$ rpki-client -vvf rpki.apnic.net/member_repository/A91A560A/B9953DBA1D8A11E2A387D0E408B02CD2/httX5pD30wkpOii6fFX7ivN9Xb0.mft File: httX5pD30wkpOii6fFX7ivN9Xb0.mft (raw, json) Hash identifier: qBfT8up0j/aU9zYxQ4EOCvdB1db97bWtOAnHTKX7uGw= Subject key identifier: F5:23:3C:A6:3C:52:9F:9B:69:2E:BC:59:1B:ED:0A:8B:4E:EB:6C:BC Authority key identifier: 86:DB:57:E6:90:F7:D3:09:29:3A:28:BA:7C:55:FB:8A:F3:7D:5D:BD Certificate issuer: /CN=A91A560A/serialNumber=86DB57E690F7D309293A28BA7C55FB8AF37D5DBD Certificate serial: 366E Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/httX5pD30wkpOii6fFX7ivN9Xb0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A560A/B9953DBA1D8A11E2A387D0E408B02CD2/httX5pD30wkpOii6fFX7ivN9Xb0.mft Manifest number: 366D Signing time: Sat 10 May 2025 14:32:42 +0000 Manifest this update: Sat 10 May 2025 14:32:42 +0000 Manifest next update: Sat 17 May 2025 14:32:42 +0000 Files and hashes: 1: httX5pD30wkpOii6fFX7ivN9Xb0.crl (hash: rcCYjs8iBW8UermYpPKdZt7iNyQX8YgfZnLmZFRMWeY=) 2: 3B8DEC18F67C11EFA12FD55AC4F9AE02.roa (hash: nh94eTTHYj6LF33H1WS71VdzV0Cak2sfzem+EZwjKa8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A560A/B9953DBA1D8A11E2A387D0E408B02CD2/httX5pD30wkpOii6fFX7ivN9Xb0.crl rsync://rpki.apnic.net/member_repository/A91A560A/B9953DBA1D8A11E2A387D0E408B02CD2/httX5pD30wkpOii6fFX7ivN9Xb0.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/httX5pD30wkpOii6fFX7ivN9Xb0.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 17 May 2025 14:32:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13934 (0x366e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A560A, serialNumber=86DB57E690F7D309293A28BA7C55FB8AF37D5DBD Validity Not Before: May 10 14:32:42 2025 GMT Not After : May 17 14:32:42 2025 GMT Subject: CN=681f638a-0736 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:81:d0:82:68:24:30:be:0f:6c:3a:90:30:65: 05:48:75:d7:cc:96:bd:52:4a:30:50:dd:a4:68:27: 6b:5f:01:2c:d4:9c:30:fb:30:da:e7:0d:2a:f3:f5: 0f:95:e8:dd:fc:ff:25:ce:58:25:20:7d:79:01:cc: a5:81:72:23:f5:15:91:02:df:4d:ee:5a:ee:b5:ff: a9:16:16:eb:62:74:ec:7d:40:6d:e2:26:5b:52:48: b5:f2:4e:0d:37:d9:4b:06:3d:8a:99:5a:1e:ce:d2: f6:e4:2f:4f:77:bf:ad:d4:58:df:1d:c2:be:3f:6a: c1:44:a7:7a:2c:ce:5f:ef:3e:bd:34:27:41:1b:01: 77:68:3b:c2:9e:e2:fe:46:d1:5c:7b:99:b1:7c:60: f2:12:c1:80:d4:57:e3:1c:16:b7:ac:ec:d3:f7:70: a9:f9:13:fc:4b:af:33:90:39:5a:cf:41:da:cf:78: 16:1a:0a:c0:a5:b5:35:14:48:0c:1b:e0:28:7d:05: 00:fe:3a:44:4f:db:05:9e:69:59:a1:a3:36:72:b5: c3:fc:69:99:ba:7f:0d:c4:2d:fd:3f:2b:7d:eb:6c: 46:1f:91:ad:cf:f8:05:92:30:3e:20:04:cf:03:58: 0c:9f:17:7e:9c:e3:87:78:34:47:9c:8d:5c:9a:87: 48:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F5:23:3C:A6:3C:52:9F:9B:69:2E:BC:59:1B:ED:0A:8B:4E:EB:6C:BC X509v3 Authority Key Identifier: keyid:86:DB:57:E6:90:F7:D3:09:29:3A:28:BA:7C:55:FB:8A:F3:7D:5D:BD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A560A/B9953DBA1D8A11E2A387D0E408B02CD2/httX5pD30wkpOii6fFX7ivN9Xb0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/httX5pD30wkpOii6fFX7ivN9Xb0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A560A/B9953DBA1D8A11E2A387D0E408B02CD2/httX5pD30wkpOii6fFX7ivN9Xb0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 49:27:a8:f1:e3:b2:47:8d:8c:8e:94:68:51:af:76:0f:7c:2c: 42:0b:fa:53:fa:04:b5:78:78:ac:bb:8d:56:2f:32:e7:5a:30: 0b:c6:6a:f5:ef:58:f4:dd:32:08:4b:90:58:d6:b8:08:73:51: db:69:20:ff:b1:53:f3:1a:9a:9d:54:2d:93:67:c1:1b:79:58: 9d:af:0c:a9:80:5a:af:cd:42:61:29:bd:ff:b2:95:37:64:62: b7:8c:9d:d3:3b:3b:30:b5:30:c6:bc:c4:c0:2e:12:d3:d8:ef: e5:6a:00:d5:71:16:30:82:8c:f2:19:4e:56:b7:f7:1f:54:69: 3e:c6:f4:ee:8d:1c:93:04:c9:fa:d4:11:c5:3a:af:48:25:86: 68:1d:a0:46:bd:46:c0:c6:18:71:29:c1:d4:64:9d:59:57:53: de:4d:e6:c5:d5:4b:e5:6d:10:9b:37:20:23:06:01:d2:dc:8a: b3:a8:56:69:15:a4:98:6f:5a:15:c2:2b:3d:11:62:d9:8d:67: ad:bd:7b:fa:c4:b8:7c:b5:d9:b8:12:4a:54:d8:0d:16:83:25: 31:a1:2b:ae:0c:65:bb:21:25:92:ee:fa:f8:e8:d4:71:54:e2: b7:94:86:0a:fb:b0:4b:02:60:45:c4:8e:08:3b:39:19:f5:39: 1b:8b:e3:9a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNm4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU2MEExMTAvBgNVBAUTKDg2REI1N0U2OTBGN0QzMDkyOTNBMjhCQTdDNTVGQjhB RjM3RDVEQkQwHhcNMjUwNTEwMTQzMjQyWhcNMjUwNTE3MTQzMjQyWjAYMRYwFAYD VQQDEw02ODFmNjM4YS0wNzM2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuYHQgmgkML4PbDqQMGUFSHXXzJa9UkowUN2kaCdrXwEs1Jww+zDa5w0q8/UP lejd/P8lzlglIH15AcylgXIj9RWRAt9N7lrutf+pFhbrYnTsfUBt4iZbUki18k4N N9lLBj2KmVoeztL25C9Pd7+t1FjfHcK+P2rBRKd6LM5f7z69NCdBGwF3aDvCnuL+ RtFce5mxfGDyEsGA1FfjHBa3rOzT93Cp+RP8S68zkDlaz0Haz3gWGgrApbU1FEgM G+AofQUA/jpET9sFnmlZoaM2crXD/GmZun8NxC39Pyt962xGH5Gtz/gFkjA+IATP A1gMnxd+nOOHeDRHnI1cmodIswIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPUjPKY8 Up+baS68WRvtCotO62y8MB8GA1UdIwQYMBaAFIbbV+aQ99MJKToounxV+4rzfV29 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTYwQS9COTk1M0RCQTFE OEExMUUyQTM4N0QwRTQwOEIwMkNEMi9odHRYNXBEMzB3a3BPaWk2ZkZYN2l2TjlY YjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL2h0dFg1cEQzMHdrcE9paTZmRlg3aXZOOVhiMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NTYwQS9COTk1M0RCQTFEOEExMUUyQTM4N0QwRTQwOEIwMkNEMi9odHRYNXBEMzB3 a3BPaWk2ZkZYN2l2TjlYYjAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBJJ6jx47JHjYyOlGhRr3YPfCxCC/pT+gS1eHisu41WLzLnWjALxmr1 71j03TIIS5BY1rgIc1HbaSD/sVPzGpqdVC2TZ8EbeVidrwypgFqvzUJhKb3/spU3 ZGK3jJ3TOzswtTDGvMTALhLT2O/lagDVcRYwgozyGU5Wt/cfVGk+xvTujRyTBMn6 1BHFOq9IJYZoHaBGvUbAxhhxKcHUZJ1ZV1PeTebF1UvlbRCbNyAjBgHS3IqzqFZp FaSYb1oVwis9EWLZjWetvXv6xLh8tdm4EkpU2A0WgyUxoSuuDGW7ISWS7vr46NRx VOK3lIYK+7BLAmBFxI4IOzkZ9Tkbi+Oa -----END CERTIFICATE-----Generated at Sun May 11 00:50:18 2025 by rpki-client