$ rpki-client -vvf rpki.apnic.net/member_repository/A91897BB/FC73FA0610E611EBB4A2521DC4F9AE02/tJ6O6BcDpKC6zKgkN4AvtcMLZWg.mft File: tJ6O6BcDpKC6zKgkN4AvtcMLZWg.mft (raw, json) Hash identifier: 97XGIFCRDo3OS5oji1u/pRkn0ScorzZXjDz7PHacsfM= Subject key identifier: 5C:D4:85:ED:47:A3:8A:68:8F:DF:FC:7C:BC:F9:D8:85:F9:BE:47:BE Authority key identifier: B4:9E:8E:E8:17:03:A4:A0:BA:CC:A8:24:37:80:2F:B5:C3:0B:65:68 Certificate issuer: /CN=A91897BB/serialNumber=B49E8EE81703A4A0BACCA82437802FB5C30B6568 Certificate serial: 0781 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tJ6O6BcDpKC6zKgkN4AvtcMLZWg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91897BB/FC73FA0610E611EBB4A2521DC4F9AE02/tJ6O6BcDpKC6zKgkN4AvtcMLZWg.mft Manifest number: 077B Signing time: Sat 10 May 2025 21:06:09 +0000 Manifest this update: Sat 10 May 2025 21:06:08 +0000 Manifest next update: Sat 17 May 2025 21:06:08 +0000 Files and hashes: 1: tJ6O6BcDpKC6zKgkN4AvtcMLZWg.crl (hash: GffU94VL1BDTkaZTHQyIVNU7a63Z1ISIvIEBhciRpFA=) 2: E51ECC8610E711EBAD066E1DC4F9AE02.roa (hash: xKjoE/L7amuNhMSwGDrHGE81K3Mhyx0/ODd0Eq8CTmg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91897BB/FC73FA0610E611EBB4A2521DC4F9AE02/tJ6O6BcDpKC6zKgkN4AvtcMLZWg.crl rsync://rpki.apnic.net/member_repository/A91897BB/FC73FA0610E611EBB4A2521DC4F9AE02/tJ6O6BcDpKC6zKgkN4AvtcMLZWg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tJ6O6BcDpKC6zKgkN4AvtcMLZWg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 17 May 2025 21:06:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1921 (0x781) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91897BB, serialNumber=B49E8EE81703A4A0BACCA82437802FB5C30B6568 Validity Not Before: May 10 21:06:08 2025 GMT Not After : May 17 21:06:08 2025 GMT Subject: CN=681fbfc0-a257 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f9:e2:b9:b7:20:3e:2e:f2:41:99:69:c6:b4:42: a5:e7:84:19:73:90:11:09:68:58:f9:0e:f0:e4:ce: 9c:d1:6e:67:72:6c:c5:62:22:6d:5a:3c:ab:b1:9e: 3c:8c:37:3c:33:72:09:7f:e5:6d:da:f2:d4:d3:9c: 57:db:fb:0b:25:39:9d:25:73:96:a5:e8:ae:80:2a: e0:b6:78:6c:63:88:9e:5a:12:a2:c4:0a:63:1a:11: 76:ea:e9:b8:02:3d:37:de:a4:53:0e:ae:b3:fe:10: 8d:7a:ee:08:79:63:c7:8e:73:9e:b5:9e:01:2c:f9: f7:d8:5e:c7:84:a8:45:36:6b:3b:2b:ce:db:54:56: 6c:8c:80:3d:42:01:e9:0a:17:c5:45:85:1b:53:15: 23:c9:3d:85:85:e6:bd:19:99:aa:7c:d2:fa:b4:6d: fe:da:d9:aa:51:2e:55:a4:c7:7e:26:a6:77:53:76: f9:01:24:df:f1:46:51:d7:1f:62:3d:9e:7d:b1:f6: 83:cc:77:94:8b:af:3f:1c:64:00:6e:11:fe:99:32: 2b:ac:57:5f:66:1b:5d:ac:f8:19:02:84:c7:76:16: 3e:f9:1b:4d:c8:fb:52:92:7d:2e:26:78:1d:30:c0: 22:75:8e:6e:56:d2:7b:10:7e:4e:e6:7e:b6:81:b9: d7:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5C:D4:85:ED:47:A3:8A:68:8F:DF:FC:7C:BC:F9:D8:85:F9:BE:47:BE X509v3 Authority Key Identifier: keyid:B4:9E:8E:E8:17:03:A4:A0:BA:CC:A8:24:37:80:2F:B5:C3:0B:65:68 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91897BB/FC73FA0610E611EBB4A2521DC4F9AE02/tJ6O6BcDpKC6zKgkN4AvtcMLZWg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tJ6O6BcDpKC6zKgkN4AvtcMLZWg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91897BB/FC73FA0610E611EBB4A2521DC4F9AE02/tJ6O6BcDpKC6zKgkN4AvtcMLZWg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4f:f7:d9:9c:e4:07:5f:82:ab:4b:f9:b7:15:15:a2:6d:e3:59: 3d:4d:83:4b:40:71:9d:53:6e:64:6a:6b:b3:2a:1f:e9:5a:03: 42:4c:7a:da:59:8c:d0:f8:1b:4c:0a:b6:3e:b2:04:99:3e:26: 63:e0:27:e5:31:4b:57:a0:0e:65:7e:ba:bd:e0:76:91:b7:66: 18:0a:03:bc:25:bd:fb:6a:fa:d8:73:3e:4d:cb:1b:a5:05:2e: 2d:6e:71:91:95:6c:6a:af:32:42:e0:e4:c0:1a:3b:c2:e4:98: ca:08:f1:6b:71:de:e6:93:5f:72:9a:3b:81:1d:a3:08:50:d3: 1f:a1:40:39:12:83:ec:4b:fd:30:06:c3:a4:fc:2b:2f:08:08: 1e:96:55:6b:ae:0e:b2:f5:89:36:ff:5c:5d:68:bd:f9:4e:c4: 35:47:08:27:f5:a2:8d:13:7c:ba:91:dc:1b:ce:8a:43:c6:c8: ec:80:3d:b2:54:66:89:fd:e8:8e:86:35:a3:28:e1:8f:8d:dc: c0:3d:54:ca:46:f5:f2:ac:49:8e:98:77:d8:07:75:46:4b:dc: 51:61:bb:d9:c3:f9:70:6c:3b:b3:21:39:98:d8:98:54:a0:c6: 1e:fa:e7:4b:27:2b:c6:20:db:e2:a2:e6:4a:ba:ff:e6:c4:1f: f0:26:93:38 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB4EwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODk3QkIxMTAvBgNVBAUTKEI0OUU4RUU4MTcwM0E0QTBCQUNDQTgyNDM3ODAyRkI1 QzMwQjY1NjgwHhcNMjUwNTEwMjEwNjA4WhcNMjUwNTE3MjEwNjA4WjAYMRYwFAYD VQQDEw02ODFmYmZjMC1hMjU3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA+eK5tyA+LvJBmWnGtEKl54QZc5ARCWhY+Q7w5M6c0W5ncmzFYiJtWjyrsZ48 jDc8M3IJf+Vt2vLU05xX2/sLJTmdJXOWpeiugCrgtnhsY4ieWhKixApjGhF26um4 Aj033qRTDq6z/hCNeu4IeWPHjnOetZ4BLPn32F7HhKhFNms7K87bVFZsjIA9QgHp ChfFRYUbUxUjyT2Fhea9GZmqfNL6tG3+2tmqUS5VpMd+JqZ3U3b5ASTf8UZR1x9i PZ59sfaDzHeUi68/HGQAbhH+mTIrrFdfZhtdrPgZAoTHdhY++RtNyPtSkn0uJngd MMAidY5uVtJ7EH5O5n62gbnXmQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFzUhe1H o4poj9/8fLz52IX5vke+MB8GA1UdIwQYMBaAFLSejugXA6SgusyoJDeAL7XDC2Vo MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4OTdCQi9GQzczRkEwNjEw RTYxMUVCQjRBMjUyMURDNEY5QUUwMi90SjZPNkJjRHBLQzZ6S2drTjRBdnRjTUxa V2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RKNk82QmNEcEtDNnpLZ2tONEF2dGNNTFpXZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 OTdCQi9GQzczRkEwNjEwRTYxMUVCQjRBMjUyMURDNEY5QUUwMi90SjZPNkJjRHBL QzZ6S2drTjRBdnRjTUxaV2cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBP99mc5AdfgqtL+bcVFaJt41k9TYNLQHGdU25kamuzKh/pWgNCTHra WYzQ+BtMCrY+sgSZPiZj4CflMUtXoA5lfrq94HaRt2YYCgO8Jb37avrYcz5Nyxul BS4tbnGRlWxqrzJC4OTAGjvC5JjKCPFrcd7mk19ymjuBHaMIUNMfoUA5EoPsS/0w BsOk/CsvCAgellVrrg6y9Yk2/1xdaL35TsQ1Rwgn9aKNE3y6kdwbzopDxsjsgD2y VGaJ/eiOhjWjKOGPjdzAPVTKRvXyrEmOmHfYB3VGS9xRYbvZw/lwbDuzITmY2JhU oMYe+udLJyvGINviouZKuv/mxB/wJpM4 -----END CERTIFICATE-----Generated at Sun May 11 19:12:44 2025 by rpki-client