$ rpki-client -vvf rpki.apnic.net/member_repository/A91AE9F6/8F23CE841D5F11EFB8374D3DC4F9AE02/sejBHBQOD6dR6L-mWlnHFd1-HFM.mft File: sejBHBQOD6dR6L-mWlnHFd1-HFM.mft (raw, json) Hash identifier: 5WnDhoWV+Jm4D7ymcu3DqGBg9ps304yM/cJD+7XY/ig= Subject key identifier: 83:3B:C0:7D:45:B3:50:F8:97:EF:2F:75:8F:D6:6F:F7:EB:A0:2C:25 Authority key identifier: B1:E8:C1:1C:14:0E:0F:A7:51:E8:BF:A6:5A:59:C7:15:DD:7E:1C:53 Certificate issuer: /CN=A91AE9F6/serialNumber=B1E8C11C140E0FA751E8BFA65A59C715DD7E1C53 Certificate serial: B6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sejBHBQOD6dR6L-mWlnHFd1-HFM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AE9F6/8F23CE841D5F11EFB8374D3DC4F9AE02/sejBHBQOD6dR6L-mWlnHFd1-HFM.mft Manifest number: B4 Signing time: Fri 09 May 2025 05:01:47 +0000 Manifest this update: Fri 09 May 2025 05:01:46 +0000 Manifest next update: Fri 16 May 2025 05:01:46 +0000 Files and hashes: 1: sejBHBQOD6dR6L-mWlnHFd1-HFM.crl (hash: P6XH6YY0UlKR/uWWQioWSblulIBR77upszyogoHu+nM=) 2: 4D45F08C1E3B11EFB02B0184C4F9AE02.roa (hash: +50v3mlEKF+ZCfC1CHUDd+fzqudaC4LTsu2ANTG7KU4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AE9F6/8F23CE841D5F11EFB8374D3DC4F9AE02/sejBHBQOD6dR6L-mWlnHFd1-HFM.crl rsync://rpki.apnic.net/member_repository/A91AE9F6/8F23CE841D5F11EFB8374D3DC4F9AE02/sejBHBQOD6dR6L-mWlnHFd1-HFM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sejBHBQOD6dR6L-mWlnHFd1-HFM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 16 May 2025 05:01:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 182 (0xb6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AE9F6, serialNumber=B1E8C11C140E0FA751E8BFA65A59C715DD7E1C53 Validity Not Before: May 9 05:01:46 2025 GMT Not After : May 16 05:01:46 2025 GMT Subject: CN=681d8c3b-88d2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:9d:a8:ce:9b:9b:38:18:f6:b6:c0:70:f7:f0: cd:27:8d:ce:5c:a2:2d:7d:73:ce:ac:80:8e:75:37: fe:03:c8:a3:fa:67:bf:16:b0:70:96:12:3a:ce:1c: 32:c0:d9:a2:43:aa:67:fc:1a:1f:56:95:23:46:bd: fe:a9:a8:40:a7:78:08:ad:a6:6e:b4:5c:3e:fa:55: ec:97:68:d0:c1:e3:c8:ca:6e:5b:a8:92:d1:c7:8e: 2c:06:b5:ab:5d:30:98:33:7e:64:26:1f:ba:d8:76: e9:03:86:9d:19:ed:1e:d0:c5:3e:33:05:92:66:30: b7:e0:c0:da:91:e6:01:77:73:39:e4:26:a5:f2:b4: fe:a9:e8:44:43:ae:de:1b:3e:2f:25:9d:3f:56:62: 5d:b6:a3:45:40:b6:50:5a:ca:bf:ff:ae:0c:7d:4d: a1:3f:e3:65:81:e1:d7:86:e3:07:d1:cf:78:ab:07: dd:df:bf:d7:2b:d7:6a:70:af:d8:f2:1b:d7:18:0a: 7b:eb:47:45:e2:fc:ff:ee:f1:19:28:8a:67:c9:a6: 2b:29:22:59:02:f3:e2:69:18:2c:36:6f:43:65:d4: 31:07:e2:5d:e1:22:c1:86:26:20:e0:a6:21:eb:b0: 24:b5:4d:a0:cd:f3:6b:e9:57:85:bd:73:06:4c:2a: 83:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 83:3B:C0:7D:45:B3:50:F8:97:EF:2F:75:8F:D6:6F:F7:EB:A0:2C:25 X509v3 Authority Key Identifier: keyid:B1:E8:C1:1C:14:0E:0F:A7:51:E8:BF:A6:5A:59:C7:15:DD:7E:1C:53 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AE9F6/8F23CE841D5F11EFB8374D3DC4F9AE02/sejBHBQOD6dR6L-mWlnHFd1-HFM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sejBHBQOD6dR6L-mWlnHFd1-HFM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AE9F6/8F23CE841D5F11EFB8374D3DC4F9AE02/sejBHBQOD6dR6L-mWlnHFd1-HFM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 00:77:49:ca:1d:9b:13:4e:fb:0e:1c:92:f7:44:e2:4d:0d:f8: 6d:b4:5a:cb:7c:c7:9a:03:3b:49:bc:02:d6:2e:43:28:1a:62: 3b:71:cc:c0:6f:86:5c:07:17:3c:ce:ce:ac:26:70:f4:36:c5: 90:5e:a8:7b:66:31:f0:d3:84:97:fe:aa:86:dd:c9:55:69:31: 77:cf:4b:49:63:6f:82:c8:c1:30:26:b3:6e:67:70:26:c2:8a: a3:a1:9c:c1:b0:67:ad:b5:ef:4a:38:29:b9:ad:d6:1c:d2:5e: 40:0d:c7:4a:aa:5a:d0:2b:14:d3:55:14:5e:6f:77:ae:40:04: d4:ac:5f:5c:b2:75:2b:25:42:e2:81:a5:14:fc:8e:a1:f3:1c: 27:4e:ea:7e:41:ec:c8:bc:f8:0b:5f:be:50:d1:50:37:d1:0d: 15:7c:f3:38:7d:dc:1a:55:9b:46:07:2e:86:14:38:dd:32:dd: 44:3c:a3:d7:ac:20:f2:f8:c1:34:e5:27:27:76:39:b0:15:c6: a3:f0:c3:e3:4a:d8:48:56:28:04:6d:6a:b3:81:b2:13:b1:12: c5:58:07:b2:39:72:30:f2:f4:ad:82:9f:83:a9:c5:75:88:78: 5a:d3:02:c1:1d:51:f0:9b:1a:90:07:62:be:6a:79:ad:f1:2b: b9:c1:9f:7a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICALYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUU5RjYxMTAvBgNVBAUTKEIxRThDMTFDMTQwRTBGQTc1MUU4QkZBNjVBNTlDNzE1 REQ3RTFDNTMwHhcNMjUwNTA5MDUwMTQ2WhcNMjUwNTE2MDUwMTQ2WjAYMRYwFAYD VQQDEw02ODFkOGMzYi04OGQyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzZ2ozpubOBj2tsBw9/DNJ43OXKItfXPOrICOdTf+A8ij+me/FrBwlhI6zhwy wNmiQ6pn/BofVpUjRr3+qahAp3gIraZutFw++lXsl2jQwePIym5bqJLRx44sBrWr XTCYM35kJh+62HbpA4adGe0e0MU+MwWSZjC34MDakeYBd3M55Cal8rT+qehEQ67e Gz4vJZ0/VmJdtqNFQLZQWsq//64MfU2hP+NlgeHXhuMH0c94qwfd37/XK9dqcK/Y 8hvXGAp760dF4vz/7vEZKIpnyaYrKSJZAvPiaRgsNm9DZdQxB+Jd4SLBhiYg4KYh 67AktU2gzfNr6VeFvXMGTCqD3QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIM7wH1F s1D4l+8vdY/Wb/froCwlMB8GA1UdIwQYMBaAFLHowRwUDg+nUei/plpZxxXdfhxT MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBRTlGNi84RjIzQ0U4NDFE NUYxMUVGQjgzNzREM0RDNEY5QUUwMi9zZWpCSEJRT0Q2ZFI2TC1tV2xuSEZkMS1I Rk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3NlakJIQlFPRDZkUjZMLW1XbG5IRmQxLUhGTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB RTlGNi84RjIzQ0U4NDFENUYxMUVGQjgzNzREM0RDNEY5QUUwMi9zZWpCSEJRT0Q2 ZFI2TC1tV2xuSEZkMS1IRk0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAAd0nKHZsTTvsOHJL3ROJNDfhttFrLfMeaAztJvALWLkMoGmI7cczA b4ZcBxc8zs6sJnD0NsWQXqh7ZjHw04SX/qqG3clVaTF3z0tJY2+CyMEwJrNuZ3Am woqjoZzBsGette9KOCm5rdYc0l5ADcdKqlrQKxTTVRReb3euQATUrF9csnUrJULi gaUU/I6h8xwnTup+QezIvPgLX75Q0VA30Q0VfPM4fdwaVZtGBy6GFDjdMt1EPKPX rCDy+ME05ScndjmwFcaj8MPjSthIVigEbWqzgbITsRLFWAeyOXIw8vStgp+DqcV1 iHha0wLBHVHwmxqQB2K+anmt8Su5wZ96 -----END CERTIFICATE-----Generated at Sat May 10 19:45:37 2025 by rpki-client