$ rpki-client -vvf rpki.apnic.net/member_repository/A91C4102/B78AA7F4654D11EA86E5017FC4F9AE02/0WtcAvVxqLjfvUc87xSokssNAOE.mft File: 0WtcAvVxqLjfvUc87xSokssNAOE.mft (raw, json) Hash identifier: UwgwVfdcVxM/nFR6075QdxN35uHsJ+dMXHY32D3ungE= Subject key identifier: A2:4E:46:5E:3D:4A:88:AF:EA:8D:78:8D:E3:68:09:A8:60:71:0D:8B Authority key identifier: D1:6B:5C:02:F5:71:A8:B8:DF:BD:47:3C:EF:14:A8:92:CB:0D:00:E1 Certificate issuer: /CN=A91C4102/serialNumber=D16B5C02F571A8B8DFBD473CEF14A892CB0D00E1 Certificate serial: 0793 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0WtcAvVxqLjfvUc87xSokssNAOE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C4102/B78AA7F4654D11EA86E5017FC4F9AE02/0WtcAvVxqLjfvUc87xSokssNAOE.mft Manifest number: 11D0 Signing time: Fri 16 May 2025 19:56:24 +0000 Manifest this update: Fri 16 May 2025 19:56:24 +0000 Manifest next update: Fri 23 May 2025 19:56:24 +0000 Files and hashes: 1: 0WtcAvVxqLjfvUc87xSokssNAOE.crl (hash: idVe9KpOcZ7hWRBrHWP2Q5ZaCnkEsnCt8la/XGh8GjI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C4102/B78AA7F4654D11EA86E5017FC4F9AE02/0WtcAvVxqLjfvUc87xSokssNAOE.crl rsync://rpki.apnic.net/member_repository/A91C4102/B78AA7F4654D11EA86E5017FC4F9AE02/0WtcAvVxqLjfvUc87xSokssNAOE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0WtcAvVxqLjfvUc87xSokssNAOE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 23 May 2025 19:56:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1939 (0x793) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C4102, serialNumber=D16B5C02F571A8B8DFBD473CEF14A892CB0D00E1 Validity Not Before: May 16 19:56:24 2025 GMT Not After : May 23 19:56:24 2025 GMT Subject: CN=68279868-c627 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:99:68:ec:49:3a:16:2d:a6:50:8c:0c:46:0d: 31:dc:f4:3e:d6:a2:5f:cc:ab:90:4b:28:1c:0c:57: cc:12:ea:44:0b:82:bc:d4:a6:2d:16:71:63:5f:ec: f8:8a:51:25:31:02:d1:e3:be:6f:52:c1:b4:8e:d2: 35:54:a7:72:c8:f3:c2:89:da:f4:33:02:04:4e:34: f1:a0:47:e8:fb:ca:0d:3f:04:4b:ed:73:b9:5f:51: 06:e9:fe:9a:c7:6f:6c:58:d9:ff:a5:29:f3:e8:c3: 7d:35:7a:ca:63:7a:6a:3e:84:94:28:35:b1:a6:e4: e3:3c:3f:80:0f:0d:27:b4:47:60:a1:9b:43:02:86: da:bc:1d:3d:ea:42:47:8b:4d:53:66:83:06:14:eb: f9:3e:9f:39:73:4b:f4:a6:af:0d:c7:7a:e6:74:77: ba:33:38:34:05:d4:34:84:1d:5e:91:0e:48:9b:ac: 6f:fc:99:05:9b:b6:ac:e4:5f:3c:58:ac:fd:fc:7d: 17:38:2a:85:c3:59:1d:37:93:69:da:dd:39:ca:ea: eb:fe:b0:19:88:a8:da:13:02:b2:06:9c:bc:77:00: cd:a3:45:3e:24:be:08:0e:ac:60:bd:60:6a:b1:01: 52:44:45:14:3c:b6:d9:19:1e:c0:f7:86:33:c2:c0: 32:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A2:4E:46:5E:3D:4A:88:AF:EA:8D:78:8D:E3:68:09:A8:60:71:0D:8B X509v3 Authority Key Identifier: keyid:D1:6B:5C:02:F5:71:A8:B8:DF:BD:47:3C:EF:14:A8:92:CB:0D:00:E1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C4102/B78AA7F4654D11EA86E5017FC4F9AE02/0WtcAvVxqLjfvUc87xSokssNAOE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0WtcAvVxqLjfvUc87xSokssNAOE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C4102/B78AA7F4654D11EA86E5017FC4F9AE02/0WtcAvVxqLjfvUc87xSokssNAOE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 73:1d:25:26:42:83:07:a4:1c:77:c9:ec:b8:03:20:63:42:77: 7a:17:0c:ce:31:82:63:4d:81:ca:9f:e7:df:bc:c7:d3:84:4e: da:bb:a9:18:65:f2:1e:6b:ee:88:c9:70:e8:e8:f5:e5:16:cd: 07:d3:6a:85:10:2e:a7:14:42:4c:b1:a1:85:07:01:12:28:c1: 36:77:10:ba:c0:73:62:ae:2c:27:23:8f:6c:9e:26:bd:ce:3f: 49:48:2f:80:bd:d4:c1:db:c8:c8:39:8a:82:b5:eb:15:e8:a5: 1f:30:47:a0:ae:fe:c0:9f:9a:01:5f:cf:ab:40:eb:10:90:41: 62:d7:6a:69:6a:c6:c2:b2:f8:83:07:17:70:c5:d5:ae:fa:f9: 4f:4f:25:6c:75:bb:68:46:15:9b:15:21:5b:07:dd:fa:ee:c9: fc:85:d5:8f:f2:ca:64:40:64:fb:94:e4:6e:f6:89:5a:1c:bb: af:f0:3b:5e:dd:a1:27:60:0c:c9:cc:24:9f:dd:f1:c4:4f:b6: 62:a4:16:ab:a2:7e:45:72:e3:65:e3:6a:26:38:27:55:04:bb: 3b:9b:c5:a3:f9:43:75:f5:67:2a:08:0b:63:02:ef:c0:e2:c3: 44:6e:13:9a:7d:af:67:3f:ae:04:a0:93:06:4c:56:bf:f2:20: 03:9c:62:de -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB5MwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzQxMDIxMTAvBgNVBAUTKEQxNkI1QzAyRjU3MUE4QjhERkJENDczQ0VGMTRBODky Q0IwRDAwRTEwHhcNMjUwNTE2MTk1NjI0WhcNMjUwNTIzMTk1NjI0WjAYMRYwFAYD VQQDEw02ODI3OTg2OC1jNjI3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxJlo7Ek6Fi2mUIwMRg0x3PQ+1qJfzKuQSygcDFfMEupEC4K81KYtFnFjX+z4 ilElMQLR475vUsG0jtI1VKdyyPPCidr0MwIETjTxoEfo+8oNPwRL7XO5X1EG6f6a x29sWNn/pSnz6MN9NXrKY3pqPoSUKDWxpuTjPD+ADw0ntEdgoZtDAobavB096kJH i01TZoMGFOv5Pp85c0v0pq8Nx3rmdHe6Mzg0BdQ0hB1ekQ5Im6xv/JkFm7as5F88 WKz9/H0XOCqFw1kdN5Np2t05yurr/rAZiKjaEwKyBpy8dwDNo0U+JL4IDqxgvWBq sQFSREUUPLbZGR7A94YzwsAyQwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKJORl49 Soiv6o14jeNoCahgcQ2LMB8GA1UdIwQYMBaAFNFrXAL1cai4371HPO8UqJLLDQDh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNDEwMi9CNzhBQTdGNDY1 NEQxMUVBODZFNTAxN0ZDNEY5QUUwMi8wV3RjQXZWeHFMamZ2VWM4N3hTb2tzc05B T0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzBXdGNBdlZ4cUxqZnZVYzg3eFNva3NzTkFPRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD NDEwMi9CNzhBQTdGNDY1NEQxMUVBODZFNTAxN0ZDNEY5QUUwMi8wV3RjQXZWeHFM amZ2VWM4N3hTb2tzc05BT0UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBzHSUmQoMHpBx3yey4AyBjQnd6FwzOMYJjTYHKn+ffvMfThE7au6kY ZfIea+6IyXDo6PXlFs0H02qFEC6nFEJMsaGFBwESKME2dxC6wHNiriwnI49snia9 zj9JSC+AvdTB28jIOYqCtesV6KUfMEegrv7An5oBX8+rQOsQkEFi12ppasbCsviD BxdwxdWu+vlPTyVsdbtoRhWbFSFbB9367sn8hdWP8spkQGT7lORu9olaHLuv8Dte 3aEnYAzJzCSf3fHET7ZipBaron5FcuNl42omOCdVBLs7m8Wj+UN19WcqCAtjAu/A 4sNEbhOafa9nP64EoJMGTFa/8iADnGLe -----END CERTIFICATE-----Generated at Sat May 17 06:00:28 2025 by rpki-client