$ rpki-client -vvf rpki.apnic.net/member_repository/A91A9E55/D95176840DF311EB93076F65C4F9AE02/41zkTnGXKXWROY2C8z0RhhdN6Do.mft File: 41zkTnGXKXWROY2C8z0RhhdN6Do.mft (raw, json) Hash identifier: Sxoe2dC3sHm13uZgPcPg1eym3rZ3yUngRaYb/O5mBuc= Subject key identifier: 89:A8:60:20:28:50:F9:47:98:DD:5C:67:85:FB:2C:17:57:59:3C:7B Authority key identifier: E3:5C:E4:4E:71:97:29:75:91:39:8D:82:F3:3D:11:86:17:4D:E8:3A Certificate issuer: /CN=A91A9E55/serialNumber=E35CE44E7197297591398D82F33D1186174DE83A Certificate serial: 078D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/41zkTnGXKXWROY2C8z0RhhdN6Do.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A9E55/D95176840DF311EB93076F65C4F9AE02/41zkTnGXKXWROY2C8z0RhhdN6Do.mft Manifest number: 0785 Signing time: Sat 10 May 2025 21:04:30 +0000 Manifest this update: Sat 10 May 2025 21:04:30 +0000 Manifest next update: Sat 17 May 2025 21:04:30 +0000 Files and hashes: 1: 41zkTnGXKXWROY2C8z0RhhdN6Do.crl (hash: 4Zt6QNfU1yHD1vOPSiZXDxVofKDdUNqskYIohofWyOs=) 2: 6D7F22A60DF511EBA2098D67C4F9AE02.roa (hash: Sy432PhWarPbK2JtP9nP+Bmc/mIHDONttgOLY2annhk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A9E55/D95176840DF311EB93076F65C4F9AE02/41zkTnGXKXWROY2C8z0RhhdN6Do.crl rsync://rpki.apnic.net/member_repository/A91A9E55/D95176840DF311EB93076F65C4F9AE02/41zkTnGXKXWROY2C8z0RhhdN6Do.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/41zkTnGXKXWROY2C8z0RhhdN6Do.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 17 May 2025 21:04:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1933 (0x78d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A9E55, serialNumber=E35CE44E7197297591398D82F33D1186174DE83A Validity Not Before: May 10 21:04:30 2025 GMT Not After : May 17 21:04:30 2025 GMT Subject: CN=681fbf5e-154d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:2d:d0:09:54:48:e0:53:c7:18:dc:0f:d5:a5: 6f:92:99:1d:79:40:be:99:8e:64:54:a9:77:8a:d1: 15:fd:4b:74:29:a7:c0:ca:59:fd:b3:4a:03:d8:e9: 4b:13:0b:e7:8f:e2:27:a7:d2:d2:4e:a6:ac:eb:8b: 1d:b9:51:16:78:78:2a:31:75:68:3d:49:a6:ed:90: f3:37:85:8b:0e:7e:6d:74:1b:3b:90:92:13:f0:f6: 9d:d5:10:e5:9e:42:bd:8b:7c:48:3a:85:1e:28:e2: 65:ed:70:90:2e:f3:26:37:ac:27:34:c1:1a:b5:ac: da:c1:dc:fa:c2:61:ff:45:b1:cb:a0:9a:8d:c4:e7: 04:eb:37:ae:5e:2b:f1:7d:26:31:cb:e0:5b:3b:6d: d1:c3:b0:5d:8c:1c:3a:5e:05:9d:6c:30:fb:6a:4c: 55:fa:92:45:8e:d3:2f:42:9c:56:52:c6:11:cc:99: 5c:f8:e8:85:8a:28:4b:10:bb:0e:db:6e:d6:bf:be: 51:9d:e3:9e:82:73:1e:7e:23:c8:71:3a:e0:94:72: 46:2d:43:b0:b9:c2:18:27:1b:58:35:ea:79:c3:54: 7d:7f:0e:10:a9:4f:a1:71:5f:18:80:47:41:03:46: e5:68:ce:0c:47:9a:0c:ce:73:ae:de:3f:b9:3d:db: ca:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 89:A8:60:20:28:50:F9:47:98:DD:5C:67:85:FB:2C:17:57:59:3C:7B X509v3 Authority Key Identifier: keyid:E3:5C:E4:4E:71:97:29:75:91:39:8D:82:F3:3D:11:86:17:4D:E8:3A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A9E55/D95176840DF311EB93076F65C4F9AE02/41zkTnGXKXWROY2C8z0RhhdN6Do.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/41zkTnGXKXWROY2C8z0RhhdN6Do.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A9E55/D95176840DF311EB93076F65C4F9AE02/41zkTnGXKXWROY2C8z0RhhdN6Do.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption dc:80:f5:33:f8:5e:86:d2:78:dc:86:05:93:fa:36:52:fb:7c: 55:ba:45:0e:9b:f0:62:08:93:77:39:f8:1a:8b:3d:33:88:4d: 8e:43:d1:f8:ce:d7:f5:94:44:a6:c4:31:37:4b:e9:04:02:fe: fc:e2:46:56:b3:74:ad:f4:e4:81:b2:ff:91:a7:c1:b9:36:8b: f1:1a:a7:69:32:52:76:35:cd:a7:60:4c:94:3f:1c:b6:d9:ed: 1e:e0:ad:78:8e:a1:9b:94:2b:8d:e7:40:5c:c3:2b:4b:ff:44: aa:80:18:35:80:57:8f:fa:9d:b4:df:58:8d:8a:66:a9:cf:55: 13:c7:16:ef:f4:cd:b8:da:e7:2d:ea:40:70:4c:b2:77:00:25: cf:3c:fb:47:38:66:a5:f5:ba:0d:04:d4:a5:84:f6:ff:6d:f8: 6a:59:1c:d2:8b:43:40:31:e1:20:e1:17:af:96:d2:10:de:c4: d8:cd:49:20:a6:6e:63:a1:f3:49:55:fa:9b:5e:99:1b:f6:fb: 78:eb:c7:8e:46:71:d9:24:e4:3d:34:e9:9f:ce:61:07:15:9b: 9e:2e:5f:95:11:bc:58:6b:8d:91:40:e5:55:89:d3:1e:51:fe: 53:bd:f6:7a:27:1e:21:b6:ce:55:f4:9d:4a:a8:17:00:c5:bc: 89:3f:7a:37 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB40wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTlFNTUxMTAvBgNVBAUTKEUzNUNFNDRFNzE5NzI5NzU5MTM5OEQ4MkYzM0QxMTg2 MTc0REU4M0EwHhcNMjUwNTEwMjEwNDMwWhcNMjUwNTE3MjEwNDMwWjAYMRYwFAYD VQQDEw02ODFmYmY1ZS0xNTRkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6i3QCVRI4FPHGNwP1aVvkpkdeUC+mY5kVKl3itEV/Ut0KafAyln9s0oD2OlL Ewvnj+Inp9LSTqas64sduVEWeHgqMXVoPUmm7ZDzN4WLDn5tdBs7kJIT8Pad1RDl nkK9i3xIOoUeKOJl7XCQLvMmN6wnNMEatazawdz6wmH/RbHLoJqNxOcE6zeuXivx fSYxy+BbO23Rw7BdjBw6XgWdbDD7akxV+pJFjtMvQpxWUsYRzJlc+OiFiihLELsO 227Wv75RneOegnMefiPIcTrglHJGLUOwucIYJxtYNep5w1R9fw4QqU+hcV8YgEdB A0blaM4MR5oMznOu3j+5PdvKywIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFImoYCAo UPlHmN1cZ4X7LBdXWTx7MB8GA1UdIwQYMBaAFONc5E5xlyl1kTmNgvM9EYYXTeg6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBOUU1NS9EOTUxNzY4NDBE RjMxMUVCOTMwNzZGNjVDNEY5QUUwMi80MXprVG5HWEtYV1JPWTJDOHowUmhoZE42 RG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzQxemtUbkdYS1hXUk9ZMkM4ejBSaGhkTjZEby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB OUU1NS9EOTUxNzY4NDBERjMxMUVCOTMwNzZGNjVDNEY5QUUwMi80MXprVG5HWEtY V1JPWTJDOHowUmhoZE42RG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDcgPUz+F6G0njchgWT+jZS+3xVukUOm/BiCJN3Ofgaiz0ziE2OQ9H4 ztf1lESmxDE3S+kEAv784kZWs3St9OSBsv+Rp8G5NovxGqdpMlJ2Nc2nYEyUPxy2 2e0e4K14jqGblCuN50BcwytL/0SqgBg1gFeP+p2031iNimapz1UTxxbv9M242uct 6kBwTLJ3ACXPPPtHOGal9boNBNSlhPb/bfhqWRzSi0NAMeEg4RevltIQ3sTYzUkg pm5jofNJVfqbXpkb9vt468eORnHZJOQ9NOmfzmEHFZueLl+VEbxYa42RQOVVidMe Uf5TvfZ6Jx4hts5V9J1KqBcAxbyJP3o3 -----END CERTIFICATE-----Generated at Sun May 11 14:50:18 2025 by rpki-client