$ rpki-client -vvf rpki.apnic.net/member_repository/A918E293/2841D92E17DC11EE88804A71C4F9AE02/tJhXdJtDHfMjL417C4OVpy_9GEk.mft File: tJhXdJtDHfMjL417C4OVpy_9GEk.mft (raw, json) Hash identifier: 9md7+9D8fE07+Ekd/LEsDmPENlPGiIlyoe1Ebn5h3mw= Subject key identifier: D0:57:7F:B8:82:AC:19:6D:1A:D2:4B:E5:3D:26:49:68:DE:29:25:DC Authority key identifier: B4:98:57:74:9B:43:1D:F3:23:2F:8D:7B:0B:83:95:A7:2F:FD:18:49 Certificate issuer: /CN=A918E293/serialNumber=B49857749B431DF3232F8D7B0B8395A72FFD1849 Certificate serial: 016B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tJhXdJtDHfMjL417C4OVpy_9GEk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918E293/2841D92E17DC11EE88804A71C4F9AE02/tJhXdJtDHfMjL417C4OVpy_9GEk.mft Manifest number: 0168 Signing time: Sat 31 May 2025 03:35:25 +0000 Manifest this update: Sat 31 May 2025 03:35:24 +0000 Manifest next update: Sat 07 Jun 2025 03:35:24 +0000 Files and hashes: 1: tJhXdJtDHfMjL417C4OVpy_9GEk.crl (hash: U9dsMIljNCTpTjsg1FYYIiEtkZTIiUA7blkwis2XUWs=) 2: D865F69A233111EE813C5D26C4F9AE02.roa (hash: Lb0hJu9MZe6wLWtHrKtqcwpP08rypBWIlAZybLR4Lp0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918E293/2841D92E17DC11EE88804A71C4F9AE02/tJhXdJtDHfMjL417C4OVpy_9GEk.crl rsync://rpki.apnic.net/member_repository/A918E293/2841D92E17DC11EE88804A71C4F9AE02/tJhXdJtDHfMjL417C4OVpy_9GEk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tJhXdJtDHfMjL417C4OVpy_9GEk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 03:35:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 363 (0x16b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918E293, serialNumber=B49857749B431DF3232F8D7B0B8395A72FFD1849 Validity Not Before: May 31 03:35:24 2025 GMT Not After : Jun 7 03:35:24 2025 GMT Subject: CN=683a78fc-8f36 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:44:fb:41:25:63:42:07:19:f5:1a:31:7d:77: aa:4a:e8:0d:35:8c:4f:26:92:c9:0b:cf:d6:9a:20: 4f:2b:2b:d3:69:04:0d:45:5f:c8:fe:19:e3:86:1f: bc:0d:f3:56:20:84:e8:48:b6:25:52:8c:25:98:d4: a3:09:d4:68:88:3c:c2:fb:87:ec:45:6b:42:5b:ce: c8:17:21:8f:a0:05:99:0d:d7:54:b8:fb:52:76:78: 63:67:f2:56:25:b4:fc:d5:85:fd:7d:45:f4:54:0e: 21:d8:56:fb:35:71:05:a3:14:57:89:0d:6e:4b:0e: 80:7f:eb:0b:29:cf:51:36:d9:59:2c:a4:bd:b5:8a: 75:36:c0:a8:e2:5a:39:ad:e1:ca:0c:96:c4:d5:6f: c3:c0:f7:e9:c6:a5:42:5b:4d:48:67:95:90:1c:7b: 94:07:bf:10:ae:93:55:14:71:86:12:85:94:7f:f6: 02:47:ea:70:7d:b7:c7:cc:43:c2:f6:1f:56:00:8e: 96:70:60:23:60:50:0c:54:33:46:c2:41:09:43:72: a2:74:30:f2:ae:d0:30:d0:1d:e1:27:e6:01:72:ad: 68:ab:bf:93:57:dc:34:22:72:2b:39:2c:f1:f9:ed: d6:48:c4:3a:12:21:48:34:e7:94:b5:47:4b:b0:0a: 5c:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D0:57:7F:B8:82:AC:19:6D:1A:D2:4B:E5:3D:26:49:68:DE:29:25:DC X509v3 Authority Key Identifier: keyid:B4:98:57:74:9B:43:1D:F3:23:2F:8D:7B:0B:83:95:A7:2F:FD:18:49 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918E293/2841D92E17DC11EE88804A71C4F9AE02/tJhXdJtDHfMjL417C4OVpy_9GEk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tJhXdJtDHfMjL417C4OVpy_9GEk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918E293/2841D92E17DC11EE88804A71C4F9AE02/tJhXdJtDHfMjL417C4OVpy_9GEk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 17:18:bd:81:3c:10:c1:60:89:42:25:ff:87:a1:d7:4f:02:d4: 0c:6b:66:7c:8f:55:18:dd:c7:5a:20:f2:af:33:f5:e6:b7:4e: 39:45:5a:7b:d2:c1:f9:fc:d0:99:8e:d9:3a:41:ed:f6:0c:c5: 96:19:b9:21:73:10:4b:e7:72:f8:eb:f0:6e:be:a4:50:21:ba: 12:7b:73:fa:b9:19:3c:8b:04:c5:c9:bc:df:35:d8:99:7b:03: 1f:83:f3:f7:ac:2a:82:4d:ea:d5:82:d1:4a:1b:d0:47:bc:c0: c2:21:3f:46:0d:5f:d1:41:45:a5:02:e7:33:11:9a:f8:dd:d5: da:3b:47:42:8d:6c:ff:39:14:5c:93:8f:10:95:e8:9d:da:74: dd:7e:4c:f6:70:66:83:69:5f:40:66:cf:37:73:19:ff:03:de: 36:a9:12:9e:69:1c:67:ee:cb:6f:9c:48:46:fc:d7:93:2f:f7: 2a:dc:6f:a3:ee:11:96:05:b2:40:33:62:c8:73:09:8f:5c:24: 35:68:3e:2d:96:ef:43:a4:66:a2:41:2c:58:c1:ff:82:31:ef: 21:18:18:06:b3:b9:16:fe:e1:59:6a:3f:ee:93:94:58:53:eb: 0b:9e:6d:61:79:b1:d8:ad:20:32:d7:3e:f0:03:36:9e:d4:45: c7:ec:a7:ef -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAWswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEUyOTMxMTAvBgNVBAUTKEI0OTg1Nzc0OUI0MzFERjMyMzJGOEQ3QjBCODM5NUE3 MkZGRDE4NDkwHhcNMjUwNTMxMDMzNTI0WhcNMjUwNjA3MDMzNTI0WjAYMRYwFAYD VQQDEw02ODNhNzhmYy04ZjM2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAp0T7QSVjQgcZ9RoxfXeqSugNNYxPJpLJC8/WmiBPKyvTaQQNRV/I/hnjhh+8 DfNWIIToSLYlUowlmNSjCdRoiDzC+4fsRWtCW87IFyGPoAWZDddUuPtSdnhjZ/JW JbT81YX9fUX0VA4h2Fb7NXEFoxRXiQ1uSw6Af+sLKc9RNtlZLKS9tYp1NsCo4lo5 reHKDJbE1W/DwPfpxqVCW01IZ5WQHHuUB78QrpNVFHGGEoWUf/YCR+pwfbfHzEPC 9h9WAI6WcGAjYFAMVDNGwkEJQ3KidDDyrtAw0B3hJ+YBcq1oq7+TV9w0InIrOSzx +e3WSMQ6EiFINOeUtUdLsApcWQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNBXf7iC rBltGtJL5T0mSWjeKSXcMB8GA1UdIwQYMBaAFLSYV3SbQx3zIy+NewuDlacv/RhJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RTI5My8yODQxRDkyRTE3 REMxMUVFODg4MDRBNzFDNEY5QUUwMi90SmhYZEp0REhmTWpMNDE3QzRPVnB5XzlH RWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RKaFhkSnRESGZNakw0MTdDNE9WcHlfOUdFay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 RTI5My8yODQxRDkyRTE3REMxMUVFODg4MDRBNzFDNEY5QUUwMi90SmhYZEp0REhm TWpMNDE3QzRPVnB5XzlHRWsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAXGL2BPBDBYIlCJf+HoddPAtQMa2Z8j1UY3cdaIPKvM/Xmt045RVp7 0sH5/NCZjtk6Qe32DMWWGbkhcxBL53L46/BuvqRQIboSe3P6uRk8iwTFybzfNdiZ ewMfg/P3rCqCTerVgtFKG9BHvMDCIT9GDV/RQUWlAuczEZr43dXaO0dCjWz/ORRc k48Qleid2nTdfkz2cGaDaV9AZs83cxn/A942qRKeaRxn7stvnEhG/NeTL/cq3G+j 7hGWBbJAM2LIcwmPXCQ1aD4tlu9DpGaiQSxYwf+CMe8hGBgGs7kW/uFZaj/uk5RY U+sLnm1hebHYrSAy1z7wAzae1EXH7Kfv -----END CERTIFICATE-----Generated at Sat May 31 17:40:59 2025 by rpki-client