$ rpki-client -vvf rpki.apnic.net/member_repository/A91BA447/5F4C6CF2426211EA94C5C466C4F9AE02/3Ji1RLFsSamN0Fhc-WckJkFVLqQ.mft File: 3Ji1RLFsSamN0Fhc-WckJkFVLqQ.mft (raw, json) Hash identifier: MfL0mpyYuIOVg71rTqYE6vyJ8x4goAVetzjXQuGwb64= Subject key identifier: F7:50:61:BA:63:D2:80:5E:D3:EA:57:1A:F3:E4:A7:F5:EA:6E:41:1A Authority key identifier: DC:98:B5:44:B1:6C:49:A9:8D:D0:58:5C:F9:67:24:26:41:55:2E:A4 Certificate issuer: /CN=A91BA447/serialNumber=DC98B544B16C49A98DD0585CF967242641552EA4 Certificate serial: 0B08 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3Ji1RLFsSamN0Fhc-WckJkFVLqQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BA447/5F4C6CF2426211EA94C5C466C4F9AE02/3Ji1RLFsSamN0Fhc-WckJkFVLqQ.mft Manifest number: 0B01 Signing time: Sat 10 May 2025 19:05:05 +0000 Manifest this update: Sat 10 May 2025 19:05:05 +0000 Manifest next update: Sat 17 May 2025 19:05:04 +0000 Files and hashes: 1: 3Ji1RLFsSamN0Fhc-WckJkFVLqQ.crl (hash: cvvmBGzJHO13Y8O+7sv5Y2OjftBK07JEKj1rPRoz9jU=) 2: 07F14B9C426411EABA91B569C4F9AE02.roa (hash: F4BgB3+37H1vj4fhyDwAENhQ6lWTOrd3il938AR6caY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BA447/5F4C6CF2426211EA94C5C466C4F9AE02/3Ji1RLFsSamN0Fhc-WckJkFVLqQ.crl rsync://rpki.apnic.net/member_repository/A91BA447/5F4C6CF2426211EA94C5C466C4F9AE02/3Ji1RLFsSamN0Fhc-WckJkFVLqQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3Ji1RLFsSamN0Fhc-WckJkFVLqQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 17 May 2025 19:05:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2824 (0xb08) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BA447, serialNumber=DC98B544B16C49A98DD0585CF967242641552EA4 Validity Not Before: May 10 19:05:05 2025 GMT Not After : May 17 19:05:04 2025 GMT Subject: CN=681fa361-21da Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:34:88:ec:9e:86:78:3a:63:39:4e:ef:ac:80: b3:b0:28:89:6c:13:d6:ba:e3:95:46:b2:b1:89:4a: 29:62:73:d1:d6:a5:1d:4f:44:26:02:55:7a:48:fc: 72:e2:dd:02:bf:ee:a8:bb:10:d4:b3:1d:ab:81:6c: a9:15:0b:7a:16:25:fd:3a:4e:4e:c9:94:99:49:7d: f2:6e:97:2a:c8:61:3f:10:8e:3e:4f:6a:1d:fd:aa: 19:fc:60:2a:36:e5:93:26:e6:17:a5:a6:10:dd:38: 53:85:f1:15:bf:47:d8:90:10:fc:cf:15:7b:e7:b2: 22:58:ff:3b:ce:e7:ae:bb:6a:c4:36:63:df:fd:6c: 08:5a:57:c2:59:1c:a4:39:bf:59:51:ac:5a:d0:88: 74:25:bd:f7:ec:fc:92:22:f1:6e:b2:92:9f:ad:03: 19:7a:c8:30:fc:9c:cd:f5:ae:9d:0b:de:39:5f:c1: 52:2a:7e:57:fb:70:07:f9:14:c4:5f:e3:1d:09:c6: 87:cf:8f:b9:4b:37:19:90:f1:a6:33:4a:2a:c7:8a: 2b:19:c6:07:e2:0f:54:60:2d:1f:8d:91:1f:96:c8: a5:af:db:75:81:d1:45:99:6e:7b:6e:56:11:65:a7: d6:c8:47:d6:5a:62:c8:88:c4:43:b2:a7:53:b8:8c: 9e:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F7:50:61:BA:63:D2:80:5E:D3:EA:57:1A:F3:E4:A7:F5:EA:6E:41:1A X509v3 Authority Key Identifier: keyid:DC:98:B5:44:B1:6C:49:A9:8D:D0:58:5C:F9:67:24:26:41:55:2E:A4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BA447/5F4C6CF2426211EA94C5C466C4F9AE02/3Ji1RLFsSamN0Fhc-WckJkFVLqQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3Ji1RLFsSamN0Fhc-WckJkFVLqQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BA447/5F4C6CF2426211EA94C5C466C4F9AE02/3Ji1RLFsSamN0Fhc-WckJkFVLqQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 63:6b:2e:23:50:95:08:8e:e4:8b:51:9e:6e:6b:3e:ca:9c:f2: 89:34:a1:2d:d2:78:89:a4:2d:15:8d:53:e2:3c:ca:bd:3e:72: 49:02:6a:a9:c8:b3:d2:62:81:87:4b:be:88:99:45:ad:6d:db: 6f:8d:6e:de:0d:85:f2:8a:3e:6d:f8:b3:d9:9c:e8:ed:2c:42: e3:94:1e:47:c9:d4:33:8b:de:bf:f6:7b:b5:a8:3e:6f:a0:c0: 72:4c:2f:0a:c4:da:66:9c:51:91:63:f9:0f:17:da:ef:e7:f2: bb:fd:26:53:a6:2a:b2:62:9a:76:be:a3:77:78:5f:b6:02:72: 8d:d8:2f:1a:7f:1c:a0:8c:5a:c6:bd:93:62:60:db:57:02:5e: 9a:68:dd:76:1c:70:66:0a:7d:ac:15:7e:3f:a1:19:50:fe:02: ce:90:cc:30:6d:dd:ed:f2:86:f3:7b:46:b0:af:1c:62:02:de: 9d:88:94:a9:db:b5:04:21:d9:af:c5:95:d7:b5:e5:4f:8c:e2: 21:4c:44:de:0f:b4:a1:6f:db:cc:ce:f4:43:f9:d9:de:3b:10: c0:fc:3c:78:98:5f:bc:e4:db:18:26:0d:57:39:9c:10:9b:c1: 9e:d5:ef:c2:f4:fb:13:89:1c:34:e6:73:35:35:0b:40:32:43: 3e:5c:3a:ae -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCwgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkE0NDcxMTAvBgNVBAUTKERDOThCNTQ0QjE2QzQ5QTk4REQwNTg1Q0Y5NjcyNDI2 NDE1NTJFQTQwHhcNMjUwNTEwMTkwNTA1WhcNMjUwNTE3MTkwNTA0WjAYMRYwFAYD VQQDEw02ODFmYTM2MS0yMWRhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3DSI7J6GeDpjOU7vrICzsCiJbBPWuuOVRrKxiUopYnPR1qUdT0QmAlV6SPxy 4t0Cv+6ouxDUsx2rgWypFQt6FiX9Ok5OyZSZSX3ybpcqyGE/EI4+T2od/aoZ/GAq NuWTJuYXpaYQ3ThThfEVv0fYkBD8zxV757IiWP87zueuu2rENmPf/WwIWlfCWRyk Ob9ZUaxa0Ih0Jb337PySIvFuspKfrQMZesgw/JzN9a6dC945X8FSKn5X+3AH+RTE X+MdCcaHz4+5SzcZkPGmM0oqx4orGcYH4g9UYC0fjZEflsilr9t1gdFFmW57blYR ZafWyEfWWmLIiMRDsqdTuIyetwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPdQYbpj 0oBe0+pXGvPkp/XqbkEaMB8GA1UdIwQYMBaAFNyYtUSxbEmpjdBYXPlnJCZBVS6k MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQTQ0Ny81RjRDNkNGMjQy NjIxMUVBOTRDNUM0NjZDNEY5QUUwMi8zSmkxUkxGc1NhbU4wRmhjLVdja0prRlZM cVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzNKaTFSTEZzU2FtTjBGaGMtV2NrSmtGVkxxUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC QTQ0Ny81RjRDNkNGMjQyNjIxMUVBOTRDNUM0NjZDNEY5QUUwMi8zSmkxUkxGc1Nh bU4wRmhjLVdja0prRlZMcVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBjay4jUJUIjuSLUZ5uaz7KnPKJNKEt0niJpC0VjVPiPMq9PnJJAmqp yLPSYoGHS76ImUWtbdtvjW7eDYXyij5t+LPZnOjtLELjlB5HydQzi96/9nu1qD5v oMByTC8KxNpmnFGRY/kPF9rv5/K7/SZTpiqyYpp2vqN3eF+2AnKN2C8afxygjFrG vZNiYNtXAl6aaN12HHBmCn2sFX4/oRlQ/gLOkMwwbd3t8obze0awrxxiAt6diJSp 27UEIdmvxZXXteVPjOIhTETeD7Shb9vMzvRD+dneOxDA/Dx4mF+85NsYJg1XOZwQ m8Ge1e/C9PsTiRw05nM1NQtAMkM+XDqu -----END CERTIFICATE-----Generated at Sun May 11 22:53:39 2025 by rpki-client