$ rpki-client -vvf rpki.apnic.net/member_repository/A91AF145/278073CE36EA11EEAE10AA45C4F9AE02/cNpFkZHpBoa9sKxHq9owqcPhdPo.mft File: cNpFkZHpBoa9sKxHq9owqcPhdPo.mft (raw, json) Hash identifier: 3FZseHbtimZ9rwAZC9CYDmTFTx7+DFGfyFAZZ+/LWR0= Subject key identifier: 86:0B:31:95:BC:4F:70:15:B9:7B:C9:69:67:9A:1E:2F:B5:7B:49:A4 Authority key identifier: 70:DA:45:91:91:E9:06:86:BD:B0:AC:47:AB:DA:30:A9:C3:E1:74:FA Certificate issuer: /CN=A91AF145/serialNumber=70DA459191E90686BDB0AC47ABDA30A9C3E174FA Certificate serial: 015A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cNpFkZHpBoa9sKxHq9owqcPhdPo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AF145/278073CE36EA11EEAE10AA45C4F9AE02/cNpFkZHpBoa9sKxHq9owqcPhdPo.mft Manifest number: 0154 Signing time: Sun 11 May 2025 03:08:28 +0000 Manifest this update: Sun 11 May 2025 03:08:27 +0000 Manifest next update: Sun 18 May 2025 03:08:27 +0000 Files and hashes: 1: cNpFkZHpBoa9sKxHq9owqcPhdPo.crl (hash: wqJGCeLZThY6dCQiqM5cQnyjIFU3q2UpIHmD6GnhLrw=) 2: 43E9CB90DFF511EF8E4E3982C4F9AE02.roa (hash: ed3VnRz1sRChg/cFQmGXFi6QslMtcDU5X1xXHCQiW6k=) 3: 971B23D236EA11EE802E9246C4F9AE02.roa (hash: 4S5HT3Umab8tv1JR8LX9cjuccjEduaZGTp680hfQmts=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AF145/278073CE36EA11EEAE10AA45C4F9AE02/cNpFkZHpBoa9sKxHq9owqcPhdPo.crl rsync://rpki.apnic.net/member_repository/A91AF145/278073CE36EA11EEAE10AA45C4F9AE02/cNpFkZHpBoa9sKxHq9owqcPhdPo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cNpFkZHpBoa9sKxHq9owqcPhdPo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 18 May 2025 03:08:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 346 (0x15a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AF145, serialNumber=70DA459191E90686BDB0AC47ABDA30A9C3E174FA Validity Not Before: May 11 03:08:27 2025 GMT Not After : May 18 03:08:27 2025 GMT Subject: CN=682014ab-7bf3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:24:0f:5a:69:87:89:9d:29:a1:e9:bd:d0:c8: df:f5:c8:b4:d3:6d:81:c5:1f:bc:3c:cd:50:ef:69: c6:b4:32:4a:02:a3:27:e8:f0:10:46:ac:55:a5:78: dd:ab:8b:b1:5e:6b:dc:85:ec:d6:a5:46:e4:8d:18: 0d:90:d8:04:80:a0:36:ea:63:85:44:7a:cf:60:e0: 93:f5:88:99:88:00:08:eb:99:31:f1:3f:e2:22:ac: 5f:2e:f3:43:4b:e2:9a:a6:e8:7f:61:fa:3a:62:36: 26:7f:07:24:5e:3c:fd:95:5b:d4:5e:a9:dd:d6:42: 2f:22:fa:03:6e:20:33:12:5a:df:de:84:fc:92:00: 5f:7a:af:d0:5a:8e:78:cc:20:21:07:42:0c:7e:a0: 06:c9:36:ed:0d:44:83:f4:de:22:23:de:c5:53:98: bf:6c:80:de:f2:66:8b:68:e5:25:49:db:5d:ab:9d: d0:fd:be:7b:bc:9b:07:10:8f:97:f5:ee:0e:f5:01: 24:4e:f6:72:ea:36:18:a0:e7:7c:65:cb:bc:94:ef: 3a:8d:cb:a3:8e:ec:3e:b8:46:99:57:c4:cd:50:04: 38:28:16:d7:01:a0:65:e5:0a:53:99:c3:69:92:64: 06:3e:1e:11:ce:a4:ef:c0:d0:48:bd:30:9b:5d:23: e3:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 86:0B:31:95:BC:4F:70:15:B9:7B:C9:69:67:9A:1E:2F:B5:7B:49:A4 X509v3 Authority Key Identifier: keyid:70:DA:45:91:91:E9:06:86:BD:B0:AC:47:AB:DA:30:A9:C3:E1:74:FA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AF145/278073CE36EA11EEAE10AA45C4F9AE02/cNpFkZHpBoa9sKxHq9owqcPhdPo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cNpFkZHpBoa9sKxHq9owqcPhdPo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AF145/278073CE36EA11EEAE10AA45C4F9AE02/cNpFkZHpBoa9sKxHq9owqcPhdPo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 91:48:84:d1:a6:e1:e2:13:04:24:2d:e2:58:96:1a:2c:24:57: b9:70:fc:a4:8e:04:c3:54:7b:5b:86:54:ee:f5:65:a9:af:56: a8:88:20:1d:d3:e7:5b:58:11:53:83:4c:d2:73:5b:bd:e0:0b: 3a:5e:e7:80:fd:d3:61:d6:6e:0b:a0:da:a5:3c:95:ea:c2:5a: 45:27:72:9d:b4:28:8f:6c:39:d7:61:a8:76:63:9a:92:f4:4c: 0d:35:28:d1:42:e7:47:af:a5:f1:fe:14:f4:10:bb:ad:e8:2f: fe:df:ca:8d:03:a3:aa:ca:37:e6:8d:9b:ed:6c:ec:39:0b:82: a2:4c:70:aa:02:3b:26:64:0b:03:45:2e:6b:27:2d:cc:01:78: 9b:84:a8:ff:83:0d:af:6f:fd:78:b9:8f:21:36:47:68:c3:ef: 74:3b:7c:f8:9b:3d:8a:bd:4f:39:1e:54:31:4e:76:29:e5:0d: 4d:7b:9d:bc:15:0b:1d:c4:b3:2e:e8:13:f6:04:47:ab:1b:74: 04:4a:4a:e8:65:aa:78:ba:a8:12:5d:f3:90:38:3b:86:9f:e7: d1:cf:27:10:00:67:a8:13:f2:2c:d2:32:23:f1:78:85:cf:43: 30:02:d5:14:62:ca:61:3f:18:42:4e:ed:25:1a:e4:37:a9:e1: cc:66:89:51 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAVowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUYxNDUxMTAvBgNVBAUTKDcwREE0NTkxOTFFOTA2ODZCREIwQUM0N0FCREEzMEE5 QzNFMTc0RkEwHhcNMjUwNTExMDMwODI3WhcNMjUwNTE4MDMwODI3WjAYMRYwFAYD VQQDEw02ODIwMTRhYi03YmYzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApSQPWmmHiZ0poem90Mjf9ci0022BxR+8PM1Q72nGtDJKAqMn6PAQRqxVpXjd q4uxXmvchezWpUbkjRgNkNgEgKA26mOFRHrPYOCT9YiZiAAI65kx8T/iIqxfLvND S+Kapuh/Yfo6YjYmfwckXjz9lVvUXqnd1kIvIvoDbiAzElrf3oT8kgBfeq/QWo54 zCAhB0IMfqAGyTbtDUSD9N4iI97FU5i/bIDe8maLaOUlSdtdq53Q/b57vJsHEI+X 9e4O9QEkTvZy6jYYoOd8Zcu8lO86jcujjuw+uEaZV8TNUAQ4KBbXAaBl5QpTmcNp kmQGPh4RzqTvwNBIvTCbXSPjGwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIYLMZW8 T3AVuXvJaWeaHi+1e0mkMB8GA1UdIwQYMBaAFHDaRZGR6QaGvbCsR6vaMKnD4XT6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBRjE0NS8yNzgwNzNDRTM2 RUExMUVFQUUxMEFBNDVDNEY5QUUwMi9jTnBGa1pIcEJvYTlzS3hIcTlvd3FjUGhk UG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NOcEZrWkhwQm9hOXNLeEhxOW93cWNQaGRQby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB RjE0NS8yNzgwNzNDRTM2RUExMUVFQUUxMEFBNDVDNEY5QUUwMi9jTnBGa1pIcEJv YTlzS3hIcTlvd3FjUGhkUG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCRSITRpuHiEwQkLeJYlhosJFe5cPykjgTDVHtbhlTu9WWpr1aoiCAd 0+dbWBFTg0zSc1u94As6XueA/dNh1m4LoNqlPJXqwlpFJ3KdtCiPbDnXYah2Y5qS 9EwNNSjRQudHr6Xx/hT0ELut6C/+38qNA6OqyjfmjZvtbOw5C4KiTHCqAjsmZAsD RS5rJy3MAXibhKj/gw2vb/14uY8hNkdow+90O3z4mz2KvU85HlQxTnYp5Q1Ne528 FQsdxLMu6BP2BEerG3QESkroZap4uqgSXfOQODuGn+fRzycQAGeoE/Is0jIj8XiF z0MwAtUUYsphPxhCTu0lGuQ3qeHMZolR -----END CERTIFICATE-----Generated at Mon May 12 16:18:59 2025 by rpki-client