$ rpki-client -vvf rpki.apnic.net/member_repository/A917A67E/67B4CB841BD311EE965FEF38C4F9AE02/S3IqOmeTvzLJvPUuTncuCm86Yxk.mft File: S3IqOmeTvzLJvPUuTncuCm86Yxk.mft (raw, json) Hash identifier: z11+RZ7u0vrqGUG1Yue0t1v2FNpIvqnGQpC4IKX8Vg0= Subject key identifier: D5:D5:C4:70:8B:37:9C:BD:87:00:F8:4C:85:03:F3:9A:AD:C8:9B:F5 Authority key identifier: 4B:72:2A:3A:67:93:BF:32:C9:BC:F5:2E:4E:77:2E:0A:6F:3A:63:19 Certificate issuer: /CN=A917A67E/serialNumber=4B722A3A6793BF32C9BCF52E4E772E0A6F3A6319 Certificate serial: 016A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/S3IqOmeTvzLJvPUuTncuCm86Yxk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917A67E/67B4CB841BD311EE965FEF38C4F9AE02/S3IqOmeTvzLJvPUuTncuCm86Yxk.mft Manifest number: 0167 Signing time: Sat 31 May 2025 03:36:43 +0000 Manifest this update: Sat 31 May 2025 03:36:43 +0000 Manifest next update: Sat 07 Jun 2025 03:36:43 +0000 Files and hashes: 1: S3IqOmeTvzLJvPUuTncuCm86Yxk.crl (hash: cElU8Pzn2gB3zu7cmRh+Zs9imVphXkxBs5Bp3aXCI6o=) 2: E3901F981BD711EEB9597921C4F9AE02.roa (hash: gXQtBkkUAb9x4NlHq240u/Z9LPp8ccDpu+5MVL1TOAI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917A67E/67B4CB841BD311EE965FEF38C4F9AE02/S3IqOmeTvzLJvPUuTncuCm86Yxk.crl rsync://rpki.apnic.net/member_repository/A917A67E/67B4CB841BD311EE965FEF38C4F9AE02/S3IqOmeTvzLJvPUuTncuCm86Yxk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/S3IqOmeTvzLJvPUuTncuCm86Yxk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 03:36:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 362 (0x16a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917A67E, serialNumber=4B722A3A6793BF32C9BCF52E4E772E0A6F3A6319 Validity Not Before: May 31 03:36:43 2025 GMT Not After : Jun 7 03:36:43 2025 GMT Subject: CN=683a794b-6fb8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:29:17:5c:1b:5e:ca:46:f2:ac:5c:3f:df:ba: 96:41:0c:78:c0:53:2e:f5:dc:95:75:9a:c3:93:7c: 90:05:23:11:d6:ea:0e:04:f9:f3:00:0b:bb:0d:27: ac:80:f9:03:96:7d:f1:f1:69:92:d4:29:3c:02:01: 9e:82:3f:41:c1:bc:85:09:93:88:c8:a1:34:39:5e: ba:73:f6:fa:24:7a:8b:7a:a8:01:7a:a0:26:e0:16: d4:42:75:f5:ba:4d:e8:6f:a9:33:55:06:41:2a:d0: eb:0a:39:8e:63:fc:ba:af:78:03:f1:4b:53:5a:64: ca:a6:43:0d:57:23:b2:60:d8:24:ab:52:da:c3:50: f2:49:78:99:b2:e5:7e:91:a1:25:56:13:0e:77:39: d7:31:f5:ff:f3:d9:78:0e:f3:41:bf:2a:ed:c1:77: 0e:c5:0d:bf:e6:50:75:74:d0:a8:4e:2c:d0:7b:8c: 2a:ff:b5:00:63:91:97:6a:29:e1:3b:e8:d0:59:e7: c3:36:bc:e5:d2:2e:ba:b3:2e:8d:b5:02:d6:48:28: 27:f2:63:4d:3e:a2:8a:dc:fb:71:7a:7f:58:c4:72: a1:56:3f:ca:2c:5b:d1:42:28:cd:1b:d8:34:86:9b: 49:b4:6d:a8:61:ef:bf:36:5d:e6:b9:92:9d:c9:c5: 05:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D5:D5:C4:70:8B:37:9C:BD:87:00:F8:4C:85:03:F3:9A:AD:C8:9B:F5 X509v3 Authority Key Identifier: keyid:4B:72:2A:3A:67:93:BF:32:C9:BC:F5:2E:4E:77:2E:0A:6F:3A:63:19 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917A67E/67B4CB841BD311EE965FEF38C4F9AE02/S3IqOmeTvzLJvPUuTncuCm86Yxk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/S3IqOmeTvzLJvPUuTncuCm86Yxk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917A67E/67B4CB841BD311EE965FEF38C4F9AE02/S3IqOmeTvzLJvPUuTncuCm86Yxk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7e:79:6f:c1:e3:b9:fc:3c:69:22:da:cc:c7:43:41:bc:b1:48: 87:77:3d:de:25:cf:0f:6d:00:b7:9b:d8:a9:7e:2d:a4:70:aa: 81:3c:f8:98:b2:99:eb:60:3c:2a:eb:f5:44:5e:a3:e7:b1:a2: c0:b3:e8:c2:17:4d:fd:c3:9e:38:bc:4e:9a:8e:be:10:d1:39: 44:95:1a:87:60:81:ff:c6:22:cd:44:a7:43:7a:c9:27:e1:ce: bc:b0:ba:73:83:a0:e7:7e:ec:5d:40:ae:4a:20:01:a6:13:8e: e5:39:30:df:90:a0:51:c0:d8:1c:50:c2:25:94:65:e8:cc:28: 47:78:1a:cf:9b:ac:d5:dc:21:ac:0f:e5:2a:d7:cf:9b:32:5d: 89:28:1a:41:5c:2a:38:5c:b2:3f:03:d2:2f:24:3f:0c:50:5f: 0c:75:93:d6:d6:4c:3e:f4:11:b5:b2:97:6e:c0:b9:92:7f:20: 9d:11:47:7c:7d:04:e4:34:46:53:9d:69:c2:3e:f1:d5:d4:75: 10:68:cc:d9:c1:b5:da:a2:44:ea:59:d0:b9:2c:ed:7c:3a:a6: 29:52:91:a5:0f:8f:35:7b:5d:c6:97:e2:92:0a:b8:9f:59:3d: 1b:f1:70:5f:ca:76:a1:19:e1:06:d7:6a:32:2f:d6:86:d2:68: 7b:8b:18:7a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAWowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0E2N0UxMTAvBgNVBAUTKDRCNzIyQTNBNjc5M0JGMzJDOUJDRjUyRTRFNzcyRTBB NkYzQTYzMTkwHhcNMjUwNTMxMDMzNjQzWhcNMjUwNjA3MDMzNjQzWjAYMRYwFAYD VQQDEw02ODNhNzk0Yi02ZmI4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuCkXXBteykbyrFw/37qWQQx4wFMu9dyVdZrDk3yQBSMR1uoOBPnzAAu7DSes gPkDln3x8WmS1Ck8AgGegj9BwbyFCZOIyKE0OV66c/b6JHqLeqgBeqAm4BbUQnX1 uk3ob6kzVQZBKtDrCjmOY/y6r3gD8UtTWmTKpkMNVyOyYNgkq1Law1DySXiZsuV+ kaElVhMOdznXMfX/89l4DvNBvyrtwXcOxQ2/5lB1dNCoTizQe4wq/7UAY5GXainh O+jQWefDNrzl0i66sy6NtQLWSCgn8mNNPqKK3Ptxen9YxHKhVj/KLFvRQijNG9g0 hptJtG2oYe+/Nl3muZKdycUFbwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNXVxHCL N5y9hwD4TIUD85qtyJv1MB8GA1UdIwQYMBaAFEtyKjpnk78yybz1Lk53LgpvOmMZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QTY3RS82N0I0Q0I4NDFC RDMxMUVFOTY1RkVGMzhDNEY5QUUwMi9TM0lxT21lVHZ6TEp2UFV1VG5jdUNtODZZ eGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1MzSXFPbWVUdnpMSnZQVXVUbmN1Q204Nll4ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QTY3RS82N0I0Q0I4NDFCRDMxMUVFOTY1RkVGMzhDNEY5QUUwMi9TM0lxT21lVHZ6 TEp2UFV1VG5jdUNtODZZeGsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB+eW/B47n8PGki2szHQ0G8sUiHdz3eJc8PbQC3m9ipfi2kcKqBPPiY spnrYDwq6/VEXqPnsaLAs+jCF039w544vE6ajr4Q0TlElRqHYIH/xiLNRKdDeskn 4c68sLpzg6DnfuxdQK5KIAGmE47lOTDfkKBRwNgcUMIllGXozChHeBrPm6zV3CGs D+Uq18+bMl2JKBpBXCo4XLI/A9IvJD8MUF8MdZPW1kw+9BG1spduwLmSfyCdEUd8 fQTkNEZTnWnCPvHV1HUQaMzZwbXaokTqWdC5LO18OqYpUpGlD481e13Gl+KSCrif WT0b8XBfynahGeEG12oyL9aG0mh7ixh6 -----END CERTIFICATE-----Generated at Sat May 31 15:47:00 2025 by rpki-client