$ rpki-client -vvf rpki.apnic.net/member_repository/A91754C0/FEDF572ECCBB11EE8A0F7748C4F9AE02/0PiwBllsfAN8tUkwWzlpAACq6KQ.mft File: 0PiwBllsfAN8tUkwWzlpAACq6KQ.mft (raw, json) Hash identifier: AD8tirkoFyZm95hRmegJQjF+MUM3+NnG1X/v5pl4i7s= Subject key identifier: FF:69:A1:1B:25:17:F4:07:02:C5:C0:D1:3F:4E:84:AD:47:DD:47:97 Authority key identifier: D0:F8:B0:06:59:6C:7C:03:7C:B5:49:30:5B:39:69:00:00:AA:E8:A4 Certificate issuer: /CN=A91754C0/serialNumber=D0F8B006596C7C037CB549305B39690000AAE8A4 Certificate serial: EE Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/0PiwBllsfAN8tUkwWzlpAACq6KQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91754C0/FEDF572ECCBB11EE8A0F7748C4F9AE02/0PiwBllsfAN8tUkwWzlpAACq6KQ.mft Manifest number: EA Signing time: Thu 15 May 2025 04:43:16 +0000 Manifest this update: Thu 15 May 2025 04:43:15 +0000 Manifest next update: Thu 22 May 2025 04:43:15 +0000 Files and hashes: 1: 0PiwBllsfAN8tUkwWzlpAACq6KQ.crl (hash: YfslUC19fHT4r5ZgDHKcXf0etNeXjJLmkJ4JMAwWVGc=) 2: D0CB00D4CCBD11EEAC4BCD4BC4F9AE02.roa (hash: tE5MO0yGqfdQRPhR9mD7EUVj7T64niX8BINnA3y1Amk=) 3: 6BA3FEA4CCBD11EEBADDFC4AC4F9AE02.roa (hash: qBQp3vvSD9elb8dQbwCPuGirBXWWVwR3GT0tS3LqEZA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91754C0/FEDF572ECCBB11EE8A0F7748C4F9AE02/0PiwBllsfAN8tUkwWzlpAACq6KQ.crl rsync://rpki.apnic.net/member_repository/A91754C0/FEDF572ECCBB11EE8A0F7748C4F9AE02/0PiwBllsfAN8tUkwWzlpAACq6KQ.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/0PiwBllsfAN8tUkwWzlpAACq6KQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 22 May 2025 04:43:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 238 (0xee) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91754C0, serialNumber=D0F8B006596C7C037CB549305B39690000AAE8A4 Validity Not Before: May 15 04:43:15 2025 GMT Not After : May 22 04:43:15 2025 GMT Subject: CN=682570e3-5d35 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:7f:2f:86:4a:8b:c5:d0:59:0d:cc:01:dc:11: ff:12:8b:41:5c:32:c9:5d:05:ca:73:0a:fb:38:4a: 24:cd:23:73:e1:d3:ec:a9:2c:e1:fc:05:e2:d3:f4: b2:2a:8b:fd:07:9b:76:d8:d1:a0:56:be:07:4c:6d: f1:94:90:74:23:ba:22:6e:24:b5:b8:aa:c2:5b:07: 32:e5:b8:81:55:bc:05:03:1c:ce:d9:26:6e:6e:e6: 24:70:9e:0a:e8:6a:ee:92:c2:96:b4:e1:51:2c:75: 16:ea:fc:13:d7:92:39:d8:38:ce:c1:8f:32:a6:82: 76:44:6f:5c:09:b1:09:41:fc:af:4f:72:ce:ec:25: ae:e9:a8:00:ca:8b:db:45:cf:34:b6:58:e7:4e:24: 19:98:22:a4:17:01:95:bb:1b:8f:92:36:0a:ea:f0: 9a:7d:60:77:44:df:b0:0f:92:2b:62:90:f4:93:0a: 24:91:cd:c0:7b:f2:e9:fd:50:f6:92:84:cf:69:b3: db:9c:91:22:c4:b4:fb:7d:17:7f:b3:b5:e4:2c:d6: 61:87:91:99:fc:c4:b5:2a:8b:5b:64:bc:9f:20:c8: 6b:45:9d:d6:b8:16:be:84:6c:2d:3b:c6:eb:08:0a: 70:7d:e5:27:0e:4a:1e:a5:33:a4:75:3e:5a:32:e6: 9e:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FF:69:A1:1B:25:17:F4:07:02:C5:C0:D1:3F:4E:84:AD:47:DD:47:97 X509v3 Authority Key Identifier: keyid:D0:F8:B0:06:59:6C:7C:03:7C:B5:49:30:5B:39:69:00:00:AA:E8:A4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91754C0/FEDF572ECCBB11EE8A0F7748C4F9AE02/0PiwBllsfAN8tUkwWzlpAACq6KQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/0PiwBllsfAN8tUkwWzlpAACq6KQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91754C0/FEDF572ECCBB11EE8A0F7748C4F9AE02/0PiwBllsfAN8tUkwWzlpAACq6KQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2b:a0:a6:4d:69:13:12:0c:09:8d:96:ad:a5:f5:98:ee:94:48: b3:c5:e0:c0:80:dc:b8:ae:63:4b:4a:2f:bb:99:cc:8b:db:9b: 45:65:66:b3:ca:4d:a9:7d:02:65:f1:82:08:8c:b7:20:67:e1: 91:d0:7a:96:47:60:26:71:e7:2b:eb:98:a0:1d:7e:a1:a9:e6: 2d:44:ea:bb:a3:fb:25:7f:be:27:46:5a:d6:1e:83:30:39:b1: a6:43:14:e1:a9:c4:ab:b4:4e:21:2f:45:aa:25:16:61:b5:87: 9b:f2:81:7f:57:df:af:cc:b1:a9:10:78:b9:53:28:1a:84:d2: 85:5c:5f:51:4d:34:81:55:f1:6a:77:f7:2b:f4:79:6c:7d:ee: 4b:e7:67:f3:53:b0:06:41:45:69:10:e6:12:39:c1:bc:f9:34: 7c:26:11:90:14:b7:8f:f1:a2:b2:61:04:dc:bb:d5:1e:51:04: a5:d7:7b:1b:f5:fa:c6:7a:eb:97:9d:0c:63:35:53:92:38:84: 77:50:ef:25:2b:52:27:e6:49:f1:40:e2:2e:b5:f4:8b:b0:d6: ce:0c:85:b3:b9:8c:3f:d6:fa:8f:b1:95:1e:c7:93:78:09:0a: 3e:99:f0:69:91:6a:c0:d2:e0:80:29:1f:70:69:30:a6:49:94: 8f:85:5a:75 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAO4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzU0QzAxMTAvBgNVBAUTKEQwRjhCMDA2NTk2QzdDMDM3Q0I1NDkzMDVCMzk2OTAw MDBBQUU4QTQwHhcNMjUwNTE1MDQ0MzE1WhcNMjUwNTIyMDQ0MzE1WjAYMRYwFAYD VQQDEw02ODI1NzBlMy01ZDM1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAq38vhkqLxdBZDcwB3BH/EotBXDLJXQXKcwr7OEokzSNz4dPsqSzh/AXi0/Sy Kov9B5t22NGgVr4HTG3xlJB0I7oibiS1uKrCWwcy5biBVbwFAxzO2SZubuYkcJ4K 6GruksKWtOFRLHUW6vwT15I52DjOwY8ypoJ2RG9cCbEJQfyvT3LO7CWu6agAyovb Rc80tljnTiQZmCKkFwGVuxuPkjYK6vCafWB3RN+wD5IrYpD0kwokkc3Ae/Lp/VD2 koTPabPbnJEixLT7fRd/s7XkLNZhh5GZ/MS1KotbZLyfIMhrRZ3WuBa+hGwtO8br CApwfeUnDkoepTOkdT5aMuaePQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFP9poRsl F/QHAsXA0T9OhK1H3UeXMB8GA1UdIwQYMBaAFND4sAZZbHwDfLVJMFs5aQAAquik MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NTRDMC9GRURGNTcyRUND QkIxMUVFOEEwRjc3NDhDNEY5QUUwMi8wUGl3Qmxsc2ZBTjh0VWt3V3pscEFBQ3E2 S1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzBQaXdCbGxzZkFOOHRVa3dXemxwQUFDcTZLUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 NTRDMC9GRURGNTcyRUNDQkIxMUVFOEEwRjc3NDhDNEY5QUUwMi8wUGl3Qmxsc2ZB Tjh0VWt3V3pscEFBQ3E2S1EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAroKZNaRMSDAmNlq2l9ZjulEizxeDAgNy4rmNLSi+7mcyL25tFZWaz yk2pfQJl8YIIjLcgZ+GR0HqWR2Amcecr65igHX6hqeYtROq7o/slf74nRlrWHoMw ObGmQxThqcSrtE4hL0WqJRZhtYeb8oF/V9+vzLGpEHi5UygahNKFXF9RTTSBVfFq d/cr9Hlsfe5L52fzU7AGQUVpEOYSOcG8+TR8JhGQFLeP8aKyYQTcu9UeUQSl13sb 9frGeuuXnQxjNVOSOIR3UO8lK1In5knxQOIutfSLsNbODIWzuYw/1vqPsZUex5N4 CQo+mfBpkWrA0uCAKR9waTCmSZSPhVp1 -----END CERTIFICATE-----Generated at Thu May 15 21:16:46 2025 by rpki-client