$ rpki-client -vvf rpki.apnic.net/member_repository/A9186004/201F68601EF811EEA9265D24C4F9AE02/RE63U1TDcG453qCP6VBEzSZj1q4.mft File: RE63U1TDcG453qCP6VBEzSZj1q4.mft (raw, json) Hash identifier: B4+kr1PHPjULBO/9u6R1NWakTipB/oDlybR77qMTfQM= Subject key identifier: E0:76:24:5A:42:31:E4:5B:0A:BA:0F:E0:59:90:8D:AE:9C:B2:81:97 Authority key identifier: 44:4E:B7:53:54:C3:70:6E:39:DE:A0:8F:E9:50:44:CD:26:63:D6:AE Certificate issuer: /CN=A9186004/serialNumber=444EB75354C3706E39DEA08FE95044CD2663D6AE Certificate serial: 0163 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RE63U1TDcG453qCP6VBEzSZj1q4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9186004/201F68601EF811EEA9265D24C4F9AE02/RE63U1TDcG453qCP6VBEzSZj1q4.mft Manifest number: 0161 Signing time: Sat 31 May 2025 03:38:07 +0000 Manifest this update: Sat 31 May 2025 03:38:07 +0000 Manifest next update: Sat 07 Jun 2025 03:38:07 +0000 Files and hashes: 1: RE63U1TDcG453qCP6VBEzSZj1q4.crl (hash: DK6EJu0SVyIIdbCB0eH3umvzkjBwWxvcII5BCbwmFaw=) 2: 341206FE1EFB11EEB72FB14EC4F9AE02.roa (hash: dpE2TI6QCYIe9HLRMKDulM368RG27zsQFQ0bkNTHfzY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9186004/201F68601EF811EEA9265D24C4F9AE02/RE63U1TDcG453qCP6VBEzSZj1q4.crl rsync://rpki.apnic.net/member_repository/A9186004/201F68601EF811EEA9265D24C4F9AE02/RE63U1TDcG453qCP6VBEzSZj1q4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RE63U1TDcG453qCP6VBEzSZj1q4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 03:38:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 355 (0x163) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9186004, serialNumber=444EB75354C3706E39DEA08FE95044CD2663D6AE Validity Not Before: May 31 03:38:07 2025 GMT Not After : Jun 7 03:38:07 2025 GMT Subject: CN=683a799f-40d4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:12:ae:a7:f6:ef:9b:a0:b5:dd:f6:f9:f2:93: 9a:1c:68:c4:da:84:b2:4e:2f:3d:dd:60:3d:0e:a7: 7b:aa:18:7b:44:71:33:4e:9f:80:59:45:93:12:9d: 4f:06:06:00:90:bc:98:42:c7:28:4c:74:11:05:f2: 16:99:d9:22:02:81:bd:4b:91:8b:66:97:88:94:73: 6e:9b:d1:ca:a8:ee:da:6d:dd:18:5e:1d:0a:9e:ef: 9c:ff:b8:5f:3d:60:68:32:9c:cb:42:d1:80:fa:4d: 4e:a4:6a:7b:d3:d7:06:35:2d:19:6a:83:0e:cc:6a: 03:2d:83:a6:3e:bb:9c:82:76:de:36:4d:c3:b9:58: ce:82:1e:0e:90:e8:e8:cf:67:50:1f:a0:4c:d7:13: fb:1c:65:d2:dc:1f:be:85:3d:d7:b2:a0:c4:55:b2: 44:da:45:cd:1b:87:37:fb:82:07:7f:eb:ae:f3:8b: 1c:0d:10:4c:91:ec:65:44:43:cc:e0:0c:65:a9:8f: e5:94:7f:3a:60:af:01:1d:c5:58:1b:eb:80:09:61: 98:79:c6:3b:39:00:74:c4:e6:e8:81:08:27:cc:20: 20:71:11:d9:58:c6:ad:20:05:3e:4e:39:f2:29:08: 9e:ba:58:7d:07:70:2c:0a:c2:f9:8f:be:b3:86:1b: ca:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E0:76:24:5A:42:31:E4:5B:0A:BA:0F:E0:59:90:8D:AE:9C:B2:81:97 X509v3 Authority Key Identifier: keyid:44:4E:B7:53:54:C3:70:6E:39:DE:A0:8F:E9:50:44:CD:26:63:D6:AE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9186004/201F68601EF811EEA9265D24C4F9AE02/RE63U1TDcG453qCP6VBEzSZj1q4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RE63U1TDcG453qCP6VBEzSZj1q4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9186004/201F68601EF811EEA9265D24C4F9AE02/RE63U1TDcG453qCP6VBEzSZj1q4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2d:da:14:ca:69:ce:c0:af:74:eb:54:00:50:7c:21:a3:6b:88: eb:77:27:3b:4f:63:fa:6e:5d:9e:67:7e:0c:c1:a5:5b:f3:6e: f8:ec:5c:98:40:71:f4:a3:d9:42:40:cc:15:7c:c7:77:75:74: 2f:7f:2e:8a:c4:fb:d6:9d:56:1e:44:ee:49:85:a7:2a:02:7b: ae:51:3c:8b:ee:19:67:67:bc:c5:a3:76:7a:30:db:74:00:4a: 9a:ba:4c:8b:a3:74:b7:8d:cf:75:c4:78:56:87:e3:cb:40:49: 20:70:db:88:5d:d6:11:c4:82:ef:95:9b:4f:29:85:7a:3c:f1: a6:50:0a:02:9d:41:52:70:9e:47:f8:ee:a6:7c:62:1a:38:ab: a1:61:68:39:6c:e6:a0:57:5f:8d:4f:2a:d4:e2:b8:d2:b0:ac: c0:15:6a:f7:eb:44:b2:9e:56:d0:ab:c8:4f:ed:1e:ab:bc:48: c7:fb:f3:cf:cd:70:17:16:ef:30:28:31:ab:95:14:40:5d:83: f3:09:b8:1a:ad:99:e1:e6:63:89:ab:db:54:8f:61:27:6a:09: 2d:fc:5b:f7:6e:08:37:ce:93:2d:08:13:2a:38:0e:09:a7:71: 9f:0a:e6:54:64:bc:28:04:b8:4e:d1:ee:59:ec:8b:32:57:20: 00:8f:0b:d9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAWMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODYwMDQxMTAvBgNVBAUTKDQ0NEVCNzUzNTRDMzcwNkUzOURFQTA4RkU5NTA0NENE MjY2M0Q2QUUwHhcNMjUwNTMxMDMzODA3WhcNMjUwNjA3MDMzODA3WjAYMRYwFAYD VQQDEw02ODNhNzk5Zi00MGQ0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2BKup/bvm6C13fb58pOaHGjE2oSyTi893WA9Dqd7qhh7RHEzTp+AWUWTEp1P BgYAkLyYQscoTHQRBfIWmdkiAoG9S5GLZpeIlHNum9HKqO7abd0YXh0Knu+c/7hf PWBoMpzLQtGA+k1OpGp709cGNS0ZaoMOzGoDLYOmPrucgnbeNk3DuVjOgh4OkOjo z2dQH6BM1xP7HGXS3B++hT3XsqDEVbJE2kXNG4c3+4IHf+uu84scDRBMkexlREPM 4AxlqY/llH86YK8BHcVYG+uACWGYecY7OQB0xObogQgnzCAgcRHZWMatIAU+Tjny KQieulh9B3AsCsL5j76zhhvKIQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOB2JFpC MeRbCroP4FmQja6csoGXMB8GA1UdIwQYMBaAFEROt1NUw3BuOd6gj+lQRM0mY9au MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NjAwNC8yMDFGNjg2MDFF RjgxMUVFQTkyNjVEMjRDNEY5QUUwMi9SRTYzVTFURGNHNDUzcUNQNlZCRXpTWmox cTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1JFNjNVMVREY0c0NTNxQ1A2VkJFelNaajFxNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NjAwNC8yMDFGNjg2MDFFRjgxMUVFQTkyNjVEMjRDNEY5QUUwMi9SRTYzVTFURGNH NDUzcUNQNlZCRXpTWmoxcTQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAt2hTKac7Ar3TrVABQfCGja4jrdyc7T2P6bl2eZ34MwaVb82747FyY QHH0o9lCQMwVfMd3dXQvfy6KxPvWnVYeRO5JhacqAnuuUTyL7hlnZ7zFo3Z6MNt0 AEqaukyLo3S3jc91xHhWh+PLQEkgcNuIXdYRxILvlZtPKYV6PPGmUAoCnUFScJ5H +O6mfGIaOKuhYWg5bOagV1+NTyrU4rjSsKzAFWr360SynlbQq8hP7R6rvEjH+/PP zXAXFu8wKDGrlRRAXYPzCbgarZnh5mOJq9tUj2Enagkt/Fv3bgg3zpMtCBMqOA4J p3GfCuZUZLwoBLhO0e5Z7IsyVyAAjwvZ -----END CERTIFICATE-----Generated at Sat May 31 17:53:06 2025 by rpki-client