$ rpki-client -vvf rpki.apnic.net/member_repository/A91449E2/B6443384EFFF11ED8556EE54C4F9AE02/D0a9vHSQTl34KfAVlbUcqqIBuds.mft File: D0a9vHSQTl34KfAVlbUcqqIBuds.mft (raw, json) Hash identifier: 1rG/QVHAqnZznoUyBiXtE8+a8P6QHjsW+LisTssoheo= Subject key identifier: D0:34:8A:47:8D:90:D2:78:2F:D2:9F:C6:01:4E:17:C3:3C:B3:3F:85 Authority key identifier: 0F:46:BD:BC:74:90:4E:5D:F8:29:F0:15:95:B5:1C:AA:A2:01:B9:DB Certificate issuer: /CN=A91449E2/serialNumber=0F46BDBC74904E5DF829F01595B51CAAA201B9DB Certificate serial: 0179 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D0a9vHSQTl34KfAVlbUcqqIBuds.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91449E2/B6443384EFFF11ED8556EE54C4F9AE02/D0a9vHSQTl34KfAVlbUcqqIBuds.mft Manifest number: 0177 Signing time: Sun 11 May 2025 02:40:11 +0000 Manifest this update: Sun 11 May 2025 02:40:10 +0000 Manifest next update: Sun 18 May 2025 02:40:10 +0000 Files and hashes: 1: D0a9vHSQTl34KfAVlbUcqqIBuds.crl (hash: Dzv1oBzSJTJzaBSiCfe689bSofP6DtMmltA4/iYrAig=) 2: 568D8AACF00511ED9239BC6EC4F9AE02.roa (hash: kkDE8d3mWSYNpu+aK9mDwlnVUB+hzBT68zCQ1fhGRvc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91449E2/B6443384EFFF11ED8556EE54C4F9AE02/D0a9vHSQTl34KfAVlbUcqqIBuds.crl rsync://rpki.apnic.net/member_repository/A91449E2/B6443384EFFF11ED8556EE54C4F9AE02/D0a9vHSQTl34KfAVlbUcqqIBuds.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D0a9vHSQTl34KfAVlbUcqqIBuds.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 18 May 2025 02:40:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 377 (0x179) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91449E2, serialNumber=0F46BDBC74904E5DF829F01595B51CAAA201B9DB Validity Not Before: May 11 02:40:10 2025 GMT Not After : May 18 02:40:10 2025 GMT Subject: CN=68200e0b-d109 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:b2:d7:47:ca:c1:ec:27:85:ed:f1:40:98:c7: 44:fd:17:42:ec:20:11:c3:e9:c5:c4:c5:e2:4b:89: 7c:83:2e:fe:bd:f5:70:6a:62:98:b1:7c:5b:58:24: 64:01:91:51:f4:bf:ff:aa:b4:98:c1:ec:b9:ba:e7: 6a:13:8b:7b:21:a6:39:14:27:c4:2c:fe:7b:46:13: 93:c2:42:68:78:16:36:af:1a:ba:e5:5e:c4:06:42: 1a:20:8f:f2:cc:29:7b:2b:4f:9e:3b:15:5b:f7:b6: a7:4c:ad:ed:f1:7f:1d:c0:b4:15:06:0f:8a:36:9e: d7:dd:77:af:74:de:5f:c2:3d:74:1c:31:90:9a:76: 89:74:35:e4:ce:ae:8a:4a:a1:b8:64:e5:87:5c:3b: 2f:71:e4:9a:96:2d:9b:77:a5:36:a1:e5:7b:36:ab: 71:38:15:30:1e:d0:10:0f:84:4a:99:45:94:6e:69: 59:06:d0:7f:5d:06:07:1b:c0:b3:26:a5:7e:49:1a: 53:f6:73:c7:7c:36:3d:cf:05:c9:6d:40:cf:e1:be: f8:40:6f:05:4c:44:7b:86:97:df:e3:7f:10:a6:7d: ab:e0:a3:8d:33:5f:20:9a:d9:f9:e4:ba:10:9d:a2: 54:a3:7d:b9:aa:82:85:67:c5:f8:fa:1d:32:81:75: 33:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D0:34:8A:47:8D:90:D2:78:2F:D2:9F:C6:01:4E:17:C3:3C:B3:3F:85 X509v3 Authority Key Identifier: keyid:0F:46:BD:BC:74:90:4E:5D:F8:29:F0:15:95:B5:1C:AA:A2:01:B9:DB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91449E2/B6443384EFFF11ED8556EE54C4F9AE02/D0a9vHSQTl34KfAVlbUcqqIBuds.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D0a9vHSQTl34KfAVlbUcqqIBuds.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91449E2/B6443384EFFF11ED8556EE54C4F9AE02/D0a9vHSQTl34KfAVlbUcqqIBuds.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 31:af:0a:f6:aa:9e:e5:f1:90:1f:88:c1:5a:fa:8c:be:15:3b: fd:10:44:77:8f:5d:37:d6:eb:90:ba:cd:44:d8:2c:21:cb:85: 50:0c:88:86:b1:cb:fa:80:a5:84:ac:51:f4:c7:57:45:b3:0e: 02:ff:6e:df:18:d9:30:8f:3f:f7:94:40:b1:41:0a:d8:1e:16: 25:fa:6b:f7:4a:15:83:52:0f:da:1e:22:6e:eb:36:f0:eb:83: bf:3b:b5:a7:74:1c:03:42:44:7b:4a:38:cd:60:a8:63:46:3f: c3:8a:e4:68:19:82:88:17:56:c7:fe:38:c8:de:97:1f:db:7c: 53:60:a2:36:32:51:1b:8e:83:2d:0a:13:42:31:d0:4c:7c:b8: f9:23:af:60:96:86:e9:e0:e2:9e:59:3d:e2:cf:c8:97:ee:83: 2a:d4:5e:5b:8a:82:52:d9:9c:1a:ea:5a:55:52:76:c0:fa:f1: 25:a9:ae:77:2e:00:84:a5:8a:6c:ce:63:f7:5c:18:31:e7:cb: 8d:70:ec:7c:f8:be:bc:c1:85:e6:dd:eb:9f:5f:7d:f2:14:b3: 95:ea:f7:6e:dd:49:e7:cf:a6:bf:17:fb:ff:87:22:ec:5c:05: 45:7a:ed:39:14:74:9d:67:cd:17:55:47:27:df:ad:94:8c:21: 4a:18:fb:57 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAXkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDQ5RTIxMTAvBgNVBAUTKDBGNDZCREJDNzQ5MDRFNURGODI5RjAxNTk1QjUxQ0FB QTIwMUI5REIwHhcNMjUwNTExMDI0MDEwWhcNMjUwNTE4MDI0MDEwWjAYMRYwFAYD VQQDEw02ODIwMGUwYi1kMTA5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAy7LXR8rB7CeF7fFAmMdE/RdC7CARw+nFxMXiS4l8gy7+vfVwamKYsXxbWCRk AZFR9L//qrSYwey5uudqE4t7IaY5FCfELP57RhOTwkJoeBY2rxq65V7EBkIaII/y zCl7K0+eOxVb97anTK3t8X8dwLQVBg+KNp7X3XevdN5fwj10HDGQmnaJdDXkzq6K SqG4ZOWHXDsvceSali2bd6U2oeV7NqtxOBUwHtAQD4RKmUWUbmlZBtB/XQYHG8Cz JqV+SRpT9nPHfDY9zwXJbUDP4b74QG8FTER7hpff438Qpn2r4KONM18gmtn55LoQ naJUo325qoKFZ8X4+h0ygXUzgQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNA0ikeN kNJ4L9KfxgFOF8M8sz+FMB8GA1UdIwQYMBaAFA9Gvbx0kE5d+CnwFZW1HKqiAbnb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NDlFMi9CNjQ0MzM4NEVG RkYxMUVEODU1NkVFNTRDNEY5QUUwMi9EMGE5dkhTUVRsMzRLZkFWbGJVY3FxSUJ1 ZHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0QwYTl2SFNRVGwzNEtmQVZsYlVjcXFJQnVkcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 NDlFMi9CNjQ0MzM4NEVGRkYxMUVEODU1NkVFNTRDNEY5QUUwMi9EMGE5dkhTUVRs MzRLZkFWbGJVY3FxSUJ1ZHMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAxrwr2qp7l8ZAfiMFa+oy+FTv9EER3j1031uuQus1E2Cwhy4VQDIiG scv6gKWErFH0x1dFsw4C/27fGNkwjz/3lECxQQrYHhYl+mv3ShWDUg/aHiJu6zbw 64O/O7WndBwDQkR7SjjNYKhjRj/DiuRoGYKIF1bH/jjI3pcf23xTYKI2MlEbjoMt ChNCMdBMfLj5I69globp4OKeWT3iz8iX7oMq1F5bioJS2Zwa6lpVUnbA+vElqa53 LgCEpYpszmP3XBgx58uNcOx8+L68wYXm3eufX33yFLOV6vdu3Unnz6a/F/v/hyLs XAVFeu05FHSdZ80XVUcn362UjCFKGPtX -----END CERTIFICATE-----Generated at Tue May 13 02:28:34 2025 by rpki-client