$ rpki-client -vvf rpki.apnic.net/member_repository/A91104C9/2AA8B38814C811EA87D1516CC4F9AE02/aK5b6xu35ELO4KfgFAKf9y49tB8.mft File: aK5b6xu35ELO4KfgFAKf9y49tB8.mft (raw, json) Hash identifier: Xg0q/x0PQUfwx0+uzA7so0HIIEQ0mM10DHR/YMrp2iA= Subject key identifier: 43:31:CF:DA:CE:86:A2:19:A6:C5:3A:4D:F1:E6:D9:89:5E:4F:09:41 Authority key identifier: 68:AE:5B:EB:1B:B7:E4:42:CE:E0:A7:E0:14:02:9F:F7:2E:3D:B4:1F Certificate issuer: /CN=A91104C9/serialNumber=68AE5BEB1BB7E442CEE0A7E014029FF72E3DB41F Certificate serial: 0BF8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aK5b6xu35ELO4KfgFAKf9y49tB8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91104C9/2AA8B38814C811EA87D1516CC4F9AE02/aK5b6xu35ELO4KfgFAKf9y49tB8.mft Manifest number: 0BED Signing time: Mon 12 May 2025 18:38:05 +0000 Manifest this update: Mon 12 May 2025 18:38:04 +0000 Manifest next update: Mon 19 May 2025 18:38:04 +0000 Files and hashes: 1: aK5b6xu35ELO4KfgFAKf9y49tB8.crl (hash: 1e4jQE3vK9z5ETaIF50Ngp4eRBAUtmfsgMS3t7VmRaI=) 2: 4C1F013E5AF511EFBAB1F86CC4F9AE02.roa (hash: 5YnlbFiESO7UmvUP8KNkIgeb7OYcXBskhmx0foLpcp0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91104C9/2AA8B38814C811EA87D1516CC4F9AE02/aK5b6xu35ELO4KfgFAKf9y49tB8.crl rsync://rpki.apnic.net/member_repository/A91104C9/2AA8B38814C811EA87D1516CC4F9AE02/aK5b6xu35ELO4KfgFAKf9y49tB8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aK5b6xu35ELO4KfgFAKf9y49tB8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 19 May 2025 18:38:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3064 (0xbf8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91104C9, serialNumber=68AE5BEB1BB7E442CEE0A7E014029FF72E3DB41F Validity Not Before: May 12 18:38:04 2025 GMT Not After : May 19 18:38:04 2025 GMT Subject: CN=6822400d-bfde Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:47:b4:80:bc:99:76:ad:97:7f:e9:69:a3:fb: 7f:d2:91:ba:6a:09:89:5b:9a:08:9f:a7:25:66:51: c8:1f:9b:04:67:60:74:c9:c5:88:0e:88:e0:ea:e9: b4:59:84:38:2c:10:14:62:66:08:50:69:c4:34:fd: d7:c6:aa:25:c9:fd:61:62:9d:ae:7b:38:be:f4:21: 1a:a1:ab:d4:7c:43:8d:d0:30:c3:fe:04:a0:0b:26: 8e:fa:5d:fc:16:62:dd:60:51:79:05:c0:af:6b:4d: e2:fc:72:fa:c6:0c:93:2a:38:a3:21:ed:a0:23:b9: b5:11:4e:7a:ce:92:ab:d8:cf:da:f4:0e:f3:ee:d7: 97:14:41:41:fb:40:3b:60:bd:23:90:8a:df:96:10: b5:41:d1:af:99:47:51:1c:a6:c4:30:76:1a:c4:b9: 17:4d:55:7d:0e:4d:2f:c5:1d:60:38:19:09:1e:65: cd:f9:b3:8e:01:63:0f:54:db:ae:11:9c:26:5b:c4: d9:2b:88:cb:d5:0a:27:a9:83:56:a7:40:67:da:fa: 91:56:78:52:91:95:29:06:92:78:cd:74:05:25:de: b8:04:13:1d:7b:e1:a0:25:36:ca:36:b8:62:3c:de: 6a:91:ef:3f:ef:81:e2:ae:42:01:37:99:cb:ad:65: 4d:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 43:31:CF:DA:CE:86:A2:19:A6:C5:3A:4D:F1:E6:D9:89:5E:4F:09:41 X509v3 Authority Key Identifier: keyid:68:AE:5B:EB:1B:B7:E4:42:CE:E0:A7:E0:14:02:9F:F7:2E:3D:B4:1F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91104C9/2AA8B38814C811EA87D1516CC4F9AE02/aK5b6xu35ELO4KfgFAKf9y49tB8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aK5b6xu35ELO4KfgFAKf9y49tB8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91104C9/2AA8B38814C811EA87D1516CC4F9AE02/aK5b6xu35ELO4KfgFAKf9y49tB8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 24:f4:ea:ab:9c:87:4b:c8:98:ee:4e:49:cc:be:16:ef:c2:8d: ff:2e:76:44:ae:f8:43:e3:d3:e1:fd:16:63:4f:4f:8a:b5:fd: fa:8b:b5:02:41:4e:d4:67:07:d9:e3:69:16:f3:3e:93:5d:82: 10:95:d0:79:01:bd:f8:d5:bf:9a:01:eb:1c:c5:84:f9:d9:50: 11:2b:32:04:60:95:ca:bd:46:ca:9e:a6:39:58:e6:f3:de:64: 65:da:8c:eb:09:94:ed:b2:a2:5e:ed:41:12:c0:f4:20:86:86: b9:f0:ac:b1:f3:ab:b1:77:d8:27:24:33:db:bc:41:4e:42:d1: 92:9f:bf:52:df:f7:06:2d:b8:2e:96:c6:81:e8:51:24:3c:31: 06:f1:f1:b9:63:06:0b:f5:98:11:3a:7e:e7:d5:b6:ff:f7:ca: cd:e5:49:49:ad:89:8c:0a:5c:f7:ba:8f:44:b3:97:e9:dc:e6: 4c:3d:ed:c7:04:9e:30:dc:c6:3f:bb:8c:c6:5e:f5:2d:8a:37: fb:a4:0d:3d:1b:b3:59:61:b8:30:3a:a1:83:27:b3:34:39:2d: 52:53:11:83:94:92:54:c6:ca:51:94:4e:3a:79:61:51:24:3c: 7e:60:4e:df:76:03:94:e3:4a:97:7a:87:ec:19:9d:7d:0f:60: 29:78:ba:e7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC/gwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTA0QzkxMTAvBgNVBAUTKDY4QUU1QkVCMUJCN0U0NDJDRUUwQTdFMDE0MDI5RkY3 MkUzREI0MUYwHhcNMjUwNTEyMTgzODA0WhcNMjUwNTE5MTgzODA0WjAYMRYwFAYD VQQDEw02ODIyNDAwZC1iZmRlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqke0gLyZdq2Xf+lpo/t/0pG6agmJW5oIn6clZlHIH5sEZ2B0ycWIDojg6um0 WYQ4LBAUYmYIUGnENP3Xxqolyf1hYp2uezi+9CEaoavUfEON0DDD/gSgCyaO+l38 FmLdYFF5BcCva03i/HL6xgyTKjijIe2gI7m1EU56zpKr2M/a9A7z7teXFEFB+0A7 YL0jkIrflhC1QdGvmUdRHKbEMHYaxLkXTVV9Dk0vxR1gOBkJHmXN+bOOAWMPVNuu EZwmW8TZK4jL1QonqYNWp0Bn2vqRVnhSkZUpBpJ4zXQFJd64BBMde+GgJTbKNrhi PN5qke8/74HirkIBN5nLrWVNEQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEMxz9rO hqIZpsU6TfHm2YleTwlBMB8GA1UdIwQYMBaAFGiuW+sbt+RCzuCn4BQCn/cuPbQf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMDRDOS8yQUE4QjM4ODE0 QzgxMUVBODdEMTUxNkNDNEY5QUUwMi9hSzViNnh1MzVFTE80S2ZnRkFLZjl5NDl0 QjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FLNWI2eHUzNUVMTzRLZmdGQUtmOXk0OXRCOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx MDRDOS8yQUE4QjM4ODE0QzgxMUVBODdEMTUxNkNDNEY5QUUwMi9hSzViNnh1MzVF TE80S2ZnRkFLZjl5NDl0QjgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAk9OqrnIdLyJjuTknMvhbvwo3/LnZErvhD49Ph/RZjT0+Ktf36i7UC QU7UZwfZ42kW8z6TXYIQldB5Ab341b+aAescxYT52VARKzIEYJXKvUbKnqY5WObz 3mRl2ozrCZTtsqJe7UESwPQghoa58Kyx86uxd9gnJDPbvEFOQtGSn79S3/cGLbgu lsaB6FEkPDEG8fG5YwYL9ZgROn7n1bb/98rN5UlJrYmMClz3uo9Es5fp3OZMPe3H BJ4w3MY/u4zGXvUtijf7pA09G7NZYbgwOqGDJ7M0OS1SUxGDlJJUxspRlE46eWFR JDx+YE7fdgOU40qXeofsGZ19D2ApeLrn -----END CERTIFICATE-----Generated at Wed May 14 11:54:55 2025 by rpki-client