:60:62 Certificate issuer: /CN=A919FA55/serialNumber=60276B411F6DF694DD364C4FD382F25C9E6A6062 Certificate serial: 0152 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YCdrQR9t9pTdNkxP04LyXJ5qYGI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919FA55/0F9E616E40FC11EEB8206744C4F9AE02/YCdrQR9t9pTdNkxP04LyXJ5qYGI.mft Manifest number: 014C Signing time: Thu 15 May 2025 03:40:23 +0000 Manifest this update: Thu 15 May 2025 03:40:22 +0000 Manifest next update: Thu 22 May 2025 03:40:22 +0000 Files and hashes: 1: YCdrQR9t9pTdNkxP04LyXJ5qYGI.crl (hash: x6YC5OXKK+vo5O5tdYudxm6611b1BSK/1RVoeuZ1hAs=) 2: 730BFF8C428B11EEB9A5EA63C4F9AE02.roa (hash: kkjE94BBiiWiAJ9He43Jc/0GO/LlMOG+ydM9xjAZ/oQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919FA55/0F9E616E40FC11EEB8206744C4F9AE02/YCdrQR9t9pTdNkxP04LyXJ5qYGI.crl rsync://rpki.apnic.net/member_repository/A919FA55/0F9E616E40FC11EEB8206744C4F9AE02/YCdrQR9t9pTdNkxP04LyXJ5qYGI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YCdrQR9t9pTdNkxP04LyXJ5qYGI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 22 May 2025 03:40:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 338 (0x152) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919FA55, serialNumber=60276B411F6DF694DD364C4FD382F25C9E6A6062 Validity Not Before: May 15 03:40:22 2025 GMT Not After : May 22 03:40:22 2025 GMT Subject: CN=68256227-37a9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:ef:35:c4:38:e0:e3:40:e1:8b:92:fb:a0:cb: 3c:42:a9:70:f5:f4:a9:dd:14:e5:09:1d:ef:dd:ce: d2:70:51:0c:e1:3b:25:e8:17:43:9f:df:05:c8:82: ee:cd:e5:85:4c:0d:04:1c:2e:a6:b5:ad:c4:49:08: 70:4f:f6:f7:a5:09:4b:48:1b:98:af:9f:c5:21:be: 14:9c:6e:db:af:a4:fa:fc:39:79:8c:e8:69:e2:6c: dc:88:b5:83:37:75:a2:18:94:8b:cf:3f:d4:65:2c: c0:2d:f2:f6:43:be:07:0a:34:10:05:93:7d:0e:3b: fe:71:09:52:da:3b:66:9f:f5:6e:90:f7:91:75:bd: 2f:99:10:76:1b:0a:24:97:00:c8:49:21:40:e4:c0: b7:ec:a9:4f:48:1d:cd:c8:a8:10:76:fc:20:c7:0b: 79:42:fd:ea:d4:ce:3a:51:57:49:b3:69:a5:92:7f: df:eb:61:d6:8c:6f:98:82:08:05:76:01:31:c9:27: 06:9b:07:57:bd:03:63:91:4f:67:26:82:b5:f2:ac: 7d:7b:fc:93:52:2c:36:79:a5:8d:29:24:cd:56:60: 95:46:bb:c1:ab:4b:39:43:fa:17:d5:da:2a:37:27: 0d:cc:0d:82:c3:d8:08:9f:ad:ed:44:59:c8:a5:5d: c5:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E3:63:55:FB:F0:A1:85:A4:B0:0A:E5:1B:EF:12:59:A5:4C:60:55:A6 X509v3 Authority Key Identifier: keyid:60:27:6B:41:1F:6D:F6:94:DD:36:4C:4F:D3:82:F2:5C:9E:6A:60:62 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919FA55/0F9E616E40FC11EEB8206744C4F9AE02/YCdrQR9t9pTdNkxP04LyXJ5qYGI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YCdrQR9t9pTdNkxP04LyXJ5qYGI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919FA55/0F9E616E40FC11EEB8206744C4F9AE02/YCdrQR9t9pTdNkxP04LyXJ5qYGI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption bc:55:a0:27:78:b0:bf:95:3a:95:d8:4f:ae:95:5a:a6:d3:ce: b2:37:b0:76:dc:20:64:d6:5c:d0:85:6f:c3:9b:3b:1e:c7:82: 77:5b:9a:96:7d:f5:e8:93:1f:65:aa:5f:41:67:dd:6e:f3:3d: 46:9f:96:56:62:73:17:8c:2b:a6:f1:52:40:06:6a:fe:46:9b: 1e:9f:d5:e5:44:37:f3:8f:a5:a2:5b:6e:ee:d6:38:a6:90:5c: 74:37:7b:fc:97:b1:a0:08:49:01:2c:72:de:4a:4f:33:2e:0d: 1e:71:2c:6e:a9:3a:eb:c0:4b:3e:5f:2d:24:82:c6:15:f2:48: ed:91:e7:77:a4:1c:8c:44:bc:ac:d9:a7:f9:c1:13:89:64:e8: a2:53:2f:f5:96:61:06:6d:45:08:14:61:ec:fb:b2:c9:37:83: e0:80:e0:64:81:39:22:5e:a7:8f:58:de:c6:b4:5c:80:64:05: ac:ed:db:7f:bb:2d:12:16:33:05:38:9c:35:9d:53:7c:84:2a: 49:e2:82:bc:c6:eb:31:5b:78:4c:97:2a:38:0c:4f:97:70:cf: 93:e1:b0:0d:19:a6:24:81:0b:69:81:6e:98:55:76:1d:e3:eb: 6d:90:e9:46:04:a7:05:6c:22:84:b9:54:8f:4c:ec:31:c5:fd: 01:48:16:c3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAVIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUZBNTUxMTAvBgNVBAUTKDYwMjc2QjQxMUY2REY2OTRERDM2NEM0RkQzODJGMjVD OUU2QTYwNjIwHhcNMjUwNTE1MDM0MDIyWhcNMjUwNTIyMDM0MDIyWjAYMRYwFAYD VQQDEw02ODI1NjIyNy0zN2E5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvO81xDjg40Dhi5L7oMs8Qqlw9fSp3RTlCR3v3c7ScFEM4Tsl6BdDn98FyILu zeWFTA0EHC6mta3ESQhwT/b3pQlLSBuYr5/FIb4UnG7br6T6/Dl5jOhp4mzciLWD N3WiGJSLzz/UZSzALfL2Q74HCjQQBZN9Djv+cQlS2jtmn/VukPeRdb0vmRB2Gwok lwDISSFA5MC37KlPSB3NyKgQdvwgxwt5Qv3q1M46UVdJs2mlkn/f62HWjG+YgggF dgExyScGmwdXvQNjkU9nJoK18qx9e/yTUiw2eaWNKSTNVmCVRrvBq0s5Q/oX1doq NycNzA2Cw9gIn63tRFnIpV3FHQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFONjVfvw oYWksArlG+8SWaVMYFWmMB8GA1UdIwQYMBaAFGAna0EfbfaU3TZMT9OC8lyeamBi MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5RkE1NS8wRjlFNjE2RTQw RkMxMUVFQjgyMDY3NDRDNEY5QUUwMi9ZQ2RyUVI5dDlwVGROa3hQMDRMeVhKNXFZ R0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1lDZHJRUjl0OXBUZE5reFAwNEx5WEo1cVlHSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 RkE1NS8wRjlFNjE2RTQwRkMxMUVFQjgyMDY3NDRDNEY5QUUwMi9ZQ2RyUVI5dDlw VGROa3hQMDRMeVhKNXFZR0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC8VaAneLC/lTqV2E+ulVqm086yN7B23CBk1lzQhW/Dmzsex4J3W5qW ffXokx9lql9BZ91u8z1Gn5ZWYnMXjCum8VJABmr+Rpsen9XlRDfzj6WiW27u1jim kFx0N3v8l7GgCEkBLHLeSk8zLg0ecSxuqTrrwEs+Xy0kgsYV8kjtked3pByMRLys 2af5wROJZOiiUy/1lmEGbUUIFGHs+7LJN4PggOBkgTkiXqePWN7GtFyAZAWs7dt/ uy0SFjMFOJw1nVN8hCpJ4oK8xusxW3hMlyo4DE+XcM+T4bANGaYkgQtpgW6YVXYd 4+ttkOlGBKcFbCKEuVSPTOwxxf0BSBbD -----END CERTIFICATE-----Generated at Sat May 17 02:04:49 2025 by rpki-client