$ rpki-client -vvf rpki.apnic.net/member_repository/A91298DA/34F3612E268111EA903D7058C4F9AE02/_KoIYibfAq-DlPqyLR-5bgt9Zd0.mft File: _KoIYibfAq-DlPqyLR-5bgt9Zd0.mft (raw, json) Hash identifier: sEzv6FER+ERTMxMU3ywhv4P/AQ0IL95aXlSUEivyzww= Subject key identifier: 59:6D:B3:DF:0E:D5:72:32:67:A5:A9:D8:6F:51:8A:F1:82:B8:E8:97 Authority key identifier: FC:AA:08:62:26:DF:02:AF:83:94:FA:B2:2D:1F:B9:6E:0B:7D:65:DD Certificate issuer: /CN=A91298DA/serialNumber=FCAA086226DF02AF8394FAB22D1FB96E0B7D65DD Certificate serial: 0BD7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_KoIYibfAq-DlPqyLR-5bgt9Zd0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91298DA/34F3612E268111EA903D7058C4F9AE02/_KoIYibfAq-DlPqyLR-5bgt9Zd0.mft Manifest number: 0BB3 Signing time: Mon 12 May 2025 18:52:18 +0000 Manifest this update: Mon 12 May 2025 18:52:17 +0000 Manifest next update: Mon 19 May 2025 18:52:17 +0000 Files and hashes: 1: _KoIYibfAq-DlPqyLR-5bgt9Zd0.crl (hash: OJ9pbe+32I6RyQbtHrs6ObutXNF5gqadp4kpw0MgSh0=) 2: 94A87892D3CF11EF81EA2D5EC4F9AE02.roa (hash: YFlPcMOqU4AT2knX3tItgDLUNSgHaBzXBJvuHWKEgzg=) 3: E2D5171C2F3211ED958A415DC4F9AE02.roa (hash: Jhd+zmEk5Tr6WUgFESV3Hz6/KEOnMbj2hHPJhFLnDKY=) 4: 7EA6AA5AD3CF11EF83B35E4BC4F9AE02.roa (hash: ZCU4Sl2P84BRUchJ+pTPcKQydpQbDyhJRysJwGUvBfs=) 5: 1667FF9C5DF611EF919BDB31C4F9AE02.roa (hash: fo6rQUcXbnI8NE4rYd/pMMgxfYxJbyDcHENy4xKaHcs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91298DA/34F3612E268111EA903D7058C4F9AE02/_KoIYibfAq-DlPqyLR-5bgt9Zd0.crl rsync://rpki.apnic.net/member_repository/A91298DA/34F3612E268111EA903D7058C4F9AE02/_KoIYibfAq-DlPqyLR-5bgt9Zd0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_KoIYibfAq-DlPqyLR-5bgt9Zd0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 19 May 2025 18:52:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3031 (0xbd7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91298DA, serialNumber=FCAA086226DF02AF8394FAB22D1FB96E0B7D65DD Validity Not Before: May 12 18:52:17 2025 GMT Not After : May 19 18:52:17 2025 GMT Subject: CN=68224362-18c0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:d8:b7:6d:d7:9a:b6:41:18:8e:d9:54:c2:bf: f7:a4:b3:90:73:3d:c3:c2:db:43:63:eb:65:ae:78: cf:9e:0d:29:35:2d:6e:4c:19:55:ae:fb:b6:ab:f9: 20:43:a5:68:a9:05:a9:b7:42:9c:35:82:d5:ca:fa: 60:7c:4c:ec:3f:0f:3b:7c:34:71:7b:8d:76:6c:a4: 95:33:b5:0c:ac:42:35:9e:7d:3e:50:77:ad:59:d3: 25:9e:42:9b:7c:cc:63:a4:4a:b5:8d:98:80:6f:15: 57:60:86:ba:cf:5a:73:d5:19:29:04:d5:97:36:d6: bb:d0:61:b7:b4:6a:33:c3:68:7a:c7:11:60:de:31: da:fc:79:e8:ba:42:79:42:1d:e1:ae:bf:15:a9:72: 7b:38:e5:9f:4d:79:dc:50:75:50:e3:67:e0:ff:36: bc:49:fa:3f:84:32:c2:e2:94:06:bc:14:ba:fb:2f: 44:88:82:6c:5e:84:87:71:4e:ab:25:2a:56:2d:24: 41:89:d3:86:01:65:55:10:66:49:46:49:ca:45:9a: a4:a2:4f:a7:ad:d3:59:7b:f4:3c:53:f3:bd:76:d8: 28:bb:45:4b:44:d7:b8:ad:26:8a:32:82:97:f0:f4: 10:77:7b:95:bc:d1:cc:0d:4d:e5:f4:da:fa:14:3b: 51:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 59:6D:B3:DF:0E:D5:72:32:67:A5:A9:D8:6F:51:8A:F1:82:B8:E8:97 X509v3 Authority Key Identifier: keyid:FC:AA:08:62:26:DF:02:AF:83:94:FA:B2:2D:1F:B9:6E:0B:7D:65:DD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91298DA/34F3612E268111EA903D7058C4F9AE02/_KoIYibfAq-DlPqyLR-5bgt9Zd0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_KoIYibfAq-DlPqyLR-5bgt9Zd0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91298DA/34F3612E268111EA903D7058C4F9AE02/_KoIYibfAq-DlPqyLR-5bgt9Zd0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4f:51:58:59:40:4e:50:e8:53:31:79:f7:99:c3:46:b1:70:a6: 49:97:ea:59:cc:8d:45:54:05:53:f7:c1:1b:d5:bd:4d:9a:5d: 4c:bc:b5:46:e0:d2:5c:03:d9:17:25:3b:58:27:12:b0:df:09: 03:e9:a0:20:09:29:62:30:b7:97:9e:36:0e:bf:49:0b:4c:6d: 65:0f:83:19:88:91:fd:ae:5d:40:26:b6:1b:e2:09:fb:1b:54: a0:d9:c2:c7:41:5b:66:e7:e7:87:d7:62:6b:92:2a:a2:a5:05: 4c:ff:78:a7:11:5a:88:fd:23:b0:0b:9a:59:8c:ec:17:96:1e: 02:d3:9c:e0:03:11:fa:2f:b7:20:81:af:78:9c:6c:64:d6:fd: 15:d1:14:13:f7:d6:69:1f:d2:44:c3:8d:76:d4:40:6d:d8:31: fb:ae:6c:d2:fb:9e:64:f7:0f:d9:88:8d:d8:81:4c:dc:08:6d: 6b:b3:d5:29:86:6b:a3:88:c5:90:3e:f5:20:9c:0c:be:a9:a8: f3:aa:76:d3:d9:58:d9:ce:42:59:38:32:a8:49:62:80:2c:c0: a5:ae:29:5e:4a:a9:ce:85:9d:24:70:99:ba:6c:f5:3c:0b:92: 89:26:99:62:21:5c:60:52:a6:38:72:9f:67:39:02:04:18:f1: a8:ee:ee:cd -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC9cwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mjk4REExMTAvBgNVBAUTKEZDQUEwODYyMjZERjAyQUY4Mzk0RkFCMjJEMUZCOTZF MEI3RDY1REQwHhcNMjUwNTEyMTg1MjE3WhcNMjUwNTE5MTg1MjE3WjAYMRYwFAYD VQQDEw02ODIyNDM2Mi0xOGMwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArNi3bdeatkEYjtlUwr/3pLOQcz3DwttDY+tlrnjPng0pNS1uTBlVrvu2q/kg Q6VoqQWpt0KcNYLVyvpgfEzsPw87fDRxe412bKSVM7UMrEI1nn0+UHetWdMlnkKb fMxjpEq1jZiAbxVXYIa6z1pz1RkpBNWXNta70GG3tGozw2h6xxFg3jHa/HnoukJ5 Qh3hrr8VqXJ7OOWfTXncUHVQ42fg/za8Sfo/hDLC4pQGvBS6+y9EiIJsXoSHcU6r JSpWLSRBidOGAWVVEGZJRknKRZqkok+nrdNZe/Q8U/O9dtgou0VLRNe4rSaKMoKX 8PQQd3uVvNHMDU3l9Nr6FDtR4QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFlts98O 1XIyZ6Wp2G9RivGCuOiXMB8GA1UdIwQYMBaAFPyqCGIm3wKvg5T6si0fuW4LfWXd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyOThEQS8zNEYzNjEyRTI2 ODExMUVBOTAzRDcwNThDNEY5QUUwMi9fS29JWWliZkFxLURsUHF5TFItNWJndDla ZDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL19Lb0lZaWJmQXEtRGxQcXlMUi01Ymd0OVpkMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy OThEQS8zNEYzNjEyRTI2ODExMUVBOTAzRDcwNThDNEY5QUUwMi9fS29JWWliZkFx LURsUHF5TFItNWJndDlaZDAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBPUVhZQE5Q6FMxefeZw0axcKZJl+pZzI1FVAVT98Eb1b1Nml1MvLVG 4NJcA9kXJTtYJxKw3wkD6aAgCSliMLeXnjYOv0kLTG1lD4MZiJH9rl1AJrYb4gn7 G1Sg2cLHQVtm5+eH12JrkiqipQVM/3inEVqI/SOwC5pZjOwXlh4C05zgAxH6L7cg ga94nGxk1v0V0RQT99ZpH9JEw4121EBt2DH7rmzS+55k9w/ZiI3YgUzcCG1rs9Up hmujiMWQPvUgnAy+qajzqnbT2VjZzkJZODKoSWKALMClrileSqnOhZ0kcJm6bPU8 C5KJJpliIVxgUqY4cp9nOQIEGPGo7u7N -----END CERTIFICATE-----Generated at Tue May 13 08:07:13 2025 by rpki-client