$ rpki-client -vvf rpki.apnic.net/member_repository/A91822BF/1039BC401ADB11EAAA3A8235C4F9AE02/A3e5PJH9r0aaWRtMUtJMsVVdK9Q.mft File: A3e5PJH9r0aaWRtMUtJMsVVdK9Q.mft (raw, json) Hash identifier: N8kdf+wds7rYues8+PI010/3zw/aPbUGMTw0vslfAMM= Subject key identifier: 6F:FD:E0:CA:B9:B7:40:40:89:9E:11:EB:07:D6:2E:9C:9B:5B:A8:8D Authority key identifier: 03:77:B9:3C:91:FD:AF:46:9A:59:1B:4C:52:D2:4C:B1:55:5D:2B:D4 Certificate issuer: /CN=A91822BF/serialNumber=0377B93C91FDAF469A591B4C52D24CB1555D2BD4 Certificate serial: 0BCC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/A3e5PJH9r0aaWRtMUtJMsVVdK9Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91822BF/1039BC401ADB11EAAA3A8235C4F9AE02/A3e5PJH9r0aaWRtMUtJMsVVdK9Q.mft Manifest number: 0BC5 Signing time: Sat 10 May 2025 18:38:42 +0000 Manifest this update: Sat 10 May 2025 18:38:41 +0000 Manifest next update: Sat 17 May 2025 18:38:41 +0000 Files and hashes: 1: A3e5PJH9r0aaWRtMUtJMsVVdK9Q.crl (hash: fKoeM6tUgJqDndWEz2811SQMkiPouwycw74lXp5PbuU=) 2: 37EA3E261ADC11EA8EB46F37C4F9AE02.roa (hash: 3kGetLo0/1T2TeuK7e4cz2fvy6XLEBwpuyaFMSSdmUI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91822BF/1039BC401ADB11EAAA3A8235C4F9AE02/A3e5PJH9r0aaWRtMUtJMsVVdK9Q.crl rsync://rpki.apnic.net/member_repository/A91822BF/1039BC401ADB11EAAA3A8235C4F9AE02/A3e5PJH9r0aaWRtMUtJMsVVdK9Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/A3e5PJH9r0aaWRtMUtJMsVVdK9Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 17 May 2025 18:38:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3020 (0xbcc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91822BF, serialNumber=0377B93C91FDAF469A591B4C52D24CB1555D2BD4 Validity Not Before: May 10 18:38:41 2025 GMT Not After : May 17 18:38:41 2025 GMT Subject: CN=681f9d32-9dae Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:5f:01:2e:71:54:49:ea:3b:93:cb:fb:a3:1d: 5b:8d:a0:d6:d9:10:c4:c1:02:f5:1b:6a:c7:4d:31: ef:f1:93:73:53:a9:69:60:06:f3:fe:3c:c5:eb:02: 62:84:9e:89:17:04:c3:e9:56:64:69:93:77:ae:13: 64:29:29:1c:cd:f2:43:71:1c:c1:2b:75:dc:c8:bc: 71:2b:8d:27:be:07:ef:c4:30:91:3d:5c:f3:57:ba: 43:6a:9b:78:16:2b:d2:69:02:71:1f:15:84:57:39: 62:c2:39:65:f1:59:fe:9c:54:cb:a7:cf:99:50:5f: c0:7c:f3:09:d5:0d:9f:0f:31:7d:11:31:ec:4a:cd: b2:8f:58:d1:22:12:a0:7b:e2:11:c3:a1:c8:66:41: 2e:33:51:92:8d:ba:f7:e2:e6:30:ab:44:89:bd:75: 0a:54:f3:24:e8:2a:9b:12:24:03:41:63:ec:df:41: f4:13:68:a9:38:76:04:08:e6:2d:e0:55:2a:c7:a1: a0:97:21:26:95:b8:72:58:45:98:ca:8f:58:ab:a5: 5d:82:32:08:f6:0d:df:56:4a:a0:0e:ba:ca:d8:35: 04:ca:e6:b9:44:74:cb:b9:0b:48:c5:9d:08:af:56: c7:91:01:a3:79:cc:02:ef:f9:69:f0:df:91:9b:9a: 2b:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6F:FD:E0:CA:B9:B7:40:40:89:9E:11:EB:07:D6:2E:9C:9B:5B:A8:8D X509v3 Authority Key Identifier: keyid:03:77:B9:3C:91:FD:AF:46:9A:59:1B:4C:52:D2:4C:B1:55:5D:2B:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91822BF/1039BC401ADB11EAAA3A8235C4F9AE02/A3e5PJH9r0aaWRtMUtJMsVVdK9Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/A3e5PJH9r0aaWRtMUtJMsVVdK9Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91822BF/1039BC401ADB11EAAA3A8235C4F9AE02/A3e5PJH9r0aaWRtMUtJMsVVdK9Q.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 52:d4:89:73:1a:97:e5:fd:39:85:e0:54:ac:df:4b:64:81:10: a5:5f:b5:f2:20:d4:86:a9:a9:18:42:c6:bb:28:32:ba:13:32: fa:86:33:11:16:b2:fd:9b:7d:0b:fe:02:5d:6b:d8:51:98:56: 99:0e:38:d9:f0:f6:25:4d:4a:2b:4b:b4:4c:11:01:6b:e9:41: 98:7e:fa:da:27:32:67:71:7d:3c:59:01:7d:76:58:0b:b9:33: 69:07:65:d4:93:47:dc:7b:75:ef:00:a8:2b:5e:a7:fe:27:02: 26:c8:f2:ba:22:08:50:9f:64:4b:41:7c:38:c8:29:0f:a4:f6: 70:39:ed:13:c9:44:1c:e1:0c:1c:15:80:06:bf:6b:8d:47:7e: c4:03:48:79:bc:b5:01:f7:d0:d2:7f:d9:bc:bb:cd:5a:8a:cf: c5:14:22:c8:1b:ce:5a:67:55:46:39:44:ee:4c:f5:5c:e2:97: 98:f6:0e:4d:b6:70:1e:d9:e8:e3:72:76:f6:e0:8a:5a:35:86: fc:8d:74:77:d5:89:c4:6a:4d:f1:f4:e2:ad:45:55:7b:3d:fc: 43:ed:99:1b:17:51:7e:27:d1:cd:d2:32:96:55:8f:cb:9f:b8: 87:bd:04:be:96:d8:ab:ea:14:6c:f7:9a:ef:52:a8:db:10:2d: 37:32:d7:12 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC8wwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODIyQkYxMTAvBgNVBAUTKDAzNzdCOTNDOTFGREFGNDY5QTU5MUI0QzUyRDI0Q0Ix NTU1RDJCRDQwHhcNMjUwNTEwMTgzODQxWhcNMjUwNTE3MTgzODQxWjAYMRYwFAYD VQQDEw02ODFmOWQzMi05ZGFlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1F8BLnFUSeo7k8v7ox1bjaDW2RDEwQL1G2rHTTHv8ZNzU6lpYAbz/jzF6wJi hJ6JFwTD6VZkaZN3rhNkKSkczfJDcRzBK3XcyLxxK40nvgfvxDCRPVzzV7pDapt4 FivSaQJxHxWEVzliwjll8Vn+nFTLp8+ZUF/AfPMJ1Q2fDzF9ETHsSs2yj1jRIhKg e+IRw6HIZkEuM1GSjbr34uYwq0SJvXUKVPMk6CqbEiQDQWPs30H0E2ipOHYECOYt 4FUqx6GglyEmlbhyWEWYyo9Yq6VdgjII9g3fVkqgDrrK2DUEyua5RHTLuQtIxZ0I r1bHkQGjecwC7/lp8N+Rm5ortwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFG/94Mq5 t0BAiZ4R6wfWLpybW6iNMB8GA1UdIwQYMBaAFAN3uTyR/a9GmlkbTFLSTLFVXSvU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4MjJCRi8xMDM5QkM0MDFB REIxMUVBQUEzQTgyMzVDNEY5QUUwMi9BM2U1UEpIOXIwYWFXUnRNVXRKTXNWVmRL OVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0EzZTVQSkg5cjBhYVdSdE1VdEpNc1ZWZEs5US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 MjJCRi8xMDM5QkM0MDFBREIxMUVBQUEzQTgyMzVDNEY5QUUwMi9BM2U1UEpIOXIw YWFXUnRNVXRKTXNWVmRLOVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBS1IlzGpfl/TmF4FSs30tkgRClX7XyINSGqakYQsa7KDK6EzL6hjMR FrL9m30L/gJda9hRmFaZDjjZ8PYlTUorS7RMEQFr6UGYfvraJzJncX08WQF9dlgL uTNpB2XUk0fce3XvAKgrXqf+JwImyPK6IghQn2RLQXw4yCkPpPZwOe0TyUQc4Qwc FYAGv2uNR37EA0h5vLUB99DSf9m8u81ais/FFCLIG85aZ1VGOUTuTPVc4peY9g5N tnAe2ejjcnb24IpaNYb8jXR31YnEak3x9OKtRVV7PfxD7ZkbF1F+J9HN0jKWVY/L n7iHvQS+ltir6hRs95rvUqjbEC03MtcS -----END CERTIFICATE-----Generated at Sun May 11 14:44:11 2025 by rpki-client