$ rpki-client -vvf rpki.apnic.net/member_repository/A9157DA9/423E1AD45A1811EFBD477338C4F9AE02/71OR8qIt1l9IQxoyJt3MZbdllqk.mft File: 71OR8qIt1l9IQxoyJt3MZbdllqk.mft (raw, json) Hash identifier: ZSAgUuVVUICiauC3AFlYkrLBpas0Etk2rFNHAurzJHA= Subject key identifier: 66:B7:6C:3A:F7:A8:5F:C1:0D:06:F7:86:63:38:B8:7B:ED:58:D7:34 Authority key identifier: EF:53:91:F2:A2:2D:D6:5F:48:43:1A:32:26:DD:CC:65:B7:65:96:A9 Certificate issuer: /CN=A9157DA9/serialNumber=EF5391F2A22DD65F48431A3226DDCC65B76596A9 Certificate serial: 93 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/71OR8qIt1l9IQxoyJt3MZbdllqk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9157DA9/423E1AD45A1811EFBD477338C4F9AE02/71OR8qIt1l9IQxoyJt3MZbdllqk.mft Manifest number: 91 Signing time: Sat 17 May 2025 05:54:36 +0000 Manifest this update: Sat 17 May 2025 05:54:35 +0000 Manifest next update: Sat 24 May 2025 05:54:35 +0000 Files and hashes: 1: 71OR8qIt1l9IQxoyJt3MZbdllqk.crl (hash: L9BW+IDNmjms+XMxqxC1NrbPU5sZOR+xc+sYQUWcGp4=) 2: 897F96FC5A1811EFAF24E138C4F9AE02.roa (hash: V/66FKVQueBWCxe2q60voG68SskFvIkojTU44XWkp4w=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9157DA9/423E1AD45A1811EFBD477338C4F9AE02/71OR8qIt1l9IQxoyJt3MZbdllqk.crl rsync://rpki.apnic.net/member_repository/A9157DA9/423E1AD45A1811EFBD477338C4F9AE02/71OR8qIt1l9IQxoyJt3MZbdllqk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/71OR8qIt1l9IQxoyJt3MZbdllqk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 24 May 2025 05:54:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 147 (0x93) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9157DA9, serialNumber=EF5391F2A22DD65F48431A3226DDCC65B76596A9 Validity Not Before: May 17 05:54:35 2025 GMT Not After : May 24 05:54:35 2025 GMT Subject: CN=6828249b-d97a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:05:74:49:3f:9b:d9:88:e1:c7:1c:f2:10:a5: c6:92:42:bb:68:66:a4:cb:27:5e:95:b2:89:a0:b5: aa:57:61:80:f7:f2:a5:23:ab:6e:4f:d2:bf:45:e7: 65:2c:83:3b:cc:4e:30:55:48:5d:b9:df:91:62:fb: 8f:a2:23:4a:93:9d:df:67:07:af:02:da:eb:77:13: b5:7b:9d:dc:7e:b6:c5:56:7b:01:dc:ab:f5:b6:b4: 57:45:25:1c:2b:86:c4:da:a9:7a:95:53:db:a5:29: 30:a2:57:b6:50:cc:2c:87:9d:c5:da:c0:f4:87:6a: 34:f0:e0:95:1a:3c:a2:c7:f5:ab:77:94:d7:4d:52: b5:47:4b:0a:ef:f2:45:32:0e:ba:86:10:b3:32:00: 67:e9:5b:a8:fb:87:fd:70:29:b3:8d:64:d7:7e:b9: 23:22:9a:27:f8:9a:90:6c:de:69:2a:f7:47:6b:0e: ff:ba:d7:48:62:a5:a9:c5:18:23:61:96:e6:fb:4e: 51:d9:2c:e8:0a:36:88:52:b3:13:c8:68:7a:1b:7f: fd:86:37:bf:4a:66:2a:84:15:59:a8:2e:a6:26:84: 50:a7:90:2a:83:50:3e:94:9a:13:8d:b3:7a:e7:98: f2:da:59:74:7c:1b:80:ac:47:79:20:7a:ad:18:3d: 54:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 66:B7:6C:3A:F7:A8:5F:C1:0D:06:F7:86:63:38:B8:7B:ED:58:D7:34 X509v3 Authority Key Identifier: keyid:EF:53:91:F2:A2:2D:D6:5F:48:43:1A:32:26:DD:CC:65:B7:65:96:A9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9157DA9/423E1AD45A1811EFBD477338C4F9AE02/71OR8qIt1l9IQxoyJt3MZbdllqk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/71OR8qIt1l9IQxoyJt3MZbdllqk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9157DA9/423E1AD45A1811EFBD477338C4F9AE02/71OR8qIt1l9IQxoyJt3MZbdllqk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 92:dd:ca:08:16:d3:9f:7b:8b:70:c2:f1:75:52:40:53:0a:96: a5:8b:30:00:15:8d:31:19:52:9a:87:1e:b3:0e:67:12:be:92: c1:ab:13:cd:d5:1f:aa:d9:02:48:1a:30:f2:2e:bb:f8:e7:9a: 37:66:d0:9f:6a:dc:d2:69:79:c3:83:d0:1c:1e:2f:5b:c1:e1: 4d:31:64:2a:66:9a:f1:7d:b8:0e:22:7c:ef:c6:db:7a:21:7e: f5:51:95:6d:67:16:1e:de:e1:e6:d4:72:c5:18:b3:89:2e:46: fe:ac:86:7d:57:84:51:e5:e3:29:d8:9c:0b:b0:81:79:18:6e: f9:17:14:a0:ea:65:b8:93:a8:1e:ec:18:8b:35:15:bf:86:42: 4a:4b:96:57:32:4a:27:e9:df:f4:bb:3c:33:d7:75:d0:fb:2c: c0:05:15:59:1b:84:80:60:02:8c:ad:06:ee:ce:bb:bc:83:81: 16:b1:97:9a:72:fc:2a:cb:47:61:a5:20:70:ee:09:46:1d:86: 97:92:82:ce:4a:c1:1c:d7:6f:e0:0f:87:2d:cb:b9:2c:95:12: e8:2d:96:bc:e1:1d:e0:e8:04:30:91:b4:09:08:f3:86:22:cf: 8d:03:bf:a0:cf:d4:f1:fa:49:fb:91:57:54:4f:68:43:e2:ea: 26:e6:3b:1d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAJMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTdEQTkxMTAvBgNVBAUTKEVGNTM5MUYyQTIyREQ2NUY0ODQzMUEzMjI2RERDQzY1 Qjc2NTk2QTkwHhcNMjUwNTE3MDU1NDM1WhcNMjUwNTI0MDU1NDM1WjAYMRYwFAYD VQQDEw02ODI4MjQ5Yi1kOTdhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArgV0ST+b2YjhxxzyEKXGkkK7aGakyydelbKJoLWqV2GA9/KlI6tuT9K/Redl LIM7zE4wVUhdud+RYvuPoiNKk53fZwevAtrrdxO1e53cfrbFVnsB3Kv1trRXRSUc K4bE2ql6lVPbpSkwole2UMwsh53F2sD0h2o08OCVGjyix/Wrd5TXTVK1R0sK7/JF Mg66hhCzMgBn6Vuo+4f9cCmzjWTXfrkjIpon+JqQbN5pKvdHaw7/utdIYqWpxRgj YZbm+05R2SzoCjaIUrMTyGh6G3/9hje/SmYqhBVZqC6mJoRQp5Aqg1A+lJoTjbN6 55jy2ll0fBuArEd5IHqtGD1UBQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGa3bDr3 qF/BDQb3hmM4uHvtWNc0MB8GA1UdIwQYMBaAFO9TkfKiLdZfSEMaMibdzGW3ZZap MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1N0RBOS80MjNFMUFENDVB MTgxMUVGQkQ0NzczMzhDNEY5QUUwMi83MU9SOHFJdDFsOUlReG95SnQzTVpiZGxs cWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzcxT1I4cUl0MWw5SVF4b3lKdDNNWmJkbGxxay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 N0RBOS80MjNFMUFENDVBMTgxMUVGQkQ0NzczMzhDNEY5QUUwMi83MU9SOHFJdDFs OUlReG95SnQzTVpiZGxscWsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCS3coIFtOfe4twwvF1UkBTCpalizAAFY0xGVKahx6zDmcSvpLBqxPN 1R+q2QJIGjDyLrv455o3ZtCfatzSaXnDg9AcHi9bweFNMWQqZprxfbgOInzvxtt6 IX71UZVtZxYe3uHm1HLFGLOJLkb+rIZ9V4RR5eMp2JwLsIF5GG75FxSg6mW4k6ge 7BiLNRW/hkJKS5ZXMkon6d/0uzwz13XQ+yzABRVZG4SAYAKMrQbuzru8g4EWsZea cvwqy0dhpSBw7glGHYaXkoLOSsEc12/gD4cty7kslRLoLZa84R3g6AQwkbQJCPOG Is+NA7+gz9Tx+kn7kVdUT2hD4uom5jsd -----END CERTIFICATE-----Generated at Sat May 17 16:26:16 2025 by rpki-client