$ rpki-client -vvf rpki.apnic.net/member_repository/A91AF9A1/D26015CAD37E11E98A196B67C4F9AE02/p_mvKNJKQySTtLK6m1Vym8CXfMg.mft File: p_mvKNJKQySTtLK6m1Vym8CXfMg.mft (raw, json) Hash identifier: C/99cRZFbaf2ZklZ7fCb3StKUkEAA90wDKUReSlo7bE= Subject key identifier: BF:11:E3:48:61:77:97:70:E8:56:30:4B:7E:B1:54:C0:4E:B9:71:30 Authority key identifier: A7:F9:AF:28:D2:4A:43:24:93:B4:B2:BA:9B:55:72:9B:C0:97:7C:C8 Certificate issuer: /CN=A91AF9A1/serialNumber=A7F9AF28D24A432493B4B2BA9B55729BC0977CC8 Certificate serial: 0D47 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/p_mvKNJKQySTtLK6m1Vym8CXfMg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AF9A1/D26015CAD37E11E98A196B67C4F9AE02/p_mvKNJKQySTtLK6m1Vym8CXfMg.mft Manifest number: 0D3C Signing time: Sat 10 May 2025 17:51:43 +0000 Manifest this update: Sat 10 May 2025 17:51:43 +0000 Manifest next update: Sat 17 May 2025 17:51:43 +0000 Files and hashes: 1: p_mvKNJKQySTtLK6m1Vym8CXfMg.crl (hash: lUi7AERTBljFXwXaRXOUl+ElOZAfBBuMDuRGJtOcdJk=) 2: 6DDABFB26CD511ED9EC9CF83C4F9AE02.roa (hash: 7fCnTjBep84sk9XgkMrT6eykdpGaMDHQzEZtybjm0AA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AF9A1/D26015CAD37E11E98A196B67C4F9AE02/p_mvKNJKQySTtLK6m1Vym8CXfMg.crl rsync://rpki.apnic.net/member_repository/A91AF9A1/D26015CAD37E11E98A196B67C4F9AE02/p_mvKNJKQySTtLK6m1Vym8CXfMg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/p_mvKNJKQySTtLK6m1Vym8CXfMg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 17 May 2025 17:51:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3399 (0xd47) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AF9A1, serialNumber=A7F9AF28D24A432493B4B2BA9B55729BC0977CC8 Validity Not Before: May 10 17:51:43 2025 GMT Not After : May 17 17:51:43 2025 GMT Subject: CN=681f922f-bb4e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:b9:75:07:2b:34:9d:b2:70:42:83:0d:3e:e6: fa:03:81:a2:4b:3e:c6:e1:81:61:64:44:ed:e5:37: 51:12:9b:16:81:0d:3d:3c:3b:67:fb:63:bd:1e:d3: 98:3f:fb:0d:32:9f:3f:25:2c:1c:dc:1b:1b:38:b9: b7:6f:0c:51:17:19:6f:f5:d9:ee:6d:c9:b4:3f:37: 8d:a6:a9:35:68:6e:26:e8:45:a2:d7:89:19:2e:a3: b0:3b:92:1e:81:64:ce:f8:50:cc:81:88:e0:ae:7a: 72:b8:d9:9f:cc:4d:52:59:8e:64:47:7c:67:c9:18: 19:bf:8c:73:ae:e3:14:3b:c1:33:db:39:cb:b8:8d: 12:00:2a:36:f6:e2:1c:44:c5:72:d2:22:07:67:03: fd:9a:81:78:42:c9:82:13:d6:cb:16:a1:b0:15:db: d4:43:e2:9f:08:84:db:5b:95:d3:be:c5:9d:5a:c9: c5:10:d6:c2:c2:d6:1e:d6:05:95:df:c3:b7:2a:ec: 6e:80:03:2f:ca:e0:69:c8:73:3d:29:9b:9a:95:22: cb:1a:58:00:80:58:54:55:f2:01:f6:93:fe:5c:0b: 4b:12:99:f8:10:c1:10:5e:32:54:89:3c:0d:51:f0: a1:fc:1a:52:fe:e7:74:14:08:46:76:b6:77:0d:ee: 43:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BF:11:E3:48:61:77:97:70:E8:56:30:4B:7E:B1:54:C0:4E:B9:71:30 X509v3 Authority Key Identifier: keyid:A7:F9:AF:28:D2:4A:43:24:93:B4:B2:BA:9B:55:72:9B:C0:97:7C:C8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AF9A1/D26015CAD37E11E98A196B67C4F9AE02/p_mvKNJKQySTtLK6m1Vym8CXfMg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/p_mvKNJKQySTtLK6m1Vym8CXfMg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AF9A1/D26015CAD37E11E98A196B67C4F9AE02/p_mvKNJKQySTtLK6m1Vym8CXfMg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b7:a0:92:36:24:1b:e1:7a:ae:3c:6a:06:80:f4:00:36:3d:01: 82:6d:a8:e9:76:28:c6:0a:5a:b3:5c:e3:de:5d:ff:97:62:3e: 6a:dc:1a:32:74:07:29:bd:ab:88:2d:02:47:29:3f:91:cb:e9: d4:14:92:d2:06:71:6a:35:26:fc:b5:a8:1d:c5:b6:c5:ed:85: 5c:91:d6:c2:e3:16:bd:91:62:3b:5d:27:6c:73:2d:69:b2:f1: a8:cf:d8:06:ce:42:cb:f4:17:42:d6:97:1e:aa:4a:1f:28:75: 0d:09:a3:c9:6b:5c:00:6a:47:07:c9:60:03:57:e7:06:6c:b8: b2:16:3a:6e:fd:ef:db:04:0d:5c:01:0b:27:af:4d:45:21:03: 1b:63:84:90:00:89:65:af:e6:8e:bb:3e:77:6a:22:a0:2e:a9: 6b:ad:9d:c7:26:4d:5d:3d:7b:0e:b7:54:2e:91:4d:2e:20:a2: 69:7b:86:b9:99:9d:55:5d:60:0d:a5:97:be:da:d8:c8:af:51: c5:38:ba:de:80:86:d6:84:13:df:cd:23:47:50:7e:6a:65:87: b7:78:43:30:08:7d:60:23:5c:2e:5b:75:21:e8:77:72:b8:c9: 88:18:92:50:14:47:bd:b5:af:3f:c7:07:31:5b:95:4e:5e:d8: d0:31:4b:45 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDUcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUY5QTExMTAvBgNVBAUTKEE3RjlBRjI4RDI0QTQzMjQ5M0I0QjJCQTlCNTU3MjlC QzA5NzdDQzgwHhcNMjUwNTEwMTc1MTQzWhcNMjUwNTE3MTc1MTQzWjAYMRYwFAYD VQQDEw02ODFmOTIyZi1iYjRlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA57l1Bys0nbJwQoMNPub6A4GiSz7G4YFhZETt5TdREpsWgQ09PDtn+2O9HtOY P/sNMp8/JSwc3BsbOLm3bwxRFxlv9dnubcm0PzeNpqk1aG4m6EWi14kZLqOwO5Ie gWTO+FDMgYjgrnpyuNmfzE1SWY5kR3xnyRgZv4xzruMUO8Ez2znLuI0SACo29uIc RMVy0iIHZwP9moF4QsmCE9bLFqGwFdvUQ+KfCITbW5XTvsWdWsnFENbCwtYe1gWV 38O3KuxugAMvyuBpyHM9KZualSLLGlgAgFhUVfIB9pP+XAtLEpn4EMEQXjJUiTwN UfCh/BpS/ud0FAhGdrZ3De5DNwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFL8R40hh d5dw6FYwS36xVMBOuXEwMB8GA1UdIwQYMBaAFKf5ryjSSkMkk7SyuptVcpvAl3zI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBRjlBMS9EMjYwMTVDQUQz N0UxMUU5OEExOTZCNjdDNEY5QUUwMi9wX212S05KS1F5U1R0TEs2bTFWeW04Q1hm TWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3BfbXZLTkpLUXlTVHRMSzZtMVZ5bThDWGZNZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB RjlBMS9EMjYwMTVDQUQzN0UxMUU5OEExOTZCNjdDNEY5QUUwMi9wX212S05KS1F5 U1R0TEs2bTFWeW04Q1hmTWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC3oJI2JBvheq48agaA9AA2PQGCbajpdijGClqzXOPeXf+XYj5q3Boy dAcpvauILQJHKT+Ry+nUFJLSBnFqNSb8tagdxbbF7YVckdbC4xa9kWI7XSdscy1p svGoz9gGzkLL9BdC1pceqkofKHUNCaPJa1wAakcHyWADV+cGbLiyFjpu/e/bBA1c AQsnr01FIQMbY4SQAIllr+aOuz53aiKgLqlrrZ3HJk1dPXsOt1QukU0uIKJpe4a5 mZ1VXWANpZe+2tjIr1HFOLregIbWhBPfzSNHUH5qZYe3eEMwCH1gI1wuW3Uh6Hdy uMmIGJJQFEe9ta8/xwcxW5VOXtjQMUtF -----END CERTIFICATE-----Generated at Mon May 12 15:07:08 2025 by rpki-client