$ rpki-client -vvf rpki.apnic.net/member_repository/A91C2B93/3AC874EE014311EF825A6465C4F9AE02/2dZffzYJDEAbzyDUvIDEPw3Fkz0.mft File: 2dZffzYJDEAbzyDUvIDEPw3Fkz0.mft (raw, json) Hash identifier: WpABYjP6fQhIjzQRV3J9VSCY92uLS6wDNXoXTvUkLOw= Subject key identifier: 55:E2:36:EC:61:28:10:C8:C0:CF:7B:65:37:61:BC:E0:ED:ED:90:EF Authority key identifier: D9:D6:5F:7F:36:09:0C:40:1B:CF:20:D4:BC:80:C4:3F:0D:C5:93:3D Certificate issuer: /CN=A91C2B93/serialNumber=D9D65F7F36090C401BCF20D4BC80C43F0DC5933D Certificate serial: C9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2dZffzYJDEAbzyDUvIDEPw3Fkz0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C2B93/3AC874EE014311EF825A6465C4F9AE02/2dZffzYJDEAbzyDUvIDEPw3Fkz0.mft Manifest number: C3 Signing time: Sat 03 May 2025 05:10:46 +0000 Manifest this update: Sat 03 May 2025 05:10:45 +0000 Manifest next update: Sat 10 May 2025 05:10:45 +0000 Files and hashes: 1: 2dZffzYJDEAbzyDUvIDEPw3Fkz0.crl (hash: 3rksE/QdPFPeclQ2P31JBx3R/AXY12EHtJLP5JCT2vc=) 2: B00A68E6014A11EFA8F03B5BC4F9AE02.roa (hash: F6IB2oLxhpfXXQwj/Kl3IJNncyOBKEOTP7G3C5XwQrk=) 3: E2037F8C019911EFAFFEEC5DC4F9AE02.roa (hash: yyKQJp3Cor943Y25Ya+6ME8Xl4xDZuaYL1jQZ9UiIZI=) 4: B0BE3042014A11EFA8F03B5BC4F9AE02.roa (hash: kGlkPBXGhK2HbK8wICTx12rG9bb9NpN/Iy7FI3DGEGY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C2B93/3AC874EE014311EF825A6465C4F9AE02/2dZffzYJDEAbzyDUvIDEPw3Fkz0.crl rsync://rpki.apnic.net/member_repository/A91C2B93/3AC874EE014311EF825A6465C4F9AE02/2dZffzYJDEAbzyDUvIDEPw3Fkz0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2dZffzYJDEAbzyDUvIDEPw3Fkz0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 10 May 2025 05:10:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 201 (0xc9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C2B93, serialNumber=D9D65F7F36090C401BCF20D4BC80C43F0DC5933D Validity Not Before: May 3 05:10:45 2025 GMT Not After : May 10 05:10:45 2025 GMT Subject: CN=6815a556-9b85 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:12:3c:65:43:a2:4f:1f:b5:72:30:a2:d3:a8: 17:80:46:d8:38:f2:54:49:f4:1e:59:2d:f3:bb:0a: 2e:a2:3b:6d:3c:45:94:14:55:62:75:f6:f5:ea:be: 19:a0:8f:e2:18:f1:6b:8c:af:e0:f2:3c:4a:0c:20: 51:4c:5e:62:46:18:2d:19:80:31:3d:73:4e:06:14: c3:aa:30:51:eb:a1:ab:14:44:54:cf:cd:a4:00:e4: be:27:88:e4:5f:11:92:ca:dc:de:7a:49:af:54:9b: 67:b9:c5:b0:db:ab:4b:84:4b:57:84:98:b3:4d:2e: eb:90:27:99:a5:ba:ad:61:60:35:45:b4:f2:b5:46: 2d:54:fa:04:31:32:0f:c8:9b:54:e8:96:de:67:26: 45:8f:48:ad:f5:55:e4:6b:98:ff:c3:a4:26:0b:4b: 23:04:18:be:e0:5f:5a:86:78:f8:b6:f6:cd:97:ac: 19:ae:28:1d:d6:39:ed:a5:ee:42:d5:4f:d1:d2:00: 2b:00:4d:6a:e8:52:eb:d4:cc:a2:3d:ea:27:04:72: 06:e8:93:8a:ed:e8:af:89:a5:76:76:86:a9:9e:3e: 58:cd:00:4c:40:a9:d1:02:65:02:c2:a5:d3:18:50: ab:6c:8d:f0:9d:86:4a:9f:85:01:4e:29:24:b1:8f: c5:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 55:E2:36:EC:61:28:10:C8:C0:CF:7B:65:37:61:BC:E0:ED:ED:90:EF X509v3 Authority Key Identifier: keyid:D9:D6:5F:7F:36:09:0C:40:1B:CF:20:D4:BC:80:C4:3F:0D:C5:93:3D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C2B93/3AC874EE014311EF825A6465C4F9AE02/2dZffzYJDEAbzyDUvIDEPw3Fkz0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2dZffzYJDEAbzyDUvIDEPw3Fkz0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C2B93/3AC874EE014311EF825A6465C4F9AE02/2dZffzYJDEAbzyDUvIDEPw3Fkz0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 25:48:ed:eb:98:99:c3:fe:49:4a:ae:b5:a3:7b:54:35:ca:06: 21:e0:8d:48:a5:0a:0c:50:17:dc:7c:ca:b8:c1:6d:c8:87:8a: e5:59:93:43:b0:2f:44:f2:59:df:86:78:53:30:a6:2d:a9:60: c6:e4:8b:ba:7a:83:b8:da:7b:cf:19:ef:9d:c4:98:4b:61:6c: 50:d1:55:4e:67:d8:5d:b6:fd:31:16:c6:a0:47:28:fe:3d:6b: d5:ce:64:10:f0:47:d2:ac:21:cb:bf:f3:5c:de:86:c8:3a:86: 62:0a:28:f9:d7:6d:58:f4:60:fc:bf:2f:0c:6d:39:0e:9a:10: 36:d3:87:0f:71:bb:63:6b:cd:2d:a2:27:79:59:50:60:f9:fc: 79:8b:0b:48:0d:64:fd:d0:22:89:85:54:eb:5e:49:9c:60:ab: 35:e1:da:f4:3a:80:36:25:3c:82:de:51:c9:fc:59:bb:e5:b7: 64:e6:fc:63:88:cf:ca:26:83:9c:90:5c:99:71:ea:14:76:5a: cb:d9:d8:1e:db:77:49:fb:de:b0:ad:3d:67:f4:87:83:65:b1: bb:0a:d1:1b:ff:a7:1e:0e:a0:5d:d8:4e:50:74:91:50:e9:07: cc:39:ae:5c:91:1b:fe:19:bf:32:7f:33:24:3e:82:54:46:a4: f6:89:7f:c8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAMkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzJCOTMxMTAvBgNVBAUTKEQ5RDY1RjdGMzYwOTBDNDAxQkNGMjBENEJDODBDNDNG MERDNTkzM0QwHhcNMjUwNTAzMDUxMDQ1WhcNMjUwNTEwMDUxMDQ1WjAYMRYwFAYD VQQDEw02ODE1YTU1Ni05Yjg1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArhI8ZUOiTx+1cjCi06gXgEbYOPJUSfQeWS3zuwouojttPEWUFFVidfb16r4Z oI/iGPFrjK/g8jxKDCBRTF5iRhgtGYAxPXNOBhTDqjBR66GrFERUz82kAOS+J4jk XxGSytzeekmvVJtnucWw26tLhEtXhJizTS7rkCeZpbqtYWA1RbTytUYtVPoEMTIP yJtU6JbeZyZFj0it9VXka5j/w6QmC0sjBBi+4F9ahnj4tvbNl6wZrigd1jntpe5C 1U/R0gArAE1q6FLr1MyiPeonBHIG6JOK7eiviaV2doapnj5YzQBMQKnRAmUCwqXT GFCrbI3wnYZKn4UBTikksY/FGQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFXiNuxh KBDIwM97ZTdhvODt7ZDvMB8GA1UdIwQYMBaAFNnWX382CQxAG88g1LyAxD8NxZM9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMkI5My8zQUM4NzRFRTAx NDMxMUVGODI1QTY0NjVDNEY5QUUwMi8yZFpmZnpZSkRFQWJ6eURVdklERVB3M0Zr ejAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJkWmZmellKREVBYnp5RFV2SURFUHczRmt6MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MkI5My8zQUM4NzRFRTAxNDMxMUVGODI1QTY0NjVDNEY5QUUwMi8yZFpmZnpZSkRF QWJ6eURVdklERVB3M0ZrejAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAlSO3rmJnD/klKrrWje1Q1ygYh4I1IpQoMUBfcfMq4wW3Ih4rlWZND sC9E8lnfhnhTMKYtqWDG5Iu6eoO42nvPGe+dxJhLYWxQ0VVOZ9hdtv0xFsagRyj+ PWvVzmQQ8EfSrCHLv/Nc3obIOoZiCij5121Y9GD8vy8MbTkOmhA204cPcbtja80t oid5WVBg+fx5iwtIDWT90CKJhVTrXkmcYKs14dr0OoA2JTyC3lHJ/Fm75bdk5vxj iM/KJoOckFyZceoUdlrL2dge23dJ+96wrT1n9IeDZbG7CtEb/6ceDqBd2E5QdJFQ 6QfMOa5ckRv+Gb8yfzMkPoJURqT2iX/I -----END CERTIFICATE-----Generated at Mon May 5 04:31:51 2025 by rpki-client