$ rpki-client -vvf rpki.apnic.net/member_repository/A918D727/4798FB0637FB11EEB4296D3DC4F9AE02/A0iYvB-xsaJGF6zZvIMq6D6vni0.mft File: A0iYvB-xsaJGF6zZvIMq6D6vni0.mft (raw, json) Hash identifier: FfQq9bScAvl1Cv1WgW8IX22OylCAu+9VaE53w7ZdWuE= Subject key identifier: 15:13:83:D9:D4:88:B9:A2:5C:25:81:86:41:CE:07:ED:1B:04:1F:A4 Authority key identifier: 03:48:98:BC:1F:B1:B1:A2:46:17:AC:D9:BC:83:2A:E8:3E:AF:9E:2D Certificate issuer: /CN=A918D727/serialNumber=034898BC1FB1B1A24617ACD9BC832AE83EAF9E2D Certificate serial: 0153 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/A0iYvB-xsaJGF6zZvIMq6D6vni0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918D727/4798FB0637FB11EEB4296D3DC4F9AE02/A0iYvB-xsaJGF6zZvIMq6D6vni0.mft Manifest number: 0151 Signing time: Sat 31 May 2025 03:49:12 +0000 Manifest this update: Sat 31 May 2025 03:49:11 +0000 Manifest next update: Sat 07 Jun 2025 03:49:11 +0000 Files and hashes: 1: A0iYvB-xsaJGF6zZvIMq6D6vni0.crl (hash: A9heNQmSs1BKndgAob8uiG7tc64uaXqt/dhgLe4bESU=) 2: A7E3DAB237FB11EEBB03FD6CC4F9AE02.roa (hash: 8KhdFf717KdtqIgoQSLRSc05ReV0MsZo2CeN3+2la54=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918D727/4798FB0637FB11EEB4296D3DC4F9AE02/A0iYvB-xsaJGF6zZvIMq6D6vni0.crl rsync://rpki.apnic.net/member_repository/A918D727/4798FB0637FB11EEB4296D3DC4F9AE02/A0iYvB-xsaJGF6zZvIMq6D6vni0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/A0iYvB-xsaJGF6zZvIMq6D6vni0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 03:49:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 339 (0x153) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918D727, serialNumber=034898BC1FB1B1A24617ACD9BC832AE83EAF9E2D Validity Not Before: May 31 03:49:11 2025 GMT Not After : Jun 7 03:49:11 2025 GMT Subject: CN=683a7c37-b427 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:e7:84:d9:2d:99:0b:e9:f6:4e:75:6f:4f:aa: bb:b3:a5:b5:50:6f:d4:aa:9e:e8:ee:cf:2c:12:d3: 75:96:d1:89:da:c3:48:a7:08:b9:61:fa:10:9e:56: dd:16:b1:b7:25:c5:cd:b2:13:a9:21:ad:ee:c3:4e: 27:e4:19:73:65:58:cb:a5:ca:a9:39:13:a0:57:a0: de:99:21:dd:e2:68:e2:84:ef:fc:58:48:bb:03:c1: fc:cf:32:0d:1b:ef:6b:7f:7d:56:a0:67:a2:29:79: 2f:f5:b1:8d:40:a8:bc:c4:dc:76:85:fc:81:4a:89: ec:8d:15:5b:af:01:54:5f:8c:b2:9b:a2:13:ec:b3: 7f:6f:a3:d9:2a:8f:3c:cc:a7:73:7a:b5:c9:03:44: 46:e7:e0:8b:81:ba:f7:dc:10:20:2c:a4:76:4d:d5: 39:58:47:ae:d8:9c:6f:de:d0:19:4c:bd:af:59:97: 7d:24:a8:ad:bf:1a:f9:67:50:d7:db:e6:dc:04:97: 1f:20:f2:50:c4:71:99:27:c3:03:ba:fa:5d:0a:87: 6d:50:b7:ac:11:9c:bc:69:2d:b7:49:77:58:33:b7: 96:a6:b2:63:91:44:fa:0d:13:b3:d3:db:bc:a6:d8: d9:b9:ee:43:09:c1:69:82:2c:af:bc:31:97:49:ec: b3:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 15:13:83:D9:D4:88:B9:A2:5C:25:81:86:41:CE:07:ED:1B:04:1F:A4 X509v3 Authority Key Identifier: keyid:03:48:98:BC:1F:B1:B1:A2:46:17:AC:D9:BC:83:2A:E8:3E:AF:9E:2D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918D727/4798FB0637FB11EEB4296D3DC4F9AE02/A0iYvB-xsaJGF6zZvIMq6D6vni0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/A0iYvB-xsaJGF6zZvIMq6D6vni0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918D727/4798FB0637FB11EEB4296D3DC4F9AE02/A0iYvB-xsaJGF6zZvIMq6D6vni0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1c:5f:5a:69:83:f9:d3:07:12:03:76:50:23:d0:d3:6f:38:2d: 28:51:78:70:6f:d6:cb:6f:9c:3e:8f:0e:be:ff:86:61:2b:1b: 13:ed:12:d9:77:88:e7:31:f6:c5:de:cd:cc:54:da:7f:14:ab: 75:20:8b:6e:23:10:84:5a:67:bf:21:ad:b9:73:08:95:6a:25: 29:bf:29:25:f1:38:20:5d:5e:1d:de:30:fb:e3:cc:fa:a4:ef: a4:55:23:13:2a:dd:cc:cd:ba:d0:20:f3:d3:7c:f9:4e:b3:a2: bb:2c:29:dd:63:51:14:b7:ae:7a:64:5d:f3:47:73:69:a7:ad: 3b:e6:85:b1:b0:e9:96:d7:35:bf:7b:49:7e:26:82:a6:df:3b: 27:73:7d:9b:89:b3:6e:2c:1e:69:53:85:55:d9:e4:2e:c0:de: 34:2a:ea:27:76:bc:9c:9d:79:c8:12:d2:be:36:66:50:4a:53: fd:40:8e:9f:99:e6:7d:6b:2d:59:4a:8e:f5:4c:b4:a3:36:f2: 3e:51:c2:86:9c:a4:d2:c7:da:c4:c3:45:41:9c:56:e4:d1:b0: 13:10:82:54:e5:e8:cc:a8:94:53:f6:e3:55:99:d7:e7:cf:fc: 89:61:59:1c:d6:98:6e:06:e8:a6:f2:8a:45:f0:3e:39:3a:fc: fb:71:4b:b7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAVMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEQ3MjcxMTAvBgNVBAUTKDAzNDg5OEJDMUZCMUIxQTI0NjE3QUNEOUJDODMyQUU4 M0VBRjlFMkQwHhcNMjUwNTMxMDM0OTExWhcNMjUwNjA3MDM0OTExWjAYMRYwFAYD VQQDEw02ODNhN2MzNy1iNDI3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtueE2S2ZC+n2TnVvT6q7s6W1UG/Uqp7o7s8sEtN1ltGJ2sNIpwi5YfoQnlbd FrG3JcXNshOpIa3uw04n5BlzZVjLpcqpOROgV6DemSHd4mjihO/8WEi7A8H8zzIN G+9rf31WoGeiKXkv9bGNQKi8xNx2hfyBSonsjRVbrwFUX4yym6IT7LN/b6PZKo88 zKdzerXJA0RG5+CLgbr33BAgLKR2TdU5WEeu2Jxv3tAZTL2vWZd9JKitvxr5Z1DX 2+bcBJcfIPJQxHGZJ8MDuvpdCodtULesEZy8aS23SXdYM7eWprJjkUT6DROz09u8 ptjZue5DCcFpgiyvvDGXSeyz7wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBUTg9nU iLmiXCWBhkHOB+0bBB+kMB8GA1UdIwQYMBaAFANImLwfsbGiRhes2byDKug+r54t MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RDcyNy80Nzk4RkIwNjM3 RkIxMUVFQjQyOTZEM0RDNEY5QUUwMi9BMGlZdkIteHNhSkdGNnpadklNcTZENnZu aTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0EwaVl2Qi14c2FKR0Y2elp2SU1xNkQ2dm5pMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 RDcyNy80Nzk4RkIwNjM3RkIxMUVFQjQyOTZEM0RDNEY5QUUwMi9BMGlZdkIteHNh SkdGNnpadklNcTZENnZuaTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAcX1ppg/nTBxIDdlAj0NNvOC0oUXhwb9bLb5w+jw6+/4ZhKxsT7RLZ d4jnMfbF3s3MVNp/FKt1IItuIxCEWme/Ia25cwiVaiUpvykl8TggXV4d3jD748z6 pO+kVSMTKt3MzbrQIPPTfPlOs6K7LCndY1EUt656ZF3zR3Npp6075oWxsOmW1zW/ e0l+JoKm3zsnc32bibNuLB5pU4VV2eQuwN40KuondrycnXnIEtK+NmZQSlP9QI6f meZ9ay1ZSo71TLSjNvI+UcKGnKTSx9rEw0VBnFbk0bATEIJU5ejMqJRT9uNVmdfn z/yJYVkc1phuBuim8opF8D45Ovz7cUu3 -----END CERTIFICATE-----Generated at Sat May 31 17:11:30 2025 by rpki-client