$ rpki-client -vvf rpki.apnic.net/member_repository/A91944AB/6FE306A6C2C811EB98D9DA79C4F9AE02/ahIZcm0jnIL1pEYBEn0a-HJc4O0.mft File: ahIZcm0jnIL1pEYBEn0a-HJc4O0.mft (raw, json) Hash identifier: s71v7UEsAfs7k8hD4E9gE/qFKC7K8WfEgJdQmvfDZFY= Subject key identifier: DC:CB:35:74:20:21:57:C9:AE:8D:AE:B3:4E:84:C7:05:0F:2A:FC:B9 Authority key identifier: 6A:12:19:72:6D:23:9C:82:F5:A4:46:01:12:7D:1A:F8:72:5C:E0:ED Certificate issuer: /CN=A91944AB/serialNumber=6A1219726D239C82F5A44601127D1AF8725CE0ED Certificate serial: 05C2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ahIZcm0jnIL1pEYBEn0a-HJc4O0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91944AB/6FE306A6C2C811EB98D9DA79C4F9AE02/ahIZcm0jnIL1pEYBEn0a-HJc4O0.mft Manifest number: 05BC Signing time: Wed 14 May 2025 23:10:23 +0000 Manifest this update: Wed 14 May 2025 23:10:23 +0000 Manifest next update: Wed 21 May 2025 23:10:23 +0000 Files and hashes: 1: ahIZcm0jnIL1pEYBEn0a-HJc4O0.crl (hash: MbOeBmzTHRrt8lTPxOkDRG/6wlKTpItT+buRCk5pLL4=) 2: BB01CFB0723811EEA39E0042C4F9AE02.roa (hash: Wmsh7cLIzhswuDyOVOYJZDVZYFQtMqV8cI7HOX5SCRU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91944AB/6FE306A6C2C811EB98D9DA79C4F9AE02/ahIZcm0jnIL1pEYBEn0a-HJc4O0.crl rsync://rpki.apnic.net/member_repository/A91944AB/6FE306A6C2C811EB98D9DA79C4F9AE02/ahIZcm0jnIL1pEYBEn0a-HJc4O0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ahIZcm0jnIL1pEYBEn0a-HJc4O0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 21 May 2025 23:10:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1474 (0x5c2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91944AB, serialNumber=6A1219726D239C82F5A44601127D1AF8725CE0ED Validity Not Before: May 14 23:10:23 2025 GMT Not After : May 21 23:10:23 2025 GMT Subject: CN=682522df-56ea Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:34:11:58:12:54:0d:ea:64:10:2f:9b:78:a5: 63:02:60:bb:33:a4:59:1d:17:3c:90:48:a8:16:5c: ac:a3:6b:ca:e8:11:1f:6d:66:82:6b:45:5e:42:31: f3:ea:4f:4e:cd:a4:d6:f1:c8:fb:ad:a9:f6:c2:59: d4:89:66:36:f1:5b:7f:e3:8e:03:af:f1:cd:d9:a0: 15:bd:c8:23:fa:c1:4f:c2:e7:bd:96:88:0b:2d:39: 0a:5d:a5:79:0f:6a:3b:e5:ab:0c:08:1c:a2:5e:9a: d6:b5:0b:86:24:8b:78:f0:ab:cc:6b:8d:65:09:61: 0b:86:33:60:64:87:ba:d2:74:e9:9e:92:c2:41:ec: 80:dd:f6:48:e0:82:a2:0e:df:88:a8:0d:ef:55:1c: c3:f9:10:c2:d7:c6:db:c9:df:f9:f4:65:19:c0:c6: bd:06:f9:41:ff:62:6c:fb:22:3b:ca:e4:bb:5c:9f: bc:0a:27:3b:b5:e3:7a:30:e9:9a:67:a6:cc:fb:c8: d4:d9:b4:bb:f6:0c:d7:3f:67:38:6f:bf:24:1d:8b: 30:f2:db:e9:94:a1:ec:98:82:a0:ac:df:14:10:f9: 29:ae:b7:c2:d9:19:e8:5e:39:63:71:c7:1b:71:ae: 53:2d:7c:f3:c0:93:ec:6a:f1:af:74:9a:50:cb:a9: 75:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DC:CB:35:74:20:21:57:C9:AE:8D:AE:B3:4E:84:C7:05:0F:2A:FC:B9 X509v3 Authority Key Identifier: keyid:6A:12:19:72:6D:23:9C:82:F5:A4:46:01:12:7D:1A:F8:72:5C:E0:ED X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91944AB/6FE306A6C2C811EB98D9DA79C4F9AE02/ahIZcm0jnIL1pEYBEn0a-HJc4O0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ahIZcm0jnIL1pEYBEn0a-HJc4O0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91944AB/6FE306A6C2C811EB98D9DA79C4F9AE02/ahIZcm0jnIL1pEYBEn0a-HJc4O0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1a:b7:ba:5a:34:97:61:63:fc:b8:0e:97:85:bd:da:21:c7:d8: 80:59:7f:37:bc:73:ab:68:41:81:d0:2b:48:f9:54:4d:13:06: c6:ac:af:58:94:cb:bc:d2:fd:64:6d:58:e3:29:c7:15:18:3a: 62:ca:48:a2:f4:fc:58:bc:54:2a:cd:93:f5:a5:c4:3e:b6:d5: da:48:ae:67:42:6c:a6:2d:e3:50:e2:d6:1c:a9:6f:fa:31:14: f6:fc:28:d7:6f:61:9e:e7:f2:06:ba:3a:3f:89:19:aa:f6:08: 10:bb:8b:63:2f:c1:f9:bf:df:c6:3a:d7:c8:5a:98:c4:c0:16: 22:b3:ee:d8:67:d5:3f:84:e8:2d:90:ad:1f:5e:8f:07:09:16: bc:b5:d3:31:c4:4b:9d:a6:3a:2f:28:5c:6a:df:cd:e0:a0:4c: 85:a1:a9:22:86:03:3e:cc:59:8b:e5:cb:63:15:3b:a3:c9:7c: bd:40:f8:5e:b5:94:5d:79:49:52:18:b6:cf:d6:b1:5f:6c:aa: a5:dc:38:86:71:5f:e3:33:35:53:7c:e3:11:6e:67:53:5f:75: db:ef:fd:94:5d:55:6d:26:1a:b8:e8:54:45:15:0d:58:57:02: 44:b8:28:83:40:87:a9:44:37:3e:e9:93:4c:45:8f:df:aa:68: fa:9f:c2:49 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBcIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTQ0QUIxMTAvBgNVBAUTKDZBMTIxOTcyNkQyMzlDODJGNUE0NDYwMTEyN0QxQUY4 NzI1Q0UwRUQwHhcNMjUwNTE0MjMxMDIzWhcNMjUwNTIxMjMxMDIzWjAYMRYwFAYD VQQDEw02ODI1MjJkZi01NmVhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzDQRWBJUDepkEC+beKVjAmC7M6RZHRc8kEioFlyso2vK6BEfbWaCa0VeQjHz 6k9OzaTW8cj7ran2wlnUiWY28Vt/444Dr/HN2aAVvcgj+sFPwue9logLLTkKXaV5 D2o75asMCByiXprWtQuGJIt48KvMa41lCWELhjNgZIe60nTpnpLCQeyA3fZI4IKi Dt+IqA3vVRzD+RDC18bbyd/59GUZwMa9BvlB/2Js+yI7yuS7XJ+8Cic7teN6MOma Z6bM+8jU2bS79gzXP2c4b78kHYsw8tvplKHsmIKgrN8UEPkprrfC2RnoXjljcccb ca5TLXzzwJPsavGvdJpQy6l1TQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNzLNXQg IVfJro2us06ExwUPKvy5MB8GA1UdIwQYMBaAFGoSGXJtI5yC9aRGARJ9GvhyXODt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NDRBQi82RkUzMDZBNkMy QzgxMUVCOThEOURBNzlDNEY5QUUwMi9haElaY20wam5JTDFwRVlCRW4wYS1ISmM0 TzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FoSVpjbTBqbklMMXBFWUJFbjBhLUhKYzRPMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NDRBQi82RkUzMDZBNkMyQzgxMUVCOThEOURBNzlDNEY5QUUwMi9haElaY20wam5J TDFwRVlCRW4wYS1ISmM0TzAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAat7paNJdhY/y4DpeFvdohx9iAWX83vHOraEGB0CtI+VRNEwbGrK9Y lMu80v1kbVjjKccVGDpiykii9PxYvFQqzZP1pcQ+ttXaSK5nQmymLeNQ4tYcqW/6 MRT2/CjXb2Ge5/IGujo/iRmq9ggQu4tjL8H5v9/GOtfIWpjEwBYis+7YZ9U/hOgt kK0fXo8HCRa8tdMxxEudpjovKFxq383goEyFoakihgM+zFmL5ctjFTujyXy9QPhe tZRdeUlSGLbP1rFfbKql3DiGcV/jMzVTfOMRbmdTX3Xb7/2UXVVtJhq46FRFFQ1Y VwJEuCiDQIepRDc+6ZNMRY/fqmj6n8JJ -----END CERTIFICATE-----Generated at Thu May 15 18:18:13 2025 by rpki-client