$ rpki-client -vvf rpki.apnic.net/member_repository/A91AD544/459C89E475F211EBA3ED3647C4F9AE02/AWWp3MArwOh2h-4GcFwObJkt6TI.mft File: AWWp3MArwOh2h-4GcFwObJkt6TI.mft (raw, json) Hash identifier: /2ZiXCilV7aGKiFkULvsrfie9JWf8n4bRK4p+Hd8IrA= Subject key identifier: 27:08:5D:68:E7:73:43:F5:34:E9:74:6B:14:CF:ED:24:84:9C:9D:C2 Authority key identifier: 01:65:A9:DC:C0:2B:C0:E8:76:87:EE:06:70:5C:0E:6C:99:2D:E9:32 Certificate issuer: /CN=A91AD544/serialNumber=0165A9DCC02BC0E87687EE06705C0E6C992DE932 Certificate serial: 067E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AWWp3MArwOh2h-4GcFwObJkt6TI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AD544/459C89E475F211EBA3ED3647C4F9AE02/AWWp3MArwOh2h-4GcFwObJkt6TI.mft Manifest number: 0678 Signing time: Mon 12 May 2025 22:05:14 +0000 Manifest this update: Mon 12 May 2025 22:05:14 +0000 Manifest next update: Mon 19 May 2025 22:05:14 +0000 Files and hashes: 1: AWWp3MArwOh2h-4GcFwObJkt6TI.crl (hash: vuYubxsl5VeMC7sT2qYtm5lzfzsXKggSwvTFyAdOL+w=) 2: 206DDC4A77AF11EB8E972C66C4F9AE02.roa (hash: zqG4bc06KvBhxn6QFTh7x4mtk1td0qh6Ee0/kRUb20s=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AD544/459C89E475F211EBA3ED3647C4F9AE02/AWWp3MArwOh2h-4GcFwObJkt6TI.crl rsync://rpki.apnic.net/member_repository/A91AD544/459C89E475F211EBA3ED3647C4F9AE02/AWWp3MArwOh2h-4GcFwObJkt6TI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AWWp3MArwOh2h-4GcFwObJkt6TI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 19 May 2025 22:05:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1662 (0x67e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AD544, serialNumber=0165A9DCC02BC0E87687EE06705C0E6C992DE932 Validity Not Before: May 12 22:05:14 2025 GMT Not After : May 19 22:05:14 2025 GMT Subject: CN=6822709a-f022 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:1c:4a:14:43:56:14:05:1c:05:6d:eb:1d:07: fc:e1:41:21:b7:76:04:09:d5:f0:37:a1:ca:23:76: e7:af:67:99:10:83:73:04:79:83:e7:ba:e2:b0:37: 96:40:8c:c4:3b:ff:cc:8e:5e:29:49:f1:98:5e:8d: ac:44:ad:16:0f:ca:55:1f:5d:46:32:12:25:f4:7b: b6:fd:1c:3d:4e:9d:d6:0f:41:0b:c5:af:05:23:29: d6:75:57:51:3a:c8:b2:4c:76:62:f1:80:f7:43:56: 28:4c:47:e9:6c:18:03:6a:50:14:06:8f:34:71:ab: 7e:d2:52:c2:64:28:0b:37:86:9e:4d:be:5a:af:2f: 82:ac:23:bc:a4:ef:6c:54:c9:0d:e5:48:7a:e2:31: 69:38:5a:27:bf:f0:6e:ed:02:80:57:56:ee:3d:7b: b5:3c:fc:86:c9:b9:39:a4:cd:41:83:f5:2c:8a:3a: 01:b4:f2:ea:3b:75:88:50:b8:b1:e2:23:0d:65:7f: 32:aa:60:21:74:85:d6:39:37:ce:41:3e:01:e6:4d: 7e:5b:2f:c2:2b:dd:af:43:68:15:8a:c0:6c:b4:76: a1:33:af:3a:86:c9:9f:60:2a:7b:2a:cd:4a:9a:4d: 8e:75:f5:34:75:77:fe:4c:11:85:1d:0b:55:70:15: 58:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 27:08:5D:68:E7:73:43:F5:34:E9:74:6B:14:CF:ED:24:84:9C:9D:C2 X509v3 Authority Key Identifier: keyid:01:65:A9:DC:C0:2B:C0:E8:76:87:EE:06:70:5C:0E:6C:99:2D:E9:32 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AD544/459C89E475F211EBA3ED3647C4F9AE02/AWWp3MArwOh2h-4GcFwObJkt6TI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AWWp3MArwOh2h-4GcFwObJkt6TI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AD544/459C89E475F211EBA3ED3647C4F9AE02/AWWp3MArwOh2h-4GcFwObJkt6TI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5c:ed:0d:10:64:29:e2:67:27:ea:ee:03:9a:f3:2b:bb:59:9b: 33:69:05:35:11:28:b7:9d:14:33:0a:db:9f:bb:d4:91:de:d2: 30:06:44:63:62:a8:65:42:a2:4b:01:e8:d5:7e:14:96:87:3c: ad:2a:86:40:7d:85:ac:be:68:4a:c7:b2:e1:f1:94:4c:00:e0: 26:ce:bb:41:21:00:6e:37:89:06:8f:0e:6c:71:43:31:5e:51: ea:07:94:51:83:5b:31:1b:59:4e:52:3b:f2:1f:c6:7d:5f:23: 46:13:33:85:93:ab:53:86:33:e9:ca:f9:57:96:33:52:2e:8b: cf:bc:f1:0d:aa:e1:db:cb:aa:36:c6:ac:df:56:1b:ec:1d:45: 09:a7:49:3c:72:8c:d2:ca:ca:33:25:83:95:33:4c:e4:c0:27: a0:4e:bb:3f:5d:6c:17:c3:36:e5:6b:96:05:32:31:c2:10:b3: 2f:c2:7c:d8:6e:a5:07:cc:6c:c6:c6:f4:88:04:ac:ec:5e:43: 2c:6e:2f:b7:16:b6:eb:e3:08:60:04:72:1c:55:47:2d:e4:af: df:8a:42:cc:a8:77:ec:5c:ab:d1:3c:75:3e:ee:cd:06:9d:07: 7a:9d:32:76:4f:8e:b3:30:4f:de:7c:ee:1e:86:19:40:da:50: d7:54:55:65 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBn4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUQ1NDQxMTAvBgNVBAUTKDAxNjVBOURDQzAyQkMwRTg3Njg3RUUwNjcwNUMwRTZD OTkyREU5MzIwHhcNMjUwNTEyMjIwNTE0WhcNMjUwNTE5MjIwNTE0WjAYMRYwFAYD VQQDEw02ODIyNzA5YS1mMDIyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqBxKFENWFAUcBW3rHQf84UEht3YECdXwN6HKI3bnr2eZEINzBHmD57risDeW QIzEO//Mjl4pSfGYXo2sRK0WD8pVH11GMhIl9Hu2/Rw9Tp3WD0ELxa8FIynWdVdR OsiyTHZi8YD3Q1YoTEfpbBgDalAUBo80cat+0lLCZCgLN4aeTb5ary+CrCO8pO9s VMkN5Uh64jFpOFonv/Bu7QKAV1buPXu1PPyGybk5pM1Bg/UsijoBtPLqO3WIULix 4iMNZX8yqmAhdIXWOTfOQT4B5k1+Wy/CK92vQ2gVisBstHahM686hsmfYCp7Ks1K mk2OdfU0dXf+TBGFHQtVcBVYpQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCcIXWjn c0P1NOl0axTP7SSEnJ3CMB8GA1UdIwQYMBaAFAFlqdzAK8DodofuBnBcDmyZLeky MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBRDU0NC80NTlDODlFNDc1 RjIxMUVCQTNFRDM2NDdDNEY5QUUwMi9BV1dwM01BcndPaDJoLTRHY0Z3T2JKa3Q2 VEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0FXV3AzTUFyd09oMmgtNEdjRndPYkprdDZUSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB RDU0NC80NTlDODlFNDc1RjIxMUVCQTNFRDM2NDdDNEY5QUUwMi9BV1dwM01BcndP aDJoLTRHY0Z3T2JKa3Q2VEkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBc7Q0QZCniZyfq7gOa8yu7WZszaQU1ESi3nRQzCtufu9SR3tIwBkRj YqhlQqJLAejVfhSWhzytKoZAfYWsvmhKx7Lh8ZRMAOAmzrtBIQBuN4kGjw5scUMx XlHqB5RRg1sxG1lOUjvyH8Z9XyNGEzOFk6tThjPpyvlXljNSLovPvPENquHby6o2 xqzfVhvsHUUJp0k8cozSysozJYOVM0zkwCegTrs/XWwXwzbla5YFMjHCELMvwnzY bqUHzGzGxvSIBKzsXkMsbi+3Frbr4whgBHIcVUct5K/fikLMqHfsXKvRPHU+7s0G nQd6nTJ2T46zME/efO4ehhlA2lDXVFVl -----END CERTIFICATE-----Generated at Tue May 13 19:40:14 2025 by rpki-client