$ rpki-client -vvf rpki.apnic.net/member_repository/A91AEF45/5D8B9B829F2A11ECA7CFAD0AC4F9AE02/rKpuJqXy3KoUzfyezI6c9oKaQCE.mft File: rKpuJqXy3KoUzfyezI6c9oKaQCE.mft (raw, json) Hash identifier: m157NeQjHMI3Crj12Ypc0raednz4ddhQUxLpizJsXSM= Subject key identifier: 0A:22:86:F9:BA:69:CF:7D:BF:4B:71:46:23:31:EF:93:B4:23:F8:52 Authority key identifier: AC:AA:6E:26:A5:F2:DC:AA:14:CD:FC:9E:CC:8E:9C:F6:82:9A:40:21 Certificate issuer: /CN=A91AEF45/serialNumber=ACAA6E26A5F2DCAA14CDFC9ECC8E9CF6829A4021 Certificate serial: 038B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rKpuJqXy3KoUzfyezI6c9oKaQCE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AEF45/5D8B9B829F2A11ECA7CFAD0AC4F9AE02/rKpuJqXy3KoUzfyezI6c9oKaQCE.mft Manifest number: 0387 Signing time: Tue 13 May 2025 00:38:59 +0000 Manifest this update: Tue 13 May 2025 00:38:58 +0000 Manifest next update: Tue 20 May 2025 00:38:58 +0000 Files and hashes: 1: rKpuJqXy3KoUzfyezI6c9oKaQCE.crl (hash: WTdmd026EVUYuIey2dMoHi4q3q9G2IdFmr+8cjOOn/k=) 2: 1AE323249F2D11EC897FD30CC4F9AE02.roa (hash: KeGUlxiblyObJWylXKCmQlAzDIkOWbFTSQRBaia1TDI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AEF45/5D8B9B829F2A11ECA7CFAD0AC4F9AE02/rKpuJqXy3KoUzfyezI6c9oKaQCE.crl rsync://rpki.apnic.net/member_repository/A91AEF45/5D8B9B829F2A11ECA7CFAD0AC4F9AE02/rKpuJqXy3KoUzfyezI6c9oKaQCE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rKpuJqXy3KoUzfyezI6c9oKaQCE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 20 May 2025 00:38:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 907 (0x38b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AEF45, serialNumber=ACAA6E26A5F2DCAA14CDFC9ECC8E9CF6829A4021 Validity Not Before: May 13 00:38:58 2025 GMT Not After : May 20 00:38:58 2025 GMT Subject: CN=682294a2-48b4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:5a:a4:1a:8c:e5:8e:3f:a8:c9:de:02:22:8e: 3f:e4:ea:7a:bc:f5:40:fb:a4:4c:b2:ef:7b:30:06: fc:a9:52:cb:99:85:d3:be:55:f3:70:56:31:4a:45: 20:c3:67:7d:5e:7c:21:97:43:47:98:3d:3d:aa:7c: 26:a8:28:8d:3e:81:4f:d4:bc:09:0a:e0:c7:0b:6e: 9f:e5:01:ac:55:f5:5c:00:60:94:a6:69:a1:62:92: 25:14:47:1e:8d:b6:52:d5:30:4e:4a:c4:95:cf:bb: 73:01:d6:69:d3:4c:e6:09:87:54:4e:19:a0:49:fc: e3:a9:d1:d7:4f:8f:9f:43:08:bd:00:2e:a3:67:85: bf:99:e7:a7:c4:13:71:87:d6:b8:34:fa:ad:55:c1: b0:8f:54:59:17:a1:95:21:ba:13:cd:ba:87:d4:20: 91:e0:ac:42:5c:96:cc:45:2d:b3:49:8a:5f:19:6f: 18:74:0e:47:e6:36:9e:7b:88:43:3e:fc:4a:7c:63: 7a:4a:49:b7:a9:4d:97:18:d3:11:15:7e:0a:6b:8e: 31:ee:0a:30:4b:87:76:f1:13:76:2b:1e:10:76:6d: fa:e5:76:27:ed:04:e1:82:8b:cc:71:42:02:47:59: 03:7a:75:8b:2b:25:c0:0a:cc:66:3d:db:ae:3b:34: 4a:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0A:22:86:F9:BA:69:CF:7D:BF:4B:71:46:23:31:EF:93:B4:23:F8:52 X509v3 Authority Key Identifier: keyid:AC:AA:6E:26:A5:F2:DC:AA:14:CD:FC:9E:CC:8E:9C:F6:82:9A:40:21 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AEF45/5D8B9B829F2A11ECA7CFAD0AC4F9AE02/rKpuJqXy3KoUzfyezI6c9oKaQCE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rKpuJqXy3KoUzfyezI6c9oKaQCE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AEF45/5D8B9B829F2A11ECA7CFAD0AC4F9AE02/rKpuJqXy3KoUzfyezI6c9oKaQCE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a8:bc:59:8f:0e:ee:e4:33:3a:11:78:1d:cc:25:6b:4e:19:54: f3:04:e3:f1:4c:95:9a:4d:cf:5e:9f:c0:60:83:a1:48:30:41: ce:9b:3f:d7:1e:2f:03:18:b3:ea:93:34:36:67:b3:f7:04:e3: 14:7c:e1:49:90:26:d9:6c:09:f5:e6:47:81:6c:16:25:6c:3a: f9:bd:fa:5d:88:a9:a1:66:d3:7f:2e:69:80:2c:6f:bb:6b:f4: 59:04:b2:2b:88:1e:73:fb:a9:5b:82:16:1c:f7:e1:10:cd:c0: f7:7c:03:93:54:81:fd:b8:44:82:95:9e:86:2b:1a:bf:5d:40: 44:14:44:03:d8:44:b5:61:ca:1a:d0:ec:59:ec:ec:e0:e4:f2: 81:86:24:83:0d:c9:1d:75:49:af:0e:16:98:7d:5c:8c:e6:90: 9c:7e:a6:eb:22:c1:75:11:a1:d7:d5:a7:d6:e5:4e:4f:96:a2: f8:d5:ee:8b:ce:ec:f0:80:49:b9:aa:47:64:2e:18:be:cc:b6: 3d:e5:74:de:83:fa:94:5c:b2:2d:fb:58:bf:22:53:55:a9:ba: 39:26:4b:6b:63:f8:12:7e:d9:72:57:a5:0f:bd:06:94:d6:5a: 1c:20:d6:12:86:16:42:b2:90:2d:72:6f:06:25:e7:09:fd:79: 81:c5:96:26 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA4swDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUVGNDUxMTAvBgNVBAUTKEFDQUE2RTI2QTVGMkRDQUExNENERkM5RUNDOEU5Q0Y2 ODI5QTQwMjEwHhcNMjUwNTEzMDAzODU4WhcNMjUwNTIwMDAzODU4WjAYMRYwFAYD VQQDEw02ODIyOTRhMi00OGI0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyFqkGozljj+oyd4CIo4/5Op6vPVA+6RMsu97MAb8qVLLmYXTvlXzcFYxSkUg w2d9Xnwhl0NHmD09qnwmqCiNPoFP1LwJCuDHC26f5QGsVfVcAGCUpmmhYpIlFEce jbZS1TBOSsSVz7tzAdZp00zmCYdUThmgSfzjqdHXT4+fQwi9AC6jZ4W/meenxBNx h9a4NPqtVcGwj1RZF6GVIboTzbqH1CCR4KxCXJbMRS2zSYpfGW8YdA5H5jaee4hD PvxKfGN6Skm3qU2XGNMRFX4Ka44x7gowS4d28RN2Kx4Qdm365XYn7QThgovMcUIC R1kDenWLKyXACsxmPduuOzRKzQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAoihvm6 ac99v0txRiMx75O0I/hSMB8GA1UdIwQYMBaAFKyqbial8tyqFM38nsyOnPaCmkAh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBRUY0NS81RDhCOUI4MjlG MkExMUVDQTdDRkFEMEFDNEY5QUUwMi9yS3B1SnFYeTNLb1V6Znllekk2YzlvS2FR Q0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JLcHVKcVh5M0tvVXpmeWV6STZjOW9LYVFDRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB RUY0NS81RDhCOUI4MjlGMkExMUVDQTdDRkFEMEFDNEY5QUUwMi9yS3B1SnFYeTNL b1V6Znllekk2YzlvS2FRQ0UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCovFmPDu7kMzoReB3MJWtOGVTzBOPxTJWaTc9en8Bgg6FIMEHOmz/X Hi8DGLPqkzQ2Z7P3BOMUfOFJkCbZbAn15keBbBYlbDr5vfpdiKmhZtN/LmmALG+7 a/RZBLIriB5z+6lbghYc9+EQzcD3fAOTVIH9uESClZ6GKxq/XUBEFEQD2ES1Ycoa 0OxZ7Ozg5PKBhiSDDckddUmvDhaYfVyM5pCcfqbrIsF1EaHX1afW5U5PlqL41e6L zuzwgEm5qkdkLhi+zLY95XTeg/qUXLIt+1i/IlNVqbo5JktrY/gSftlyV6UPvQaU 1locINYShhZCspAtcm8GJecJ/XmBxZYm -----END CERTIFICATE-----Generated at Thu May 15 00:23:38 2025 by rpki-client