$ rpki-client -vvf rpki.apnic.net/member_repository/A91CB8BA/320901C4BA8511EABA838E30C4F9AE02/ki1g6hk5Zxd7xsOaQGhZijt1ptM.mft File: ki1g6hk5Zxd7xsOaQGhZijt1ptM.mft (raw, json) Hash identifier: 8Whp3LLuXIZZmFP8RkQKUKXm1/83qtKE9NeN2DXBhyw= Subject key identifier: 98:6B:2F:75:7E:69:F6:79:19:ED:CD:1C:42:19:F7:11:F5:A1:EF:82 Authority key identifier: 92:2D:60:EA:19:39:67:17:7B:C6:C3:9A:40:68:59:8A:3B:75:A6:D3 Certificate issuer: /CN=A91CB8BA/serialNumber=922D60EA193967177BC6C39A4068598A3B75A6D3 Certificate serial: 08A6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ki1g6hk5Zxd7xsOaQGhZijt1ptM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CB8BA/320901C4BA8511EABA838E30C4F9AE02/ki1g6hk5Zxd7xsOaQGhZijt1ptM.mft Manifest number: 089E Signing time: Wed 14 May 2025 20:39:55 +0000 Manifest this update: Wed 14 May 2025 20:39:54 +0000 Manifest next update: Wed 21 May 2025 20:39:54 +0000 Files and hashes: 1: ki1g6hk5Zxd7xsOaQGhZijt1ptM.crl (hash: cfsoUHqW2rXdigUAbOchgrMJvjDmg0CBoJtvyr8AtAk=) 2: 0B6B9DE6BAAE11EA8F1DA435C4F9AE02.roa (hash: Pjk7KOVj7H3BoAMc7NRiJiAFk/4ChSG9JZtPBtMlKPY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CB8BA/320901C4BA8511EABA838E30C4F9AE02/ki1g6hk5Zxd7xsOaQGhZijt1ptM.crl rsync://rpki.apnic.net/member_repository/A91CB8BA/320901C4BA8511EABA838E30C4F9AE02/ki1g6hk5Zxd7xsOaQGhZijt1ptM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ki1g6hk5Zxd7xsOaQGhZijt1ptM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 21 May 2025 20:39:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2214 (0x8a6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CB8BA, serialNumber=922D60EA193967177BC6C39A4068598A3B75A6D3 Validity Not Before: May 14 20:39:54 2025 GMT Not After : May 21 20:39:54 2025 GMT Subject: CN=6824ff9a-e571 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:e2:6d:74:5d:91:63:80:ed:9f:eb:32:6c:d5: 5a:b2:c1:b8:12:f2:13:ec:61:24:87:14:f6:53:7d: e1:4c:0e:1e:bd:7f:43:af:28:4b:c9:9f:16:c2:2a: a1:96:a3:76:68:99:4a:c8:74:06:00:4d:99:28:c3: f1:02:3c:be:53:c4:ff:72:d5:29:43:c4:a7:b0:3f: 24:c3:b6:7d:ac:c7:77:e9:3f:79:c4:6d:a1:11:e8: 6f:14:da:d8:4e:8e:a2:69:b7:d6:40:cb:bf:9d:07: a1:6a:47:32:b3:89:5e:d4:48:c9:fa:de:11:f1:3a: b3:e7:c8:2d:b9:48:ec:79:5e:0b:a9:42:55:57:9f: 7c:46:87:3b:ef:6e:8c:f1:90:9a:a4:f7:c6:90:bf: a6:ad:3e:91:f6:90:36:42:db:d2:49:55:8d:df:34: ab:14:cc:15:ae:10:2d:27:20:c3:bb:2d:83:0a:b3: 2b:39:73:96:13:0d:71:84:3b:bb:1b:e6:2c:6b:eb: 63:27:7d:6f:73:f8:c6:e7:c7:c3:1a:9a:53:36:63: 43:91:e4:f2:90:be:ce:ce:3c:10:d6:ea:20:47:e7: ae:cf:00:ac:5d:0e:95:8f:1a:b5:c0:09:63:53:7d: ce:30:8f:28:35:e6:d5:5f:a4:db:52:d4:87:c5:63: 8f:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 98:6B:2F:75:7E:69:F6:79:19:ED:CD:1C:42:19:F7:11:F5:A1:EF:82 X509v3 Authority Key Identifier: keyid:92:2D:60:EA:19:39:67:17:7B:C6:C3:9A:40:68:59:8A:3B:75:A6:D3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CB8BA/320901C4BA8511EABA838E30C4F9AE02/ki1g6hk5Zxd7xsOaQGhZijt1ptM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ki1g6hk5Zxd7xsOaQGhZijt1ptM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CB8BA/320901C4BA8511EABA838E30C4F9AE02/ki1g6hk5Zxd7xsOaQGhZijt1ptM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9b:88:75:b6:39:e8:7a:8a:91:20:f4:aa:e4:8a:cb:85:7e:bd: e1:fd:8f:81:5d:7d:2a:0c:01:fb:b4:d5:ed:72:17:df:8a:d5: 59:ff:d4:a9:66:f7:0e:ce:4b:24:49:6d:68:b5:f7:e1:32:41: ef:8c:27:3a:63:9d:11:c7:bb:b0:2c:6a:88:db:53:ae:41:ab: 96:c4:dc:bb:f7:ed:32:5e:10:e0:f6:21:13:07:e7:b3:ef:ce: 16:23:e0:da:a2:ac:12:30:0e:8d:77:2a:b3:31:df:b0:f6:de: c8:8f:3c:4b:c1:f7:23:74:87:65:20:b4:0f:5c:56:91:32:cb: 03:42:55:3c:e4:b4:04:a8:ab:84:60:40:84:29:f2:e7:69:da: f5:fd:5f:76:08:b5:62:81:6e:16:58:ee:dd:b2:3b:e0:5e:01: 3c:c3:ce:ab:89:cd:7f:e6:20:ab:9c:31:d5:70:b0:7f:52:bf: fb:aa:e0:8d:3f:ac:df:d8:d8:6f:8b:c6:9a:97:3d:e7:54:c2: c7:38:69:65:c8:b1:14:09:8c:3a:1a:d5:8e:0b:5e:29:40:2c: 47:a9:78:d6:e2:29:69:81:59:54:57:2d:30:fd:14:70:f3:1e: f9:a9:da:b1:d8:cd:73:00:05:5d:40:c4:1d:da:ba:23:06:c7: 9b:61:73:29 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCKYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0I4QkExMTAvBgNVBAUTKDkyMkQ2MEVBMTkzOTY3MTc3QkM2QzM5QTQwNjg1OThB M0I3NUE2RDMwHhcNMjUwNTE0MjAzOTU0WhcNMjUwNTIxMjAzOTU0WjAYMRYwFAYD VQQDEw02ODI0ZmY5YS1lNTcxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAouJtdF2RY4Dtn+sybNVassG4EvIT7GEkhxT2U33hTA4evX9DryhLyZ8Wwiqh lqN2aJlKyHQGAE2ZKMPxAjy+U8T/ctUpQ8SnsD8kw7Z9rMd36T95xG2hEehvFNrY To6iabfWQMu/nQehakcys4le1EjJ+t4R8Tqz58gtuUjseV4LqUJVV598Roc7726M 8ZCapPfGkL+mrT6R9pA2QtvSSVWN3zSrFMwVrhAtJyDDuy2DCrMrOXOWEw1xhDu7 G+Ysa+tjJ31vc/jG58fDGppTNmNDkeTykL7OzjwQ1uogR+euzwCsXQ6Vjxq1wAlj U33OMI8oNebVX6TbUtSHxWOP2QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJhrL3V+ afZ5Ge3NHEIZ9xH1oe+CMB8GA1UdIwQYMBaAFJItYOoZOWcXe8bDmkBoWYo7dabT MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDQjhCQS8zMjA5MDFDNEJB ODUxMUVBQkE4MzhFMzBDNEY5QUUwMi9raTFnNmhrNVp4ZDd4c09hUUdoWmlqdDFw dE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tpMWc2aGs1WnhkN3hzT2FRR2haaWp0MXB0TS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD QjhCQS8zMjA5MDFDNEJBODUxMUVBQkE4MzhFMzBDNEY5QUUwMi9raTFnNmhrNVp4 ZDd4c09hUUdoWmlqdDFwdE0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCbiHW2Oeh6ipEg9KrkisuFfr3h/Y+BXX0qDAH7tNXtchffitVZ/9Sp ZvcOzkskSW1otffhMkHvjCc6Y50Rx7uwLGqI21OuQauWxNy79+0yXhDg9iETB+ez 784WI+DaoqwSMA6NdyqzMd+w9t7IjzxLwfcjdIdlILQPXFaRMssDQlU85LQEqKuE YECEKfLnadr1/V92CLVigW4WWO7dsjvgXgE8w86ric1/5iCrnDHVcLB/Ur/7quCN P6zf2Nhvi8aalz3nVMLHOGllyLEUCYw6GtWOC14pQCxHqXjW4ilpgVlUVy0w/RRw 8x75qdqx2M1zAAVdQMQd2rojBsebYXMp -----END CERTIFICATE-----Generated at Wed May 14 23:50:08 2025 by rpki-client