$ rpki-client -vvf rpki.apnic.net/member_repository/A9136F59/5772AFBEF84F11ECA2923952C4F9AE02/91XB4Q_ErmiS0krLh4LX5cAEGLA.mft File: 91XB4Q_ErmiS0krLh4LX5cAEGLA.mft (raw, json) Hash identifier: jOpTeocAw8TDOBBx5cA4N+WaE9Inn6sflw9MAr4zhuI= Subject key identifier: 4E:5C:75:0D:C4:D9:AA:E0:DE:42:B9:52:F3:36:EB:81:32:ED:07:DE Authority key identifier: F7:55:C1:E1:0F:C4:AE:68:92:D2:4A:CB:87:82:D7:E5:C0:04:18:B0 Certificate issuer: /CN=A9136F59/serialNumber=F755C1E10FC4AE6892D24ACB8782D7E5C00418B0 Certificate serial: 02AB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/91XB4Q_ErmiS0krLh4LX5cAEGLA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9136F59/5772AFBEF84F11ECA2923952C4F9AE02/91XB4Q_ErmiS0krLh4LX5cAEGLA.mft Manifest number: 02A7 Signing time: Tue 13 May 2025 01:17:23 +0000 Manifest this update: Tue 13 May 2025 01:17:22 +0000 Manifest next update: Tue 20 May 2025 01:17:22 +0000 Files and hashes: 1: 91XB4Q_ErmiS0krLh4LX5cAEGLA.crl (hash: yKBk/V5VSgr1a1GicykxXxCuAB6NnZTKoexmif+fSHw=) 2: ED0C111CF8F611ECB6DF8835C4F9AE02.roa (hash: 4DnB0bL3NG78Ric1Q/fKLIMkj23xQICVd02+1wJapuQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9136F59/5772AFBEF84F11ECA2923952C4F9AE02/91XB4Q_ErmiS0krLh4LX5cAEGLA.crl rsync://rpki.apnic.net/member_repository/A9136F59/5772AFBEF84F11ECA2923952C4F9AE02/91XB4Q_ErmiS0krLh4LX5cAEGLA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/91XB4Q_ErmiS0krLh4LX5cAEGLA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 20 May 2025 01:17:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 683 (0x2ab) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9136F59, serialNumber=F755C1E10FC4AE6892D24ACB8782D7E5C00418B0 Validity Not Before: May 13 01:17:22 2025 GMT Not After : May 20 01:17:22 2025 GMT Subject: CN=68229da2-5cfa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:66:fc:7b:69:0f:1b:e5:64:30:1c:17:a3:3b: 43:71:6d:9e:c7:12:75:fd:da:cf:5e:a8:9a:8c:f4: f2:3c:45:2e:f0:35:6c:dc:74:90:0e:1b:fa:65:31: 36:39:d9:1f:d3:0d:b9:65:0b:1c:d8:ab:9c:4f:13: bc:11:5b:11:f0:ab:51:1f:48:fe:a3:62:71:76:22: df:eb:0c:63:43:18:50:42:a3:fd:fc:ba:88:61:cf: 0b:f6:df:c1:c9:68:20:58:2b:7d:08:00:f4:25:80: 46:b7:ba:9d:76:a1:07:d9:c3:72:45:cc:a1:24:a7: ec:a4:f4:cc:aa:91:cd:e7:88:d9:87:fd:06:21:bd: 9d:1b:33:a2:c0:47:0e:01:bc:3a:5d:4a:96:8a:b1: 60:64:a0:46:50:87:ac:9a:03:3f:9c:a4:df:1a:c8: f6:63:7c:47:47:39:c9:80:39:ac:74:be:1a:43:4a: 27:b2:cc:46:c8:c2:d3:4a:e0:c1:b6:40:40:2e:25: 90:52:92:22:25:5e:f1:48:f0:23:ec:69:f0:34:be: 9c:83:11:3d:90:2a:31:11:4b:70:9d:04:e1:77:1a: b9:4f:63:d5:05:4a:a7:35:46:c0:fa:a3:82:6d:a2: 11:bf:9d:3e:b6:89:af:44:a2:5f:03:17:31:d4:18: 93:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4E:5C:75:0D:C4:D9:AA:E0:DE:42:B9:52:F3:36:EB:81:32:ED:07:DE X509v3 Authority Key Identifier: keyid:F7:55:C1:E1:0F:C4:AE:68:92:D2:4A:CB:87:82:D7:E5:C0:04:18:B0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9136F59/5772AFBEF84F11ECA2923952C4F9AE02/91XB4Q_ErmiS0krLh4LX5cAEGLA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/91XB4Q_ErmiS0krLh4LX5cAEGLA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9136F59/5772AFBEF84F11ECA2923952C4F9AE02/91XB4Q_ErmiS0krLh4LX5cAEGLA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 85:1c:1b:80:d3:f6:80:29:99:bc:ef:bb:66:10:75:e9:c8:f1: 4b:be:55:d8:29:72:c4:ac:fd:36:4a:36:8e:ce:33:a6:59:6d: cf:09:27:a9:d0:67:b3:0e:9e:69:00:26:7a:c4:26:0d:93:e9: 51:63:28:fa:5a:9a:91:42:85:d1:2a:35:6e:0f:55:bb:91:48: b8:62:fb:aa:25:a0:bb:16:9c:6c:0d:44:1e:57:cb:32:ea:1b: c1:0a:45:62:88:53:ad:c0:18:85:a1:a6:25:47:21:47:94:ff: d9:70:d1:32:56:cc:f5:90:dd:78:b1:50:86:79:da:2a:a5:b1: 2d:8f:94:3a:99:5e:18:b7:22:f6:33:c1:f2:30:9f:73:67:63: e7:a4:2c:32:11:86:a1:ae:f8:9c:19:20:77:a7:43:77:8d:7f: e4:c4:40:ca:5f:a6:ee:9b:0a:e1:e0:62:75:0d:5d:00:2d:14: a4:ae:2f:14:3e:31:43:ea:e5:e2:7e:b4:31:94:74:ef:18:02: 1c:d2:fe:b8:9e:40:6b:43:83:af:0d:2e:02:6f:c1:f0:14:75: 6c:b2:a4:34:0e:74:42:bf:7a:1f:44:aa:48:60:5d:4b:85:f9: 71:8c:3b:7c:d8:c4:a1:f6:68:53:8c:03:e2:74:a1:8a:53:da: 0e:92:29:b5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAqswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzZGNTkxMTAvBgNVBAUTKEY3NTVDMUUxMEZDNEFFNjg5MkQyNEFDQjg3ODJEN0U1 QzAwNDE4QjAwHhcNMjUwNTEzMDExNzIyWhcNMjUwNTIwMDExNzIyWjAYMRYwFAYD VQQDEw02ODIyOWRhMi01Y2ZhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnmb8e2kPG+VkMBwXoztDcW2exxJ1/drPXqiajPTyPEUu8DVs3HSQDhv6ZTE2 Odkf0w25ZQsc2KucTxO8EVsR8KtRH0j+o2JxdiLf6wxjQxhQQqP9/LqIYc8L9t/B yWggWCt9CAD0JYBGt7qddqEH2cNyRcyhJKfspPTMqpHN54jZh/0GIb2dGzOiwEcO Abw6XUqWirFgZKBGUIesmgM/nKTfGsj2Y3xHRznJgDmsdL4aQ0onssxGyMLTSuDB tkBALiWQUpIiJV7xSPAj7GnwNL6cgxE9kCoxEUtwnQThdxq5T2PVBUqnNUbA+qOC baIRv50+tomvRKJfAxcx1BiTJQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFE5cdQ3E 2arg3kK5UvM264Ey7QfeMB8GA1UdIwQYMBaAFPdVweEPxK5oktJKy4eC1+XABBiw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNkY1OS81NzcyQUZCRUY4 NEYxMUVDQTI5MjM5NTJDNEY5QUUwMi85MVhCNFFfRXJtaVMwa3JMaDRMWDVjQUVH TEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzkxWEI0UV9Fcm1pUzBrckxoNExYNWNBRUdMQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz NkY1OS81NzcyQUZCRUY4NEYxMUVDQTI5MjM5NTJDNEY5QUUwMi85MVhCNFFfRXJt aVMwa3JMaDRMWDVjQUVHTEEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCFHBuA0/aAKZm877tmEHXpyPFLvlXYKXLErP02SjaOzjOmWW3PCSep 0GezDp5pACZ6xCYNk+lRYyj6WpqRQoXRKjVuD1W7kUi4YvuqJaC7FpxsDUQeV8sy 6hvBCkViiFOtwBiFoaYlRyFHlP/ZcNEyVsz1kN14sVCGedoqpbEtj5Q6mV4YtyL2 M8HyMJ9zZ2PnpCwyEYahrvicGSB3p0N3jX/kxEDKX6bumwrh4GJ1DV0ALRSkri8U PjFD6uXifrQxlHTvGAIc0v64nkBrQ4OvDS4Cb8HwFHVssqQ0DnRCv3ofRKpIYF1L hflxjDt82MSh9mhTjAPidKGKU9oOkim1 -----END CERTIFICATE-----Generated at Wed May 14 07:58:34 2025 by rpki-client