$ rpki-client -vvf rpki.apnic.net/member_repository/A91688C4/D8947EB830D911EB87E09353C4F9AE02/aJtDtI4RHmnx33nMohHMtCZaJns.mft File: aJtDtI4RHmnx33nMohHMtCZaJns.mft (raw, json) Hash identifier: Meso8Jkof05HeSSmUlBVodOb7FJbFNa8zBlChYmLFOU= Subject key identifier: 45:3F:05:68:23:3F:11:41:35:29:A3:A0:C4:B4:5D:A9:E6:26:02:39 Authority key identifier: 68:9B:43:B4:8E:11:1E:69:F1:DF:79:CC:A2:11:CC:B4:26:5A:26:7B Certificate issuer: /CN=A91688C4/serialNumber=689B43B48E111E69F1DF79CCA211CCB4265A267B Certificate serial: 072F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aJtDtI4RHmnx33nMohHMtCZaJns.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91688C4/D8947EB830D911EB87E09353C4F9AE02/aJtDtI4RHmnx33nMohHMtCZaJns.mft Manifest number: 0729 Signing time: Mon 12 May 2025 21:35:53 +0000 Manifest this update: Mon 12 May 2025 21:35:53 +0000 Manifest next update: Mon 19 May 2025 21:35:53 +0000 Files and hashes: 1: aJtDtI4RHmnx33nMohHMtCZaJns.crl (hash: e9qJ2xl9x8AEShy4rjY6zK3zAIj5uj7SaPRnDpK/TAc=) 2: 56FB3BA630DB11EBB36CAB54C4F9AE02.roa (hash: Tkzl81mL9jCkezlpTqealMA+SaYDCxv0/vXNUScGesg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91688C4/D8947EB830D911EB87E09353C4F9AE02/aJtDtI4RHmnx33nMohHMtCZaJns.crl rsync://rpki.apnic.net/member_repository/A91688C4/D8947EB830D911EB87E09353C4F9AE02/aJtDtI4RHmnx33nMohHMtCZaJns.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aJtDtI4RHmnx33nMohHMtCZaJns.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 19 May 2025 21:35:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1839 (0x72f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91688C4, serialNumber=689B43B48E111E69F1DF79CCA211CCB4265A267B Validity Not Before: May 12 21:35:53 2025 GMT Not After : May 19 21:35:53 2025 GMT Subject: CN=682269b9-bcf2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:ee:59:d1:5c:f7:d9:e4:29:1e:78:61:cd:06: 5c:0d:d7:69:eb:76:86:97:ba:e0:e4:7a:5f:28:de: 63:e1:24:a6:f1:b5:7a:51:2e:2b:a7:82:dc:4c:d7: 5f:5e:6a:29:e1:82:52:d3:29:07:cd:20:ad:b4:04: 4f:db:f4:4a:23:34:e9:fd:db:04:09:48:bd:5c:eb: 52:56:ed:22:08:ac:46:cc:0d:a0:66:c7:3b:d9:4c: 59:2e:e4:a2:75:49:65:d4:0f:55:c1:39:45:b4:10: d9:a8:9f:16:0f:42:08:d7:a5:8d:90:50:84:14:ca: 96:9f:dc:e6:eb:e8:47:08:ab:cd:c7:aa:dc:40:48: 65:0a:df:8a:b2:23:56:d4:5e:07:eb:de:f8:7f:44: c4:71:71:a9:dd:a7:17:02:92:6a:53:87:00:09:f3: 51:38:1e:e1:2c:b8:ec:03:c7:a0:39:da:b7:dc:78: 54:8e:07:31:30:93:81:2d:26:55:52:b7:f0:74:ed: 85:91:7d:51:65:74:65:74:df:84:af:a5:44:6c:71: f3:0a:3c:f3:40:93:2f:3a:c9:18:88:66:c4:ec:45: 8d:76:09:6c:5c:9a:d5:49:dd:c7:21:19:bb:e6:a0: dc:1a:3c:b7:ee:5e:4a:1e:e3:3f:68:b8:3c:09:c4: 49:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 45:3F:05:68:23:3F:11:41:35:29:A3:A0:C4:B4:5D:A9:E6:26:02:39 X509v3 Authority Key Identifier: keyid:68:9B:43:B4:8E:11:1E:69:F1:DF:79:CC:A2:11:CC:B4:26:5A:26:7B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91688C4/D8947EB830D911EB87E09353C4F9AE02/aJtDtI4RHmnx33nMohHMtCZaJns.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aJtDtI4RHmnx33nMohHMtCZaJns.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91688C4/D8947EB830D911EB87E09353C4F9AE02/aJtDtI4RHmnx33nMohHMtCZaJns.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3e:65:58:e9:0d:bf:fc:92:9e:14:6d:0b:5e:46:5e:2c:3a:68: fd:40:eb:3d:01:e6:be:ba:c0:00:33:49:19:e2:33:72:6b:ef: 06:a1:1c:87:79:4a:9b:72:9f:62:c3:93:16:9b:e9:b2:50:c1: 1e:d1:68:80:91:90:19:15:62:87:15:5e:2b:c5:32:10:93:e0: 35:3e:10:8b:77:98:f9:f6:69:9b:d3:83:f6:0e:18:49:6e:9a: a8:c7:7b:74:b6:8e:8d:38:68:9f:85:69:3c:d1:e6:4d:ae:55: 9f:30:f3:db:5d:c4:27:19:6c:99:5a:e5:52:07:06:8d:86:b0: 66:48:e2:84:99:81:56:f3:30:df:54:fc:b5:52:14:5d:2e:72: 25:b3:05:0d:20:1d:58:a0:3b:c5:ba:0c:1e:e7:cc:01:20:2c: 0e:bd:52:1b:56:c3:7d:e8:3e:89:6d:4c:bd:d5:9b:85:1b:36: 64:db:08:fb:29:b1:75:f9:40:ce:03:d9:ba:55:9f:78:85:a5: 9f:10:13:da:ac:fe:2d:49:a1:a9:c2:fe:8e:83:85:b7:f4:29: 24:16:b2:47:35:2c:e5:41:80:26:51:85:0f:f7:21:0c:b9:75: dd:fd:1e:01:ca:78:dc:56:82:c4:02:e1:2e:a9:37:d5:e2:a1: 9e:59:60:61 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBy8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Njg4QzQxMTAvBgNVBAUTKDY4OUI0M0I0OEUxMTFFNjlGMURGNzlDQ0EyMTFDQ0I0 MjY1QTI2N0IwHhcNMjUwNTEyMjEzNTUzWhcNMjUwNTE5MjEzNTUzWjAYMRYwFAYD VQQDEw02ODIyNjliOS1iY2YyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx+5Z0Vz32eQpHnhhzQZcDddp63aGl7rg5HpfKN5j4SSm8bV6US4rp4LcTNdf Xmop4YJS0ykHzSCttARP2/RKIzTp/dsECUi9XOtSVu0iCKxGzA2gZsc72UxZLuSi dUll1A9VwTlFtBDZqJ8WD0II16WNkFCEFMqWn9zm6+hHCKvNx6rcQEhlCt+KsiNW 1F4H6974f0TEcXGp3acXApJqU4cACfNROB7hLLjsA8egOdq33HhUjgcxMJOBLSZV UrfwdO2FkX1RZXRldN+Er6VEbHHzCjzzQJMvOskYiGbE7EWNdglsXJrVSd3HIRm7 5qDcGjy37l5KHuM/aLg8CcRJRwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEU/BWgj PxFBNSmjoMS0XanmJgI5MB8GA1UdIwQYMBaAFGibQ7SOER5p8d95zKIRzLQmWiZ7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2ODhDNC9EODk0N0VCODMw RDkxMUVCODdFMDkzNTNDNEY5QUUwMi9hSnREdEk0UkhtbngzM25Nb2hITXRDWmFK bnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FKdER0STRSSG1ueDMzbk1vaEhNdENaYUpucy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 ODhDNC9EODk0N0VCODMwRDkxMUVCODdFMDkzNTNDNEY5QUUwMi9hSnREdEk0Ukht bngzM25Nb2hITXRDWmFKbnMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA+ZVjpDb/8kp4UbQteRl4sOmj9QOs9Aea+usAAM0kZ4jNya+8GoRyH eUqbcp9iw5MWm+myUMEe0WiAkZAZFWKHFV4rxTIQk+A1PhCLd5j59mmb04P2DhhJ bpqox3t0to6NOGifhWk80eZNrlWfMPPbXcQnGWyZWuVSBwaNhrBmSOKEmYFW8zDf VPy1UhRdLnIlswUNIB1YoDvFugwe58wBICwOvVIbVsN96D6JbUy91ZuFGzZk2wj7 KbF1+UDOA9m6VZ94haWfEBParP4tSaGpwv6Og4W39CkkFrJHNSzlQYAmUYUP9yEM uXXd/R4BynjcVoLEAuEuqTfV4qGeWWBh -----END CERTIFICATE-----Generated at Wed May 14 14:00:57 2025 by rpki-client