$ rpki-client -vvf rpki.apnic.net/member_repository/A91B734D/11584326B94F11EB9A6AEF32C4F9AE02/9MMyRYvtyHi5agfh4IHlv0qRoZQ.mft File: 9MMyRYvtyHi5agfh4IHlv0qRoZQ.mft (raw, json) Hash identifier: TInTKDHLKuW7K+i+2MtLznVUDlUk02m7nVoj6marErU= Subject key identifier: 2B:66:77:8A:F7:A2:09:50:30:82:92:F2:A1:C8:89:13:C8:5C:EE:5C Authority key identifier: F4:C3:32:45:8B:ED:C8:78:B9:6A:07:E1:E0:81:E5:BF:4A:91:A1:94 Certificate issuer: /CN=A91B734D/serialNumber=F4C332458BEDC878B96A07E1E081E5BF4A91A194 Certificate serial: 05E7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9MMyRYvtyHi5agfh4IHlv0qRoZQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B734D/11584326B94F11EB9A6AEF32C4F9AE02/9MMyRYvtyHi5agfh4IHlv0qRoZQ.mft Manifest number: 05D6 Signing time: Sat 10 May 2025 22:37:33 +0000 Manifest this update: Sat 10 May 2025 22:37:33 +0000 Manifest next update: Sat 17 May 2025 22:37:33 +0000 Files and hashes: 1: 9MMyRYvtyHi5agfh4IHlv0qRoZQ.crl (hash: VgoMYHNVz1o3AsdoMvigr1pjLTpNlzWRwtBCTS7Za/w=) 2: E8C597A6CAC311EC910B8C20C4F9AE02.roa (hash: ca8WhLHbBa7EcZLiVkbwKc/O4N20Afp/5/zNnD+5YJY=) 3: DB5A14DED46911ECBA5B5F41C4F9AE02.roa (hash: AUr7V0EIgEALueuFSq5XM/MsO85yQ02h1CJnq/h0usU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B734D/11584326B94F11EB9A6AEF32C4F9AE02/9MMyRYvtyHi5agfh4IHlv0qRoZQ.crl rsync://rpki.apnic.net/member_repository/A91B734D/11584326B94F11EB9A6AEF32C4F9AE02/9MMyRYvtyHi5agfh4IHlv0qRoZQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9MMyRYvtyHi5agfh4IHlv0qRoZQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 17 May 2025 22:37:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1511 (0x5e7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B734D, serialNumber=F4C332458BEDC878B96A07E1E081E5BF4A91A194 Validity Not Before: May 10 22:37:33 2025 GMT Not After : May 17 22:37:33 2025 GMT Subject: CN=681fd52d-c068 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:67:89:bd:f0:38:58:6b:17:78:0b:c2:7b:3c: d1:67:42:22:c6:f4:d6:6d:9d:7e:b4:13:0e:e3:26: 11:aa:05:f9:bb:20:5a:a2:05:1f:f3:90:ba:da:23: 0e:58:61:05:0a:af:cc:c6:06:df:ce:31:14:8f:f4: 27:5b:85:fa:dc:bc:3f:48:d9:32:7a:71:76:c3:58: 95:7c:59:15:a5:ec:cc:02:95:e0:38:5e:9c:79:23: 10:56:1d:27:e5:da:0a:9f:09:b9:1c:bd:07:7f:1f: 0e:d5:74:2b:6d:a5:8b:a0:42:9e:21:0f:70:76:71: e7:ee:e3:d9:92:3a:19:24:f0:1f:39:76:20:3c:0a: f3:1c:eb:48:f6:c3:8b:74:e3:96:6d:1e:75:5b:8a: cc:fc:d5:b8:e6:30:7f:25:c9:6b:cf:0b:c2:2e:1f: e5:df:2f:ac:0c:b2:1c:e9:0a:2d:a1:1c:16:49:ee: a4:6b:ba:5e:7e:11:88:d4:8c:7f:9a:66:22:fc:c9: cb:9d:93:c2:63:ba:75:8f:22:5f:90:94:58:17:f3: a3:6b:3b:e8:13:ea:72:d2:56:ad:32:f1:e5:6f:b5: 91:eb:a9:94:3e:b4:a0:f4:3c:ad:32:a2:74:43:0d: f9:81:c8:bd:b2:7a:67:55:65:68:38:f0:6d:1a:bd: 44:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2B:66:77:8A:F7:A2:09:50:30:82:92:F2:A1:C8:89:13:C8:5C:EE:5C X509v3 Authority Key Identifier: keyid:F4:C3:32:45:8B:ED:C8:78:B9:6A:07:E1:E0:81:E5:BF:4A:91:A1:94 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B734D/11584326B94F11EB9A6AEF32C4F9AE02/9MMyRYvtyHi5agfh4IHlv0qRoZQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9MMyRYvtyHi5agfh4IHlv0qRoZQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B734D/11584326B94F11EB9A6AEF32C4F9AE02/9MMyRYvtyHi5agfh4IHlv0qRoZQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 15:b2:7d:a9:f2:bc:88:61:d0:eb:ec:d9:74:5f:52:e0:5f:20: 6d:ed:1a:7b:9e:ff:41:43:16:51:98:fa:68:5a:fc:32:37:1f: 02:d8:30:ca:ca:bc:85:3b:d1:05:50:c5:fa:e6:53:70:22:49: 13:d8:7a:e4:f4:24:cf:02:8c:ef:3e:a6:a5:f4:08:4f:f8:38: 08:cd:c1:64:15:af:cc:5b:62:f0:0d:80:47:a9:26:bd:bf:58: 2c:1c:5e:49:9f:12:f9:7b:8a:da:f9:d0:c0:1c:9c:9d:0f:3a: 26:62:ae:d4:a6:23:59:3a:c8:2b:d7:b2:e5:04:e5:d0:85:87: 53:7f:ad:cf:96:96:cd:3f:5a:67:3f:26:fb:0a:cd:8f:67:18: dc:16:1d:b6:26:d1:74:d5:e6:de:1e:5c:f2:86:d6:af:77:5a: ca:4d:ca:4e:34:32:73:9e:a5:34:99:3d:95:12:d0:81:44:7d: 20:75:e7:13:a4:3a:e0:61:13:11:4c:04:75:88:6b:7c:cf:28: 19:96:a7:37:2f:32:83:72:cd:71:ec:d6:a6:83:c9:09:a2:26: 1c:36:9b:94:33:d2:d3:c8:09:32:28:2f:29:1d:94:b8:2f:38: 58:95:32:ab:71:6b:6f:76:c4:4d:52:ec:f8:ca:7e:51:13:51: bc:9b:6f:42 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBecwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjczNEQxMTAvBgNVBAUTKEY0QzMzMjQ1OEJFREM4NzhCOTZBMDdFMUUwODFFNUJG NEE5MUExOTQwHhcNMjUwNTEwMjIzNzMzWhcNMjUwNTE3MjIzNzMzWjAYMRYwFAYD VQQDEw02ODFmZDUyZC1jMDY4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAomeJvfA4WGsXeAvCezzRZ0IixvTWbZ1+tBMO4yYRqgX5uyBaogUf85C62iMO WGEFCq/MxgbfzjEUj/QnW4X63Lw/SNkyenF2w1iVfFkVpezMApXgOF6ceSMQVh0n 5doKnwm5HL0Hfx8O1XQrbaWLoEKeIQ9wdnHn7uPZkjoZJPAfOXYgPArzHOtI9sOL dOOWbR51W4rM/NW45jB/JclrzwvCLh/l3y+sDLIc6QotoRwWSe6ka7pefhGI1Ix/ mmYi/MnLnZPCY7p1jyJfkJRYF/OjazvoE+py0latMvHlb7WR66mUPrSg9DytMqJ0 Qw35gci9snpnVWVoOPBtGr1EYQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCtmd4r3 oglQMIKS8qHIiRPIXO5cMB8GA1UdIwQYMBaAFPTDMkWL7ch4uWoH4eCB5b9KkaGU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNzM0RC8xMTU4NDMyNkI5 NEYxMUVCOUE2QUVGMzJDNEY5QUUwMi85TU15Ull2dHlIaTVhZ2ZoNElIbHYwcVJv WlEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzlNTXlSWXZ0eUhpNWFnZmg0SUhsdjBxUm9aUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NzM0RC8xMTU4NDMyNkI5NEYxMUVCOUE2QUVGMzJDNEY5QUUwMi85TU15Ull2dHlI aTVhZ2ZoNElIbHYwcVJvWlEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAVsn2p8ryIYdDr7Nl0X1LgXyBt7Rp7nv9BQxZRmPpoWvwyNx8C2DDK yryFO9EFUMX65lNwIkkT2Hrk9CTPAozvPqal9AhP+DgIzcFkFa/MW2LwDYBHqSa9 v1gsHF5JnxL5e4ra+dDAHJydDzomYq7UpiNZOsgr17LlBOXQhYdTf63PlpbNP1pn Pyb7Cs2PZxjcFh22JtF01ebeHlzyhtavd1rKTcpONDJznqU0mT2VEtCBRH0gdecT pDrgYRMRTAR1iGt8zygZlqc3LzKDcs1x7Namg8kJoiYcNpuUM9LTyAkyKC8pHZS4 LzhYlTKrcWtvdsRNUuz4yn5RE1G8m29C -----END CERTIFICATE-----Generated at Mon May 12 12:49:36 2025 by rpki-client