$ rpki-client -vvf rpki.apnic.net/member_repository/A91A2A1F/1ECFFC4C621911EC99A55F3EC4F9AE02/aTn8BA2lwwt2bceU-cpML0Gsruo.mft File: aTn8BA2lwwt2bceU-cpML0Gsruo.mft (raw, json) Hash identifier: BiknRoD5S0BNeiYXs26OD1yd6JcRzcQcjYSTCdbyeO0= Subject key identifier: 6C:6B:EE:73:27:EC:78:DE:85:82:BA:92:B8:1D:A5:49:F6:CF:CA:5A Authority key identifier: 69:39:FC:04:0D:A5:C3:0B:76:6D:C7:94:F9:CA:4C:2F:41:AC:AE:EA Certificate issuer: /CN=A91A2A1F/serialNumber=6939FC040DA5C30B766DC794F9CA4C2F41ACAEEA Certificate serial: 044D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aTn8BA2lwwt2bceU-cpML0Gsruo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A2A1F/1ECFFC4C621911EC99A55F3EC4F9AE02/aTn8BA2lwwt2bceU-cpML0Gsruo.mft Manifest number: 0434 Signing time: Fri 09 May 2025 00:10:53 +0000 Manifest this update: Fri 09 May 2025 00:10:53 +0000 Manifest next update: Fri 16 May 2025 00:10:53 +0000 Files and hashes: 1: aTn8BA2lwwt2bceU-cpML0Gsruo.crl (hash: tLAxx5q56sX1NKncMKCadzDTTv2ulJxUI7wRZxBYY7k=) 2: 17ABE41ACAF611EE894A2D50C4F9AE02.roa (hash: 7f1bmEuDQ5Sbosdy6FQn3ysHUO4D+FPE7x81aIvfa7s=) 3: 27E42824621B11ECB96F443FC4F9AE02.roa (hash: 0VIXrT5lkbzWq5yzVw+gOO/11yudXxUHr9urUbsKFX0=) 4: 63E8739003C111EEB2272068C4F9AE02.roa (hash: AjzVSaaH9fWXVN9n877r+FmZlcwm85Oz5kawF/sl3R0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A2A1F/1ECFFC4C621911EC99A55F3EC4F9AE02/aTn8BA2lwwt2bceU-cpML0Gsruo.crl rsync://rpki.apnic.net/member_repository/A91A2A1F/1ECFFC4C621911EC99A55F3EC4F9AE02/aTn8BA2lwwt2bceU-cpML0Gsruo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aTn8BA2lwwt2bceU-cpML0Gsruo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 16 May 2025 00:10:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1101 (0x44d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A2A1F, serialNumber=6939FC040DA5C30B766DC794F9CA4C2F41ACAEEA Validity Not Before: May 9 00:10:53 2025 GMT Not After : May 16 00:10:53 2025 GMT Subject: CN=681d480d-c76f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:1a:3d:e9:26:f3:c6:aa:8c:5b:01:e3:c0:e8: 80:3f:8c:30:05:4d:ac:0d:9a:4b:12:3a:18:57:38: 85:ac:75:dc:a4:a9:82:6c:1f:2b:ef:80:aa:39:fa: d4:44:69:7d:aa:82:df:c6:ec:f5:1f:49:c3:05:e9: df:43:93:4e:df:1b:1b:39:b8:c1:ab:01:51:8e:8d: 2b:28:8c:9d:18:d9:45:f3:e3:48:95:67:82:5b:9c: ce:af:ce:68:30:55:aa:fd:5f:8c:4d:b1:af:ae:5a: 43:e0:98:43:db:cb:e2:d6:23:c1:d1:6f:29:84:cf: 4a:11:38:7c:af:8b:be:3e:89:b1:3c:82:2a:cd:d3: 68:ca:80:e7:d0:04:94:8d:4f:cb:f9:e2:e8:dd:dd: bb:da:24:40:78:ae:5b:de:c2:36:6f:9c:a4:52:15: ba:76:93:35:34:2b:a9:e6:08:61:c0:4a:84:02:fa: 00:cb:f3:a6:c5:54:9c:b0:8d:61:b8:ba:b7:00:e0: 92:30:43:cd:74:08:76:03:22:16:55:13:35:2c:75: 95:48:be:f6:f6:4b:d7:50:38:e9:af:6f:9a:a0:2a: 07:aa:48:6e:6b:21:e0:fe:f9:10:2f:0f:ad:f5:66: a4:9a:8d:66:30:d0:bb:19:96:90:4a:67:cf:fc:ef: 4a:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6C:6B:EE:73:27:EC:78:DE:85:82:BA:92:B8:1D:A5:49:F6:CF:CA:5A X509v3 Authority Key Identifier: keyid:69:39:FC:04:0D:A5:C3:0B:76:6D:C7:94:F9:CA:4C:2F:41:AC:AE:EA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A2A1F/1ECFFC4C621911EC99A55F3EC4F9AE02/aTn8BA2lwwt2bceU-cpML0Gsruo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aTn8BA2lwwt2bceU-cpML0Gsruo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A2A1F/1ECFFC4C621911EC99A55F3EC4F9AE02/aTn8BA2lwwt2bceU-cpML0Gsruo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a1:4b:55:65:96:84:9e:f0:bf:4d:de:de:d0:aa:d8:61:88:92: 16:bf:d0:a3:a4:03:53:2f:0e:53:01:d5:ec:49:f3:b1:bd:f3: 9d:8c:c5:c2:ae:fe:79:dc:12:c3:a2:5c:d3:8d:2b:97:bd:8a: 2b:b1:93:cb:2d:f6:36:5c:75:af:7a:cb:d7:be:bb:57:20:f0: 1f:c1:3a:fc:58:32:b8:c7:86:db:9c:25:d9:d6:d1:f7:02:92: e2:6a:b5:25:1a:6d:8e:c9:db:69:82:bd:34:26:f2:e0:99:7a: 30:d2:1f:b6:68:fb:7e:8c:85:15:a5:39:da:39:80:4a:e6:42: 6c:80:fd:1a:29:eb:f9:79:0b:7d:93:6a:d6:89:32:74:d5:3b: 19:2c:9b:54:9f:2e:2d:ec:a3:d2:04:4b:da:fd:bf:c3:7a:05: 89:23:12:2a:a7:59:66:b1:ef:db:0e:9d:44:c0:d3:dd:17:ac: fd:0d:e3:5c:a4:86:b3:7d:5a:11:90:86:bd:7f:09:90:9b:2c: da:de:a2:97:c0:41:e6:75:20:f0:91:ae:56:75:f5:85:c1:81: 0e:9f:8e:19:0e:ed:8b:d0:55:c5:04:b7:37:e0:2e:c2:6e:16: d8:5c:90:3e:11:9a:bc:54:97:b9:84:f6:92:cf:d7:d8:c7:a7: 3a:b7:60:cd -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBE0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTJBMUYxMTAvBgNVBAUTKDY5MzlGQzA0MERBNUMzMEI3NjZEQzc5NEY5Q0E0QzJG NDFBQ0FFRUEwHhcNMjUwNTA5MDAxMDUzWhcNMjUwNTE2MDAxMDUzWjAYMRYwFAYD VQQDEw02ODFkNDgwZC1jNzZmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAlRo96SbzxqqMWwHjwOiAP4wwBU2sDZpLEjoYVziFrHXcpKmCbB8r74CqOfrU RGl9qoLfxuz1H0nDBenfQ5NO3xsbObjBqwFRjo0rKIydGNlF8+NIlWeCW5zOr85o MFWq/V+MTbGvrlpD4JhD28vi1iPB0W8phM9KETh8r4u+PomxPIIqzdNoyoDn0ASU jU/L+eLo3d272iRAeK5b3sI2b5ykUhW6dpM1NCup5ghhwEqEAvoAy/OmxVScsI1h uLq3AOCSMEPNdAh2AyIWVRM1LHWVSL729kvXUDjpr2+aoCoHqkhuayHg/vkQLw+t 9Wakmo1mMNC7GZaQSmfP/O9KOQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGxr7nMn 7HjehYK6krgdpUn2z8paMB8GA1UdIwQYMBaAFGk5/AQNpcMLdm3HlPnKTC9BrK7q MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMkExRi8xRUNGRkM0QzYy MTkxMUVDOTlBNTVGM0VDNEY5QUUwMi9hVG44QkEybHd3dDJiY2VVLWNwTUwwR3Ny dW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FUbjhCQTJsd3d0MmJjZVUtY3BNTDBHc3J1by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MkExRi8xRUNGRkM0QzYyMTkxMUVDOTlBNTVGM0VDNEY5QUUwMi9hVG44QkEybHd3 dDJiY2VVLWNwTUwwR3NydW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQChS1VlloSe8L9N3t7QqthhiJIWv9CjpANTLw5TAdXsSfOxvfOdjMXC rv553BLDolzTjSuXvYorsZPLLfY2XHWvesvXvrtXIPAfwTr8WDK4x4bbnCXZ1tH3 ApLiarUlGm2Oydtpgr00JvLgmXow0h+2aPt+jIUVpTnaOYBK5kJsgP0aKev5eQt9 k2rWiTJ01TsZLJtUny4t7KPSBEva/b/DegWJIxIqp1lmse/bDp1EwNPdF6z9DeNc pIazfVoRkIa9fwmQmyza3qKXwEHmdSDwka5WdfWFwYEOn44ZDu2L0FXFBLc34C7C bhbYXJA+EZq8VJe5hPaSz9fYx6c6t2DN -----END CERTIFICATE-----Generated at Sat May 10 18:43:07 2025 by rpki-client