$ rpki-client -vvf rpki.apnic.net/member_repository/A91127C1/534472CC83B911EA852A1576C4F9AE02/VAR9J873NG9Bde-sc0SUrbsFe1U.mft File: VAR9J873NG9Bde-sc0SUrbsFe1U.mft (raw, json) Hash identifier: u4IN74ROjEK4MmMEOKajR6bDIbLDd2VymYLRacO4LPA= Subject key identifier: B5:79:13:77:B0:52:AF:24:DD:78:F6:BB:7F:1A:1D:1F:B7:2B:60:E4 Authority key identifier: 54:04:7D:27:CE:F7:34:6F:41:75:EF:AC:73:44:94:AD:BB:05:7B:55 Certificate issuer: /CN=A91127C1/serialNumber=54047D27CEF7346F4175EFAC734494ADBB057B55 Certificate serial: 09BF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VAR9J873NG9Bde-sc0SUrbsFe1U.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91127C1/534472CC83B911EA852A1576C4F9AE02/VAR9J873NG9Bde-sc0SUrbsFe1U.mft Manifest number: 09B8 Signing time: Fri 16 May 2025 20:17:21 +0000 Manifest this update: Fri 16 May 2025 20:17:21 +0000 Manifest next update: Fri 23 May 2025 20:17:21 +0000 Files and hashes: 1: VAR9J873NG9Bde-sc0SUrbsFe1U.crl (hash: gMf0BUbvbb0/scLCL8xqVPDGh/RLfafufJZnCk0icLU=) 2: 3492D2F083BA11EA8728F076C4F9AE02.roa (hash: KDJ+ohVUY2aGK5rtHUQLiPRKWsZuV9h/W6r/Y+qQ0VM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91127C1/534472CC83B911EA852A1576C4F9AE02/VAR9J873NG9Bde-sc0SUrbsFe1U.crl rsync://rpki.apnic.net/member_repository/A91127C1/534472CC83B911EA852A1576C4F9AE02/VAR9J873NG9Bde-sc0SUrbsFe1U.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VAR9J873NG9Bde-sc0SUrbsFe1U.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 23 May 2025 20:17:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2495 (0x9bf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91127C1, serialNumber=54047D27CEF7346F4175EFAC734494ADBB057B55 Validity Not Before: May 16 20:17:21 2025 GMT Not After : May 23 20:17:21 2025 GMT Subject: CN=68279d51-ca5c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:2d:71:57:b3:50:20:d8:f9:6e:da:ee:3a:9c: 4f:48:5e:01:63:9e:5c:8e:ec:78:55:09:b0:6d:1a: 0c:85:98:91:3e:55:41:6b:21:45:1d:85:4d:ac:e8: 20:5e:94:76:35:b9:e1:5f:2f:a2:94:a1:6d:b1:f2: 5e:f3:61:d4:84:b5:0c:c4:44:0e:c1:fb:d7:46:1e: 58:8d:4d:43:96:6e:63:5c:b6:39:43:9d:0d:4f:ae: 57:f7:8c:f3:3c:74:3e:11:80:55:8f:39:d4:bf:d8: 67:c6:39:2d:e4:c5:3b:6b:cb:05:c0:1c:e6:26:9a: 0d:c0:4d:db:c9:92:f0:5d:02:39:71:64:66:0f:98: 04:a8:21:e8:99:f6:91:5d:07:1d:b8:82:44:c5:71: 74:4a:e4:3d:b4:a6:b8:21:44:95:d4:ba:46:66:95: c3:2d:b5:00:56:f5:33:56:a7:14:44:69:10:ef:0c: 24:42:f6:91:22:f4:d9:80:31:3c:9b:bc:2a:9a:29: e4:9a:6e:3c:e8:34:eb:6a:e9:7d:d7:92:97:0e:cd: 85:75:c1:56:52:ab:53:53:33:01:73:e7:4f:56:be: 66:c4:c1:55:54:7f:82:bc:94:f6:b3:23:0a:54:e0: 34:a1:58:6a:16:35:04:cb:da:9b:ee:12:62:67:a4: 86:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B5:79:13:77:B0:52:AF:24:DD:78:F6:BB:7F:1A:1D:1F:B7:2B:60:E4 X509v3 Authority Key Identifier: keyid:54:04:7D:27:CE:F7:34:6F:41:75:EF:AC:73:44:94:AD:BB:05:7B:55 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91127C1/534472CC83B911EA852A1576C4F9AE02/VAR9J873NG9Bde-sc0SUrbsFe1U.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VAR9J873NG9Bde-sc0SUrbsFe1U.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91127C1/534472CC83B911EA852A1576C4F9AE02/VAR9J873NG9Bde-sc0SUrbsFe1U.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 09:35:d3:2e:3f:36:aa:d2:33:2b:27:0b:d6:16:9b:b1:35:a7: 7b:b8:a9:9c:15:d2:fe:bf:ff:c5:d0:73:90:4e:09:71:6c:ed: f7:5f:1b:e4:e6:1b:40:62:85:37:4b:15:59:9c:eb:5d:84:d3: 52:cf:ac:ed:2f:ac:f8:d1:db:72:6d:60:c9:17:c2:26:4e:52: 6d:d5:d9:c0:c3:8a:4d:35:e4:5b:79:df:3b:36:5c:46:1b:4f: bb:40:99:91:42:cc:45:3b:3c:70:2c:74:37:67:48:1f:8a:40: 8c:e3:ce:d0:17:38:44:98:dc:99:56:e6:9f:b4:ba:8e:dc:f4: cd:d5:d1:5e:f6:61:5a:ce:21:28:5e:06:0b:5e:46:71:8b:16: 7b:cf:f6:0e:b8:58:d9:3b:3e:4e:28:06:8e:e0:80:5d:a3:6e: 25:db:32:a6:8c:b4:1d:48:93:64:78:b9:8a:42:e9:6e:c3:05: 39:a6:44:19:da:c2:07:2e:ad:98:46:22:c1:23:e0:26:9e:40: 16:6a:99:3e:b9:07:b2:23:bc:b3:fb:52:a1:1d:19:ef:ca:3d: be:2b:a4:16:2f:01:19:ae:f3:b4:e0:e5:6a:54:2c:07:ee:3e: 54:55:a4:87:a0:fa:86:50:d9:6b:45:f2:70:65:e7:9b:b1:af: ff:cb:e7:ad -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCb8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTI3QzExMTAvBgNVBAUTKDU0MDQ3RDI3Q0VGNzM0NkY0MTc1RUZBQzczNDQ5NEFE QkIwNTdCNTUwHhcNMjUwNTE2MjAxNzIxWhcNMjUwNTIzMjAxNzIxWjAYMRYwFAYD VQQDEw02ODI3OWQ1MS1jYTVjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsC1xV7NQINj5btruOpxPSF4BY55cjux4VQmwbRoMhZiRPlVBayFFHYVNrOgg XpR2NbnhXy+ilKFtsfJe82HUhLUMxEQOwfvXRh5YjU1Dlm5jXLY5Q50NT65X94zz PHQ+EYBVjznUv9hnxjkt5MU7a8sFwBzmJpoNwE3byZLwXQI5cWRmD5gEqCHomfaR XQcduIJExXF0SuQ9tKa4IUSV1LpGZpXDLbUAVvUzVqcURGkQ7wwkQvaRIvTZgDE8 m7wqminkmm486DTraul915KXDs2FdcFWUqtTUzMBc+dPVr5mxMFVVH+CvJT2syMK VOA0oVhqFjUEy9qb7hJiZ6SGUwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLV5E3ew Uq8k3Xj2u38aHR+3K2DkMB8GA1UdIwQYMBaAFFQEfSfO9zRvQXXvrHNElK27BXtV MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMjdDMS81MzQ0NzJDQzgz QjkxMUVBODUyQTE1NzZDNEY5QUUwMi9WQVI5Sjg3M05HOUJkZS1zYzBTVXJic0Zl MVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1ZBUjlKODczTkc5QmRlLXNjMFNVcmJzRmUxVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx MjdDMS81MzQ0NzJDQzgzQjkxMUVBODUyQTE1NzZDNEY5QUUwMi9WQVI5Sjg3M05H OUJkZS1zYzBTVXJic0ZlMVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAJNdMuPzaq0jMrJwvWFpuxNad7uKmcFdL+v//F0HOQTglxbO33Xxvk 5htAYoU3SxVZnOtdhNNSz6ztL6z40dtybWDJF8ImTlJt1dnAw4pNNeRbed87NlxG G0+7QJmRQsxFOzxwLHQ3Z0gfikCM487QFzhEmNyZVuaftLqO3PTN1dFe9mFaziEo XgYLXkZxixZ7z/YOuFjZOz5OKAaO4IBdo24l2zKmjLQdSJNkeLmKQuluwwU5pkQZ 2sIHLq2YRiLBI+AmnkAWapk+uQeyI7yz+1KhHRnvyj2+K6QWLwEZrvO04OVqVCwH 7j5UVaSHoPqGUNlrRfJwZeebsa//y+et -----END CERTIFICATE-----Generated at Fri May 16 22:44:08 2025 by rpki-client