$ rpki-client -vvf rpki.apnic.net/member_repository/A91876D9/9260C658061811ECBB262C5EC4F9AE02/keZpzgIVCXvU1Hehp0RrDZ0CSP8.mft File: keZpzgIVCXvU1Hehp0RrDZ0CSP8.mft (raw, json) Hash identifier: FIX00zBQj9xMmnEjqgUK/Q0/6Sls6tdUS4h0noO9N5c= Subject key identifier: 61:8E:0E:90:56:19:F8:14:8A:F6:F6:F1:6E:45:F0:8C:57:3E:62:AA Authority key identifier: 91:E6:69:CE:02:15:09:7B:D4:D4:77:A1:A7:44:6B:0D:9D:02:48:FF Certificate issuer: /CN=A91876D9/serialNumber=91E669CE0215097BD4D477A1A7446B0D9D0248FF Certificate serial: 0514 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/keZpzgIVCXvU1Hehp0RrDZ0CSP8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91876D9/9260C658061811ECBB262C5EC4F9AE02/keZpzgIVCXvU1Hehp0RrDZ0CSP8.mft Manifest number: 050E Signing time: Mon 12 May 2025 23:26:13 +0000 Manifest this update: Mon 12 May 2025 23:26:12 +0000 Manifest next update: Mon 19 May 2025 23:26:12 +0000 Files and hashes: 1: keZpzgIVCXvU1Hehp0RrDZ0CSP8.crl (hash: LL5dC4pjw0PasLt9+1zn5f3E4coCwf5YSsIwJWINqeA=) 2: CDFDBE10061C11ECA4633B32C4F9AE02.roa (hash: phE+adBWK7PYAI4KAosAkS6IfQBeyVMqazuKmnqaEwg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91876D9/9260C658061811ECBB262C5EC4F9AE02/keZpzgIVCXvU1Hehp0RrDZ0CSP8.crl rsync://rpki.apnic.net/member_repository/A91876D9/9260C658061811ECBB262C5EC4F9AE02/keZpzgIVCXvU1Hehp0RrDZ0CSP8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/keZpzgIVCXvU1Hehp0RrDZ0CSP8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 19 May 2025 23:26:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1300 (0x514) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91876D9, serialNumber=91E669CE0215097BD4D477A1A7446B0D9D0248FF Validity Not Before: May 12 23:26:12 2025 GMT Not After : May 19 23:26:12 2025 GMT Subject: CN=68228394-68c3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:b2:27:be:c2:f8:2d:1e:4d:ce:de:94:39:6d: 20:57:0e:f4:d9:bc:8d:2c:10:ba:92:62:9f:af:6e: 51:25:35:e5:e3:b5:7c:3f:f8:5a:51:c4:3c:c2:63: ef:69:e7:42:ef:9f:d9:ce:ac:a8:f3:e8:dd:60:2c: 12:76:d1:15:23:15:68:0a:a9:85:bc:58:c0:45:88: aa:d0:c6:55:50:e1:aa:e0:0c:4d:a2:72:3a:8d:a4: 9b:7f:ca:93:99:aa:f3:23:40:9d:01:85:33:1d:27: fc:6f:17:69:e3:cb:81:78:c2:e9:e2:a7:80:a6:35: d6:0c:65:1e:f7:4a:04:ee:0d:a7:7b:8b:83:1c:7b: 54:e6:6d:c6:4a:5d:26:3e:74:26:10:79:e5:b8:dd: 47:af:b1:59:9f:90:5e:44:01:f5:c3:dd:1c:02:eb: 02:f3:d9:55:d7:6a:fa:a2:86:bd:a7:14:06:b5:a2: 28:6c:21:33:60:2b:93:5a:3a:c1:97:d1:e9:d0:b2: c9:7f:c3:18:48:6e:a3:3c:c4:5b:f8:60:87:63:bb: 59:a1:87:49:f5:b7:e6:77:fe:c2:0e:dd:5b:a9:11: 3d:8e:90:35:41:e9:6a:bb:be:7d:b9:bb:e8:f1:45: 36:5a:b7:67:65:15:52:05:e4:16:91:1e:8a:7a:33: f5:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 61:8E:0E:90:56:19:F8:14:8A:F6:F6:F1:6E:45:F0:8C:57:3E:62:AA X509v3 Authority Key Identifier: keyid:91:E6:69:CE:02:15:09:7B:D4:D4:77:A1:A7:44:6B:0D:9D:02:48:FF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91876D9/9260C658061811ECBB262C5EC4F9AE02/keZpzgIVCXvU1Hehp0RrDZ0CSP8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/keZpzgIVCXvU1Hehp0RrDZ0CSP8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91876D9/9260C658061811ECBB262C5EC4F9AE02/keZpzgIVCXvU1Hehp0RrDZ0CSP8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3d:75:9e:b1:d1:0e:d3:69:31:c6:ca:a9:d1:b2:d7:50:48:9e: fb:f0:a6:fd:42:2c:e3:7d:9e:25:7f:06:b3:7d:f0:12:09:e8: 51:5e:43:47:e2:b6:e8:0d:4a:69:18:e0:0b:a0:95:f1:bc:60: 09:c0:af:b0:ca:be:bd:3a:2e:88:9f:6c:d8:a7:b7:60:02:bb: f2:d3:84:84:f0:5a:87:f9:87:d9:a0:c5:77:3c:72:d2:37:b0: 90:45:29:67:55:99:bf:1a:ac:12:59:37:37:7b:79:6c:bb:94: 1b:89:cf:7f:e7:1e:86:74:6d:0f:32:41:f4:37:4d:db:31:31: 2b:8e:f7:77:b0:63:eb:81:a4:06:9d:09:22:4c:b9:b9:6e:45: 77:09:30:62:0d:ca:bb:7a:10:96:8f:fc:de:2a:8e:6b:a9:57: d7:04:ad:b1:bb:70:54:17:01:5e:6a:38:0d:86:b9:d6:83:5d: 95:82:e6:60:b2:a0:00:d5:e4:c0:34:4e:e1:8d:7b:07:8b:5e: 68:d0:f3:aa:00:ba:2b:80:63:d1:35:9f:0a:8f:fc:4c:5e:37: 68:43:b8:10:42:73:eb:6f:13:0b:79:f0:d8:79:a3:a8:4f:d6: 1c:5a:59:a0:5a:bc:97:03:af:04:26:fe:95:a9:e5:94:f4:e8: 65:95:f1:d9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBRQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODc2RDkxMTAvBgNVBAUTKDkxRTY2OUNFMDIxNTA5N0JENEQ0NzdBMUE3NDQ2QjBE OUQwMjQ4RkYwHhcNMjUwNTEyMjMyNjEyWhcNMjUwNTE5MjMyNjEyWjAYMRYwFAYD VQQDEw02ODIyODM5NC02OGMzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0bInvsL4LR5Nzt6UOW0gVw702byNLBC6kmKfr25RJTXl47V8P/haUcQ8wmPv aedC75/Zzqyo8+jdYCwSdtEVIxVoCqmFvFjARYiq0MZVUOGq4AxNonI6jaSbf8qT marzI0CdAYUzHSf8bxdp48uBeMLp4qeApjXWDGUe90oE7g2ne4uDHHtU5m3GSl0m PnQmEHnluN1Hr7FZn5BeRAH1w90cAusC89lV12r6ooa9pxQGtaIobCEzYCuTWjrB l9Hp0LLJf8MYSG6jPMRb+GCHY7tZoYdJ9bfmd/7CDt1bqRE9jpA1Qelqu759ubvo 8UU2WrdnZRVSBeQWkR6KejP1BwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGGODpBW GfgUivb28W5F8IxXPmKqMB8GA1UdIwQYMBaAFJHmac4CFQl71NR3oadEaw2dAkj/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NzZEOS85MjYwQzY1ODA2 MTgxMUVDQkIyNjJDNUVDNEY5QUUwMi9rZVpwemdJVkNYdlUxSGVocDBSckRaMENT UDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tlWnB6Z0lWQ1h2VTFIZWhwMFJyRFowQ1NQOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NzZEOS85MjYwQzY1ODA2MTgxMUVDQkIyNjJDNUVDNEY5QUUwMi9rZVpwemdJVkNY dlUxSGVocDBSckRaMENTUDgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA9dZ6x0Q7TaTHGyqnRstdQSJ778Kb9QizjfZ4lfwazffASCehRXkNH 4rboDUppGOALoJXxvGAJwK+wyr69Oi6In2zYp7dgArvy04SE8FqH+YfZoMV3PHLS N7CQRSlnVZm/GqwSWTc3e3lsu5Qbic9/5x6GdG0PMkH0N03bMTErjvd3sGPrgaQG nQkiTLm5bkV3CTBiDcq7ehCWj/zeKo5rqVfXBK2xu3BUFwFeajgNhrnWg12VguZg sqAA1eTANE7hjXsHi15o0POqALorgGPRNZ8Kj/xMXjdoQ7gQQnPrbxMLefDYeaOo T9YcWlmgWryXA68EJv6VqeWU9OhllfHZ -----END CERTIFICATE-----Generated at Wed May 14 05:04:53 2025 by rpki-client