$ rpki-client -vvf rpki.apnic.net/member_repository/A91C02B3/2C8242AEBED211EB9F409076C4F9AE02/G9yKnBE9vfM_vPHBQblLu31wEno.mft File: G9yKnBE9vfM_vPHBQblLu31wEno.mft (raw, json) Hash identifier: W2aQP95WJEdIfVNLkCREVEVR4KRXjHlu+jMtoybxPGE= Subject key identifier: 1F:36:4B:6C:3F:F4:B6:E0:70:10:EB:0B:93:5D:EE:51:E7:D1:3B:59 Authority key identifier: 1B:DC:8A:9C:11:3D:BD:F3:3F:BC:F1:C1:41:B9:4B:BB:7D:70:12:7A Certificate issuer: /CN=A91C02B3/serialNumber=1BDC8A9C113DBDF33FBCF1C141B94BBB7D70127A Certificate serial: 05C5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G9yKnBE9vfM_vPHBQblLu31wEno.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C02B3/2C8242AEBED211EB9F409076C4F9AE02/G9yKnBE9vfM_vPHBQblLu31wEno.mft Manifest number: 05C0 Signing time: Sat 10 May 2025 22:42:10 +0000 Manifest this update: Sat 10 May 2025 22:42:09 +0000 Manifest next update: Sat 17 May 2025 22:42:09 +0000 Files and hashes: 1: G9yKnBE9vfM_vPHBQblLu31wEno.crl (hash: LZfx3SjrxYuzDOw8H0mH03NVP7SirdCDkIS28caUWek=) 2: 7F17B380BED411EBA325CC76C4F9AE02.roa (hash: XDIx2Mu+3w+iq57LYXThCAlha4BzO8LkP4nQjVrOfjc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C02B3/2C8242AEBED211EB9F409076C4F9AE02/G9yKnBE9vfM_vPHBQblLu31wEno.crl rsync://rpki.apnic.net/member_repository/A91C02B3/2C8242AEBED211EB9F409076C4F9AE02/G9yKnBE9vfM_vPHBQblLu31wEno.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G9yKnBE9vfM_vPHBQblLu31wEno.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 17 May 2025 22:42:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1477 (0x5c5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C02B3, serialNumber=1BDC8A9C113DBDF33FBCF1C141B94BBB7D70127A Validity Not Before: May 10 22:42:09 2025 GMT Not After : May 17 22:42:09 2025 GMT Subject: CN=681fd641-9bbd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:41:81:ec:38:09:94:e7:37:1e:b1:43:bb:3f: 67:d6:d8:aa:42:cf:05:ad:ff:34:2d:53:bc:92:cc: 95:8c:37:73:a5:87:d0:a8:fd:18:80:5a:86:a8:b8: 0c:ad:c8:ce:e3:e5:53:ad:10:c3:6b:9c:ab:41:05: 2b:b4:a9:ff:38:e1:d2:26:14:b7:b1:61:73:2e:e2: d6:ee:0a:80:44:6e:9a:20:55:98:cd:a9:c2:ac:44: 76:5d:aa:1d:a1:77:e6:6b:e9:02:8f:85:f2:5c:7c: 4d:21:95:3a:88:3c:8a:f4:75:61:b1:a1:97:bf:0c: e4:fc:f9:be:88:d2:2a:3c:77:af:3e:c7:63:c3:58: 03:01:11:11:a7:09:9a:c1:82:7c:22:f0:ed:65:7e: a0:69:0f:ae:20:93:b1:f6:f2:13:44:a7:57:c0:4b: bc:ad:cc:6b:b6:2f:32:42:46:8d:37:7e:c0:55:3a: 2a:07:4a:c9:a8:a0:56:1e:ae:80:a6:78:4e:ed:46: 17:01:57:fb:e0:71:ae:29:62:da:05:34:ac:cf:08: 4f:17:7d:a3:3b:af:0e:b3:e3:cc:7a:ca:59:3a:e1: 95:60:0d:3e:bd:7a:e2:a9:8f:13:94:4e:f2:ec:26: 4d:b1:7e:c5:35:45:bf:d2:6c:f9:46:19:57:f3:98: c5:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1F:36:4B:6C:3F:F4:B6:E0:70:10:EB:0B:93:5D:EE:51:E7:D1:3B:59 X509v3 Authority Key Identifier: keyid:1B:DC:8A:9C:11:3D:BD:F3:3F:BC:F1:C1:41:B9:4B:BB:7D:70:12:7A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C02B3/2C8242AEBED211EB9F409076C4F9AE02/G9yKnBE9vfM_vPHBQblLu31wEno.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G9yKnBE9vfM_vPHBQblLu31wEno.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C02B3/2C8242AEBED211EB9F409076C4F9AE02/G9yKnBE9vfM_vPHBQblLu31wEno.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 00:09:1d:c1:59:1f:22:c8:cb:6d:79:ce:b1:b0:14:d5:8f:9e: 16:f1:f9:7b:36:fd:80:aa:66:bb:65:ef:a2:13:c1:f8:42:64: ec:b3:82:a7:f6:e4:70:51:2f:54:6d:b7:71:2d:cc:ba:d8:3c: 78:6e:32:53:7f:4c:8a:22:56:ac:28:e3:c1:d5:d7:d7:c0:16: 33:e1:a0:89:e1:f9:aa:de:2f:22:a1:20:dd:bc:9a:4e:80:b2: 27:c2:e3:28:99:c7:46:78:f6:72:a4:7b:1d:e9:fc:3a:4c:e4: cc:cd:ce:4b:67:73:d7:17:f8:c0:8f:9f:b6:45:12:d3:16:21: 00:3c:7a:ae:61:e4:24:ce:3f:78:5c:e4:40:a3:a9:c0:ea:74: d1:a6:37:80:3a:7d:07:6f:ec:2a:6b:bc:a5:fe:95:e4:1c:ed: 47:7d:ad:06:55:59:22:fd:41:d1:e1:64:b1:14:f9:78:a4:74: 86:13:e2:b8:4f:fd:0e:8b:a2:34:fc:c4:27:a5:22:33:28:a2: b5:b7:79:be:17:a9:8a:6d:a6:85:81:52:e3:fa:18:28:43:7c: 39:86:2e:ae:fa:79:58:e0:76:80:07:64:07:9c:7e:35:83:63: 54:7c:3c:78:63:9e:a8:8c:91:48:46:92:ea:07:05:58:7e:c1: 90:ac:13:87 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBcUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzAyQjMxMTAvBgNVBAUTKDFCREM4QTlDMTEzREJERjMzRkJDRjFDMTQxQjk0QkJC N0Q3MDEyN0EwHhcNMjUwNTEwMjI0MjA5WhcNMjUwNTE3MjI0MjA5WjAYMRYwFAYD VQQDEw02ODFmZDY0MS05YmJkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtEGB7DgJlOc3HrFDuz9n1tiqQs8Frf80LVO8ksyVjDdzpYfQqP0YgFqGqLgM rcjO4+VTrRDDa5yrQQUrtKn/OOHSJhS3sWFzLuLW7gqARG6aIFWYzanCrER2Xaod oXfma+kCj4XyXHxNIZU6iDyK9HVhsaGXvwzk/Pm+iNIqPHevPsdjw1gDARERpwma wYJ8IvDtZX6gaQ+uIJOx9vITRKdXwEu8rcxrti8yQkaNN37AVToqB0rJqKBWHq6A pnhO7UYXAVf74HGuKWLaBTSszwhPF32jO68Os+PMespZOuGVYA0+vXriqY8TlE7y 7CZNsX7FNUW/0mz5RhlX85jFnQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFB82S2w/ 9LbgcBDrC5Nd7lHn0TtZMB8GA1UdIwQYMBaAFBvcipwRPb3zP7zxwUG5S7t9cBJ6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMDJCMy8yQzgyNDJBRUJF RDIxMUVCOUY0MDkwNzZDNEY5QUUwMi9HOXlLbkJFOXZmTV92UEhCUWJsTHUzMXdF bm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0c5eUtuQkU5dmZNX3ZQSEJRYmxMdTMxd0Vuby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MDJCMy8yQzgyNDJBRUJFRDIxMUVCOUY0MDkwNzZDNEY5QUUwMi9HOXlLbkJFOXZm TV92UEhCUWJsTHUzMXdFbm8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAACR3BWR8iyMttec6xsBTVj54W8fl7Nv2Aqma7Ze+iE8H4QmTss4Kn 9uRwUS9UbbdxLcy62Dx4bjJTf0yKIlasKOPB1dfXwBYz4aCJ4fmq3i8ioSDdvJpO gLInwuMomcdGePZypHsd6fw6TOTMzc5LZ3PXF/jAj5+2RRLTFiEAPHquYeQkzj94 XORAo6nA6nTRpjeAOn0Hb+wqa7yl/pXkHO1Hfa0GVVki/UHR4WSxFPl4pHSGE+K4 T/0Oi6I0/MQnpSIzKKK1t3m+F6mKbaaFgVLj+hgoQ3w5hi6u+nlY4HaAB2QHnH41 g2NUfDx4Y56ojJFIRpLqBwVYfsGQrBOH -----END CERTIFICATE-----Generated at Mon May 12 10:27:10 2025 by rpki-client