$ rpki-client -vvf rpki.apnic.net/member_repository/A91C8BEE/6E0627F83F0311EBBE75B44BC4F9AE02/aWnCC4aZpI0HLUowZ8_wDV9EfJg.mft File: aWnCC4aZpI0HLUowZ8_wDV9EfJg.mft (raw, json) Hash identifier: Hgt860Wpz0ko+xW/mWsMVIs3FoZMDCTOxtXyBjWp9FU= Subject key identifier: 52:53:A9:30:53:C4:04:BE:82:F2:83:2B:AF:FF:06:35:9B:35:72:99 Authority key identifier: 69:69:C2:0B:86:99:A4:8D:07:2D:4A:30:67:CF:F0:0D:5F:44:7C:98 Certificate issuer: /CN=A91C8BEE/serialNumber=6969C20B8699A48D072D4A3067CFF00D5F447C98 Certificate serial: 0708 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aWnCC4aZpI0HLUowZ8_wDV9EfJg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C8BEE/6E0627F83F0311EBBE75B44BC4F9AE02/aWnCC4aZpI0HLUowZ8_wDV9EfJg.mft Manifest number: 0703 Signing time: Mon 12 May 2025 21:42:29 +0000 Manifest this update: Mon 12 May 2025 21:42:28 +0000 Manifest next update: Mon 19 May 2025 21:42:28 +0000 Files and hashes: 1: aWnCC4aZpI0HLUowZ8_wDV9EfJg.crl (hash: fbfOsLPvwOhx2CPnzIwSSaL1QNEpnkLB6KmFzL+r+k4=) 2: DE524D283F0511EBBB4C174FC4F9AE02.roa (hash: zWRikEivlVPteMMOfXpGEHZKMPXoa2S3XawXpPi4Aig=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C8BEE/6E0627F83F0311EBBE75B44BC4F9AE02/aWnCC4aZpI0HLUowZ8_wDV9EfJg.crl rsync://rpki.apnic.net/member_repository/A91C8BEE/6E0627F83F0311EBBE75B44BC4F9AE02/aWnCC4aZpI0HLUowZ8_wDV9EfJg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aWnCC4aZpI0HLUowZ8_wDV9EfJg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 19 May 2025 21:42:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1800 (0x708) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C8BEE, serialNumber=6969C20B8699A48D072D4A3067CFF00D5F447C98 Validity Not Before: May 12 21:42:28 2025 GMT Not After : May 19 21:42:28 2025 GMT Subject: CN=68226b45-f715 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:e1:23:46:9f:0a:03:24:5e:03:27:16:6c:51: 94:8b:5e:49:2e:2d:8a:d7:99:87:68:96:57:23:c4: a8:21:a3:63:08:f7:1e:c3:98:d2:a0:18:77:e6:21: 7f:66:08:1b:ab:99:29:e5:2f:9b:8c:86:b1:16:c1: f9:7b:a9:07:fb:4d:5e:10:de:02:fb:e7:b5:66:cf: 91:64:20:3f:cb:d2:e2:c2:ae:83:6e:da:b3:7d:2e: 4a:a8:c0:43:43:58:f5:e0:ca:50:49:4c:c6:46:ac: eb:4e:2d:86:28:c0:1f:f0:39:4a:e3:03:98:e5:6e: ca:b9:2c:79:d7:3d:7f:77:3e:ea:29:48:96:f9:a3: 82:a6:8d:c3:57:ed:e7:ee:0e:cb:e3:0c:ba:45:a0: 7b:77:51:36:8c:61:63:84:0f:37:a2:07:7f:e3:bb: 04:0e:cc:d6:fb:9b:1b:f9:c4:d0:d4:53:18:68:d4: d3:06:96:b4:97:d5:43:8e:3d:85:ab:c4:d3:3c:40: a7:22:2d:1c:f7:64:57:e7:92:c5:6c:6a:71:61:a5: 81:45:32:74:88:c1:8d:b6:a7:04:59:8d:f2:f5:35: 1d:5f:59:76:25:01:3b:2b:21:5b:c1:f6:20:2a:1c: 49:47:04:a4:dc:3c:21:b9:68:17:2a:41:54:63:fd: 9b:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 52:53:A9:30:53:C4:04:BE:82:F2:83:2B:AF:FF:06:35:9B:35:72:99 X509v3 Authority Key Identifier: keyid:69:69:C2:0B:86:99:A4:8D:07:2D:4A:30:67:CF:F0:0D:5F:44:7C:98 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C8BEE/6E0627F83F0311EBBE75B44BC4F9AE02/aWnCC4aZpI0HLUowZ8_wDV9EfJg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aWnCC4aZpI0HLUowZ8_wDV9EfJg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C8BEE/6E0627F83F0311EBBE75B44BC4F9AE02/aWnCC4aZpI0HLUowZ8_wDV9EfJg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 35:c9:12:ca:1c:71:bc:65:80:6a:2a:53:1b:23:02:df:af:3b: c1:a7:45:7c:47:fd:05:4a:0a:d9:02:88:e7:f7:24:71:0b:a3: df:9e:79:73:38:3b:62:af:94:03:b7:a4:34:33:e9:40:27:fd: 7b:df:1c:81:0e:41:f7:15:ce:13:91:bc:f2:4e:39:77:e5:4c: 8c:15:be:21:92:b8:70:09:8c:bd:5b:df:15:0c:d7:29:f5:bc: de:d9:7b:6f:69:f0:7b:47:ff:fb:b4:3c:c0:fd:3b:26:a5:2d: cb:5a:30:8f:84:ab:0b:14:81:ad:94:9c:54:f0:f5:f8:c1:8a: 47:5a:dc:71:78:a2:91:bd:1b:c1:54:50:93:e9:2a:14:98:4c: 62:10:76:eb:12:c1:75:a6:39:3d:04:57:38:90:ef:58:4b:36: c3:bd:db:e5:be:e4:97:14:78:0a:be:61:28:bf:c1:4b:61:e1: cc:93:74:9d:98:9f:34:e8:8b:e6:a4:30:d8:18:06:e8:dc:a5: e7:25:9e:a4:eb:12:39:a7:c2:8b:80:12:49:16:bd:1a:de:99: 3d:93:2c:e5:5b:b0:fa:f1:c5:b0:ed:bc:ac:c6:0f:3f:a3:7a: 05:bd:e4:b9:01:b5:bc:fd:7d:4b:d0:89:bd:17:40:2a:d0:8f: cc:85:87:0b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBwgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzhCRUUxMTAvBgNVBAUTKDY5NjlDMjBCODY5OUE0OEQwNzJENEEzMDY3Q0ZGMDBE NUY0NDdDOTgwHhcNMjUwNTEyMjE0MjI4WhcNMjUwNTE5MjE0MjI4WjAYMRYwFAYD VQQDEw02ODIyNmI0NS1mNzE1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0uEjRp8KAyReAycWbFGUi15JLi2K15mHaJZXI8SoIaNjCPcew5jSoBh35iF/ Zggbq5kp5S+bjIaxFsH5e6kH+01eEN4C++e1Zs+RZCA/y9Liwq6DbtqzfS5KqMBD Q1j14MpQSUzGRqzrTi2GKMAf8DlK4wOY5W7KuSx51z1/dz7qKUiW+aOCpo3DV+3n 7g7L4wy6RaB7d1E2jGFjhA83ogd/47sEDszW+5sb+cTQ1FMYaNTTBpa0l9VDjj2F q8TTPECnIi0c92RX55LFbGpxYaWBRTJ0iMGNtqcEWY3y9TUdX1l2JQE7KyFbwfYg KhxJRwSk3DwhuWgXKkFUY/2b7QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFJTqTBT xAS+gvKDK6//BjWbNXKZMB8GA1UdIwQYMBaAFGlpwguGmaSNBy1KMGfP8A1fRHyY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDOEJFRS82RTA2MjdGODNG MDMxMUVCQkU3NUI0NEJDNEY5QUUwMi9hV25DQzRhWnBJMEhMVW93Wjhfd0RWOUVm SmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FXbkNDNGFacEkwSExVb3daOF93RFY5RWZKZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD OEJFRS82RTA2MjdGODNGMDMxMUVCQkU3NUI0NEJDNEY5QUUwMi9hV25DQzRhWnBJ MEhMVW93Wjhfd0RWOUVmSmcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA1yRLKHHG8ZYBqKlMbIwLfrzvBp0V8R/0FSgrZAojn9yRxC6Pfnnlz ODtir5QDt6Q0M+lAJ/173xyBDkH3Fc4TkbzyTjl35UyMFb4hkrhwCYy9W98VDNcp 9bze2XtvafB7R//7tDzA/TsmpS3LWjCPhKsLFIGtlJxU8PX4wYpHWtxxeKKRvRvB VFCT6SoUmExiEHbrEsF1pjk9BFc4kO9YSzbDvdvlvuSXFHgKvmEov8FLYeHMk3Sd mJ806IvmpDDYGAbo3KXnJZ6k6xI5p8KLgBJJFr0a3pk9kyzlW7D68cWw7bysxg8/ o3oFveS5AbW8/X1L0Im9F0Aq0I/MhYcL -----END CERTIFICATE-----Generated at Wed May 14 10:42:15 2025 by rpki-client