$ rpki-client -vvf rpki.apnic.net/member_repository/A91C8F27/7F5229A8B09211EAB5DBEC58C4F9AE02/0aNs2O0jVQgnYaPbE-3TDf2iz9A.mft File: 0aNs2O0jVQgnYaPbE-3TDf2iz9A.mft (raw, json) Hash identifier: +6Wklyg5K+4EcX6LL6Sq3MSObFdhw+ZqRKBNuFEAaus= Subject key identifier: 63:5C:0C:0D:3F:56:92:C6:58:24:1A:17:6B:B1:C1:FA:00:F8:31:BE Authority key identifier: D1:A3:6C:D8:ED:23:55:08:27:61:A3:DB:13:ED:D3:0D:FD:A2:CF:D0 Certificate issuer: /CN=A91C8F27/serialNumber=D1A36CD8ED2355082761A3DB13EDD30DFDA2CFD0 Certificate serial: 094A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0aNs2O0jVQgnYaPbE-3TDf2iz9A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C8F27/7F5229A8B09211EAB5DBEC58C4F9AE02/0aNs2O0jVQgnYaPbE-3TDf2iz9A.mft Manifest number: 0906 Signing time: Sat 10 May 2025 20:10:39 +0000 Manifest this update: Sat 10 May 2025 20:10:38 +0000 Manifest next update: Sat 17 May 2025 20:10:38 +0000 Files and hashes: 1: 0aNs2O0jVQgnYaPbE-3TDf2iz9A.crl (hash: QjfVFtpMbUlP+KWh+HO5X0wDQvW9G9QHagmMVX5t+JU=) 2: BDB203466B5D11EF84E04577C4F9AE02.roa (hash: BOBDyoF9n7xbx3TtkofAs1yOLOgU9o92r9+fjg3ExtE=) 3: 2857F2E4111A11EF86332415C4F9AE02.roa (hash: yNiSqyUgGq7X2OqvzLvfoSJUstp1wz+ZN5+bLrhI6IQ=) 4: E3A0B86070F611EFA4CF2731C4F9AE02.roa (hash: pAv+dRx1aGgFIyHddbIxGijvD4aztLGF4oGsAvvyRak=) 5: 51B031C80E8D11EE89A0B128C4F9AE02.roa (hash: 4OgZKWzHSPDUQ7eYlV4agiNuq4N/lgNw19COSO6Bfk8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C8F27/7F5229A8B09211EAB5DBEC58C4F9AE02/0aNs2O0jVQgnYaPbE-3TDf2iz9A.crl rsync://rpki.apnic.net/member_repository/A91C8F27/7F5229A8B09211EAB5DBEC58C4F9AE02/0aNs2O0jVQgnYaPbE-3TDf2iz9A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0aNs2O0jVQgnYaPbE-3TDf2iz9A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 17 May 2025 18:24:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2378 (0x94a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C8F27, serialNumber=D1A36CD8ED2355082761A3DB13EDD30DFDA2CFD0 Validity Not Before: May 10 20:10:38 2025 GMT Not After : May 17 20:10:38 2025 GMT Subject: CN=681fb2be-cd3a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:44:ed:85:56:b3:74:e5:e1:39:98:87:93:15: f1:22:94:91:84:b8:5d:7e:01:3a:1a:23:f5:2b:3f: 6c:83:ce:d5:fd:bc:22:ae:ab:52:dd:18:c9:2a:3b: b3:84:a6:5b:dd:8d:de:1c:a8:b6:4a:6a:9a:2a:06: 61:33:b5:85:0f:55:0c:cc:b1:84:1d:6e:ed:4c:07: 52:b8:bb:54:12:d1:27:70:fb:d3:53:cd:4b:e1:68: 15:61:2c:83:93:5a:2c:2d:af:82:b3:8b:e2:6d:7b: de:12:fb:f3:09:5a:6d:71:b3:e7:49:fc:16:e9:07: 99:57:53:d3:af:16:73:a0:81:27:1f:21:09:7c:09: 60:6b:4e:b7:a1:1c:7b:c3:e7:ba:63:fd:36:a6:5d: 8c:dc:ff:df:5e:35:ef:98:09:f1:6b:12:9b:97:d1: 42:29:bc:d4:9d:69:61:d4:76:ba:f2:36:3d:51:98: 27:2f:4d:6a:72:69:44:67:74:87:b2:88:90:4c:0e: 6b:1a:59:5b:a1:50:13:27:a2:6e:da:52:9b:e3:e6: b4:b9:f5:4c:95:99:6f:12:57:e8:80:0a:25:2d:57: 44:9b:a5:c1:ca:6d:03:4b:ec:3b:e0:f5:b0:3e:eb: 04:77:b0:9b:bc:4f:83:90:36:30:d4:e1:31:cd:a0: 46:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 63:5C:0C:0D:3F:56:92:C6:58:24:1A:17:6B:B1:C1:FA:00:F8:31:BE X509v3 Authority Key Identifier: keyid:D1:A3:6C:D8:ED:23:55:08:27:61:A3:DB:13:ED:D3:0D:FD:A2:CF:D0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C8F27/7F5229A8B09211EAB5DBEC58C4F9AE02/0aNs2O0jVQgnYaPbE-3TDf2iz9A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0aNs2O0jVQgnYaPbE-3TDf2iz9A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C8F27/7F5229A8B09211EAB5DBEC58C4F9AE02/0aNs2O0jVQgnYaPbE-3TDf2iz9A.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 72:c6:60:e6:03:f8:4a:80:da:cc:93:5e:0e:03:47:7e:c2:e7: 44:e5:31:37:a1:40:7c:86:8a:98:a3:3b:e4:9a:13:85:f1:97: db:2d:fd:40:ca:19:1c:47:66:ea:a9:57:4b:c8:99:c4:98:d4: 8c:7d:28:00:18:31:1c:ce:b9:85:cf:84:35:be:bc:3b:44:13: 64:d2:9e:46:95:d4:17:c9:93:4c:ee:d1:1b:21:b2:cf:bd:10: be:6f:7d:e9:a3:2c:54:8f:41:93:16:3c:d1:64:7d:ae:1d:b3: 16:80:ab:96:dd:b0:75:4a:5d:4c:f0:83:0e:80:0c:1e:be:03: c0:81:c7:0f:1b:38:d8:42:91:26:7c:e0:8f:32:eb:b0:46:28: e1:8c:ac:ea:82:40:b1:b0:fe:b4:d8:e2:1a:97:71:6d:87:f8: c4:ea:be:b4:b4:bd:16:64:2b:f6:27:cb:32:0e:d0:4e:60:e5: 6d:46:c4:02:97:f2:7b:8a:c9:d2:0c:66:a3:0a:a4:bf:ae:79: 20:ea:92:a1:cc:93:99:5b:d5:63:eb:34:85:73:98:6c:e2:59: b3:12:49:13:55:34:d4:77:d2:2e:fa:4f:21:e6:c0:57:d6:bc: ce:35:63:2f:98:e8:d8:f0:7d:93:70:55:2f:73:68:39:88:13: 44:0c:19:bb -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCUowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzhGMjcxMTAvBgNVBAUTKEQxQTM2Q0Q4RUQyMzU1MDgyNzYxQTNEQjEzRUREMzBE RkRBMkNGRDAwHhcNMjUwNTEwMjAxMDM4WhcNMjUwNTE3MjAxMDM4WjAYMRYwFAYD VQQDEw02ODFmYjJiZS1jZDNhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7ETthVazdOXhOZiHkxXxIpSRhLhdfgE6GiP1Kz9sg87V/bwirqtS3RjJKjuz hKZb3Y3eHKi2SmqaKgZhM7WFD1UMzLGEHW7tTAdSuLtUEtEncPvTU81L4WgVYSyD k1osLa+Cs4vibXveEvvzCVptcbPnSfwW6QeZV1PTrxZzoIEnHyEJfAlga063oRx7 w+e6Y/02pl2M3P/fXjXvmAnxaxKbl9FCKbzUnWlh1Ha68jY9UZgnL01qcmlEZ3SH soiQTA5rGllboVATJ6Ju2lKb4+a0ufVMlZlvElfogAolLVdEm6XBym0DS+w74PWw PusEd7CbvE+DkDYw1OExzaBGQwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGNcDA0/ VpLGWCQaF2uxwfoA+DG+MB8GA1UdIwQYMBaAFNGjbNjtI1UIJ2Gj2xPt0w39os/Q MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDOEYyNy83RjUyMjlBOEIw OTIxMUVBQjVEQkVDNThDNEY5QUUwMi8wYU5zMk8walZRZ25ZYVBiRS0zVERmMml6 OUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzBhTnMyTzBqVlFnbllhUGJFLTNURGYyaXo5QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD OEYyNy83RjUyMjlBOEIwOTIxMUVBQjVEQkVDNThDNEY5QUUwMi8wYU5zMk8walZR Z25ZYVBiRS0zVERmMml6OUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQByxmDmA/hKgNrMk14OA0d+wudE5TE3oUB8hoqYozvkmhOF8ZfbLf1A yhkcR2bqqVdLyJnEmNSMfSgAGDEczrmFz4Q1vrw7RBNk0p5GldQXyZNM7tEbIbLP vRC+b33poyxUj0GTFjzRZH2uHbMWgKuW3bB1Sl1M8IMOgAwevgPAgccPGzjYQpEm fOCPMuuwRijhjKzqgkCxsP602OIal3Fth/jE6r60tL0WZCv2J8syDtBOYOVtRsQC l/J7isnSDGajCqS/rnkg6pKhzJOZW9Vj6zSFc5hs4lmzEkkTVTTUd9Iu+k8h5sBX 1rzONWMvmOjY8H2TcFUvc2g5iBNEDBm7 -----END CERTIFICATE-----Generated at Sun May 11 04:26:52 2025 by rpki-client