$ rpki-client -vvf rpki.apnic.net/member_repository/A91998BE/150E57C6CF4911EA9CC9353EC4F9AE02/0NDWzWh3DDh4O764QbES0FYBdKI.mft File: 0NDWzWh3DDh4O764QbES0FYBdKI.mft (raw, json) Hash identifier: tXWM1sdUmktQ/2cliy+bvbpr2hHxNUUGh2u425GNDLE= Subject key identifier: 3B:63:11:6F:79:06:7F:F1:74:C7:B8:AB:39:00:EB:FD:79:DA:33:E2 Authority key identifier: D0:D0:D6:CD:68:77:0C:38:78:3B:BE:B8:41:B1:12:D0:56:01:74:A2 Certificate issuer: /CN=A91998BE/serialNumber=D0D0D6CD68770C38783BBEB841B112D0560174A2 Certificate serial: 0881 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0NDWzWh3DDh4O764QbES0FYBdKI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91998BE/150E57C6CF4911EA9CC9353EC4F9AE02/0NDWzWh3DDh4O764QbES0FYBdKI.mft Manifest number: 084F Signing time: Mon 12 May 2025 20:36:57 +0000 Manifest this update: Mon 12 May 2025 20:36:56 +0000 Manifest next update: Mon 19 May 2025 20:36:56 +0000 Files and hashes: 1: 0NDWzWh3DDh4O764QbES0FYBdKI.crl (hash: ftjknvYIM+gUJqPEFU7mKyz42s0bIZSd99EjRgUUd6w=) 2: 577FD5BE067C11ED882FC127C4F9AE02.roa (hash: FZgwTWzQksQtmk/Nfe/JqxwRHSDF1+BlazvC8MqkPtA=) 3: 4EF79184489411ED86987260C4F9AE02.roa (hash: a8Efs0GAW5Tg39h9an5o87GfSDA70jqZExOy2QFYQOc=) 4: 12FD08CAC88411ECAAB5BD09C4F9AE02.roa (hash: Rk9fezvR7MLf0U22xpSZ4jUyV+Jwv2bIeNDcvnRfGXA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91998BE/150E57C6CF4911EA9CC9353EC4F9AE02/0NDWzWh3DDh4O764QbES0FYBdKI.crl rsync://rpki.apnic.net/member_repository/A91998BE/150E57C6CF4911EA9CC9353EC4F9AE02/0NDWzWh3DDh4O764QbES0FYBdKI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0NDWzWh3DDh4O764QbES0FYBdKI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 19 May 2025 20:36:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2177 (0x881) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91998BE, serialNumber=D0D0D6CD68770C38783BBEB841B112D0560174A2 Validity Not Before: May 12 20:36:56 2025 GMT Not After : May 19 20:36:56 2025 GMT Subject: CN=68225be8-6385 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:69:c5:18:af:89:25:e7:23:7a:1a:ed:1a:80: 19:84:47:6d:6b:be:a2:3e:b9:f7:5a:ad:7e:5a:84: 76:7c:20:ec:ee:97:c9:8b:46:8d:53:8b:f1:0f:72: bf:7f:70:bc:9b:f9:8c:41:14:b4:fd:e9:e9:b7:e3: 25:86:11:74:f8:45:07:74:83:46:26:5a:05:77:26: 1f:92:4c:b1:1d:04:d4:2b:32:ca:44:1d:90:13:29: 30:a2:89:2d:c7:a5:35:9d:e4:36:e3:9b:0a:4a:17: dd:9f:76:5a:98:34:65:29:ff:ee:60:1d:dc:b7:bd: f3:5b:b8:09:83:7c:a9:0b:36:83:67:95:9c:8c:ef: da:6f:86:b0:11:f2:d1:7a:42:5f:67:64:6e:32:bc: 03:91:2a:39:24:17:60:d8:66:06:e7:80:48:49:80: 5d:57:04:6f:3c:ef:08:c1:d3:16:bc:02:2e:59:07: 26:e8:cd:aa:85:c0:7c:45:e3:16:6c:61:44:39:fd: cc:b5:2c:ad:f5:25:48:e0:02:bd:f2:05:fd:dd:80: 27:7c:ee:86:b2:c8:c8:14:96:0f:61:da:df:13:a4: 6e:4c:43:ff:02:8b:5b:4f:60:d5:59:1d:46:c3:7f: af:66:af:0e:d7:85:7c:3a:5c:4c:98:7c:fb:21:ce: 52:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3B:63:11:6F:79:06:7F:F1:74:C7:B8:AB:39:00:EB:FD:79:DA:33:E2 X509v3 Authority Key Identifier: keyid:D0:D0:D6:CD:68:77:0C:38:78:3B:BE:B8:41:B1:12:D0:56:01:74:A2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91998BE/150E57C6CF4911EA9CC9353EC4F9AE02/0NDWzWh3DDh4O764QbES0FYBdKI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0NDWzWh3DDh4O764QbES0FYBdKI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91998BE/150E57C6CF4911EA9CC9353EC4F9AE02/0NDWzWh3DDh4O764QbES0FYBdKI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 07:d1:9b:d3:c7:42:22:3e:35:85:38:62:ec:42:96:de:27:b9: 86:b5:3a:9b:bb:b9:41:0a:19:68:2a:15:cf:ac:da:8d:82:9c: ed:65:f7:18:79:60:d7:79:78:43:e4:38:cc:b8:9d:33:d9:ad: 3f:1b:6a:9e:7b:30:26:3d:17:4b:6f:ab:50:c8:0b:eb:dc:85: 30:e4:e8:74:5b:db:cc:69:70:17:97:6c:ff:24:26:e2:14:59: 59:04:a0:3b:31:60:3d:26:47:24:e2:34:37:c6:15:8c:2c:b9: aa:53:65:f0:db:c6:db:8d:38:f9:4a:70:7b:6b:b2:fa:45:71: d1:2c:7f:18:a3:fb:2f:8b:76:e8:43:fc:56:81:d6:b5:30:68: 7d:7c:89:11:50:c2:f3:ff:55:65:58:98:4e:24:08:69:e0:c0: 8a:1b:01:60:07:26:13:ae:2a:04:c1:34:b2:0d:db:3d:b0:2e: b7:d1:bb:57:24:91:db:5b:32:b8:3d:86:25:63:59:7f:ce:b4: 04:63:9a:d4:20:6f:40:9a:29:f8:71:a5:d5:92:4e:07:89:71: ed:b2:20:ae:fb:0a:44:40:4a:83:2b:f3:cd:f2:93:cc:b2:cc: f3:54:7d:5a:cd:a6:5e:4b:96:03:bf:67:bf:81:df:fc:fc:d4: db:75:a9:5f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCIEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTk4QkUxMTAvBgNVBAUTKEQwRDBENkNENjg3NzBDMzg3ODNCQkVCODQxQjExMkQw NTYwMTc0QTIwHhcNMjUwNTEyMjAzNjU2WhcNMjUwNTE5MjAzNjU2WjAYMRYwFAYD VQQDEw02ODIyNWJlOC02Mzg1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2WnFGK+JJecjehrtGoAZhEdta76iPrn3Wq1+WoR2fCDs7pfJi0aNU4vxD3K/ f3C8m/mMQRS0/enpt+MlhhF0+EUHdINGJloFdyYfkkyxHQTUKzLKRB2QEykwookt x6U1neQ245sKShfdn3ZamDRlKf/uYB3ct73zW7gJg3ypCzaDZ5WcjO/ab4awEfLR ekJfZ2RuMrwDkSo5JBdg2GYG54BISYBdVwRvPO8IwdMWvAIuWQcm6M2qhcB8ReMW bGFEOf3MtSyt9SVI4AK98gX93YAnfO6GssjIFJYPYdrfE6RuTEP/AotbT2DVWR1G w3+vZq8O14V8OlxMmHz7Ic5S8wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDtjEW95 Bn/xdMe4qzkA6/152jPiMB8GA1UdIwQYMBaAFNDQ1s1odww4eDu+uEGxEtBWAXSi MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5OThCRS8xNTBFNTdDNkNG NDkxMUVBOUNDOTM1M0VDNEY5QUUwMi8wTkRXeldoM0REaDRPNzY0UWJFUzBGWUJk S0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzBORFd6V2gzRERoNE83NjRRYkVTMEZZQmRLSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 OThCRS8xNTBFNTdDNkNGNDkxMUVBOUNDOTM1M0VDNEY5QUUwMi8wTkRXeldoM0RE aDRPNzY0UWJFUzBGWUJkS0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAH0ZvTx0IiPjWFOGLsQpbeJ7mGtTqbu7lBChloKhXPrNqNgpztZfcY eWDXeXhD5DjMuJ0z2a0/G2qeezAmPRdLb6tQyAvr3IUw5Oh0W9vMaXAXl2z/JCbi FFlZBKA7MWA9Jkck4jQ3xhWMLLmqU2Xw28bbjTj5SnB7a7L6RXHRLH8Yo/svi3bo Q/xWgda1MGh9fIkRUMLz/1VlWJhOJAhp4MCKGwFgByYTrioEwTSyDds9sC630btX JJHbWzK4PYYlY1l/zrQEY5rUIG9Amin4caXVkk4HiXHtsiCu+wpEQEqDK/PN8pPM sszzVH1azaZeS5YDv2e/gd/8/NTbdalf -----END CERTIFICATE-----Generated at Wed May 14 04:49:05 2025 by rpki-client