$ rpki-client -vvf rpki.apnic.net/member_repository/A9165A0B/15586F42C4F811EA8B9B4C13C4F9AE02/capYzfG2vXwm5hp1GKTQrSyfGhQ.mft File: capYzfG2vXwm5hp1GKTQrSyfGhQ.mft (raw, json) Hash identifier: rrl31Yp9NbaNPiZMyxeh3ZbolEvGB/WN4dL9iNFRock= Subject key identifier: 7F:FA:FA:CF:CB:EE:4F:92:64:D4:5E:F7:56:20:EE:61:F1:AC:6A:9F Authority key identifier: 71:AA:58:CD:F1:B6:BD:7C:26:E6:1A:75:18:A4:D0:AD:2C:9F:1A:14 Certificate issuer: /CN=A9165A0B/serialNumber=71AA58CDF1B6BD7C26E61A7518A4D0AD2C9F1A14 Certificate serial: 08B2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/capYzfG2vXwm5hp1GKTQrSyfGhQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9165A0B/15586F42C4F811EA8B9B4C13C4F9AE02/capYzfG2vXwm5hp1GKTQrSyfGhQ.mft Manifest number: 0888 Signing time: Fri 30 May 2025 20:54:28 +0000 Manifest this update: Fri 30 May 2025 20:54:28 +0000 Manifest next update: Fri 06 Jun 2025 20:54:28 +0000 Files and hashes: 1: capYzfG2vXwm5hp1GKTQrSyfGhQ.crl (hash: kH+NJbUNrjGX3DjzIXuBgm9jFR5aaq0Np30rH4VaLP4=) 2: 8C51AEF8C4FB11EAAEAE7C1DC4F9AE02.roa (hash: ulEoG77MrSiwSYhpxeW0HQs0UzURtgxGQwYkMWVPA0Q=) 3: 8BA9C1CAC4FB11EAAEAE7C1DC4F9AE02.roa (hash: fZLciG+K7KBAB8NViLLV71yANJqxZTohTScAC7z2iIU=) 4: 90606AD670AA11ED8DAE4C5AC4F9AE02.roa (hash: K/SJXrHKSaQpDMVLZJrukFZmfGOIIuOIUDxauUWHXXQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9165A0B/15586F42C4F811EA8B9B4C13C4F9AE02/capYzfG2vXwm5hp1GKTQrSyfGhQ.crl rsync://rpki.apnic.net/member_repository/A9165A0B/15586F42C4F811EA8B9B4C13C4F9AE02/capYzfG2vXwm5hp1GKTQrSyfGhQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/capYzfG2vXwm5hp1GKTQrSyfGhQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 20:54:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2226 (0x8b2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9165A0B, serialNumber=71AA58CDF1B6BD7C26E61A7518A4D0AD2C9F1A14 Validity Not Before: May 30 20:54:28 2025 GMT Not After : Jun 6 20:54:28 2025 GMT Subject: CN=683a1b04-c9ce Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:91:61:89:cc:71:be:e7:73:b2:52:27:23:58: 8c:05:d9:4c:12:23:87:5b:85:8e:2a:70:71:67:31: 51:2a:2e:38:c9:bc:3b:a1:82:a5:e9:b1:e3:2f:6a: 39:3d:ed:60:57:b1:cb:d4:5d:d1:29:7e:69:7d:62: 33:80:76:13:16:a8:f7:fd:21:e1:5b:5c:24:c0:f5: 50:7b:97:51:44:6f:eb:ec:64:c2:0e:81:d6:af:6d: 97:48:05:69:de:e0:75:d3:c2:20:c6:15:e6:50:01: 77:aa:c7:49:93:d5:0a:e2:61:2f:a4:9c:dc:3a:24: 35:ab:a9:16:17:ff:a5:9f:5e:89:92:cd:87:e5:03: 51:1d:2e:0b:86:aa:86:0a:b1:a8:91:7c:b2:a1:b6: 77:85:48:5f:9b:76:7b:e1:f6:ad:8e:9e:41:82:95: 39:5d:20:01:bc:09:41:5b:cc:d2:8d:ed:b2:27:a8: 7c:66:62:aa:d8:bb:a6:f6:27:c5:31:16:c1:c3:d6: 1f:82:81:31:69:c2:9f:e5:4b:e3:1a:9c:b1:d7:16: b9:c3:b7:0e:47:99:74:67:28:7f:84:07:bf:64:eb: eb:ea:53:15:98:44:40:76:1a:59:d2:c1:a4:03:b2: 47:cd:13:85:b5:65:99:18:cb:43:2f:1f:16:87:2c: 86:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7F:FA:FA:CF:CB:EE:4F:92:64:D4:5E:F7:56:20:EE:61:F1:AC:6A:9F X509v3 Authority Key Identifier: keyid:71:AA:58:CD:F1:B6:BD:7C:26:E6:1A:75:18:A4:D0:AD:2C:9F:1A:14 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9165A0B/15586F42C4F811EA8B9B4C13C4F9AE02/capYzfG2vXwm5hp1GKTQrSyfGhQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/capYzfG2vXwm5hp1GKTQrSyfGhQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9165A0B/15586F42C4F811EA8B9B4C13C4F9AE02/capYzfG2vXwm5hp1GKTQrSyfGhQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 84:af:70:33:f3:a4:d9:59:a0:50:7a:da:38:62:f6:99:ee:17: 5f:75:b4:f7:a4:0f:dc:e1:a4:31:e3:ba:49:15:d0:7f:56:d3: 6b:de:71:b3:a6:d9:b7:74:fd:bd:ce:7b:51:1f:f5:63:f2:49: b4:ac:88:31:78:cb:77:6a:32:6f:a7:50:10:43:a3:fa:9a:d1: 42:cd:2d:f2:cc:f2:eb:e8:0b:fe:37:cf:77:a6:1d:94:d9:aa: 17:68:29:35:d5:ac:4b:af:7c:37:0b:e3:da:ed:03:0f:25:04: 0d:af:81:75:76:47:45:c9:41:e9:fe:f4:2f:2b:bb:aa:b4:cb: d8:81:b2:e0:da:7a:f0:9c:01:1e:8a:e9:c4:e6:a2:2a:75:ea: 37:43:ed:e5:11:a9:c2:77:d2:9a:b7:54:5d:2d:e0:e4:38:c0: 9d:ed:c9:29:62:9e:ac:4a:7e:63:18:48:cf:23:1f:e2:e5:5e: 12:da:c0:e0:42:97:14:be:88:3c:14:93:23:11:42:d2:d0:aa: b0:9d:47:f3:92:84:9c:69:1e:e0:c1:54:a0:e1:31:8a:fd:09: d8:cb:bd:1b:75:76:3f:12:22:86:66:8b:99:fb:ae:8b:10:cb: ea:87:1c:d1:77:90:e0:3c:cd:f1:39:23:21:ae:e0:92:65:b9: d6:0d:18:89 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCLIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjVBMEIxMTAvBgNVBAUTKDcxQUE1OENERjFCNkJEN0MyNkU2MUE3NTE4QTREMEFE MkM5RjFBMTQwHhcNMjUwNTMwMjA1NDI4WhcNMjUwNjA2MjA1NDI4WjAYMRYwFAYD VQQDEw02ODNhMWIwNC1jOWNlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu5FhicxxvudzslInI1iMBdlMEiOHW4WOKnBxZzFRKi44ybw7oYKl6bHjL2o5 Pe1gV7HL1F3RKX5pfWIzgHYTFqj3/SHhW1wkwPVQe5dRRG/r7GTCDoHWr22XSAVp 3uB108IgxhXmUAF3qsdJk9UK4mEvpJzcOiQ1q6kWF/+ln16Jks2H5QNRHS4LhqqG CrGokXyyobZ3hUhfm3Z74fatjp5BgpU5XSABvAlBW8zSje2yJ6h8ZmKq2Lum9ifF MRbBw9YfgoExacKf5UvjGpyx1xa5w7cOR5l0Zyh/hAe/ZOvr6lMVmERAdhpZ0sGk A7JHzROFtWWZGMtDLx8WhyyGWwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFH/6+s/L 7k+SZNRe91Yg7mHxrGqfMB8GA1UdIwQYMBaAFHGqWM3xtr18JuYadRik0K0snxoU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NUEwQi8xNTU4NkY0MkM0 RjgxMUVBOEI5QjRDMTNDNEY5QUUwMi9jYXBZemZHMnZYd201aHAxR0tUUXJTeWZH aFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NhcFl6Zkcydlh3bTVocDFHS1RRclN5ZkdoUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 NUEwQi8xNTU4NkY0MkM0RjgxMUVBOEI5QjRDMTNDNEY5QUUwMi9jYXBZemZHMnZY d201aHAxR0tUUXJTeWZHaFEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCEr3Az86TZWaBQeto4YvaZ7hdfdbT3pA/c4aQx47pJFdB/VtNr3nGz ptm3dP29zntRH/Vj8km0rIgxeMt3ajJvp1AQQ6P6mtFCzS3yzPLr6Av+N893ph2U 2aoXaCk11axLr3w3C+Pa7QMPJQQNr4F1dkdFyUHp/vQvK7uqtMvYgbLg2nrwnAEe iunE5qIqdeo3Q+3lEanCd9Kat1RdLeDkOMCd7ckpYp6sSn5jGEjPIx/i5V4S2sDg QpcUvog8FJMjEULS0KqwnUfzkoScaR7gwVSg4TGK/QnYy70bdXY/EiKGZouZ+66L EMvqhxzRd5DgPM3xOSMhruCSZbnWDRiJ -----END CERTIFICATE-----Generated at Sat May 31 17:56:23 2025 by rpki-client