$ rpki-client -vvf rpki.apnic.net/member_repository/A9171064/07639620052F11EA8A9E3947C4F9AE02/_YJ8Ams5Z-KhQNTSMU4rDpwEdDA.mft File: _YJ8Ams5Z-KhQNTSMU4rDpwEdDA.mft (raw, json) Hash identifier: F5piV6qydRanWVq7ZiHdWfNc/0pt/oeQ339Dbqj21yw= Subject key identifier: 7D:BA:CD:A8:5A:07:AF:A8:19:BC:F5:73:82:61:49:8E:80:A5:44:B1 Authority key identifier: FD:82:7C:02:6B:39:67:E2:A1:40:D4:D2:31:4E:2B:0E:9C:04:74:30 Certificate issuer: /CN=A9171064/serialNumber=FD827C026B3967E2A140D4D2314E2B0E9C047430 Certificate serial: 0C46 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_YJ8Ams5Z-KhQNTSMU4rDpwEdDA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9171064/07639620052F11EA8A9E3947C4F9AE02/_YJ8Ams5Z-KhQNTSMU4rDpwEdDA.mft Manifest number: 0C40 Signing time: Fri 30 May 2025 18:38:08 +0000 Manifest this update: Fri 30 May 2025 18:38:07 +0000 Manifest next update: Fri 06 Jun 2025 18:38:07 +0000 Files and hashes: 1: _YJ8Ams5Z-KhQNTSMU4rDpwEdDA.crl (hash: B7G2Iu39Nny9P8h4+hrOu2Gb4RlXz+CumVMR/fDPnwk=) 2: A2A3D38A05CE11EA80526530C4F9AE02.roa (hash: 5qzdMRlHADmRGjRZ80Eu6WYWmObO/9cRl46Cear7KnU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9171064/07639620052F11EA8A9E3947C4F9AE02/_YJ8Ams5Z-KhQNTSMU4rDpwEdDA.crl rsync://rpki.apnic.net/member_repository/A9171064/07639620052F11EA8A9E3947C4F9AE02/_YJ8Ams5Z-KhQNTSMU4rDpwEdDA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_YJ8Ams5Z-KhQNTSMU4rDpwEdDA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 18:38:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3142 (0xc46) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9171064, serialNumber=FD827C026B3967E2A140D4D2314E2B0E9C047430 Validity Not Before: May 30 18:38:07 2025 GMT Not After : Jun 6 18:38:07 2025 GMT Subject: CN=6839fb10-34a9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:07:fe:99:76:83:37:cc:85:a8:eb:98:ac:6e: 1e:43:f7:90:e8:68:e9:aa:55:54:a4:a5:d4:eb:be: fb:72:76:f4:ed:ca:f6:7b:c8:48:99:cd:3a:6b:af: fa:20:aa:79:05:bf:23:ab:f0:e5:93:f7:ad:b1:6d: 91:71:85:51:0f:79:ca:59:af:23:e8:10:c7:6e:6c: c7:b2:c4:a8:fc:cc:08:fb:4b:68:f5:ff:6c:a8:bc: aa:ab:06:60:55:17:b0:16:69:74:f0:41:97:a1:7b: f7:93:ba:89:85:fa:9c:ac:bb:6a:7d:bc:f7:29:95: 4f:d1:b3:00:26:85:c6:a4:fc:f6:72:03:35:af:3a: f0:b1:1d:04:4b:f8:f2:7b:5d:b2:41:94:6e:9a:50: c1:c9:12:a4:d8:db:5e:55:b0:28:4c:2a:4e:b7:1c: 71:0a:17:d5:09:71:98:9d:14:6f:3d:17:a1:be:d3: 26:8f:e6:ab:77:88:54:88:00:31:33:fa:6b:cf:18: f7:1f:34:c7:c0:a2:c4:e1:8a:9c:3a:27:19:4f:17: b0:55:a5:2c:53:83:9c:0f:26:2d:ad:ec:26:29:c4: dd:57:81:95:3c:84:c0:12:b4:08:16:a0:55:84:91: d6:44:cb:08:c3:d8:30:63:74:fb:45:c1:5a:d7:38: 78:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7D:BA:CD:A8:5A:07:AF:A8:19:BC:F5:73:82:61:49:8E:80:A5:44:B1 X509v3 Authority Key Identifier: keyid:FD:82:7C:02:6B:39:67:E2:A1:40:D4:D2:31:4E:2B:0E:9C:04:74:30 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9171064/07639620052F11EA8A9E3947C4F9AE02/_YJ8Ams5Z-KhQNTSMU4rDpwEdDA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_YJ8Ams5Z-KhQNTSMU4rDpwEdDA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9171064/07639620052F11EA8A9E3947C4F9AE02/_YJ8Ams5Z-KhQNTSMU4rDpwEdDA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 00:34:3d:a6:24:bd:02:bf:d0:a9:9c:43:1d:fb:73:20:ab:a3: 48:42:77:61:68:6a:81:d9:d0:64:f5:5f:ce:c5:32:7c:cd:bd: bc:25:81:e3:5e:98:dc:de:08:56:e4:d1:eb:a2:c2:90:62:b7: 4f:8d:bd:6d:43:92:1a:e5:7a:eb:5f:0a:62:6c:ca:e1:11:34: 15:bd:43:f8:18:cf:c9:36:77:32:0b:72:64:4e:c1:6d:8a:d6: 53:52:56:30:d2:41:f2:35:18:75:92:b5:82:b0:e1:03:d4:9c: f0:a1:ed:96:c7:9b:06:57:57:1d:8c:a1:a4:3a:39:83:b4:2f: e8:e1:d6:53:1f:d5:8f:0c:27:77:6f:73:cc:3b:8b:54:70:6a: 0c:73:1b:81:86:dd:ae:4d:09:e4:40:04:1b:90:fe:32:f7:f6: 86:9b:96:df:36:0d:4c:23:bd:76:2d:00:2e:c1:3f:69:5f:ab: e5:86:9e:f5:fd:36:68:76:64:17:bc:13:37:bd:b2:88:cd:6e: 8d:5a:aa:ca:32:c3:3b:84:12:4d:9a:18:53:cd:76:aa:42:60: 59:bf:85:64:2b:45:a3:95:a5:44:08:c5:23:2d:f1:2f:49:9a: b1:43:f8:56:00:61:cc:32:e1:0e:0a:5b:37:c3:13:16:86:3f: 31:a5:cf:85 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDEYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzEwNjQxMTAvBgNVBAUTKEZEODI3QzAyNkIzOTY3RTJBMTQwRDREMjMxNEUyQjBF OUMwNDc0MzAwHhcNMjUwNTMwMTgzODA3WhcNMjUwNjA2MTgzODA3WjAYMRYwFAYD VQQDEw02ODM5ZmIxMC0zNGE5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAowf+mXaDN8yFqOuYrG4eQ/eQ6GjpqlVUpKXU6777cnb07cr2e8hImc06a6/6 IKp5Bb8jq/Dlk/etsW2RcYVRD3nKWa8j6BDHbmzHssSo/MwI+0to9f9sqLyqqwZg VRewFml08EGXoXv3k7qJhfqcrLtqfbz3KZVP0bMAJoXGpPz2cgM1rzrwsR0ES/jy e12yQZRumlDByRKk2NteVbAoTCpOtxxxChfVCXGYnRRvPRehvtMmj+ard4hUiAAx M/przxj3HzTHwKLE4YqcOicZTxewVaUsU4OcDyYtrewmKcTdV4GVPITAErQIFqBV hJHWRMsIw9gwY3T7RcFa1zh4CQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFH26zaha B6+oGbz1c4JhSY6ApUSxMB8GA1UdIwQYMBaAFP2CfAJrOWfioUDU0jFOKw6cBHQw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MTA2NC8wNzYzOTYyMDA1 MkYxMUVBOEE5RTM5NDdDNEY5QUUwMi9fWUo4QW1zNVotS2hRTlRTTVU0ckRwd0Vk REEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL19ZSjhBbXM1Wi1LaFFOVFNNVTRyRHB3RWREQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MTA2NC8wNzYzOTYyMDA1MkYxMUVBOEE5RTM5NDdDNEY5QUUwMi9fWUo4QW1zNVot S2hRTlRTTVU0ckRwd0VkREEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAAND2mJL0Cv9CpnEMd+3Mgq6NIQndhaGqB2dBk9V/OxTJ8zb28JYHj Xpjc3ghW5NHrosKQYrdPjb1tQ5Ia5XrrXwpibMrhETQVvUP4GM/JNncyC3JkTsFt itZTUlYw0kHyNRh1krWCsOED1Jzwoe2Wx5sGV1cdjKGkOjmDtC/o4dZTH9WPDCd3 b3PMO4tUcGoMcxuBht2uTQnkQAQbkP4y9/aGm5bfNg1MI712LQAuwT9pX6vlhp71 /TZodmQXvBM3vbKIzW6NWqrKMsM7hBJNmhhTzXaqQmBZv4VkK0WjlaVECMUjLfEv SZqxQ/hWAGHMMuEOCls3wxMWhj8xpc+F -----END CERTIFICATE-----Generated at Sat May 31 17:39:22 2025 by rpki-client