$ rpki-client -vvf rpki.apnic.net/member_repository/A91D2659/C468E9C6F0C311E9926CCD0EC4F9AE02/anyGILARkTWk4pZxECAuepIQ_XY.mft File: anyGILARkTWk4pZxECAuepIQ_XY.mft (raw, json) Hash identifier: uA0ujR5znYJQoN0dHGKxPXCMAN5zEeLPD8GeYYVQQOI= Subject key identifier: 38:10:28:AF:25:1C:26:20:A5:99:E7:86:54:D4:52:E4:B3:6A:C5:B1 Authority key identifier: 6A:7C:86:20:B0:11:91:35:A4:E2:96:71:10:20:2E:7A:92:10:FD:76 Certificate issuer: /CN=A91D2659/serialNumber=6A7C8620B0119135A4E2967110202E7A9210FD76 Certificate serial: 0CA5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/anyGILARkTWk4pZxECAuepIQ_XY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D2659/C468E9C6F0C311E9926CCD0EC4F9AE02/anyGILARkTWk4pZxECAuepIQ_XY.mft Manifest number: 0C9F Signing time: Mon 12 May 2025 18:01:33 +0000 Manifest this update: Mon 12 May 2025 18:01:33 +0000 Manifest next update: Mon 19 May 2025 18:01:33 +0000 Files and hashes: 1: anyGILARkTWk4pZxECAuepIQ_XY.crl (hash: WWxvjk+JHQCGfLj62p006ku8RTpC2PSkWvKMp3uUf7A=) 2: 3ED2E738F0C511E9AD7DCC11C4F9AE02.roa (hash: sDU0CzCwuoT0jsGzITGNqVvjEqL0/qHnbm4MS2vPAPc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D2659/C468E9C6F0C311E9926CCD0EC4F9AE02/anyGILARkTWk4pZxECAuepIQ_XY.crl rsync://rpki.apnic.net/member_repository/A91D2659/C468E9C6F0C311E9926CCD0EC4F9AE02/anyGILARkTWk4pZxECAuepIQ_XY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/anyGILARkTWk4pZxECAuepIQ_XY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 19 May 2025 18:01:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3237 (0xca5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D2659, serialNumber=6A7C8620B0119135A4E2967110202E7A9210FD76 Validity Not Before: May 12 18:01:33 2025 GMT Not After : May 19 18:01:33 2025 GMT Subject: CN=6822377d-b45a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:6d:05:49:f4:11:a3:1c:5b:20:f6:93:64:92: 22:86:c5:14:98:07:5c:e7:7c:d5:da:8c:8a:ae:03: b1:bb:24:89:02:68:f5:00:da:93:23:ac:cb:42:57: a0:25:1a:71:1c:54:41:88:ca:8c:d2:71:65:cb:9e: 5d:3a:93:c6:d9:06:fc:3a:72:ee:21:29:0d:b1:10: 38:8a:c1:b1:f5:2b:bb:ca:b0:1b:cc:cc:b5:a1:d3: b5:1c:61:08:82:85:0b:fb:d3:ca:9e:a7:e2:21:c3: 52:2d:5d:62:2d:75:d2:41:db:25:f0:5c:37:f6:11: a3:1c:10:73:90:51:cc:40:f0:45:d4:ac:34:6b:e5: 95:7d:01:5f:24:a7:bf:09:2d:ac:de:b2:0c:e7:2c: f0:7e:ad:62:e7:65:6a:9e:92:22:6f:ac:da:d7:e8: 8a:78:64:f8:4b:3c:3a:07:23:b1:18:3a:77:fe:94: ec:f2:67:02:ca:99:5c:4c:81:c3:dc:a3:57:31:48: ef:f3:13:d7:85:bb:d7:bb:c2:3b:d5:c2:78:67:85: b8:ba:f7:28:26:1c:27:d4:b3:5d:74:ee:20:f0:f1: 1b:5e:7d:18:7e:6b:ab:f8:68:41:f5:65:b4:3b:0a: 17:2d:11:b2:c5:19:ff:14:83:65:bc:70:33:c6:7d: c7:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 38:10:28:AF:25:1C:26:20:A5:99:E7:86:54:D4:52:E4:B3:6A:C5:B1 X509v3 Authority Key Identifier: keyid:6A:7C:86:20:B0:11:91:35:A4:E2:96:71:10:20:2E:7A:92:10:FD:76 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D2659/C468E9C6F0C311E9926CCD0EC4F9AE02/anyGILARkTWk4pZxECAuepIQ_XY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/anyGILARkTWk4pZxECAuepIQ_XY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D2659/C468E9C6F0C311E9926CCD0EC4F9AE02/anyGILARkTWk4pZxECAuepIQ_XY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1d:d0:22:26:8d:ea:4b:cf:03:8f:bf:97:16:30:f8:e4:c9:8a: 3f:be:32:b5:ec:b4:9f:58:b8:f1:88:bc:57:c9:db:f1:5f:fc: 92:09:13:61:71:9d:cc:52:85:4e:07:1f:1f:99:1f:b1:dd:ca: c9:eb:50:b5:de:18:27:27:bb:64:d5:da:3d:e9:b9:04:2f:8d: 24:0a:0f:bd:6f:c6:3f:43:1b:fa:eb:95:fd:1f:61:95:84:90: 60:f6:83:4f:a7:6d:eb:63:43:a5:4c:c0:b1:25:fa:f1:e4:d0: 37:55:50:2f:c1:03:c4:67:31:84:e0:ed:0b:c1:01:89:4d:ca: 11:78:01:03:0c:7d:a0:50:2c:17:df:3d:83:4c:a5:1d:1c:32: 99:08:81:d8:6b:fa:54:86:22:81:a2:85:c4:dd:86:cc:b2:c4: 17:c9:ed:79:5a:b5:50:9d:4b:9e:8e:c9:6c:04:8d:af:33:4a: c7:0e:2a:81:3f:82:92:b0:99:8a:98:17:3e:41:ec:eb:dd:ec: 47:46:c2:fa:b7:15:ff:a1:0f:3b:9a:56:fb:38:bf:1c:46:57: f8:28:fc:b0:e1:57:76:63:d6:2a:60:7c:78:1d:95:b4:cd:83: fb:d5:2d:d2:76:80:9b:0f:dc:21:2b:94:b0:a9:65:60:51:ee: c9:fc:99:30 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDKUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDI2NTkxMTAvBgNVBAUTKDZBN0M4NjIwQjAxMTkxMzVBNEUyOTY3MTEwMjAyRTdB OTIxMEZENzYwHhcNMjUwNTEyMTgwMTMzWhcNMjUwNTE5MTgwMTMzWjAYMRYwFAYD VQQDEw02ODIyMzc3ZC1iNDVhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwG0FSfQRoxxbIPaTZJIihsUUmAdc53zV2oyKrgOxuySJAmj1ANqTI6zLQleg JRpxHFRBiMqM0nFly55dOpPG2Qb8OnLuISkNsRA4isGx9Su7yrAbzMy1odO1HGEI goUL+9PKnqfiIcNSLV1iLXXSQdsl8Fw39hGjHBBzkFHMQPBF1Kw0a+WVfQFfJKe/ CS2s3rIM5yzwfq1i52VqnpIib6za1+iKeGT4Szw6ByOxGDp3/pTs8mcCyplcTIHD 3KNXMUjv8xPXhbvXu8I71cJ4Z4W4uvcoJhwn1LNddO4g8PEbXn0Yfmur+GhB9WW0 OwoXLRGyxRn/FINlvHAzxn3HfwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDgQKK8l HCYgpZnnhlTUUuSzasWxMB8GA1UdIwQYMBaAFGp8hiCwEZE1pOKWcRAgLnqSEP12 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMjY1OS9DNDY4RTlDNkYw QzMxMUU5OTI2Q0NEMEVDNEY5QUUwMi9hbnlHSUxBUmtUV2s0cFp4RUNBdWVwSVFf WFkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FueUdJTEFSa1RXazRwWnhFQ0F1ZXBJUV9YWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MjY1OS9DNDY4RTlDNkYwQzMxMUU5OTI2Q0NEMEVDNEY5QUUwMi9hbnlHSUxBUmtU V2s0cFp4RUNBdWVwSVFfWFkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAd0CImjepLzwOPv5cWMPjkyYo/vjK17LSfWLjxiLxXydvxX/ySCRNh cZ3MUoVOBx8fmR+x3crJ61C13hgnJ7tk1do96bkEL40kCg+9b8Y/Qxv665X9H2GV hJBg9oNPp23rY0OlTMCxJfrx5NA3VVAvwQPEZzGE4O0LwQGJTcoReAEDDH2gUCwX 3z2DTKUdHDKZCIHYa/pUhiKBooXE3YbMssQXye15WrVQnUuejslsBI2vM0rHDiqB P4KSsJmKmBc+Qezr3exHRsL6txX/oQ87mlb7OL8cRlf4KPyw4Vd2Y9YqYHx4HZW0 zYP71S3SdoCbD9whK5SwqWVgUe7J/Jkw -----END CERTIFICATE-----Generated at Tue May 13 11:33:36 2025 by rpki-client