$ rpki-client -vvf rpki.apnic.net/member_repository/A91A4CAD/9FD97A0845C311EABEF5D439C4F9AE02/A6PIek8tglWUdvcc-u5ST_URNXk.mft File: A6PIek8tglWUdvcc-u5ST_URNXk.mft (raw, json) Hash identifier: j9xC+pPcC0WKr5qHFYNFbRkrMzqdE6+887eyVQhSoxg= Subject key identifier: 57:CE:57:0A:7F:64:DE:86:13:7E:10:6E:A6:ED:A5:AC:B6:FE:6E:BE Authority key identifier: 03:A3:C8:7A:4F:2D:82:55:94:76:F7:1C:FA:EE:52:4F:F5:11:35:79 Certificate issuer: /CN=A91A4CAD/serialNumber=03A3C87A4F2D82559476F71CFAEE524FF5113579 Certificate serial: 0AF1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/A6PIek8tglWUdvcc-u5ST_URNXk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A4CAD/9FD97A0845C311EABEF5D439C4F9AE02/A6PIek8tglWUdvcc-u5ST_URNXk.mft Manifest number: 0AE9 Signing time: Sun 04 May 2025 19:12:14 +0000 Manifest this update: Sun 04 May 2025 19:12:13 +0000 Manifest next update: Sun 11 May 2025 19:12:13 +0000 Files and hashes: 1: A6PIek8tglWUdvcc-u5ST_URNXk.crl (hash: rNwwqcZ88dCXX7t0MWIrtELRlWNbtnhkrZc9SU+kVfI=) 2: 6553D6106C2B11EA87ED1160C4F9AE02.roa (hash: BZiEWDD0IL9/iTmQj4cpibFzXusaM/aZuvYBDfGJDK8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A4CAD/9FD97A0845C311EABEF5D439C4F9AE02/A6PIek8tglWUdvcc-u5ST_URNXk.crl rsync://rpki.apnic.net/member_repository/A91A4CAD/9FD97A0845C311EABEF5D439C4F9AE02/A6PIek8tglWUdvcc-u5ST_URNXk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/A6PIek8tglWUdvcc-u5ST_URNXk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 11 May 2025 19:12:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2801 (0xaf1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A4CAD, serialNumber=03A3C87A4F2D82559476F71CFAEE524FF5113579 Validity Not Before: May 4 19:12:13 2025 GMT Not After : May 11 19:12:13 2025 GMT Subject: CN=6817bc0e-ded7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:0a:20:82:a4:78:eb:be:7b:87:d8:7a:00:ff: b6:1b:e3:61:43:68:5f:8f:c7:24:09:e2:88:49:7e: ed:3b:9f:f6:8f:b6:57:9e:d8:dc:6a:23:01:59:c3: f1:e3:96:70:af:73:90:40:0a:af:02:99:e7:ef:e0: 0b:dc:f7:e7:2f:62:e3:72:5d:9e:fe:63:74:ec:08: ee:77:21:e8:a0:eb:45:64:78:f9:12:0e:98:bf:b6: 6d:8e:36:0a:6b:76:64:28:65:2c:0e:3d:b3:8d:0f: 83:3b:29:28:27:6f:70:c8:57:83:85:25:60:f9:5d: f9:c9:8f:4d:f3:4f:d5:25:31:14:86:70:ef:74:b8: 6e:d4:7d:d8:c4:5d:55:7a:6e:03:42:68:69:31:e2: f6:02:0c:e5:e3:02:f0:83:70:e1:3c:43:2c:93:f0: 31:bd:12:f6:65:7a:82:28:09:99:92:4e:d8:7d:6c: 16:2e:d6:f9:f4:17:7e:1f:d9:9b:08:96:b7:90:20: 86:67:15:d9:9a:7a:82:ce:a7:58:58:61:d3:1e:41: db:7e:06:9d:fb:62:4d:34:30:6c:44:9a:b7:44:fb: e3:6c:93:57:60:62:b5:db:44:14:a6:4c:39:e0:0a: d0:7e:a7:25:36:aa:96:44:bb:49:25:a8:ed:4b:f3: 95:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 57:CE:57:0A:7F:64:DE:86:13:7E:10:6E:A6:ED:A5:AC:B6:FE:6E:BE X509v3 Authority Key Identifier: keyid:03:A3:C8:7A:4F:2D:82:55:94:76:F7:1C:FA:EE:52:4F:F5:11:35:79 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A4CAD/9FD97A0845C311EABEF5D439C4F9AE02/A6PIek8tglWUdvcc-u5ST_URNXk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/A6PIek8tglWUdvcc-u5ST_URNXk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A4CAD/9FD97A0845C311EABEF5D439C4F9AE02/A6PIek8tglWUdvcc-u5ST_URNXk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b3:73:51:81:e4:df:f1:10:70:19:69:e1:8b:fe:27:f6:ef:16: da:4f:69:22:c8:7d:64:ca:88:bc:10:c8:99:dc:91:f5:0e:7e: 31:7c:ea:0a:ab:19:a1:f2:66:11:41:04:b2:1f:d9:bb:78:44: 58:a7:e4:c0:8c:03:cc:59:e3:9d:35:15:22:b5:5d:95:6d:7b: 32:a7:c9:15:f3:1f:ac:67:bb:97:0a:79:4c:13:ad:cb:91:82: ef:06:3c:27:21:69:ec:0d:dd:c0:e1:11:90:c9:bc:2a:1a:f6: cb:5a:24:77:1a:44:18:43:56:b1:8c:3c:0d:a8:d8:9d:17:d6: 67:af:60:be:5f:d0:72:4f:1a:86:01:89:07:49:df:cf:0e:06: e8:1b:3a:d9:28:63:43:a2:30:c7:2e:df:0e:fd:5e:d4:8b:28: 29:fa:89:dd:d2:2a:44:4c:7c:36:53:a5:19:57:2e:93:22:af: a0:62:46:63:7b:a8:5b:a8:65:6b:2f:4a:9a:ed:a4:53:5f:3b: f8:28:c9:e0:20:bc:88:b9:8b:13:e0:ba:9a:75:e1:1d:00:e9: ab:2c:14:d8:39:96:67:3f:dd:5a:94:ed:9b:ff:7a:8d:9a:19: 2b:3c:88:fb:39:9f:26:82:8f:08:f2:65:f8:f0:a5:26:1d:c4: 96:aa:3f:8e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCvEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTRDQUQxMTAvBgNVBAUTKDAzQTNDODdBNEYyRDgyNTU5NDc2RjcxQ0ZBRUU1MjRG RjUxMTM1NzkwHhcNMjUwNTA0MTkxMjEzWhcNMjUwNTExMTkxMjEzWjAYMRYwFAYD VQQDEw02ODE3YmMwZS1kZWQ3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvgoggqR46757h9h6AP+2G+NhQ2hfj8ckCeKISX7tO5/2j7ZXntjcaiMBWcPx 45Zwr3OQQAqvApnn7+AL3PfnL2Ljcl2e/mN07AjudyHooOtFZHj5Eg6Yv7ZtjjYK a3ZkKGUsDj2zjQ+DOykoJ29wyFeDhSVg+V35yY9N80/VJTEUhnDvdLhu1H3YxF1V em4DQmhpMeL2Agzl4wLwg3DhPEMsk/AxvRL2ZXqCKAmZkk7YfWwWLtb59Bd+H9mb CJa3kCCGZxXZmnqCzqdYWGHTHkHbfgad+2JNNDBsRJq3RPvjbJNXYGK120QUpkw5 4ArQfqclNqqWRLtJJajtS/OVdwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFfOVwp/ ZN6GE34Qbqbtpay2/m6+MB8GA1UdIwQYMBaAFAOjyHpPLYJVlHb3HPruUk/1ETV5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNENBRC85RkQ5N0EwODQ1 QzMxMUVBQkVGNUQ0MzlDNEY5QUUwMi9BNlBJZWs4dGdsV1VkdmNjLXU1U1RfVVJO WGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0E2UEllazh0Z2xXVWR2Y2MtdTVTVF9VUk5Yay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NENBRC85RkQ5N0EwODQ1QzMxMUVBQkVGNUQ0MzlDNEY5QUUwMi9BNlBJZWs4dGds V1VkdmNjLXU1U1RfVVJOWGsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCzc1GB5N/xEHAZaeGL/if27xbaT2kiyH1kyoi8EMiZ3JH1Dn4xfOoK qxmh8mYRQQSyH9m7eERYp+TAjAPMWeOdNRUitV2VbXsyp8kV8x+sZ7uXCnlME63L kYLvBjwnIWnsDd3A4RGQybwqGvbLWiR3GkQYQ1axjDwNqNidF9Znr2C+X9ByTxqG AYkHSd/PDgboGzrZKGNDojDHLt8O/V7Uiygp+ond0ipETHw2U6UZVy6TIq+gYkZj e6hbqGVrL0qa7aRTXzv4KMngILyIuYsT4LqadeEdAOmrLBTYOZZnP91alO2b/3qN mhkrPIj7OZ8mgo8I8mX48KUmHcSWqj+O -----END CERTIFICATE-----Generated at Mon May 5 03:07:32 2025 by rpki-client