$ rpki-client -vvf rpki.apnic.net/member_repository/A91431A6/44D890CA8EC511EB97B12074C4F9AE02/aWYanwY1V84rVDewGIk9fZ_dvtA.mft File: aWYanwY1V84rVDewGIk9fZ_dvtA.mft (raw, json) Hash identifier: ta3LwhoxEM2GqBLekf29mNpuwAlUhuWGXb9MHMeBths= Subject key identifier: D2:8F:1D:C1:3C:00:B7:FF:F8:D6:DE:4A:78:58:6F:48:79:30:DD:09 Authority key identifier: 69:66:1A:9F:06:35:57:CE:2B:54:37:B0:18:89:3D:7D:9F:DD:BE:D0 Certificate issuer: /CN=A91431A6/serialNumber=69661A9F063557CE2B5437B018893D7D9FDDBED0 Certificate serial: 0643 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aWYanwY1V84rVDewGIk9fZ_dvtA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91431A6/44D890CA8EC511EB97B12074C4F9AE02/aWYanwY1V84rVDewGIk9fZ_dvtA.mft Manifest number: 063C Signing time: Mon 12 May 2025 22:25:13 +0000 Manifest this update: Mon 12 May 2025 22:25:13 +0000 Manifest next update: Mon 19 May 2025 22:25:13 +0000 Files and hashes: 1: aWYanwY1V84rVDewGIk9fZ_dvtA.crl (hash: xPmP0FxN/KIYcunXqCrq4/e9R0v2cL0+xWTi/ZKf6Lw=) 2: DDCD4C168EC611EBAB7F3476C4F9AE02.roa (hash: vYh53kbQx56u84oKA/xd3ROknCRDM7pHTjRvm9U4uGU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91431A6/44D890CA8EC511EB97B12074C4F9AE02/aWYanwY1V84rVDewGIk9fZ_dvtA.crl rsync://rpki.apnic.net/member_repository/A91431A6/44D890CA8EC511EB97B12074C4F9AE02/aWYanwY1V84rVDewGIk9fZ_dvtA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aWYanwY1V84rVDewGIk9fZ_dvtA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 19 May 2025 22:25:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1603 (0x643) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91431A6, serialNumber=69661A9F063557CE2B5437B018893D7D9FDDBED0 Validity Not Before: May 12 22:25:13 2025 GMT Not After : May 19 22:25:13 2025 GMT Subject: CN=68227549-48ea Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:55:1e:1c:be:ab:b3:be:53:6f:43:bb:87:44: 7b:ef:7c:c1:09:ce:88:2e:4b:e3:5a:b4:ac:76:e2: 08:ee:4d:b1:98:9b:81:3b:82:59:6c:b2:70:08:a4: e0:6a:01:31:46:6c:d5:17:ec:6d:0b:42:15:00:79: 97:41:ea:b2:fa:89:47:70:53:04:c4:3c:da:a8:ee: 9d:31:eb:14:81:33:4e:62:70:31:b5:b3:45:1e:ce: 02:29:27:20:5a:37:dc:e6:a1:33:32:ad:33:b0:74: 39:f2:80:3d:5d:1c:08:0e:6f:32:50:81:68:1d:55: de:56:34:32:b6:d7:7b:2b:2f:0a:ce:32:79:2e:d1: 1e:e8:13:07:9c:2b:f5:e8:86:91:3a:96:3d:1f:fa: 97:ab:93:d5:2a:17:4f:9b:d3:b6:0f:03:43:9f:0b: f8:56:8e:0f:d4:dd:1c:6b:dd:69:03:1f:15:e3:fc: 60:3b:b4:d4:e4:d7:20:9c:ed:c7:18:de:b9:3c:ad: 85:df:ff:d8:6d:e4:8e:d2:76:23:15:6b:d1:10:11: 0c:79:fb:ae:52:28:d5:64:38:47:78:56:d6:86:03: 24:06:f4:66:88:f7:01:e5:33:79:b5:a4:e5:b0:30: 77:5c:84:e5:79:2d:6e:b8:c8:4c:c4:cd:a6:ac:93: d2:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D2:8F:1D:C1:3C:00:B7:FF:F8:D6:DE:4A:78:58:6F:48:79:30:DD:09 X509v3 Authority Key Identifier: keyid:69:66:1A:9F:06:35:57:CE:2B:54:37:B0:18:89:3D:7D:9F:DD:BE:D0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91431A6/44D890CA8EC511EB97B12074C4F9AE02/aWYanwY1V84rVDewGIk9fZ_dvtA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aWYanwY1V84rVDewGIk9fZ_dvtA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91431A6/44D890CA8EC511EB97B12074C4F9AE02/aWYanwY1V84rVDewGIk9fZ_dvtA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2a:5b:a1:d8:e8:2d:9d:2f:49:ca:58:78:2f:27:c6:fe:d9:a0: d6:7e:44:5e:46:0e:6a:4f:d8:2d:40:85:d9:52:99:e5:34:1b: 90:b3:17:5d:b2:00:3d:50:20:f7:95:88:46:2b:bb:18:e9:92: dd:23:d1:b5:81:79:ba:6b:bf:0c:da:c3:62:7d:11:9f:77:4d: 7e:56:f6:56:f0:e8:ae:8e:58:f7:8d:4b:af:93:0b:af:10:67: 21:86:e7:ee:36:0e:4b:a8:73:91:c4:50:c8:6f:28:b1:f1:a2: 62:da:1d:c7:51:f9:31:55:73:05:e6:4e:d7:83:14:7a:f1:0d: bd:12:c5:38:94:f4:b7:f0:93:46:42:17:b8:cd:04:bd:c3:8c: d2:85:46:78:6c:12:04:47:d3:17:09:fc:0a:9d:5c:f8:92:9a: 89:9b:6d:4c:e5:f8:84:eb:8e:53:62:a5:3a:c5:49:59:67:c0: 2b:9f:73:b3:b0:d8:d6:01:e7:35:de:b9:ed:55:1c:73:44:02: 08:f4:52:2b:d6:50:fc:dc:7f:08:b8:95:b0:64:7c:5b:19:87: 41:88:6a:5d:74:d7:23:f6:e3:d1:44:b3:53:a8:7b:5c:80:3c: 5e:63:f0:82:06:9b:8b:00:d6:e2:cd:2a:6e:6d:fd:aa:dd:15: 03:7b:ec:2f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBkMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDMxQTYxMTAvBgNVBAUTKDY5NjYxQTlGMDYzNTU3Q0UyQjU0MzdCMDE4ODkzRDdE OUZEREJFRDAwHhcNMjUwNTEyMjIyNTEzWhcNMjUwNTE5MjIyNTEzWjAYMRYwFAYD VQQDEw02ODIyNzU0OS00OGVhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwVUeHL6rs75Tb0O7h0R773zBCc6ILkvjWrSsduII7k2xmJuBO4JZbLJwCKTg agExRmzVF+xtC0IVAHmXQeqy+olHcFMExDzaqO6dMesUgTNOYnAxtbNFHs4CKScg Wjfc5qEzMq0zsHQ58oA9XRwIDm8yUIFoHVXeVjQyttd7Ky8KzjJ5LtEe6BMHnCv1 6IaROpY9H/qXq5PVKhdPm9O2DwNDnwv4Vo4P1N0ca91pAx8V4/xgO7TU5NcgnO3H GN65PK2F3//YbeSO0nYjFWvREBEMefuuUijVZDhHeFbWhgMkBvRmiPcB5TN5taTl sDB3XITleS1uuMhMxM2mrJPS9wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNKPHcE8 ALf/+NbeSnhYb0h5MN0JMB8GA1UdIwQYMBaAFGlmGp8GNVfOK1Q3sBiJPX2f3b7Q MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MzFBNi80NEQ4OTBDQThF QzUxMUVCOTdCMTIwNzRDNEY5QUUwMi9hV1lhbndZMVY4NHJWRGV3R0lrOWZaX2R2 dEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FXWWFud1kxVjg0clZEZXdHSWs5ZlpfZHZ0QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 MzFBNi80NEQ4OTBDQThFQzUxMUVCOTdCMTIwNzRDNEY5QUUwMi9hV1lhbndZMVY4 NHJWRGV3R0lrOWZaX2R2dEEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAqW6HY6C2dL0nKWHgvJ8b+2aDWfkReRg5qT9gtQIXZUpnlNBuQsxdd sgA9UCD3lYhGK7sY6ZLdI9G1gXm6a78M2sNifRGfd01+VvZW8Oiujlj3jUuvkwuv EGchhufuNg5LqHORxFDIbyix8aJi2h3HUfkxVXMF5k7XgxR68Q29EsU4lPS38JNG Qhe4zQS9w4zShUZ4bBIER9MXCfwKnVz4kpqJm21M5fiE645TYqU6xUlZZ8Arn3Oz sNjWAec13rntVRxzRAII9FIr1lD83H8IuJWwZHxbGYdBiGpddNcj9uPRRLNTqHtc gDxeY/CCBpuLANbizSpubf2q3RUDe+wv -----END CERTIFICATE-----Generated at Wed May 14 06:45:21 2025 by rpki-client