$ rpki-client -vvf rpki.apnic.net/member_repository/A91AAC4B/DE3F889ACD7D11EFAA07230AC4F9AE02/44pe3hloyTdeUVUfrpiIigu1RJA.mft File: 44pe3hloyTdeUVUfrpiIigu1RJA.mft (raw, json) Hash identifier: VfjzQ+g/PcieJY5NMXpgHa646ucD5PoAliHnfngM5/Y= Subject key identifier: D0:F0:0F:15:04:26:DC:79:33:0B:B8:08:C1:2C:B6:F1:F5:71:AA:69 Authority key identifier: E3:8A:5E:DE:19:68:C9:37:5E:51:55:1F:AE:98:88:8A:0B:B5:44:90 Certificate issuer: /CN=A91AAC4B/serialNumber=E38A5EDE1968C9375E51551FAE98888A0BB54490 Certificate serial: 44 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/44pe3hloyTdeUVUfrpiIigu1RJA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AAC4B/DE3F889ACD7D11EFAA07230AC4F9AE02/44pe3hloyTdeUVUfrpiIigu1RJA.mft Manifest number: 43 Signing time: Thu 15 May 2025 06:42:59 +0000 Manifest this update: Thu 15 May 2025 06:42:58 +0000 Manifest next update: Thu 22 May 2025 06:42:58 +0000 Files and hashes: 1: 44pe3hloyTdeUVUfrpiIigu1RJA.crl (hash: CMIVIgfkemgRMm+3CzKufz+oC2lDa6Kq4TKpRyVjaNA=) 2: B6A31094CD7E11EFBBAE2137C4F9AE02.roa (hash: f1IFYkIgMkQ3+JyMSl70ACqIsH3T9EI7K8/rW2krDH4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AAC4B/DE3F889ACD7D11EFAA07230AC4F9AE02/44pe3hloyTdeUVUfrpiIigu1RJA.crl rsync://rpki.apnic.net/member_repository/A91AAC4B/DE3F889ACD7D11EFAA07230AC4F9AE02/44pe3hloyTdeUVUfrpiIigu1RJA.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/44pe3hloyTdeUVUfrpiIigu1RJA.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 22 May 2025 06:42:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 68 (0x44) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AAC4B, serialNumber=E38A5EDE1968C9375E51551FAE98888A0BB54490 Validity Not Before: May 15 06:42:58 2025 GMT Not After : May 22 06:42:58 2025 GMT Subject: CN=68258cf2-f3db Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:34:91:22:35:5e:5a:bd:2a:85:ca:15:58:d2: 3c:00:81:48:1f:91:4a:3b:75:f3:9c:01:2c:fb:2f: 99:7f:c8:a0:18:93:b6:46:f6:21:f9:74:9d:cf:8a: d4:1e:9d:00:88:ee:8d:65:2b:b9:4b:fc:d8:fa:6e: 6b:1f:c8:f6:ca:64:91:4a:36:cf:fd:ed:24:f4:41: 2d:60:dc:8f:b8:38:57:21:18:41:db:a6:de:a2:58: 26:78:81:e1:53:b0:af:59:15:f0:b5:c4:fa:08:52: 0b:c7:fd:90:dc:37:2b:eb:b3:36:b3:17:61:cd:38: 99:50:73:d3:fa:5c:19:7f:53:86:d7:4f:bb:d9:b9: 87:ee:3c:5d:87:84:f9:cd:b1:2c:99:8a:cc:ad:de: 3c:28:c5:97:c4:48:96:42:80:f3:06:1f:90:d9:0d: a9:12:80:81:dc:a1:8a:67:0d:9a:b4:43:08:91:f1: 55:b3:02:0f:19:6e:8e:89:c6:75:d0:39:ba:10:80: c3:b8:87:67:a0:1b:1a:1f:91:51:e2:0b:e9:f6:0d: 19:19:76:2b:c9:0a:73:92:57:cb:2b:79:ba:70:b9: c9:1e:37:98:15:e2:b7:21:85:7b:0a:f1:e2:93:fd: 63:dd:a3:e7:4a:c8:77:3c:6d:b6:a9:cf:88:49:1e: 9b:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D0:F0:0F:15:04:26:DC:79:33:0B:B8:08:C1:2C:B6:F1:F5:71:AA:69 X509v3 Authority Key Identifier: keyid:E3:8A:5E:DE:19:68:C9:37:5E:51:55:1F:AE:98:88:8A:0B:B5:44:90 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AAC4B/DE3F889ACD7D11EFAA07230AC4F9AE02/44pe3hloyTdeUVUfrpiIigu1RJA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/44pe3hloyTdeUVUfrpiIigu1RJA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AAC4B/DE3F889ACD7D11EFAA07230AC4F9AE02/44pe3hloyTdeUVUfrpiIigu1RJA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 53:fd:8b:70:c6:5d:18:18:8e:5e:1e:d2:c2:f3:d3:e9:de:76: 92:74:2c:09:ae:1f:15:68:21:da:d1:d5:e0:a2:95:7d:03:ae: a5:c4:fe:b8:41:e5:f2:fb:e9:78:2b:14:e8:de:37:53:09:4e: 78:de:3c:b1:4a:1a:56:3a:f1:63:9d:de:77:e9:7a:3c:0a:51: 67:df:43:67:d1:31:ed:74:c2:90:c8:88:4c:6c:37:88:37:10: 29:9f:25:cf:4f:f2:2b:21:68:da:ef:9a:62:ea:0d:86:bc:7c: 5d:8f:43:7c:20:66:39:1c:68:b2:6d:ef:50:d1:76:0e:eb:31: 44:88:5b:01:79:2c:da:13:f3:56:c9:4d:56:02:ee:49:54:5b: 50:7a:e6:da:41:34:b1:f4:45:fc:06:b4:86:1d:c2:ad:19:f8: 27:9e:f0:73:59:17:b8:fd:11:7c:b4:a7:ce:45:f7:5d:24:ae: f7:21:a3:74:50:9d:6e:ff:ac:2a:bb:3a:9b:19:95:8b:54:88: 2f:25:8d:1e:08:17:e4:f2:11:89:a5:b4:04:5e:49:cf:b5:54: 0b:69:5a:a3:42:59:2a:e7:ce:23:3a:e5:c5:54:77:7e:b3:1e: 46:4e:8a:ab:ec:35:af:63:54:03:58:61:ff:a4:fb:3d:42:2c: ed:ac:ff:22 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBRDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFB QUM0QjExMC8GA1UEBRMoRTM4QTVFREUxOTY4QzkzNzVFNTE1NTFGQUU5ODg4OEEw QkI1NDQ5MDAeFw0yNTA1MTUwNjQyNThaFw0yNTA1MjIwNjQyNThaMBgxFjAUBgNV BAMTDTY4MjU4Y2YyLWYzZGIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDiNJEiNV5avSqFyhVY0jwAgUgfkUo7dfOcASz7L5l/yKAYk7ZG9iH5dJ3PitQe nQCI7o1lK7lL/Nj6bmsfyPbKZJFKNs/97ST0QS1g3I+4OFchGEHbpt6iWCZ4geFT sK9ZFfC1xPoIUgvH/ZDcNyvrszazF2HNOJlQc9P6XBl/U4bXT7vZuYfuPF2HhPnN sSyZisyt3jwoxZfESJZCgPMGH5DZDakSgIHcoYpnDZq0QwiR8VWzAg8Zbo6JxnXQ OboQgMO4h2egGxofkVHiC+n2DRkZdivJCnOSV8srebpwuckeN5gV4rchhXsK8eKT /WPdo+dKyHc8bbapz4hJHpthAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU0PAPFQQm 3HkzC7gIwSy28fVxqmkwHwYDVR0jBBgwFoAU44pe3hloyTdeUVUfrpiIigu1RJAw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUFBQzRCL0RFM0Y4ODlBQ0Q3 RDExRUZBQTA3MjMwQUM0RjlBRTAyLzQ0cGUzaGxveVRkZVVWVWZycGlJaWd1MVJK QS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvNDRwZTNobG95VGRlVVZVZnJwaUlpZ3UxUkpBLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUFB QzRCL0RFM0Y4ODlBQ0Q3RDExRUZBQTA3MjMwQUM0RjlBRTAyLzQ0cGUzaGxveVRk ZVVWVWZycGlJaWd1MVJKQS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAFP9i3DGXRgYjl4e0sLz0+nedpJ0LAmuHxVoIdrR1eCilX0DrqXE/rhB 5fL76XgrFOjeN1MJTnjePLFKGlY68WOd3nfpejwKUWffQ2fRMe10wpDIiExsN4g3 ECmfJc9P8ishaNrvmmLqDYa8fF2PQ3wgZjkcaLJt71DRdg7rMUSIWwF5LNoT81bJ TVYC7klUW1B65tpBNLH0RfwGtIYdwq0Z+Cee8HNZF7j9EXy0p85F910krvcho3RQ nW7/rCq7OpsZlYtUiC8ljR4IF+TyEYmltAReSc+1VAtpWqNCWSrnziM65cVUd36z HkZOiqvsNa9jVANYYf+k+z1CLO2s/yI= -----END CERTIFICATE-----Generated at Fri May 16 07:32:29 2025 by rpki-client