$ rpki-client -vvf rpki.apnic.net/member_repository/A918D727/4798FB0637FB11EEB4296D3DC4F9AE02/A0iYvB-xsaJGF6zZvIMq6D6vni0.mft File: A0iYvB-xsaJGF6zZvIMq6D6vni0.mft (raw, json) Hash identifier: E4G9OfjktegpaY0tKpsveJ4vmgqXZfb7Wwu49n9hrLo= Subject key identifier: 02:3F:43:A0:88:CB:43:AF:C5:5A:39:CB:0D:CD:B0:00:DE:B8:75:D4 Authority key identifier: 03:48:98:BC:1F:B1:B1:A2:46:17:AC:D9:BC:83:2A:E8:3E:AF:9E:2D Certificate issuer: /CN=A918D727/serialNumber=034898BC1FB1B1A24617ACD9BC832AE83EAF9E2D Certificate serial: 015B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/A0iYvB-xsaJGF6zZvIMq6D6vni0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918D727/4798FB0637FB11EEB4296D3DC4F9AE02/A0iYvB-xsaJGF6zZvIMq6D6vni0.mft Manifest number: 0159 Signing time: Sun 15 Jun 2025 03:16:00 +0000 Manifest this update: Sun 15 Jun 2025 03:15:59 +0000 Manifest next update: Sun 22 Jun 2025 03:15:59 +0000 Files and hashes: 1: A0iYvB-xsaJGF6zZvIMq6D6vni0.crl (hash: E9ZGZOO+uWb0g0FlX6J1PQo9t7EfGj7ecHDOL3DQoBo=) 2: A7E3DAB237FB11EEBB03FD6CC4F9AE02.roa (hash: 8KhdFf717KdtqIgoQSLRSc05ReV0MsZo2CeN3+2la54=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918D727/4798FB0637FB11EEB4296D3DC4F9AE02/A0iYvB-xsaJGF6zZvIMq6D6vni0.crl rsync://rpki.apnic.net/member_repository/A918D727/4798FB0637FB11EEB4296D3DC4F9AE02/A0iYvB-xsaJGF6zZvIMq6D6vni0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/A0iYvB-xsaJGF6zZvIMq6D6vni0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 22 Jun 2025 02:50:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 347 (0x15b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918D727, serialNumber=034898BC1FB1B1A24617ACD9BC832AE83EAF9E2D Validity Not Before: Jun 15 03:15:59 2025 GMT Not After : Jun 22 03:15:59 2025 GMT Subject: CN=684e3aef-7c95 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:72:17:8f:46:38:20:ec:21:9d:db:ae:fa:64: 45:d2:35:9d:b5:6e:50:ed:d7:27:ff:5a:8f:ea:63: 5c:53:c2:b1:38:74:b0:f4:49:56:0e:32:9c:ca:82: 0d:5d:ef:f5:52:59:09:76:d3:99:de:37:77:25:9c: e7:00:2e:e5:92:8f:39:35:6d:68:b1:43:49:af:c1: df:6b:26:b3:ec:db:15:8d:ab:39:de:81:ab:7d:b8: d5:49:3e:c3:a5:98:bb:bf:30:7e:69:48:c1:97:19: e3:9b:70:71:98:aa:95:9c:3b:f9:ad:cf:56:00:c7: d2:15:04:60:b2:9c:cc:d9:1e:f4:79:a3:86:94:40: 54:89:a2:6c:3a:bd:89:51:ef:c8:33:27:40:7a:fd: ae:4b:e2:ca:51:d8:b3:40:60:c6:9b:d0:b8:77:80: 4a:2d:cf:7b:75:b4:cd:7d:5c:82:f7:dd:bf:c5:83: 21:cd:46:11:8e:97:61:6a:cd:bf:b1:f1:c9:11:9d: 95:22:f8:64:8f:16:74:08:ca:96:45:75:ac:5b:7d: d3:ed:02:5b:f5:5d:8f:ea:b0:a8:4d:4e:e1:6d:ad: a8:48:3b:6c:6f:76:21:7e:2b:c1:ca:56:c7:2b:3d: 46:f0:e9:e7:8c:cf:9e:26:9a:36:82:aa:10:fd:22: 59:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 02:3F:43:A0:88:CB:43:AF:C5:5A:39:CB:0D:CD:B0:00:DE:B8:75:D4 X509v3 Authority Key Identifier: keyid:03:48:98:BC:1F:B1:B1:A2:46:17:AC:D9:BC:83:2A:E8:3E:AF:9E:2D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918D727/4798FB0637FB11EEB4296D3DC4F9AE02/A0iYvB-xsaJGF6zZvIMq6D6vni0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/A0iYvB-xsaJGF6zZvIMq6D6vni0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918D727/4798FB0637FB11EEB4296D3DC4F9AE02/A0iYvB-xsaJGF6zZvIMq6D6vni0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 52:59:cc:45:cf:a3:55:a8:5d:3f:86:7d:00:88:e4:e7:51:74: e5:f4:47:ee:38:80:b6:7c:42:0c:22:ac:41:5b:fd:48:6c:a0: 35:c5:47:df:f3:13:11:b1:0c:6f:ff:ee:f4:89:b3:be:99:2e: 0a:2d:a2:2e:a1:07:2e:39:ca:c5:09:81:0e:46:ea:21:83:dd: 19:e5:de:cf:ed:38:0f:f2:d0:40:f8:42:79:ca:fe:68:33:90: 19:63:08:38:9d:82:0a:bc:72:5f:5e:34:b9:b0:1d:7b:7a:3a: 59:04:f2:1d:cb:e5:92:78:19:0c:c8:01:d3:d9:81:8a:d1:9a: 4a:b7:79:67:d7:2c:8f:14:a4:13:31:e6:9b:a4:93:ba:bd:ec: ce:77:fe:0a:a2:02:7d:2f:d5:8e:4d:6e:40:ee:0f:60:5a:8c: c9:a0:d2:e2:ca:3e:a2:92:82:c7:4d:fc:83:6c:b5:f0:9e:6a: 98:4a:5b:94:01:51:dc:ed:7e:38:2e:16:29:3a:8f:17:6f:b9: c8:37:f2:89:15:e8:af:02:13:68:fb:48:98:69:4b:eb:3c:cb: 0b:3b:e1:24:cf:5c:3e:36:4d:bf:bb:fb:9c:e0:c7:b3:68:cd: c8:d2:b7:df:d0:10:1b:15:34:21:8c:a4:69:c9:f1:7c:d0:49: f3:c7:3c:db -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAVswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEQ3MjcxMTAvBgNVBAUTKDAzNDg5OEJDMUZCMUIxQTI0NjE3QUNEOUJDODMyQUU4 M0VBRjlFMkQwHhcNMjUwNjE1MDMxNTU5WhcNMjUwNjIyMDMxNTU5WjAYMRYwFAYD VQQDEw02ODRlM2FlZi03Yzk1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxHIXj0Y4IOwhnduu+mRF0jWdtW5Q7dcn/1qP6mNcU8KxOHSw9ElWDjKcyoIN Xe/1UlkJdtOZ3jd3JZznAC7lko85NW1osUNJr8Hfayaz7NsVjas53oGrfbjVST7D pZi7vzB+aUjBlxnjm3BxmKqVnDv5rc9WAMfSFQRgspzM2R70eaOGlEBUiaJsOr2J Ue/IMydAev2uS+LKUdizQGDGm9C4d4BKLc97dbTNfVyC992/xYMhzUYRjpdhas2/ sfHJEZ2VIvhkjxZ0CMqWRXWsW33T7QJb9V2P6rCoTU7hba2oSDtsb3YhfivBylbH Kz1G8OnnjM+eJpo2gqoQ/SJZswIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAI/Q6CI y0OvxVo5yw3NsADeuHXUMB8GA1UdIwQYMBaAFANImLwfsbGiRhes2byDKug+r54t MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RDcyNy80Nzk4RkIwNjM3 RkIxMUVFQjQyOTZEM0RDNEY5QUUwMi9BMGlZdkIteHNhSkdGNnpadklNcTZENnZu aTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0EwaVl2Qi14c2FKR0Y2elp2SU1xNkQ2dm5pMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 RDcyNy80Nzk4RkIwNjM3RkIxMUVFQjQyOTZEM0RDNEY5QUUwMi9BMGlZdkIteHNh SkdGNnpadklNcTZENnZuaTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBSWcxFz6NVqF0/hn0AiOTnUXTl9EfuOIC2fEIMIqxBW/1IbKA1xUff 8xMRsQxv/+70ibO+mS4KLaIuoQcuOcrFCYEORuohg90Z5d7P7TgP8tBA+EJ5yv5o M5AZYwg4nYIKvHJfXjS5sB17ejpZBPIdy+WSeBkMyAHT2YGK0ZpKt3ln1yyPFKQT MeabpJO6vezOd/4KogJ9L9WOTW5A7g9gWozJoNLiyj6ikoLHTfyDbLXwnmqYSluU AVHc7X44LhYpOo8Xb7nIN/KJFeivAhNo+0iYaUvrPMsLO+Ekz1w+Nk2/u/uc4Mez aM3I0rff0BAbFTQhjKRpyfF80Enzxzzb -----END CERTIFICATE-----Generated at Sun Jun 15 08:51:45 2025 by rpki-client