$ rpki-client -vvf rpki.apnic.net/member_repository/A91AF207/B48861C6C22811EF86E3484FC4F9AE02/d324l0Vw6bbATiZX5tClA3xxiGs.mft File: d324l0Vw6bbATiZX5tClA3xxiGs.mft (raw, json) Hash identifier: QkV5He8Ly1XIR/d6bD62fIG1Ov7D5HOzknH7KSru22U= Subject key identifier: 02:4A:D6:BE:DF:E3:55:6C:3C:6F:D0:FE:22:4B:07:E3:0D:68:CA:58 Authority key identifier: 77:7D:B8:97:45:70:E9:B6:C0:4E:26:57:E6:D0:A5:03:7C:71:88:6B Certificate issuer: /CN=A91AF207/serialNumber=777DB8974570E9B6C04E2657E6D0A5037C71886B Certificate serial: 49 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/d324l0Vw6bbATiZX5tClA3xxiGs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AF207/B48861C6C22811EF86E3484FC4F9AE02/d324l0Vw6bbATiZX5tClA3xxiGs.mft Manifest number: 49 Signing time: Tue 13 May 2025 06:33:30 +0000 Manifest this update: Tue 13 May 2025 06:33:30 +0000 Manifest next update: Tue 20 May 2025 06:33:30 +0000 Files and hashes: 1: d324l0Vw6bbATiZX5tClA3xxiGs.crl (hash: sSMBJXeh/MnWZgbUYeF4dDB2GYS37saxPbYbbazXWgI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AF207/B48861C6C22811EF86E3484FC4F9AE02/d324l0Vw6bbATiZX5tClA3xxiGs.crl rsync://rpki.apnic.net/member_repository/A91AF207/B48861C6C22811EF86E3484FC4F9AE02/d324l0Vw6bbATiZX5tClA3xxiGs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/d324l0Vw6bbATiZX5tClA3xxiGs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 20 May 2025 06:33:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 73 (0x49) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AF207, serialNumber=777DB8974570E9B6C04E2657E6D0A5037C71886B Validity Not Before: May 13 06:33:30 2025 GMT Not After : May 20 06:33:30 2025 GMT Subject: CN=6822e7ba-ea4a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:16:ab:6b:87:6a:20:81:1f:07:20:a8:51:82: e9:3f:c9:f7:66:72:a4:07:fc:87:56:d5:48:ea:d2: 8e:cd:ab:5e:35:f0:4e:23:77:db:98:d9:ca:ea:1a: d2:69:07:4b:82:e8:db:b0:c1:b2:7e:1a:70:ce:af: cb:b4:c9:fa:87:76:e9:6d:ae:b9:32:12:c3:55:b1: b0:35:69:70:82:f0:59:c3:d4:a8:3b:05:9f:5c:ba: 39:f6:40:11:c9:9f:a4:f3:e7:11:47:25:88:35:d9: 74:6d:4f:b7:dc:79:48:27:93:9e:dd:4e:c0:73:6b: 75:0e:f2:1a:bf:3b:67:da:ac:2e:b5:9f:4d:05:ef: 6e:1a:be:7a:a1:a7:09:64:e9:74:75:d9:05:87:cb: af:0a:ac:5d:df:e0:45:dd:6b:33:c2:6e:7f:6d:86: cf:8a:5d:05:11:d3:11:0a:35:2c:5c:7e:cd:96:2a: 7f:fa:ec:49:57:38:e3:70:36:b7:c8:2f:28:62:b4: 33:c9:fb:18:d6:98:e7:1c:95:85:3f:38:9f:ea:e4: 5d:5b:f5:50:1b:41:4f:e9:e3:22:21:42:28:e5:9e: be:77:4b:d9:9a:4e:13:e4:dd:98:21:ec:08:e8:78: 26:aa:06:b9:1c:e0:50:77:1a:f2:f6:24:cc:49:e6: 7f:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 02:4A:D6:BE:DF:E3:55:6C:3C:6F:D0:FE:22:4B:07:E3:0D:68:CA:58 X509v3 Authority Key Identifier: keyid:77:7D:B8:97:45:70:E9:B6:C0:4E:26:57:E6:D0:A5:03:7C:71:88:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AF207/B48861C6C22811EF86E3484FC4F9AE02/d324l0Vw6bbATiZX5tClA3xxiGs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/d324l0Vw6bbATiZX5tClA3xxiGs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AF207/B48861C6C22811EF86E3484FC4F9AE02/d324l0Vw6bbATiZX5tClA3xxiGs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 36:55:e7:63:9e:72:e8:25:f0:ca:2c:5b:54:3c:51:e8:0c:45: 7f:1a:b9:2b:4a:33:d5:e7:42:23:0a:b9:6a:eb:8d:91:50:21: a3:97:52:d2:90:6e:8f:2a:a2:22:16:20:ea:67:c0:4f:87:c1: cb:84:c4:95:4c:fa:60:c5:a2:80:d9:db:28:41:df:48:79:c4: 41:47:74:b5:a2:7c:0e:53:e9:55:75:3f:97:6f:ae:a9:2c:cf: a7:1b:a9:7b:66:76:da:1f:48:31:b5:b5:78:ba:94:75:97:96: c3:c9:56:65:fb:ef:a5:44:cb:5a:01:3f:11:70:a8:bb:e2:34: c4:9c:8d:59:68:c0:03:dc:64:af:2b:22:ea:cb:fb:11:56:7d: 0e:65:17:97:f3:53:fc:10:1d:3e:d0:ef:be:75:e2:b2:43:3b: 41:ae:ca:b8:f6:62:e6:85:29:a8:9a:84:95:31:28:15:a5:d7: 72:33:da:51:0f:be:7f:2b:c5:b3:b8:56:a7:de:40:1a:b1:22: 09:36:e2:9a:49:f1:6f:29:df:4a:e5:69:f5:4b:27:b9:58:54: a5:e5:be:7e:72:b5:68:99:67:55:7c:25:d8:fc:4b:9a:dd:05: 35:1d:b1:ea:7c:f7:be:42:fb:c1:fa:db:d1:7d:4b:34:cb:73: 23:cc:b4:4b -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBSTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFB RjIwNzExMC8GA1UEBRMoNzc3REI4OTc0NTcwRTlCNkMwNEUyNjU3RTZEMEE1MDM3 QzcxODg2QjAeFw0yNTA1MTMwNjMzMzBaFw0yNTA1MjAwNjMzMzBaMBgxFjAUBgNV BAMTDTY4MjJlN2JhLWVhNGEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDCFqtrh2oggR8HIKhRguk/yfdmcqQH/IdW1Ujq0o7Nq1418E4jd9uY2crqGtJp B0uC6NuwwbJ+GnDOr8u0yfqHdultrrkyEsNVsbA1aXCC8FnD1Kg7BZ9cujn2QBHJ n6Tz5xFHJYg12XRtT7fceUgnk57dTsBza3UO8hq/O2farC61n00F724avnqhpwlk 6XR12QWHy68KrF3f4EXdazPCbn9ths+KXQUR0xEKNSxcfs2WKn/67ElXOONwNrfI LyhitDPJ+xjWmOcclYU/OJ/q5F1b9VAbQU/p4yIhQijlnr53S9maThPk3Zgh7Ajo eCaqBrkc4FB3GvL2JMxJ5n9VAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUAkrWvt/j VWw8b9D+IksH4w1oylgwHwYDVR0jBBgwFoAUd324l0Vw6bbATiZX5tClA3xxiGsw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUFGMjA3L0I0ODg2MUM2QzIy ODExRUY4NkUzNDg0RkM0RjlBRTAyL2QzMjRsMFZ3NmJiQVRpWlg1dENsQTN4eGlH cy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvZDMyNGwwVnc2YmJBVGlaWDV0Q2xBM3h4aUdzLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUFG MjA3L0I0ODg2MUM2QzIyODExRUY4NkUzNDg0RkM0RjlBRTAyL2QzMjRsMFZ3NmJi QVRpWlg1dENsQTN4eGlHcy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBADZV52Oecugl8MosW1Q8UegMRX8auStKM9XnQiMKuWrrjZFQIaOXUtKQ bo8qoiIWIOpnwE+HwcuExJVM+mDFooDZ2yhB30h5xEFHdLWifA5T6VV1P5dvrqks z6cbqXtmdtofSDG1tXi6lHWXlsPJVmX776VEy1oBPxFwqLviNMScjVlowAPcZK8r IurL+xFWfQ5lF5fzU/wQHT7Q77514rJDO0Guyrj2YuaFKaiahJUxKBWl13Iz2lEP vn8rxbO4VqfeQBqxIgk24ppJ8W8p30rlafVLJ7lYVKXlvn5ytWiZZ1V8Jdj8S5rd BTUdsep8975C+8H629F9SzTLcyPMtEs= -----END CERTIFICATE-----Generated at Wed May 14 10:34:02 2025 by rpki-client