$ rpki-client -vvf rpki.apnic.net/member_repository/A91734C9/6736024A225D11EABACFC960C4F9AE02/40gJvFtFT8eZSH_u2tcCEkAkYjo.mft File: 40gJvFtFT8eZSH_u2tcCEkAkYjo.mft (raw, json) Hash identifier: 7kPB6jbokn2jYFun3g/go5p71lzR8gmlQL8CrQRttYs= Subject key identifier: 5E:E2:38:5B:46:DD:4E:BB:00:A7:AF:F2:16:4F:CE:97:AB:C1:C0:8B Authority key identifier: E3:48:09:BC:5B:45:4F:C7:99:48:7F:EE:DA:D7:02:12:40:24:62:3A Certificate issuer: /CN=A91734C9/serialNumber=E34809BC5B454FC799487FEEDAD702124024623A Certificate serial: 0BB6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/40gJvFtFT8eZSH_u2tcCEkAkYjo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91734C9/6736024A225D11EABACFC960C4F9AE02/40gJvFtFT8eZSH_u2tcCEkAkYjo.mft Manifest number: 0BA6 Signing time: Sat 10 May 2025 18:45:47 +0000 Manifest this update: Sat 10 May 2025 18:45:47 +0000 Manifest next update: Sat 17 May 2025 18:45:47 +0000 Files and hashes: 1: 40gJvFtFT8eZSH_u2tcCEkAkYjo.crl (hash: jceGHNNyhtDFn+Hs1Y5fV2tVXN8/zMgtQ51iTFc+mng=) 2: 783907BC225E11EA8BD18A62C4F9AE02.roa (hash: Myi9k4IrBdVLRWD9OtQqLIwtmIphhX+YDXYJBcNy/bw=) 3: 78CFD3CC225E11EA8BD18A62C4F9AE02.roa (hash: MyUFtJY4lLof0Zwtdhx7AIg2aYopA1OEBl/K6VizYaU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91734C9/6736024A225D11EABACFC960C4F9AE02/40gJvFtFT8eZSH_u2tcCEkAkYjo.crl rsync://rpki.apnic.net/member_repository/A91734C9/6736024A225D11EABACFC960C4F9AE02/40gJvFtFT8eZSH_u2tcCEkAkYjo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/40gJvFtFT8eZSH_u2tcCEkAkYjo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 17 May 2025 18:45:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2998 (0xbb6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91734C9, serialNumber=E34809BC5B454FC799487FEEDAD702124024623A Validity Not Before: May 10 18:45:47 2025 GMT Not After : May 17 18:45:47 2025 GMT Subject: CN=681f9edb-3faf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:eb:09:ca:70:8c:11:0b:c5:13:8f:67:7a:e3:99: e5:99:af:1a:91:f8:0b:4d:bf:e8:ce:f9:fb:9d:84: 3a:63:4b:f5:2d:5b:eb:ab:98:cc:33:78:b6:79:14: 9e:a3:fc:ce:9e:3f:0a:c9:ec:e0:aa:4c:d4:75:cf: f1:50:e0:ec:a4:72:d0:3f:d5:6e:6b:bc:e3:9c:a1: 00:7a:7e:30:57:e6:9b:88:b7:57:cb:4c:c1:c7:cb: 4e:ed:6b:52:3c:af:4f:76:5e:a1:66:5c:01:15:88: ea:97:16:98:93:25:ba:40:f3:e9:d3:24:da:44:72: 89:e8:f3:cb:52:1e:e2:60:31:de:d4:80:d4:32:96: d3:01:0e:a9:12:1e:d5:94:c2:d2:0c:94:62:c2:60: 2c:a3:3c:70:74:20:70:79:5e:a7:28:00:83:e5:37: 7f:43:04:1f:a3:fa:90:ad:56:5b:5c:cc:e0:a7:70: 80:ce:0b:9f:f1:e9:96:91:41:07:95:d2:0d:ed:69: 45:66:c2:54:be:68:a6:73:66:3a:ee:70:15:05:6d: 04:e1:dd:e7:24:88:b7:bf:40:e2:33:ba:5f:5c:ee: d1:03:be:d1:f0:9d:81:b1:28:d7:40:b9:2f:a3:b1: 20:2e:bb:44:1a:d6:04:71:74:a1:be:1c:23:4b:1c: ac:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5E:E2:38:5B:46:DD:4E:BB:00:A7:AF:F2:16:4F:CE:97:AB:C1:C0:8B X509v3 Authority Key Identifier: keyid:E3:48:09:BC:5B:45:4F:C7:99:48:7F:EE:DA:D7:02:12:40:24:62:3A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91734C9/6736024A225D11EABACFC960C4F9AE02/40gJvFtFT8eZSH_u2tcCEkAkYjo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/40gJvFtFT8eZSH_u2tcCEkAkYjo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91734C9/6736024A225D11EABACFC960C4F9AE02/40gJvFtFT8eZSH_u2tcCEkAkYjo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7d:30:8b:3f:08:f3:07:58:f0:56:51:78:c6:34:96:ca:58:d2: fa:82:05:e0:54:d6:11:14:81:a8:4c:a9:ba:61:1b:ad:9f:4e: 01:f7:bb:eb:42:01:01:b1:8b:9d:f0:9b:77:ee:7b:50:9f:ad: 99:89:60:55:0f:ea:fc:66:89:65:7a:fe:ae:48:5a:b7:50:5f: 5b:fe:ee:dc:35:12:99:c5:a7:05:da:ad:8f:f9:81:4a:db:39: 9b:14:88:d9:01:f9:1b:f3:18:12:9a:b0:09:48:a2:51:a6:94: aa:41:5c:c8:d1:04:e8:c9:a2:f4:85:cc:18:c6:cd:1e:c9:23: 61:d6:ee:41:30:36:18:72:7c:ae:81:53:38:86:53:ab:8d:70: d3:92:b1:ec:3a:8b:11:20:fb:35:1e:d2:94:dd:66:0b:75:8a: b2:c6:01:6f:c8:b4:eb:67:8c:71:b6:7f:b9:c0:2b:44:38:b3: f5:fd:bd:7c:92:5c:21:4b:78:c3:b0:f3:cb:cf:c6:f3:77:4f: ba:48:25:5d:2a:ef:7c:2e:f7:fb:f1:44:0d:28:10:9f:69:10: b9:47:ae:11:ec:ec:a7:cf:b1:61:2c:93:fb:45:7b:c6:17:9b: d5:b9:fa:e9:d3:92:d9:ba:41:67:75:37:0a:b8:8c:87:cb:e1: 53:b4:d5:f5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC7YwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzM0QzkxMTAvBgNVBAUTKEUzNDgwOUJDNUI0NTRGQzc5OTQ4N0ZFRURBRDcwMjEy NDAyNDYyM0EwHhcNMjUwNTEwMTg0NTQ3WhcNMjUwNTE3MTg0NTQ3WjAYMRYwFAYD VQQDEw02ODFmOWVkYi0zZmFmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6wnKcIwRC8UTj2d645nlma8akfgLTb/ozvn7nYQ6Y0v1LVvrq5jMM3i2eRSe o/zOnj8KyezgqkzUdc/xUODspHLQP9Vua7zjnKEAen4wV+abiLdXy0zBx8tO7WtS PK9Pdl6hZlwBFYjqlxaYkyW6QPPp0yTaRHKJ6PPLUh7iYDHe1IDUMpbTAQ6pEh7V lMLSDJRiwmAsozxwdCBweV6nKACD5Td/QwQfo/qQrVZbXMzgp3CAzguf8emWkUEH ldIN7WlFZsJUvmimc2Y67nAVBW0E4d3nJIi3v0DiM7pfXO7RA77R8J2BsSjXQLkv o7EgLrtEGtYEcXShvhwjSxysCQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFF7iOFtG 3U67AKev8hZPzperwcCLMB8GA1UdIwQYMBaAFONICbxbRU/HmUh/7trXAhJAJGI6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MzRDOS82NzM2MDI0QTIy NUQxMUVBQkFDRkM5NjBDNEY5QUUwMi80MGdKdkZ0RlQ4ZVpTSF91MnRjQ0VrQWtZ am8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzQwZ0p2RnRGVDhlWlNIX3UydGNDRWtBa1lqby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MzRDOS82NzM2MDI0QTIyNUQxMUVBQkFDRkM5NjBDNEY5QUUwMi80MGdKdkZ0RlQ4 ZVpTSF91MnRjQ0VrQWtZam8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB9MIs/CPMHWPBWUXjGNJbKWNL6ggXgVNYRFIGoTKm6YRutn04B97vr QgEBsYud8Jt37ntQn62ZiWBVD+r8Zollev6uSFq3UF9b/u7cNRKZxacF2q2P+YFK 2zmbFIjZAfkb8xgSmrAJSKJRppSqQVzI0QToyaL0hcwYxs0eySNh1u5BMDYYcnyu gVM4hlOrjXDTkrHsOosRIPs1HtKU3WYLdYqyxgFvyLTrZ4xxtn+5wCtEOLP1/b18 klwhS3jDsPPLz8bzd0+6SCVdKu98Lvf78UQNKBCfaRC5R64R7Oynz7FhLJP7RXvG F5vVufrp05LZukFndTcKuIyHy+FTtNX1 -----END CERTIFICATE-----Generated at Sun May 11 19:45:37 2025 by rpki-client