$ rpki-client -vvf rpki.apnic.net/member_repository/A91C6A35/A159F782D49211EFB564DE62C4F9AE02/-2uUY2HwxcguKwZ0DUuosLmTU_g.mft File: -2uUY2HwxcguKwZ0DUuosLmTU_g.mft (raw, json) Hash identifier: or5v/q+xpra40a+L8UEwPdQ5swGM7//S7pbxQvsI4T4= Subject key identifier: 0B:52:EB:99:74:21:4A:F7:73:A2:16:16:14:71:B8:CD:EB:B3:BC:69 Authority key identifier: FB:6B:94:63:61:F0:C5:C8:2E:2B:06:74:0D:4B:A8:B0:B9:93:53:F8 Certificate issuer: /CN=A91C6A35/serialNumber=FB6B946361F0C5C82E2B06740D4BA8B0B99353F8 Certificate serial: 3E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-2uUY2HwxcguKwZ0DUuosLmTU_g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C6A35/A159F782D49211EFB564DE62C4F9AE02/-2uUY2HwxcguKwZ0DUuosLmTU_g.mft Manifest number: 3D Signing time: Tue 13 May 2025 06:43:17 +0000 Manifest this update: Tue 13 May 2025 06:43:16 +0000 Manifest next update: Tue 20 May 2025 06:43:16 +0000 Files and hashes: 1: -2uUY2HwxcguKwZ0DUuosLmTU_g.crl (hash: NIFQDsBfv90Y2ALSIYKu6RN6CHnEdO19l4qLhogRoHM=) 2: 06D77958D49411EFA8DF5E69C4F9AE02.roa (hash: SIysPbQ0shw6SImSP7LGItvtceoka+GBhE2dzjDub+w=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C6A35/A159F782D49211EFB564DE62C4F9AE02/-2uUY2HwxcguKwZ0DUuosLmTU_g.crl rsync://rpki.apnic.net/member_repository/A91C6A35/A159F782D49211EFB564DE62C4F9AE02/-2uUY2HwxcguKwZ0DUuosLmTU_g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-2uUY2HwxcguKwZ0DUuosLmTU_g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 20 May 2025 06:43:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 62 (0x3e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C6A35, serialNumber=FB6B946361F0C5C82E2B06740D4BA8B0B99353F8 Validity Not Before: May 13 06:43:16 2025 GMT Not After : May 20 06:43:16 2025 GMT Subject: CN=6822ea04-aafb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:d2:f6:98:01:55:e7:d6:03:f1:20:d0:05:49: 97:b0:7a:39:51:6b:76:62:0d:15:97:3e:0d:75:a7: cb:6c:06:7f:53:00:b2:e0:8b:5d:d2:04:f8:95:11: d3:46:a9:b2:62:38:ca:c9:96:e5:7f:05:04:53:ff: 2c:c4:03:95:e9:6c:68:2e:b7:69:c5:5a:50:b5:8c: 24:9e:22:c2:b1:60:e9:3f:67:8b:23:de:53:9e:4e: bc:a6:90:b6:d1:7a:67:33:5c:bd:cb:0f:c0:8e:e2: 23:1f:48:b3:fd:8e:d7:b8:c5:c1:57:f7:4e:e2:e9: 0a:13:f8:bc:91:d8:d2:a3:61:f8:e1:28:2c:5a:0d: 0c:68:a5:57:31:20:9d:ff:c6:c7:47:c4:f4:5c:e0: 17:36:1a:c0:ca:79:8f:12:0f:88:90:67:14:6d:93: fa:30:4d:b9:c2:60:3f:24:ac:91:e5:f0:d3:2c:2f: 3c:7d:9b:57:cf:d5:2b:4e:17:4f:47:31:0e:b0:e2: 54:25:95:9c:40:4f:04:f7:14:46:b6:41:ba:88:2d: dd:58:7d:5e:22:d1:f4:09:aa:17:81:65:1d:3c:32: 1f:87:70:6a:af:45:ca:e9:39:5a:70:05:fa:5e:aa: 68:fc:0d:fe:4c:8a:11:cb:39:14:e5:8b:cc:36:02: 5b:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0B:52:EB:99:74:21:4A:F7:73:A2:16:16:14:71:B8:CD:EB:B3:BC:69 X509v3 Authority Key Identifier: keyid:FB:6B:94:63:61:F0:C5:C8:2E:2B:06:74:0D:4B:A8:B0:B9:93:53:F8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C6A35/A159F782D49211EFB564DE62C4F9AE02/-2uUY2HwxcguKwZ0DUuosLmTU_g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-2uUY2HwxcguKwZ0DUuosLmTU_g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C6A35/A159F782D49211EFB564DE62C4F9AE02/-2uUY2HwxcguKwZ0DUuosLmTU_g.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 81:76:3b:18:ed:b0:62:b8:25:e6:2f:c0:2a:e8:8c:7c:b1:be: d6:54:e6:7f:88:e0:32:1d:fa:f9:86:8d:6f:31:4f:95:e3:02: 63:d6:06:c6:ea:fe:64:47:70:cb:c0:d6:66:09:30:fb:6c:3b: 5d:2c:04:75:7a:cd:c4:ac:85:64:49:a1:dd:54:82:50:26:bc: a6:e8:1a:73:f6:ac:49:50:17:98:9d:86:3a:9f:a2:d9:b1:70: a0:02:ef:23:14:a6:b5:43:d7:b0:35:bd:9f:26:8e:2c:f5:70: 2c:d9:0a:8a:09:d4:f7:26:4d:8b:49:25:e3:9d:7c:dd:93:96: a2:ed:8c:0f:63:3e:1b:a4:d9:b6:24:64:db:f6:e3:aa:35:bc: aa:5d:96:99:ee:ca:a8:4f:79:f1:5b:e6:a6:06:f4:1b:d4:ac: 38:a1:28:88:0d:39:e1:61:99:ae:25:16:7d:bc:e0:5d:30:95: 01:28:f3:63:32:e6:0b:29:91:32:9d:0c:19:66:39:80:f8:37: f7:42:b5:e0:1c:18:23:0c:ad:9a:31:2c:c5:63:84:eb:5d:2b: 50:d7:d2:33:c2:1a:03:6d:5e:c3:a7:27:90:d3:a8:57:4d:e0: 06:40:73:0b:13:3e:b4:82:9d:d5:7e:f2:ce:7d:45:55:fe:50: b8:c5:d5:6b -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBPjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFD NkEzNTExMC8GA1UEBRMoRkI2Qjk0NjM2MUYwQzVDODJFMkIwNjc0MEQ0QkE4QjBC OTkzNTNGODAeFw0yNTA1MTMwNjQzMTZaFw0yNTA1MjAwNjQzMTZaMBgxFjAUBgNV BAMTDTY4MjJlYTA0LWFhZmIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCz0vaYAVXn1gPxINAFSZewejlRa3ZiDRWXPg11p8tsBn9TALLgi13SBPiVEdNG qbJiOMrJluV/BQRT/yzEA5XpbGgut2nFWlC1jCSeIsKxYOk/Z4sj3lOeTrymkLbR emczXL3LD8CO4iMfSLP9jte4xcFX907i6QoT+LyR2NKjYfjhKCxaDQxopVcxIJ3/ xsdHxPRc4Bc2GsDKeY8SD4iQZxRtk/owTbnCYD8krJHl8NMsLzx9m1fP1StOF09H MQ6w4lQllZxATwT3FEa2QbqILd1YfV4i0fQJqheBZR08Mh+HcGqvRcrpOVpwBfpe qmj8Df5MihHLORTli8w2Alt7AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUC1LrmXQh SvdzohYWFHG4zeuzvGkwHwYDVR0jBBgwFoAU+2uUY2HwxcguKwZ0DUuosLmTU/gw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUM2QTM1L0ExNTlGNzgyRDQ5 MjExRUZCNTY0REU2MkM0RjlBRTAyLy0ydVVZMkh3eGNndUt3WjBEVXVvc0xtVFVf Zy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvLTJ1VVkySHd4Y2d1S3daMERVdW9zTG1UVV9nLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUM2 QTM1L0ExNTlGNzgyRDQ5MjExRUZCNTY0REU2MkM0RjlBRTAyLy0ydVVZMkh3eGNn dUt3WjBEVXVvc0xtVFVfZy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAIF2OxjtsGK4JeYvwCrojHyxvtZU5n+I4DId+vmGjW8xT5XjAmPWBsbq /mRHcMvA1mYJMPtsO10sBHV6zcSshWRJod1UglAmvKboGnP2rElQF5idhjqfotmx cKAC7yMUprVD17A1vZ8mjiz1cCzZCooJ1PcmTYtJJeOdfN2TlqLtjA9jPhuk2bYk ZNv246o1vKpdlpnuyqhPefFb5qYG9BvUrDihKIgNOeFhma4lFn284F0wlQEo82My 5gspkTKdDBlmOYD4N/dCteAcGCMMrZoxLMVjhOtdK1DX0jPCGgNtXsOnJ5DTqFdN 4AZAcwsTPrSCndV+8s59RVX+ULjF1Ws= -----END CERTIFICATE-----Generated at Wed May 14 19:37:55 2025 by rpki-client