$ rpki-client -vvf rpki.apnic.net/member_repository/A91AAAF2/8226AB72F71E11EAB6994123C4F9AE02/saGMIGd1j-jJIZgeixH6MI5iaTs.mft File: saGMIGd1j-jJIZgeixH6MI5iaTs.mft (raw, json) Hash identifier: MiGJXPe4b20OSOFrcmc94hiPtdnK6DOcbu1OKTptgYo= Subject key identifier: 85:47:87:DD:A5:5A:0C:D8:68:BC:F4:8B:F9:FC:2C:BD:4F:0B:D8:8E Authority key identifier: B1:A1:8C:20:67:75:8F:E8:C9:21:98:1E:8B:11:FA:30:8E:62:69:3B Certificate issuer: /CN=A91AAAF2/serialNumber=B1A18C2067758FE8C921981E8B11FA308E62693B Certificate serial: 07BF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/saGMIGd1j-jJIZgeixH6MI5iaTs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AAAF2/8226AB72F71E11EAB6994123C4F9AE02/saGMIGd1j-jJIZgeixH6MI5iaTs.mft Manifest number: 07B9 Signing time: Sat 10 May 2025 20:48:44 +0000 Manifest this update: Sat 10 May 2025 20:48:43 +0000 Manifest next update: Sat 17 May 2025 20:48:43 +0000 Files and hashes: 1: saGMIGd1j-jJIZgeixH6MI5iaTs.crl (hash: zcsetxGKLBpEUbTnKEr9+Fg2bdhz1G0f/dNPvYwGKv4=) 2: 73D3A6E0F72011EA8776EC28C4F9AE02.roa (hash: ovhGH8lbo83g5o7m/4TlTtd4Z3eC4nvxtcRanzpccvU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AAAF2/8226AB72F71E11EAB6994123C4F9AE02/saGMIGd1j-jJIZgeixH6MI5iaTs.crl rsync://rpki.apnic.net/member_repository/A91AAAF2/8226AB72F71E11EAB6994123C4F9AE02/saGMIGd1j-jJIZgeixH6MI5iaTs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/saGMIGd1j-jJIZgeixH6MI5iaTs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 17 May 2025 20:48:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1983 (0x7bf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AAAF2, serialNumber=B1A18C2067758FE8C921981E8B11FA308E62693B Validity Not Before: May 10 20:48:43 2025 GMT Not After : May 17 20:48:43 2025 GMT Subject: CN=681fbbab-5ffd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:ab:f0:87:75:6e:05:f0:be:d1:81:5e:7c:d2: a1:a4:90:88:82:3a:3f:5e:8a:62:24:7b:61:6e:c5: f4:cc:e2:40:70:6f:58:07:91:5c:71:02:27:ab:a6: 7f:cb:a2:ba:30:79:15:1a:46:64:a0:7c:58:80:d4: 42:18:ad:a1:90:bf:20:9b:ad:6a:43:1f:5e:cd:d6: 14:42:89:c9:05:be:ef:25:55:c9:24:ea:07:8c:44: 1f:01:76:cc:94:52:08:be:3d:47:45:ae:ea:76:2a: 52:ed:8e:d8:93:32:12:19:36:f1:52:b8:39:ae:5a: 9d:38:66:fa:87:c2:52:f1:8b:c7:6c:8b:45:21:c4: b2:90:d9:9b:84:9f:eb:a7:aa:34:ef:6c:bb:e2:5d: 59:f8:27:bf:23:f1:83:ab:32:c7:93:ff:0f:12:29: 38:e8:e2:8e:0f:72:35:75:21:ee:25:ac:68:2d:6b: b6:d3:25:ac:27:80:68:39:0c:39:7c:6f:85:52:44: d6:cd:05:61:f9:1d:a4:67:79:80:45:b2:e8:2b:a8: 9b:6a:f7:a4:30:3c:07:e8:98:08:ab:62:b5:51:f7: 4a:04:ae:4e:b7:2d:7c:ce:35:a5:f8:0f:3d:ea:ce: 32:4d:06:be:12:90:d1:89:5e:6f:3c:bd:49:6f:fc: 8b:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 85:47:87:DD:A5:5A:0C:D8:68:BC:F4:8B:F9:FC:2C:BD:4F:0B:D8:8E X509v3 Authority Key Identifier: keyid:B1:A1:8C:20:67:75:8F:E8:C9:21:98:1E:8B:11:FA:30:8E:62:69:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AAAF2/8226AB72F71E11EAB6994123C4F9AE02/saGMIGd1j-jJIZgeixH6MI5iaTs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/saGMIGd1j-jJIZgeixH6MI5iaTs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AAAF2/8226AB72F71E11EAB6994123C4F9AE02/saGMIGd1j-jJIZgeixH6MI5iaTs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 20:c9:d7:44:32:ee:54:2a:26:c6:3a:02:f1:fb:7c:4e:96:c4: c1:87:45:df:bd:b1:14:09:3c:80:b3:06:fa:40:a9:86:a4:37: db:62:1e:fe:30:2a:db:e2:4c:70:bb:4f:9e:1a:e3:08:8d:47: fd:d7:61:0a:a3:e7:e6:f9:3e:7a:48:af:a9:b1:65:b8:c3:23: 8f:c8:40:ab:95:99:ba:c1:c5:55:ee:43:c4:ac:cd:b5:c0:c5: 7f:cb:75:21:8f:fe:0c:1d:ed:2d:b4:a8:2c:bf:43:42:33:76: e2:62:58:7f:91:9b:e3:98:58:c5:60:08:bf:41:2f:15:45:64: d6:38:14:76:39:19:d5:bb:97:6a:64:20:c9:3c:1d:7a:9b:6b: f3:aa:ee:e0:67:1d:6f:0a:49:92:38:43:be:2d:90:25:ae:e0: 76:fd:ac:8e:c2:03:08:4a:37:b9:75:a6:38:5f:fb:61:87:75: 36:f5:2d:35:94:bc:55:69:1d:50:bc:b3:f5:2e:ca:15:f2:df: b9:04:ab:c8:08:f6:df:1f:07:93:97:9d:2d:af:c2:7b:6e:d8: a2:f6:08:0b:51:1d:2c:89:91:a4:0f:3f:53:08:05:c8:0c:78: 6e:32:9b:5e:b8:13:83:c2:a3:a4:b1:d9:d1:5a:29:88:16:33: 54:fb:e7:4a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB78wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUFBRjIxMTAvBgNVBAUTKEIxQTE4QzIwNjc3NThGRThDOTIxOTgxRThCMTFGQTMw OEU2MjY5M0IwHhcNMjUwNTEwMjA0ODQzWhcNMjUwNTE3MjA0ODQzWjAYMRYwFAYD VQQDEw02ODFmYmJhYi01ZmZkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2qvwh3VuBfC+0YFefNKhpJCIgjo/XopiJHthbsX0zOJAcG9YB5FccQInq6Z/ y6K6MHkVGkZkoHxYgNRCGK2hkL8gm61qQx9ezdYUQonJBb7vJVXJJOoHjEQfAXbM lFIIvj1HRa7qdipS7Y7YkzISGTbxUrg5rlqdOGb6h8JS8YvHbItFIcSykNmbhJ/r p6o072y74l1Z+Ce/I/GDqzLHk/8PEik46OKOD3I1dSHuJaxoLWu20yWsJ4BoOQw5 fG+FUkTWzQVh+R2kZ3mARbLoK6ibavekMDwH6JgIq2K1UfdKBK5Oty18zjWl+A89 6s4yTQa+EpDRiV5vPL1Jb/yLUwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIVHh92l WgzYaLz0i/n8LL1PC9iOMB8GA1UdIwQYMBaAFLGhjCBndY/oySGYHosR+jCOYmk7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQUFGMi84MjI2QUI3MkY3 MUUxMUVBQjY5OTQxMjNDNEY5QUUwMi9zYUdNSUdkMWotakpJWmdlaXhINk1JNWlh VHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3NhR01JR2Qxai1qSklaZ2VpeEg2TUk1aWFUcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB QUFGMi84MjI2QUI3MkY3MUUxMUVBQjY5OTQxMjNDNEY5QUUwMi9zYUdNSUdkMWot akpJWmdlaXhINk1JNWlhVHMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAgyddEMu5UKibGOgLx+3xOlsTBh0XfvbEUCTyAswb6QKmGpDfbYh7+ MCrb4kxwu0+eGuMIjUf912EKo+fm+T56SK+psWW4wyOPyECrlZm6wcVV7kPErM21 wMV/y3Uhj/4MHe0ttKgsv0NCM3biYlh/kZvjmFjFYAi/QS8VRWTWOBR2ORnVu5dq ZCDJPB16m2vzqu7gZx1vCkmSOEO+LZAlruB2/ayOwgMISje5daY4X/thh3U29S01 lLxVaR1QvLP1LsoV8t+5BKvICPbfHweTl50tr8J7btii9ggLUR0siZGkDz9TCAXI DHhuMpteuBODwqOksdnRWimIFjNU++dK -----END CERTIFICATE-----Generated at Mon May 12 15:51:52 2025 by rpki-client