$ rpki-client -vvf rpki.apnic.net/member_repository/A91B66C5/A2CD354E77EE11EAA5D00C28C4F9AE02/_vE6uFK4kquii39LJSVwiZZNdms.mft File: _vE6uFK4kquii39LJSVwiZZNdms.mft (raw, json) Hash identifier: pWciLt1GOVAbdSEi1/aNeIAaS7e68fPM5PbtXvRaAR4= Subject key identifier: 68:58:A2:F8:35:1C:16:1E:71:1F:8E:00:EE:DA:A4:0D:BD:89:DD:46 Authority key identifier: FE:F1:3A:B8:52:B8:92:AB:A2:8B:7F:4B:25:25:70:89:96:4D:76:6B Certificate issuer: /CN=A91B66C5/serialNumber=FEF13AB852B892ABA28B7F4B25257089964D766B Certificate serial: 09FF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_vE6uFK4kquii39LJSVwiZZNdms.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B66C5/A2CD354E77EE11EAA5D00C28C4F9AE02/_vE6uFK4kquii39LJSVwiZZNdms.mft Manifest number: 09F5 Signing time: Sat 10 May 2025 19:36:53 +0000 Manifest this update: Sat 10 May 2025 19:36:53 +0000 Manifest next update: Sat 17 May 2025 19:36:53 +0000 Files and hashes: 1: _vE6uFK4kquii39LJSVwiZZNdms.crl (hash: ZZJoG3IJytnwmfdG0n8ouB62KMegljJ8nFRgzZr3EDE=) 2: 503D2222018111EBB0502527C4F9AE02.roa (hash: LQT0TO6GObYdNEXY2zITFA+60OyJn4ApFTpeHBpwqn0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B66C5/A2CD354E77EE11EAA5D00C28C4F9AE02/_vE6uFK4kquii39LJSVwiZZNdms.crl rsync://rpki.apnic.net/member_repository/A91B66C5/A2CD354E77EE11EAA5D00C28C4F9AE02/_vE6uFK4kquii39LJSVwiZZNdms.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_vE6uFK4kquii39LJSVwiZZNdms.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 17 May 2025 19:36:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2559 (0x9ff) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B66C5, serialNumber=FEF13AB852B892ABA28B7F4B25257089964D766B Validity Not Before: May 10 19:36:53 2025 GMT Not After : May 17 19:36:53 2025 GMT Subject: CN=681faad5-f7f5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:98:40:f2:bb:f1:c5:8b:bf:eb:22:c4:f2:9e: 07:ad:f9:49:e6:b5:35:08:56:26:6e:65:8b:3a:89: f2:ff:83:39:45:34:a6:62:c9:e7:06:62:af:ca:f4: 3b:db:80:84:f2:11:d2:18:e0:1e:f7:65:10:b5:c2: 25:47:63:03:fe:a2:de:c3:35:94:8d:4f:37:cc:1e: 2e:85:a4:16:cf:f5:3d:f0:fe:51:c7:a0:98:c3:cd: 49:62:63:a6:26:4b:63:b2:e0:e5:8e:12:68:a9:69: f8:85:2b:76:65:4c:d5:9d:56:67:43:7d:a1:53:5d: db:7c:9c:dd:f0:12:88:0e:0e:7f:ef:c2:ba:12:63: 23:ac:3e:99:da:f8:1e:7a:5e:f2:3c:e6:0e:65:d3: 17:e4:8f:9f:1a:3f:ab:29:86:5b:a1:94:c5:8e:c1: 1a:75:f2:9f:05:66:dd:ee:a2:d1:cb:83:b3:f8:d9: b2:eb:8b:a5:56:f3:04:d2:e6:e9:9b:45:af:bf:45: 48:b5:3e:71:71:1a:8e:20:2e:8f:49:c6:9d:65:fb: 37:24:30:4b:6e:b7:20:92:a3:f4:95:d1:57:0f:1c: d6:33:59:1d:2b:4e:df:a7:6e:ce:61:08:48:85:ca: b0:05:8b:2d:a7:f4:6d:47:50:1e:0b:7d:10:74:c3: 8f:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 68:58:A2:F8:35:1C:16:1E:71:1F:8E:00:EE:DA:A4:0D:BD:89:DD:46 X509v3 Authority Key Identifier: keyid:FE:F1:3A:B8:52:B8:92:AB:A2:8B:7F:4B:25:25:70:89:96:4D:76:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B66C5/A2CD354E77EE11EAA5D00C28C4F9AE02/_vE6uFK4kquii39LJSVwiZZNdms.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_vE6uFK4kquii39LJSVwiZZNdms.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B66C5/A2CD354E77EE11EAA5D00C28C4F9AE02/_vE6uFK4kquii39LJSVwiZZNdms.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4c:f8:c0:ee:f4:7f:d1:dd:78:50:81:4a:ec:44:d9:ae:6b:d1: 03:eb:5d:7b:b5:3d:68:c5:f5:4f:3c:1d:bf:b8:5c:da:b4:b0: 9a:64:89:3c:1b:76:ba:d8:7e:a4:31:9f:91:c0:31:47:8e:b5: c9:74:7a:6a:c6:fa:da:a4:bd:d9:28:c5:ce:36:52:99:c4:66: e2:e2:c3:1b:09:3a:2d:9d:1b:ce:a0:cb:44:14:63:8a:e4:a7: 25:29:83:9a:ae:07:a2:b1:cb:18:ff:f7:14:9e:c4:e9:0a:c0: bd:73:3a:71:63:75:1e:b0:6a:80:fd:d5:b0:e8:18:40:6e:fc: 99:60:2b:85:be:53:7d:08:be:9f:5f:97:2d:ce:c8:b2:df:78: b6:c9:28:bb:2a:2e:3c:e7:51:cb:de:5f:27:31:c7:9c:c9:fc: 98:d1:6f:09:3b:6d:82:e8:f7:63:15:03:3e:2b:66:f4:7b:b0: 97:2a:a0:53:2d:22:2d:11:34:49:74:6d:7b:d7:71:8e:4d:29: b9:3c:e4:03:f4:39:7d:49:ce:81:5d:05:50:cf:75:bb:af:0e: b8:75:50:90:33:7d:9a:eb:85:85:a5:28:51:ba:44:ba:06:e3: d6:39:00:d8:f9:f7:0d:eb:ee:69:73:4d:95:9b:7a:11:16:3b: 9f:ab:7f:b8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCf8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjY2QzUxMTAvBgNVBAUTKEZFRjEzQUI4NTJCODkyQUJBMjhCN0Y0QjI1MjU3MDg5 OTY0RDc2NkIwHhcNMjUwNTEwMTkzNjUzWhcNMjUwNTE3MTkzNjUzWjAYMRYwFAYD VQQDEw02ODFmYWFkNS1mN2Y1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA25hA8rvxxYu/6yLE8p4HrflJ5rU1CFYmbmWLOony/4M5RTSmYsnnBmKvyvQ7 24CE8hHSGOAe92UQtcIlR2MD/qLewzWUjU83zB4uhaQWz/U98P5Rx6CYw81JYmOm JktjsuDljhJoqWn4hSt2ZUzVnVZnQ32hU13bfJzd8BKIDg5/78K6EmMjrD6Z2vge el7yPOYOZdMX5I+fGj+rKYZboZTFjsEadfKfBWbd7qLRy4Oz+Nmy64ulVvME0ubp m0Wvv0VItT5xcRqOIC6PScadZfs3JDBLbrcgkqP0ldFXDxzWM1kdK07fp27OYQhI hcqwBYstp/RtR1AeC30QdMOP7QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGhYovg1 HBYecR+OAO7apA29id1GMB8GA1UdIwQYMBaAFP7xOrhSuJKroot/SyUlcImWTXZr MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNjZDNS9BMkNEMzU0RTc3 RUUxMUVBQTVEMDBDMjhDNEY5QUUwMi9fdkU2dUZLNGtxdWlpMzlMSlNWd2laWk5k bXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL192RTZ1Rks0a3F1aWkzOUxKU1Z3aVpaTmRtcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NjZDNS9BMkNEMzU0RTc3RUUxMUVBQTVEMDBDMjhDNEY5QUUwMi9fdkU2dUZLNGtx dWlpMzlMSlNWd2laWk5kbXMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBM+MDu9H/R3XhQgUrsRNmua9ED6117tT1oxfVPPB2/uFzatLCaZIk8 G3a62H6kMZ+RwDFHjrXJdHpqxvrapL3ZKMXONlKZxGbi4sMbCTotnRvOoMtEFGOK 5KclKYOargeiscsY//cUnsTpCsC9czpxY3UesGqA/dWw6BhAbvyZYCuFvlN9CL6f X5ctzsiy33i2ySi7Ki4851HL3l8nMcecyfyY0W8JO22C6PdjFQM+K2b0e7CXKqBT LSItETRJdG1713GOTSm5POQD9Dl9Sc6BXQVQz3W7rw64dVCQM32a64WFpShRukS6 BuPWOQDY+fcN6+5pc02Vm3oRFjufq3+4 -----END CERTIFICATE-----Generated at Mon May 12 04:16:27 2025 by rpki-client