$ rpki-client -vvf rpki.apnic.net/member_repository/A91175F6/13A420A8342011ED85ECBF33C4F9AE02/t9SqT11yMa9OdH93IkWsA3ECEPA.mft File: t9SqT11yMa9OdH93IkWsA3ECEPA.mft (raw, json) Hash identifier: 3Ak5dhCGSv6zjeRQegpobfosCNV/Y+ujlXwV2UK2YdE= Subject key identifier: 1B:3D:97:06:F8:1B:22:33:D5:45:3E:56:C9:7A:3C:B2:B8:46:F1:83 Authority key identifier: B7:D4:AA:4F:5D:72:31:AF:4E:74:7F:77:22:45:AC:03:71:02:10:F0 Certificate issuer: /CN=A91175F6/serialNumber=B7D4AA4F5D7231AF4E747F772245AC03710210F0 Certificate serial: 0211 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/t9SqT11yMa9OdH93IkWsA3ECEPA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91175F6/13A420A8342011ED85ECBF33C4F9AE02/t9SqT11yMa9OdH93IkWsA3ECEPA.mft Manifest number: 020D Signing time: Sun 11 May 2025 01:32:08 +0000 Manifest this update: Sun 11 May 2025 01:32:08 +0000 Manifest next update: Sun 18 May 2025 01:32:08 +0000 Files and hashes: 1: t9SqT11yMa9OdH93IkWsA3ECEPA.crl (hash: qvQVPz/zF/4Iux8MCucsHrdkaPVa0z3T1sHAFLmMePQ=) 2: 5D5B0F7C34CA11EDA301482BC4F9AE02.roa (hash: 90Bhpdbkdnfedi3OPca5alDQUSOpnC2UaqisbVy8klY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91175F6/13A420A8342011ED85ECBF33C4F9AE02/t9SqT11yMa9OdH93IkWsA3ECEPA.crl rsync://rpki.apnic.net/member_repository/A91175F6/13A420A8342011ED85ECBF33C4F9AE02/t9SqT11yMa9OdH93IkWsA3ECEPA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/t9SqT11yMa9OdH93IkWsA3ECEPA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 18 May 2025 01:32:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 529 (0x211) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91175F6, serialNumber=B7D4AA4F5D7231AF4E747F772245AC03710210F0 Validity Not Before: May 11 01:32:08 2025 GMT Not After : May 18 01:32:08 2025 GMT Subject: CN=681ffe18-2304 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:49:14:fa:5e:c7:6e:95:db:62:fe:bf:66:d7: d7:6e:0c:36:59:8b:bf:f1:4d:5c:59:13:66:f1:ec: 77:af:8a:e3:f1:c3:ca:af:f3:75:e2:73:b7:0e:c4: 0f:e6:9c:47:6c:1a:4c:66:40:24:9e:32:e1:78:4a: 87:6b:70:fb:ba:e1:da:4f:b3:16:fb:33:a8:6d:24: 76:13:20:95:0c:c3:e1:88:90:42:4d:d0:bd:da:67: 0e:d4:86:1f:d3:a6:20:ad:1e:0e:e9:d5:bf:b9:53: 45:6e:7a:ee:59:40:bb:f4:b3:24:c5:f8:10:60:df: 8b:b8:a6:b2:dd:07:97:c1:d5:bc:c8:91:09:75:f2: 6e:8a:b1:3b:8b:f2:d4:cb:63:a7:09:a7:0e:60:63: 03:8e:f8:b2:02:88:20:9f:20:8b:69:3d:0e:d7:83: dd:9e:a3:54:82:1b:ca:4a:9e:04:a9:59:5a:45:25: 1f:e5:c7:dc:fe:a6:5e:bc:a2:cc:02:6e:3b:cd:51: 1a:53:31:0e:f4:f1:08:8c:e1:47:1a:53:63:2f:e8: 77:69:53:7c:ee:93:e9:1f:b9:d4:d2:91:68:42:52: e4:ed:6a:49:11:5b:b0:be:c9:70:09:6b:d8:c3:85: 67:57:ab:56:4e:c3:dc:68:58:69:b2:e3:13:51:03: 6d:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1B:3D:97:06:F8:1B:22:33:D5:45:3E:56:C9:7A:3C:B2:B8:46:F1:83 X509v3 Authority Key Identifier: keyid:B7:D4:AA:4F:5D:72:31:AF:4E:74:7F:77:22:45:AC:03:71:02:10:F0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91175F6/13A420A8342011ED85ECBF33C4F9AE02/t9SqT11yMa9OdH93IkWsA3ECEPA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/t9SqT11yMa9OdH93IkWsA3ECEPA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91175F6/13A420A8342011ED85ECBF33C4F9AE02/t9SqT11yMa9OdH93IkWsA3ECEPA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 13:74:ea:fc:e1:4c:33:56:47:4f:b5:f8:19:75:33:87:6d:72: 7a:72:0b:0b:21:17:9e:b8:1b:bd:41:ed:f0:0f:28:61:a1:17: 83:b4:d6:89:c3:1a:53:32:4d:ae:e1:f4:9d:19:4d:23:2c:51: 81:b2:1c:16:da:91:dd:50:35:48:1f:f3:cd:50:e2:15:ab:95: f1:fd:12:33:29:b9:ac:47:82:de:2c:93:39:e7:a7:18:33:69: 9a:49:22:0d:6b:9a:6c:97:55:d2:c7:63:f7:a0:7b:44:52:11: 0d:00:ac:62:66:24:1c:83:f0:2f:3b:ea:87:12:c3:b0:32:55: e7:61:af:03:b7:3b:06:ac:cd:10:66:a7:13:67:87:b7:58:f4: d4:94:6b:89:13:23:9d:fe:84:fa:7e:77:91:74:78:52:ad:0c: 90:03:a7:9c:a2:10:56:a5:de:07:05:7e:9a:8c:c2:07:17:26: cd:bc:b5:ce:d5:13:44:89:4b:91:26:a1:90:10:e8:89:1b:cb: ae:6e:c7:15:33:9f:ad:de:fb:06:cb:c4:a9:74:8a:2b:a2:71: 34:be:ac:91:af:b1:08:b3:e9:ca:6b:ac:bc:db:2c:3b:64:dd: ca:c2:ac:ba:54:75:62:67:80:9a:04:64:cd:ad:d3:0e:98:fa: fc:7b:08:8c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAhEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTc1RjYxMTAvBgNVBAUTKEI3RDRBQTRGNUQ3MjMxQUY0RTc0N0Y3NzIyNDVBQzAz NzEwMjEwRjAwHhcNMjUwNTExMDEzMjA4WhcNMjUwNTE4MDEzMjA4WjAYMRYwFAYD VQQDEw02ODFmZmUxOC0yMzA0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx0kU+l7HbpXbYv6/ZtfXbgw2WYu/8U1cWRNm8ex3r4rj8cPKr/N14nO3DsQP 5pxHbBpMZkAknjLheEqHa3D7uuHaT7MW+zOobSR2EyCVDMPhiJBCTdC92mcO1IYf 06YgrR4O6dW/uVNFbnruWUC79LMkxfgQYN+LuKay3QeXwdW8yJEJdfJuirE7i/LU y2OnCacOYGMDjviyAoggnyCLaT0O14PdnqNUghvKSp4EqVlaRSUf5cfc/qZevKLM Am47zVEaUzEO9PEIjOFHGlNjL+h3aVN87pPpH7nU0pFoQlLk7WpJEVuwvslwCWvY w4VnV6tWTsPcaFhpsuMTUQNtxwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBs9lwb4 GyIz1UU+Vsl6PLK4RvGDMB8GA1UdIwQYMBaAFLfUqk9dcjGvTnR/dyJFrANxAhDw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExNzVGNi8xM0E0MjBBODM0 MjAxMUVEODVFQ0JGMzNDNEY5QUUwMi90OVNxVDExeU1hOU9kSDkzSWtXc0EzRUNF UEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3Q5U3FUMTF5TWE5T2RIOTNJa1dzQTNFQ0VQQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx NzVGNi8xM0E0MjBBODM0MjAxMUVEODVFQ0JGMzNDNEY5QUUwMi90OVNxVDExeU1h OU9kSDkzSWtXc0EzRUNFUEEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQATdOr84UwzVkdPtfgZdTOHbXJ6cgsLIReeuBu9Qe3wDyhhoReDtNaJ wxpTMk2u4fSdGU0jLFGBshwW2pHdUDVIH/PNUOIVq5Xx/RIzKbmsR4LeLJM556cY M2maSSINa5psl1XSx2P3oHtEUhENAKxiZiQcg/AvO+qHEsOwMlXnYa8DtzsGrM0Q ZqcTZ4e3WPTUlGuJEyOd/oT6fneRdHhSrQyQA6ecohBWpd4HBX6ajMIHFybNvLXO 1RNEiUuRJqGQEOiJG8uubscVM5+t3vsGy8SpdIoronE0vqyRr7EIs+nKa6y82yw7 ZN3Kwqy6VHViZ4CaBGTNrdMOmPr8ewiM -----END CERTIFICATE-----Generated at Mon May 12 00:23:57 2025 by rpki-client