$ rpki-client -vvf rpki.apnic.net/member_repository/A91B8C13/D06117160B2D11EE867E6A17C4F9AE02/3SNdNwiQmzPViUtMzckQXGH9Fq4.mft File: 3SNdNwiQmzPViUtMzckQXGH9Fq4.mft (raw, json) Hash identifier: yaww48V7klefrT939aNZXGXl0fvCKpVcwyON7uAJZbg= Subject key identifier: 5E:F7:CE:B2:78:53:0F:A2:27:91:19:9D:00:F1:EC:AB:0F:5C:BA:1A Authority key identifier: DD:23:5D:37:08:90:9B:33:D5:89:4B:4C:CD:C9:10:5C:61:FD:16:AE Certificate issuer: /CN=A91B8C13/serialNumber=DD235D3708909B33D5894B4CCDC9105C61FD16AE Certificate serial: 0169 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/3SNdNwiQmzPViUtMzckQXGH9Fq4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B8C13/D06117160B2D11EE867E6A17C4F9AE02/3SNdNwiQmzPViUtMzckQXGH9Fq4.mft Manifest number: 0168 Signing time: Tue 06 May 2025 15:17:17 +0000 Manifest this update: Tue 06 May 2025 15:17:17 +0000 Manifest next update: Tue 13 May 2025 15:17:17 +0000 Files and hashes: 1: 3SNdNwiQmzPViUtMzckQXGH9Fq4.crl (hash: WuY0RCFJOgosk5E8DwOaEJzwPwbHwBzgDjQwqiilsfQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B8C13/D06117160B2D11EE867E6A17C4F9AE02/3SNdNwiQmzPViUtMzckQXGH9Fq4.crl rsync://rpki.apnic.net/member_repository/A91B8C13/D06117160B2D11EE867E6A17C4F9AE02/3SNdNwiQmzPViUtMzckQXGH9Fq4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/3SNdNwiQmzPViUtMzckQXGH9Fq4.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 13 May 2025 15:17:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 361 (0x169) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B8C13, serialNumber=DD235D3708909B33D5894B4CCDC9105C61FD16AE Validity Not Before: May 6 15:17:17 2025 GMT Not After : May 13 15:17:17 2025 GMT Subject: CN=681a27fd-fc64 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:de:78:88:25:cc:5f:7f:7b:54:1c:70:e3:6a: b6:d8:19:af:fd:b8:43:b5:b2:33:c4:10:8e:8d:f4: a3:17:6d:24:95:84:27:86:23:9f:5b:e5:b7:09:1a: bb:cd:f0:9e:07:d9:51:cb:60:5d:8d:34:a2:e1:92: 5b:85:88:91:0f:d4:74:62:59:82:a0:fb:d8:a5:ed: bb:f3:98:cc:3a:99:f9:1c:c7:cd:8e:87:0b:42:a4: 2e:81:ad:3e:4c:5f:60:1b:b7:47:b0:2f:5f:fe:5d: fe:4a:76:0e:26:8a:90:16:25:0e:9c:9c:cc:19:e4: 47:90:9a:e6:5c:ef:9a:8b:2d:98:78:d2:ed:8a:cc: c5:4e:b7:9f:af:2e:75:4c:cf:19:d0:d0:a0:a5:68: a2:d4:1b:a0:ca:9a:2e:12:6e:cd:00:90:f7:66:0e: 40:db:2b:d5:be:7e:ff:42:66:49:f2:85:d0:66:40: c0:10:56:80:1f:7a:ad:7d:64:2f:aa:bb:3f:42:67: d9:50:a2:a3:35:94:26:eb:df:cd:0c:52:ab:e0:ec: 71:30:71:51:c9:68:e1:22:16:cb:f3:d9:7b:75:d8: 8e:39:b5:8d:cd:f5:ee:00:82:77:7c:48:f2:4b:68: 40:eb:4a:3d:98:33:80:82:97:47:bb:9e:f2:1a:f7: ca:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5E:F7:CE:B2:78:53:0F:A2:27:91:19:9D:00:F1:EC:AB:0F:5C:BA:1A X509v3 Authority Key Identifier: keyid:DD:23:5D:37:08:90:9B:33:D5:89:4B:4C:CD:C9:10:5C:61:FD:16:AE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B8C13/D06117160B2D11EE867E6A17C4F9AE02/3SNdNwiQmzPViUtMzckQXGH9Fq4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/3SNdNwiQmzPViUtMzckQXGH9Fq4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B8C13/D06117160B2D11EE867E6A17C4F9AE02/3SNdNwiQmzPViUtMzckQXGH9Fq4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c5:69:35:58:86:31:d5:ce:9d:fa:de:f0:fe:a5:f1:69:b4:49: d4:97:b5:4d:09:bb:1b:dc:76:b0:c3:18:ab:dd:c3:62:2e:d2: 28:17:77:f9:46:42:cc:4b:bb:87:b4:60:fc:19:dc:c2:a6:d4: 8c:71:2d:39:49:a5:72:fd:85:2f:7e:92:3e:0b:0a:72:72:6e: dd:88:e5:9e:86:f4:31:d3:fd:2c:b6:99:ac:68:2e:ce:e5:dc: b3:5a:e9:cb:5d:33:f4:fc:27:14:66:e7:de:eb:49:46:97:ba: 58:79:68:e8:59:a3:42:09:8e:77:c6:51:bd:ba:2e:00:cb:ff: 11:43:d8:1f:cf:59:a7:25:1c:53:99:4f:ff:3f:d3:1f:53:03: 7f:02:65:c8:19:a7:05:bd:f9:88:ff:65:de:53:29:c3:35:f7: 23:20:b2:a0:f6:c3:f3:89:db:da:12:43:0e:60:61:96:c9:f0: c4:3f:cf:bd:09:03:f6:bc:7e:dd:33:bf:45:b0:99:25:67:cd: 0b:6a:63:8e:01:db:b2:55:a1:99:4e:6d:d2:17:bf:d9:15:ec: d7:a6:30:fe:1d:2d:4d:76:9b:5d:08:25:86:69:2f:5d:28:06: 7f:e8:9b:11:66:e9:7f:af:f6:8a:12:25:aa:a8:2c:33:4a:d3: bf:8c:d3:1a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAWkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjhDMTMxMTAvBgNVBAUTKEREMjM1RDM3MDg5MDlCMzNENTg5NEI0Q0NEQzkxMDVD NjFGRDE2QUUwHhcNMjUwNTA2MTUxNzE3WhcNMjUwNTEzMTUxNzE3WjAYMRYwFAYD VQQDEw02ODFhMjdmZC1mYzY0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxd54iCXMX397VBxw42q22Bmv/bhDtbIzxBCOjfSjF20klYQnhiOfW+W3CRq7 zfCeB9lRy2BdjTSi4ZJbhYiRD9R0YlmCoPvYpe2785jMOpn5HMfNjocLQqQuga0+ TF9gG7dHsC9f/l3+SnYOJoqQFiUOnJzMGeRHkJrmXO+aiy2YeNLtiszFTrefry51 TM8Z0NCgpWii1BugypouEm7NAJD3Zg5A2yvVvn7/QmZJ8oXQZkDAEFaAH3qtfWQv qrs/QmfZUKKjNZQm69/NDFKr4OxxMHFRyWjhIhbL89l7ddiOObWNzfXuAIJ3fEjy S2hA60o9mDOAgpdHu57yGvfKMwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFF73zrJ4 Uw+iJ5EZnQDx7KsPXLoaMB8GA1UdIwQYMBaAFN0jXTcIkJsz1YlLTM3JEFxh/Rau MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCOEMxMy9EMDYxMTcxNjBC MkQxMUVFODY3RTZBMTdDNEY5QUUwMi8zU05kTndpUW16UFZpVXRNemNrUVhHSDlG cTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzNTTmROd2lRbXpQVmlVdE16Y2tRWEdIOUZxNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC OEMxMy9EMDYxMTcxNjBCMkQxMUVFODY3RTZBMTdDNEY5QUUwMi8zU05kTndpUW16 UFZpVXRNemNrUVhHSDlGcTQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDFaTVYhjHVzp363vD+pfFptEnUl7VNCbsb3Hawwxir3cNiLtIoF3f5 RkLMS7uHtGD8GdzCptSMcS05SaVy/YUvfpI+Cwpycm7diOWehvQx0/0stpmsaC7O 5dyzWunLXTP0/CcUZufe60lGl7pYeWjoWaNCCY53xlG9ui4Ay/8RQ9gfz1mnJRxT mU//P9MfUwN/AmXIGacFvfmI/2XeUynDNfcjILKg9sPzidvaEkMOYGGWyfDEP8+9 CQP2vH7dM79FsJklZ80LamOOAduyVaGZTm3SF7/ZFezXpjD+HS1NdptdCCWGaS9d KAZ/6JsRZul/r/aKEiWqqCwzStO/jNMa -----END CERTIFICATE-----Generated at Tue May 6 20:45:51 2025 by rpki-client