$ rpki-client -vvf rpki.apnic.net/member_repository/A91BCDC6/80128EC87D4911EEB9C6DC26C4F9AE02/-E-7QV2aRUM2Lt9yZfU34s_5-CA.mft File: -E-7QV2aRUM2Lt9yZfU34s_5-CA.mft (raw, json) Hash identifier: Rh415dkc497j9XQZ21WHma7WsTqUn7a6g4cpw77jHvI= Subject key identifier: 4B:0C:90:0A:FB:92:88:39:72:B3:0C:2B:A5:4C:16:40:EA:F5:C5:1C Authority key identifier: F8:4F:BB:41:5D:9A:45:43:36:2E:DF:72:65:F5:37:E2:CF:F9:F8:20 Certificate issuer: /CN=A91BCDC6/serialNumber=F84FBB415D9A4543362EDF7265F537E2CFF9F820 Certificate serial: 011F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-E-7QV2aRUM2Lt9yZfU34s_5-CA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BCDC6/80128EC87D4911EEB9C6DC26C4F9AE02/-E-7QV2aRUM2Lt9yZfU34s_5-CA.mft Manifest number: 011C Signing time: Sun 11 May 2025 03:38:19 +0000 Manifest this update: Sun 11 May 2025 03:38:19 +0000 Manifest next update: Sun 18 May 2025 03:38:19 +0000 Files and hashes: 1: -E-7QV2aRUM2Lt9yZfU34s_5-CA.crl (hash: 9h/nxFr3N7UIRRqE78eXkFTNmptYMMGbWtMUkSxktB0=) 2: 254E9F807D4A11EEABBD1328C4F9AE02.roa (hash: D3pmccxd7HAcoRpNwl+DNJm+TOWT+mbBNl5xHiUaFnU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BCDC6/80128EC87D4911EEB9C6DC26C4F9AE02/-E-7QV2aRUM2Lt9yZfU34s_5-CA.crl rsync://rpki.apnic.net/member_repository/A91BCDC6/80128EC87D4911EEB9C6DC26C4F9AE02/-E-7QV2aRUM2Lt9yZfU34s_5-CA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-E-7QV2aRUM2Lt9yZfU34s_5-CA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 18 May 2025 03:38:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 287 (0x11f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BCDC6, serialNumber=F84FBB415D9A4543362EDF7265F537E2CFF9F820 Validity Not Before: May 11 03:38:19 2025 GMT Not After : May 18 03:38:19 2025 GMT Subject: CN=68201bab-3f36 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:1f:58:bd:b6:f2:1d:7e:e5:89:cc:02:2b:18: 40:6a:80:6b:d4:1e:94:84:31:6f:0b:51:82:0b:1d: 62:2d:6b:de:9a:bb:44:48:8e:da:e3:f3:93:e7:77: 74:fd:a6:1a:85:b2:f0:91:9b:c2:0e:99:53:65:ef: 46:55:c6:53:50:66:7a:b1:d4:63:1f:0e:a4:9b:14: ba:51:55:39:6c:c4:9e:f9:77:b9:f2:74:ec:07:96: 55:f6:86:ec:f9:b9:96:1e:fd:d5:9a:24:b9:ff:b8: 9e:20:3a:e2:c9:f3:58:d6:c6:2e:b6:41:50:33:9b: 93:5c:62:6a:6e:d3:20:79:b3:f5:52:32:ee:f1:67: f7:14:ea:42:5e:fe:36:4a:60:82:a4:68:49:37:5a: ce:62:26:b0:14:e0:6c:f3:9c:1b:ab:10:5a:2d:97: 38:d7:3c:ff:cc:35:94:02:37:06:af:cf:1d:0c:ac: 27:22:45:69:a2:2c:44:7a:af:6c:67:70:0f:d9:ae: 5c:bf:bb:49:0e:22:65:1c:7a:28:84:c1:5d:60:cc: 36:b3:c1:3a:0c:4a:8e:dc:ad:08:92:06:d1:78:98: da:58:b2:1c:62:51:b7:2b:d6:f4:ef:d5:69:a2:5c: 06:63:c2:f7:f5:a3:44:d5:87:11:e1:1e:34:42:fe: a4:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4B:0C:90:0A:FB:92:88:39:72:B3:0C:2B:A5:4C:16:40:EA:F5:C5:1C X509v3 Authority Key Identifier: keyid:F8:4F:BB:41:5D:9A:45:43:36:2E:DF:72:65:F5:37:E2:CF:F9:F8:20 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BCDC6/80128EC87D4911EEB9C6DC26C4F9AE02/-E-7QV2aRUM2Lt9yZfU34s_5-CA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-E-7QV2aRUM2Lt9yZfU34s_5-CA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BCDC6/80128EC87D4911EEB9C6DC26C4F9AE02/-E-7QV2aRUM2Lt9yZfU34s_5-CA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 44:59:f2:2b:b6:ba:5e:01:22:2e:ec:dd:45:cd:ac:af:ea:e9: 4d:4d:e6:d7:b1:ee:9e:dd:a0:e6:d9:52:4e:a8:d8:ba:8d:34: b0:4e:df:19:34:61:ba:81:c0:4d:f6:54:1d:d5:06:46:e2:d4: b4:96:54:f9:79:29:e2:ba:d4:4d:62:82:82:65:b5:86:7a:40: 56:7b:10:1a:40:33:39:18:ef:03:ee:b5:0d:d3:6f:5d:70:19: a2:b7:58:09:b7:30:35:1b:67:21:d2:90:04:95:1e:6d:ac:78: 94:2b:d1:25:08:bd:3e:0d:f7:da:19:0a:24:60:9b:25:ed:46: 36:b3:4e:d0:7b:ed:6a:9c:b9:d0:6a:e0:d3:9a:96:8c:ce:b4: 50:f9:72:f9:5a:5a:01:77:d7:8f:5a:03:1c:02:16:e2:ce:24: 9d:f4:2b:b1:98:30:44:ce:ff:6c:b7:94:7c:19:1c:78:cc:a3: 32:c3:42:05:6a:98:cb:26:e6:8d:99:e8:7d:c4:35:1e:8f:1f: 20:1d:d3:52:c4:d7:25:db:04:af:32:d6:31:ab:ee:5a:1f:08: 80:1d:7f:fe:3d:89:a4:82:2e:62:17:4c:79:4a:6e:23:47:23: da:01:ba:6d:02:09:47:37:8c:6a:7b:86:e4:b4:3c:ca:7b:6c: 24:c5:9b:98 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAR8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkNEQzYxMTAvBgNVBAUTKEY4NEZCQjQxNUQ5QTQ1NDMzNjJFREY3MjY1RjUzN0Uy Q0ZGOUY4MjAwHhcNMjUwNTExMDMzODE5WhcNMjUwNTE4MDMzODE5WjAYMRYwFAYD VQQDEw02ODIwMWJhYi0zZjM2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsh9YvbbyHX7licwCKxhAaoBr1B6UhDFvC1GCCx1iLWvemrtESI7a4/OT53d0 /aYahbLwkZvCDplTZe9GVcZTUGZ6sdRjHw6kmxS6UVU5bMSe+Xe58nTsB5ZV9obs +bmWHv3VmiS5/7ieIDriyfNY1sYutkFQM5uTXGJqbtMgebP1UjLu8Wf3FOpCXv42 SmCCpGhJN1rOYiawFOBs85wbqxBaLZc41zz/zDWUAjcGr88dDKwnIkVpoixEeq9s Z3AP2a5cv7tJDiJlHHoohMFdYMw2s8E6DEqO3K0IkgbReJjaWLIcYlG3K9b079Vp olwGY8L39aNE1YcR4R40Qv6kFwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEsMkAr7 kog5crMMK6VMFkDq9cUcMB8GA1UdIwQYMBaAFPhPu0FdmkVDNi7fcmX1N+LP+fgg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQ0RDNi84MDEyOEVDODdE NDkxMUVFQjlDNkRDMjZDNEY5QUUwMi8tRS03UVYyYVJVTTJMdDl5WmZVMzRzXzUt Q0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy1FLTdRVjJhUlVNMkx0OXlaZlUzNHNfNS1DQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC Q0RDNi84MDEyOEVDODdENDkxMUVFQjlDNkRDMjZDNEY5QUUwMi8tRS03UVYyYVJV TTJMdDl5WmZVMzRzXzUtQ0EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBEWfIrtrpeASIu7N1Fzayv6ulNTebXse6e3aDm2VJOqNi6jTSwTt8Z NGG6gcBN9lQd1QZG4tS0llT5eSniutRNYoKCZbWGekBWexAaQDM5GO8D7rUN029d cBmit1gJtzA1G2ch0pAElR5trHiUK9ElCL0+DffaGQokYJsl7UY2s07Qe+1qnLnQ auDTmpaMzrRQ+XL5WloBd9ePWgMcAhbiziSd9CuxmDBEzv9st5R8GRx4zKMyw0IF apjLJuaNmeh9xDUejx8gHdNSxNcl2wSvMtYxq+5aHwiAHX/+PYmkgi5iF0x5Sm4j RyPaAbptAglHN4xqe4bktDzKe2wkxZuY -----END CERTIFICATE-----Generated at Sun May 11 19:15:46 2025 by rpki-client