$ rpki-client -vvf rpki.apnic.net/member_repository/A91AB063/1186B6BC093A11E79540950BC4F9AE02/51hPlZoIGk3ZSAk1MFHSNZOcOR0.mft File: 51hPlZoIGk3ZSAk1MFHSNZOcOR0.mft (raw, json) Hash identifier: UnqOx/8imBxFjB/e6fpsBbFROkwhhFUkMvbRpH/SVzs= Subject key identifier: 71:C0:AB:97:D7:A1:A9:5D:84:A5:97:9B:74:54:19:5B:0E:16:33:FF Authority key identifier: E7:58:4F:95:9A:08:1A:4D:D9:48:09:35:30:51:D2:35:93:9C:39:1D Certificate issuer: /CN=A91AB063/serialNumber=E7584F959A081A4DD94809353051D235939C391D Certificate serial: 1B7A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/51hPlZoIGk3ZSAk1MFHSNZOcOR0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AB063/1186B6BC093A11E79540950BC4F9AE02/51hPlZoIGk3ZSAk1MFHSNZOcOR0.mft Manifest number: 1B6E Signing time: Mon 12 May 2025 16:13:18 +0000 Manifest this update: Mon 12 May 2025 16:13:17 +0000 Manifest next update: Mon 19 May 2025 16:13:17 +0000 Files and hashes: 1: 51hPlZoIGk3ZSAk1MFHSNZOcOR0.crl (hash: bt2Q3jsAE486Px38I460QPzceq65WeoJvBxfICqJIzs=) 2: B6FD84CE54F611E79DF7E643C4F9AE02.roa (hash: YQFMKBF60xX3PieFKAIG2OCODzb9u3iqyawtkqXWSC0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AB063/1186B6BC093A11E79540950BC4F9AE02/51hPlZoIGk3ZSAk1MFHSNZOcOR0.crl rsync://rpki.apnic.net/member_repository/A91AB063/1186B6BC093A11E79540950BC4F9AE02/51hPlZoIGk3ZSAk1MFHSNZOcOR0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/51hPlZoIGk3ZSAk1MFHSNZOcOR0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 19 May 2025 16:13:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7034 (0x1b7a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AB063, serialNumber=E7584F959A081A4DD94809353051D235939C391D Validity Not Before: May 12 16:13:17 2025 GMT Not After : May 19 16:13:17 2025 GMT Subject: CN=68221e1e-3a0c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:47:3a:80:17:c0:7c:31:f5:14:a0:15:08:98: b9:51:89:f0:df:7c:bf:55:13:e6:df:2d:9c:43:2a: 6b:86:24:76:e4:35:17:77:1d:0a:ec:f6:53:1f:2c: 2d:84:69:ef:fe:89:25:cc:23:a1:bf:17:4e:ae:de: 84:cd:52:02:1c:1d:08:5a:64:a6:b6:48:3d:07:1e: 4f:4f:fa:1f:54:3f:a7:12:60:33:5a:56:37:1a:6a: fc:c9:c6:e7:2b:dd:a5:62:c4:38:04:34:66:d1:86: ab:3e:f3:9d:ef:fd:76:66:c3:38:1a:f9:cd:6d:4e: 8d:9f:27:94:12:9a:59:71:0c:e0:08:4a:7b:50:ee: 7c:04:8b:b4:c6:a9:89:45:ee:7a:d6:ea:b6:33:1a: 77:f4:48:73:ea:47:49:b4:a1:95:d9:85:a1:03:2f: 1e:af:ea:d3:5a:53:e2:0b:61:fb:49:22:f7:1d:78: b2:33:90:43:b5:90:a1:ea:4f:ee:28:f3:63:9b:ac: b4:49:50:db:b9:8c:7e:62:c6:e8:5e:f3:53:81:82: 14:78:77:3f:29:47:98:60:b1:3f:1a:91:af:3c:d5: 44:3a:70:ca:2b:7e:0c:7c:db:cd:54:3d:f5:98:23: db:29:d7:21:b1:68:7d:7f:38:97:93:1b:25:c5:e9: 06:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 71:C0:AB:97:D7:A1:A9:5D:84:A5:97:9B:74:54:19:5B:0E:16:33:FF X509v3 Authority Key Identifier: keyid:E7:58:4F:95:9A:08:1A:4D:D9:48:09:35:30:51:D2:35:93:9C:39:1D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AB063/1186B6BC093A11E79540950BC4F9AE02/51hPlZoIGk3ZSAk1MFHSNZOcOR0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/51hPlZoIGk3ZSAk1MFHSNZOcOR0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AB063/1186B6BC093A11E79540950BC4F9AE02/51hPlZoIGk3ZSAk1MFHSNZOcOR0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 30:ee:55:7d:ba:d5:19:af:40:bd:17:af:a4:6b:2d:99:0c:a1: 18:14:fd:b5:8f:37:84:09:f9:41:59:aa:8b:f9:02:59:7a:34: cf:ef:40:38:e9:d7:d4:51:3b:6e:ac:03:5c:1e:23:74:97:36: a2:15:d0:6a:1a:a4:da:d3:7f:89:84:c4:80:23:c2:61:e9:64: 42:a0:48:a4:ff:f9:24:45:a2:e4:67:ce:36:7f:4a:6c:21:21: b3:9a:e9:68:38:d7:01:b0:44:da:3d:eb:08:9f:de:f8:d1:64: 82:4b:04:18:ff:55:97:39:d0:7e:18:d1:71:54:45:ec:18:8f: 1f:3c:14:9e:96:c2:69:b2:3e:19:a5:5b:53:7b:75:95:26:ae: a0:b2:62:4a:59:83:93:d0:e6:68:38:be:91:c9:34:33:2d:68: 5a:d8:46:44:2b:fe:19:21:de:e0:60:12:4d:bd:fd:8a:23:5e: 33:40:79:08:d5:b5:a8:ba:24:ec:04:6d:d6:90:89:f9:41:3e: cf:06:4a:5f:0a:ff:ef:eb:17:85:78:23:87:b9:42:31:a8:a2: 89:38:68:90:db:28:d4:29:2c:ac:02:f2:0d:01:a9:37:7c:0d: 5d:f8:f0:69:f9:62:db:49:ab:d2:fc:78:2a:5c:7e:8a:83:10: fd:ce:b3:7c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICG3owDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUIwNjMxMTAvBgNVBAUTKEU3NTg0Rjk1OUEwODFBNEREOTQ4MDkzNTMwNTFEMjM1 OTM5QzM5MUQwHhcNMjUwNTEyMTYxMzE3WhcNMjUwNTE5MTYxMzE3WjAYMRYwFAYD VQQDEw02ODIyMWUxZS0zYTBjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1Uc6gBfAfDH1FKAVCJi5UYnw33y/VRPm3y2cQyprhiR25DUXdx0K7PZTHywt hGnv/oklzCOhvxdOrt6EzVICHB0IWmSmtkg9Bx5PT/ofVD+nEmAzWlY3Gmr8ycbn K92lYsQ4BDRm0YarPvOd7/12ZsM4GvnNbU6NnyeUEppZcQzgCEp7UO58BIu0xqmJ Re561uq2Mxp39Ehz6kdJtKGV2YWhAy8er+rTWlPiC2H7SSL3HXiyM5BDtZCh6k/u KPNjm6y0SVDbuYx+YsboXvNTgYIUeHc/KUeYYLE/GpGvPNVEOnDKK34MfNvNVD31 mCPbKdchsWh9fziXkxslxekGywIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHHAq5fX oaldhKWXm3RUGVsOFjP/MB8GA1UdIwQYMBaAFOdYT5WaCBpN2UgJNTBR0jWTnDkd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQjA2My8xMTg2QjZCQzA5 M0ExMUU3OTU0MDk1MEJDNEY5QUUwMi81MWhQbFpvSUdrM1pTQWsxTUZIU05aT2NP UjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzUxaFBsWm9JR2szWlNBazFNRkhTTlpPY09SMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB QjA2My8xMTg2QjZCQzA5M0ExMUU3OTU0MDk1MEJDNEY5QUUwMi81MWhQbFpvSUdr M1pTQWsxTUZIU05aT2NPUjAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAw7lV9utUZr0C9F6+kay2ZDKEYFP21jzeECflBWaqL+QJZejTP70A4 6dfUUTturANcHiN0lzaiFdBqGqTa03+JhMSAI8Jh6WRCoEik//kkRaLkZ842f0ps ISGzmuloONcBsETaPesIn9740WSCSwQY/1WXOdB+GNFxVEXsGI8fPBSelsJpsj4Z pVtTe3WVJq6gsmJKWYOT0OZoOL6RyTQzLWha2EZEK/4ZId7gYBJNvf2KI14zQHkI 1bWouiTsBG3WkIn5QT7PBkpfCv/v6xeFeCOHuUIxqKKJOGiQ2yjUKSysAvINAak3 fA1d+PBp+WLbSavS/HgqXH6KgxD9zrN8 -----END CERTIFICATE-----Generated at Mon May 12 21:07:27 2025 by rpki-client