$ rpki-client -vvf rpki.apnic.net/member_repository/A91C21C7/54222FD08FAB11E39362EF355911EA32/0rwrzA84njpcUzzEc6fENrsbdNk.mft File: 0rwrzA84njpcUzzEc6fENrsbdNk.mft (raw, json) Hash identifier: /a2TZeknpW/tSTx7nNoA9ovEkA3HRHhHmAZjpOWmQbE= Subject key identifier: 08:8A:17:D2:1E:1B:40:14:BE:DA:1C:68:21:D9:2A:06:EA:D7:F2:53 Authority key identifier: D2:BC:2B:CC:0F:38:9E:3A:5C:53:3C:C4:73:A7:C4:36:BB:1B:74:D9 Certificate issuer: /CN=A91C21C7/serialNumber=D2BC2BCC0F389E3A5C533CC473A7C436BB1B74D9 Certificate serial: 2D60 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0rwrzA84njpcUzzEc6fENrsbdNk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C21C7/54222FD08FAB11E39362EF355911EA32/0rwrzA84njpcUzzEc6fENrsbdNk.mft Manifest number: 2D3C Signing time: Wed 14 May 2025 15:34:12 +0000 Manifest this update: Wed 14 May 2025 15:34:11 +0000 Manifest next update: Wed 21 May 2025 15:34:11 +0000 Files and hashes: 1: 0rwrzA84njpcUzzEc6fENrsbdNk.crl (hash: rfOGNG4ezpBxcyo1EEl9r9u2ncjXRf2SM9dggzfqbIw=) 2: E2AD90E813E811E9B287C144C4F9AE02.roa (hash: bLM4hecBjp4+kZrFBYpUYh3+T8MNWN7sNl7r7CCqW6U=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C21C7/54222FD08FAB11E39362EF355911EA32/0rwrzA84njpcUzzEc6fENrsbdNk.crl rsync://rpki.apnic.net/member_repository/A91C21C7/54222FD08FAB11E39362EF355911EA32/0rwrzA84njpcUzzEc6fENrsbdNk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0rwrzA84njpcUzzEc6fENrsbdNk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 21 May 2025 15:34:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11616 (0x2d60) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C21C7, serialNumber=D2BC2BCC0F389E3A5C533CC473A7C436BB1B74D9 Validity Not Before: May 14 15:34:11 2025 GMT Not After : May 21 15:34:11 2025 GMT Subject: CN=6824b7f4-ea02 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:d3:4b:15:c0:b2:1c:4f:64:32:df:05:7a:f8: 77:1a:f8:a4:9c:2f:b9:1e:51:4d:71:f1:ef:24:ce: 98:5a:2a:06:ea:3f:b7:3f:c3:c2:1e:44:66:cc:99: 14:cf:eb:86:3b:db:2b:58:fd:2e:aa:ae:bc:2a:3f: 52:33:07:4d:21:89:cd:07:55:07:fd:e7:68:e3:ec: d9:49:5b:b5:56:88:7c:63:99:04:27:3c:3e:a3:f3: 41:7c:10:6b:92:63:88:bd:3f:11:0b:f6:28:2e:69: 39:42:eb:c0:b6:0a:66:82:fe:e7:4b:03:34:89:56: 9a:7a:8c:5b:20:33:dc:2b:11:df:d9:d0:21:9b:43: c2:60:82:d4:f1:95:65:e1:96:c5:74:96:23:7f:c0: 3d:5d:9d:97:d1:1d:d7:4a:97:5e:6c:fa:fa:d2:47: bd:8e:68:aa:f3:1b:db:ed:56:62:96:d5:b4:08:5e: 7f:6f:90:f1:91:84:11:db:ea:6f:c0:95:d9:ea:51: 28:cc:ef:4d:3b:b9:1d:21:91:ad:fb:c8:60:4f:d5: e6:8f:81:3a:b9:3c:a8:9f:ea:4d:00:a1:b7:ae:ef: 19:a6:92:90:09:d9:e2:af:53:44:f1:0e:94:f7:8a: a8:85:ec:7a:33:22:2b:98:87:48:c1:a2:09:80:60: 0c:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 08:8A:17:D2:1E:1B:40:14:BE:DA:1C:68:21:D9:2A:06:EA:D7:F2:53 X509v3 Authority Key Identifier: keyid:D2:BC:2B:CC:0F:38:9E:3A:5C:53:3C:C4:73:A7:C4:36:BB:1B:74:D9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C21C7/54222FD08FAB11E39362EF355911EA32/0rwrzA84njpcUzzEc6fENrsbdNk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0rwrzA84njpcUzzEc6fENrsbdNk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C21C7/54222FD08FAB11E39362EF355911EA32/0rwrzA84njpcUzzEc6fENrsbdNk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 44:d7:50:22:fd:f6:b1:4d:89:a8:9a:0d:e3:02:19:9a:01:bf: d3:0c:4d:2a:f0:47:00:54:7c:79:3a:97:52:ab:49:2e:3f:43: 74:43:17:45:f1:59:db:3f:84:ec:20:a4:41:61:2e:21:7a:2b: 3d:85:a3:f2:41:40:24:75:f8:83:14:b5:cc:5e:30:72:fb:a6: 8d:59:e4:a5:ea:62:d6:f2:27:ac:73:0f:f6:2e:ac:b5:f6:d9: cd:80:bf:2e:3b:98:db:13:08:b9:98:4e:9b:91:31:fd:dc:fe: 44:9f:46:80:30:4d:87:e2:cc:02:6f:6d:a5:9d:af:cc:c9:cb: 5e:30:5c:27:56:2e:4f:80:ef:6d:19:47:dc:20:0e:0c:92:49: e0:3a:99:2d:15:95:5a:31:b7:a1:c2:f9:b8:41:78:c4:43:ea: a2:52:3a:3b:3d:35:24:81:67:f6:f5:30:08:fe:78:e7:26:72: ef:b2:b7:5c:0d:db:28:81:c9:87:ac:80:e9:b4:43:5c:23:00: e4:49:4d:5a:b6:23:52:43:e0:05:7f:42:5d:29:ec:00:55:84: 56:53:5b:68:20:47:63:ac:68:56:44:5b:c8:22:2d:a9:f3:2c: 3e:32:b1:eb:86:2f:ab:ca:9e:23:7b:92:f3:fb:3c:e9:c9:b7: e0:38:c9:12 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICLWAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzIxQzcxMTAvBgNVBAUTKEQyQkMyQkNDMEYzODlFM0E1QzUzM0NDNDczQTdDNDM2 QkIxQjc0RDkwHhcNMjUwNTE0MTUzNDExWhcNMjUwNTIxMTUzNDExWjAYMRYwFAYD VQQDEw02ODI0YjdmNC1lYTAyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAstNLFcCyHE9kMt8Fevh3GviknC+5HlFNcfHvJM6YWioG6j+3P8PCHkRmzJkU z+uGO9srWP0uqq68Kj9SMwdNIYnNB1UH/edo4+zZSVu1Voh8Y5kEJzw+o/NBfBBr kmOIvT8RC/YoLmk5QuvAtgpmgv7nSwM0iVaaeoxbIDPcKxHf2dAhm0PCYILU8ZVl 4ZbFdJYjf8A9XZ2X0R3XSpdebPr60ke9jmiq8xvb7VZiltW0CF5/b5DxkYQR2+pv wJXZ6lEozO9NO7kdIZGt+8hgT9Xmj4E6uTyon+pNAKG3ru8ZppKQCdnir1NE8Q6U 94qohex6MyIrmIdIwaIJgGAMOwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAiKF9Ie G0AUvtocaCHZKgbq1/JTMB8GA1UdIwQYMBaAFNK8K8wPOJ46XFM8xHOnxDa7G3TZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMjFDNy81NDIyMkZEMDhG QUIxMUUzOTM2MkVGMzU1OTExRUEzMi8wcndyekE4NG5qcGNVenpFYzZmRU5yc2Jk TmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzByd3J6QTg0bmpwY1V6ekVjNmZFTnJzYmROay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MjFDNy81NDIyMkZEMDhGQUIxMUUzOTM2MkVGMzU1OTExRUEzMi8wcndyekE4NG5q cGNVenpFYzZmRU5yc2JkTmsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBE11Ai/faxTYmomg3jAhmaAb/TDE0q8EcAVHx5OpdSq0kuP0N0QxdF 8VnbP4TsIKRBYS4heis9haPyQUAkdfiDFLXMXjBy+6aNWeSl6mLW8iescw/2Lqy1 9tnNgL8uO5jbEwi5mE6bkTH93P5En0aAME2H4swCb22lna/MycteMFwnVi5PgO9t GUfcIA4MkkngOpktFZVaMbehwvm4QXjEQ+qiUjo7PTUkgWf29TAI/njnJnLvsrdc DdsogcmHrIDptENcIwDkSU1atiNSQ+AFf0JdKewAVYRWU1toIEdjrGhWRFvIIi2p 8yw+MrHrhi+ryp4je5Lz+zzpybfgOMkS -----END CERTIFICATE-----Generated at Thu May 15 12:16:26 2025 by rpki-client