$ rpki-client -vvf rpki.apnic.net/member_repository/A91A4B1A/B45F3FC4819A11ED8D61BA2BC4F9AE02/mFjOS0vHLnbmaMR9RImMCQiWq-s.mft File: mFjOS0vHLnbmaMR9RImMCQiWq-s.mft (raw, json) Hash identifier: /xVFzOkQ8HfRA14U5+RoDOfSTX5zGHC9y+nO+z4Pwko= Subject key identifier: 54:E2:E5:57:BF:BC:27:93:A1:4A:88:AE:0A:88:DC:CA:29:E0:48:AC Authority key identifier: 98:58:CE:4B:4B:C7:2E:76:E6:68:C4:7D:44:89:8C:09:08:96:AB:EB Certificate issuer: /CN=A91A4B1A/serialNumber=9858CE4B4BC72E76E668C47D44898C090896ABEB Certificate serial: 01D4 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/mFjOS0vHLnbmaMR9RImMCQiWq-s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A4B1A/B45F3FC4819A11ED8D61BA2BC4F9AE02/mFjOS0vHLnbmaMR9RImMCQiWq-s.mft Manifest number: 01CE Signing time: Mon 12 May 2025 16:03:12 +0000 Manifest this update: Mon 12 May 2025 16:03:11 +0000 Manifest next update: Mon 19 May 2025 16:03:11 +0000 Files and hashes: 1: mFjOS0vHLnbmaMR9RImMCQiWq-s.crl (hash: MCrsyvcu8+UbdQlq0wCd/h2bW31yKeNT7kcRXHd/Kuo=) 2: 4C3A869614DF11EEAB46A86DC4F9AE02.roa (hash: lu38CDRBmX2eL86FuDGblRO37V7hVT/nMCfbmUIJkQk=) 3: 4BC4F6A614DF11EEAB46A86DC4F9AE02.roa (hash: UFLmIYqMMQZsSlXO+J3Nx0+Pb9WqTG32RlxuAiHOUdE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A4B1A/B45F3FC4819A11ED8D61BA2BC4F9AE02/mFjOS0vHLnbmaMR9RImMCQiWq-s.crl rsync://rpki.apnic.net/member_repository/A91A4B1A/B45F3FC4819A11ED8D61BA2BC4F9AE02/mFjOS0vHLnbmaMR9RImMCQiWq-s.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/mFjOS0vHLnbmaMR9RImMCQiWq-s.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 19 May 2025 16:03:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 468 (0x1d4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A4B1A, serialNumber=9858CE4B4BC72E76E668C47D44898C090896ABEB Validity Not Before: May 12 16:03:11 2025 GMT Not After : May 19 16:03:11 2025 GMT Subject: CN=68221bc0-111b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:45:ba:0c:ea:20:4d:07:bc:23:0a:3c:9b:6f: fd:68:d6:fb:b4:a7:dd:c9:1a:e6:04:50:b9:97:c1: ff:bb:51:c1:48:ab:82:53:2e:e1:14:ae:64:b4:1e: e2:71:84:01:22:d3:c0:d8:d1:22:54:e4:bc:dc:fa: ee:51:9e:8f:38:b6:cd:cd:e3:32:85:52:0e:d9:dd: 3c:e8:14:a1:f4:ef:0d:27:96:42:62:18:f2:5f:dc: 4a:a5:fd:86:0f:16:bb:3c:48:e5:18:20:2c:7c:6a: c4:b6:8d:d0:b6:dd:e4:3c:8f:8d:59:87:6c:57:4c: 0b:d6:41:ff:52:aa:6c:0f:e2:33:b0:65:b9:3f:e1: c4:6b:fc:64:62:33:5b:8b:cb:68:59:cb:b9:85:df: 5c:dd:1d:ce:6c:42:0c:34:87:1f:7a:40:4c:4c:a9: 07:3d:f7:17:09:e2:45:0d:cd:24:39:43:a0:78:65: 5b:45:88:b5:a7:a1:08:31:ec:6b:f0:c7:f9:bf:f6: c3:63:1c:54:f5:6e:e0:36:7e:4d:b3:07:79:a2:36: 47:b7:7b:03:a0:2e:ca:13:06:b0:94:f7:29:75:05: 9d:56:d6:bb:22:1e:b4:87:66:ef:1e:1b:38:b5:df: 1f:f0:c3:d0:16:2c:8e:27:58:8a:6a:61:90:46:20: 7b:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 54:E2:E5:57:BF:BC:27:93:A1:4A:88:AE:0A:88:DC:CA:29:E0:48:AC X509v3 Authority Key Identifier: keyid:98:58:CE:4B:4B:C7:2E:76:E6:68:C4:7D:44:89:8C:09:08:96:AB:EB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A4B1A/B45F3FC4819A11ED8D61BA2BC4F9AE02/mFjOS0vHLnbmaMR9RImMCQiWq-s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/mFjOS0vHLnbmaMR9RImMCQiWq-s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A4B1A/B45F3FC4819A11ED8D61BA2BC4F9AE02/mFjOS0vHLnbmaMR9RImMCQiWq-s.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4d:b0:e1:6a:32:2c:03:76:f8:7b:e0:68:70:ab:99:15:42:74: a1:ec:74:ea:4c:c3:7b:69:5a:a3:47:1c:49:d0:8d:31:d6:fe: 78:07:43:ac:fe:12:51:15:f6:2f:87:a9:0b:4d:bc:b7:b0:c1: 92:12:a6:59:5e:4e:64:63:02:66:4a:65:2a:aa:bc:9b:4b:15: aa:12:09:89:1f:13:11:f0:71:60:2b:ac:30:bf:04:4f:fc:45: b9:12:9e:6b:25:38:83:f3:ed:be:20:62:ed:3f:c5:c2:38:35: 71:c4:1b:ce:90:d4:68:ac:7a:cc:44:7c:ae:58:66:f4:f7:bd: 05:66:00:0d:76:29:89:65:e2:45:be:14:36:0c:d3:b1:58:af: 05:e0:a9:2e:91:d6:1b:57:2b:85:a6:1a:49:32:5c:5b:0e:c9: 04:44:75:9c:2f:9c:3c:03:d1:d3:0c:ee:99:31:c6:71:de:05: ec:64:91:2f:dc:86:99:7a:dc:b0:d9:2b:48:aa:30:0e:25:76: 89:14:0b:16:9c:92:42:9a:29:2b:d3:9a:7e:00:26:bc:23:86: ed:ff:cb:0d:fb:68:f4:ba:26:eb:79:92:07:46:f0:7c:ac:b0: b3:66:23:ca:77:41:29:ce:d8:a3:bf:24:66:e7:76:4d:48:20: ac:a8:36:b2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAdQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTRCMUExMTAvBgNVBAUTKDk4NThDRTRCNEJDNzJFNzZFNjY4QzQ3RDQ0ODk4QzA5 MDg5NkFCRUIwHhcNMjUwNTEyMTYwMzExWhcNMjUwNTE5MTYwMzExWjAYMRYwFAYD VQQDEw02ODIyMWJjMC0xMTFiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsUW6DOogTQe8Iwo8m2/9aNb7tKfdyRrmBFC5l8H/u1HBSKuCUy7hFK5ktB7i cYQBItPA2NEiVOS83PruUZ6POLbNzeMyhVIO2d086BSh9O8NJ5ZCYhjyX9xKpf2G Dxa7PEjlGCAsfGrEto3Qtt3kPI+NWYdsV0wL1kH/UqpsD+IzsGW5P+HEa/xkYjNb i8toWcu5hd9c3R3ObEIMNIcfekBMTKkHPfcXCeJFDc0kOUOgeGVbRYi1p6EIMexr 8Mf5v/bDYxxU9W7gNn5Nswd5ojZHt3sDoC7KEwawlPcpdQWdVta7Ih60h2bvHhs4 td8f8MPQFiyOJ1iKamGQRiB7OwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFTi5Ve/ vCeToUqIrgqI3Mop4EisMB8GA1UdIwQYMBaAFJhYzktLxy525mjEfUSJjAkIlqvr MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNEIxQS9CNDVGM0ZDNDgx OUExMUVEOEQ2MUJBMkJDNEY5QUUwMi9tRmpPUzB2SExuYm1hTVI5UkltTUNRaVdx LXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL21Gak9TMHZITG5ibWFNUjlSSW1NQ1FpV3Etcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NEIxQS9CNDVGM0ZDNDgxOUExMUVEOEQ2MUJBMkJDNEY5QUUwMi9tRmpPUzB2SExu Ym1hTVI5UkltTUNRaVdxLXMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBNsOFqMiwDdvh74Ghwq5kVQnSh7HTqTMN7aVqjRxxJ0I0x1v54B0Os /hJRFfYvh6kLTby3sMGSEqZZXk5kYwJmSmUqqrybSxWqEgmJHxMR8HFgK6wwvwRP /EW5Ep5rJTiD8+2+IGLtP8XCODVxxBvOkNRorHrMRHyuWGb0970FZgANdimJZeJF vhQ2DNOxWK8F4KkukdYbVyuFphpJMlxbDskERHWcL5w8A9HTDO6ZMcZx3gXsZJEv 3IaZetyw2StIqjAOJXaJFAsWnJJCmikr05p+ACa8I4bt/8sN+2j0uibreZIHRvB8 rLCzZiPKd0EpztijvyRm53ZNSCCsqDay -----END CERTIFICATE-----Generated at Tue May 13 06:56:16 2025 by rpki-client