$ rpki-client -vvf rpki.apnic.net/member_repository/A91CC561/86C30482E73411E99D8EAF47C4F9AE02/4idah1qSyusBBPicRvSlhbet9bY.mft File: 4idah1qSyusBBPicRvSlhbet9bY.mft (raw, json) Hash identifier: CVytBhed/vYPUnX3f6h2UHvUykCW2d7YI7xw1W8ng4U= Subject key identifier: 05:E9:03:25:88:B4:9C:DC:A2:8A:97:61:DB:8F:FD:A4:FF:59:DC:F1 Authority key identifier: E2:27:5A:87:5A:92:CA:EB:01:04:F8:9C:46:F4:A5:85:B7:AD:F5:B6 Certificate issuer: /CN=A91CC561/serialNumber=E2275A875A92CAEB0104F89C46F4A585B7ADF5B6 Certificate serial: 0CE8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4idah1qSyusBBPicRvSlhbet9bY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CC561/86C30482E73411E99D8EAF47C4F9AE02/4idah1qSyusBBPicRvSlhbet9bY.mft Manifest number: 0CDC Signing time: Fri 16 May 2025 18:21:47 +0000 Manifest this update: Fri 16 May 2025 18:21:47 +0000 Manifest next update: Fri 23 May 2025 18:21:47 +0000 Files and hashes: 1: 4idah1qSyusBBPicRvSlhbet9bY.crl (hash: A6G71bP//Cljkpj6OqApSOpQ4d7IadS842EomI/49C8=) 2: 5A395E26E2DB11EB8608EA87C4F9AE02.roa (hash: qxCxFSPkCJMsK7i3RHMxc9Lr9Tcp57aZA1WThFY3ZFw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CC561/86C30482E73411E99D8EAF47C4F9AE02/4idah1qSyusBBPicRvSlhbet9bY.crl rsync://rpki.apnic.net/member_repository/A91CC561/86C30482E73411E99D8EAF47C4F9AE02/4idah1qSyusBBPicRvSlhbet9bY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4idah1qSyusBBPicRvSlhbet9bY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 23 May 2025 18:21:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3304 (0xce8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CC561, serialNumber=E2275A875A92CAEB0104F89C46F4A585B7ADF5B6 Validity Not Before: May 16 18:21:47 2025 GMT Not After : May 23 18:21:47 2025 GMT Subject: CN=6827823b-5fec Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:51:31:0f:16:dc:c7:0c:72:93:68:0f:cf:90: b0:75:e0:b1:6d:c7:12:b2:d0:2c:61:b6:37:3e:ba: f5:8f:47:f1:75:9a:9b:b8:8b:75:95:d3:2c:b6:35: 9b:8b:60:20:81:f1:46:35:af:86:40:d3:8e:13:d3: 5e:22:8e:2f:62:d5:50:c6:52:cb:66:13:8e:03:9d: 26:39:73:96:7f:6b:ee:3e:53:d5:26:5c:4e:56:80: f0:54:8e:0b:55:12:33:77:d0:1b:0d:ec:9b:3f:02: 9f:27:03:19:c6:9a:3d:f4:45:b0:6f:0f:63:85:27: a9:94:46:54:02:b2:ab:d8:a3:e5:9e:7f:a9:e4:3e: e1:ed:25:d3:4d:46:f3:55:11:73:a5:03:46:09:34: 97:25:24:23:2c:3f:a3:c9:ac:66:cd:ee:a4:87:bf: 93:b9:51:55:0c:ac:e1:a4:d0:c7:45:30:f7:b2:44: 93:ea:11:37:39:d1:3f:a2:fd:09:36:42:82:31:e2: 90:57:b5:6a:b1:d7:c8:31:04:7d:28:7d:f8:38:9e: 53:b9:f0:2c:45:b0:36:59:32:3a:83:5a:f8:82:33: 4f:28:5a:c7:8e:e2:38:f7:36:85:47:c9:e1:a7:6b: 2d:dc:98:2f:9f:a6:c9:e4:a9:31:12:6f:e4:2b:21: 36:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 05:E9:03:25:88:B4:9C:DC:A2:8A:97:61:DB:8F:FD:A4:FF:59:DC:F1 X509v3 Authority Key Identifier: keyid:E2:27:5A:87:5A:92:CA:EB:01:04:F8:9C:46:F4:A5:85:B7:AD:F5:B6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CC561/86C30482E73411E99D8EAF47C4F9AE02/4idah1qSyusBBPicRvSlhbet9bY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4idah1qSyusBBPicRvSlhbet9bY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CC561/86C30482E73411E99D8EAF47C4F9AE02/4idah1qSyusBBPicRvSlhbet9bY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 04:02:49:5b:87:16:b4:d0:7e:2c:aa:78:7b:f7:59:05:25:61: 06:a4:ee:3f:a0:ad:04:aa:47:d1:b6:7b:80:e3:3b:b4:33:c8: ba:4f:b5:16:a9:ea:e1:d3:02:37:3d:db:fb:d9:f3:7e:96:2b: ce:0d:c2:a5:c4:78:20:b2:a1:4e:84:99:42:f6:50:ba:9f:82: 49:e9:d2:dc:f7:27:1f:38:44:fa:7f:c3:b2:ad:92:60:67:84: 49:dd:f6:c7:52:c7:2a:d1:20:d6:e1:5a:2d:7e:10:8e:c2:5a: 18:c7:76:63:57:58:78:e4:d3:14:ae:8f:53:95:31:7c:a3:73: 66:f4:09:5a:69:7e:0e:89:93:96:16:ac:98:93:a3:82:83:f7: d0:7a:a8:db:07:41:9a:e3:4f:4e:7f:39:ce:25:e5:17:cb:42: e8:ad:87:b5:d1:01:0d:87:88:5b:6b:e0:5d:4b:8d:cb:7c:17: 34:e7:95:ab:ad:61:1a:4c:e3:79:d4:d8:7d:f0:5a:bd:86:a9: c7:80:c2:eb:31:1f:f6:2f:2c:32:80:77:44:a7:ff:3d:ae:ef: a2:85:c0:07:96:b6:eb:2e:69:1b:93:fb:3b:3b:e0:b3:f5:38: 9b:7d:dc:03:63:61:89:25:fe:e9:55:4a:02:09:ad:4b:d8:07: 10:31:07:2b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDOgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0M1NjExMTAvBgNVBAUTKEUyMjc1QTg3NUE5MkNBRUIwMTA0Rjg5QzQ2RjRBNTg1 QjdBREY1QjYwHhcNMjUwNTE2MTgyMTQ3WhcNMjUwNTIzMTgyMTQ3WjAYMRYwFAYD VQQDEw02ODI3ODIzYi01ZmVjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzlExDxbcxwxyk2gPz5CwdeCxbccSstAsYbY3Prr1j0fxdZqbuIt1ldMstjWb i2AggfFGNa+GQNOOE9NeIo4vYtVQxlLLZhOOA50mOXOWf2vuPlPVJlxOVoDwVI4L VRIzd9AbDeybPwKfJwMZxpo99EWwbw9jhSeplEZUArKr2KPlnn+p5D7h7SXTTUbz VRFzpQNGCTSXJSQjLD+jyaxmze6kh7+TuVFVDKzhpNDHRTD3skST6hE3OdE/ov0J NkKCMeKQV7VqsdfIMQR9KH34OJ5TufAsRbA2WTI6g1r4gjNPKFrHjuI49zaFR8nh p2st3Jgvn6bJ5KkxEm/kKyE2dQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAXpAyWI tJzcooqXYduP/aT/WdzxMB8GA1UdIwQYMBaAFOInWodaksrrAQT4nEb0pYW3rfW2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDQzU2MS84NkMzMDQ4MkU3 MzQxMUU5OUQ4RUFGNDdDNEY5QUUwMi80aWRhaDFxU3l1c0JCUGljUnZTbGhiZXQ5 YlkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRpZGFoMXFTeXVzQkJQaWNSdlNsaGJldDliWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD QzU2MS84NkMzMDQ4MkU3MzQxMUU5OUQ4RUFGNDdDNEY5QUUwMi80aWRhaDFxU3l1 c0JCUGljUnZTbGhiZXQ5YlkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAEAklbhxa00H4sqnh791kFJWEGpO4/oK0EqkfRtnuA4zu0M8i6T7UW qerh0wI3Pdv72fN+livODcKlxHggsqFOhJlC9lC6n4JJ6dLc9ycfOET6f8OyrZJg Z4RJ3fbHUscq0SDW4VotfhCOwloYx3ZjV1h45NMUro9TlTF8o3Nm9AlaaX4OiZOW FqyYk6OCg/fQeqjbB0Ga409OfznOJeUXy0LorYe10QENh4hba+BdS43LfBc055Wr rWEaTON51Nh98Fq9hqnHgMLrMR/2LywygHdEp/89ru+ihcAHlrbrLmkbk/s7O+Cz 9TibfdwDY2GJJf7pVUoCCa1L2AcQMQcr -----END CERTIFICATE-----Generated at Sat May 17 01:22:10 2025 by rpki-client