$ rpki-client -vvf rpki.apnic.net/member_repository/A91D37E4/36FB11441D5A11EBB7988D17C4F9AE02/i9qKH-B7RsMwYwRqcl6rhWQrnC0.mft File: i9qKH-B7RsMwYwRqcl6rhWQrnC0.mft (raw, json) Hash identifier: d8ckxSKR7XaAhJXAQs2psBHO/sEmYYR1g9UHWdyHqLc= Subject key identifier: 00:F2:E3:13:E4:5D:06:68:30:9C:81:FF:8D:AD:25:87:D1:D0:3A:2F Authority key identifier: 8B:DA:8A:1F:E0:7B:46:C3:30:63:04:6A:72:5E:AB:85:64:2B:9C:2D Certificate issuer: /CN=A91D37E4/serialNumber=8BDA8A1FE07B46C33063046A725EAB85642B9C2D Certificate serial: 0764 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/i9qKH-B7RsMwYwRqcl6rhWQrnC0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D37E4/36FB11441D5A11EBB7988D17C4F9AE02/i9qKH-B7RsMwYwRqcl6rhWQrnC0.mft Manifest number: 0759 Signing time: Mon 12 May 2025 21:24:14 +0000 Manifest this update: Mon 12 May 2025 21:24:14 +0000 Manifest next update: Mon 19 May 2025 21:24:14 +0000 Files and hashes: 1: i9qKH-B7RsMwYwRqcl6rhWQrnC0.crl (hash: FHE6zwhp1b0vTpImPy9FcrzjBSl2EKWBx80MRPdWjbs=) 2: D933655E23B511EBA7BDD50FC4F9AE02.roa (hash: 54RasFpInkk46NqANXGRnQQRyrIL2lzCqTjJuJoAKLM=) 3: BD764EAE1D5B11EBAB008D19C4F9AE02.roa (hash: eITJ7zYLAhKWDtK1wNVCYFqUDK3lmpweT8MrA45hMHY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D37E4/36FB11441D5A11EBB7988D17C4F9AE02/i9qKH-B7RsMwYwRqcl6rhWQrnC0.crl rsync://rpki.apnic.net/member_repository/A91D37E4/36FB11441D5A11EBB7988D17C4F9AE02/i9qKH-B7RsMwYwRqcl6rhWQrnC0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/i9qKH-B7RsMwYwRqcl6rhWQrnC0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 19 May 2025 21:24:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1892 (0x764) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D37E4, serialNumber=8BDA8A1FE07B46C33063046A725EAB85642B9C2D Validity Not Before: May 12 21:24:14 2025 GMT Not After : May 19 21:24:14 2025 GMT Subject: CN=682266fe-ff1d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:3b:b9:5f:af:54:f6:3b:40:2f:9e:f4:68:ce: 43:6c:8a:bf:36:87:70:78:34:01:5d:5f:3b:37:d0: 36:25:48:b6:be:cf:53:c9:a4:5e:73:53:fb:ad:46: 4b:21:31:3b:91:b5:15:3e:98:d3:81:3b:34:06:64: b1:3c:7e:2f:f2:ce:7c:c9:0c:02:4e:e0:30:56:b5: 99:03:e2:0c:36:76:45:a5:57:05:f7:a6:05:ae:81: 86:ff:bf:36:b4:ad:44:ef:16:de:6b:87:00:02:96: 0d:fa:00:54:91:21:52:45:c0:e8:2b:94:19:5a:8a: f1:e8:84:87:ef:7b:f7:f7:2f:55:49:eb:c1:de:72: 00:52:50:10:ec:45:a7:e4:96:ac:de:eb:74:81:c7: a2:0d:9b:19:8c:38:95:85:aa:c6:a7:e3:eb:82:a6: a6:47:41:70:07:8e:05:21:f6:10:f8:cd:82:1c:48: db:c2:ed:42:ed:77:ee:82:95:8a:10:77:b9:9f:a4: 28:60:77:a2:f2:2d:a1:10:b3:8e:7e:33:f0:ab:07: 3d:cd:e2:8b:e2:fe:ef:33:c4:df:c5:f5:13:ec:c0: 46:28:fb:8f:d5:b1:bb:d1:cd:32:83:d5:e9:2d:56: 08:00:8e:24:8e:7c:be:b0:59:99:d8:43:28:32:f1: 4d:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 00:F2:E3:13:E4:5D:06:68:30:9C:81:FF:8D:AD:25:87:D1:D0:3A:2F X509v3 Authority Key Identifier: keyid:8B:DA:8A:1F:E0:7B:46:C3:30:63:04:6A:72:5E:AB:85:64:2B:9C:2D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D37E4/36FB11441D5A11EBB7988D17C4F9AE02/i9qKH-B7RsMwYwRqcl6rhWQrnC0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/i9qKH-B7RsMwYwRqcl6rhWQrnC0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D37E4/36FB11441D5A11EBB7988D17C4F9AE02/i9qKH-B7RsMwYwRqcl6rhWQrnC0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1e:ec:9e:d1:72:71:f3:ef:70:f5:36:bb:da:fd:45:a9:ac:fa: 99:af:a2:8a:8c:89:f5:58:00:cd:8c:62:27:c3:07:d0:17:c9: 5d:da:0f:45:ca:6c:da:84:62:40:20:98:cf:97:ca:ff:57:e1: 80:86:80:eb:48:a2:e7:f8:3f:44:0f:a2:cc:36:c8:7d:ab:07: 1d:c3:0c:44:fe:ff:91:01:0b:e1:b9:0f:33:75:fa:73:ed:e8: 2e:95:e2:e0:fa:c9:92:5e:f8:31:de:05:bb:c4:55:4c:20:b4: 64:0d:3c:45:ec:fd:cd:d6:c4:d9:74:fb:0d:ef:7f:02:a1:a3: 20:4b:99:12:18:e5:1c:5f:a4:eb:f9:ca:8a:c0:24:05:19:16: ec:0d:6b:dd:5a:29:83:82:ab:0f:a3:6a:bd:71:b8:fd:06:f9: 28:d3:30:de:b8:0b:58:59:b2:f0:8a:60:3f:fd:56:5d:85:94: cc:0d:8e:19:93:56:1c:00:9a:a7:42:2a:38:b5:11:31:8b:de: 78:fe:dd:3e:1c:75:55:8a:ba:3e:75:37:31:c9:46:e7:e2:e6: 2c:e9:de:8f:ab:9f:00:ed:ef:c7:1e:50:b1:31:03:9c:24:e5: 05:c5:86:7f:88:32:7c:1e:f8:c3:e5:d1:77:fb:ce:66:0e:57: 5a:6a:02:a9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB2QwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDM3RTQxMTAvBgNVBAUTKDhCREE4QTFGRTA3QjQ2QzMzMDYzMDQ2QTcyNUVBQjg1 NjQyQjlDMkQwHhcNMjUwNTEyMjEyNDE0WhcNMjUwNTE5MjEyNDE0WjAYMRYwFAYD VQQDEw02ODIyNjZmZS1mZjFkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtDu5X69U9jtAL570aM5DbIq/NodweDQBXV87N9A2JUi2vs9TyaRec1P7rUZL ITE7kbUVPpjTgTs0BmSxPH4v8s58yQwCTuAwVrWZA+IMNnZFpVcF96YFroGG/782 tK1E7xbea4cAApYN+gBUkSFSRcDoK5QZWorx6ISH73v39y9VSevB3nIAUlAQ7EWn 5Jas3ut0gceiDZsZjDiVharGp+PrgqamR0FwB44FIfYQ+M2CHEjbwu1C7XfugpWK EHe5n6QoYHei8i2hELOOfjPwqwc9zeKL4v7vM8TfxfUT7MBGKPuP1bG70c0yg9Xp LVYIAI4kjny+sFmZ2EMoMvFNawIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFADy4xPk XQZoMJyB/42tJYfR0DovMB8GA1UdIwQYMBaAFIvaih/ge0bDMGMEanJeq4VkK5wt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMzdFNC8zNkZCMTE0NDFE NUExMUVCQjc5ODhEMTdDNEY5QUUwMi9pOXFLSC1CN1JzTXdZd1JxY2w2cmhXUXJu QzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2k5cUtILUI3UnNNd1l3UnFjbDZyaFdRcm5DMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MzdFNC8zNkZCMTE0NDFENUExMUVCQjc5ODhEMTdDNEY5QUUwMi9pOXFLSC1CN1Jz TXdZd1JxY2w2cmhXUXJuQzAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAe7J7RcnHz73D1Nrva/UWprPqZr6KKjIn1WADNjGInwwfQF8ld2g9F ymzahGJAIJjPl8r/V+GAhoDrSKLn+D9ED6LMNsh9qwcdwwxE/v+RAQvhuQ8zdfpz 7eguleLg+smSXvgx3gW7xFVMILRkDTxF7P3N1sTZdPsN738CoaMgS5kSGOUcX6Tr +cqKwCQFGRbsDWvdWimDgqsPo2q9cbj9Bvko0zDeuAtYWbLwimA//VZdhZTMDY4Z k1YcAJqnQio4tRExi954/t0+HHVViro+dTcxyUbn4uYs6d6Pq58A7e/HHlCxMQOc JOUFxYZ/iDJ8HvjD5dF3+85mDldaagKp -----END CERTIFICATE-----Generated at Tue May 13 02:36:04 2025 by rpki-client