$ rpki-client -vvf rpki.apnic.net/member_repository/A91D313B/CCE99D7E47DB11EFAEA4B02DC4F9AE02/gOknW25uvGrXWF12r7akALUULD8.mft File: gOknW25uvGrXWF12r7akALUULD8.mft (raw, json) Hash identifier: QZcI2+ABJA3obWWoGXkCVkXx76mZi5e+Ees/MbcbIN0= Subject key identifier: AC:3D:D8:87:D6:0A:80:0F:40:8C:97:09:AC:16:1F:74:62:31:9C:77 Authority key identifier: 80:E9:27:5B:6E:6E:BC:6A:D7:58:5D:76:AF:B6:A4:00:B5:14:2C:3F Certificate issuer: /CN=A91D313B/serialNumber=80E9275B6E6EBC6AD7585D76AFB6A400B5142C3F Certificate serial: 9A Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/gOknW25uvGrXWF12r7akALUULD8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D313B/CCE99D7E47DB11EFAEA4B02DC4F9AE02/gOknW25uvGrXWF12r7akALUULD8.mft Manifest number: 98 Signing time: Fri 09 May 2025 05:24:13 +0000 Manifest this update: Fri 09 May 2025 05:24:13 +0000 Manifest next update: Fri 16 May 2025 05:24:13 +0000 Files and hashes: 1: gOknW25uvGrXWF12r7akALUULD8.crl (hash: HyH7m928byZIYphOadwqr5lusEDkMPrgVTE0BMnrHus=) 2: 3446813047DC11EFA05E932EC4F9AE02.roa (hash: zLr4joEY+P4VPtuV8/aIjLwuAD3fE/qCh+JRJT72wJE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D313B/CCE99D7E47DB11EFAEA4B02DC4F9AE02/gOknW25uvGrXWF12r7akALUULD8.crl rsync://rpki.apnic.net/member_repository/A91D313B/CCE99D7E47DB11EFAEA4B02DC4F9AE02/gOknW25uvGrXWF12r7akALUULD8.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/gOknW25uvGrXWF12r7akALUULD8.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 16 May 2025 05:24:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 154 (0x9a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D313B, serialNumber=80E9275B6E6EBC6AD7585D76AFB6A400B5142C3F Validity Not Before: May 9 05:24:13 2025 GMT Not After : May 16 05:24:13 2025 GMT Subject: CN=681d917d-f170 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:9e:06:fd:85:74:90:78:ac:3a:7a:2f:0b:41: 31:c2:d5:fc:92:75:f3:39:1d:36:b4:0c:6f:1c:72: b0:eb:97:6a:60:76:1c:cf:dc:15:57:4f:39:2b:0b: 35:2c:e2:5d:ad:bb:9d:c4:67:cf:59:32:17:86:5f: 09:c1:af:e2:2f:8f:69:a0:83:29:7b:26:df:52:50: 3d:82:87:d2:b6:c1:4b:de:7c:a7:41:32:79:d8:1a: c6:32:c5:c7:09:42:cf:ac:21:e0:b0:07:59:cf:3c: 24:7d:4c:ff:ca:f4:d7:c5:2b:11:30:c6:3e:8a:34: e3:2c:61:74:a7:e9:e2:57:29:9f:c9:0f:28:93:9b: fb:75:86:3d:85:0f:4a:10:70:89:3c:8c:5e:07:f8: 7d:c1:ae:3a:c2:dd:dd:ca:30:a2:08:6e:be:5e:3d: b6:1b:ff:ac:16:80:e6:a5:94:9b:b1:86:a9:7a:51: f5:03:47:bc:33:06:50:46:c2:db:51:d6:4b:e2:d2: e0:6f:92:30:ab:ce:1b:37:cb:65:22:d2:fc:0e:04: 41:ee:b1:c0:95:46:4e:0b:2d:b0:da:a5:3f:1b:9f: f4:af:75:e5:bd:4b:69:53:d6:41:4d:7a:b5:b4:bf: 32:0f:70:b3:07:90:2e:c6:54:0a:bb:5f:6b:39:00: e4:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AC:3D:D8:87:D6:0A:80:0F:40:8C:97:09:AC:16:1F:74:62:31:9C:77 X509v3 Authority Key Identifier: keyid:80:E9:27:5B:6E:6E:BC:6A:D7:58:5D:76:AF:B6:A4:00:B5:14:2C:3F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D313B/CCE99D7E47DB11EFAEA4B02DC4F9AE02/gOknW25uvGrXWF12r7akALUULD8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/gOknW25uvGrXWF12r7akALUULD8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D313B/CCE99D7E47DB11EFAEA4B02DC4F9AE02/gOknW25uvGrXWF12r7akALUULD8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9f:b5:cb:b6:43:60:09:45:29:29:9c:a5:cd:90:97:c4:b1:d4: 70:81:0e:c1:c7:86:ce:00:11:7f:0e:c1:d3:79:11:2f:b5:8b: 99:6d:bd:ba:6b:41:cd:d9:e7:4b:3f:30:d0:5b:8a:ca:9f:9e: 15:51:f5:2f:c9:0a:26:4d:9d:9f:2b:92:23:7e:e3:59:60:aa: 21:c7:f6:04:8e:86:23:33:f5:98:38:6a:9f:3d:ef:ee:28:34: 26:aa:63:79:ca:07:c8:88:0e:ea:a6:a3:c3:df:c3:d7:63:86: 6c:fb:59:b5:f8:59:c7:bf:18:2a:c1:9b:4d:ce:5b:3c:d0:ba: 9b:a4:57:2d:9d:88:1f:eb:e2:c2:a7:ce:ee:69:3c:91:28:39: 25:90:06:b0:8d:8d:c4:b0:bf:b2:1a:f7:91:cc:03:90:04:0e: 7e:52:15:fa:14:04:a6:e8:d8:78:40:14:79:9a:9e:22:52:6a: 2b:d4:7b:d7:10:cf:56:09:41:1b:2c:7c:3f:b3:02:14:cf:30: 87:2b:ce:ef:2e:aa:1c:fd:fd:ef:ce:75:43:12:e4:39:a2:3a: 00:61:12:4b:44:bb:a0:82:dc:cc:bb:75:3b:c6:91:04:b1:2a: 56:2f:43:2e:2d:a9:14:a4:b5:ae:c2:6b:8f:e3:d5:29:65:0a: 30:91:93:6c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAJowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDMxM0IxMTAvBgNVBAUTKDgwRTkyNzVCNkU2RUJDNkFENzU4NUQ3NkFGQjZBNDAw QjUxNDJDM0YwHhcNMjUwNTA5MDUyNDEzWhcNMjUwNTE2MDUyNDEzWjAYMRYwFAYD VQQDEw02ODFkOTE3ZC1mMTcwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4p4G/YV0kHisOnovC0ExwtX8knXzOR02tAxvHHKw65dqYHYcz9wVV085Kws1 LOJdrbudxGfPWTIXhl8Jwa/iL49poIMpeybfUlA9gofStsFL3nynQTJ52BrGMsXH CULPrCHgsAdZzzwkfUz/yvTXxSsRMMY+ijTjLGF0p+niVymfyQ8ok5v7dYY9hQ9K EHCJPIxeB/h9wa46wt3dyjCiCG6+Xj22G/+sFoDmpZSbsYapelH1A0e8MwZQRsLb UdZL4tLgb5Iwq84bN8tlItL8DgRB7rHAlUZOCy2w2qU/G5/0r3XlvUtpU9ZBTXq1 tL8yD3CzB5AuxlQKu19rOQDkJwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKw92IfW CoAPQIyXCawWH3RiMZx3MB8GA1UdIwQYMBaAFIDpJ1tubrxq11hddq+2pAC1FCw/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMzEzQi9DQ0U5OUQ3RTQ3 REIxMUVGQUVBNEIwMkRDNEY5QUUwMi9nT2tuVzI1dXZHclhXRjEycjdha0FMVVVM RDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2dPa25XMjV1dkdyWFdGMTJyN2FrQUxVVUxEOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MzEzQi9DQ0U5OUQ3RTQ3REIxMUVGQUVBNEIwMkRDNEY5QUUwMi9nT2tuVzI1dXZH clhXRjEycjdha0FMVVVMRDgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCftcu2Q2AJRSkpnKXNkJfEsdRwgQ7Bx4bOABF/DsHTeREvtYuZbb26 a0HN2edLPzDQW4rKn54VUfUvyQomTZ2fK5IjfuNZYKohx/YEjoYjM/WYOGqfPe/u KDQmqmN5ygfIiA7qpqPD38PXY4Zs+1m1+FnHvxgqwZtNzls80LqbpFctnYgf6+LC p87uaTyRKDklkAawjY3EsL+yGveRzAOQBA5+UhX6FASm6Nh4QBR5mp4iUmor1HvX EM9WCUEbLHw/swIUzzCHK87vLqoc/f3vznVDEuQ5ojoAYRJLRLuggtzMu3U7xpEE sSpWL0MuLakUpLWuwmuP49UpZQowkZNs -----END CERTIFICATE-----Generated at Sat May 10 21:09:46 2025 by rpki-client