$ rpki-client -vvf rpki.apnic.net/member_repository/A916C83B/E4E10B4A1D8811E2A012CBE108B02CD2/526yVsD8sH4pB5eDQ-mtndIf4gY.mft File: 526yVsD8sH4pB5eDQ-mtndIf4gY.mft (raw, json) Hash identifier: N1yRtek+2IapqYOCbwcRoU4PSR4tpZpJKB/iVHAETcM= Subject key identifier: 9D:83:2E:BD:F9:2D:65:D5:60:61:32:A0:50:E0:77:91:D5:67:37:EF Authority key identifier: E7:6E:B2:56:C0:FC:B0:7E:29:07:97:83:43:E9:AD:9D:D2:1F:E2:06 Certificate issuer: /CN=A916C83B/serialNumber=E76EB256C0FCB07E2907978343E9AD9DD21FE206 Certificate serial: 37CA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/526yVsD8sH4pB5eDQ-mtndIf4gY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916C83B/E4E10B4A1D8811E2A012CBE108B02CD2/526yVsD8sH4pB5eDQ-mtndIf4gY.mft Manifest number: 3602 Signing time: Thu 24 Apr 2025 14:30:24 +0000 Manifest this update: Thu 24 Apr 2025 14:30:24 +0000 Manifest next update: Thu 01 May 2025 14:30:24 +0000 Files and hashes: 1: 526yVsD8sH4pB5eDQ-mtndIf4gY.crl (hash: rpOkphV9NyeCCXkA8CQNzU0dODh0NRm1tJo61hIEGo4=) 2: 07589CCAC7E911EAB8670A2EC4F9AE02.roa (hash: 1ZXz/NmRoEZuyZlOP3FGVV7SOznT/zqWZB3WVuW/0nw=) 3: 2C1ADE1A35C811EEB06D6E4FC4F9AE02.roa (hash: Kb65CgSbpk+g+27O3L9YO/NalEccXczxBWE1egLtaM4=) 4: 7CBDCB1E1ACF11F08F1F055CC4F9AE02.roa (hash: r4hi9r8fqg3eM2aWkSOaGIl5XW1mlhpfI43yLoqEhK4=) 5: E01731A04A0511EFBE524A77C4F9AE02.roa (hash: ywzvrLxBT/Z7nPd3pBvdmtRanDDISy0oLSGMtPD+fnk=) 6: 099E1584054F11F0B404403AC4F9AE02.roa (hash: uJHfY2Mo/VAmZFumvbWbfh7qy6GiNOiT6D2JsQtQntw=) 7: 1B8CEF10160F11F0BC8CF16EC4F9AE02.roa (hash: Atw8mYr719QL2buAs4N+u5Fvkp0vLbC2BST8Rr2vnds=) 8: 5C696C684ABB11EFB64F1B36C4F9AE02.roa (hash: DpJlRaFGhxdvGqVu7m9VIpzHXrpSWXkrTNeb5efv6ao=) 9: 6B9538F223DD11EF81EBB933C4F9AE02.roa (hash: Qqy4u5Du4YJjLwWpq0dlcmlkR6uc3a3M7nv191S71u8=) 10: D677B8F8E46B11EFB0037B77C4F9AE02.roa (hash: K4F5g57zFJUCifiiu4f79X8f4i1nu9uazXLtGfM7eKU=) 11: 9EA1CDAAFBF611EEAEFDCB0CC4F9AE02.roa (hash: 4ynLb0Ypopkzl8emElYUHjGvnOkE64cL4WqzPSTgtgo=) 12: 5FF02C801CEF11F0A7C36C81C4F9AE02.roa (hash: LqKrHgIh84lRBWkncjkIeERvOWofWq7Th58WbRC38Ps=) 13: B8F80AE47A7111EFB66E5A5EC4F9AE02.roa (hash: TGyJb3hl/QrckCR9Qj8VxHP6JP5BXsHy9Ho/aKDW5AE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916C83B/E4E10B4A1D8811E2A012CBE108B02CD2/526yVsD8sH4pB5eDQ-mtndIf4gY.crl rsync://rpki.apnic.net/member_repository/A916C83B/E4E10B4A1D8811E2A012CBE108B02CD2/526yVsD8sH4pB5eDQ-mtndIf4gY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/526yVsD8sH4pB5eDQ-mtndIf4gY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 14:30:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14282 (0x37ca) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916C83B, serialNumber=E76EB256C0FCB07E2907978343E9AD9DD21FE206 Validity Not Before: Apr 24 14:30:24 2025 GMT Not After : May 1 14:30:24 2025 GMT Subject: CN=680a4b00-80df Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:df:b8:af:03:b6:4c:f0:61:ad:df:45:dd:fb: 5e:f1:a6:69:9f:d3:32:7e:f3:38:44:36:76:cc:11: 40:9e:c9:de:ef:c8:4f:69:9b:b8:73:52:1e:a1:9d: 1a:dd:fd:0a:57:d7:95:30:f7:f6:b2:b3:68:86:8d: aa:f7:f0:d9:0f:8f:94:58:5f:d1:b0:e0:8e:c6:c0: 96:dc:d7:98:1e:18:3c:96:eb:27:75:ad:56:e2:1a: ab:01:46:1e:1c:d8:66:76:7e:39:db:68:43:32:3f: 17:6d:79:32:e9:3e:d6:02:fd:ff:4f:66:6c:17:ae: 61:ff:7c:43:f4:b1:20:7b:87:e1:6e:6c:6c:f1:ff: 4b:b2:c9:9c:c7:65:70:b8:9d:b3:8c:cc:75:a8:37: 79:63:b5:b2:cd:3b:6a:38:1d:ca:65:6e:af:2a:b4: 4e:38:f5:57:9d:ed:e9:c7:63:7a:56:be:24:55:c1: 0c:25:1a:39:d4:ee:79:76:59:35:33:d4:f9:d1:d7: 87:23:0a:36:9a:f3:d9:bb:1f:dc:10:08:f3:e0:2d: b1:45:bc:86:dd:8d:84:6f:ef:64:c4:6d:d9:69:99: 2e:ca:f3:20:99:23:39:aa:f1:f4:74:1b:e3:52:e0: d0:15:f6:2a:2e:52:3d:ad:c3:da:e3:96:53:38:9f: 07:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9D:83:2E:BD:F9:2D:65:D5:60:61:32:A0:50:E0:77:91:D5:67:37:EF X509v3 Authority Key Identifier: keyid:E7:6E:B2:56:C0:FC:B0:7E:29:07:97:83:43:E9:AD:9D:D2:1F:E2:06 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916C83B/E4E10B4A1D8811E2A012CBE108B02CD2/526yVsD8sH4pB5eDQ-mtndIf4gY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/526yVsD8sH4pB5eDQ-mtndIf4gY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916C83B/E4E10B4A1D8811E2A012CBE108B02CD2/526yVsD8sH4pB5eDQ-mtndIf4gY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c5:93:53:82:7d:dd:ad:02:4e:e3:e6:e8:e6:e7:01:ab:7b:9d: 29:1a:5e:e0:a7:41:87:d2:24:aa:27:e3:c4:0d:aa:f6:76:4b: 91:b6:12:e4:b7:c4:70:f9:5d:f1:53:44:e3:a4:d9:6b:97:cf: 2f:2f:42:f9:3a:8d:d6:43:2a:0c:3c:63:96:b6:86:35:23:69: 36:ae:71:7e:f8:fc:d1:cf:10:01:72:65:30:9f:67:c3:30:47: bf:f5:14:da:ff:da:da:64:86:51:39:d8:41:3b:ce:79:97:ce: f8:0d:9b:d1:db:66:33:b5:f6:73:8f:38:1e:8a:4e:94:05:44: 93:d1:22:9a:6a:90:b3:9a:10:27:11:2c:62:d9:a8:73:52:c0: 36:64:3a:56:8f:30:67:8f:8c:5a:52:e0:79:84:c7:ba:39:15: 1d:a9:44:91:a9:6b:71:fc:34:25:71:9b:af:ac:68:8e:b0:be: 45:db:01:0d:20:33:d4:e7:5f:ca:72:e2:26:d2:ed:c0:f1:a5: 0f:4c:ea:c8:e6:a4:4e:7e:08:4a:8c:aa:51:1c:19:25:43:6c: d8:51:18:d6:f4:14:68:8b:2d:35:f7:07:7b:d5:b2:60:52:12: 34:12:bb:1c:5d:c3:bd:84:4f:9f:df:45:13:ee:c8:85:7b:2c: fa:41:30:c3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICN8owDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkM4M0IxMTAvBgNVBAUTKEU3NkVCMjU2QzBGQ0IwN0UyOTA3OTc4MzQzRTlBRDlE RDIxRkUyMDYwHhcNMjUwNDI0MTQzMDI0WhcNMjUwNTAxMTQzMDI0WjAYMRYwFAYD VQQDEw02ODBhNGIwMC04MGRmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAo9+4rwO2TPBhrd9F3fte8aZpn9MyfvM4RDZ2zBFAnsne78hPaZu4c1IeoZ0a 3f0KV9eVMPf2srNoho2q9/DZD4+UWF/RsOCOxsCW3NeYHhg8lusnda1W4hqrAUYe HNhmdn4522hDMj8XbXky6T7WAv3/T2ZsF65h/3xD9LEge4fhbmxs8f9Lssmcx2Vw uJ2zjMx1qDd5Y7WyzTtqOB3KZW6vKrROOPVXne3px2N6Vr4kVcEMJRo51O55dlk1 M9T50deHIwo2mvPZux/cEAjz4C2xRbyG3Y2Eb+9kxG3ZaZkuyvMgmSM5qvH0dBvj UuDQFfYqLlI9rcPa45ZTOJ8HTwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJ2DLr35 LWXVYGEyoFDgd5HVZzfvMB8GA1UdIwQYMBaAFOduslbA/LB+KQeXg0PprZ3SH+IG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QzgzQi9FNEUxMEI0QTFE ODgxMUUyQTAxMkNCRTEwOEIwMkNEMi81MjZ5VnNEOHNINHBCNWVEUS1tdG5kSWY0 Z1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzUyNnlWc0Q4c0g0cEI1ZURRLW10bmRJZjRnWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 QzgzQi9FNEUxMEI0QTFEODgxMUUyQTAxMkNCRTEwOEIwMkNEMi81MjZ5VnNEOHNI NHBCNWVEUS1tdG5kSWY0Z1kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDFk1OCfd2tAk7j5ujm5wGre50pGl7gp0GH0iSqJ+PEDar2dkuRthLk t8Rw+V3xU0TjpNlrl88vL0L5Oo3WQyoMPGOWtoY1I2k2rnF++PzRzxABcmUwn2fD MEe/9RTa/9raZIZROdhBO855l874DZvR22YztfZzjzgeik6UBUST0SKaapCzmhAn ESxi2ahzUsA2ZDpWjzBnj4xaUuB5hMe6ORUdqUSRqWtx/DQlcZuvrGiOsL5F2wEN IDPU51/KcuIm0u3A8aUPTOrI5qROfghKjKpRHBklQ2zYURjW9BRoiy019wd71bJg UhI0ErscXcO9hE+f30UT7siFeyz6QTDD -----END CERTIFICATE-----Generated at Sat Apr 26 12:22:47 2025 by rpki-client