$ rpki-client -vvf rpki.apnic.net/member_repository/A91CD40B/741A1E2C855B11EFB0576D40C4F9AE02/aLMj2oThIFRmzrWv19YHcmdbBTE.mft File: aLMj2oThIFRmzrWv19YHcmdbBTE.mft (raw, json) Hash identifier: whbN4sub7p/ZaYqMUE9QAfzEFdabLvYRgSs+rfBiiNo= Subject key identifier: 9B:BC:21:27:B2:D5:E8:EC:BE:FF:CE:6C:83:52:EA:59:F8:64:1D:3B Authority key identifier: 68:B3:23:DA:84:E1:20:54:66:CE:B5:AF:D7:D6:07:72:67:5B:05:31 Certificate issuer: /CN=A91CD40B/serialNumber=68B323DA84E1205466CEB5AFD7D60772675B0531 Certificate serial: 6E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aLMj2oThIFRmzrWv19YHcmdbBTE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CD40B/741A1E2C855B11EFB0576D40C4F9AE02/aLMj2oThIFRmzrWv19YHcmdbBTE.mft Manifest number: 6E Signing time: Wed 07 May 2025 05:59:54 +0000 Manifest this update: Wed 07 May 2025 05:59:54 +0000 Manifest next update: Wed 14 May 2025 05:59:54 +0000 Files and hashes: 1: aLMj2oThIFRmzrWv19YHcmdbBTE.crl (hash: c2NZRZrNfGvNgk7ZX8TJcoNrAUcg0Zx53Y3t2wkFs8g=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CD40B/741A1E2C855B11EFB0576D40C4F9AE02/aLMj2oThIFRmzrWv19YHcmdbBTE.crl rsync://rpki.apnic.net/member_repository/A91CD40B/741A1E2C855B11EFB0576D40C4F9AE02/aLMj2oThIFRmzrWv19YHcmdbBTE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aLMj2oThIFRmzrWv19YHcmdbBTE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 14 May 2025 05:59:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 110 (0x6e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CD40B, serialNumber=68B323DA84E1205466CEB5AFD7D60772675B0531 Validity Not Before: May 7 05:59:54 2025 GMT Not After : May 14 05:59:54 2025 GMT Subject: CN=681af6da-6b0b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:72:d9:82:b6:fb:2e:ff:5a:64:73:bd:5c:a5: dd:d6:42:7b:1d:0d:7c:bc:f2:ff:46:7a:89:65:36: 72:53:06:da:b7:58:eb:3b:b3:db:71:00:46:15:7e: cc:5d:f1:91:dc:6d:b3:a2:34:a0:fa:02:ed:9a:db: a6:0a:c1:4e:2f:a5:17:5c:32:a3:fc:9b:c7:45:11: 4c:53:48:9b:a0:b6:41:bb:15:1b:73:fc:94:38:eb: c8:f8:6e:b6:16:a6:38:9f:26:59:45:24:95:bd:48: 18:34:89:96:97:b6:d7:66:81:08:e3:45:9c:fc:7d: b0:28:dd:81:76:64:37:65:5c:b8:83:94:11:29:ae: e9:8a:61:95:f6:a1:f5:92:5d:3c:46:27:f2:0a:db: 89:31:43:6f:87:ae:8e:aa:ac:25:d1:2f:d5:78:3e: 22:73:1c:09:3d:86:88:4b:62:45:f6:1c:c2:60:f0: 8c:45:a9:b9:fb:63:97:38:06:cd:80:a1:64:da:31: 4a:ab:92:1c:fd:07:ec:4a:25:e7:41:93:40:f4:d8: 50:1a:27:95:7e:b3:62:5b:cc:c6:86:b6:5a:7a:25: 2e:4d:ed:db:15:15:57:6f:5c:0f:f4:d5:9a:3f:b1: ec:69:db:23:65:18:1b:81:a8:34:b5:37:e6:68:25: d3:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9B:BC:21:27:B2:D5:E8:EC:BE:FF:CE:6C:83:52:EA:59:F8:64:1D:3B X509v3 Authority Key Identifier: keyid:68:B3:23:DA:84:E1:20:54:66:CE:B5:AF:D7:D6:07:72:67:5B:05:31 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CD40B/741A1E2C855B11EFB0576D40C4F9AE02/aLMj2oThIFRmzrWv19YHcmdbBTE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aLMj2oThIFRmzrWv19YHcmdbBTE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CD40B/741A1E2C855B11EFB0576D40C4F9AE02/aLMj2oThIFRmzrWv19YHcmdbBTE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 49:99:78:68:63:44:1f:fd:eb:cd:a1:ae:f8:7c:4e:ac:47:63: 79:9b:3f:8d:41:29:42:5f:ae:29:3c:09:bd:85:3e:59:15:44: ca:b6:95:f1:94:76:7b:5d:70:f8:a6:f2:ac:be:b6:e5:ce:ef: dd:b4:f6:56:e5:24:e8:ba:90:aa:98:46:06:63:df:69:19:a1: 6c:1d:31:3d:f0:46:a5:5b:dd:29:bf:10:e9:8e:35:06:0f:98: 87:67:09:7a:8c:8b:c0:3d:72:98:cc:6d:b1:77:15:e1:a0:7d: 40:c6:94:16:45:13:fe:23:1e:57:24:56:be:4a:74:7b:58:18: 16:b1:59:eb:2a:29:aa:3c:3a:90:42:f2:47:1b:2c:21:bb:47: 81:94:ea:6e:8f:ae:43:43:0d:79:af:33:c8:f8:36:6c:f5:92: 2e:73:1f:41:37:7a:c4:00:0c:c4:76:74:88:4b:43:2e:98:68: 40:a3:8c:71:65:28:98:c0:75:be:d7:1b:63:5e:ae:9f:83:af: a9:de:68:b2:0b:3d:c3:58:45:33:aa:0f:42:3c:79:4e:2f:7f: e4:0d:41:c4:c4:2d:f9:57:79:25:66:70:c8:1f:31:3c:5d:a9: 63:11:20:15:52:b6:5d:df:e5:b5:b1:a4:ca:c6:ca:a0:2d:e8: 9f:66:38:6f -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBbjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFD RDQwQjExMC8GA1UEBRMoNjhCMzIzREE4NEUxMjA1NDY2Q0VCNUFGRDdENjA3NzI2 NzVCMDUzMTAeFw0yNTA1MDcwNTU5NTRaFw0yNTA1MTQwNTU5NTRaMBgxFjAUBgNV BAMTDTY4MWFmNmRhLTZiMGIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDRctmCtvsu/1pkc71cpd3WQnsdDXy88v9GeollNnJTBtq3WOs7s9txAEYVfsxd 8ZHcbbOiNKD6Au2a26YKwU4vpRdcMqP8m8dFEUxTSJugtkG7FRtz/JQ468j4brYW pjifJllFJJW9SBg0iZaXttdmgQjjRZz8fbAo3YF2ZDdlXLiDlBEprumKYZX2ofWS XTxGJ/IK24kxQ2+Hro6qrCXRL9V4PiJzHAk9hohLYkX2HMJg8IxFqbn7Y5c4Bs2A oWTaMUqrkhz9B+xKJedBk0D02FAaJ5V+s2JbzMaGtlp6JS5N7dsVFVdvXA/01Zo/ sexp2yNlGBuBqDS1N+ZoJdPNAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUm7whJ7LV 6Oy+/85sg1LqWfhkHTswHwYDVR0jBBgwFoAUaLMj2oThIFRmzrWv19YHcmdbBTEw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUNENDBCLzc0MUExRTJDODU1 QjExRUZCMDU3NkQ0MEM0RjlBRTAyL2FMTWoyb1RoSUZSbXpyV3YxOVlIY21kYkJU RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvYUxNajJvVGhJRlJtenJXdjE5WUhjbWRiQlRFLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUNE NDBCLzc0MUExRTJDODU1QjExRUZCMDU3NkQ0MEM0RjlBRTAyL2FMTWoyb1RoSUZS bXpyV3YxOVlIY21kYkJURS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAEmZeGhjRB/9682hrvh8TqxHY3mbP41BKUJfrik8Cb2FPlkVRMq2lfGU dntdcPim8qy+tuXO79209lblJOi6kKqYRgZj32kZoWwdMT3wRqVb3Sm/EOmONQYP mIdnCXqMi8A9cpjMbbF3FeGgfUDGlBZFE/4jHlckVr5KdHtYGBaxWesqKao8OpBC 8kcbLCG7R4GU6m6PrkNDDXmvM8j4Nmz1ki5zH0E3esQADMR2dIhLQy6YaECjjHFl KJjAdb7XG2Nerp+Dr6neaLILPcNYRTOqD0I8eU4vf+QNQcTELflXeSVmcMgfMTxd qWMRIBVStl3f5bWxpMrGyqAt6J9mOG8= -----END CERTIFICATE-----Generated at Thu May 8 20:41:47 2025 by rpki-client