$ rpki-client -vvf rpki.apnic.net/member_repository/A91418C7/F93001B6F8CF11EF82D8D52BC4F9AE02/42kpD9cZ4-SYfXGac7Hsd6qvSbY.mft File: 42kpD9cZ4-SYfXGac7Hsd6qvSbY.mft (raw, json) Hash identifier: TJNzxeQKeNTGZVgYzVA2UJPnHeSEN6zW/D0J4v0tf54= Subject key identifier: B1:18:C7:7D:1C:CE:5B:37:8F:FD:6B:48:80:C8:75:76:69:C1:4D:77 Authority key identifier: E3:69:29:0F:D7:19:E3:E4:98:7D:71:9A:73:B1:EC:77:AA:AF:49:B6 Certificate issuer: /CN=A91418C7/serialNumber=E369290FD719E3E4987D719A73B1EC77AAAF49B6 Certificate serial: 2C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/42kpD9cZ4-SYfXGac7Hsd6qvSbY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91418C7/F93001B6F8CF11EF82D8D52BC4F9AE02/42kpD9cZ4-SYfXGac7Hsd6qvSbY.mft Manifest number: 2A Signing time: Sun 11 May 2025 06:31:08 +0000 Manifest this update: Sun 11 May 2025 06:31:07 +0000 Manifest next update: Sun 18 May 2025 06:31:07 +0000 Files and hashes: 1: 42kpD9cZ4-SYfXGac7Hsd6qvSbY.crl (hash: PCVw0C2fTbXQQWL5eitoegMIrqTQcG+5by3nzwTwhN0=) 2: CDD0BE9EF99111EF945B6751C4F9AE02.roa (hash: 5D2jjmxRmYaXjLCMnBDCQ4uD7aGag4RBTpQpYik03Wk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91418C7/F93001B6F8CF11EF82D8D52BC4F9AE02/42kpD9cZ4-SYfXGac7Hsd6qvSbY.crl rsync://rpki.apnic.net/member_repository/A91418C7/F93001B6F8CF11EF82D8D52BC4F9AE02/42kpD9cZ4-SYfXGac7Hsd6qvSbY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/42kpD9cZ4-SYfXGac7Hsd6qvSbY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 18 May 2025 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 44 (0x2c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91418C7, serialNumber=E369290FD719E3E4987D719A73B1EC77AAAF49B6 Validity Not Before: May 11 06:31:07 2025 GMT Not After : May 18 06:31:07 2025 GMT Subject: CN=6820442c-02f7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:73:9a:35:4d:74:09:71:a2:02:6d:1a:cf:42: 69:4c:b0:20:5a:b7:60:86:cc:23:94:f5:5e:02:97: da:21:4c:fd:e2:e6:5b:63:c9:4e:a7:7d:90:7c:cf: b7:40:c3:99:5c:68:f2:ee:68:7b:84:a0:52:26:15: 75:cd:df:df:87:e7:80:73:82:0b:61:0b:52:6c:e5: 4e:bd:a6:c2:bc:ca:f4:80:45:c2:13:0b:25:78:e9: eb:96:a1:d4:6b:43:62:b6:33:9f:4c:21:61:45:d3: a4:97:e1:be:d9:c1:3e:b5:78:79:05:8c:ec:a1:c7: c4:55:8c:6e:6e:ea:d7:c2:27:16:b2:ef:e4:13:03: 08:e6:20:12:d4:dc:84:d0:ee:b8:21:b5:65:bd:b0: e5:6c:01:c1:1d:c0:32:5b:4f:0a:32:e9:bd:4b:f0: 76:3b:4a:a4:5e:3d:8d:6c:95:a5:1a:66:89:4c:68: 88:b2:ac:48:8f:6f:0c:f1:9f:2f:dd:a3:e8:b4:12: 3e:5d:0c:2c:53:9b:a4:a0:66:77:7f:2d:70:7e:a6: 78:1f:1e:73:ee:22:31:a8:ad:de:1c:c7:8d:90:50: 56:75:92:74:3f:88:2b:88:5c:9c:1e:b8:21:43:c2: 8b:b5:9f:80:cd:d3:f6:de:a9:ce:eb:dd:41:d3:d9: 9a:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B1:18:C7:7D:1C:CE:5B:37:8F:FD:6B:48:80:C8:75:76:69:C1:4D:77 X509v3 Authority Key Identifier: keyid:E3:69:29:0F:D7:19:E3:E4:98:7D:71:9A:73:B1:EC:77:AA:AF:49:B6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91418C7/F93001B6F8CF11EF82D8D52BC4F9AE02/42kpD9cZ4-SYfXGac7Hsd6qvSbY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/42kpD9cZ4-SYfXGac7Hsd6qvSbY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91418C7/F93001B6F8CF11EF82D8D52BC4F9AE02/42kpD9cZ4-SYfXGac7Hsd6qvSbY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 38:53:a8:22:8d:07:a7:58:0e:93:12:31:88:bd:6d:ac:15:55: 0d:8c:e9:11:19:a7:ba:0a:ea:2f:f1:a4:bf:bd:a2:1d:16:f9: 08:dd:0b:75:a4:0a:46:07:c0:02:ef:dd:42:12:bc:b1:e3:68: 57:de:bf:7f:f4:e6:5f:13:5e:65:64:b8:9c:53:b7:9b:97:a7: ac:62:4b:28:8f:30:73:dc:70:0b:1c:dc:be:a7:f0:1f:e6:f9: de:05:ad:3c:b9:62:60:90:27:73:da:8d:68:6f:b5:88:05:98: 54:33:12:66:ff:01:6d:a3:c6:07:c6:e2:72:09:6f:49:8e:7a: 36:ff:71:24:be:b5:50:8d:09:ad:52:2f:4e:f0:2d:1d:de:1b: 54:57:de:46:b1:a3:ed:32:5c:a2:77:66:21:c7:80:41:5e:14: 82:91:08:e6:10:28:78:2e:91:d9:42:32:ea:68:7c:40:b8:66: 2f:c5:5c:a1:8b:1e:a5:0b:ee:2f:09:75:a5:3c:ef:5d:dd:10: e9:4b:f5:ba:5a:97:5a:1d:ff:d8:b9:1e:bb:81:f9:46:62:ae: b9:fb:11:4e:56:b0:0b:8f:72:bd:88:85:8b:cc:dc:37:75:5a: 8c:2e:1c:19:34:6b:f3:6e:fd:64:fe:6e:c9:5c:0c:5e:43:51: d1:27:c8:4b -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBLDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE0 MThDNzExMC8GA1UEBRMoRTM2OTI5MEZENzE5RTNFNDk4N0Q3MTlBNzNCMUVDNzdB QUFGNDlCNjAeFw0yNTA1MTEwNjMxMDdaFw0yNTA1MTgwNjMxMDdaMBgxFjAUBgNV BAMTDTY4MjA0NDJjLTAyZjcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCpc5o1TXQJcaICbRrPQmlMsCBat2CGzCOU9V4Cl9ohTP3i5ltjyU6nfZB8z7dA w5lcaPLuaHuEoFImFXXN39+H54BzggthC1Js5U69psK8yvSARcITCyV46euWodRr Q2K2M59MIWFF06SX4b7ZwT61eHkFjOyhx8RVjG5u6tfCJxay7+QTAwjmIBLU3ITQ 7rghtWW9sOVsAcEdwDJbTwoy6b1L8HY7SqRePY1slaUaZolMaIiyrEiPbwzxny/d o+i0Ej5dDCxTm6SgZnd/LXB+pngfHnPuIjGord4cx42QUFZ1knQ/iCuIXJweuCFD wou1n4DN0/beqc7r3UHT2ZqFAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUsRjHfRzO WzeP/WtIgMh1dmnBTXcwHwYDVR0jBBgwFoAU42kpD9cZ4+SYfXGac7Hsd6qvSbYw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTQxOEM3L0Y5MzAwMUI2RjhD RjExRUY4MkQ4RDUyQkM0RjlBRTAyLzQya3BEOWNaNC1TWWZYR2FjN0hzZDZxdlNi WS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvNDJrcEQ5Y1o0LVNZZlhHYWM3SHNkNnF2U2JZLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTQx OEM3L0Y5MzAwMUI2RjhDRjExRUY4MkQ4RDUyQkM0RjlBRTAyLzQya3BEOWNaNC1T WWZYR2FjN0hzZDZxdlNiWS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBADhTqCKNB6dYDpMSMYi9bawVVQ2M6REZp7oK6i/xpL+9oh0W+QjdC3Wk CkYHwALv3UISvLHjaFfev3/05l8TXmVkuJxTt5uXp6xiSyiPMHPccAsc3L6n8B/m +d4FrTy5YmCQJ3PajWhvtYgFmFQzEmb/AW2jxgfG4nIJb0mOejb/cSS+tVCNCa1S L07wLR3eG1RX3kaxo+0yXKJ3ZiHHgEFeFIKRCOYQKHgukdlCMupofEC4Zi/FXKGL HqUL7i8JdaU8713dEOlL9bpal1od/9i5HruB+UZirrn7EU5WsAuPcr2IhYvM3Dd1 WowuHBk0a/Nu/WT+bslcDF5DUdEnyEs= -----END CERTIFICATE-----Generated at Sun May 11 13:48:05 2025 by rpki-client