$ rpki-client -vvf rpki.apnic.net/member_repository/A91C1621/99D68DCE1D6911E2A4640DA708B02CD2/-kF5Yn9bJllOVjA1Ogt3heDWksU.mft File: -kF5Yn9bJllOVjA1Ogt3heDWksU.mft (raw, json) Hash identifier: D8vQ0NT0O93znitq75B+zWOUl6AcpSFXgNGkd8fShZY= Subject key identifier: 4E:DA:66:4D:15:C7:96:F9:AA:3E:9D:19:10:BF:F0:D7:DB:D7:06:95 Authority key identifier: FA:41:79:62:7F:5B:26:59:4E:56:30:35:3A:0B:77:85:E0:D6:92:C5 Certificate issuer: /CN=A91C1621/serialNumber=FA4179627F5B26594E5630353A0B7785E0D692C5 Certificate serial: 34B2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-kF5Yn9bJllOVjA1Ogt3heDWksU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C1621/99D68DCE1D6911E2A4640DA708B02CD2/-kF5Yn9bJllOVjA1Ogt3heDWksU.mft Manifest number: 349B Signing time: Wed 14 May 2025 14:16:13 +0000 Manifest this update: Wed 14 May 2025 14:16:13 +0000 Manifest next update: Wed 21 May 2025 14:16:13 +0000 Files and hashes: 1: -kF5Yn9bJllOVjA1Ogt3heDWksU.crl (hash: x6dtCmC449gIsxbKYTER2Y4OXDL4zU7ZJw3g+OUYblw=) 2: CDE36D52DB9511E99F3F673EC4F9AE02.roa (hash: zbmIG6CT7ypIn3HcTtsDFC7ihfXsVyZlUb242ctePDw=) 3: BB8F87B4D4B011ECAA427351C4F9AE02.roa (hash: V6xVQh9iUu5NDnwtI8z/zA2tAozAKTEZViih6UdSdQ0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C1621/99D68DCE1D6911E2A4640DA708B02CD2/-kF5Yn9bJllOVjA1Ogt3heDWksU.crl rsync://rpki.apnic.net/member_repository/A91C1621/99D68DCE1D6911E2A4640DA708B02CD2/-kF5Yn9bJllOVjA1Ogt3heDWksU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-kF5Yn9bJllOVjA1Ogt3heDWksU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 21 May 2025 14:16:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13490 (0x34b2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C1621, serialNumber=FA4179627F5B26594E5630353A0B7785E0D692C5 Validity Not Before: May 14 14:16:13 2025 GMT Not After : May 21 14:16:13 2025 GMT Subject: CN=6824a5ad-2d90 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:03:4f:02:53:da:59:58:7e:b6:c9:aa:f4:14: e2:7e:3e:ef:65:df:bc:73:6f:76:a5:33:04:82:af: da:bb:d8:dd:f1:36:5d:a7:64:0e:aa:ea:d3:71:24: 8a:62:2d:6c:15:68:b2:25:b7:03:a9:ae:aa:9b:ae: c8:8e:50:76:71:89:67:c7:c4:79:45:d2:f8:66:89: d8:a2:5f:62:31:53:d3:f1:09:f6:ae:d7:5b:ac:90: 16:88:bf:52:37:14:38:a7:ba:5c:1a:30:37:2c:8f: d0:38:8e:6c:13:c3:e2:a4:51:f4:fd:5b:a0:ee:82: 03:e5:c2:77:eb:62:9a:06:74:07:8a:d0:10:8f:2d: 4d:5b:2f:89:0e:fb:9e:c9:af:4d:36:76:8e:c7:3e: 4f:56:ec:4a:28:1d:ab:a1:8b:68:96:51:19:36:a2: c2:e1:89:5a:0c:45:c7:cd:68:03:85:8b:a4:d0:f4: 30:bd:a0:e3:a3:6e:59:13:db:3f:c4:7d:41:ec:3f: 95:b8:a8:58:f2:13:02:b1:ca:14:87:cf:7d:ec:c0: f7:a7:b9:76:b6:a6:f7:4f:f3:27:4f:f0:50:db:de: 47:b7:4b:18:d6:66:53:6a:30:4a:b8:8a:8e:ea:67: 23:08:23:c6:41:37:d6:8a:b0:38:1e:9b:ad:a3:ef: 89:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4E:DA:66:4D:15:C7:96:F9:AA:3E:9D:19:10:BF:F0:D7:DB:D7:06:95 X509v3 Authority Key Identifier: keyid:FA:41:79:62:7F:5B:26:59:4E:56:30:35:3A:0B:77:85:E0:D6:92:C5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C1621/99D68DCE1D6911E2A4640DA708B02CD2/-kF5Yn9bJllOVjA1Ogt3heDWksU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-kF5Yn9bJllOVjA1Ogt3heDWksU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C1621/99D68DCE1D6911E2A4640DA708B02CD2/-kF5Yn9bJllOVjA1Ogt3heDWksU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 35:3a:01:c3:1f:57:a7:1e:5a:21:2a:68:bd:51:9d:c1:1d:9c: d9:d9:5d:eb:1c:d0:9f:fd:ab:9a:bf:8d:1d:12:1b:b3:14:ae: 2b:c7:0b:57:56:d2:18:83:c1:5f:9d:d7:15:57:5d:5e:18:5c: 6f:a5:b7:20:ce:77:59:16:e8:48:11:7d:0d:f8:1a:a7:db:83: 8a:f3:4f:9d:18:da:38:c1:ed:99:e3:22:48:a7:e2:01:0a:f8: ed:b3:81:c5:d9:e5:e8:74:08:ff:7d:e8:e6:c6:b7:3b:3e:20: fe:6c:c2:71:12:b4:f9:32:c2:32:5a:69:10:92:9d:5a:0e:10: 1c:b7:4a:99:4d:a2:df:8f:82:6d:2e:39:03:63:00:da:49:cb: f6:73:a0:13:26:8c:f1:9c:5c:23:91:36:4b:62:c0:76:9c:d9: 18:15:3f:27:fc:78:65:68:3b:63:1f:2b:ce:ca:fd:9b:b7:01: e9:01:49:c6:06:a6:ee:40:b2:38:2b:6a:3c:04:fc:6c:0c:92: 3e:84:80:da:ce:49:52:31:22:92:b8:17:fe:3d:81:03:92:1a: 9b:14:79:04:1a:21:3a:bd:8a:3b:e7:d8:1d:fc:cc:fc:7e:d2: 3b:6e:86:b4:70:92:71:61:2a:00:df:6c:bf:ef:f5:9a:86:1a: a9:03:da:c4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNLIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzE2MjExMTAvBgNVBAUTKEZBNDE3OTYyN0Y1QjI2NTk0RTU2MzAzNTNBMEI3Nzg1 RTBENjkyQzUwHhcNMjUwNTE0MTQxNjEzWhcNMjUwNTIxMTQxNjEzWjAYMRYwFAYD VQQDEw02ODI0YTVhZC0yZDkwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzwNPAlPaWVh+tsmq9BTifj7vZd+8c292pTMEgq/au9jd8TZdp2QOqurTcSSK Yi1sFWiyJbcDqa6qm67IjlB2cYlnx8R5RdL4ZonYol9iMVPT8Qn2rtdbrJAWiL9S NxQ4p7pcGjA3LI/QOI5sE8PipFH0/Vug7oID5cJ362KaBnQHitAQjy1NWy+JDvue ya9NNnaOxz5PVuxKKB2roYtollEZNqLC4YlaDEXHzWgDhYuk0PQwvaDjo25ZE9s/ xH1B7D+VuKhY8hMCscoUh8997MD3p7l2tqb3T/MnT/BQ295Ht0sY1mZTajBKuIqO 6mcjCCPGQTfWirA4Hputo++JmwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFE7aZk0V x5b5qj6dGRC/8Nfb1waVMB8GA1UdIwQYMBaAFPpBeWJ/WyZZTlYwNToLd4Xg1pLF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMTYyMS85OUQ2OERDRTFE NjkxMUUyQTQ2NDBEQTcwOEIwMkNEMi8ta0Y1WW45YkpsbE9WakExT2d0M2hlRFdr c1UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy1rRjVZbjliSmxsT1ZqQTFPZ3QzaGVEV2tzVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MTYyMS85OUQ2OERDRTFENjkxMUUyQTQ2NDBEQTcwOEIwMkNEMi8ta0Y1WW45Ykps bE9WakExT2d0M2hlRFdrc1UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA1OgHDH1enHlohKmi9UZ3BHZzZ2V3rHNCf/auav40dEhuzFK4rxwtX VtIYg8FfndcVV11eGFxvpbcgzndZFuhIEX0N+Bqn24OK80+dGNo4we2Z4yJIp+IB Cvjts4HF2eXodAj/fejmxrc7PiD+bMJxErT5MsIyWmkQkp1aDhAct0qZTaLfj4Jt LjkDYwDaScv2c6ATJozxnFwjkTZLYsB2nNkYFT8n/HhlaDtjHyvOyv2btwHpAUnG BqbuQLI4K2o8BPxsDJI+hIDazklSMSKSuBf+PYEDkhqbFHkEGiE6vYo759gd/Mz8 ftI7boa0cJJxYSoA32y/7/WahhqpA9rE -----END CERTIFICATE-----Generated at Wed May 14 20:58:28 2025 by rpki-client