$ rpki-client -vvf rpki.apnic.net/member_repository/A91A1D43/8929DFDEEA2811EDB7DD0118C4F9AE02/C-AoY1W14laYjORU35P8D8p_YEA.mft File: C-AoY1W14laYjORU35P8D8p_YEA.mft (raw, json) Hash identifier: ciI0SgIpZzblUkRBO+/i2j9IQTzg+0Gw5ouYjUYwXzc= Subject key identifier: 5C:A7:AA:E9:3A:5C:E3:BD:19:55:EE:AE:C3:B5:8E:0B:2B:07:67:C1 Authority key identifier: 0B:E0:28:63:55:B5:E2:56:98:8C:E4:54:DF:93:FC:0F:CA:7F:60:40 Certificate issuer: /CN=A91A1D43/serialNumber=0BE0286355B5E256988CE454DF93FC0FCA7F6040 Certificate serial: 017C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C-AoY1W14laYjORU35P8D8p_YEA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A1D43/8929DFDEEA2811EDB7DD0118C4F9AE02/C-AoY1W14laYjORU35P8D8p_YEA.mft Manifest number: 0176 Signing time: Tue 29 Apr 2025 03:49:28 +0000 Manifest this update: Tue 29 Apr 2025 03:49:27 +0000 Manifest next update: Tue 06 May 2025 03:49:27 +0000 Files and hashes: 1: C-AoY1W14laYjORU35P8D8p_YEA.crl (hash: Vz98tMGdMoUq22+H+l1CdiV1NeP/4VQEygjFL0gt96Y=) 2: 8BCB2CFAEA3911EDB91E190BC4F9AE02.roa (hash: Gn3bl+JlcAfK7NlSkgTYoj+Bsl8m7KISn3HM2ix+w34=) 3: 8B1BDC14EA3911EDB91E190BC4F9AE02.roa (hash: +iPaNHR0I7CGA19//oU6de8PSF7FBlMHBTXC8ZhTdUo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A1D43/8929DFDEEA2811EDB7DD0118C4F9AE02/C-AoY1W14laYjORU35P8D8p_YEA.crl rsync://rpki.apnic.net/member_repository/A91A1D43/8929DFDEEA2811EDB7DD0118C4F9AE02/C-AoY1W14laYjORU35P8D8p_YEA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C-AoY1W14laYjORU35P8D8p_YEA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 06 May 2025 03:49:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 380 (0x17c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A1D43, serialNumber=0BE0286355B5E256988CE454DF93FC0FCA7F6040 Validity Not Before: Apr 29 03:49:27 2025 GMT Not After : May 6 03:49:27 2025 GMT Subject: CN=68104c47-4cb0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:f3:98:75:32:aa:32:5b:b5:8a:5c:ff:e6:ab: c9:0a:7e:00:e5:8f:39:99:e1:da:3c:08:2d:f1:5a: eb:0e:77:96:ef:88:8a:3f:98:01:0d:5d:0e:90:15: 5d:84:b5:37:10:c4:57:3e:dc:89:0f:32:8e:61:a1: 6d:95:ac:c5:00:75:14:00:b3:ca:f1:dd:e5:5e:32: 64:be:8e:64:8e:49:39:85:4b:2a:85:02:a2:17:8e: af:e4:0e:23:1d:9f:11:d8:fb:1f:a4:33:c1:66:f9: 51:19:73:c6:dc:06:e4:25:20:49:90:36:87:fa:f6: 1c:6e:47:1e:4c:4a:5a:67:3c:02:fc:25:93:26:40: dd:9d:a4:8e:c9:9d:71:e5:d7:60:6e:9b:8c:03:62: 66:90:d7:5e:f8:ef:28:d1:b0:bf:06:bd:c7:21:bd: 75:c1:8c:99:85:16:da:cc:1a:85:25:03:ea:6c:fb: c5:1b:04:2a:0b:e6:47:cc:44:c1:fe:9f:f6:92:70: 4a:97:83:34:c4:a6:c5:15:3e:3f:0f:e6:ba:d1:39: 29:56:c7:aa:4b:1c:12:d1:fd:07:e0:08:ec:32:91: 68:d8:0d:f1:45:70:1b:10:23:05:55:07:58:02:0a: 51:8b:44:15:43:9b:17:bd:1b:d7:db:f2:51:8e:36: d8:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5C:A7:AA:E9:3A:5C:E3:BD:19:55:EE:AE:C3:B5:8E:0B:2B:07:67:C1 X509v3 Authority Key Identifier: keyid:0B:E0:28:63:55:B5:E2:56:98:8C:E4:54:DF:93:FC:0F:CA:7F:60:40 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A1D43/8929DFDEEA2811EDB7DD0118C4F9AE02/C-AoY1W14laYjORU35P8D8p_YEA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C-AoY1W14laYjORU35P8D8p_YEA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A1D43/8929DFDEEA2811EDB7DD0118C4F9AE02/C-AoY1W14laYjORU35P8D8p_YEA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ae:73:c4:92:af:e2:93:e7:a8:05:7e:f0:fe:fa:77:20:d1:a4: e4:28:62:a5:60:5d:d4:5a:2b:84:4c:f2:d7:23:c2:18:d3:c1: ce:ea:85:43:21:69:5b:c1:f3:89:c1:dc:d4:df:65:82:bf:d0: f3:c7:95:bc:9e:da:be:e4:67:57:65:34:19:84:bd:dd:32:5b: 63:10:25:8c:de:8e:d1:2d:f5:37:1e:69:b3:0c:4d:22:99:5e: 47:18:8f:c2:85:ee:6d:1d:1f:f6:b8:50:e1:34:c3:95:fd:0e: 3d:10:b7:16:e9:1e:0c:bb:43:64:f9:73:40:63:f6:0c:c0:80: 1f:f8:3c:af:60:4e:50:7a:ba:f1:aa:3f:0a:29:a5:6d:f2:0a: 16:ea:0c:3d:ff:44:5b:0c:6b:a9:fd:9e:a5:6b:d3:22:34:84: 6d:38:66:76:5b:b8:c4:8f:14:52:75:50:64:5d:e0:a4:b7:c8: 4f:f3:37:2b:39:c2:81:09:db:82:62:1b:e1:c6:fe:fe:18:c8: f9:b7:f1:76:0c:65:0c:cd:8c:67:a6:2e:03:d3:61:d8:d2:c6: 21:de:bc:f2:85:92:bc:e9:94:94:2b:06:cc:f8:24:ac:b6:d3: 0b:7c:c1:dc:3d:8b:2e:18:18:b8:7a:9a:1f:e4:27:a8:24:cf: 1b:29:48:55 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAXwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTFENDMxMTAvBgNVBAUTKDBCRTAyODYzNTVCNUUyNTY5ODhDRTQ1NERGOTNGQzBG Q0E3RjYwNDAwHhcNMjUwNDI5MDM0OTI3WhcNMjUwNTA2MDM0OTI3WjAYMRYwFAYD VQQDEw02ODEwNGM0Ny00Y2IwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArfOYdTKqMlu1ilz/5qvJCn4A5Y85meHaPAgt8VrrDneW74iKP5gBDV0OkBVd hLU3EMRXPtyJDzKOYaFtlazFAHUUALPK8d3lXjJkvo5kjkk5hUsqhQKiF46v5A4j HZ8R2PsfpDPBZvlRGXPG3AbkJSBJkDaH+vYcbkceTEpaZzwC/CWTJkDdnaSOyZ1x 5ddgbpuMA2JmkNde+O8o0bC/Br3HIb11wYyZhRbazBqFJQPqbPvFGwQqC+ZHzETB /p/2knBKl4M0xKbFFT4/D+a60TkpVseqSxwS0f0H4AjsMpFo2A3xRXAbECMFVQdY AgpRi0QVQ5sXvRvX2/JRjjbYEQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFynquk6 XOO9GVXursO1jgsrB2fBMB8GA1UdIwQYMBaAFAvgKGNVteJWmIzkVN+T/A/Kf2BA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMUQ0My84OTI5REZERUVB MjgxMUVEQjdERDAxMThDNEY5QUUwMi9DLUFvWTFXMTRsYVlqT1JVMzVQOEQ4cF9Z RUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0MtQW9ZMVcxNGxhWWpPUlUzNVA4RDhwX1lFQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MUQ0My84OTI5REZERUVBMjgxMUVEQjdERDAxMThDNEY5QUUwMi9DLUFvWTFXMTRs YVlqT1JVMzVQOEQ4cF9ZRUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCuc8SSr+KT56gFfvD++ncg0aTkKGKlYF3UWiuETPLXI8IY08HO6oVD IWlbwfOJwdzU32WCv9Dzx5W8ntq+5GdXZTQZhL3dMltjECWM3o7RLfU3HmmzDE0i mV5HGI/Che5tHR/2uFDhNMOV/Q49ELcW6R4Mu0Nk+XNAY/YMwIAf+DyvYE5Qerrx qj8KKaVt8goW6gw9/0RbDGup/Z6la9MiNIRtOGZ2W7jEjxRSdVBkXeCkt8hP8zcr OcKBCduCYhvhxv7+GMj5t/F2DGUMzYxnpi4D02HY0sYh3rzyhZK86ZSUKwbM+CSs ttMLfMHcPYsuGBi4epof5CeoJM8bKUhV -----END CERTIFICATE-----Generated at Tue Apr 29 07:14:25 2025 by rpki-client