$ rpki-client -vvf rpki.apnic.net/member_repository/A91706E4/32E993C0A68411EF8F5ED37FC4F9AE02/F2vOFchi1HunYKH2ZTj4HVxJO4E.mft File: F2vOFchi1HunYKH2ZTj4HVxJO4E.mft (raw, json) Hash identifier: p6Cp9KoHSnkC4DfPlGBb6117haHQIRjfvXfX+x3WEOA= Subject key identifier: 1B:00:1F:BD:7D:89:77:90:9D:49:A5:6B:5E:AB:B7:AA:C1:36:88:CE Authority key identifier: 17:6B:CE:15:C8:62:D4:7B:A7:60:A1:F6:65:38:F8:1D:5C:49:3B:81 Certificate issuer: /CN=A91706E4/serialNumber=176BCE15C862D47BA760A1F66538F81D5C493B81 Certificate serial: 5A Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/F2vOFchi1HunYKH2ZTj4HVxJO4E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91706E4/32E993C0A68411EF8F5ED37FC4F9AE02/F2vOFchi1HunYKH2ZTj4HVxJO4E.mft Manifest number: 59 Signing time: Fri 09 May 2025 06:10:08 +0000 Manifest this update: Fri 09 May 2025 06:10:08 +0000 Manifest next update: Fri 16 May 2025 06:10:07 +0000 Files and hashes: 1: F2vOFchi1HunYKH2ZTj4HVxJO4E.crl (hash: PUIj9Ws9dCv6xKhv4Fn5ZAuKoBnxCdcKHP+8HskVYEw=) 2: 2CE10886A68511EFB0CF9981C4F9AE02.roa (hash: veK+ihHT7rgGehPtR5m7GK/hbNWI81sjRNiKcGQwWGg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91706E4/32E993C0A68411EF8F5ED37FC4F9AE02/F2vOFchi1HunYKH2ZTj4HVxJO4E.crl rsync://rpki.apnic.net/member_repository/A91706E4/32E993C0A68411EF8F5ED37FC4F9AE02/F2vOFchi1HunYKH2ZTj4HVxJO4E.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/F2vOFchi1HunYKH2ZTj4HVxJO4E.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 16 May 2025 06:10:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 90 (0x5a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91706E4, serialNumber=176BCE15C862D47BA760A1F66538F81D5C493B81 Validity Not Before: May 9 06:10:08 2025 GMT Not After : May 16 06:10:07 2025 GMT Subject: CN=681d9c40-973f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:cd:b8:a9:46:d7:2d:36:4a:6c:b6:a4:04:9e: b9:10:d0:c5:e6:55:87:7d:94:21:c6:00:56:5c:b6: 69:8f:97:87:43:89:b5:6a:2d:f3:37:cb:30:e6:c2: cf:24:cb:e0:9b:1a:ed:d5:73:24:79:c7:1d:72:b9: 77:aa:90:0b:74:fa:99:ab:8c:66:23:be:04:57:6f: f4:32:23:3d:af:44:74:96:f1:c2:b1:3d:13:7d:83: e4:d9:73:71:96:16:07:3e:bb:96:d7:ce:14:04:ab: 6e:29:c0:69:97:74:d0:57:3e:6d:fe:1c:0c:ee:65: 55:82:6f:c3:af:7e:b6:d0:1d:59:8b:88:8f:32:3d: 31:19:fb:93:2e:c4:fb:5f:fa:c7:5d:ab:88:17:b8: e8:61:e9:3d:b5:a6:69:6c:49:ab:b3:7b:6a:bc:89: af:5d:2c:d0:eb:72:bd:77:9e:61:9e:86:58:70:4e: 0e:7d:b4:17:8e:79:f3:7b:05:90:48:17:0b:e0:1f: 38:31:aa:7d:8e:ea:ba:d2:a5:87:d5:3b:b4:e1:b9: 6e:46:4c:2a:f1:85:62:7a:c7:e0:47:33:fd:3e:dc: f7:ba:1b:d8:1c:b3:88:e5:2f:e0:b3:20:2c:7a:ab: 3b:90:10:73:a1:3c:25:15:22:5c:41:c8:88:2b:3a: 2a:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1B:00:1F:BD:7D:89:77:90:9D:49:A5:6B:5E:AB:B7:AA:C1:36:88:CE X509v3 Authority Key Identifier: keyid:17:6B:CE:15:C8:62:D4:7B:A7:60:A1:F6:65:38:F8:1D:5C:49:3B:81 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91706E4/32E993C0A68411EF8F5ED37FC4F9AE02/F2vOFchi1HunYKH2ZTj4HVxJO4E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/F2vOFchi1HunYKH2ZTj4HVxJO4E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91706E4/32E993C0A68411EF8F5ED37FC4F9AE02/F2vOFchi1HunYKH2ZTj4HVxJO4E.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a9:da:d9:db:17:b6:dd:69:24:e7:43:1a:1b:37:ba:84:2b:76: b8:ac:de:b8:2b:52:3e:02:fe:b4:8e:df:2e:06:eb:b6:0b:56: 5f:8a:c2:01:64:a4:06:12:26:c0:51:a7:78:88:6a:03:9a:bf: b1:cb:a9:15:32:a1:5a:76:f2:1e:4a:26:79:b0:57:ea:6d:06: 21:6a:19:52:72:43:73:c8:07:3d:01:9a:c1:d7:1b:b8:e6:a3: e1:5e:c3:c1:a7:2b:21:65:ba:6b:02:c6:7d:79:16:f8:3b:c9: 5f:fa:c4:7e:62:5d:1f:5f:28:61:48:c2:54:be:da:c0:27:34: 24:a3:a4:74:68:f8:cd:0f:02:5a:90:97:ca:ee:46:a2:b8:a1: d1:c6:57:19:8c:03:20:01:8f:87:2e:ea:d3:85:5a:25:f4:06: 9d:60:c6:07:c6:3e:43:16:47:30:fa:35:67:e4:99:b9:32:fb: f3:85:18:f8:ed:06:a8:e1:34:60:6d:a6:bb:c9:73:c1:05:02: 72:c0:52:38:d5:36:5d:22:cf:95:ca:ec:12:ab:6e:79:a0:a2: 0d:54:18:41:10:17:cf:69:1a:02:2b:89:b3:2d:9d:81:a0:bd: 57:bb:1f:10:c7:e6:2b:27:67:e1:f3:cf:9f:42:00:67:f7:8f: a4:b8:c7:61 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBWjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 MDZFNDExMC8GA1UEBRMoMTc2QkNFMTVDODYyRDQ3QkE3NjBBMUY2NjUzOEY4MUQ1 QzQ5M0I4MTAeFw0yNTA1MDkwNjEwMDhaFw0yNTA1MTYwNjEwMDdaMBgxFjAUBgNV BAMTDTY4MWQ5YzQwLTk3M2YwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDdzbipRtctNkpstqQEnrkQ0MXmVYd9lCHGAFZctmmPl4dDibVqLfM3yzDmws8k y+CbGu3VcyR5xx1yuXeqkAt0+pmrjGYjvgRXb/QyIz2vRHSW8cKxPRN9g+TZc3GW Fgc+u5bXzhQEq24pwGmXdNBXPm3+HAzuZVWCb8OvfrbQHVmLiI8yPTEZ+5MuxPtf +sddq4gXuOhh6T21pmlsSauze2q8ia9dLNDrcr13nmGehlhwTg59tBeOefN7BZBI FwvgHzgxqn2O6rrSpYfVO7ThuW5GTCrxhWJ6x+BHM/0+3Pe6G9gcs4jlL+CzICx6 qzuQEHOhPCUVIlxByIgrOiobAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUGwAfvX2J d5CdSaVrXqu3qsE2iM4wHwYDVR0jBBgwFoAUF2vOFchi1HunYKH2ZTj4HVxJO4Ew DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTcwNkU0LzMyRTk5M0MwQTY4 NDExRUY4RjVFRDM3RkM0RjlBRTAyL0Yydk9GY2hpMUh1bllLSDJaVGo0SFZ4Sk80 RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvRjJ2T0ZjaGkxSHVuWUtIMlpUajRIVnhKTzRFLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTcw NkU0LzMyRTk5M0MwQTY4NDExRUY4RjVFRDM3RkM0RjlBRTAyL0Yydk9GY2hpMUh1 bllLSDJaVGo0SFZ4Sk80RS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAKna2dsXtt1pJOdDGhs3uoQrdris3rgrUj4C/rSO3y4G67YLVl+KwgFk pAYSJsBRp3iIagOav7HLqRUyoVp28h5KJnmwV+ptBiFqGVJyQ3PIBz0BmsHXG7jm o+Few8GnKyFlumsCxn15Fvg7yV/6xH5iXR9fKGFIwlS+2sAnNCSjpHRo+M0PAlqQ l8ruRqK4odHGVxmMAyABj4cu6tOFWiX0Bp1gxgfGPkMWRzD6NWfkmbky+/OFGPjt BqjhNGBtprvJc8EFAnLAUjjVNl0iz5XK7BKrbnmgog1UGEEQF89pGgIribMtnYGg vVe7HxDH5isnZ+Hzz59CAGf3j6S4x2E= -----END CERTIFICATE-----Generated at Sun May 11 04:20:37 2025 by rpki-client