$ rpki-client -vvf rpki.apnic.net/member_repository/A91777A6/C8A799D2244711EDB1655053C4F9AE02/2kdUAUEh0yaH2X05LZBgSagU_MM.mft File: 2kdUAUEh0yaH2X05LZBgSagU_MM.mft (raw, json) Hash identifier: 3bffazMgjClqV8KFl3SiATYyv3CSTczjnK5+XtDDFrk= Subject key identifier: AF:FD:36:B1:D3:3B:F6:7A:0D:15:AA:89:59:C4:5F:06:EA:53:4F:F3 Authority key identifier: DA:47:54:01:41:21:D3:26:87:D9:7D:39:2D:90:60:49:A8:14:FC:C3 Certificate issuer: /CN=A91777A6/serialNumber=DA4754014121D32687D97D392D906049A814FCC3 Certificate serial: 0239 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2kdUAUEh0yaH2X05LZBgSagU_MM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91777A6/C8A799D2244711EDB1655053C4F9AE02/2kdUAUEh0yaH2X05LZBgSagU_MM.mft Manifest number: 0235 Signing time: Fri 09 May 2025 01:40:00 +0000 Manifest this update: Fri 09 May 2025 01:40:00 +0000 Manifest next update: Fri 16 May 2025 01:40:00 +0000 Files and hashes: 1: 2kdUAUEh0yaH2X05LZBgSagU_MM.crl (hash: NZvyA+3OoeTk9LF/BasFlp4x3bQkjrd2Z4a+FSLtL0s=) 2: 930770F4244C11ED95AA5569C4F9AE02.roa (hash: DDdOGJKEKYKXbDa5vtjLSsnRV8BgpNNS0rM4LZRyfrY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91777A6/C8A799D2244711EDB1655053C4F9AE02/2kdUAUEh0yaH2X05LZBgSagU_MM.crl rsync://rpki.apnic.net/member_repository/A91777A6/C8A799D2244711EDB1655053C4F9AE02/2kdUAUEh0yaH2X05LZBgSagU_MM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2kdUAUEh0yaH2X05LZBgSagU_MM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 16 May 2025 01:39:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 569 (0x239) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91777A6, serialNumber=DA4754014121D32687D97D392D906049A814FCC3 Validity Not Before: May 9 01:40:00 2025 GMT Not After : May 16 01:40:00 2025 GMT Subject: CN=681d5cf0-cd32 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:7c:1a:4e:10:16:2a:1d:10:95:b8:99:c6:a0: cd:80:9e:dd:8f:52:ab:41:33:40:a5:36:db:de:67: 86:94:27:b2:32:46:ec:83:b6:fa:f2:ba:5b:74:6d: b7:4f:65:9a:dd:2e:4e:e0:21:4a:5b:26:d2:a4:0f: f3:8c:f8:62:19:d8:e2:bc:ac:67:05:04:85:d7:12: f5:c8:c4:7a:5d:5f:5f:ff:55:c6:b2:5c:37:34:d7: d4:c1:a4:cd:44:94:cb:77:36:7e:63:df:5f:d8:c9: b9:06:9c:32:d6:92:55:f9:cd:a4:8f:98:31:58:47: 9f:1f:fe:cb:fd:8b:ee:82:ff:70:2b:9d:29:fe:9a: 79:38:40:5f:de:cf:96:f8:6f:b6:bf:0c:91:94:90: e8:bf:0d:94:98:98:83:45:9b:9b:92:16:7f:2b:66: a9:4c:41:e1:43:d6:72:a3:b1:55:49:3c:19:6c:58: 4b:80:64:6d:dd:d0:61:19:bb:1d:ea:5d:cb:2e:34: e4:62:70:75:ca:b6:db:6c:04:78:4e:a5:cf:e9:2c: 1a:6c:67:56:9b:33:ac:93:93:cc:26:8b:f3:84:3b: c9:9a:fc:97:c1:0c:6f:df:8e:4d:a7:e5:d9:5c:db: 69:de:8d:4d:6c:d2:dd:ac:13:39:a0:e7:58:15:1c: 55:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AF:FD:36:B1:D3:3B:F6:7A:0D:15:AA:89:59:C4:5F:06:EA:53:4F:F3 X509v3 Authority Key Identifier: keyid:DA:47:54:01:41:21:D3:26:87:D9:7D:39:2D:90:60:49:A8:14:FC:C3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91777A6/C8A799D2244711EDB1655053C4F9AE02/2kdUAUEh0yaH2X05LZBgSagU_MM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2kdUAUEh0yaH2X05LZBgSagU_MM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91777A6/C8A799D2244711EDB1655053C4F9AE02/2kdUAUEh0yaH2X05LZBgSagU_MM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 16:b7:e8:a5:55:45:51:6d:fe:80:45:ce:1f:b3:f9:69:97:d4: 39:3e:0b:62:5a:c4:a7:7a:46:e3:00:e4:cd:f1:68:82:ee:0c: 79:6f:66:63:34:51:3f:25:71:8d:a6:6c:71:e0:e5:72:6b:32: aa:f1:ef:ab:a6:8d:c5:0d:06:97:57:41:0d:37:a3:60:57:83: 0a:61:91:e0:86:e6:c3:7b:8c:9e:cf:98:8e:fb:6e:f0:ff:b7: 1b:91:dd:59:cc:a0:3d:6a:84:55:b9:50:03:84:44:15:ac:a3: 65:9b:4b:2c:de:2e:46:cc:46:95:86:a3:0b:ae:72:2a:93:c2: 3d:1e:1b:fe:2c:a0:6a:a0:34:3c:08:eb:50:7c:0b:8e:8e:13: 4c:8c:b3:e7:c5:43:70:fc:26:02:0b:03:0a:ac:73:61:c2:f3: f7:7d:24:a4:65:0a:22:74:e3:e8:64:8c:5b:42:44:2b:d6:b1: 9a:0b:0f:ba:e0:f7:62:01:76:32:be:0b:af:a7:6a:50:5b:e3: f4:e6:b0:b6:44:dd:5c:bd:c2:28:73:bc:d5:dd:ab:ee:7a:80: c9:a4:36:cf:20:ce:0d:b3:ff:42:30:5a:e2:99:02:c1:4a:8a: 4e:50:7a:8f:31:f6:06:69:08:64:13:b5:a2:82:3c:b1:ab:fe: 71:f4:50:1a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAjkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Nzc3QTYxMTAvBgNVBAUTKERBNDc1NDAxNDEyMUQzMjY4N0Q5N0QzOTJEOTA2MDQ5 QTgxNEZDQzMwHhcNMjUwNTA5MDE0MDAwWhcNMjUwNTE2MDE0MDAwWjAYMRYwFAYD VQQDEw02ODFkNWNmMC1jZDMyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAm3waThAWKh0QlbiZxqDNgJ7dj1KrQTNApTbb3meGlCeyMkbsg7b68rpbdG23 T2Wa3S5O4CFKWybSpA/zjPhiGdjivKxnBQSF1xL1yMR6XV9f/1XGslw3NNfUwaTN RJTLdzZ+Y99f2Mm5Bpwy1pJV+c2kj5gxWEefH/7L/Yvugv9wK50p/pp5OEBf3s+W +G+2vwyRlJDovw2UmJiDRZubkhZ/K2apTEHhQ9Zyo7FVSTwZbFhLgGRt3dBhGbsd 6l3LLjTkYnB1yrbbbAR4TqXP6SwabGdWmzOsk5PMJovzhDvJmvyXwQxv345Np+XZ XNtp3o1NbNLdrBM5oOdYFRxVtQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFK/9NrHT O/Z6DRWqiVnEXwbqU0/zMB8GA1UdIwQYMBaAFNpHVAFBIdMmh9l9OS2QYEmoFPzD MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NzdBNi9DOEE3OTlEMjI0 NDcxMUVEQjE2NTUwNTNDNEY5QUUwMi8ya2RVQVVFaDB5YUgyWDA1TFpCZ1NhZ1Vf TU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJrZFVBVUVoMHlhSDJYMDVMWkJnU2FnVV9NTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 NzdBNi9DOEE3OTlEMjI0NDcxMUVEQjE2NTUwNTNDNEY5QUUwMi8ya2RVQVVFaDB5 YUgyWDA1TFpCZ1NhZ1VfTU0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAWt+ilVUVRbf6ARc4fs/lpl9Q5PgtiWsSnekbjAOTN8WiC7gx5b2Zj NFE/JXGNpmxx4OVyazKq8e+rpo3FDQaXV0ENN6NgV4MKYZHghubDe4yez5iO+27w /7cbkd1ZzKA9aoRVuVADhEQVrKNlm0ss3i5GzEaVhqMLrnIqk8I9Hhv+LKBqoDQ8 COtQfAuOjhNMjLPnxUNw/CYCCwMKrHNhwvP3fSSkZQoidOPoZIxbQkQr1rGaCw+6 4PdiAXYyvguvp2pQW+P05rC2RN1cvcIoc7zV3avueoDJpDbPIM4Ns/9CMFrimQLB SopOUHqPMfYGaQhkE7Wigjyxq/5x9FAa -----END CERTIFICATE-----Generated at Sat May 10 07:56:30 2025 by rpki-client