$ rpki-client -vvf rpki.apnic.net/member_repository/A91AAB94/707023FA16A611EDAC3CA17DC4F9AE02/W2pwDO4aU9VRnlolxk0a0ro3zac.mft File: W2pwDO4aU9VRnlolxk0a0ro3zac.mft (raw, json) Hash identifier: bTjQSy2tPHfP0/zKXmAEr86hQQbltP22ksTXXdIQEzY= Subject key identifier: D9:B8:D3:CE:3A:5A:21:F6:9F:6F:13:3C:76:37:D2:52:4B:CD:0C:D3 Authority key identifier: 5B:6A:70:0C:EE:1A:53:D5:51:9E:5A:25:C6:4D:1A:D2:BA:37:CD:A7 Certificate issuer: /CN=A91AAB94/serialNumber=5B6A700CEE1A53D5519E5A25C64D1AD2BA37CDA7 Certificate serial: 025B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/W2pwDO4aU9VRnlolxk0a0ro3zac.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AAB94/707023FA16A611EDAC3CA17DC4F9AE02/W2pwDO4aU9VRnlolxk0a0ro3zac.mft Manifest number: 0257 Signing time: Sun 11 May 2025 01:20:35 +0000 Manifest this update: Sun 11 May 2025 01:20:34 +0000 Manifest next update: Sun 18 May 2025 01:20:34 +0000 Files and hashes: 1: W2pwDO4aU9VRnlolxk0a0ro3zac.crl (hash: wFpuZga5PGRt8GH8W/y9j/pjN/AcH4v26Yp2l7fLnnI=) 2: 53AA673C16A911ED88058C80C4F9AE02.roa (hash: TZ/n2fdCp6It0G4ugsLwMjkFuDgasyyKStMAe77+R34=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AAB94/707023FA16A611EDAC3CA17DC4F9AE02/W2pwDO4aU9VRnlolxk0a0ro3zac.crl rsync://rpki.apnic.net/member_repository/A91AAB94/707023FA16A611EDAC3CA17DC4F9AE02/W2pwDO4aU9VRnlolxk0a0ro3zac.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/W2pwDO4aU9VRnlolxk0a0ro3zac.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 18 May 2025 01:20:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 603 (0x25b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AAB94, serialNumber=5B6A700CEE1A53D5519E5A25C64D1AD2BA37CDA7 Validity Not Before: May 11 01:20:34 2025 GMT Not After : May 18 01:20:34 2025 GMT Subject: CN=681ffb63-08d2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:a9:69:53:55:46:97:21:bb:ae:7d:6b:1e:f3: f0:67:ce:ba:90:72:b5:85:b0:d3:c2:87:9f:1d:0b: 83:d4:86:bf:9c:92:49:62:78:ae:9b:e8:df:fb:09: 34:d8:90:45:80:e8:2c:e4:f0:54:f6:ea:dc:77:eb: 7b:07:79:49:09:c4:62:18:41:ee:0a:27:0b:fb:b3: 68:40:70:29:03:80:e6:d5:e0:d5:fc:47:ec:96:57: 34:e0:32:5a:ca:f7:e7:a2:1c:84:92:da:82:8c:82: 86:4c:22:98:a4:ac:b7:43:f6:7c:72:34:9f:cf:de: 2f:61:33:41:27:6b:9e:4a:ac:cc:0f:88:ce:59:33: 71:36:c2:82:b2:e4:50:8f:d5:51:4d:0d:25:26:b9: e7:dc:b4:bb:2f:78:11:66:90:85:e3:29:0f:83:eb: f6:e3:9b:36:b7:44:2e:9a:ed:13:84:1c:1f:d1:30: 90:4f:30:28:ab:53:43:37:c6:ea:66:20:d8:29:b9: 9d:72:5f:ba:71:b5:8f:09:33:80:ae:9e:d6:9f:41: 14:47:80:10:4c:f9:b2:86:95:1b:de:1a:15:76:21: 68:1a:99:c8:26:2d:c9:0c:2e:5e:4f:e2:99:b1:99: 56:d2:68:2b:5b:78:d6:22:09:91:2f:e7:02:a1:21: e0:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D9:B8:D3:CE:3A:5A:21:F6:9F:6F:13:3C:76:37:D2:52:4B:CD:0C:D3 X509v3 Authority Key Identifier: keyid:5B:6A:70:0C:EE:1A:53:D5:51:9E:5A:25:C6:4D:1A:D2:BA:37:CD:A7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AAB94/707023FA16A611EDAC3CA17DC4F9AE02/W2pwDO4aU9VRnlolxk0a0ro3zac.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/W2pwDO4aU9VRnlolxk0a0ro3zac.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AAB94/707023FA16A611EDAC3CA17DC4F9AE02/W2pwDO4aU9VRnlolxk0a0ro3zac.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b9:00:89:a8:b7:08:80:f7:74:ea:bf:7f:3e:a2:00:dd:f7:1a: 1b:8b:b6:15:cc:56:8e:67:75:10:f2:3c:bd:0b:5b:b6:e1:c7: fa:b0:5a:f9:fd:ca:f1:14:37:9f:e0:ae:93:d2:e1:07:79:03: 7e:ce:d9:77:f7:25:ac:79:e7:d1:85:dd:3b:ec:52:33:26:b9: 1a:e5:be:53:03:d4:07:3f:59:c9:51:29:b9:85:42:18:52:b8: 75:14:22:be:26:19:96:60:47:26:e6:13:91:e4:45:cc:09:95: f6:03:d5:f1:0f:4a:bd:89:c4:9f:ba:d3:04:17:88:5b:73:60: ce:24:af:f9:7b:57:f7:9b:a0:de:4f:a6:58:14:b4:ba:6b:2e: 73:a0:8d:8b:f3:81:21:5d:0e:5f:95:d3:fb:33:6c:96:e0:56: d8:ba:b7:f5:03:4c:e2:a5:0e:f8:ea:4d:05:d8:16:52:e1:18: 89:d9:ab:d7:a4:40:1c:47:29:d5:94:e4:4a:89:de:bd:f9:d8: 5e:b2:0e:48:fb:7f:90:8b:7b:54:d8:2a:72:b2:e0:fc:1c:18: db:e0:56:72:73:8f:d0:26:03:0c:f0:94:b2:1a:52:57:f9:5f: bf:1d:30:0b:54:a1:02:c5:4e:44:00:a4:44:49:cb:02:83:ac: af:eb:5e:cf -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAlswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUFCOTQxMTAvBgNVBAUTKDVCNkE3MDBDRUUxQTUzRDU1MTlFNUEyNUM2NEQxQUQy QkEzN0NEQTcwHhcNMjUwNTExMDEyMDM0WhcNMjUwNTE4MDEyMDM0WjAYMRYwFAYD VQQDEw02ODFmZmI2My0wOGQyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAq6lpU1VGlyG7rn1rHvPwZ866kHK1hbDTwoefHQuD1Ia/nJJJYnium+jf+wk0 2JBFgOgs5PBU9urcd+t7B3lJCcRiGEHuCicL+7NoQHApA4Dm1eDV/Efsllc04DJa yvfnohyEktqCjIKGTCKYpKy3Q/Z8cjSfz94vYTNBJ2ueSqzMD4jOWTNxNsKCsuRQ j9VRTQ0lJrnn3LS7L3gRZpCF4ykPg+v245s2t0Qumu0ThBwf0TCQTzAoq1NDN8bq ZiDYKbmdcl+6cbWPCTOArp7Wn0EUR4AQTPmyhpUb3hoVdiFoGpnIJi3JDC5eT+KZ sZlW0mgrW3jWIgmRL+cCoSHgjwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNm40846 WiH2n28TPHY30lJLzQzTMB8GA1UdIwQYMBaAFFtqcAzuGlPVUZ5aJcZNGtK6N82n MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQUI5NC83MDcwMjNGQTE2 QTYxMUVEQUMzQ0ExN0RDNEY5QUUwMi9XMnB3RE80YVU5VlJubG9seGswYTBybzN6 YWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1cycHdETzRhVTlWUm5sb2x4azBhMHJvM3phYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB QUI5NC83MDcwMjNGQTE2QTYxMUVEQUMzQ0ExN0RDNEY5QUUwMi9XMnB3RE80YVU5 VlJubG9seGswYTBybzN6YWMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC5AImotwiA93Tqv38+ogDd9xobi7YVzFaOZ3UQ8jy9C1u24cf6sFr5 /crxFDef4K6T0uEHeQN+ztl39yWseefRhd077FIzJrka5b5TA9QHP1nJUSm5hUIY Urh1FCK+JhmWYEcm5hOR5EXMCZX2A9XxD0q9icSfutMEF4hbc2DOJK/5e1f3m6De T6ZYFLS6ay5zoI2L84EhXQ5fldP7M2yW4FbYurf1A0zipQ746k0F2BZS4RiJ2avX pEAcRynVlORKid69+dhesg5I+3+Qi3tU2CpysuD8HBjb4FZyc4/QJgMM8JSyGlJX +V+/HTALVKECxU5EAKREScsCg6yv617P -----END CERTIFICATE-----Generated at Sun May 11 22:24:00 2025 by rpki-client