$ rpki-client -vvf rpki.apnic.net/member_repository/A9163EDF/D8A7C736972211EE99AC337EC4F9AE02/dyPYVuUggiTyvImjgJd39SgzEvw.mft File: dyPYVuUggiTyvImjgJd39SgzEvw.mft (raw, json) Hash identifier: qC8Etyx2AdUmmSe1lMVhSkZjjMVW+68dx7t6i5II/oI= Subject key identifier: D9:25:8C:94:06:7A:3F:BC:C9:BE:08:94:07:82:69:6D:F5:91:F0:1B Authority key identifier: 77:23:D8:56:E5:20:82:24:F2:BC:89:A3:80:97:77:F5:28:33:12:FC Certificate issuer: /CN=A9163EDF/serialNumber=7723D856E5208224F2BC89A3809777F5283312FC Certificate serial: 0116 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dyPYVuUggiTyvImjgJd39SgzEvw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9163EDF/D8A7C736972211EE99AC337EC4F9AE02/dyPYVuUggiTyvImjgJd39SgzEvw.mft Manifest number: 0114 Signing time: Sat 31 May 2025 04:31:22 +0000 Manifest this update: Sat 31 May 2025 04:31:22 +0000 Manifest next update: Sat 07 Jun 2025 04:31:22 +0000 Files and hashes: 1: dyPYVuUggiTyvImjgJd39SgzEvw.crl (hash: fEU7NzeloGNrAp4YGXqIX5r+v1EOfua6cekOLSuENxQ=) 2: 7FB5CBF097DB11EE8E67BA41C4F9AE02.roa (hash: ZWPK2ab0Ef3qAN+iabKfnFGe44+77H2KgSLOA0dY0EQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9163EDF/D8A7C736972211EE99AC337EC4F9AE02/dyPYVuUggiTyvImjgJd39SgzEvw.crl rsync://rpki.apnic.net/member_repository/A9163EDF/D8A7C736972211EE99AC337EC4F9AE02/dyPYVuUggiTyvImjgJd39SgzEvw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dyPYVuUggiTyvImjgJd39SgzEvw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 04:31:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 278 (0x116) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9163EDF, serialNumber=7723D856E5208224F2BC89A3809777F5283312FC Validity Not Before: May 31 04:31:22 2025 GMT Not After : Jun 7 04:31:22 2025 GMT Subject: CN=683a861a-66f4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:d4:02:f4:7e:c8:d1:ef:83:90:8f:46:0e:16: af:bd:4b:39:05:4d:c2:ba:7b:2b:7c:54:2e:c3:b0: 8a:82:bd:1e:1a:ea:cb:36:fb:1d:8e:c9:ef:25:43: 32:fa:10:56:b9:1c:d8:4b:48:f5:a9:89:46:2e:10: f6:ac:75:ef:f0:e2:e4:0e:d9:be:42:60:74:90:10: 03:56:c2:b7:d8:65:e4:92:5d:09:f5:ac:30:35:15: ed:39:04:03:89:9d:1f:25:46:b8:be:a6:28:16:1b: cc:08:9a:d5:bf:32:3e:d5:65:78:f8:64:6a:81:2d: 1e:04:42:fd:1f:36:a0:c3:48:c9:78:62:e9:3e:ed: 29:b3:a3:63:d3:cd:dc:19:21:21:93:68:ef:90:27: 19:89:cc:22:d1:f8:8e:fc:65:e6:ab:b5:d8:58:b1: 33:f8:b5:5e:a9:af:07:34:dd:c8:b8:66:0d:27:9f: 8b:41:5f:3d:79:31:c8:c4:de:96:52:1e:7b:3d:73: be:37:9a:49:e3:fe:09:13:40:19:0b:af:76:59:a1: 78:9b:dd:3b:f3:fe:95:3e:3e:c9:47:dd:25:88:10: c7:d6:20:12:50:d2:8b:93:90:e6:03:c7:2b:32:c9: 60:2a:25:71:c6:b8:2d:9b:8d:a4:bd:db:48:cc:33: db:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D9:25:8C:94:06:7A:3F:BC:C9:BE:08:94:07:82:69:6D:F5:91:F0:1B X509v3 Authority Key Identifier: keyid:77:23:D8:56:E5:20:82:24:F2:BC:89:A3:80:97:77:F5:28:33:12:FC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9163EDF/D8A7C736972211EE99AC337EC4F9AE02/dyPYVuUggiTyvImjgJd39SgzEvw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dyPYVuUggiTyvImjgJd39SgzEvw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9163EDF/D8A7C736972211EE99AC337EC4F9AE02/dyPYVuUggiTyvImjgJd39SgzEvw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 08:71:fc:11:65:68:75:2e:07:39:7f:e4:ec:85:ea:48:52:7a: d4:85:ca:ab:1b:39:80:86:3f:ee:ba:ef:79:bd:f6:3e:ca:a6: 89:d9:f8:ee:d8:56:b8:09:9d:09:66:2a:b5:4a:16:7a:2b:54: 8d:78:6a:92:18:ac:08:80:fb:9b:ed:41:c8:94:b4:f8:6c:57: 3e:30:92:f6:9d:41:b4:15:9f:c6:88:a8:c1:22:7b:e4:b3:bc: b2:61:d8:db:e0:d5:e3:2a:fa:73:13:7b:18:81:a0:91:df:29: 20:7e:61:e1:67:ad:38:96:61:ac:8b:40:eb:09:e5:ef:70:4b: cb:42:e0:18:32:3b:fa:bc:f5:3d:62:3c:90:81:43:d9:86:23: fe:47:29:e9:40:eb:6d:b2:42:86:e8:58:27:03:f7:28:56:a4: 69:5c:df:33:3d:90:f0:24:b9:f6:26:ea:12:3b:a9:55:a6:46: 0b:c6:21:a8:69:81:f3:0f:34:1e:d0:2b:1e:52:aa:a3:9a:93: d0:58:52:c0:0c:f1:c5:b7:73:97:f0:9b:f0:97:3f:eb:d1:73: 5d:fb:5a:fa:b3:79:60:0c:18:09:22:30:4d:8d:56:dd:b8:e2: 8c:2d:58:9e:99:69:92:9b:7b:57:6f:b0:a9:50:55:b9:2e:7b: 1f:77:90:68 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICARYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjNFREYxMTAvBgNVBAUTKDc3MjNEODU2RTUyMDgyMjRGMkJDODlBMzgwOTc3N0Y1 MjgzMzEyRkMwHhcNMjUwNTMxMDQzMTIyWhcNMjUwNjA3MDQzMTIyWjAYMRYwFAYD VQQDEw02ODNhODYxYS02NmY0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt9QC9H7I0e+DkI9GDhavvUs5BU3CunsrfFQuw7CKgr0eGurLNvsdjsnvJUMy +hBWuRzYS0j1qYlGLhD2rHXv8OLkDtm+QmB0kBADVsK32GXkkl0J9awwNRXtOQQD iZ0fJUa4vqYoFhvMCJrVvzI+1WV4+GRqgS0eBEL9Hzagw0jJeGLpPu0ps6Nj083c GSEhk2jvkCcZicwi0fiO/GXmq7XYWLEz+LVeqa8HNN3IuGYNJ5+LQV89eTHIxN6W Uh57PXO+N5pJ4/4JE0AZC692WaF4m9078/6VPj7JR90liBDH1iASUNKLk5DmA8cr MslgKiVxxrgtm42kvdtIzDPbnQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNkljJQG ej+8yb4IlAeCaW31kfAbMB8GA1UdIwQYMBaAFHcj2FblIIIk8ryJo4CXd/UoMxL8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2M0VERi9EOEE3QzczNjk3 MjIxMUVFOTlBQzMzN0VDNEY5QUUwMi9keVBZVnVVZ2dpVHl2SW1qZ0pkMzlTZ3pF dncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2R5UFlWdVVnZ2lUeXZJbWpnSmQzOVNnekV2dy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 M0VERi9EOEE3QzczNjk3MjIxMUVFOTlBQzMzN0VDNEY5QUUwMi9keVBZVnVVZ2dp VHl2SW1qZ0pkMzlTZ3pFdncubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAIcfwRZWh1Lgc5f+TshepIUnrUhcqrGzmAhj/uuu95vfY+yqaJ2fju 2Fa4CZ0JZiq1ShZ6K1SNeGqSGKwIgPub7UHIlLT4bFc+MJL2nUG0FZ/GiKjBInvk s7yyYdjb4NXjKvpzE3sYgaCR3ykgfmHhZ604lmGsi0DrCeXvcEvLQuAYMjv6vPU9 YjyQgUPZhiP+RynpQOttskKG6FgnA/coVqRpXN8zPZDwJLn2JuoSO6lVpkYLxiGo aYHzDzQe0CseUqqjmpPQWFLADPHFt3OX8Jvwlz/r0XNd+1r6s3lgDBgJIjBNjVbd uOKMLViemWmSm3tXb7CpUFW5Lnsfd5Bo -----END CERTIFICATE-----Generated at Sat May 31 17:50:40 2025 by rpki-client