$ rpki-client -vvf rpki.apnic.net/member_repository/A91AACB2/37D5A3DE1D9C11E2892E8B8A08B02CD2/2en59z7k9bHN8XYsLfODKVCja30.mft File: 2en59z7k9bHN8XYsLfODKVCja30.mft (raw, json) Hash identifier: LMaGR6W/EzyBRRDWZ0S9NbTiyrfsJ1xbygmrrLidn0o= Subject key identifier: 5E:15:91:E4:7B:13:D8:1C:60:C7:7A:13:0D:8A:79:37:8A:C4:67:08 Authority key identifier: D9:E9:F9:F7:3E:E4:F5:B1:CD:F1:76:2C:2D:F3:83:29:50:A3:6B:7D Certificate issuer: /CN=A91AACB2/serialNumber=D9E9F9F73EE4F5B1CDF1762C2DF3832950A36B7D Certificate serial: 3489 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2en59z7k9bHN8XYsLfODKVCja30.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AACB2/37D5A3DE1D9C11E2892E8B8A08B02CD2/2en59z7k9bHN8XYsLfODKVCja30.mft Manifest number: 3483 Signing time: Wed 14 May 2025 14:59:08 +0000 Manifest this update: Wed 14 May 2025 14:59:08 +0000 Manifest next update: Wed 21 May 2025 14:59:08 +0000 Files and hashes: 1: 2en59z7k9bHN8XYsLfODKVCja30.crl (hash: Lx0pmh2rC8Ea+7sQCNYciXp5sqp+TYve0KfyYq9Ibno=) 2: 76B5C744B45E11EAB71DF94AC4F9AE02.roa (hash: RzsyMG8grNRl/TU/HKZlXJ7ZiLnl0fu14E8Z0lJpa0Q=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AACB2/37D5A3DE1D9C11E2892E8B8A08B02CD2/2en59z7k9bHN8XYsLfODKVCja30.crl rsync://rpki.apnic.net/member_repository/A91AACB2/37D5A3DE1D9C11E2892E8B8A08B02CD2/2en59z7k9bHN8XYsLfODKVCja30.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2en59z7k9bHN8XYsLfODKVCja30.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 21 May 2025 14:59:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13449 (0x3489) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AACB2, serialNumber=D9E9F9F73EE4F5B1CDF1762C2DF3832950A36B7D Validity Not Before: May 14 14:59:08 2025 GMT Not After : May 21 14:59:08 2025 GMT Subject: CN=6824afbc-7cbb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:36:0e:76:53:45:d8:47:c9:46:5d:b0:85:04: 65:b9:45:72:f2:72:fa:a8:19:13:78:7f:2d:8b:60: 81:62:3f:2f:36:fb:ee:68:90:a1:bf:a4:a2:36:47: 69:b9:1f:3c:7b:74:86:35:76:14:17:8c:8d:c1:8b: bb:16:93:e3:94:47:74:5e:ed:b9:00:35:43:5c:cf: 8b:53:cd:e8:22:d4:91:40:cb:1d:44:0f:10:3a:c2: 57:eb:d0:d3:72:fb:50:91:85:10:b9:18:67:de:31: da:11:fd:89:af:8b:35:c9:8c:71:92:94:59:c0:c7: f7:99:57:eb:53:e9:f4:43:17:6d:c3:fa:2a:da:63: 0c:3f:ff:2b:f3:e1:8e:59:d1:75:08:91:5a:be:8f: fd:7c:70:48:84:04:65:9c:bc:f7:26:0d:bf:71:06: 0e:d0:4f:bb:eb:91:ab:01:b4:46:34:7d:95:52:bf: 4a:92:ec:0c:ef:f2:8f:ca:49:3a:e4:13:ed:29:db: 69:9c:3d:64:da:ef:56:b7:a3:82:73:ee:a5:1c:6a: db:46:9e:00:eb:d9:06:79:a6:b9:bf:38:71:58:e3: a1:40:d0:65:cb:a1:ec:c3:1f:7a:8e:89:9b:db:67: ef:85:c0:b6:78:5a:e7:2a:bf:d7:ec:6b:08:8e:d1: b4:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5E:15:91:E4:7B:13:D8:1C:60:C7:7A:13:0D:8A:79:37:8A:C4:67:08 X509v3 Authority Key Identifier: keyid:D9:E9:F9:F7:3E:E4:F5:B1:CD:F1:76:2C:2D:F3:83:29:50:A3:6B:7D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AACB2/37D5A3DE1D9C11E2892E8B8A08B02CD2/2en59z7k9bHN8XYsLfODKVCja30.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2en59z7k9bHN8XYsLfODKVCja30.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AACB2/37D5A3DE1D9C11E2892E8B8A08B02CD2/2en59z7k9bHN8XYsLfODKVCja30.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ac:d0:59:3f:65:36:e0:f8:95:40:4e:0e:42:fb:98:51:8f:06: 50:92:9f:b1:3d:28:a4:62:fe:c6:ab:84:9b:3d:71:8d:4b:77: ef:58:cc:61:0e:b4:4c:02:9d:90:80:27:29:f1:84:be:cd:cd: 01:cd:ea:95:e9:72:63:a2:ab:f5:38:d2:77:05:4f:51:03:6c: ba:d7:fa:00:6c:4c:e9:95:ec:2b:1e:0d:a5:4f:ff:0a:25:49: a2:49:07:5d:6d:fd:76:8d:65:e6:8a:0f:70:14:83:4c:d3:ad: 2b:e3:d3:33:e3:db:5c:7d:18:46:d2:82:f7:3e:6a:e3:a6:a9: f3:8e:af:16:6d:b4:48:f0:55:0f:a8:1d:e5:c8:3d:f3:59:08: 34:f9:2e:13:2d:b8:9c:4e:73:4f:45:a2:ac:95:ca:9f:8f:ba: 6a:3c:d6:da:87:93:d2:42:2e:74:29:09:bb:ac:3e:88:26:7a: 0d:0c:38:fb:05:7f:67:d6:6b:67:93:70:72:99:28:97:36:d0: 39:00:94:ab:2c:ca:fc:cf:58:36:95:2e:63:56:9d:73:7f:2a: 64:c7:0c:78:8c:8b:e9:3e:21:53:e2:c2:34:ac:5f:0b:1b:18: ad:30:58:58:45:44:87:68:74:d6:30:e8:e8:70:0d:3a:17:a0: f0:48:83:a2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNIkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUFDQjIxMTAvBgNVBAUTKEQ5RTlGOUY3M0VFNEY1QjFDREYxNzYyQzJERjM4MzI5 NTBBMzZCN0QwHhcNMjUwNTE0MTQ1OTA4WhcNMjUwNTIxMTQ1OTA4WjAYMRYwFAYD VQQDEw02ODI0YWZiYy03Y2JiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0TYOdlNF2EfJRl2whQRluUVy8nL6qBkTeH8ti2CBYj8vNvvuaJChv6SiNkdp uR88e3SGNXYUF4yNwYu7FpPjlEd0Xu25ADVDXM+LU83oItSRQMsdRA8QOsJX69DT cvtQkYUQuRhn3jHaEf2Jr4s1yYxxkpRZwMf3mVfrU+n0Qxdtw/oq2mMMP/8r8+GO WdF1CJFavo/9fHBIhARlnLz3Jg2/cQYO0E+765GrAbRGNH2VUr9KkuwM7/KPykk6 5BPtKdtpnD1k2u9Wt6OCc+6lHGrbRp4A69kGeaa5vzhxWOOhQNBly6Hswx96jomb 22fvhcC2eFrnKr/X7GsIjtG0dQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFF4VkeR7 E9gcYMd6Ew2KeTeKxGcIMB8GA1UdIwQYMBaAFNnp+fc+5PWxzfF2LC3zgylQo2t9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQUNCMi8zN0Q1QTNERTFE OUMxMUUyODkyRThCOEEwOEIwMkNEMi8yZW41OXo3azliSE44WFlzTGZPREtWQ2ph MzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJlbjU5ejdrOWJITjhYWXNMZk9ES1ZDamEzMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB QUNCMi8zN0Q1QTNERTFEOUMxMUUyODkyRThCOEEwOEIwMkNEMi8yZW41OXo3azli SE44WFlzTGZPREtWQ2phMzAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCs0Fk/ZTbg+JVATg5C+5hRjwZQkp+xPSikYv7Gq4SbPXGNS3fvWMxh DrRMAp2QgCcp8YS+zc0BzeqV6XJjoqv1ONJ3BU9RA2y61/oAbEzplewrHg2lT/8K JUmiSQddbf12jWXmig9wFINM060r49Mz49tcfRhG0oL3Pmrjpqnzjq8WbbRI8FUP qB3lyD3zWQg0+S4TLbicTnNPRaKslcqfj7pqPNbah5PSQi50KQm7rD6IJnoNDDj7 BX9n1mtnk3BymSiXNtA5AJSrLMr8z1g2lS5jVp1zfypkxwx4jIvpPiFT4sI0rF8L GxitMFhYRUSHaHTWMOjocA06F6DwSIOi -----END CERTIFICATE-----Generated at Thu May 15 12:42:38 2025 by rpki-client