$ rpki-client -vvf rpki.apnic.net/member_repository/A91A99F8/7A4D7B8804A711F0B4D73982C4F9AE02/-c2wYYjVT9E3MDC5IMjkRdstPVc.mft File: -c2wYYjVT9E3MDC5IMjkRdstPVc.mft (raw, json) Hash identifier: OGFEx6ljZZBV5Eq3IxNIUcrE6GhaEciUdu3rvVigLJQ= Subject key identifier: 74:8C:4B:E4:F5:D8:E1:66:AA:42:97:D2:97:80:3D:9C:91:31:B6:A1 Authority key identifier: F9:CD:B0:61:88:D5:4F:D1:37:30:30:B9:20:C8:E4:45:DB:2D:3D:57 Certificate issuer: /CN=A91A99F8/serialNumber=F9CDB06188D54FD1373030B920C8E445DB2D3D57 Certificate serial: 23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-c2wYYjVT9E3MDC5IMjkRdstPVc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A99F8/7A4D7B8804A711F0B4D73982C4F9AE02/-c2wYYjVT9E3MDC5IMjkRdstPVc.mft Manifest number: 22 Signing time: Sun 11 May 2025 06:38:37 +0000 Manifest this update: Sun 11 May 2025 06:38:36 +0000 Manifest next update: Sun 18 May 2025 06:38:36 +0000 Files and hashes: 1: -c2wYYjVT9E3MDC5IMjkRdstPVc.crl (hash: KbyadEvSFSIsFHOYszs/YR/bLvq0aGb+GU6zL/jEHDA=) 2: 2C85E816062011F0B0CCFB73C4F9AE02.roa (hash: 8aYqOb0WxmeZs6QAtf0y7rudLC0LQSdIL+LI3T4/O2Y=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A99F8/7A4D7B8804A711F0B4D73982C4F9AE02/-c2wYYjVT9E3MDC5IMjkRdstPVc.crl rsync://rpki.apnic.net/member_repository/A91A99F8/7A4D7B8804A711F0B4D73982C4F9AE02/-c2wYYjVT9E3MDC5IMjkRdstPVc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-c2wYYjVT9E3MDC5IMjkRdstPVc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 18 May 2025 06:38:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 35 (0x23) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A99F8, serialNumber=F9CDB06188D54FD1373030B920C8E445DB2D3D57 Validity Not Before: May 11 06:38:36 2025 GMT Not After : May 18 06:38:36 2025 GMT Subject: CN=682045ec-fb94 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:9f:eb:f5:d9:47:ed:03:2c:8d:24:3b:3f:bb: 91:1d:e9:78:f7:e7:bd:37:46:24:c2:95:d9:3a:bf: da:ea:17:31:2d:e6:02:db:5c:af:8e:8d:94:db:f7: 68:48:51:ca:29:e6:35:43:c7:91:ec:29:1f:1b:19: 17:74:94:9b:76:3f:77:65:2c:53:20:90:ad:eb:4e: 20:7e:e4:3c:99:c3:b2:f8:0f:48:7d:da:91:ed:ea: af:3d:c5:de:7c:63:68:c8:ce:a6:a6:7b:b0:66:0e: 88:b0:ce:57:ad:0a:b7:e5:47:e7:17:bd:41:51:de: 45:ed:85:19:42:35:f6:78:f5:8c:36:71:77:01:f8: 8b:34:69:bb:c4:a1:c7:d1:ca:80:0f:6d:6a:1f:a4: c1:23:81:68:41:82:2a:41:35:bb:2e:71:a9:d4:e6: 2c:fa:a5:d6:a4:61:56:77:83:f1:8d:6e:76:60:e8: 9e:c6:4e:f4:d6:30:ec:24:88:75:42:55:30:48:75: 2b:0e:47:3c:8d:a3:dc:11:a7:4b:be:34:4a:c5:bf: 58:58:bb:72:97:4f:9b:10:db:66:b1:0d:52:a6:3d: 7d:95:a6:ba:db:07:78:e3:8d:a2:9b:da:3a:46:0c: cb:d3:01:96:fd:37:00:c8:07:a6:2a:c3:0c:c8:8b: 0e:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 74:8C:4B:E4:F5:D8:E1:66:AA:42:97:D2:97:80:3D:9C:91:31:B6:A1 X509v3 Authority Key Identifier: keyid:F9:CD:B0:61:88:D5:4F:D1:37:30:30:B9:20:C8:E4:45:DB:2D:3D:57 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A99F8/7A4D7B8804A711F0B4D73982C4F9AE02/-c2wYYjVT9E3MDC5IMjkRdstPVc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-c2wYYjVT9E3MDC5IMjkRdstPVc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A99F8/7A4D7B8804A711F0B4D73982C4F9AE02/-c2wYYjVT9E3MDC5IMjkRdstPVc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 18:01:a3:14:23:a6:c3:90:22:f9:93:58:b0:ab:64:fd:c7:bb: b4:ca:bd:39:1b:86:ea:3b:f6:e7:53:71:d0:fe:54:23:a4:1b: 55:1a:b0:03:18:6a:6c:b3:7c:f6:05:c4:39:83:f9:f5:60:75: 6e:e4:7a:c5:ed:a0:3d:24:44:80:82:44:f7:bc:ec:e9:b6:86: 40:fc:a6:58:cb:2f:da:d8:5d:aa:ed:74:2f:68:29:22:bf:48: 39:7e:32:c3:c9:62:60:96:18:41:40:bc:f7:cc:04:6e:a6:ab: cb:75:f1:41:31:64:90:80:49:70:f2:19:14:52:ab:d4:9f:e7: cc:76:0d:5a:86:a2:9d:99:d6:f6:d2:0d:1f:b8:57:1d:c0:0a: 52:df:0e:32:98:e1:12:96:31:63:7a:66:9a:01:6f:e2:fb:4b: 88:2e:38:de:50:51:6d:71:cb:d1:cf:db:28:d7:94:6d:03:1a: 1e:da:98:87:29:ed:74:02:61:30:35:8a:2d:25:12:df:25:bd: 17:b7:4e:84:b9:89:9c:17:93:78:2c:2c:9e:35:87:25:72:5a: 11:42:5b:56:b8:be:09:cf:9e:ab:14:03:bd:90:63:a7:a6:3b: d5:a4:34:48:14:1e:db:ac:77:90:d6:51:38:c0:80:28:13:32: 69:07:c8:66 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBIzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFB OTlGODExMC8GA1UEBRMoRjlDREIwNjE4OEQ1NEZEMTM3MzAzMEI5MjBDOEU0NDVE QjJEM0Q1NzAeFw0yNTA1MTEwNjM4MzZaFw0yNTA1MTgwNjM4MzZaMBgxFjAUBgNV BAMTDTY4MjA0NWVjLWZiOTQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC3n+v12UftAyyNJDs/u5Ed6Xj35703RiTCldk6v9rqFzEt5gLbXK+OjZTb92hI Ucop5jVDx5HsKR8bGRd0lJt2P3dlLFMgkK3rTiB+5DyZw7L4D0h92pHt6q89xd58 Y2jIzqame7BmDoiwzletCrflR+cXvUFR3kXthRlCNfZ49Yw2cXcB+Is0abvEocfR yoAPbWofpMEjgWhBgipBNbsucanU5iz6pdakYVZ3g/GNbnZg6J7GTvTWMOwkiHVC VTBIdSsORzyNo9wRp0u+NErFv1hYu3KXT5sQ22axDVKmPX2VprrbB3jjjaKb2jpG DMvTAZb9NwDIB6YqwwzIiw5XAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUdIxL5PXY 4WaqQpfSl4A9nJExtqEwHwYDVR0jBBgwFoAU+c2wYYjVT9E3MDC5IMjkRdstPVcw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUE5OUY4LzdBNEQ3Qjg4MDRB NzExRjBCNEQ3Mzk4MkM0RjlBRTAyLy1jMndZWWpWVDlFM01EQzVJTWprUmRzdFBW Yy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvLWMyd1lZalZUOUUzTURDNUlNamtSZHN0UFZjLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUE5 OUY4LzdBNEQ3Qjg4MDRBNzExRjBCNEQ3Mzk4MkM0RjlBRTAyLy1jMndZWWpWVDlF M01EQzVJTWprUmRzdFBWYy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBABgBoxQjpsOQIvmTWLCrZP3Hu7TKvTkbhuo79udTcdD+VCOkG1UasAMY amyzfPYFxDmD+fVgdW7kesXtoD0kRICCRPe87Om2hkD8pljLL9rYXartdC9oKSK/ SDl+MsPJYmCWGEFAvPfMBG6mq8t18UExZJCASXDyGRRSq9Sf58x2DVqGop2Z1vbS DR+4Vx3AClLfDjKY4RKWMWN6ZpoBb+L7S4guON5QUW1xy9HP2yjXlG0DGh7amIcp 7XQCYTA1ii0lEt8lvRe3ToS5iZwXk3gsLJ41hyVyWhFCW1a4vgnPnqsUA72QY6em O9WkNEgUHtusd5DWUTjAgCgTMmkHyGY= -----END CERTIFICATE-----Generated at Mon May 12 16:09:54 2025 by rpki-client