$ rpki-client -vvf rpki.apnic.net/member_repository/A91326B3/C55423AAE69111EEBF058932C4F9AE02/C9q2CGF_PDGDxHD05hmyeV91w4k.mft File: C9q2CGF_PDGDxHD05hmyeV91w4k.mft (raw, json) Hash identifier: B2MwQdQxdK0nQg/P/wiYCulFv6vGi1GozpRAKS1+Os8= Subject key identifier: 96:1D:00:FB:68:08:F3:83:46:D4:57:6B:04:D7:2B:2D:5F:B4:C5:00 Authority key identifier: 0B:DA:B6:08:61:7F:3C:31:83:C4:70:F4:E6:19:B2:79:5F:75:C3:89 Certificate issuer: /CN=A91326B3/serialNumber=0BDAB608617F3C3183C470F4E619B2795F75C389 Certificate serial: DF Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/C9q2CGF_PDGDxHD05hmyeV91w4k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91326B3/C55423AAE69111EEBF058932C4F9AE02/C9q2CGF_PDGDxHD05hmyeV91w4k.mft Manifest number: DB Signing time: Tue 13 May 2025 04:47:32 +0000 Manifest this update: Tue 13 May 2025 04:47:31 +0000 Manifest next update: Tue 20 May 2025 04:47:31 +0000 Files and hashes: 1: C9q2CGF_PDGDxHD05hmyeV91w4k.crl (hash: vANRnJGuwtqoyr/tSTPp8ONpSAka10xkNdFshyr5YNM=) 2: E3ABAA7AE69211EEB34D4B6AC4F9AE02.roa (hash: EyKD4I3R8YSy4asXY+8xvf07IP4owJwI772hb1AAhAw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91326B3/C55423AAE69111EEBF058932C4F9AE02/C9q2CGF_PDGDxHD05hmyeV91w4k.crl rsync://rpki.apnic.net/member_repository/A91326B3/C55423AAE69111EEBF058932C4F9AE02/C9q2CGF_PDGDxHD05hmyeV91w4k.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/C9q2CGF_PDGDxHD05hmyeV91w4k.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 20 May 2025 04:47:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 223 (0xdf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91326B3, serialNumber=0BDAB608617F3C3183C470F4E619B2795F75C389 Validity Not Before: May 13 04:47:31 2025 GMT Not After : May 20 04:47:31 2025 GMT Subject: CN=6822cee4-783d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:84:88:eb:18:48:65:8c:fc:a9:88:ec:b4:a1: bd:da:7d:f5:0d:d6:5c:8d:52:2f:f3:88:40:80:8f: f4:b3:bb:44:14:e6:fd:ea:79:e0:bc:08:fe:18:4e: ca:f2:d6:3e:95:92:0b:91:ff:4a:d2:8f:69:c2:3b: 38:78:14:2e:8d:1b:1a:80:56:cd:21:f5:02:09:2b: 99:b9:fc:0a:67:e5:a3:d2:5d:5f:62:57:e9:23:71: 2b:6b:c5:a6:a3:e2:55:82:5c:80:f0:bd:ec:f7:66: 4f:7f:66:09:68:49:9f:ee:55:68:5a:db:b1:02:33: 5a:81:b3:c5:ba:ab:d7:f6:6d:23:dc:53:ca:8b:b7: 89:73:cf:d8:97:30:cc:9a:74:fb:f9:bc:5e:2a:c0: 10:c7:c2:91:c6:b9:f6:a5:58:5d:3c:f6:83:8f:1a: 6d:f4:24:bb:b8:bf:69:30:14:bd:9b:cc:e7:82:82: af:2f:00:30:37:6a:c3:bb:03:08:5d:ee:66:99:d1: 5c:61:71:2d:7d:e2:7e:40:7b:fd:10:4a:4b:f8:59: 86:41:7b:76:71:f5:cd:0a:a1:73:bc:6d:b8:71:1a: a0:5b:71:cd:7a:b8:9a:a4:1e:d0:11:43:f0:05:11: 05:39:4e:80:af:4a:9f:51:02:c0:f2:8e:f4:10:df: d4:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 96:1D:00:FB:68:08:F3:83:46:D4:57:6B:04:D7:2B:2D:5F:B4:C5:00 X509v3 Authority Key Identifier: keyid:0B:DA:B6:08:61:7F:3C:31:83:C4:70:F4:E6:19:B2:79:5F:75:C3:89 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91326B3/C55423AAE69111EEBF058932C4F9AE02/C9q2CGF_PDGDxHD05hmyeV91w4k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/C9q2CGF_PDGDxHD05hmyeV91w4k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91326B3/C55423AAE69111EEBF058932C4F9AE02/C9q2CGF_PDGDxHD05hmyeV91w4k.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 18:de:1e:d0:70:66:3f:e2:47:6e:fa:40:fc:19:ec:48:1b:b5: f5:09:fc:03:a5:7f:e2:21:21:c4:cd:ad:91:2d:85:10:24:1b: 83:de:9f:84:d4:10:7f:62:fb:07:0d:4e:6d:29:c2:70:58:09: e1:34:a2:bc:62:40:4b:01:4c:1d:77:f7:91:b1:46:90:bc:2d: eb:cd:e5:9c:86:00:f8:4f:3f:27:24:ff:1b:9a:58:d4:08:1a: 75:9f:60:df:fd:c6:81:a4:3d:13:71:25:e9:54:79:72:ca:01: 8b:33:fa:2a:6f:b9:9d:ac:2d:7c:06:44:a7:a0:45:8c:a6:3d: 70:89:48:98:a8:99:67:f5:df:c4:13:a4:a3:be:ef:74:de:6d: 33:19:0a:fd:59:0b:04:e8:9b:6f:e0:e3:ff:d3:25:8a:72:df: 6a:00:7b:e8:62:58:26:7e:ee:b2:b9:a6:32:21:f3:37:94:1c: fe:e4:55:5b:2a:25:d4:be:5f:0e:53:c9:d2:1d:5c:bf:04:ff: a4:93:12:21:60:d7:d8:d0:f9:db:5c:c4:7c:a5:ec:ee:1b:f3: b5:19:b1:94:95:fc:b1:5a:5f:b7:7b:b7:55:c6:b1:53:e3:df: ea:9d:ba:79:1c:8d:08:37:d1:82:36:75:6a:02:0a:96:b0:00: 59:bd:6f:a7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAN8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzI2QjMxMTAvBgNVBAUTKDBCREFCNjA4NjE3RjNDMzE4M0M0NzBGNEU2MTlCMjc5 NUY3NUMzODkwHhcNMjUwNTEzMDQ0NzMxWhcNMjUwNTIwMDQ0NzMxWjAYMRYwFAYD VQQDEw02ODIyY2VlNC03ODNkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtYSI6xhIZYz8qYjstKG92n31DdZcjVIv84hAgI/0s7tEFOb96nngvAj+GE7K 8tY+lZILkf9K0o9pwjs4eBQujRsagFbNIfUCCSuZufwKZ+Wj0l1fYlfpI3Era8Wm o+JVglyA8L3s92ZPf2YJaEmf7lVoWtuxAjNagbPFuqvX9m0j3FPKi7eJc8/YlzDM mnT7+bxeKsAQx8KRxrn2pVhdPPaDjxpt9CS7uL9pMBS9m8zngoKvLwAwN2rDuwMI Xe5mmdFcYXEtfeJ+QHv9EEpL+FmGQXt2cfXNCqFzvG24cRqgW3HNeriapB7QEUPw BREFOU6Ar0qfUQLA8o70EN/UKQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJYdAPto CPODRtRXawTXKy1ftMUAMB8GA1UdIwQYMBaAFAvatghhfzwxg8Rw9OYZsnlfdcOJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMjZCMy9DNTU0MjNBQUU2 OTExMUVFQkYwNTg5MzJDNEY5QUUwMi9DOXEyQ0dGX1BER0R4SEQwNWhteWVWOTF3 NGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0M5cTJDR0ZfUERHRHhIRDA1aG15ZVY5MXc0ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz MjZCMy9DNTU0MjNBQUU2OTExMUVFQkYwNTg5MzJDNEY5QUUwMi9DOXEyQ0dGX1BE R0R4SEQwNWhteWVWOTF3NGsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAY3h7QcGY/4kdu+kD8GexIG7X1CfwDpX/iISHEza2RLYUQJBuD3p+E 1BB/YvsHDU5tKcJwWAnhNKK8YkBLAUwdd/eRsUaQvC3rzeWchgD4Tz8nJP8bmljU CBp1n2Df/caBpD0TcSXpVHlyygGLM/oqb7mdrC18BkSnoEWMpj1wiUiYqJln9d/E E6Sjvu903m0zGQr9WQsE6Jtv4OP/0yWKct9qAHvoYlgmfu6yuaYyIfM3lBz+5FVb KiXUvl8OU8nSHVy/BP+kkxIhYNfY0PnbXMR8pezuG/O1GbGUlfyxWl+3e7dVxrFT 49/qnbp5HI0IN9GCNnVqAgqWsABZvW+n -----END CERTIFICATE-----Generated at Wed May 14 11:39:12 2025 by rpki-client