$ rpki-client -vvf rpki.apnic.net/member_repository/A91B1018/8836FA608D4C11EC988AE85DC4F9AE02/r9CVWn3X-bDsKkShHZNyB8J1SmM.mft File: r9CVWn3X-bDsKkShHZNyB8J1SmM.mft (raw, json) Hash identifier: /ET4dF4aADWUz92f4l2LATIBSO2M5FCAdnCVGHfcEEw= Subject key identifier: 4C:46:E3:A4:B7:7C:B4:F0:EE:BB:BB:5A:62:51:30:6D:DE:BC:92:C6 Authority key identifier: AF:D0:95:5A:7D:D7:F9:B0:EC:2A:44:A1:1D:93:72:07:C2:75:4A:63 Certificate issuer: /CN=A91B1018/serialNumber=AFD0955A7DD7F9B0EC2A44A11D937207C2754A63 Certificate serial: 03E6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r9CVWn3X-bDsKkShHZNyB8J1SmM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B1018/8836FA608D4C11EC988AE85DC4F9AE02/r9CVWn3X-bDsKkShHZNyB8J1SmM.mft Manifest number: 03D2 Signing time: Sun 11 May 2025 00:14:56 +0000 Manifest this update: Sun 11 May 2025 00:14:55 +0000 Manifest next update: Sun 18 May 2025 00:14:55 +0000 Files and hashes: 1: r9CVWn3X-bDsKkShHZNyB8J1SmM.crl (hash: 7sVwe9ZbEFL1LDWBNuf7Bi+H3FBCckQdy461HCZjZas=) 2: E69ABF78033911EFBE28FC1FC4F9AE02.roa (hash: Rg7/HWvbLuN8QkYRlBgqkedDJt7Lv8j0nbDNMsIVYIo=) 3: CB8AA43A4D9B11EFB201E984C4F9AE02.roa (hash: BndO95FjlN4yoYJHwmdg6jMh7CCU5xFJrJ+5TfJ2qvA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B1018/8836FA608D4C11EC988AE85DC4F9AE02/r9CVWn3X-bDsKkShHZNyB8J1SmM.crl rsync://rpki.apnic.net/member_repository/A91B1018/8836FA608D4C11EC988AE85DC4F9AE02/r9CVWn3X-bDsKkShHZNyB8J1SmM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r9CVWn3X-bDsKkShHZNyB8J1SmM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 18 May 2025 00:14:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 998 (0x3e6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B1018, serialNumber=AFD0955A7DD7F9B0EC2A44A11D937207C2754A63 Validity Not Before: May 11 00:14:55 2025 GMT Not After : May 18 00:14:55 2025 GMT Subject: CN=681febff-c988 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:75:04:31:0e:c0:0e:8a:1f:62:8c:89:d9:95: e1:e6:b8:77:3e:73:19:5b:cc:b2:b4:43:38:52:cb: 6b:c7:34:2b:d7:6e:c0:1b:df:bd:15:d9:99:dc:b4: 8f:ca:68:b4:75:7a:3f:d7:a8:6d:8e:a2:94:d3:54: 8b:ca:91:1b:dd:62:df:d8:c4:e0:f0:24:59:f3:0e: ab:4b:7c:60:9f:a9:3a:a1:28:7b:93:56:15:ed:12: 39:4f:28:82:72:b8:58:fa:90:b1:05:fa:3e:1c:e1: a7:bb:29:a6:17:54:1a:dd:40:fc:10:2c:a6:a9:2f: 06:0f:52:b9:bd:80:8b:69:f4:23:31:ba:8f:15:44: 2c:cd:65:12:34:c6:88:96:b8:53:fb:f8:18:f3:c9: d0:eb:4a:28:ab:12:cc:9d:f0:5f:9a:2d:69:8f:e5: c5:b7:12:e7:f7:1f:61:d6:03:60:cb:d1:08:8e:67: 97:8e:91:13:c8:e7:db:ea:9a:5b:78:3e:40:bc:77: 1a:fd:0b:46:92:69:1f:24:1a:23:4d:a3:95:89:4b: 55:31:e7:c1:9c:ff:c9:89:58:1e:f0:9f:c5:c3:de: ed:f8:f1:85:d2:b9:27:7e:21:79:3d:08:2c:1c:8c: 7f:22:de:45:56:80:a5:1b:18:5f:d4:e6:03:a2:44: d9:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4C:46:E3:A4:B7:7C:B4:F0:EE:BB:BB:5A:62:51:30:6D:DE:BC:92:C6 X509v3 Authority Key Identifier: keyid:AF:D0:95:5A:7D:D7:F9:B0:EC:2A:44:A1:1D:93:72:07:C2:75:4A:63 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B1018/8836FA608D4C11EC988AE85DC4F9AE02/r9CVWn3X-bDsKkShHZNyB8J1SmM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r9CVWn3X-bDsKkShHZNyB8J1SmM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B1018/8836FA608D4C11EC988AE85DC4F9AE02/r9CVWn3X-bDsKkShHZNyB8J1SmM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5f:e5:7d:6b:af:e3:24:fb:f5:9a:89:d9:94:3f:aa:e1:be:0d: 9f:bc:e8:bf:09:6b:bb:f0:11:32:2f:42:21:71:58:1c:54:55: 3c:10:d9:c0:ab:2e:f9:7a:7b:8b:3d:39:3a:a0:d1:4c:4e:d8: 9d:b2:43:bc:b4:ca:36:3d:27:2f:e3:a2:ea:03:27:be:ba:38: 97:b7:76:6f:59:b6:d0:4f:ff:6b:53:27:2b:5c:40:2b:41:42: b7:06:3c:cf:99:4a:f8:d5:8a:7f:15:87:2b:a3:11:a9:9e:e4: ef:7d:8c:81:2f:34:49:9d:f9:ba:05:1c:a9:38:70:eb:a3:2b: f1:28:76:ae:97:9e:de:f2:2f:ee:dc:92:18:19:25:6a:50:8f: e4:54:bd:ce:db:15:ea:19:7e:68:b0:de:85:9d:1b:7f:ba:b5: aa:e0:d1:61:5b:b5:b9:96:a3:31:03:1a:34:65:39:00:9c:c9: 31:d3:c5:d2:0b:3d:9d:67:e0:e4:d7:ee:2c:02:a6:c6:68:91: 25:bb:7d:39:43:97:ed:7d:c2:9b:89:e0:8a:8c:24:4b:48:c0: f3:79:49:58:3c:55:08:09:c4:47:0b:e3:c6:9f:90:be:05:ec: 97:1a:9d:ae:63:7f:cd:8e:ce:63:1b:43:53:2d:82:26:46:37: 92:69:f9:3a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA+YwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjEwMTgxMTAvBgNVBAUTKEFGRDA5NTVBN0REN0Y5QjBFQzJBNDRBMTFEOTM3MjA3 QzI3NTRBNjMwHhcNMjUwNTExMDAxNDU1WhcNMjUwNTE4MDAxNDU1WjAYMRYwFAYD VQQDEw02ODFmZWJmZi1jOTg4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxHUEMQ7ADoofYoyJ2ZXh5rh3PnMZW8yytEM4UstrxzQr127AG9+9FdmZ3LSP ymi0dXo/16htjqKU01SLypEb3WLf2MTg8CRZ8w6rS3xgn6k6oSh7k1YV7RI5TyiC crhY+pCxBfo+HOGnuymmF1Qa3UD8ECymqS8GD1K5vYCLafQjMbqPFUQszWUSNMaI lrhT+/gY88nQ60ooqxLMnfBfmi1pj+XFtxLn9x9h1gNgy9EIjmeXjpETyOfb6ppb eD5AvHca/QtGkmkfJBojTaOViUtVMefBnP/JiVge8J/Fw97t+PGF0rknfiF5PQgs HIx/It5FVoClGxhf1OYDokTZqwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFExG46S3 fLTw7ru7WmJRMG3evJLGMB8GA1UdIwQYMBaAFK/QlVp91/mw7CpEoR2TcgfCdUpj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMTAxOC84ODM2RkE2MDhE NEMxMUVDOTg4QUU4NURDNEY5QUUwMi9yOUNWV24zWC1iRHNLa1NoSFpOeUI4SjFT bU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3I5Q1ZXbjNYLWJEc0trU2hIWk55QjhKMVNtTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC MTAxOC84ODM2RkE2MDhENEMxMUVDOTg4QUU4NURDNEY5QUUwMi9yOUNWV24zWC1i RHNLa1NoSFpOeUI4SjFTbU0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBf5X1rr+Mk+/WaidmUP6rhvg2fvOi/CWu78BEyL0IhcVgcVFU8ENnA qy75enuLPTk6oNFMTtidskO8tMo2PScv46LqAye+ujiXt3ZvWbbQT/9rUycrXEAr QUK3BjzPmUr41Yp/FYcroxGpnuTvfYyBLzRJnfm6BRypOHDroyvxKHaul57e8i/u 3JIYGSVqUI/kVL3O2xXqGX5osN6FnRt/urWq4NFhW7W5lqMxAxo0ZTkAnMkx08XS Cz2dZ+Dk1+4sAqbGaJElu305Q5ftfcKbieCKjCRLSMDzeUlYPFUICcRHC+PGn5C+ BeyXGp2uY3/Njs5jG0NTLYImRjeSafk6 -----END CERTIFICATE-----Generated at Mon May 12 18:42:03 2025 by rpki-client