$ rpki-client -vvf rpki.apnic.net/member_repository/A91CE3A3/18823C8C050111EABD9B202CC4F9AE02/REDuIbNImmUKYWsSDY5b5Xku4Es.mft File: REDuIbNImmUKYWsSDY5b5Xku4Es.mft (raw, json) Hash identifier: Nr/cx21HA22/3wkK60iBphahVNgxbuQam4/NGQr/z4w= Subject key identifier: E1:45:F2:C7:F3:1A:1A:C3:EF:E4:68:82:10:37:FA:DA:6A:36:06:A9 Authority key identifier: 44:40:EE:21:B3:48:9A:65:0A:61:6B:12:0D:8E:5B:E5:79:2E:E0:4B Certificate issuer: /CN=A91CE3A3/serialNumber=4440EE21B3489A650A616B120D8E5BE5792EE04B Certificate serial: 0C41 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/REDuIbNImmUKYWsSDY5b5Xku4Es.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CE3A3/18823C8C050111EABD9B202CC4F9AE02/REDuIbNImmUKYWsSDY5b5Xku4Es.mft Manifest number: 0C3A Signing time: Mon 12 May 2025 18:18:18 +0000 Manifest this update: Mon 12 May 2025 18:18:18 +0000 Manifest next update: Mon 19 May 2025 18:18:18 +0000 Files and hashes: 1: REDuIbNImmUKYWsSDY5b5Xku4Es.crl (hash: zDW5xTbor+yez6bpqGsYV8XEOB8z0bO4ltT+WbWNEzo=) 2: 7155C8563E5E11EAB043A522C4F9AE02.roa (hash: kzRNRyDp5yy+6xuR6mT9mG0c89/n8LtjaHr1+0MkgX4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CE3A3/18823C8C050111EABD9B202CC4F9AE02/REDuIbNImmUKYWsSDY5b5Xku4Es.crl rsync://rpki.apnic.net/member_repository/A91CE3A3/18823C8C050111EABD9B202CC4F9AE02/REDuIbNImmUKYWsSDY5b5Xku4Es.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/REDuIbNImmUKYWsSDY5b5Xku4Es.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 19 May 2025 18:18:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3137 (0xc41) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CE3A3, serialNumber=4440EE21B3489A650A616B120D8E5BE5792EE04B Validity Not Before: May 12 18:18:18 2025 GMT Not After : May 19 18:18:18 2025 GMT Subject: CN=68223b6a-f339 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:53:64:2d:36:12:4e:79:3f:3f:e8:e8:01:d2: af:3a:78:aa:02:99:d2:53:06:8e:b0:bc:6b:86:e1: 5c:82:a8:01:97:82:ff:7c:0b:32:5c:3c:f1:1b:02: 9e:89:7e:27:8d:7c:14:7f:a9:5b:6c:8f:2a:02:a0: 07:15:f5:42:6e:70:21:cb:39:55:72:1c:ee:c3:63: 4f:30:42:ac:1f:5a:34:42:b3:3d:09:a2:49:a8:cd: ed:12:61:2d:29:cb:ea:54:da:a8:77:89:76:50:6d: 09:4d:46:30:57:2c:ea:93:29:f4:9b:67:ea:38:87: b1:ee:6e:88:c8:5e:2f:f8:e3:37:6f:35:64:fb:28: db:4c:e0:8a:5b:b8:5e:33:af:30:eb:e2:13:0f:c5: 0a:ca:87:88:a6:89:8c:de:49:86:a0:93:a8:73:30: b2:36:5f:8f:b6:fe:b9:58:5a:f8:df:c5:2f:1a:87: d6:df:ab:06:7a:64:95:b1:5c:0d:fb:76:c4:90:1b: d5:4a:be:0e:d1:30:b7:45:4f:d3:c6:fd:dc:f9:32: c3:85:10:8c:cd:b1:95:d0:97:5a:90:c6:26:8e:9c: ad:c8:51:c3:b7:2f:69:e2:74:12:33:1a:68:57:15: d6:b9:99:ee:59:52:4a:ee:cc:0e:61:37:75:8a:ea: ba:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E1:45:F2:C7:F3:1A:1A:C3:EF:E4:68:82:10:37:FA:DA:6A:36:06:A9 X509v3 Authority Key Identifier: keyid:44:40:EE:21:B3:48:9A:65:0A:61:6B:12:0D:8E:5B:E5:79:2E:E0:4B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CE3A3/18823C8C050111EABD9B202CC4F9AE02/REDuIbNImmUKYWsSDY5b5Xku4Es.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/REDuIbNImmUKYWsSDY5b5Xku4Es.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CE3A3/18823C8C050111EABD9B202CC4F9AE02/REDuIbNImmUKYWsSDY5b5Xku4Es.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 72:cb:56:a6:12:1e:c2:65:4a:23:6c:9b:ec:5a:a7:c0:f8:86: ec:34:4a:bd:a2:47:6a:d5:17:5c:c4:e2:a4:f9:bb:a6:2b:4c: 3c:3f:d6:fc:a5:4c:eb:f6:0b:59:58:ad:ac:a6:93:cf:6d:f2: 31:85:ef:0b:5b:b0:a6:c6:5f:18:9a:6a:8a:08:ba:8a:e3:f0: be:18:36:8e:9a:4c:ad:d2:3a:61:e7:f9:b4:65:6e:a7:b0:1d: b2:7c:aa:03:32:6f:34:62:f5:52:e1:d7:06:51:37:77:20:f6: 70:44:73:0a:85:f3:9f:bc:c6:47:a2:31:9c:08:db:43:1b:fa: 83:5e:0a:e1:10:b4:ec:76:2b:9b:67:0d:16:a9:f9:ed:96:d8: f9:12:69:c1:3e:6c:56:e2:ea:4d:e8:bf:0d:e2:e5:a8:3a:4c: 09:c0:46:10:e1:af:b6:db:0f:e6:c4:07:64:64:f2:06:79:9e: a1:e4:69:cf:e7:5f:ab:cf:cb:2e:e8:83:94:3b:67:f9:7e:be: ff:24:3d:bc:a1:ee:85:5c:71:4e:b5:af:88:45:83:8f:0f:a0: ff:c4:7d:76:a0:05:1a:f7:77:3f:cd:22:c8:9b:5a:47:db:35: 91:4e:89:4c:19:c4:49:21:8a:e0:51:e2:89:cf:39:30:79:0d: 76:86:f3:61 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDEEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0UzQTMxMTAvBgNVBAUTKDQ0NDBFRTIxQjM0ODlBNjUwQTYxNkIxMjBEOEU1QkU1 NzkyRUUwNEIwHhcNMjUwNTEyMTgxODE4WhcNMjUwNTE5MTgxODE4WjAYMRYwFAYD VQQDEw02ODIyM2I2YS1mMzM5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3FNkLTYSTnk/P+joAdKvOniqApnSUwaOsLxrhuFcgqgBl4L/fAsyXDzxGwKe iX4njXwUf6lbbI8qAqAHFfVCbnAhyzlVchzuw2NPMEKsH1o0QrM9CaJJqM3tEmEt KcvqVNqod4l2UG0JTUYwVyzqkyn0m2fqOIex7m6IyF4v+OM3bzVk+yjbTOCKW7he M68w6+ITD8UKyoeIpomM3kmGoJOoczCyNl+Ptv65WFr438UvGofW36sGemSVsVwN +3bEkBvVSr4O0TC3RU/Txv3c+TLDhRCMzbGV0JdakMYmjpytyFHDty9p4nQSMxpo VxXWuZnuWVJK7swOYTd1iuq6UwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOFF8sfz GhrD7+RoghA3+tpqNgapMB8GA1UdIwQYMBaAFERA7iGzSJplCmFrEg2OW+V5LuBL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRTNBMy8xODgyM0M4QzA1 MDExMUVBQkQ5QjIwMkNDNEY5QUUwMi9SRUR1SWJOSW1tVUtZV3NTRFk1YjVYa3U0 RXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1JFRHVJYk5JbW1VS1lXc1NEWTViNVhrdTRFcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RTNBMy8xODgyM0M4QzA1MDExMUVBQkQ5QjIwMkNDNEY5QUUwMi9SRUR1SWJOSW1t VUtZV3NTRFk1YjVYa3U0RXMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQByy1amEh7CZUojbJvsWqfA+IbsNEq9okdq1RdcxOKk+bumK0w8P9b8 pUzr9gtZWK2sppPPbfIxhe8LW7Cmxl8YmmqKCLqK4/C+GDaOmkyt0jph5/m0ZW6n sB2yfKoDMm80YvVS4dcGUTd3IPZwRHMKhfOfvMZHojGcCNtDG/qDXgrhELTsdiub Zw0Wqfntltj5EmnBPmxW4upN6L8N4uWoOkwJwEYQ4a+22w/mxAdkZPIGeZ6h5GnP 51+rz8su6IOUO2f5fr7/JD28oe6FXHFOta+IRYOPD6D/xH12oAUa93c/zSLIm1pH 2zWRTolMGcRJIYrgUeKJzzkweQ12hvNh -----END CERTIFICATE-----Generated at Wed May 14 12:41:53 2025 by rpki-client