$ rpki-client -vvf rpki.apnic.net/member_repository/A916899E/6C135434C9F311EDA5849269C4F9AE02/SHy2MxcaDd84rLtq0e2K5pZVhgo.mft File: SHy2MxcaDd84rLtq0e2K5pZVhgo.mft (raw, json) Hash identifier: u9zJmbVXtfkSEeV8LDkzbgsBBKz8DjPaYvwD/iHhPXU= Subject key identifier: D3:02:CB:C6:2A:49:F1:40:01:4C:79:A3:8C:6E:19:81:71:43:26:49 Authority key identifier: 48:7C:B6:33:17:1A:0D:DF:38:AC:BB:6A:D1:ED:8A:E6:96:55:86:0A Certificate issuer: /CN=A916899E/serialNumber=487CB633171A0DDF38ACBB6AD1ED8AE69655860A Certificate serial: 018D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SHy2MxcaDd84rLtq0e2K5pZVhgo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916899E/6C135434C9F311EDA5849269C4F9AE02/SHy2MxcaDd84rLtq0e2K5pZVhgo.mft Manifest number: 018A Signing time: Fri 25 Apr 2025 02:43:47 +0000 Manifest this update: Fri 25 Apr 2025 02:43:47 +0000 Manifest next update: Fri 02 May 2025 02:43:47 +0000 Files and hashes: 1: SHy2MxcaDd84rLtq0e2K5pZVhgo.crl (hash: Gk6fgAmOBMN4yNKMLyL6im/S1eH3XD7OywAYTcAkfRk=) 2: 96540A72CD0E11ED9A9CAE58C4F9AE02.roa (hash: wjMufEaDH/y4s6T5wRstNmQqRorcPZgCttuLv7sLSbk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916899E/6C135434C9F311EDA5849269C4F9AE02/SHy2MxcaDd84rLtq0e2K5pZVhgo.crl rsync://rpki.apnic.net/member_repository/A916899E/6C135434C9F311EDA5849269C4F9AE02/SHy2MxcaDd84rLtq0e2K5pZVhgo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SHy2MxcaDd84rLtq0e2K5pZVhgo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 02:43:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 397 (0x18d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916899E, serialNumber=487CB633171A0DDF38ACBB6AD1ED8AE69655860A Validity Not Before: Apr 25 02:43:47 2025 GMT Not After : May 2 02:43:47 2025 GMT Subject: CN=680af6e3-47b4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:eb:03:a9:19:61:2c:75:94:d9:83:fb:34:eb:77: 25:e7:81:d6:ae:8a:69:2f:32:fc:5e:4c:00:4c:a0: e0:60:e8:ac:a5:38:7b:f4:f4:93:e5:84:01:48:a3: 89:39:7b:3f:10:ec:49:30:ac:8f:0d:34:30:ec:8d: 71:10:70:7e:9e:6e:41:74:42:9c:b3:de:dd:94:78: 9f:a6:65:04:ad:cf:6b:a6:d4:9d:f3:df:da:8c:a9: ad:32:a7:d4:f5:1a:77:3a:1b:fc:9f:86:aa:e7:22: 6c:d1:99:e4:b6:42:19:5d:1e:77:9a:c8:98:71:d5: 03:f9:ef:32:fd:de:7e:43:28:9c:18:aa:1e:f9:94: 17:96:76:e0:70:e2:11:d3:4a:65:e5:bf:c7:22:30: 2f:85:c2:0e:31:8b:50:82:1b:09:b6:37:d4:af:76: d0:21:db:f9:38:da:70:c9:35:b3:45:09:ec:20:28: 56:67:db:41:7d:a2:7d:7d:9e:18:35:04:64:bc:be: 22:11:a5:be:02:85:2f:3f:26:82:75:42:de:3d:62: 36:4a:e4:d4:bf:d3:5a:ee:7c:80:2c:53:3b:7e:a7: 86:ad:21:b8:04:0d:93:02:86:0c:6b:ca:c3:22:be: 26:a5:5f:ed:36:f3:3c:8a:e3:ad:fd:9b:92:df:51: 80:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D3:02:CB:C6:2A:49:F1:40:01:4C:79:A3:8C:6E:19:81:71:43:26:49 X509v3 Authority Key Identifier: keyid:48:7C:B6:33:17:1A:0D:DF:38:AC:BB:6A:D1:ED:8A:E6:96:55:86:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916899E/6C135434C9F311EDA5849269C4F9AE02/SHy2MxcaDd84rLtq0e2K5pZVhgo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SHy2MxcaDd84rLtq0e2K5pZVhgo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916899E/6C135434C9F311EDA5849269C4F9AE02/SHy2MxcaDd84rLtq0e2K5pZVhgo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 07:c5:07:99:ce:1c:c7:10:2e:02:6f:d3:02:1d:e2:b3:50:62: f8:61:6e:57:f1:8f:fb:99:47:56:88:bd:02:7a:5b:4e:df:07: bf:c6:7b:d5:96:fc:6a:87:4e:ca:02:55:82:04:02:6c:cd:e3: 7f:2b:9d:1b:c5:01:8f:86:9c:10:d5:88:c8:ea:dd:25:b4:03: 7f:3d:cb:ef:96:74:62:ff:43:a3:d0:f1:83:61:7b:e9:e8:8d: 10:3d:cb:75:da:bc:3c:42:90:74:34:1b:ba:e4:a5:a2:8e:24: a4:01:bd:55:ac:b6:d6:ba:2d:36:9c:d0:4d:3b:36:f9:52:e6: fd:37:22:29:c1:fd:c0:ea:b2:65:e1:1a:56:21:c7:48:9c:b3: 1a:e6:d2:19:fb:52:4d:0a:18:bc:8f:6b:4f:5a:49:69:5d:90: 25:99:ee:ae:da:70:53:a8:1c:fb:17:e0:ea:10:bb:53:9e:4a: 67:ee:52:35:29:8d:e9:c2:eb:2b:66:62:4a:b0:f5:fe:95:53: ad:21:37:b5:16:b0:31:42:3e:83:63:5f:3e:d8:e5:12:ce:45: 2d:ae:d2:b2:64:44:7e:bf:d0:6e:c8:bb:5a:0c:fd:9d:b9:1c: 7d:a0:3b:2a:58:98:0b:f2:f3:56:bc:62:b2:54:4b:f6:60:6f: 2b:ba:68:f5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAY0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Njg5OUUxMTAvBgNVBAUTKDQ4N0NCNjMzMTcxQTBEREYzOEFDQkI2QUQxRUQ4QUU2 OTY1NTg2MEEwHhcNMjUwNDI1MDI0MzQ3WhcNMjUwNTAyMDI0MzQ3WjAYMRYwFAYD VQQDEw02ODBhZjZlMy00N2I0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6wOpGWEsdZTZg/s063cl54HWroppLzL8XkwATKDgYOispTh79PST5YQBSKOJ OXs/EOxJMKyPDTQw7I1xEHB+nm5BdEKcs97dlHifpmUErc9rptSd89/ajKmtMqfU 9Rp3Ohv8n4aq5yJs0ZnktkIZXR53msiYcdUD+e8y/d5+QyicGKoe+ZQXlnbgcOIR 00pl5b/HIjAvhcIOMYtQghsJtjfUr3bQIdv5ONpwyTWzRQnsIChWZ9tBfaJ9fZ4Y NQRkvL4iEaW+AoUvPyaCdULePWI2SuTUv9Na7nyALFM7fqeGrSG4BA2TAoYMa8rD Ir4mpV/tNvM8iuOt/ZuS31GA1QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNMCy8Yq SfFAAUx5o4xuGYFxQyZJMB8GA1UdIwQYMBaAFEh8tjMXGg3fOKy7atHtiuaWVYYK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2ODk5RS82QzEzNTQzNEM5 RjMxMUVEQTU4NDkyNjlDNEY5QUUwMi9TSHkyTXhjYURkODRyTHRxMGUySzVwWlZo Z28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1NIeTJNeGNhRGQ4NHJMdHEwZTJLNXBaVmhnby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 ODk5RS82QzEzNTQzNEM5RjMxMUVEQTU4NDkyNjlDNEY5QUUwMi9TSHkyTXhjYURk ODRyTHRxMGUySzVwWlZoZ28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAHxQeZzhzHEC4Cb9MCHeKzUGL4YW5X8Y/7mUdWiL0CeltO3we/xnvV lvxqh07KAlWCBAJszeN/K50bxQGPhpwQ1YjI6t0ltAN/PcvvlnRi/0Oj0PGDYXvp 6I0QPct12rw8QpB0NBu65KWijiSkAb1VrLbWui02nNBNOzb5Uub9NyIpwf3A6rJl 4RpWIcdInLMa5tIZ+1JNChi8j2tPWklpXZAlme6u2nBTqBz7F+DqELtTnkpn7lI1 KY3pwusrZmJKsPX+lVOtITe1FrAxQj6DY18+2OUSzkUtrtKyZER+v9BuyLtaDP2d uRx9oDsqWJgL8vNWvGKyVEv2YG8rumj1 -----END CERTIFICATE-----Generated at Sat Apr 26 04:32:19 2025 by rpki-client