$ rpki-client -vvf rpki.apnic.net/member_repository/A91CEDD3/D0663328705E11EDACAD885BC4F9AE02/97sXL8rsr7-evvJQihVCZDOuyd4.mft File: 97sXL8rsr7-evvJQihVCZDOuyd4.mft (raw, json) Hash identifier: aqUeLdLPZ1c2iFPAHba5KFn/QqwuPGDZpnkIXmbo4wI= Subject key identifier: AA:46:AB:F0:DC:62:8F:6B:EA:54:01:B1:68:95:05:8E:99:AA:22:15 Authority key identifier: F7:BB:17:2F:CA:EC:AF:BF:9E:BE:F2:50:8A:15:42:64:33:AE:C9:DE Certificate issuer: /CN=A91CEDD3/serialNumber=F7BB172FCAECAFBF9EBEF2508A15426433AEC9DE Certificate serial: 01D4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/97sXL8rsr7-evvJQihVCZDOuyd4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CEDD3/D0663328705E11EDACAD885BC4F9AE02/97sXL8rsr7-evvJQihVCZDOuyd4.mft Manifest number: 01CE Signing time: Fri 09 May 2025 02:07:52 +0000 Manifest this update: Fri 09 May 2025 02:07:51 +0000 Manifest next update: Fri 16 May 2025 02:07:51 +0000 Files and hashes: 1: 97sXL8rsr7-evvJQihVCZDOuyd4.crl (hash: cEo2hFjnMMzRkzYxZCzbYMd52LGCk+ClPr6w/CjBu7E=) 2: C714C5A6706211EDA9CCDB76C4F9AE02.roa (hash: AIFISpe4UUSb102JMnJULUVmkKzdqcMZuRuO6tOo8G0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CEDD3/D0663328705E11EDACAD885BC4F9AE02/97sXL8rsr7-evvJQihVCZDOuyd4.crl rsync://rpki.apnic.net/member_repository/A91CEDD3/D0663328705E11EDACAD885BC4F9AE02/97sXL8rsr7-evvJQihVCZDOuyd4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/97sXL8rsr7-evvJQihVCZDOuyd4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 16 May 2025 02:07:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 468 (0x1d4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CEDD3, serialNumber=F7BB172FCAECAFBF9EBEF2508A15426433AEC9DE Validity Not Before: May 9 02:07:51 2025 GMT Not After : May 16 02:07:51 2025 GMT Subject: CN=681d6378-77ee Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:b1:79:b9:e6:6f:f7:59:33:1c:f8:35:63:40: 51:f5:a3:00:72:24:18:7f:49:98:81:90:ad:7e:da: c5:8e:97:1f:4d:cc:93:34:d2:5c:8a:ed:95:75:94: af:c1:2c:b7:60:a8:da:6c:c7:a5:ab:22:40:ea:02: b2:7f:3e:30:14:bb:3c:84:c6:ed:f8:35:e8:92:db: 2e:2e:8c:a3:f4:89:b8:f7:9f:23:9d:45:c2:62:f9: 75:d1:53:74:29:11:bb:7c:fd:73:5a:84:14:67:72: b6:41:e7:d2:94:26:b2:58:c7:7c:3f:74:3a:62:3f: 0f:4f:c3:40:a5:04:f1:d9:05:1f:2c:67:ec:6e:1a: ec:e2:8c:b7:d7:5b:7b:58:4e:5f:fe:fd:32:ec:bd: e4:b0:c3:be:72:cf:01:c7:ce:5d:70:df:5b:09:69: 9c:f8:6c:30:9b:3b:54:f6:e4:21:a6:e4:2a:5a:2b: fe:33:42:ed:6a:49:59:37:8d:20:ba:41:26:48:9a: 24:18:e9:dd:3c:51:02:e0:cb:59:ff:25:ae:b2:e4: 34:d8:94:d7:63:fa:1e:3b:01:91:2d:db:d7:1b:47: f6:99:c7:ec:7e:fb:c4:d3:29:fa:82:11:af:74:90: d3:73:95:b0:41:e9:bd:ca:f6:ba:a1:a7:b1:e3:0d: ef:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AA:46:AB:F0:DC:62:8F:6B:EA:54:01:B1:68:95:05:8E:99:AA:22:15 X509v3 Authority Key Identifier: keyid:F7:BB:17:2F:CA:EC:AF:BF:9E:BE:F2:50:8A:15:42:64:33:AE:C9:DE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CEDD3/D0663328705E11EDACAD885BC4F9AE02/97sXL8rsr7-evvJQihVCZDOuyd4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/97sXL8rsr7-evvJQihVCZDOuyd4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CEDD3/D0663328705E11EDACAD885BC4F9AE02/97sXL8rsr7-evvJQihVCZDOuyd4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6d:c9:49:29:cb:0c:85:2a:d5:3f:bf:da:44:cd:e9:ac:de:69: 0c:21:5c:b3:8c:ae:85:56:36:e2:82:e3:df:0c:fd:d5:72:4e: 46:ea:98:44:b8:d7:4d:d5:ec:3f:f7:86:a0:dc:af:3d:23:ac: 6f:42:6d:15:f8:46:22:40:1c:5e:b5:49:74:f1:c2:10:cd:d4: 53:5a:a8:ef:4b:e4:a1:3d:5c:0e:87:47:f3:25:4e:cc:f7:6a: a3:6d:54:c8:8e:97:45:05:c8:a8:10:7f:45:b0:9b:c1:d5:7d: 6c:28:0f:e0:19:56:cd:87:57:02:ec:a1:41:aa:32:e2:9a:d2: ed:4f:94:ad:07:b2:a7:01:5b:cc:1c:0c:15:c9:10:f7:b2:27: 9a:7c:6d:62:23:af:e6:12:3c:bc:91:82:09:82:12:b2:33:a4: 5e:7e:89:df:b0:c1:1f:a3:6c:52:9e:46:07:1b:2c:09:cc:18: dc:d8:46:1b:68:8c:e3:2f:ef:a8:31:2d:1f:e8:3d:97:4b:bd: 94:85:52:78:4e:eb:3f:f0:82:f0:1f:75:0e:0c:7a:54:3d:d9: 1e:63:78:29:18:89:bd:dd:cc:b3:8a:c0:5a:17:04:eb:b0:b2: f4:8e:64:92:15:b6:61:93:c9:6f:45:e1:48:38:5b:84:05:d6: c2:d2:91:53 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAdQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0VERDMxMTAvBgNVBAUTKEY3QkIxNzJGQ0FFQ0FGQkY5RUJFRjI1MDhBMTU0MjY0 MzNBRUM5REUwHhcNMjUwNTA5MDIwNzUxWhcNMjUwNTE2MDIwNzUxWjAYMRYwFAYD VQQDEw02ODFkNjM3OC03N2VlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAm7F5ueZv91kzHPg1Y0BR9aMAciQYf0mYgZCtftrFjpcfTcyTNNJciu2VdZSv wSy3YKjabMelqyJA6gKyfz4wFLs8hMbt+DXoktsuLoyj9Im4958jnUXCYvl10VN0 KRG7fP1zWoQUZ3K2QefSlCayWMd8P3Q6Yj8PT8NApQTx2QUfLGfsbhrs4oy311t7 WE5f/v0y7L3ksMO+cs8Bx85dcN9bCWmc+GwwmztU9uQhpuQqWiv+M0LtaklZN40g ukEmSJokGOndPFEC4MtZ/yWusuQ02JTXY/oeOwGRLdvXG0f2mcfsfvvE0yn6ghGv dJDTc5WwQem9yva6oaex4w3vBQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKpGq/Dc Yo9r6lQBsWiVBY6ZqiIVMB8GA1UdIwQYMBaAFPe7Fy/K7K+/nr7yUIoVQmQzrsne MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRUREMy9EMDY2MzMyODcw NUUxMUVEQUNBRDg4NUJDNEY5QUUwMi85N3NYTDhyc3I3LWV2dkpRaWhWQ1pET3V5 ZDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzk3c1hMOHJzcjctZXZ2SlFpaFZDWkRPdXlkNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RUREMy9EMDY2MzMyODcwNUUxMUVEQUNBRDg4NUJDNEY5QUUwMi85N3NYTDhyc3I3 LWV2dkpRaWhWQ1pET3V5ZDQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBtyUkpywyFKtU/v9pEzems3mkMIVyzjK6FVjbiguPfDP3Vck5G6phE uNdN1ew/94ag3K89I6xvQm0V+EYiQBxetUl08cIQzdRTWqjvS+ShPVwOh0fzJU7M 92qjbVTIjpdFBcioEH9FsJvB1X1sKA/gGVbNh1cC7KFBqjLimtLtT5StB7KnAVvM HAwVyRD3sieafG1iI6/mEjy8kYIJghKyM6RefonfsMEfo2xSnkYHGywJzBjc2EYb aIzjL++oMS0f6D2XS72UhVJ4Tus/8ILwH3UODHpUPdkeY3gpGIm93cyzisBaFwTr sLL0jmSSFbZhk8lvReFIOFuEBdbC0pFT -----END CERTIFICATE-----Generated at Sat May 10 21:59:15 2025 by rpki-client