$ rpki-client -vvf rpki.apnic.net/member_repository/A91D1AC7/81A4C4D66E4311EA949D9922C4F9AE02/akXWGoN3DJDQWMdBUx2NnGtnk1o.mft File: akXWGoN3DJDQWMdBUx2NnGtnk1o.mft (raw, json) Hash identifier: gq7WvYeNtgZ7xlHxUwhzaXnLwvPq2pvf0R3Wb4ub+/E= Subject key identifier: BF:C0:28:38:3D:66:A3:57:DF:A6:50:C0:4B:6D:28:9A:4E:55:A3:4F Authority key identifier: 6A:45:D6:1A:83:77:0C:90:D0:58:C7:41:53:1D:8D:9C:6B:67:93:5A Certificate issuer: /CN=A91D1AC7/serialNumber=6A45D61A83770C90D058C741531D8D9C6B67935A Certificate serial: 0A38 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/akXWGoN3DJDQWMdBUx2NnGtnk1o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D1AC7/81A4C4D66E4311EA949D9922C4F9AE02/akXWGoN3DJDQWMdBUx2NnGtnk1o.mft Manifest number: 0A23 Signing time: Sat 10 May 2025 19:32:10 +0000 Manifest this update: Sat 10 May 2025 19:32:09 +0000 Manifest next update: Sat 17 May 2025 19:32:09 +0000 Files and hashes: 1: akXWGoN3DJDQWMdBUx2NnGtnk1o.crl (hash: DmgR5FE9BUMJ+Z6rkds0y1slechkYDeBJKRb12LFF30=) 2: 57C25DB2E42811EA881AB667C4F9AE02.roa (hash: E9181+VVT+rwNNkc7uINFuNWW6wPgms9gTqr7A850dY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D1AC7/81A4C4D66E4311EA949D9922C4F9AE02/akXWGoN3DJDQWMdBUx2NnGtnk1o.crl rsync://rpki.apnic.net/member_repository/A91D1AC7/81A4C4D66E4311EA949D9922C4F9AE02/akXWGoN3DJDQWMdBUx2NnGtnk1o.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/akXWGoN3DJDQWMdBUx2NnGtnk1o.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 17 May 2025 19:32:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2616 (0xa38) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D1AC7, serialNumber=6A45D61A83770C90D058C741531D8D9C6B67935A Validity Not Before: May 10 19:32:09 2025 GMT Not After : May 17 19:32:09 2025 GMT Subject: CN=681fa9ba-9d7c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:aa:75:77:66:1b:6a:66:c0:24:71:36:ce:af: d1:59:08:6a:26:59:3a:8a:70:4f:76:23:94:3c:52: 90:51:a5:2a:0c:a8:75:8a:bb:a4:cf:4f:88:c2:4f: 3a:d0:44:d9:3f:aa:0c:07:44:8f:21:cb:ff:b2:de: fb:a7:74:e2:90:2e:0d:1c:f1:d0:75:61:50:29:3a: 69:b4:29:9c:38:54:b6:b5:34:bd:94:e5:53:30:14: 16:13:2a:3e:96:99:04:50:ec:eb:e0:89:29:41:e4: e2:d9:11:d5:3c:2c:8e:ac:fc:bf:6e:2b:da:e6:9d: 8d:81:eb:93:8b:b7:98:05:b4:ca:c6:11:8b:30:7f: 82:d2:0d:27:5e:0f:7d:19:16:b0:1f:fd:60:a4:a8: bf:12:4c:3b:90:42:46:be:9c:e8:4f:78:95:8a:fd: d1:d9:11:74:b2:da:6d:ac:1b:5c:fe:a0:0c:a9:ea: 8e:b8:fc:48:62:21:7a:13:fb:2c:26:c6:f1:fb:6d: 1f:ae:8b:8c:50:b2:0f:39:62:1c:a6:a7:55:23:07: 65:f1:b9:9f:de:cf:c7:14:34:f2:b0:66:0d:e9:6b: 03:78:d9:96:f6:7d:fe:3a:f8:84:86:2b:01:2d:c9: f9:d3:8d:bc:94:e3:13:08:90:01:64:e3:cb:38:a8: a9:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BF:C0:28:38:3D:66:A3:57:DF:A6:50:C0:4B:6D:28:9A:4E:55:A3:4F X509v3 Authority Key Identifier: keyid:6A:45:D6:1A:83:77:0C:90:D0:58:C7:41:53:1D:8D:9C:6B:67:93:5A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D1AC7/81A4C4D66E4311EA949D9922C4F9AE02/akXWGoN3DJDQWMdBUx2NnGtnk1o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/akXWGoN3DJDQWMdBUx2NnGtnk1o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D1AC7/81A4C4D66E4311EA949D9922C4F9AE02/akXWGoN3DJDQWMdBUx2NnGtnk1o.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8c:79:69:0e:b8:ce:44:b0:44:a7:73:81:b3:f6:22:67:f4:d8: 92:2d:36:35:f4:85:59:02:41:89:74:12:47:93:c7:23:d3:c4: 18:a2:36:35:dc:04:d0:d8:bd:e1:cf:b2:6a:83:58:df:7a:6d: a0:ba:8d:eb:79:56:26:13:ea:28:91:8c:66:a3:89:40:47:79: cd:69:c9:1e:d1:0e:b1:03:b8:72:d8:0b:d3:82:5d:ee:16:7d: eb:63:af:90:70:a8:8f:7a:1f:65:1a:aa:98:37:9a:67:71:83: e9:d7:7e:b1:fa:c8:3f:76:75:e2:32:9c:a1:37:13:86:8a:3e: 71:21:7c:79:e0:12:9c:52:d4:22:ca:25:8d:0d:83:0b:6c:98: 2f:9e:e5:50:13:d8:36:75:6b:47:ab:62:20:6a:ff:53:6d:d0: b5:f6:f4:1b:74:45:ff:d1:9b:8c:72:85:15:c0:dd:09:d7:60: df:f9:c9:a3:b4:b6:44:cf:0e:16:ea:89:08:c5:c5:98:12:f7: a1:6b:dd:eb:17:a2:5f:72:e5:8e:fc:8d:8f:49:bd:1f:bb:f4: ab:28:fa:18:90:71:d4:97:3f:28:2a:c4:3f:f6:9c:cd:a0:8a: 45:1b:02:2e:d9:39:12:12:90:c4:34:03:60:60:d0:ff:be:fd: 9c:a2:54:a4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCjgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDFBQzcxMTAvBgNVBAUTKDZBNDVENjFBODM3NzBDOTBEMDU4Qzc0MTUzMUQ4RDlD NkI2NzkzNUEwHhcNMjUwNTEwMTkzMjA5WhcNMjUwNTE3MTkzMjA5WjAYMRYwFAYD VQQDEw02ODFmYTliYS05ZDdjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsKp1d2YbambAJHE2zq/RWQhqJlk6inBPdiOUPFKQUaUqDKh1irukz0+Iwk86 0ETZP6oMB0SPIcv/st77p3TikC4NHPHQdWFQKTpptCmcOFS2tTS9lOVTMBQWEyo+ lpkEUOzr4IkpQeTi2RHVPCyOrPy/biva5p2NgeuTi7eYBbTKxhGLMH+C0g0nXg99 GRawH/1gpKi/Ekw7kEJGvpzoT3iViv3R2RF0stptrBtc/qAMqeqOuPxIYiF6E/ss Jsbx+20frouMULIPOWIcpqdVIwdl8bmf3s/HFDTysGYN6WsDeNmW9n3+OviEhisB Lcn50428lOMTCJABZOPLOKipYQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFL/AKDg9 ZqNX36ZQwEttKJpOVaNPMB8GA1UdIwQYMBaAFGpF1hqDdwyQ0FjHQVMdjZxrZ5Na MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMUFDNy84MUE0QzRENjZF NDMxMUVBOTQ5RDk5MjJDNEY5QUUwMi9ha1hXR29OM0RKRFFXTWRCVXgyTm5HdG5r MW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FrWFdHb04zREpEUVdNZEJVeDJObkd0bmsxby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MUFDNy84MUE0QzRENjZFNDMxMUVBOTQ5RDk5MjJDNEY5QUUwMi9ha1hXR29OM0RK RFFXTWRCVXgyTm5HdG5rMW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCMeWkOuM5EsESnc4Gz9iJn9NiSLTY19IVZAkGJdBJHk8cj08QYojY1 3ATQ2L3hz7Jqg1jfem2guo3reVYmE+ookYxmo4lAR3nNacke0Q6xA7hy2AvTgl3u Fn3rY6+QcKiPeh9lGqqYN5pncYPp136x+sg/dnXiMpyhNxOGij5xIXx54BKcUtQi yiWNDYMLbJgvnuVQE9g2dWtHq2Igav9TbdC19vQbdEX/0ZuMcoUVwN0J12Df+cmj tLZEzw4W6okIxcWYEveha93rF6JfcuWO/I2PSb0fu/SrKPoYkHHUlz8oKsQ/9pzN oIpFGwIu2TkSEpDENANgYND/vv2colSk -----END CERTIFICATE-----Generated at Sun May 11 13:24:35 2025 by rpki-client