$ rpki-client -vvf rpki.apnic.net/member_repository/A91A1D43/8929DFDEEA2811EDB7DD0118C4F9AE02/C-AoY1W14laYjORU35P8D8p_YEA.mft File: C-AoY1W14laYjORU35P8D8p_YEA.mft (raw, json) Hash identifier: TvZEL/SceudN6lYFuWXIDUeu3qEV8qPbc9JoPvk/1Zc= Subject key identifier: 90:44:E3:B8:61:72:FA:83:1E:64:03:70:DC:7B:85:12:A5:F2:47:0B Authority key identifier: 0B:E0:28:63:55:B5:E2:56:98:8C:E4:54:DF:93:FC:0F:CA:7F:60:40 Certificate issuer: /CN=A91A1D43/serialNumber=0BE0286355B5E256988CE454DF93FC0FCA7F6040 Certificate serial: 018B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C-AoY1W14laYjORU35P8D8p_YEA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A1D43/8929DFDEEA2811EDB7DD0118C4F9AE02/C-AoY1W14laYjORU35P8D8p_YEA.mft Manifest number: 0185 Signing time: Sat 31 May 2025 03:16:51 +0000 Manifest this update: Sat 31 May 2025 03:16:51 +0000 Manifest next update: Sat 07 Jun 2025 03:16:51 +0000 Files and hashes: 1: C-AoY1W14laYjORU35P8D8p_YEA.crl (hash: VMaOw7bmwYIcHZ4A9W+GjP4aykIG8P0wO5NvAOEXNgQ=) 2: 8BCB2CFAEA3911EDB91E190BC4F9AE02.roa (hash: Gn3bl+JlcAfK7NlSkgTYoj+Bsl8m7KISn3HM2ix+w34=) 3: 8B1BDC14EA3911EDB91E190BC4F9AE02.roa (hash: +iPaNHR0I7CGA19//oU6de8PSF7FBlMHBTXC8ZhTdUo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A1D43/8929DFDEEA2811EDB7DD0118C4F9AE02/C-AoY1W14laYjORU35P8D8p_YEA.crl rsync://rpki.apnic.net/member_repository/A91A1D43/8929DFDEEA2811EDB7DD0118C4F9AE02/C-AoY1W14laYjORU35P8D8p_YEA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C-AoY1W14laYjORU35P8D8p_YEA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 03:16:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 395 (0x18b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A1D43, serialNumber=0BE0286355B5E256988CE454DF93FC0FCA7F6040 Validity Not Before: May 31 03:16:51 2025 GMT Not After : Jun 7 03:16:51 2025 GMT Subject: CN=683a74a3-8632 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:96:32:fd:dc:de:87:b4:0c:2c:7d:6f:84:3b:1c: f5:bf:d4:b8:1f:41:fd:47:ff:f3:a3:f1:83:13:05: 9c:15:71:1e:28:50:2a:7f:de:45:01:1c:65:01:15: 1b:96:6b:32:4f:ec:93:e9:bb:f8:2b:ca:1b:00:f6: 91:41:6e:f7:79:8b:28:bc:ee:3d:ed:6e:08:b0:82: cb:27:13:da:e6:2e:67:f4:7a:b7:9d:98:99:c5:a2: 07:61:e4:d3:50:9b:fb:ef:6f:a1:3b:af:63:75:3c: 65:8f:0f:65:3c:b6:25:04:d5:07:4c:70:43:78:7d: 80:be:0e:c9:ea:87:6d:11:50:2d:13:89:91:33:a2: 67:52:20:d7:c5:2b:86:6a:96:27:d1:5e:f4:94:2e: 9e:70:ae:72:5c:a6:b2:6f:41:c5:2e:4e:a8:0c:6b: fa:71:2c:2a:81:ad:9a:04:9d:c1:de:ee:cb:68:f3: 73:db:8a:e6:be:1b:35:04:4a:f3:7b:d2:62:6c:9d: 06:58:09:a6:12:83:11:1c:2f:e7:da:4a:38:4a:78: eb:13:07:d3:4d:f1:d7:cd:12:af:6d:2d:50:3b:0c: 79:c0:11:dd:e6:1d:8b:f7:a2:ef:ad:ae:2c:ff:a0: 44:9e:ac:c8:59:bf:3e:9a:bb:10:cd:9c:9c:86:57: c9:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 90:44:E3:B8:61:72:FA:83:1E:64:03:70:DC:7B:85:12:A5:F2:47:0B X509v3 Authority Key Identifier: keyid:0B:E0:28:63:55:B5:E2:56:98:8C:E4:54:DF:93:FC:0F:CA:7F:60:40 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A1D43/8929DFDEEA2811EDB7DD0118C4F9AE02/C-AoY1W14laYjORU35P8D8p_YEA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C-AoY1W14laYjORU35P8D8p_YEA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A1D43/8929DFDEEA2811EDB7DD0118C4F9AE02/C-AoY1W14laYjORU35P8D8p_YEA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 60:bc:8a:8b:a1:da:c9:f4:1b:e5:3f:55:46:23:99:8a:a8:f7: 5f:42:b6:3c:e9:f8:6a:24:42:be:1e:7e:7b:c5:27:df:a0:89: c0:5d:d4:ec:8f:d0:ad:7e:02:9d:8b:32:e6:ce:7a:26:54:8f: 10:29:e4:1a:d5:ef:8e:85:0a:f8:5f:2b:60:3c:7a:30:d7:dd: 55:14:3d:a8:45:22:31:03:1a:64:a2:43:3d:f3:22:84:46:2b: 78:b7:ae:78:ad:df:b1:cd:b5:b0:3e:ce:ce:77:c5:25:57:24: da:73:6b:a7:82:54:a9:f5:31:5b:ef:54:6f:95:0f:97:d9:99: 70:fa:6f:12:05:60:3c:5d:fd:11:0f:84:8c:fb:0d:db:1f:14: 1f:94:e7:81:ea:f6:34:c5:84:c6:01:62:11:6e:ba:d6:93:ef: c2:17:e0:4a:24:0e:63:42:da:db:09:46:5a:f5:54:ba:02:71: 6f:51:1d:a0:03:24:32:0b:27:c7:59:55:ff:52:cc:c2:eb:16: c9:c2:31:68:ac:e5:87:fe:83:38:9e:c4:4b:40:87:c9:ff:3b: 20:11:8c:59:e7:dc:80:14:1b:fc:83:1a:e2:54:d1:1f:e0:9a: 36:51:81:a2:fd:80:de:d2:ac:8f:ea:78:8e:cd:4e:65:8d:19: 4e:6c:ed:ce -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAYswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTFENDMxMTAvBgNVBAUTKDBCRTAyODYzNTVCNUUyNTY5ODhDRTQ1NERGOTNGQzBG Q0E3RjYwNDAwHhcNMjUwNTMxMDMxNjUxWhcNMjUwNjA3MDMxNjUxWjAYMRYwFAYD VQQDEw02ODNhNzRhMy04NjMyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAljL93N6HtAwsfW+EOxz1v9S4H0H9R//zo/GDEwWcFXEeKFAqf95FARxlARUb lmsyT+yT6bv4K8obAPaRQW73eYsovO497W4IsILLJxPa5i5n9Hq3nZiZxaIHYeTT UJv772+hO69jdTxljw9lPLYlBNUHTHBDeH2Avg7J6odtEVAtE4mRM6JnUiDXxSuG apYn0V70lC6ecK5yXKayb0HFLk6oDGv6cSwqga2aBJ3B3u7LaPNz24rmvhs1BErz e9JibJ0GWAmmEoMRHC/n2ko4SnjrEwfTTfHXzRKvbS1QOwx5wBHd5h2L96Lvra4s /6BEnqzIWb8+mrsQzZychlfJCwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJBE47hh cvqDHmQDcNx7hRKl8kcLMB8GA1UdIwQYMBaAFAvgKGNVteJWmIzkVN+T/A/Kf2BA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMUQ0My84OTI5REZERUVB MjgxMUVEQjdERDAxMThDNEY5QUUwMi9DLUFvWTFXMTRsYVlqT1JVMzVQOEQ4cF9Z RUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0MtQW9ZMVcxNGxhWWpPUlUzNVA4RDhwX1lFQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MUQ0My84OTI5REZERUVBMjgxMUVEQjdERDAxMThDNEY5QUUwMi9DLUFvWTFXMTRs YVlqT1JVMzVQOEQ4cF9ZRUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBgvIqLodrJ9BvlP1VGI5mKqPdfQrY86fhqJEK+Hn57xSffoInAXdTs j9CtfgKdizLmznomVI8QKeQa1e+OhQr4XytgPHow191VFD2oRSIxAxpkokM98yKE Rit4t654rd+xzbWwPs7Od8UlVyTac2unglSp9TFb71RvlQ+X2Zlw+m8SBWA8Xf0R D4SM+w3bHxQflOeB6vY0xYTGAWIRbrrWk+/CF+BKJA5jQtrbCUZa9VS6AnFvUR2g AyQyCyfHWVX/UszC6xbJwjForOWH/oM4nsRLQIfJ/zsgEYxZ59yAFBv8gxriVNEf 4Jo2UYGi/YDe0qyP6niOzU5ljRlObO3O -----END CERTIFICATE-----Generated at Sat May 31 16:33:59 2025 by rpki-client