$ rpki-client -vvf rpki.apnic.net/member_repository/A91650EA/521D1AD8D76711EEAF22C066C4F9AE02/SyWxRyDwREuz1mj5Y1hDVPf6whM.mft File: SyWxRyDwREuz1mj5Y1hDVPf6whM.mft (raw, json) Hash identifier: uwBeTPhtqQcWSzxB+Yt03k86NzMprT10OpywMlf6eno= Subject key identifier: D0:F6:B6:F7:3A:7B:1C:46:99:B8:15:2E:D6:3A:2E:EC:1C:8E:CD:CE Authority key identifier: 4B:25:B1:47:20:F0:44:4B:B3:D6:68:F9:63:58:43:54:F7:FA:C2:13 Certificate issuer: /CN=A91650EA/serialNumber=4B25B14720F0444BB3D668F963584354F7FAC213 Certificate serial: D9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SyWxRyDwREuz1mj5Y1hDVPf6whM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91650EA/521D1AD8D76711EEAF22C066C4F9AE02/SyWxRyDwREuz1mj5Y1hDVPf6whM.mft Manifest number: D7 Signing time: Fri 25 Apr 2025 04:38:15 +0000 Manifest this update: Fri 25 Apr 2025 04:38:14 +0000 Manifest next update: Fri 02 May 2025 04:38:14 +0000 Files and hashes: 1: SyWxRyDwREuz1mj5Y1hDVPf6whM.crl (hash: Re3SJP6m9q9DvtUhoGt8ETppcAyxJLFAWFNwXORJGd8=) 2: D0F245E0D76711EE99C72C29C4F9AE02.roa (hash: 9VKla165NEuwDujrYh1FdBvK2ZH/U/K5NZJL+RjIV7c=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91650EA/521D1AD8D76711EEAF22C066C4F9AE02/SyWxRyDwREuz1mj5Y1hDVPf6whM.crl rsync://rpki.apnic.net/member_repository/A91650EA/521D1AD8D76711EEAF22C066C4F9AE02/SyWxRyDwREuz1mj5Y1hDVPf6whM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SyWxRyDwREuz1mj5Y1hDVPf6whM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 04:38:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 217 (0xd9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91650EA, serialNumber=4B25B14720F0444BB3D668F963584354F7FAC213 Validity Not Before: Apr 25 04:38:14 2025 GMT Not After : May 2 04:38:14 2025 GMT Subject: CN=680b11b7-affe Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:46:ca:f5:ab:29:ef:0b:1a:09:1c:61:d8:e1: d7:8b:43:9e:26:fe:46:9b:3a:7f:0c:35:09:96:13: e9:e3:c4:09:14:05:19:96:6f:83:83:2b:cd:12:ad: ae:39:b3:c5:33:60:39:5f:cc:61:34:a8:0e:f6:b6: 3c:ec:95:28:61:27:ce:fc:04:87:59:84:6a:c5:1f: 30:d5:e6:56:cc:0b:67:1e:6d:b9:c0:de:10:47:e0: 64:a3:24:03:fe:41:4b:7c:2f:c2:e4:a5:36:47:ee: 96:3f:91:f3:42:47:5a:89:82:25:6f:d4:1d:a9:a0: 28:c3:ab:02:2e:1c:51:d6:dc:51:80:b0:01:20:79: 14:a6:86:1f:b9:aa:28:99:d4:f4:a8:45:98:31:38: ef:23:49:d8:c5:02:bc:d5:fb:bc:ab:5c:da:cf:c7: ca:0b:81:ce:a9:7d:19:06:d6:18:71:cb:6b:e3:22: 17:3d:bf:e5:90:36:cb:b1:fb:60:fd:57:d8:90:58: 4f:c7:a8:f9:d0:29:14:bd:b4:ae:43:93:e3:58:25: a7:e4:a7:48:81:9e:d5:7e:b4:f7:95:21:49:81:9b: ef:a6:22:a6:e6:67:3e:56:dd:f7:97:05:26:29:fc: 2d:b8:12:0a:99:0d:04:43:bb:5b:88:fa:9e:94:ed: 09:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D0:F6:B6:F7:3A:7B:1C:46:99:B8:15:2E:D6:3A:2E:EC:1C:8E:CD:CE X509v3 Authority Key Identifier: keyid:4B:25:B1:47:20:F0:44:4B:B3:D6:68:F9:63:58:43:54:F7:FA:C2:13 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91650EA/521D1AD8D76711EEAF22C066C4F9AE02/SyWxRyDwREuz1mj5Y1hDVPf6whM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SyWxRyDwREuz1mj5Y1hDVPf6whM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91650EA/521D1AD8D76711EEAF22C066C4F9AE02/SyWxRyDwREuz1mj5Y1hDVPf6whM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 37:95:e0:25:b6:48:25:38:34:05:b0:75:ba:8f:84:68:fe:69: b7:11:53:ae:63:73:e5:90:8b:c7:48:55:36:b7:ed:d4:29:af: 38:1d:c3:3f:2f:76:41:e1:55:1a:c4:5d:99:d2:4c:98:87:a3: fa:6f:19:89:2d:ef:9c:a6:3a:09:78:e4:b3:82:37:a1:64:bd: 50:65:ce:6d:65:95:be:ac:06:38:62:98:fa:9c:24:46:da:e5: 00:ea:79:95:5a:d5:09:ac:5e:c6:97:22:26:67:92:4e:53:7d: 26:d0:d5:6a:77:ba:2a:5c:ee:fb:4e:3c:1f:ea:23:c8:c3:34: 24:ce:1e:97:d9:6e:c5:2f:26:71:47:32:cf:e2:09:e8:8d:12: 4e:c0:98:6a:77:d1:95:7e:68:85:77:37:17:51:29:65:e4:5f: f3:2c:95:62:56:85:10:5a:0a:68:d7:80:05:be:b5:4c:62:d1: a3:e1:5f:64:ee:9a:a7:23:7e:99:42:7a:4f:ee:30:2c:39:a9: b9:de:e5:f8:55:88:a8:a9:d3:cb:d2:2b:77:de:85:8a:5a:29: 18:93:dd:74:87:dc:a6:dd:e2:36:60:a7:1a:07:02:83:9b:d1: 69:f3:aa:31:7a:1a:87:53:20:48:f6:40:78:1f:43:16:56:1d: c0:a7:26:b2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICANkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjUwRUExMTAvBgNVBAUTKDRCMjVCMTQ3MjBGMDQ0NEJCM0Q2NjhGOTYzNTg0MzU0 RjdGQUMyMTMwHhcNMjUwNDI1MDQzODE0WhcNMjUwNTAyMDQzODE0WjAYMRYwFAYD VQQDEw02ODBiMTFiNy1hZmZlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzEbK9asp7wsaCRxh2OHXi0OeJv5Gmzp/DDUJlhPp48QJFAUZlm+DgyvNEq2u ObPFM2A5X8xhNKgO9rY87JUoYSfO/ASHWYRqxR8w1eZWzAtnHm25wN4QR+BkoyQD /kFLfC/C5KU2R+6WP5HzQkdaiYIlb9QdqaAow6sCLhxR1txRgLABIHkUpoYfuaoo mdT0qEWYMTjvI0nYxQK81fu8q1zaz8fKC4HOqX0ZBtYYcctr4yIXPb/lkDbLsftg /VfYkFhPx6j50CkUvbSuQ5PjWCWn5KdIgZ7VfrT3lSFJgZvvpiKm5mc+Vt33lwUm KfwtuBIKmQ0EQ7tbiPqelO0JnwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFND2tvc6 exxGmbgVLtY6Luwcjs3OMB8GA1UdIwQYMBaAFEslsUcg8ERLs9Zo+WNYQ1T3+sIT MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NTBFQS81MjFEMUFEOEQ3 NjcxMUVFQUYyMkMwNjZDNEY5QUUwMi9TeVd4UnlEd1JFdXoxbWo1WTFoRFZQZjZ3 aE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1N5V3hSeUR3UkV1ejFtajVZMWhEVlBmNndoTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 NTBFQS81MjFEMUFEOEQ3NjcxMUVFQUYyMkMwNjZDNEY5QUUwMi9TeVd4UnlEd1JF dXoxbWo1WTFoRFZQZjZ3aE0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA3leAltkglODQFsHW6j4Ro/mm3EVOuY3PlkIvHSFU2t+3UKa84HcM/ L3ZB4VUaxF2Z0kyYh6P6bxmJLe+cpjoJeOSzgjehZL1QZc5tZZW+rAY4Ypj6nCRG 2uUA6nmVWtUJrF7GlyImZ5JOU30m0NVqd7oqXO77Tjwf6iPIwzQkzh6X2W7FLyZx RzLP4gnojRJOwJhqd9GVfmiFdzcXUSll5F/zLJViVoUQWgpo14AFvrVMYtGj4V9k 7pqnI36ZQnpP7jAsOam53uX4VYioqdPL0it33oWKWikYk910h9ym3eI2YKcaBwKD m9Fp86oxehqHUyBI9kB4H0MWVh3Apyay -----END CERTIFICATE-----Generated at Sat Apr 26 04:21:56 2025 by rpki-client