$ rpki-client -vvf rpki.apnic.net/member_repository/A91CE978/3223F35E1D9811E28A8C2E8208B02CD2/ah5PcoR-s2mVIsk9Jnc_Dfg5br4.mft File: ah5PcoR-s2mVIsk9Jnc_Dfg5br4.mft (raw, json) Hash identifier: zfNN6C0OvSoc1Ef4a4JN+R8A1o2ZiKDXXNDjqOiz++c= Subject key identifier: 3E:D9:4B:23:A0:21:E9:20:EA:C0:CB:16:AD:D3:46:53:17:AF:84:35 Authority key identifier: 6A:1E:4F:72:84:7E:B3:69:95:22:C9:3D:26:77:3F:0D:F8:39:6E:BE Certificate issuer: /CN=A91CE978/serialNumber=6A1E4F72847EB3699522C93D26773F0DF8396EBE Certificate serial: 353D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ah5PcoR-s2mVIsk9Jnc_Dfg5br4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CE978/3223F35E1D9811E28A8C2E8208B02CD2/ah5PcoR-s2mVIsk9Jnc_Dfg5br4.mft Manifest number: 34D8 Signing time: Sat 10 May 2025 14:51:24 +0000 Manifest this update: Sat 10 May 2025 14:51:24 +0000 Manifest next update: Sat 17 May 2025 14:51:24 +0000 Files and hashes: 1: ah5PcoR-s2mVIsk9Jnc_Dfg5br4.crl (hash: tMMQTT0kMCcSjEXuQ+Pk+qU5DuJxT0w/Izg5kz8CmkA=) 2: 64E2B628BE4911EE897F291BC4F9AE02.roa (hash: oj9MA2Xl79Ulu/1U7XExVD59vw2GZhJkFrHTogIDTCg=) 3: E6F73E22B99E11EEBF189021C4F9AE02.roa (hash: 1mDu3Q1bdiSa3axtc15ZDTGlc4zW4OxSySLPwHbTbvE=) 4: DDF4B0D2F08C11EEB70A1F76C4F9AE02.roa (hash: 3IhKk2ns73ug1cPcItokkvNYGQWI9rs7b4nF6YtsTSc=) 5: D79607EEDCDD11EE85DBEB12C4F9AE02.roa (hash: vltJ7Buw53igWVIfCgs9blss6VeKEkgF9l7xhGZDnwo=) 6: 29F7413CBB6011EEB59E5D81C4F9AE02.roa (hash: ZqgeyChgSkuAuEy8E4XBqCcFOmGTEjV9SXx7odN3pv4=) 7: D1EE6884F06C11EEA5BAA656C4F9AE02.roa (hash: 8K4hb6GJHcWswysfKKK+VFXlsdhKy8EjS5fIz+8731Q=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CE978/3223F35E1D9811E28A8C2E8208B02CD2/ah5PcoR-s2mVIsk9Jnc_Dfg5br4.crl rsync://rpki.apnic.net/member_repository/A91CE978/3223F35E1D9811E28A8C2E8208B02CD2/ah5PcoR-s2mVIsk9Jnc_Dfg5br4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ah5PcoR-s2mVIsk9Jnc_Dfg5br4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 17 May 2025 14:51:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13629 (0x353d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CE978, serialNumber=6A1E4F72847EB3699522C93D26773F0DF8396EBE Validity Not Before: May 10 14:51:24 2025 GMT Not After : May 17 14:51:24 2025 GMT Subject: CN=681f67ec-84ea Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:f6:69:7e:08:bc:19:6b:d8:a6:89:58:4c:63: ce:70:ad:16:42:f0:3a:f8:2a:61:13:40:8b:61:5f: b1:60:81:90:26:ab:53:4a:39:fc:40:d4:32:90:dd: 59:8a:eb:2c:5d:a1:a0:d3:4a:98:74:aa:29:87:54: 80:2b:41:d0:84:86:89:e6:00:ce:df:c1:1b:f7:84: 4a:96:b2:83:c6:8a:72:57:b9:60:f5:7c:bf:42:62: 94:41:98:85:33:82:1b:3c:49:09:3b:99:a3:90:f5: 5a:0b:e5:04:44:39:9e:17:ce:bf:78:35:b0:4b:12: d7:08:ea:36:ac:88:94:c4:75:b8:5d:17:84:0e:81: c1:09:bf:63:99:d0:b6:cd:37:5d:d1:70:65:35:34: 34:44:32:87:82:f1:2a:7c:b1:ea:0c:80:9c:7a:dc: d1:c7:cd:64:b3:7e:8a:c8:a2:3c:6d:2c:cc:30:52: bc:2b:5e:45:a9:07:8f:32:7e:e2:b4:c6:a4:3c:12: c4:ab:d6:a6:ca:bf:63:bc:56:69:2a:cb:3b:3f:96: 11:b1:44:a7:14:02:37:bc:ad:92:65:a3:ee:98:a6: 56:a0:fc:5a:3a:fc:7c:03:96:90:13:84:e3:aa:b3: 97:cf:78:ae:e8:79:bf:3f:17:18:f2:d0:b0:56:98: f5:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3E:D9:4B:23:A0:21:E9:20:EA:C0:CB:16:AD:D3:46:53:17:AF:84:35 X509v3 Authority Key Identifier: keyid:6A:1E:4F:72:84:7E:B3:69:95:22:C9:3D:26:77:3F:0D:F8:39:6E:BE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CE978/3223F35E1D9811E28A8C2E8208B02CD2/ah5PcoR-s2mVIsk9Jnc_Dfg5br4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ah5PcoR-s2mVIsk9Jnc_Dfg5br4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CE978/3223F35E1D9811E28A8C2E8208B02CD2/ah5PcoR-s2mVIsk9Jnc_Dfg5br4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 69:b7:c1:2f:fd:59:66:52:1b:7c:db:6b:a6:4d:21:2c:bd:2b: 52:d7:dd:13:b7:8f:fe:42:4b:65:e4:9e:f2:b8:b2:2e:98:54: 73:de:1f:fe:f5:db:55:66:bd:44:03:fe:21:72:aa:7c:90:4b: 8c:c4:95:a5:c7:91:d0:bc:13:71:f9:40:a9:29:65:f8:75:90: 16:df:d7:dd:51:6f:f8:20:fe:2b:1b:a0:40:db:10:a9:f8:47: 84:f9:5e:3c:82:b4:71:63:34:61:c0:54:38:8f:ef:f0:84:fb: 1b:e5:78:7b:5c:b2:bb:3f:bf:00:e5:c9:0a:b4:7f:07:11:a7: b6:78:02:99:ae:80:98:b8:45:13:19:32:49:7d:38:30:52:c3: 9e:91:b7:57:71:06:d8:c5:f2:b1:00:2f:79:8d:1c:d4:f7:f9: 4d:26:b5:b2:dd:73:41:66:17:5c:88:6b:0e:46:af:6e:c7:f8: 42:36:f2:5f:e4:70:2a:16:79:bf:10:71:51:35:ce:ab:59:ce: 30:d7:ad:7e:c2:ef:34:27:8f:ea:e2:57:f8:0c:26:e2:e3:ee: 9c:6a:b2:08:36:5b:6f:e8:07:9a:34:d9:df:c3:da:9a:47:5a: e3:a6:75:a0:2d:44:d1:a2:1a:40:82:e8:93:78:3a:64:a2:b9: a1:be:c2:44 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNT0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0U5NzgxMTAvBgNVBAUTKDZBMUU0RjcyODQ3RUIzNjk5NTIyQzkzRDI2NzczRjBE RjgzOTZFQkUwHhcNMjUwNTEwMTQ1MTI0WhcNMjUwNTE3MTQ1MTI0WjAYMRYwFAYD VQQDEw02ODFmNjdlYy04NGVhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtvZpfgi8GWvYpolYTGPOcK0WQvA6+CphE0CLYV+xYIGQJqtTSjn8QNQykN1Z iussXaGg00qYdKoph1SAK0HQhIaJ5gDO38Eb94RKlrKDxopyV7lg9Xy/QmKUQZiF M4IbPEkJO5mjkPVaC+UERDmeF86/eDWwSxLXCOo2rIiUxHW4XReEDoHBCb9jmdC2 zTdd0XBlNTQ0RDKHgvEqfLHqDICcetzRx81ks36KyKI8bSzMMFK8K15FqQePMn7i tMakPBLEq9amyr9jvFZpKss7P5YRsUSnFAI3vK2SZaPumKZWoPxaOvx8A5aQE4Tj qrOXz3iu6Hm/PxcY8tCwVpj1UwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFD7ZSyOg Iekg6sDLFq3TRlMXr4Q1MB8GA1UdIwQYMBaAFGoeT3KEfrNplSLJPSZ3Pw34OW6+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRTk3OC8zMjIzRjM1RTFE OTgxMUUyOEE4QzJFODIwOEIwMkNEMi9haDVQY29SLXMybVZJc2s5Sm5jX0RmZzVi cjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FoNVBjb1ItczJtVklzazlKbmNfRGZnNWJyNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RTk3OC8zMjIzRjM1RTFEOTgxMUUyOEE4QzJFODIwOEIwMkNEMi9haDVQY29SLXMy bVZJc2s5Sm5jX0RmZzVicjQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBpt8Ev/VlmUht822umTSEsvStS190Tt4/+Qktl5J7yuLIumFRz3h/+ 9dtVZr1EA/4hcqp8kEuMxJWlx5HQvBNx+UCpKWX4dZAW39fdUW/4IP4rG6BA2xCp +EeE+V48grRxYzRhwFQ4j+/whPsb5Xh7XLK7P78A5ckKtH8HEae2eAKZroCYuEUT GTJJfTgwUsOekbdXcQbYxfKxAC95jRzU9/lNJrWy3XNBZhdciGsORq9ux/hCNvJf 5HAqFnm/EHFRNc6rWc4w161+wu80J4/q4lf4DCbi4+6carIINltv6AeaNNnfw9qa R1rjpnWgLUTRohpAguiTeDpkormhvsJE -----END CERTIFICATE-----Generated at Sun May 11 10:35:15 2025 by rpki-client