$ rpki-client -vvf rpki.apnic.net/member_repository/A9167C20/86571C104EA211EA84C08874C4F9AE02/1AsQwSJMYeDTGML8YAOTeOz3LQA.mft File: 1AsQwSJMYeDTGML8YAOTeOz3LQA.mft (raw, json) Hash identifier: RaxmyFDWdxIiL44BBJLA2gkSdtm4vbmyHUtqn6cWM3I= Subject key identifier: DB:D4:6D:D2:9E:FB:9E:A5:13:FD:F6:41:C3:E9:16:41:7B:DC:4B:54 Authority key identifier: D4:0B:10:C1:22:4C:61:E0:D3:18:C2:FC:60:03:93:78:EC:F7:2D:00 Certificate issuer: /CN=A9167C20/serialNumber=D40B10C1224C61E0D318C2FC60039378ECF72D00 Certificate serial: 0AD2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1AsQwSJMYeDTGML8YAOTeOz3LQA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9167C20/86571C104EA211EA84C08874C4F9AE02/1AsQwSJMYeDTGML8YAOTeOz3LQA.mft Manifest number: 0ACA Signing time: Fri 30 May 2025 19:38:49 +0000 Manifest this update: Fri 30 May 2025 19:38:49 +0000 Manifest next update: Fri 06 Jun 2025 19:38:49 +0000 Files and hashes: 1: 1AsQwSJMYeDTGML8YAOTeOz3LQA.crl (hash: DNqA6Xy537Os1T4UUYsPOmMbhCaxa5TvdoCh624pWAI=) 2: AD35C0044EA511EAAB9DBE7DC4F9AE02.roa (hash: vRrkQ11gFoedPJsbqh7nQv1lr6X8LYa0tpYVg51dxDk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9167C20/86571C104EA211EA84C08874C4F9AE02/1AsQwSJMYeDTGML8YAOTeOz3LQA.crl rsync://rpki.apnic.net/member_repository/A9167C20/86571C104EA211EA84C08874C4F9AE02/1AsQwSJMYeDTGML8YAOTeOz3LQA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1AsQwSJMYeDTGML8YAOTeOz3LQA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 19:38:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2770 (0xad2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9167C20, serialNumber=D40B10C1224C61E0D318C2FC60039378ECF72D00 Validity Not Before: May 30 19:38:49 2025 GMT Not After : Jun 6 19:38:49 2025 GMT Subject: CN=683a0949-d705 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:fa:84:32:5e:43:64:a5:4e:1a:c7:4b:eb:44: ea:c2:36:0c:96:3e:8c:44:03:71:21:36:f0:c1:8d: f8:28:65:68:6c:f0:89:40:8b:51:3a:8e:72:3b:fc: d1:72:3e:55:b2:18:f6:25:8c:9d:03:c0:75:e2:7b: 56:73:eb:1a:52:66:0a:f4:e0:6f:a2:74:e1:f0:97: e9:64:2a:4b:dd:84:38:85:3f:8a:f0:bd:ce:da:96: 73:3a:0e:ed:8c:4e:c1:5c:35:df:dc:74:13:1d:c4: 31:29:6f:eb:04:3a:b6:58:c6:d5:80:33:95:65:45: 96:3a:67:c2:9b:9e:54:83:70:31:e7:12:b6:a2:20: 63:6c:70:b5:a7:25:8d:28:c7:17:b0:54:78:fb:97: 3d:08:92:a6:56:c1:1c:8c:a8:6f:a6:8d:7d:55:71: 69:ad:aa:ba:ce:9c:1d:88:c3:a8:b8:40:58:7b:ef: 87:b4:bd:f0:00:1b:f1:1f:c3:9f:35:76:6b:ea:bb: 2d:d2:4a:44:0e:09:09:c5:37:97:3c:cc:18:51:49: 2a:98:4c:2c:47:49:b4:95:23:7f:37:d9:5d:a9:e3: 86:24:f4:e1:73:4b:ef:6d:58:f4:5b:a9:3c:68:d5: 9b:23:e7:be:34:07:0a:41:43:9e:d8:39:66:7c:69: c0:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DB:D4:6D:D2:9E:FB:9E:A5:13:FD:F6:41:C3:E9:16:41:7B:DC:4B:54 X509v3 Authority Key Identifier: keyid:D4:0B:10:C1:22:4C:61:E0:D3:18:C2:FC:60:03:93:78:EC:F7:2D:00 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9167C20/86571C104EA211EA84C08874C4F9AE02/1AsQwSJMYeDTGML8YAOTeOz3LQA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1AsQwSJMYeDTGML8YAOTeOz3LQA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9167C20/86571C104EA211EA84C08874C4F9AE02/1AsQwSJMYeDTGML8YAOTeOz3LQA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 89:59:e3:6f:27:86:96:6e:fd:64:e1:b2:c9:29:11:c7:cb:09: c8:ce:f5:27:e9:e8:eb:d2:19:13:d0:16:45:e8:1c:60:70:1e: d5:b0:92:1b:65:d8:01:de:eb:94:67:ac:9b:e8:5f:cc:70:32: f1:93:8d:e3:ac:be:91:0c:c9:b5:9a:8a:5b:1d:49:db:a2:25: 4a:2b:e7:18:68:18:78:96:c3:ca:e5:3d:42:fa:d2:b5:b7:45: 4a:00:54:40:97:f1:d0:57:a7:94:60:71:ee:11:53:6d:7d:8f: 44:75:62:dc:f0:43:b0:6b:59:cc:d2:6d:7e:93:7b:19:63:2d: f5:fa:7d:03:7c:fe:62:30:13:42:a2:5c:7f:f5:b2:dc:6f:fa: f4:23:ef:c7:5a:56:aa:da:45:d0:ce:9a:7d:09:c1:d6:5e:a2: c9:a0:da:7c:37:e8:10:ea:97:a2:2b:76:51:87:94:e5:de:c9: b2:94:d0:c4:b8:e2:f1:d5:1e:91:04:f6:59:ba:54:b2:41:df: e9:06:90:9f:bb:40:a0:98:94:f4:3f:f5:13:80:c4:5b:9c:5a: 5a:12:09:11:1e:55:a1:d3:a6:f8:cf:f4:af:7a:ab:ad:9b:79: 7f:c8:b3:92:12:d9:6f:52:a5:55:f4:cf:fe:f6:19:b5:8d:dd: e8:46:9f:28 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCtIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjdDMjAxMTAvBgNVBAUTKEQ0MEIxMEMxMjI0QzYxRTBEMzE4QzJGQzYwMDM5Mzc4 RUNGNzJEMDAwHhcNMjUwNTMwMTkzODQ5WhcNMjUwNjA2MTkzODQ5WjAYMRYwFAYD VQQDEw02ODNhMDk0OS1kNzA1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvfqEMl5DZKVOGsdL60TqwjYMlj6MRANxITbwwY34KGVobPCJQItROo5yO/zR cj5Vshj2JYydA8B14ntWc+saUmYK9OBvonTh8JfpZCpL3YQ4hT+K8L3O2pZzOg7t jE7BXDXf3HQTHcQxKW/rBDq2WMbVgDOVZUWWOmfCm55Ug3Ax5xK2oiBjbHC1pyWN KMcXsFR4+5c9CJKmVsEcjKhvpo19VXFpraq6zpwdiMOouEBYe++HtL3wABvxH8Of NXZr6rst0kpEDgkJxTeXPMwYUUkqmEwsR0m0lSN/N9ldqeOGJPThc0vvbVj0W6k8 aNWbI+e+NAcKQUOe2DlmfGnApQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNvUbdKe +56lE/32QcPpFkF73EtUMB8GA1UdIwQYMBaAFNQLEMEiTGHg0xjC/GADk3js9y0A MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2N0MyMC84NjU3MUMxMDRF QTIxMUVBODRDMDg4NzRDNEY5QUUwMi8xQXNRd1NKTVllRFRHTUw4WUFPVGVPejNM UUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFBc1F3U0pNWWVEVEdNTDhZQU9UZU96M0xRQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 N0MyMC84NjU3MUMxMDRFQTIxMUVBODRDMDg4NzRDNEY5QUUwMi8xQXNRd1NKTVll RFRHTUw4WUFPVGVPejNMUUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCJWeNvJ4aWbv1k4bLJKRHHywnIzvUn6ejr0hkT0BZF6BxgcB7VsJIb ZdgB3uuUZ6yb6F/McDLxk43jrL6RDMm1mopbHUnboiVKK+cYaBh4lsPK5T1C+tK1 t0VKAFRAl/HQV6eUYHHuEVNtfY9EdWLc8EOwa1nM0m1+k3sZYy31+n0DfP5iMBNC olx/9bLcb/r0I+/HWlaq2kXQzpp9CcHWXqLJoNp8N+gQ6peiK3ZRh5Tl3smylNDE uOLx1R6RBPZZulSyQd/pBpCfu0CgmJT0P/UTgMRbnFpaEgkRHlWh06b4z/Svequt m3l/yLOSEtlvUqVV9M/+9hm1jd3oRp8o -----END CERTIFICATE-----Generated at Sat May 31 16:49:06 2025 by rpki-client