$ rpki-client -vvf rpki.apnic.net/member_repository/A91AE1B5/8B405E5E003B11EF911B8F68C4F9AE02/7sDpmYfcHqnUAviE_NqX4DFFpKA.mft File: 7sDpmYfcHqnUAviE_NqX4DFFpKA.mft (raw, json) Hash identifier: 7KKl0AokE0fgGdsbPUX4IDumbZ067CrYnAFOKpOIaWg= Subject key identifier: F1:1A:77:3A:9D:E2:5C:95:E3:EB:9B:26:B4:D0:87:DC:21:87:A5:7C Authority key identifier: EE:C0:E9:99:87:DC:1E:A9:D4:02:F8:84:FC:DA:97:E0:31:45:A4:A0 Certificate issuer: /CN=A91AE1B5/serialNumber=EEC0E99987DC1EA9D402F884FCDA97E03145A4A0 Certificate serial: CB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7sDpmYfcHqnUAviE_NqX4DFFpKA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AE1B5/8B405E5E003B11EF911B8F68C4F9AE02/7sDpmYfcHqnUAviE_NqX4DFFpKA.mft Manifest number: C8 Signing time: Sun 11 May 2025 04:35:18 +0000 Manifest this update: Sun 11 May 2025 04:35:18 +0000 Manifest next update: Sun 18 May 2025 04:35:18 +0000 Files and hashes: 1: 7sDpmYfcHqnUAviE_NqX4DFFpKA.crl (hash: jSBvChxtIjihpDREeqUppjB7oflWHwWVw1FhEKBzCpc=) 2: D2A2FF4A003B11EFA6658D0DC4F9AE02.roa (hash: clTuA98QXCvhi5mCW68DYLjtbFWaH5Tnj/x9STwbSAY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AE1B5/8B405E5E003B11EF911B8F68C4F9AE02/7sDpmYfcHqnUAviE_NqX4DFFpKA.crl rsync://rpki.apnic.net/member_repository/A91AE1B5/8B405E5E003B11EF911B8F68C4F9AE02/7sDpmYfcHqnUAviE_NqX4DFFpKA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7sDpmYfcHqnUAviE_NqX4DFFpKA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 18 May 2025 04:35:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 203 (0xcb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AE1B5, serialNumber=EEC0E99987DC1EA9D402F884FCDA97E03145A4A0 Validity Not Before: May 11 04:35:18 2025 GMT Not After : May 18 04:35:18 2025 GMT Subject: CN=68202906-5a5f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:29:58:d0:ff:5b:69:2f:a1:87:ef:5e:e2:fc: c0:8b:3a:b9:5a:65:47:ec:63:f9:a7:ce:36:39:3f: 6a:18:83:83:09:7f:69:9c:06:81:8a:31:3e:74:8f: bb:66:7a:be:ea:2d:07:64:b6:26:b9:d7:1b:27:34: 38:ca:06:60:bd:2f:e5:32:e7:9a:41:85:69:3b:ec: f3:08:2e:96:c7:00:c9:db:79:ab:1d:c6:32:c0:25: 2f:4f:28:30:19:f7:dc:b8:4e:68:6d:dc:a4:1f:17: f2:84:9c:a1:aa:9b:31:72:21:6e:55:7b:0f:45:b5: 01:6d:d3:4c:c0:bb:fc:b7:86:1b:6b:6c:83:60:13: d3:62:c2:b6:a0:24:a0:94:8f:15:61:5e:ab:eb:12: 82:1f:97:3a:32:7b:38:6b:69:6b:9e:d0:f9:5c:52: 82:7a:33:1f:b6:c3:04:c3:99:1d:6d:40:30:cd:7c: 42:3c:52:2c:73:b4:db:d2:9e:82:9e:a5:4e:f2:7e: 78:f3:4a:bb:e3:29:84:3f:06:c0:a0:86:11:62:a6: db:e2:42:1e:a1:1d:ce:91:d0:42:42:1f:0f:db:fb: f4:51:b0:c4:c9:14:98:46:dc:80:46:b6:77:88:af: 70:c4:f5:55:5a:37:57:2d:0e:cb:35:3b:fe:e2:02: 03:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F1:1A:77:3A:9D:E2:5C:95:E3:EB:9B:26:B4:D0:87:DC:21:87:A5:7C X509v3 Authority Key Identifier: keyid:EE:C0:E9:99:87:DC:1E:A9:D4:02:F8:84:FC:DA:97:E0:31:45:A4:A0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AE1B5/8B405E5E003B11EF911B8F68C4F9AE02/7sDpmYfcHqnUAviE_NqX4DFFpKA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7sDpmYfcHqnUAviE_NqX4DFFpKA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AE1B5/8B405E5E003B11EF911B8F68C4F9AE02/7sDpmYfcHqnUAviE_NqX4DFFpKA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5a:34:06:6c:a6:39:3c:d6:93:12:b0:f1:58:9d:a3:cf:72:60: 03:c1:e2:c8:73:c1:10:1b:12:fc:07:a4:4a:42:0a:55:f7:30: bd:53:50:cc:eb:80:16:ed:cf:a3:bb:bc:de:63:68:2d:5b:f8: 17:f0:c8:07:ca:70:a7:89:51:f4:4f:82:02:75:22:ff:f6:c9: 03:7d:5f:19:ef:25:a4:4f:de:53:30:e1:f7:e7:c9:fb:66:09: ab:9f:9a:78:f4:ec:d2:b7:39:b3:80:c1:1e:50:f9:8a:88:85: d0:58:1f:45:45:a6:10:63:bc:84:37:c8:a6:bc:63:b7:6c:77: e5:ff:c6:8e:cc:bb:f8:4d:f8:2c:9f:3a:1e:5f:da:78:a3:9b: 3d:e3:9f:19:e8:a7:3f:7f:68:48:73:18:0c:ac:54:8e:e5:7b: cb:2c:2a:b4:ac:d4:f8:4b:85:0e:ed:fe:78:8a:fb:a8:5b:fc: 44:e1:34:fc:d7:a9:87:9c:02:84:3d:3b:ee:30:67:ee:e4:f7: eb:5c:3f:fa:eb:42:63:66:04:9b:5d:35:d7:93:58:b1:74:1a: ba:dd:7a:05:b5:28:fd:e9:ea:6f:56:a2:16:a7:cc:f9:20:d3: 7e:78:15:7e:47:ef:f9:b3:c2:16:81:b3:27:17:c4:7e:a8:ea: 30:fb:a4:e7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAMswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUUxQjUxMTAvBgNVBAUTKEVFQzBFOTk5ODdEQzFFQTlENDAyRjg4NEZDREE5N0Uw MzE0NUE0QTAwHhcNMjUwNTExMDQzNTE4WhcNMjUwNTE4MDQzNTE4WjAYMRYwFAYD VQQDEw02ODIwMjkwNi01YTVmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2ilY0P9baS+hh+9e4vzAizq5WmVH7GP5p842OT9qGIODCX9pnAaBijE+dI+7 Znq+6i0HZLYmudcbJzQ4ygZgvS/lMueaQYVpO+zzCC6WxwDJ23mrHcYywCUvTygw GffcuE5obdykHxfyhJyhqpsxciFuVXsPRbUBbdNMwLv8t4Yba2yDYBPTYsK2oCSg lI8VYV6r6xKCH5c6Mns4a2lrntD5XFKCejMftsMEw5kdbUAwzXxCPFIsc7Tb0p6C nqVO8n5480q74ymEPwbAoIYRYqbb4kIeoR3OkdBCQh8P2/v0UbDEyRSYRtyARrZ3 iK9wxPVVWjdXLQ7LNTv+4gID8wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPEadzqd 4lyV4+ubJrTQh9whh6V8MB8GA1UdIwQYMBaAFO7A6ZmH3B6p1AL4hPzal+AxRaSg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBRTFCNS84QjQwNUU1RTAw M0IxMUVGOTExQjhGNjhDNEY5QUUwMi83c0RwbVlmY0hxblVBdmlFX05xWDRERkZw S0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzdzRHBtWWZjSHFuVUF2aUVfTnFYNERGRnBLQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB RTFCNS84QjQwNUU1RTAwM0IxMUVGOTExQjhGNjhDNEY5QUUwMi83c0RwbVlmY0hx blVBdmlFX05xWDRERkZwS0EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBaNAZspjk81pMSsPFYnaPPcmADweLIc8EQGxL8B6RKQgpV9zC9U1DM 64AW7c+ju7zeY2gtW/gX8MgHynCniVH0T4ICdSL/9skDfV8Z7yWkT95TMOH358n7 Zgmrn5p49OzStzmzgMEeUPmKiIXQWB9FRaYQY7yEN8imvGO3bHfl/8aOzLv4Tfgs nzoeX9p4o5s9458Z6Kc/f2hIcxgMrFSO5XvLLCq0rNT4S4UO7f54ivuoW/xE4TT8 16mHnAKEPTvuMGfu5PfrXD/660JjZgSbXTXXk1ixdBq63XoFtSj96epvVqIWp8z5 INN+eBV+R+/5s8IWgbMnF8R+qOow+6Tn -----END CERTIFICATE-----Generated at Sun May 11 23:35:06 2025 by rpki-client