$ rpki-client -vvf rpki.apnic.net/member_repository/A916899E/6C135434C9F311EDA5849269C4F9AE02/SHy2MxcaDd84rLtq0e2K5pZVhgo.mft File: SHy2MxcaDd84rLtq0e2K5pZVhgo.mft (raw, json) Hash identifier: ywkB/KlDqEekr2E9eoyYMvSUoFmIqb7NWD+FH2fDxg4= Subject key identifier: 3C:1E:C1:50:6C:E4:31:C6:C0:42:05:3A:32:CA:D6:56:94:F3:96:AF Authority key identifier: 48:7C:B6:33:17:1A:0D:DF:38:AC:BB:6A:D1:ED:8A:E6:96:55:86:0A Certificate issuer: /CN=A916899E/serialNumber=487CB633171A0DDF38ACBB6AD1ED8AE69655860A Certificate serial: 017F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SHy2MxcaDd84rLtq0e2K5pZVhgo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916899E/6C135434C9F311EDA5849269C4F9AE02/SHy2MxcaDd84rLtq0e2K5pZVhgo.mft Manifest number: 017C Signing time: Sat 29 Mar 2025 03:14:28 +0000 Manifest this update: Sat 29 Mar 2025 03:14:28 +0000 Manifest next update: Sat 05 Apr 2025 03:14:28 +0000 Files and hashes: 1: SHy2MxcaDd84rLtq0e2K5pZVhgo.crl (hash: /qI8Mov8p3SwOXviBinoRLc3yFf4qlyLGANZ3b2jXc4=) 2: 96540A72CD0E11ED9A9CAE58C4F9AE02.roa (hash: wjMufEaDH/y4s6T5wRstNmQqRorcPZgCttuLv7sLSbk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916899E/6C135434C9F311EDA5849269C4F9AE02/SHy2MxcaDd84rLtq0e2K5pZVhgo.crl rsync://rpki.apnic.net/member_repository/A916899E/6C135434C9F311EDA5849269C4F9AE02/SHy2MxcaDd84rLtq0e2K5pZVhgo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SHy2MxcaDd84rLtq0e2K5pZVhgo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 05 Apr 2025 03:14:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 383 (0x17f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916899E Validity Not Before: Mar 29 03:14:28 2025 GMT Not After : Apr 5 03:14:28 2025 GMT Subject: CN=67e76594-d599 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:1d:5c:4a:35:0f:dc:6d:2a:21:a8:17:1f:98: 5e:8f:d5:1f:50:55:08:4b:5a:98:5f:57:3c:2b:f0: 07:59:aa:dc:1f:90:e5:d4:07:48:93:a0:d3:4a:1e: 50:a2:3a:c6:c0:05:7e:6d:01:e0:a6:1a:30:97:af: 17:4a:94:6d:11:b8:df:74:58:06:32:36:06:ea:9c: df:a0:64:1d:f0:f1:f4:ab:ea:6f:cb:91:74:40:1e: cb:28:b1:2a:c3:e9:e8:73:0d:ee:46:fc:e5:9c:3e: da:bd:50:76:7f:9e:c5:09:b6:4c:33:20:29:f5:7b: fb:3e:6d:c2:9e:9d:77:9b:9a:70:36:23:da:18:77: 50:f3:2e:c5:1f:d5:1b:48:ad:60:7b:fd:21:c2:51: 1e:7e:68:41:ef:62:2b:f8:0b:29:38:af:61:82:27: 2a:85:76:87:1a:ce:ef:5b:4b:f8:99:27:b5:7b:ac: a7:dd:ac:f1:ba:c6:77:79:60:00:8a:f6:8e:ca:91: d3:36:70:e2:8e:49:12:87:72:e8:56:3f:38:42:82: 6b:31:34:02:cc:19:25:c2:21:42:50:de:4a:cd:3f: e7:60:dc:13:40:63:75:83:c2:7b:44:a3:ff:ae:d4: 6c:86:3e:7a:be:89:a1:67:79:35:14:e8:13:41:36: e8:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3C:1E:C1:50:6C:E4:31:C6:C0:42:05:3A:32:CA:D6:56:94:F3:96:AF X509v3 Authority Key Identifier: keyid:48:7C:B6:33:17:1A:0D:DF:38:AC:BB:6A:D1:ED:8A:E6:96:55:86:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916899E/6C135434C9F311EDA5849269C4F9AE02/SHy2MxcaDd84rLtq0e2K5pZVhgo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SHy2MxcaDd84rLtq0e2K5pZVhgo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916899E/6C135434C9F311EDA5849269C4F9AE02/SHy2MxcaDd84rLtq0e2K5pZVhgo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 90:42:b3:de:ce:aa:2f:bf:12:e4:a9:1d:3e:91:28:0b:ce:78: 8e:39:a5:01:31:38:38:7e:9c:9f:bf:ab:52:c9:b3:1b:4d:cd: 77:cc:55:62:8f:1b:9c:d4:7a:80:84:9a:82:8d:e6:ef:e4:4a: 89:cd:99:fe:c7:76:4a:24:69:cd:0b:ce:fa:97:28:ec:65:92: 6f:11:3c:90:85:1d:3d:7e:e7:fc:26:b8:27:83:23:f2:61:39: 03:7a:4b:aa:ca:5d:53:c9:a6:91:a2:fd:72:2a:8d:3f:eb:8f: ab:ed:1b:57:46:b9:3c:90:a6:ba:1b:10:22:b8:06:0b:6b:fa: 83:da:5d:c8:6f:18:d8:92:a4:4a:43:a0:69:98:f9:d7:0e:69: f2:78:bf:ac:7b:9f:ff:2a:06:b2:55:ec:dc:b6:50:30:cc:c7: 73:99:8a:47:b1:42:23:9d:44:5f:9d:a8:34:7a:2e:8c:2d:23: 9b:eb:a3:af:f3:48:e6:1d:fb:69:01:a8:83:1b:43:7d:2d:e4: 3f:ea:9c:27:50:f0:e0:03:33:9c:cf:7f:9f:58:08:3b:9c:f4: 29:7d:c8:36:92:b2:02:19:4b:51:fc:af:2a:25:23:41:94:38: 74:4a:7d:12:1e:8c:2b:97:1b:a9:41:f4:dd:36:9f:14:38:81: 12:76:f0:33 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAX8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Njg5OUUxMTAvBgNVBAUTKDQ4N0NCNjMzMTcxQTBEREYzOEFDQkI2QUQxRUQ4QUU2 OTY1NTg2MEEwHhcNMjUwMzI5MDMxNDI4WhcNMjUwNDA1MDMxNDI4WjAYMRYwFAYD VQQDEw02N2U3NjU5NC1kNTk5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyB1cSjUP3G0qIagXH5hej9UfUFUIS1qYX1c8K/AHWarcH5Dl1AdIk6DTSh5Q ojrGwAV+bQHgphowl68XSpRtEbjfdFgGMjYG6pzfoGQd8PH0q+pvy5F0QB7LKLEq w+nocw3uRvzlnD7avVB2f57FCbZMMyAp9Xv7Pm3Cnp13m5pwNiPaGHdQ8y7FH9Ub SK1ge/0hwlEefmhB72Ir+AspOK9hgicqhXaHGs7vW0v4mSe1e6yn3azxusZ3eWAA ivaOypHTNnDijkkSh3LoVj84QoJrMTQCzBklwiFCUN5KzT/nYNwTQGN1g8J7RKP/ rtRshj56vomhZ3k1FOgTQTbo3wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDwewVBs 5DHGwEIFOjLK1laU85avMB8GA1UdIwQYMBaAFEh8tjMXGg3fOKy7atHtiuaWVYYK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2ODk5RS82QzEzNTQzNEM5 RjMxMUVEQTU4NDkyNjlDNEY5QUUwMi9TSHkyTXhjYURkODRyTHRxMGUySzVwWlZo Z28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1NIeTJNeGNhRGQ4NHJMdHEwZTJLNXBaVmhnby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 ODk5RS82QzEzNTQzNEM5RjMxMUVEQTU4NDkyNjlDNEY5QUUwMi9TSHkyTXhjYURk ODRyTHRxMGUySzVwWlZoZ28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCQQrPezqovvxLkqR0+kSgLzniOOaUBMTg4fpyfv6tSybMbTc13zFVi jxuc1HqAhJqCjebv5EqJzZn+x3ZKJGnNC876lyjsZZJvETyQhR09fuf8JrgngyPy YTkDekuqyl1TyaaRov1yKo0/64+r7RtXRrk8kKa6GxAiuAYLa/qD2l3IbxjYkqRK Q6BpmPnXDmnyeL+se5//KgayVezctlAwzMdzmYpHsUIjnURfnag0ei6MLSOb66Ov 80jmHftpAaiDG0N9LeQ/6pwnUPDgAzOcz3+fWAg7nPQpfcg2krICGUtR/K8qJSNB lDh0Sn0SHowrlxupQfTdNp8UOIESdvAz -----END CERTIFICATE-----Generated at Fri Apr 4 22:17:48 2025 by rpki-client