$ rpki-client -vvf rpki.apnic.net/member_repository/A9168BA2/99DF386254C411EA84F4E72DC4F9AE02/ymLkOPmNhRjS8qXZ9nZWUeWtpg4.mft File: ymLkOPmNhRjS8qXZ9nZWUeWtpg4.mft (raw, json) Hash identifier: ijkKP5ieeKYE7ANeTA5kRMtaKAtAcvr/Rir961leRgU= Subject key identifier: 99:74:51:7A:F5:35:EE:AE:BE:00:E0:34:CC:1F:4D:63:E6:C5:2A:F6 Authority key identifier: CA:62:E4:38:F9:8D:85:18:D2:F2:A5:D9:F6:76:56:51:E5:AD:A6:0E Certificate issuer: /CN=A9168BA2/serialNumber=CA62E438F98D8518D2F2A5D9F6765651E5ADA60E Certificate serial: 0AE1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ymLkOPmNhRjS8qXZ9nZWUeWtpg4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9168BA2/99DF386254C411EA84F4E72DC4F9AE02/ymLkOPmNhRjS8qXZ9nZWUeWtpg4.mft Manifest number: 0AC9 Signing time: Fri 30 May 2025 19:43:27 +0000 Manifest this update: Fri 30 May 2025 19:43:26 +0000 Manifest next update: Fri 06 Jun 2025 19:43:26 +0000 Files and hashes: 1: ymLkOPmNhRjS8qXZ9nZWUeWtpg4.crl (hash: VGu5pWw+JhpbiQHAPPnQuFOOyMGQb/dSM7yIk8nTiIQ=) 2: EF29C95E69C311EF82BCE77AC4F9AE02.roa (hash: b6XLk77YmW0zXiOErVi5OmWJQw5FWv6IwcAZrV/V3KA=) 3: BA7B024C04D811EDBE98F982C4F9AE02.roa (hash: GniYTYc+rkB55fqBkTbtJuPpFjVN9/DglrpXWuCGSdc=) 4: A2AF0622853711EFA09C892EC4F9AE02.roa (hash: DBysmfWMy9lYVGepCi0Ma5VGyIIRzRfP58+h2cMR+Ls=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9168BA2/99DF386254C411EA84F4E72DC4F9AE02/ymLkOPmNhRjS8qXZ9nZWUeWtpg4.crl rsync://rpki.apnic.net/member_repository/A9168BA2/99DF386254C411EA84F4E72DC4F9AE02/ymLkOPmNhRjS8qXZ9nZWUeWtpg4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ymLkOPmNhRjS8qXZ9nZWUeWtpg4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 19:43:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2785 (0xae1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9168BA2, serialNumber=CA62E438F98D8518D2F2A5D9F6765651E5ADA60E Validity Not Before: May 30 19:43:26 2025 GMT Not After : Jun 6 19:43:26 2025 GMT Subject: CN=683a0a5e-2de4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:c1:34:70:72:53:4d:1a:31:af:b0:44:04:3b: d4:6b:18:53:31:d5:06:95:be:bf:31:aa:d6:ea:81: 6d:a7:b3:0f:0e:ee:d0:b4:7c:f2:60:bf:bd:b2:e0: d9:65:30:5a:72:e8:03:80:1d:f8:5e:6c:da:14:b9: 93:0d:e3:cc:70:2d:85:a5:4c:3d:46:ef:a4:17:e1: 81:c4:8e:02:18:2a:4f:17:1c:61:17:7f:5b:f2:09: 61:ae:84:be:26:f6:3d:e1:cf:fb:33:c2:01:97:5e: 05:8d:fd:d1:9a:f9:fe:94:4f:9f:03:25:f9:6f:12: 5e:bc:bf:42:d8:33:6f:c2:eb:dc:e8:91:60:79:e3: 97:12:5c:5c:07:42:b0:4c:2f:d8:af:e3:98:b7:0d: d1:16:c6:ca:39:4f:f8:07:ad:73:a6:e3:9b:7c:28: 3d:59:d4:39:19:f8:57:c4:80:90:a5:ab:1a:7f:c4: 4b:67:a4:e0:6c:c3:15:a6:9c:77:61:c3:dc:cf:e9: e3:a6:70:51:52:50:81:f7:85:92:93:2e:5a:28:39: 7c:81:1f:81:4e:34:ca:b1:91:72:4e:8c:4c:6f:71: dd:17:d2:b4:8b:33:26:4b:41:e0:00:f7:ec:af:8b: a8:40:aa:dc:80:91:15:47:4d:a6:ed:b9:8b:b3:7c: e1:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 99:74:51:7A:F5:35:EE:AE:BE:00:E0:34:CC:1F:4D:63:E6:C5:2A:F6 X509v3 Authority Key Identifier: keyid:CA:62:E4:38:F9:8D:85:18:D2:F2:A5:D9:F6:76:56:51:E5:AD:A6:0E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9168BA2/99DF386254C411EA84F4E72DC4F9AE02/ymLkOPmNhRjS8qXZ9nZWUeWtpg4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ymLkOPmNhRjS8qXZ9nZWUeWtpg4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9168BA2/99DF386254C411EA84F4E72DC4F9AE02/ymLkOPmNhRjS8qXZ9nZWUeWtpg4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3f:79:73:3c:c6:b0:15:f0:4d:d1:27:8f:47:05:89:39:be:a8: 08:4e:c2:d4:3f:13:54:f8:7b:95:b8:df:8d:1b:79:1c:8a:fc: 54:3a:c3:eb:c4:b0:dd:b9:41:9e:ec:40:0f:ce:b4:7b:0f:99: 7e:b6:08:fb:37:ad:a9:75:61:8e:79:4b:45:bb:e8:d9:9a:bf: f1:b1:8d:0b:99:08:4e:bc:2b:8d:5a:14:96:38:9f:18:f9:33: 43:6c:aa:46:8a:d2:77:37:f4:28:c0:de:f3:1d:fe:b8:9c:78: 53:2e:66:2b:80:40:d4:0d:2c:56:b6:42:02:14:f8:40:3b:62: 34:aa:27:0f:cd:eb:d1:71:99:85:34:10:cf:35:d7:62:16:53: 57:e1:f4:fd:5f:d0:3b:55:4e:7a:80:e6:fd:96:52:43:38:cc: 61:66:2d:98:2d:41:f0:fd:a8:cc:dc:29:00:81:a5:4e:76:7d: 0e:97:28:75:03:69:94:f6:e6:08:01:49:11:6b:01:fc:93:02: 32:a8:c9:0c:e7:48:41:92:8c:d1:03:db:4a:62:0f:51:aa:f5: d6:48:8a:8a:72:c6:62:50:e4:c3:97:b6:2a:54:86:93:27:d5: df:f9:58:bc:e7:ba:e6:2b:a0:cd:a9:23:e4:b8:0b:09:24:ce: 1d:75:8e:a5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCuEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjhCQTIxMTAvBgNVBAUTKENBNjJFNDM4Rjk4RDg1MThEMkYyQTVEOUY2NzY1NjUx RTVBREE2MEUwHhcNMjUwNTMwMTk0MzI2WhcNMjUwNjA2MTk0MzI2WjAYMRYwFAYD VQQDEw02ODNhMGE1ZS0yZGU0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx8E0cHJTTRoxr7BEBDvUaxhTMdUGlb6/MarW6oFtp7MPDu7QtHzyYL+9suDZ ZTBacugDgB34XmzaFLmTDePMcC2FpUw9Ru+kF+GBxI4CGCpPFxxhF39b8glhroS+ JvY94c/7M8IBl14Fjf3Rmvn+lE+fAyX5bxJevL9C2DNvwuvc6JFgeeOXElxcB0Kw TC/Yr+OYtw3RFsbKOU/4B61zpuObfCg9WdQ5GfhXxICQpasaf8RLZ6TgbMMVppx3 YcPcz+njpnBRUlCB94WSky5aKDl8gR+BTjTKsZFyToxMb3HdF9K0izMmS0HgAPfs r4uoQKrcgJEVR02m7bmLs3zhlQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJl0UXr1 Ne6uvgDgNMwfTWPmxSr2MB8GA1UdIwQYMBaAFMpi5Dj5jYUY0vKl2fZ2VlHlraYO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2OEJBMi85OURGMzg2MjU0 QzQxMUVBODRGNEU3MkRDNEY5QUUwMi95bUxrT1BtTmhSalM4cVhaOW5aV1VlV3Rw ZzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3ltTGtPUG1OaFJqUzhxWFo5blpXVWVXdHBnNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 OEJBMi85OURGMzg2MjU0QzQxMUVBODRGNEU3MkRDNEY5QUUwMi95bUxrT1BtTmhS alM4cVhaOW5aV1VlV3RwZzQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA/eXM8xrAV8E3RJ49HBYk5vqgITsLUPxNU+HuVuN+NG3kcivxUOsPr xLDduUGe7EAPzrR7D5l+tgj7N62pdWGOeUtFu+jZmr/xsY0LmQhOvCuNWhSWOJ8Y +TNDbKpGitJ3N/QowN7zHf64nHhTLmYrgEDUDSxWtkICFPhAO2I0qicPzevRcZmF NBDPNddiFlNX4fT9X9A7VU56gOb9llJDOMxhZi2YLUHw/ajM3CkAgaVOdn0Olyh1 A2mU9uYIAUkRawH8kwIyqMkM50hBkozRA9tKYg9RqvXWSIqKcsZiUOTDl7YqVIaT J9Xf+Vi857rmK6DNqSPkuAsJJM4ddY6l -----END CERTIFICATE-----Generated at Sat May 31 17:31:56 2025 by rpki-client