$ rpki-client -vvf rpki.apnic.net/member_repository/A91722A3/C02D85DE2B9B11EA972CDF46C4F9AE02/cIW1tFSazbW2wnBMhbp4h2D4iic.mft File: cIW1tFSazbW2wnBMhbp4h2D4iic.mft (raw, json) Hash identifier: trQORGeXWDLf/FEcF0JQOOGgp3SRfhSa2v+30L1bF+w= Subject key identifier: 76:4C:63:C4:82:64:E0:B3:77:63:68:D1:C5:EB:AF:13:9E:F1:15:F6 Authority key identifier: 70:85:B5:B4:54:9A:CD:B5:B6:C2:70:4C:85:BA:78:87:60:F8:8A:27 Certificate issuer: /CN=A91722A3/serialNumber=7085B5B4549ACDB5B6C2704C85BA788760F88A27 Certificate serial: 0B7E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cIW1tFSazbW2wnBMhbp4h2D4iic.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91722A3/C02D85DE2B9B11EA972CDF46C4F9AE02/cIW1tFSazbW2wnBMhbp4h2D4iic.mft Manifest number: 0B76 Signing time: Mon 12 May 2025 18:54:46 +0000 Manifest this update: Mon 12 May 2025 18:54:46 +0000 Manifest next update: Mon 19 May 2025 18:54:46 +0000 Files and hashes: 1: cIW1tFSazbW2wnBMhbp4h2D4iic.crl (hash: t5Q/SFvvVmt73jnzTYT+wfzFVj0nUagski+gvDVGJLo=) 2: 002DDDC22B9D11EA92F3094CC4F9AE02.roa (hash: sV6ALO0axr/VXMBheoOGm2xJXWMWbMsVRF9rlXmaHds=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91722A3/C02D85DE2B9B11EA972CDF46C4F9AE02/cIW1tFSazbW2wnBMhbp4h2D4iic.crl rsync://rpki.apnic.net/member_repository/A91722A3/C02D85DE2B9B11EA972CDF46C4F9AE02/cIW1tFSazbW2wnBMhbp4h2D4iic.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cIW1tFSazbW2wnBMhbp4h2D4iic.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 19 May 2025 18:54:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2942 (0xb7e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91722A3, serialNumber=7085B5B4549ACDB5B6C2704C85BA788760F88A27 Validity Not Before: May 12 18:54:46 2025 GMT Not After : May 19 18:54:46 2025 GMT Subject: CN=682243f6-ee81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:3d:11:0c:77:8f:fc:84:18:84:c4:df:87:b5: d3:f0:30:d1:ed:2d:c4:73:4e:dc:77:40:0f:b7:04: cf:af:f4:3a:54:9e:9b:39:d7:b3:25:31:d9:ec:fb: c5:57:aa:06:42:53:b0:f6:b7:1f:d3:f4:f6:24:0c: b2:69:02:9a:7b:28:43:2c:9d:a9:6a:16:15:8b:b5: eb:63:12:d5:64:77:cd:77:6c:f1:cd:4c:1d:d8:73: 86:2c:bb:af:bc:a3:c0:a0:36:26:94:8d:c2:31:1a: 94:cc:e8:5e:61:35:d5:02:d9:f4:70:fc:99:e2:07: 20:1d:1b:42:3d:94:44:91:f8:e9:d9:c3:6b:4a:30: fb:29:c6:fb:1f:63:f2:20:7a:49:72:7d:08:ef:5d: 8f:0f:7c:25:a4:1d:a1:cf:13:cc:ee:53:f2:6f:f7: 7b:3c:38:b4:64:3f:9f:d9:b7:fb:b1:63:fa:c2:30: f1:21:4a:9e:d0:49:63:b8:6c:3a:69:9b:1d:3d:42: 16:ad:2d:c2:af:76:75:e4:9d:b6:0f:1f:5d:a6:c0: e0:68:7b:1e:08:81:70:cb:44:27:10:c4:d0:91:35: e8:2b:80:66:73:5f:17:80:5e:1f:4d:00:bd:f0:76: a8:fe:43:3f:75:85:af:ca:6d:b3:d2:0d:15:8b:ff: f9:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 76:4C:63:C4:82:64:E0:B3:77:63:68:D1:C5:EB:AF:13:9E:F1:15:F6 X509v3 Authority Key Identifier: keyid:70:85:B5:B4:54:9A:CD:B5:B6:C2:70:4C:85:BA:78:87:60:F8:8A:27 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91722A3/C02D85DE2B9B11EA972CDF46C4F9AE02/cIW1tFSazbW2wnBMhbp4h2D4iic.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cIW1tFSazbW2wnBMhbp4h2D4iic.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91722A3/C02D85DE2B9B11EA972CDF46C4F9AE02/cIW1tFSazbW2wnBMhbp4h2D4iic.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9f:9b:a3:ce:72:98:be:61:43:6c:3b:5c:0d:5f:ec:88:35:ee: 58:1c:10:e4:d1:f6:02:09:9c:c9:22:c5:06:e4:73:f8:0e:81: 09:a7:2d:41:ae:1a:b4:fa:cf:b0:2a:32:d9:42:43:4f:c0:57: 11:1a:fd:d9:77:95:29:b7:dc:17:72:4a:27:23:60:1a:b6:f0: d2:5e:d8:15:5b:70:82:2a:91:f4:2d:fe:a4:ba:c9:cb:1c:f4: 53:0a:63:2f:27:8c:0b:ad:bc:43:79:26:6e:b1:a0:3f:a5:6b: f8:48:32:5a:7e:b7:fe:76:08:e5:ef:d7:58:86:82:bf:6a:51: c2:f2:e8:0f:a9:5b:c4:d4:6e:a0:52:bb:1a:7d:a7:4c:b4:86: 88:50:ee:11:08:ed:14:82:ba:51:92:16:db:d7:ee:c2:5a:54: 71:1b:80:a7:fa:8e:88:af:72:52:71:d0:40:12:8b:dc:3d:f5: 2b:42:1c:e4:fc:7a:f6:2c:2f:d9:a8:91:b3:e3:b9:dd:9b:5f: 5f:48:08:4e:3e:6f:bc:1a:5a:20:e5:b2:65:75:b4:f7:97:16: d3:78:0c:19:0b:fd:68:65:80:12:56:88:5f:15:30:21:49:93: 15:10:17:cb:16:d7:ef:fa:cd:74:ba:62:43:c1:3e:62:25:cd: e3:1a:b3:7b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC34wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzIyQTMxMTAvBgNVBAUTKDcwODVCNUI0NTQ5QUNEQjVCNkMyNzA0Qzg1QkE3ODg3 NjBGODhBMjcwHhcNMjUwNTEyMTg1NDQ2WhcNMjUwNTE5MTg1NDQ2WjAYMRYwFAYD VQQDEw02ODIyNDNmNi1lZTgxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqz0RDHeP/IQYhMTfh7XT8DDR7S3Ec07cd0APtwTPr/Q6VJ6bOdezJTHZ7PvF V6oGQlOw9rcf0/T2JAyyaQKaeyhDLJ2pahYVi7XrYxLVZHfNd2zxzUwd2HOGLLuv vKPAoDYmlI3CMRqUzOheYTXVAtn0cPyZ4gcgHRtCPZREkfjp2cNrSjD7Kcb7H2Py IHpJcn0I712PD3wlpB2hzxPM7lPyb/d7PDi0ZD+f2bf7sWP6wjDxIUqe0EljuGw6 aZsdPUIWrS3Cr3Z15J22Dx9dpsDgaHseCIFwy0QnEMTQkTXoK4Bmc18XgF4fTQC9 8Hao/kM/dYWvym2z0g0Vi//57QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHZMY8SC ZOCzd2No0cXrrxOe8RX2MB8GA1UdIwQYMBaAFHCFtbRUms21tsJwTIW6eIdg+Ion MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MjJBMy9DMDJEODVERTJC OUIxMUVBOTcyQ0RGNDZDNEY5QUUwMi9jSVcxdEZTYXpiVzJ3bkJNaGJwNGgyRDRp aWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NJVzF0RlNhemJXMnduQk1oYnA0aDJENGlpYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MjJBMy9DMDJEODVERTJCOUIxMUVBOTcyQ0RGNDZDNEY5QUUwMi9jSVcxdEZTYXpi VzJ3bkJNaGJwNGgyRDRpaWMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCfm6POcpi+YUNsO1wNX+yINe5YHBDk0fYCCZzJIsUG5HP4DoEJpy1B rhq0+s+wKjLZQkNPwFcRGv3Zd5Upt9wXckonI2AatvDSXtgVW3CCKpH0Lf6kusnL HPRTCmMvJ4wLrbxDeSZusaA/pWv4SDJafrf+dgjl79dYhoK/alHC8ugPqVvE1G6g UrsafadMtIaIUO4RCO0UgrpRkhbb1+7CWlRxG4Cn+o6Ir3JScdBAEovcPfUrQhzk /Hr2LC/ZqJGz47ndm19fSAhOPm+8Glog5bJldbT3lxbTeAwZC/1oZYASVohfFTAh SZMVEBfLFtfv+s10umJDwT5iJc3jGrN7 -----END CERTIFICATE-----Generated at Tue May 13 09:55:02 2025 by rpki-client