$ rpki-client -vvf rpki.apnic.net/member_repository/A91BEE1D/9ADADADEC70E11EF8067C466C4F9AE02/itYQrIti8qb8qCWJVdXxJJJ7OgA.mft File: itYQrIti8qb8qCWJVdXxJJJ7OgA.mft (raw, json) Hash identifier: OG29tHiSnir+vK1obbIdG/wA1PCPLe37cXP0Xbx9Dbc= Subject key identifier: 93:7B:39:22:34:73:8C:2D:EF:1A:59:16:51:A2:99:C8:CE:27:66:2F Authority key identifier: 8A:D6:10:AC:8B:62:F2:A6:FC:A8:25:89:55:D5:F1:24:92:7B:3A:00 Certificate issuer: /CN=A91BEE1D/serialNumber=8AD610AC8B62F2A6FCA8258955D5F124927B3A00 Certificate serial: 45 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/itYQrIti8qb8qCWJVdXxJJJ7OgA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BEE1D/9ADADADEC70E11EF8067C466C4F9AE02/itYQrIti8qb8qCWJVdXxJJJ7OgA.mft Manifest number: 45 Signing time: Sun 11 May 2025 06:07:46 +0000 Manifest this update: Sun 11 May 2025 06:07:45 +0000 Manifest next update: Sun 18 May 2025 06:07:45 +0000 Files and hashes: 1: itYQrIti8qb8qCWJVdXxJJJ7OgA.crl (hash: yLE3YAZxhKf+UCA+OIARYnwuzX/PxKvHSIavbd0VV3A=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BEE1D/9ADADADEC70E11EF8067C466C4F9AE02/itYQrIti8qb8qCWJVdXxJJJ7OgA.crl rsync://rpki.apnic.net/member_repository/A91BEE1D/9ADADADEC70E11EF8067C466C4F9AE02/itYQrIti8qb8qCWJVdXxJJJ7OgA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/itYQrIti8qb8qCWJVdXxJJJ7OgA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 18 May 2025 06:07:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 69 (0x45) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BEE1D, serialNumber=8AD610AC8B62F2A6FCA8258955D5F124927B3A00 Validity Not Before: May 11 06:07:45 2025 GMT Not After : May 18 06:07:45 2025 GMT Subject: CN=68203eb2-436e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:e1:d1:d5:eb:75:88:71:f5:2d:7b:96:4d:9c: 03:ab:2f:3f:2c:d2:10:22:7c:4f:31:99:bf:e0:67: 42:07:1e:99:2e:6b:30:67:f1:6c:bc:7d:48:7a:61: 8b:0d:c0:95:31:78:85:de:62:b2:50:c8:3e:82:18: 92:19:73:92:a2:c9:0a:83:69:fc:78:4b:7d:b9:5b: 38:d1:95:b3:51:70:27:f3:ae:8a:ab:7d:ce:28:ce: 49:66:5b:02:a5:bd:b8:67:a5:9d:62:4d:9f:fc:14: 72:2f:1f:4e:a7:a7:1a:8d:ad:6c:9a:e5:6f:0d:d5: a7:d4:b7:06:28:86:b1:13:57:f4:2f:f0:b0:73:5d: d4:aa:8f:a9:31:5f:e4:f0:8c:9f:01:34:0c:eb:f8: e9:8d:7d:dd:c0:c8:b2:eb:a3:c0:cb:a5:df:17:a0: 3b:cb:fb:0f:7f:1c:a7:d1:6c:c7:b2:e7:21:1e:60: 99:d0:5f:ef:18:be:b4:ee:e6:67:79:e0:1d:6b:e8: b3:f9:5c:92:e8:a9:38:c2:62:d7:4e:9a:6d:bd:ec: 12:c0:62:82:28:13:47:47:99:e2:34:2d:fe:8e:74: e6:cc:b2:e5:20:98:79:6c:bb:a5:96:89:76:55:26: df:3e:88:d0:cd:01:3d:bb:b2:53:49:2b:17:64:d3: 71:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 93:7B:39:22:34:73:8C:2D:EF:1A:59:16:51:A2:99:C8:CE:27:66:2F X509v3 Authority Key Identifier: keyid:8A:D6:10:AC:8B:62:F2:A6:FC:A8:25:89:55:D5:F1:24:92:7B:3A:00 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BEE1D/9ADADADEC70E11EF8067C466C4F9AE02/itYQrIti8qb8qCWJVdXxJJJ7OgA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/itYQrIti8qb8qCWJVdXxJJJ7OgA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BEE1D/9ADADADEC70E11EF8067C466C4F9AE02/itYQrIti8qb8qCWJVdXxJJJ7OgA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 21:4c:6a:26:53:65:a4:65:29:c3:a7:de:64:ea:21:39:ae:45: 6e:01:ae:83:43:70:ec:9e:07:a1:e7:7a:f2:2b:b8:f3:d6:40: 59:34:db:8a:26:04:c3:1f:39:48:e0:c2:a7:5d:4a:bb:90:a6: 1b:df:98:83:d1:cf:62:2c:d9:76:89:85:b9:27:b7:da:2f:69: 9b:d1:60:b7:96:a2:be:0a:a1:4a:e6:56:e0:e9:e4:dd:9e:28: f8:a2:55:08:50:05:51:bc:85:b7:b5:93:c3:ec:a9:77:9a:9f: 25:cd:00:5e:06:5e:3d:46:28:18:35:2b:04:e9:51:74:7e:2a: f6:4e:9d:05:4e:21:69:0e:66:7d:db:c4:ee:88:fe:c8:38:3d: ec:25:b4:b4:3f:42:3a:35:f5:a5:0b:dc:5e:1f:15:5b:d6:c8: 6b:6a:05:4a:f4:66:5c:37:83:6b:57:65:7a:80:b6:fd:0b:0e: 56:6b:74:3f:b5:1e:96:44:8c:7b:2e:98:38:6f:a4:df:7f:69: 09:73:21:32:a6:f7:66:39:0f:bb:40:c0:d4:ea:e1:26:b7:f6: 5a:b8:b1:e4:2f:9b:8b:fd:6a:6b:cb:b7:c3:74:50:64:62:83: 41:f5:08:b4:75:66:65:df:b0:f3:91:8a:8c:4f:a3:31:41:7b: 32:9a:55:a3 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBRTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC RUUxRDExMC8GA1UEBRMoOEFENjEwQUM4QjYyRjJBNkZDQTgyNTg5NTVENUYxMjQ5 MjdCM0EwMDAeFw0yNTA1MTEwNjA3NDVaFw0yNTA1MTgwNjA3NDVaMBgxFjAUBgNV BAMTDTY4MjAzZWIyLTQzNmUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDO4dHV63WIcfUte5ZNnAOrLz8s0hAifE8xmb/gZ0IHHpkuazBn8Wy8fUh6YYsN wJUxeIXeYrJQyD6CGJIZc5KiyQqDafx4S325WzjRlbNRcCfzroqrfc4ozklmWwKl vbhnpZ1iTZ/8FHIvH06npxqNrWya5W8N1afUtwYohrETV/Qv8LBzXdSqj6kxX+Tw jJ8BNAzr+OmNfd3AyLLro8DLpd8XoDvL+w9/HKfRbMey5yEeYJnQX+8YvrTu5md5 4B1r6LP5XJLoqTjCYtdOmm297BLAYoIoE0dHmeI0Lf6OdObMsuUgmHlsu6WWiXZV Jt8+iNDNAT27slNJKxdk03ExAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUk3s5IjRz jC3vGlkWUaKZyM4nZi8wHwYDVR0jBBgwFoAUitYQrIti8qb8qCWJVdXxJJJ7OgAw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUJFRTFELzlBREFEQURFQzcw RTExRUY4MDY3QzQ2NkM0RjlBRTAyL2l0WVFySXRpOHFiOHFDV0pWZFh4SkpKN09n QS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvaXRZUXJJdGk4cWI4cUNXSlZkWHhKSko3T2dBLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUJF RTFELzlBREFEQURFQzcwRTExRUY4MDY3QzQ2NkM0RjlBRTAyL2l0WVFySXRpOHFi OHFDV0pWZFh4SkpKN09nQS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBACFMaiZTZaRlKcOn3mTqITmuRW4BroNDcOyeB6HnevIruPPWQFk024om BMMfOUjgwqddSruQphvfmIPRz2Is2XaJhbknt9ovaZvRYLeWor4KoUrmVuDp5N2e KPiiVQhQBVG8hbe1k8PsqXeanyXNAF4GXj1GKBg1KwTpUXR+KvZOnQVOIWkOZn3b xO6I/sg4PewltLQ/Qjo19aUL3F4fFVvWyGtqBUr0Zlw3g2tXZXqAtv0LDlZrdD+1 HpZEjHsumDhvpN9/aQlzITKm92Y5D7tAwNTq4Sa39lq4seQvm4v9amvLt8N0UGRi g0H1CLR1ZmXfsPORioxPozFBezKaVaM= -----END CERTIFICATE-----Generated at Sun May 11 22:37:39 2025 by rpki-client