$ rpki-client -vvf rpki.apnic.net/member_repository/A91B171C/E7EF08363E1511EAB371A541C4F9AE02/P7b20GZYOGwje40UDa0VsoOLtco.mft File: P7b20GZYOGwje40UDa0VsoOLtco.mft (raw, json) Hash identifier: 8XckJqGGXMhtk/76Epx5EUGu5oEc8aZfe83xoL/Q3lM= Subject key identifier: 75:E2:66:84:DD:C5:DC:48:6F:11:BE:88:EC:23:35:8C:38:73:2B:2E Authority key identifier: 3F:B6:F6:D0:66:58:38:6C:23:7B:8D:14:0D:AD:15:B2:83:8B:B5:CA Certificate issuer: /CN=A91B171C/serialNumber=3FB6F6D06658386C237B8D140DAD15B2838BB5CA Certificate serial: 0B24 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/P7b20GZYOGwje40UDa0VsoOLtco.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B171C/E7EF08363E1511EAB371A541C4F9AE02/P7b20GZYOGwje40UDa0VsoOLtco.mft Manifest number: 0B16 Signing time: Mon 12 May 2025 19:06:05 +0000 Manifest this update: Mon 12 May 2025 19:06:04 +0000 Manifest next update: Mon 19 May 2025 19:06:04 +0000 Files and hashes: 1: P7b20GZYOGwje40UDa0VsoOLtco.crl (hash: 2heOwkXah4nl+aW719SRBAn5wLks+GdCxzr8guPzKCY=) 2: 2F5ED8E43E1711EA9A272644C4F9AE02.roa (hash: NJ+vu7BB1LSL5IyZI4sxWSXiQvL3uuiHK69WI9ypRDY=) 3: 9F9FD574758811EA93AADD3FC4F9AE02.roa (hash: 1Gen1/T5J9VcUP7yeBxePtjlwSEPjuywH9LIrIKtzGg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B171C/E7EF08363E1511EAB371A541C4F9AE02/P7b20GZYOGwje40UDa0VsoOLtco.crl rsync://rpki.apnic.net/member_repository/A91B171C/E7EF08363E1511EAB371A541C4F9AE02/P7b20GZYOGwje40UDa0VsoOLtco.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/P7b20GZYOGwje40UDa0VsoOLtco.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 19 May 2025 19:06:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2852 (0xb24) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B171C, serialNumber=3FB6F6D06658386C237B8D140DAD15B2838BB5CA Validity Not Before: May 12 19:06:04 2025 GMT Not After : May 19 19:06:04 2025 GMT Subject: CN=6822469d-bd67 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:95:5d:20:6a:49:ee:4d:2e:25:e6:8b:3f:02: cd:a2:83:63:d8:5e:5b:fd:f0:82:26:a8:35:6f:d8: 1f:7b:46:da:5a:06:ac:73:2d:a1:41:13:c6:71:4b: 7d:ec:67:81:5a:05:b3:bb:0f:73:eb:cc:35:1e:f1: 56:58:38:16:cd:38:28:30:cc:1b:9e:3b:37:09:e7: 6b:6b:d2:da:15:e3:1e:02:10:83:e5:e2:c9:1b:1c: f5:0b:e5:e2:f2:70:7c:42:b8:26:95:b8:a9:b2:af: 95:be:fd:09:a7:d5:17:c5:f5:94:4a:f9:6a:33:35: a9:97:58:93:fb:3e:df:fd:d7:4d:27:dd:2a:db:5a: a0:c7:16:8d:ce:41:bf:ee:53:0b:44:69:fc:1a:b1: 82:e7:8f:54:fa:90:b9:25:ec:7b:45:00:bc:4d:9b: 03:e4:0d:7e:69:a3:7e:e9:93:d9:fd:35:ae:f2:9c: a3:bf:71:12:d0:b2:7f:1a:7c:5a:1a:a5:66:d1:8d: 8f:85:59:f6:b4:29:7c:bd:71:e3:65:21:8c:4a:27: 3c:53:0a:55:f9:85:47:a2:3c:bd:dc:ea:dd:ab:cb: fc:2a:59:cf:c1:89:b4:52:b5:0b:2b:0d:34:c3:61: 9c:35:d8:02:89:5c:23:53:a6:1d:b7:a5:0a:70:8b: ac:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 75:E2:66:84:DD:C5:DC:48:6F:11:BE:88:EC:23:35:8C:38:73:2B:2E X509v3 Authority Key Identifier: keyid:3F:B6:F6:D0:66:58:38:6C:23:7B:8D:14:0D:AD:15:B2:83:8B:B5:CA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B171C/E7EF08363E1511EAB371A541C4F9AE02/P7b20GZYOGwje40UDa0VsoOLtco.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/P7b20GZYOGwje40UDa0VsoOLtco.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B171C/E7EF08363E1511EAB371A541C4F9AE02/P7b20GZYOGwje40UDa0VsoOLtco.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 65:98:60:30:a1:1f:fc:53:c2:3d:e6:a5:3b:4c:7b:af:27:94: 09:be:be:03:ef:2a:a3:bc:7c:86:39:c4:89:4e:5a:a4:fb:7f: 77:66:9e:a4:39:ed:3e:b6:24:c8:e3:21:9d:d9:11:89:22:dc: ea:da:ec:82:e8:25:36:13:73:19:36:4c:ce:9c:35:a3:60:72: ca:0a:bd:0f:2c:0c:27:c5:91:bb:e1:f9:76:fe:7c:f8:41:4f: 3e:66:c0:ad:ab:4f:46:0a:0e:ed:89:57:6f:38:9b:31:03:7c: 23:b4:87:72:11:5c:03:3c:d1:bf:85:23:5b:c7:11:ee:bc:b2: 66:40:e4:8f:fe:4a:03:81:88:2c:26:82:d9:94:ff:44:dc:d1: a3:e4:dd:a2:b8:05:2c:ef:2e:97:aa:b1:d6:aa:07:3f:9b:ab: d8:99:6e:c9:df:32:0b:01:5c:df:08:10:3d:fd:1a:d1:c3:95: 26:32:6c:54:13:6b:82:be:cd:21:49:12:81:d9:35:e7:d2:ca: 68:65:b2:a2:eb:90:01:3c:ba:5c:a1:f3:bf:53:1e:92:cf:5b: 82:01:b9:e3:bf:87:aa:f0:57:9c:f7:6e:c5:f9:dc:25:82:1d: 4c:13:96:4f:b1:df:ca:97:a7:e7:c9:c1:eb:10:84:a4:6c:6e: 0d:51:df:b6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCyQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjE3MUMxMTAvBgNVBAUTKDNGQjZGNkQwNjY1ODM4NkMyMzdCOEQxNDBEQUQxNUIy ODM4QkI1Q0EwHhcNMjUwNTEyMTkwNjA0WhcNMjUwNTE5MTkwNjA0WjAYMRYwFAYD VQQDEw02ODIyNDY5ZC1iZDY3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw5VdIGpJ7k0uJeaLPwLNooNj2F5b/fCCJqg1b9gfe0baWgascy2hQRPGcUt9 7GeBWgWzuw9z68w1HvFWWDgWzTgoMMwbnjs3Cedra9LaFeMeAhCD5eLJGxz1C+Xi 8nB8Qrgmlbipsq+Vvv0Jp9UXxfWUSvlqMzWpl1iT+z7f/ddNJ90q21qgxxaNzkG/ 7lMLRGn8GrGC549U+pC5Jex7RQC8TZsD5A1+aaN+6ZPZ/TWu8pyjv3ES0LJ/Gnxa GqVm0Y2PhVn2tCl8vXHjZSGMSic8UwpV+YVHojy93Ordq8v8KlnPwYm0UrULKw00 w2GcNdgCiVwjU6Ydt6UKcIus3wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHXiZoTd xdxIbxG+iOwjNYw4cysuMB8GA1UdIwQYMBaAFD+29tBmWDhsI3uNFA2tFbKDi7XK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMTcxQy9FN0VGMDgzNjNF MTUxMUVBQjM3MUE1NDFDNEY5QUUwMi9QN2IyMEdaWU9Hd2plNDBVRGEwVnNvT0x0 Y28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1A3YjIwR1pZT0d3amU0MFVEYTBWc29PTHRjby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC MTcxQy9FN0VGMDgzNjNFMTUxMUVBQjM3MUE1NDFDNEY5QUUwMi9QN2IyMEdaWU9H d2plNDBVRGEwVnNvT0x0Y28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBlmGAwoR/8U8I95qU7THuvJ5QJvr4D7yqjvHyGOcSJTlqk+393Zp6k Oe0+tiTI4yGd2RGJItzq2uyC6CU2E3MZNkzOnDWjYHLKCr0PLAwnxZG74fl2/nz4 QU8+ZsCtq09GCg7tiVdvOJsxA3wjtIdyEVwDPNG/hSNbxxHuvLJmQOSP/koDgYgs JoLZlP9E3NGj5N2iuAUs7y6XqrHWqgc/m6vYmW7J3zILAVzfCBA9/RrRw5UmMmxU E2uCvs0hSRKB2TXn0spoZbKi65ABPLpcofO/Ux6Sz1uCAbnjv4eq8Fec927F+dwl gh1ME5ZPsd/Kl6fnycHrEISkbG4NUd+2 -----END CERTIFICATE-----Generated at Tue May 13 11:18:56 2025 by rpki-client