$ rpki-client -vvf rpki.apnic.net/member_repository/A91BB100/38256B34630211ECBA4E0767C4F9AE02/P0hkkIxFs6cVjoMsBvkyPSNBmQ8.mft File: P0hkkIxFs6cVjoMsBvkyPSNBmQ8.mft (raw, json) Hash identifier: KnP0e6XYIZ3J3DF+NH7JTSIVDsTLvnmi/r5wsc2LnLU= Subject key identifier: 81:69:EF:F0:C6:18:F4:AC:01:6D:A4:60:1F:E6:66:65:73:EC:5F:5F Authority key identifier: 3F:48:64:90:8C:45:B3:A7:15:8E:83:2C:06:F9:32:3D:23:41:99:0F Certificate issuer: /CN=A91BB100/serialNumber=3F4864908C45B3A7158E832C06F9323D2341990F Certificate serial: 0426 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/P0hkkIxFs6cVjoMsBvkyPSNBmQ8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BB100/38256B34630211ECBA4E0767C4F9AE02/P0hkkIxFs6cVjoMsBvkyPSNBmQ8.mft Manifest number: 0422 Signing time: Tue 13 May 2025 00:11:27 +0000 Manifest this update: Tue 13 May 2025 00:11:26 +0000 Manifest next update: Tue 20 May 2025 00:11:26 +0000 Files and hashes: 1: P0hkkIxFs6cVjoMsBvkyPSNBmQ8.crl (hash: yUO/DvJSJtya9S0WB4DWVk9FTcTiWraJMNITRdOeY2U=) 2: FE761E84630511EC86F9726BC4F9AE02.roa (hash: RCWPaj7t0e1p3rp6/K3vTM6gR0rDSmQTnwQnVmwe2ms=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BB100/38256B34630211ECBA4E0767C4F9AE02/P0hkkIxFs6cVjoMsBvkyPSNBmQ8.crl rsync://rpki.apnic.net/member_repository/A91BB100/38256B34630211ECBA4E0767C4F9AE02/P0hkkIxFs6cVjoMsBvkyPSNBmQ8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/P0hkkIxFs6cVjoMsBvkyPSNBmQ8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 20 May 2025 00:11:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1062 (0x426) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BB100, serialNumber=3F4864908C45B3A7158E832C06F9323D2341990F Validity Not Before: May 13 00:11:26 2025 GMT Not After : May 20 00:11:26 2025 GMT Subject: CN=68228e2e-c649 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:c0:51:67:d4:b4:59:cc:c4:d5:6c:fb:a0:15: ac:bd:aa:d7:4a:27:40:02:5c:eb:21:f1:1c:f5:33: 05:f1:ea:75:9d:9e:f1:99:b6:0d:51:3e:3d:99:9c: 04:4e:f7:28:9e:bf:f1:59:56:0b:45:9b:62:39:85: e1:05:3c:71:cd:56:cc:3d:3f:6d:a3:a0:3a:90:a1: a6:79:1b:19:f5:13:01:bc:fe:c5:b7:14:e9:a4:2c: a0:13:27:b0:21:cc:7f:5a:67:d2:35:ef:1c:ed:ec: a0:64:6c:1d:b9:97:0c:19:f1:d1:a6:47:21:a0:a5: 58:52:13:14:09:aa:4f:7e:ff:37:ac:04:4b:99:5d: e8:60:f6:c4:1f:10:fd:c2:4a:69:a8:ef:48:02:fb: 7c:82:a6:0c:29:5a:32:9b:61:55:3c:91:eb:65:a8: 0c:e0:36:ee:12:85:cd:49:05:46:51:89:1f:f6:ff: 53:c0:45:90:8a:f8:99:45:d3:89:75:f4:dd:f5:bf: 77:e2:c9:b0:1f:25:aa:bd:71:23:a4:ae:d9:4e:24: 22:19:74:5b:e7:77:43:01:51:84:59:42:e2:ea:bd: 07:5a:81:f4:a7:79:45:e6:3c:a0:07:00:5b:fd:6f: 13:d0:df:db:f3:1b:f7:4b:1a:1e:3d:9d:50:af:e3: 9f:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 81:69:EF:F0:C6:18:F4:AC:01:6D:A4:60:1F:E6:66:65:73:EC:5F:5F X509v3 Authority Key Identifier: keyid:3F:48:64:90:8C:45:B3:A7:15:8E:83:2C:06:F9:32:3D:23:41:99:0F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BB100/38256B34630211ECBA4E0767C4F9AE02/P0hkkIxFs6cVjoMsBvkyPSNBmQ8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/P0hkkIxFs6cVjoMsBvkyPSNBmQ8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BB100/38256B34630211ECBA4E0767C4F9AE02/P0hkkIxFs6cVjoMsBvkyPSNBmQ8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0d:07:75:a8:5d:e7:b8:52:c5:c5:36:55:59:5b:35:b1:3a:00: 3e:48:e5:79:9d:04:28:f0:ae:68:2f:8f:b9:ff:88:df:9d:1d: b4:29:11:ae:11:06:04:7a:46:10:c1:4a:ad:ac:1f:9b:52:94: 90:40:98:c8:79:49:c6:53:02:8e:cb:1a:5b:d8:9a:5c:74:ea: 28:75:d2:27:13:83:21:66:4b:5c:bd:1a:7c:0e:f8:97:b4:a8: f8:5b:45:f9:ec:11:62:51:6f:bb:ee:b1:4a:cf:e3:39:ae:c7: 0d:58:0d:5c:11:0a:e5:5d:73:7b:97:24:2b:77:a6:a5:a1:cd: a3:9e:8f:1e:76:9d:44:42:37:f1:5c:b5:f1:04:a2:a5:63:cf: 3a:76:f8:4e:22:f0:45:53:90:0b:66:28:2e:0d:20:72:a0:99: 5b:bb:1c:04:0c:b4:a5:0a:29:96:ea:f0:92:e3:bf:be:1d:9b: ed:67:4c:e0:cd:0a:59:4e:c7:db:66:78:90:41:8a:49:45:41: 40:87:62:6c:e6:7c:01:0c:01:ea:ed:ec:0b:6c:0b:83:0f:9b: 8e:14:ea:ce:8e:ed:fb:83:8d:88:c2:03:18:29:c3:25:2b:b6: 36:97:9a:27:5b:7a:c9:ed:ed:f9:20:dc:74:ea:f9:71:b3:da: a7:45:a2:d7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBCYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkIxMDAxMTAvBgNVBAUTKDNGNDg2NDkwOEM0NUIzQTcxNThFODMyQzA2RjkzMjNE MjM0MTk5MEYwHhcNMjUwNTEzMDAxMTI2WhcNMjUwNTIwMDAxMTI2WjAYMRYwFAYD VQQDEw02ODIyOGUyZS1jNjQ5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxsBRZ9S0WczE1Wz7oBWsvarXSidAAlzrIfEc9TMF8ep1nZ7xmbYNUT49mZwE Tvconr/xWVYLRZtiOYXhBTxxzVbMPT9to6A6kKGmeRsZ9RMBvP7FtxTppCygEyew Icx/WmfSNe8c7eygZGwduZcMGfHRpkchoKVYUhMUCapPfv83rARLmV3oYPbEHxD9 wkppqO9IAvt8gqYMKVoym2FVPJHrZagM4DbuEoXNSQVGUYkf9v9TwEWQiviZRdOJ dfTd9b934smwHyWqvXEjpK7ZTiQiGXRb53dDAVGEWULi6r0HWoH0p3lF5jygBwBb /W8T0N/b8xv3SxoePZ1Qr+OfcwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIFp7/DG GPSsAW2kYB/mZmVz7F9fMB8GA1UdIwQYMBaAFD9IZJCMRbOnFY6DLAb5Mj0jQZkP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQjEwMC8zODI1NkIzNDYz MDIxMUVDQkE0RTA3NjdDNEY5QUUwMi9QMGhra0l4RnM2Y1Zqb01zQnZreVBTTkJt UTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1AwaGtrSXhGczZjVmpvTXNCdmt5UFNOQm1ROC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC QjEwMC8zODI1NkIzNDYzMDIxMUVDQkE0RTA3NjdDNEY5QUUwMi9QMGhra0l4RnM2 Y1Zqb01zQnZreVBTTkJtUTgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQANB3WoXee4UsXFNlVZWzWxOgA+SOV5nQQo8K5oL4+5/4jfnR20KRGu EQYEekYQwUqtrB+bUpSQQJjIeUnGUwKOyxpb2JpcdOooddInE4MhZktcvRp8DviX tKj4W0X57BFiUW+77rFKz+M5rscNWA1cEQrlXXN7lyQrd6aloc2jno8edp1EQjfx XLXxBKKlY886dvhOIvBFU5ALZiguDSByoJlbuxwEDLSlCimW6vCS47++HZvtZ0zg zQpZTsfbZniQQYpJRUFAh2Js5nwBDAHq7ewLbAuDD5uOFOrOju37g42IwgMYKcMl K7Y2l5onW3rJ7e35INx06vlxs9qnRaLX -----END CERTIFICATE-----Generated at Wed May 14 17:15:09 2025 by rpki-client