$ rpki-client -vvf rpki.apnic.net/member_repository/A91A0E9D/9569ADB495DB11EFA4E2FB45C4F9AE02/0hsNWsWvkZAPUK2WADMT5R7WChA.mft File: 0hsNWsWvkZAPUK2WADMT5R7WChA.mft (raw, json) Hash identifier: YldRYIwDQtaGvIECN/7JevvuyuWHkZJeJ0gJZ0F1h6w= Subject key identifier: BA:0A:5D:D9:00:CC:08:17:1D:DF:7F:BF:9C:C2:4D:87:D3:E8:91:BF Authority key identifier: D2:1B:0D:5A:C5:AF:91:90:0F:50:AD:96:00:33:13:E5:1E:D6:0A:10 Certificate issuer: /CN=A91A0E9D/serialNumber=D21B0D5AC5AF91900F50AD96003313E51ED60A10 Certificate serial: 78 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0hsNWsWvkZAPUK2WADMT5R7WChA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A0E9D/9569ADB495DB11EFA4E2FB45C4F9AE02/0hsNWsWvkZAPUK2WADMT5R7WChA.mft Manifest number: 6F Signing time: Sun 11 May 2025 05:45:31 +0000 Manifest this update: Sun 11 May 2025 05:45:31 +0000 Manifest next update: Sun 18 May 2025 05:45:31 +0000 Files and hashes: 1: 0hsNWsWvkZAPUK2WADMT5R7WChA.crl (hash: 184Xu07znLYR/r4A7yyzobLuITrWA4fCo2EGessTnKI=) 2: 3996C94896D211EF924C486FC4F9AE02.roa (hash: jPKROmghkPyJWap1Ck0b+pE8AGKhobQAaRNerFhIWOA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A0E9D/9569ADB495DB11EFA4E2FB45C4F9AE02/0hsNWsWvkZAPUK2WADMT5R7WChA.crl rsync://rpki.apnic.net/member_repository/A91A0E9D/9569ADB495DB11EFA4E2FB45C4F9AE02/0hsNWsWvkZAPUK2WADMT5R7WChA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0hsNWsWvkZAPUK2WADMT5R7WChA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 18 May 2025 05:45:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 120 (0x78) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A0E9D, serialNumber=D21B0D5AC5AF91900F50AD96003313E51ED60A10 Validity Not Before: May 11 05:45:31 2025 GMT Not After : May 18 05:45:31 2025 GMT Subject: CN=6820397b-fe82 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:7a:d3:46:49:3a:d2:35:48:97:11:07:3c:fd: 80:a5:64:20:9a:ce:ae:7f:13:ac:ee:db:b2:57:9a: 4b:f0:6f:45:96:98:56:90:58:58:d9:4d:43:09:0a: c1:14:3f:64:60:6f:a9:d8:c5:0c:0c:fb:4a:28:fc: b0:8c:7d:bf:c0:e5:a2:98:54:55:b6:39:1c:8a:08: 42:c5:7e:c4:fa:fe:42:5c:34:eb:0f:39:65:8b:3d: e5:07:d6:09:ff:5d:2b:fc:31:9d:23:4d:bb:ca:eb: 0f:bc:93:a2:11:14:e0:c2:75:91:1f:8b:be:70:40: 1d:40:87:4f:22:46:3a:dc:88:81:bc:0a:d0:d3:0a: ca:26:03:7f:28:02:b4:74:d6:f9:d1:3d:76:7b:3c: a5:21:09:b4:ba:82:ac:22:75:b3:8d:3b:78:88:e9: fc:bc:61:9d:10:a0:61:0a:08:65:fc:d8:55:a1:4f: c1:8b:dc:4a:db:e8:d7:fd:8d:18:ba:c2:4a:4c:a4: 19:ca:63:08:d4:f2:7a:43:ee:9e:fb:3e:b0:ed:cc: 12:ca:28:09:97:36:2f:68:ec:bd:b0:10:1d:3d:ce: 6b:ce:4c:8e:6c:ae:6c:b8:80:f1:6d:27:8a:0c:24: f3:2b:83:36:7b:34:78:63:19:e1:81:18:28:95:41: c5:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BA:0A:5D:D9:00:CC:08:17:1D:DF:7F:BF:9C:C2:4D:87:D3:E8:91:BF X509v3 Authority Key Identifier: keyid:D2:1B:0D:5A:C5:AF:91:90:0F:50:AD:96:00:33:13:E5:1E:D6:0A:10 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A0E9D/9569ADB495DB11EFA4E2FB45C4F9AE02/0hsNWsWvkZAPUK2WADMT5R7WChA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0hsNWsWvkZAPUK2WADMT5R7WChA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A0E9D/9569ADB495DB11EFA4E2FB45C4F9AE02/0hsNWsWvkZAPUK2WADMT5R7WChA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4e:2d:ca:c9:08:f2:d1:1a:d1:66:cd:d1:12:16:6a:f7:3e:1e: 37:4c:d9:89:12:d9:88:af:86:d2:c5:5a:4f:a2:7b:61:9e:2a: ed:6f:ec:12:b9:3d:46:46:3f:2b:fa:e1:f3:82:2c:9f:f8:11: df:20:0f:e0:19:af:b8:0a:df:87:10:76:8d:87:e4:75:86:a3: a9:05:a4:f8:9c:69:75:45:34:da:2a:46:c5:5d:14:51:66:54: c4:09:5e:57:21:65:73:90:18:c5:80:51:30:84:8b:25:52:19: cb:45:2b:91:3d:4a:ff:b3:f0:40:84:83:6c:06:6f:25:0e:b6: 6c:7d:f2:60:da:30:45:ff:3c:54:9e:30:09:b5:47:a3:16:2a: e9:05:81:c0:86:35:14:06:d7:64:c6:3e:97:28:85:27:f9:53: a1:1f:fb:55:ef:c4:6f:0b:12:1c:95:31:4b:49:59:89:c1:c6: 1f:b7:36:cc:59:6e:e4:79:69:30:f7:48:be:8f:e4:ef:4a:47: f6:55:7b:6e:5d:11:7e:21:77:2e:b7:da:1c:4a:f5:e9:67:70: c4:be:ca:e7:b5:5a:32:9d:f3:49:b8:2c:37:22:8c:26:dc:19: ec:68:fd:3f:c7:63:9a:18:df:10:21:6b:52:f6:ac:66:11:41: c1:21:39:d8 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBeDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFB MEU5RDExMC8GA1UEBRMoRDIxQjBENUFDNUFGOTE5MDBGNTBBRDk2MDAzMzEzRTUx RUQ2MEExMDAeFw0yNTA1MTEwNTQ1MzFaFw0yNTA1MTgwNTQ1MzFaMBgxFjAUBgNV BAMTDTY4MjAzOTdiLWZlODIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDGetNGSTrSNUiXEQc8/YClZCCazq5/E6zu27JXmkvwb0WWmFaQWFjZTUMJCsEU P2Rgb6nYxQwM+0oo/LCMfb/A5aKYVFW2ORyKCELFfsT6/kJcNOsPOWWLPeUH1gn/ XSv8MZ0jTbvK6w+8k6IRFODCdZEfi75wQB1Ah08iRjrciIG8CtDTCsomA38oArR0 1vnRPXZ7PKUhCbS6gqwidbONO3iI6fy8YZ0QoGEKCGX82FWhT8GL3Erb6Nf9jRi6 wkpMpBnKYwjU8npD7p77PrDtzBLKKAmXNi9o7L2wEB09zmvOTI5srmy4gPFtJ4oM JPMrgzZ7NHhjGeGBGCiVQcXbAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUugpd2QDM CBcd33+/nMJNh9Pokb8wHwYDVR0jBBgwFoAU0hsNWsWvkZAPUK2WADMT5R7WChAw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUEwRTlELzk1NjlBREI0OTVE QjExRUZBNEUyRkI0NUM0RjlBRTAyLzBoc05Xc1d2a1pBUFVLMldBRE1UNVI3V0No QS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvMGhzTldzV3ZrWkFQVUsyV0FETVQ1UjdXQ2hBLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUEw RTlELzk1NjlBREI0OTVEQjExRUZBNEUyRkI0NUM0RjlBRTAyLzBoc05Xc1d2a1pB UFVLMldBRE1UNVI3V0NoQS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAE4tyskI8tEa0WbN0RIWavc+HjdM2YkS2YivhtLFWk+ie2GeKu1v7BK5 PUZGPyv64fOCLJ/4Ed8gD+AZr7gK34cQdo2H5HWGo6kFpPicaXVFNNoqRsVdFFFm VMQJXlchZXOQGMWAUTCEiyVSGctFK5E9Sv+z8ECEg2wGbyUOtmx98mDaMEX/PFSe MAm1R6MWKukFgcCGNRQG12TGPpcohSf5U6Ef+1XvxG8LEhyVMUtJWYnBxh+3NsxZ buR5aTD3SL6P5O9KR/ZVe25dEX4hdy632hxK9elncMS+yue1WjKd80m4LDcijCbc Gexo/T/HY5oY3xAha1L2rGYRQcEhOdg= -----END CERTIFICATE-----Generated at Mon May 12 22:23:59 2025 by rpki-client