$ rpki-client -vvf rpki.apnic.net/member_repository/A91CE403/802072E818BE11EFADA7E51DC4F9AE02/148wkE5135TOt1lmr4OOdj6ol2I.mft File: 148wkE5135TOt1lmr4OOdj6ol2I.mft (raw, json) Hash identifier: AReap7BnTDnJkpNHjUY1yrU7DD6ZXuA+SSMStGR3KkU= Subject key identifier: EB:30:43:25:DE:E5:04:4A:7D:4E:1F:10:68:43:73:DE:3F:13:0B:7C Authority key identifier: D7:8F:30:90:4E:75:DF:94:CE:B7:59:66:AF:83:8E:76:3E:A8:97:62 Certificate issuer: /CN=A91CE403/serialNumber=D78F30904E75DF94CEB75966AF838E763EA89762 Certificate serial: B9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/148wkE5135TOt1lmr4OOdj6ol2I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CE403/802072E818BE11EFADA7E51DC4F9AE02/148wkE5135TOt1lmr4OOdj6ol2I.mft Manifest number: B7 Signing time: Sun 11 May 2025 04:44:06 +0000 Manifest this update: Sun 11 May 2025 04:44:05 +0000 Manifest next update: Sun 18 May 2025 04:44:05 +0000 Files and hashes: 1: 148wkE5135TOt1lmr4OOdj6ol2I.crl (hash: P9dPwKxm9sFSBZU+CkvoOZ4+citMZL1hfQLmKguif+k=) 2: B74BF7F018BF11EFB54AFB20C4F9AE02.roa (hash: 3q4SG/qlGVDYq4EV5cqZmr+jLzfEittQVkz7pS+z/KE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CE403/802072E818BE11EFADA7E51DC4F9AE02/148wkE5135TOt1lmr4OOdj6ol2I.crl rsync://rpki.apnic.net/member_repository/A91CE403/802072E818BE11EFADA7E51DC4F9AE02/148wkE5135TOt1lmr4OOdj6ol2I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/148wkE5135TOt1lmr4OOdj6ol2I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 18 May 2025 04:44:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 185 (0xb9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CE403, serialNumber=D78F30904E75DF94CEB75966AF838E763EA89762 Validity Not Before: May 11 04:44:05 2025 GMT Not After : May 18 04:44:05 2025 GMT Subject: CN=68202b16-f46f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:fd:ea:14:12:24:d3:58:85:93:31:ca:e1:cd: 9b:52:03:85:2c:9d:51:b6:73:56:ab:37:17:6c:33: 61:1a:e6:e0:96:b0:fc:73:1d:07:6b:4a:f4:ee:96: 28:a3:10:14:25:46:8f:bb:14:ea:22:82:82:e2:c5: fc:8e:b4:c8:33:0d:6f:1d:7f:4b:91:db:f9:43:b6: 0e:8f:90:fb:d0:4c:57:2b:45:31:a1:b8:29:ed:22: 37:b1:21:9e:46:f4:89:a3:da:57:cf:0e:70:65:f7: b4:ce:c5:d8:f8:bf:57:f6:d8:10:f9:34:13:e4:98: c9:80:4f:22:0c:65:56:e8:5f:ee:75:cf:77:d3:ac: 2f:d3:59:40:be:aa:b1:60:e4:65:b4:32:d5:59:ca: 1a:82:02:76:6d:4e:d5:83:69:5c:38:96:60:1d:41: 16:17:cc:a9:02:4b:f2:0f:57:0a:2f:80:b8:49:56: 50:e1:a1:e8:65:35:17:c8:8f:a0:bd:4d:94:8e:10: 2b:76:a1:f2:94:29:97:54:5f:bf:92:a8:ed:28:68: 59:6d:fb:63:6e:3d:74:8d:e4:4b:a6:8b:45:cc:48: 81:ad:1d:35:3a:60:7c:af:d7:d9:f0:b7:45:8e:71: 2a:1a:42:eb:15:fd:e1:e3:5d:85:6b:ed:f0:75:27: 2b:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EB:30:43:25:DE:E5:04:4A:7D:4E:1F:10:68:43:73:DE:3F:13:0B:7C X509v3 Authority Key Identifier: keyid:D7:8F:30:90:4E:75:DF:94:CE:B7:59:66:AF:83:8E:76:3E:A8:97:62 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CE403/802072E818BE11EFADA7E51DC4F9AE02/148wkE5135TOt1lmr4OOdj6ol2I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/148wkE5135TOt1lmr4OOdj6ol2I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CE403/802072E818BE11EFADA7E51DC4F9AE02/148wkE5135TOt1lmr4OOdj6ol2I.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 38:04:0b:8a:24:c6:16:9c:79:63:c1:40:fd:7f:fb:31:18:eb: a3:2e:52:1d:ee:17:76:ca:27:73:ac:a7:f2:00:2c:03:5f:b3: 35:38:ff:8e:39:20:3a:b3:ac:96:b4:a1:05:83:d8:13:a9:28: 38:5e:63:a1:0b:8e:1e:60:05:f6:00:c3:6b:2a:6b:5f:9c:8d: 11:38:bb:5d:41:b1:c2:51:e1:2f:a8:03:f4:3b:67:52:38:c3: 15:f2:c8:b0:6f:36:dc:a7:97:50:63:f3:cc:62:a7:94:a1:07: 07:cb:33:a5:51:ea:8a:6f:60:59:b7:53:fd:73:b3:75:78:32: 50:94:89:80:bf:29:a4:23:74:46:bc:f6:0b:35:93:fe:ee:79: 58:06:7e:b4:f2:32:af:36:d6:dd:91:f7:16:68:93:c0:b5:49: 1e:0f:ba:ec:73:c4:2f:c9:94:44:21:ab:a6:86:13:3e:10:a6: 9c:6f:9a:76:77:36:b6:7b:90:b3:18:ea:18:19:3e:08:46:a0: bc:03:4a:9c:bd:65:e1:ad:c9:75:8c:9b:9c:9b:21:1c:e9:e7: 02:0a:41:aa:72:76:bf:29:f3:47:d6:c8:ed:7c:b5:73:88:8c: 80:b0:18:b0:48:7e:85:13:1e:54:72:bf:25:d0:51:6b:52:44: 94:96:5e:82 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICALkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0U0MDMxMTAvBgNVBAUTKEQ3OEYzMDkwNEU3NURGOTRDRUI3NTk2NkFGODM4RTc2 M0VBODk3NjIwHhcNMjUwNTExMDQ0NDA1WhcNMjUwNTE4MDQ0NDA1WjAYMRYwFAYD VQQDEw02ODIwMmIxNi1mNDZmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtv3qFBIk01iFkzHK4c2bUgOFLJ1RtnNWqzcXbDNhGubglrD8cx0Ha0r07pYo oxAUJUaPuxTqIoKC4sX8jrTIMw1vHX9Lkdv5Q7YOj5D70ExXK0Uxobgp7SI3sSGe RvSJo9pXzw5wZfe0zsXY+L9X9tgQ+TQT5JjJgE8iDGVW6F/udc9306wv01lAvqqx YORltDLVWcoaggJ2bU7Vg2lcOJZgHUEWF8ypAkvyD1cKL4C4SVZQ4aHoZTUXyI+g vU2UjhArdqHylCmXVF+/kqjtKGhZbftjbj10jeRLpotFzEiBrR01OmB8r9fZ8LdF jnEqGkLrFf3h412Fa+3wdScrUQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOswQyXe 5QRKfU4fEGhDc94/Ewt8MB8GA1UdIwQYMBaAFNePMJBOdd+UzrdZZq+DjnY+qJdi MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRTQwMy84MDIwNzJFODE4 QkUxMUVGQURBN0U1MURDNEY5QUUwMi8xNDh3a0U1MTM1VE90MWxtcjRPT2RqNm9s MkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzE0OHdrRTUxMzVUT3QxbG1yNE9PZGo2b2wySS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RTQwMy84MDIwNzJFODE4QkUxMUVGQURBN0U1MURDNEY5QUUwMi8xNDh3a0U1MTM1 VE90MWxtcjRPT2RqNm9sMkkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA4BAuKJMYWnHljwUD9f/sxGOujLlId7hd2yidzrKfyACwDX7M1OP+O OSA6s6yWtKEFg9gTqSg4XmOhC44eYAX2AMNrKmtfnI0ROLtdQbHCUeEvqAP0O2dS OMMV8siwbzbcp5dQY/PMYqeUoQcHyzOlUeqKb2BZt1P9c7N1eDJQlImAvymkI3RG vPYLNZP+7nlYBn608jKvNtbdkfcWaJPAtUkeD7rsc8QvyZREIaumhhM+EKacb5p2 dza2e5CzGOoYGT4IRqC8A0qcvWXhrcl1jJucmyEc6ecCCkGqcna/KfNH1sjtfLVz iIyAsBiwSH6FEx5Ucr8l0FFrUkSUll6C -----END CERTIFICATE-----Generated at Tue May 13 04:37:25 2025 by rpki-client