$ rpki-client -vvf rpki.apnic.net/member_repository/A91CBDC8/669763F018E011EAA0C38E7BC4F9AE02/m2fIchTtmWVAcRkL688LjZ-hr04.mft File: m2fIchTtmWVAcRkL688LjZ-hr04.mft (raw, json) Hash identifier: 5Q8rwnmVJNHSsSkQjz4YTrb4JMZpAKuQunpNEYQIWv0= Subject key identifier: 41:08:FB:A4:EA:18:B9:AE:BA:89:A7:55:3C:01:9A:81:0F:50:63:44 Authority key identifier: 9B:67:C8:72:14:ED:99:65:40:71:19:0B:EB:CF:0B:8D:9F:A1:AF:4E Certificate issuer: /CN=A91CBDC8/serialNumber=9B67C87214ED99654071190BEBCF0B8D9FA1AF4E Certificate serial: 0BF8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m2fIchTtmWVAcRkL688LjZ-hr04.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CBDC8/669763F018E011EAA0C38E7BC4F9AE02/m2fIchTtmWVAcRkL688LjZ-hr04.mft Manifest number: 0BE3 Signing time: Sat 10 May 2025 18:37:16 +0000 Manifest this update: Sat 10 May 2025 18:37:16 +0000 Manifest next update: Sat 17 May 2025 18:37:16 +0000 Files and hashes: 1: m2fIchTtmWVAcRkL688LjZ-hr04.crl (hash: BaNK0Brn4LH4yO6cVqEkR5GVsR4grhc1LBgroTEWHsQ=) 2: 39F4FA3EC28011EFA15F7983C4F9AE02.roa (hash: Tv0EkNRvl6HwjRZU1kGmTPF818bqvfwzUYMD5mrfPL8=) 3: 38717B38C28011EFA15F7983C4F9AE02.roa (hash: 5iv6gdKQPAZFSlAANGZthkjck4esnk4Jjld1SsnV+1w=) 4: 10BAC44C646511EFBC52E778C4F9AE02.roa (hash: Z67/J9vff1oW6NI34pKliaQWv/9nuKIHlmULd9ZQaKg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CBDC8/669763F018E011EAA0C38E7BC4F9AE02/m2fIchTtmWVAcRkL688LjZ-hr04.crl rsync://rpki.apnic.net/member_repository/A91CBDC8/669763F018E011EAA0C38E7BC4F9AE02/m2fIchTtmWVAcRkL688LjZ-hr04.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m2fIchTtmWVAcRkL688LjZ-hr04.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 17 May 2025 18:37:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3064 (0xbf8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CBDC8, serialNumber=9B67C87214ED99654071190BEBCF0B8D9FA1AF4E Validity Not Before: May 10 18:37:16 2025 GMT Not After : May 17 18:37:16 2025 GMT Subject: CN=681f9cdc-8257 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:35:08:89:ab:7e:7c:1c:3b:2e:b4:4a:be:2e: 4c:dd:aa:e9:01:fd:3b:95:62:cb:25:6a:9c:42:dd: 82:88:26:61:dc:de:16:96:ed:32:13:11:a7:94:6d: 02:dd:30:84:eb:1c:1c:c5:5e:66:cb:8f:ff:d8:9e: 98:0e:17:81:67:99:63:8b:4c:0b:6b:96:29:a2:3e: d5:7b:67:37:c7:78:f4:c9:12:58:21:ce:45:09:ff: 07:82:e1:f6:0a:91:54:7c:2d:f3:b4:be:71:96:33: 9c:58:61:3d:8f:4b:db:69:f4:f0:b4:bc:c8:6e:44: d3:94:61:1b:f6:55:69:5e:c5:4b:90:35:21:25:b4: bb:a3:86:af:70:52:cc:2b:15:f2:66:b6:3a:20:bc: 54:d4:62:9c:50:5f:e0:49:22:5d:85:fa:1b:cc:2e: d1:26:d5:54:59:0b:5b:ea:f8:ac:37:b8:35:ca:8c: d2:45:78:05:94:e6:53:81:77:90:3c:cf:db:93:43: 2c:8f:02:0a:72:fe:17:3d:f5:c2:41:d8:5c:db:a1: 6d:82:76:87:75:b2:41:a6:c6:71:d5:d5:7c:48:5b: a5:20:dd:b9:d5:31:b0:14:c5:e1:f6:4e:f1:ae:ad: c5:56:5b:d2:dc:ad:3c:69:90:20:5c:20:61:7a:05: 7f:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 41:08:FB:A4:EA:18:B9:AE:BA:89:A7:55:3C:01:9A:81:0F:50:63:44 X509v3 Authority Key Identifier: keyid:9B:67:C8:72:14:ED:99:65:40:71:19:0B:EB:CF:0B:8D:9F:A1:AF:4E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CBDC8/669763F018E011EAA0C38E7BC4F9AE02/m2fIchTtmWVAcRkL688LjZ-hr04.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m2fIchTtmWVAcRkL688LjZ-hr04.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CBDC8/669763F018E011EAA0C38E7BC4F9AE02/m2fIchTtmWVAcRkL688LjZ-hr04.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c0:53:fc:9c:ad:4e:9b:51:f6:39:09:04:39:4b:4a:e0:6b:a5: e8:a5:9b:96:7a:83:e6:ee:a4:a0:a5:6b:7d:b5:82:54:85:b5: 12:df:ef:b7:f2:20:f4:6b:7f:c9:62:92:40:38:9d:ef:15:33: ff:7a:88:36:7d:2c:b9:47:53:c8:cb:d0:9f:69:55:e6:9b:24: 1c:3c:87:40:ec:6b:1b:9c:ee:e9:89:60:50:00:fb:7f:1a:b3: 65:19:1a:36:ea:5a:dd:a9:5d:ad:55:01:38:7d:be:27:79:72: 9a:eb:fe:b6:bd:5d:78:ac:d0:f7:44:cd:a3:d9:c5:a9:3a:8c: 60:84:d1:cd:47:b8:87:15:6f:80:3d:5e:22:41:6a:dd:9d:07: ad:d8:ba:8b:81:67:5c:dd:55:cb:ab:4b:df:c5:2c:8d:34:37: c8:c5:b1:4c:05:92:cd:da:a8:22:18:e9:42:46:6c:22:9b:45: b4:b1:5f:70:70:6e:42:f5:c7:22:0b:23:5c:be:f0:91:23:f1: 21:15:cd:0f:ca:8d:1e:16:b2:e4:bc:08:b5:97:93:03:bc:3b: 11:d3:24:d8:7c:d8:e7:df:89:82:01:59:a7:41:16:05:cc:9b: 5e:1d:9a:b4:3c:e7:09:dc:5f:59:57:a6:c7:e3:1b:c3:01:f5: 18:40:9e:3f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC/gwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0JEQzgxMTAvBgNVBAUTKDlCNjdDODcyMTRFRDk5NjU0MDcxMTkwQkVCQ0YwQjhE OUZBMUFGNEUwHhcNMjUwNTEwMTgzNzE2WhcNMjUwNTE3MTgzNzE2WjAYMRYwFAYD VQQDEw02ODFmOWNkYy04MjU3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvTUIiat+fBw7LrRKvi5M3arpAf07lWLLJWqcQt2CiCZh3N4Wlu0yExGnlG0C 3TCE6xwcxV5my4//2J6YDheBZ5lji0wLa5Ypoj7Ve2c3x3j0yRJYIc5FCf8HguH2 CpFUfC3ztL5xljOcWGE9j0vbafTwtLzIbkTTlGEb9lVpXsVLkDUhJbS7o4avcFLM KxXyZrY6ILxU1GKcUF/gSSJdhfobzC7RJtVUWQtb6visN7g1yozSRXgFlOZTgXeQ PM/bk0MsjwIKcv4XPfXCQdhc26FtgnaHdbJBpsZx1dV8SFulIN251TGwFMXh9k7x rq3FVlvS3K08aZAgXCBhegV/gwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEEI+6Tq GLmuuomnVTwBmoEPUGNEMB8GA1UdIwQYMBaAFJtnyHIU7ZllQHEZC+vPC42foa9O MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDQkRDOC82Njk3NjNGMDE4 RTAxMUVBQTBDMzhFN0JDNEY5QUUwMi9tMmZJY2hUdG1XVkFjUmtMNjg4TGpaLWhy MDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL20yZkljaFR0bVdWQWNSa0w2ODhMalotaHIwNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD QkRDOC82Njk3NjNGMDE4RTAxMUVBQTBDMzhFN0JDNEY5QUUwMi9tMmZJY2hUdG1X VkFjUmtMNjg4TGpaLWhyMDQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDAU/ycrU6bUfY5CQQ5S0rga6XopZuWeoPm7qSgpWt9tYJUhbUS3++3 8iD0a3/JYpJAOJ3vFTP/eog2fSy5R1PIy9CfaVXmmyQcPIdA7GsbnO7piWBQAPt/ GrNlGRo26lrdqV2tVQE4fb4neXKa6/62vV14rND3RM2j2cWpOoxghNHNR7iHFW+A PV4iQWrdnQet2LqLgWdc3VXLq0vfxSyNNDfIxbFMBZLN2qgiGOlCRmwim0W0sV9w cG5C9cciCyNcvvCRI/EhFc0Pyo0eFrLkvAi1l5MDvDsR0yTYfNjn34mCAVmnQRYF zJteHZq0POcJ3F9ZV6bH4xvDAfUYQJ4/ -----END CERTIFICATE-----Generated at Mon May 12 06:42:23 2025 by rpki-client