$ rpki-client -vvf rpki.apnic.net/member_repository/A91144C9/7BA3E70C0EC911F0A26FF144C4F9AE02/sNUl6pnUyOx1YHEmpJ72cHvW9K0.mft File: sNUl6pnUyOx1YHEmpJ72cHvW9K0.mft (raw, json) Hash identifier: 0W2IW8SWnu0+5FEwpTJr5qSFAlijT06GhySQHbmJLlE= Subject key identifier: 6A:F2:94:35:D9:A5:40:DD:B5:2E:6A:D0:AD:D8:55:05:89:B6:C2:79 Authority key identifier: B0:D5:25:EA:99:D4:C8:EC:75:60:71:26:A4:9E:F6:70:7B:D6:F4:AD Certificate issuer: /CN=A91144C9/serialNumber=B0D525EA99D4C8EC75607126A49EF6707BD6F4AD Certificate serial: 19 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/sNUl6pnUyOx1YHEmpJ72cHvW9K0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91144C9/7BA3E70C0EC911F0A26FF144C4F9AE02/sNUl6pnUyOx1YHEmpJ72cHvW9K0.mft Manifest number: 18 Signing time: Thu 15 May 2025 07:16:38 +0000 Manifest this update: Thu 15 May 2025 07:16:38 +0000 Manifest next update: Thu 22 May 2025 07:16:38 +0000 Files and hashes: 1: sNUl6pnUyOx1YHEmpJ72cHvW9K0.crl (hash: yNHEjQzpM2nryAyyKHxo/AebtFiBxHG9FyTFapWfAIc=) 2: 9F25E6340ECA11F0BAAE344AC4F9AE02.roa (hash: ctz1y0Mr+YfqZCN/LBNWAf/NG7xW8jY2ZkFpiLOFBtc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91144C9/7BA3E70C0EC911F0A26FF144C4F9AE02/sNUl6pnUyOx1YHEmpJ72cHvW9K0.crl rsync://rpki.apnic.net/member_repository/A91144C9/7BA3E70C0EC911F0A26FF144C4F9AE02/sNUl6pnUyOx1YHEmpJ72cHvW9K0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/sNUl6pnUyOx1YHEmpJ72cHvW9K0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 22 May 2025 07:16:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 25 (0x19) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91144C9, serialNumber=B0D525EA99D4C8EC75607126A49EF6707BD6F4AD Validity Not Before: May 15 07:16:38 2025 GMT Not After : May 22 07:16:38 2025 GMT Subject: CN=682594d6-eeb2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:b5:0d:ac:f7:af:88:e0:47:84:9f:94:76:5d: 46:5a:50:51:1b:6d:00:47:79:84:f9:3f:37:be:b3: 11:7a:19:ab:b1:34:e8:43:6c:96:9f:d5:00:3c:12: 70:f3:48:87:39:b2:31:57:03:c4:ca:0d:e8:9d:a6: 7e:9a:1f:30:67:2f:d6:a5:a8:70:01:8d:fd:8d:4a: 49:cd:96:e4:3a:78:a7:c9:0f:ca:14:8d:57:ac:35: a2:bf:fd:49:46:1e:4f:a8:be:25:3d:6f:fc:a2:47: e9:80:b5:b1:7d:47:7f:56:c5:04:93:c9:1e:18:5e: bf:7f:09:4c:72:66:c9:62:62:f6:57:49:34:2b:ae: 57:d4:17:bd:08:f0:c7:54:74:5c:70:1f:82:f8:07: 00:79:61:7e:d1:51:e5:de:d3:65:d1:7b:87:96:cc: 1b:ba:e6:cf:b2:39:fa:1f:03:b8:d3:79:62:df:b9: 9a:24:83:aa:73:d2:a5:d2:64:f6:ab:bc:6d:68:0f: 3e:0e:a3:60:63:bb:d4:82:96:3a:36:f2:d9:37:c0: 48:5b:8a:cf:3f:fd:e2:9e:3e:a3:ac:a2:2b:ac:b6: a5:61:7e:bb:5a:4b:03:32:39:dd:1a:0c:ba:07:58: c5:1b:73:59:df:d2:ef:9e:33:3a:15:5d:e4:a4:61: 57:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6A:F2:94:35:D9:A5:40:DD:B5:2E:6A:D0:AD:D8:55:05:89:B6:C2:79 X509v3 Authority Key Identifier: keyid:B0:D5:25:EA:99:D4:C8:EC:75:60:71:26:A4:9E:F6:70:7B:D6:F4:AD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91144C9/7BA3E70C0EC911F0A26FF144C4F9AE02/sNUl6pnUyOx1YHEmpJ72cHvW9K0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/sNUl6pnUyOx1YHEmpJ72cHvW9K0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91144C9/7BA3E70C0EC911F0A26FF144C4F9AE02/sNUl6pnUyOx1YHEmpJ72cHvW9K0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 15:23:03:07:cf:f5:af:c0:6b:47:8a:b3:95:75:0a:5a:43:8d: 41:aa:b2:29:71:08:f0:d2:fe:1d:00:df:d6:10:3a:96:6d:d0: 07:d4:f2:9a:d6:13:b9:d6:9f:44:c6:10:96:29:cc:0f:99:5f: b1:20:07:a8:3d:27:72:f9:eb:e9:32:26:f8:c7:93:cd:fb:1d: 9b:d8:0d:a4:71:be:99:93:33:14:5e:4a:5b:79:a9:00:60:e2: 8d:b7:d2:ce:a4:c9:30:5d:fd:3e:6a:d1:da:c1:17:81:a8:95: 58:af:6c:43:67:ac:d8:d6:5f:bc:36:aa:08:03:ed:22:05:9b: 19:cc:fc:d9:a6:57:73:c2:81:89:ba:0d:8b:09:8c:b5:a4:79: b0:9d:69:a5:d4:4b:1a:66:78:49:9f:ee:1b:cd:20:52:ff:8e: 85:c0:09:2b:74:0f:2e:81:21:bd:72:a1:f5:c3:5f:15:42:cd: 96:74:72:1e:52:d5:fe:6d:70:88:f7:72:03:64:08:8a:ab:e0: fe:b2:ad:f6:fa:a2:ef:48:43:d1:28:c7:01:03:43:1d:ec:73: f6:5c:20:8b:1a:7b:91:57:cb:df:aa:e9:42:ed:eb:2c:05:59: 5d:4e:a4:f8:33:9d:f4:d1:46:db:03:db:a1:9c:f7:97:90:99: da:56:ad:97 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBGTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEx NDRDOTExMC8GA1UEBRMoQjBENTI1RUE5OUQ0QzhFQzc1NjA3MTI2QTQ5RUY2NzA3 QkQ2RjRBRDAeFw0yNTA1MTUwNzE2MzhaFw0yNTA1MjIwNzE2MzhaMBgxFjAUBgNV BAMTDTY4MjU5NGQ2LWVlYjIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDKtQ2s96+I4EeEn5R2XUZaUFEbbQBHeYT5Pze+sxF6GauxNOhDbJaf1QA8EnDz SIc5sjFXA8TKDeidpn6aHzBnL9alqHABjf2NSknNluQ6eKfJD8oUjVesNaK//UlG Hk+oviU9b/yiR+mAtbF9R39WxQSTyR4YXr9/CUxyZsliYvZXSTQrrlfUF70I8MdU dFxwH4L4BwB5YX7RUeXe02XRe4eWzBu65s+yOfofA7jTeWLfuZokg6pz0qXSZPar vG1oDz4Oo2Bju9SCljo28tk3wEhbis8//eKePqOsoiustqVhfrtaSwMyOd0aDLoH WMUbc1nf0u+eMzoVXeSkYVclAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUavKUNdml QN21LmrQrdhVBYm2wnkwHwYDVR0jBBgwFoAUsNUl6pnUyOx1YHEmpJ72cHvW9K0w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTE0NEM5LzdCQTNFNzBDMEVD OTExRjBBMjZGRjE0NEM0RjlBRTAyL3NOVWw2cG5VeU94MVlIRW1wSjcyY0h2VzlL MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvc05VbDZwblV5T3gxWUhFbXBKNzJjSHZXOUswLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTE0 NEM5LzdCQTNFNzBDMEVDOTExRjBBMjZGRjE0NEM0RjlBRTAyL3NOVWw2cG5VeU94 MVlIRW1wSjcyY0h2VzlLMC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBABUjAwfP9a/Aa0eKs5V1ClpDjUGqsilxCPDS/h0A39YQOpZt0AfU8prW E7nWn0TGEJYpzA+ZX7EgB6g9J3L56+kyJvjHk837HZvYDaRxvpmTMxReSlt5qQBg 4o230s6kyTBd/T5q0drBF4GolVivbENnrNjWX7w2qggD7SIFmxnM/NmmV3PCgYm6 DYsJjLWkebCdaaXUSxpmeEmf7hvNIFL/joXACSt0Dy6BIb1yofXDXxVCzZZ0ch5S 1f5tcIj3cgNkCIqr4P6yrfb6ou9IQ9EoxwEDQx3sc/ZcIIsae5FXy9+q6ULt6ywF WV1OpPgznfTRRtsD26Gc95eQmdpWrZc= -----END CERTIFICATE-----Generated at Sat May 17 08:20:24 2025 by rpki-client