$ rpki-client -vvf rpki.apnic.net/member_repository/A91D4D97/1F6146E0567811EC922A3567C4F9AE02/cn1G1OfHecpnYSxgtGVS68IZkPs.mft File: cn1G1OfHecpnYSxgtGVS68IZkPs.mft (raw, json) Hash identifier: acMhFviH7mExqpYiDooRmvMQOBLAzVqqEEqAIOdVudg= Subject key identifier: B9:93:C4:F9:5F:1B:87:F9:61:A6:83:A7:0E:5D:B9:1F:7E:EF:E4:CB Authority key identifier: 72:7D:46:D4:E7:C7:79:CA:67:61:2C:60:B4:65:52:EB:C2:19:90:FB Certificate issuer: /CN=A91D4D97/serialNumber=727D46D4E7C779CA67612C60B46552EBC21990FB Certificate serial: 0447 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cn1G1OfHecpnYSxgtGVS68IZkPs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D4D97/1F6146E0567811EC922A3567C4F9AE02/cn1G1OfHecpnYSxgtGVS68IZkPs.mft Manifest number: 0443 Signing time: Thu 15 May 2025 00:17:02 +0000 Manifest this update: Thu 15 May 2025 00:17:01 +0000 Manifest next update: Thu 22 May 2025 00:17:01 +0000 Files and hashes: 1: cn1G1OfHecpnYSxgtGVS68IZkPs.crl (hash: vBZtVuQMYzufKSJXuYTxtIflinWj668f4hrGjb0GyIo=) 2: A9E2BE54567B11ECB346816BC4F9AE02.roa (hash: TPVU1s6exIqwh/rpq/ezgL4ll5z3zJFyVmt+0YWYn8g=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D4D97/1F6146E0567811EC922A3567C4F9AE02/cn1G1OfHecpnYSxgtGVS68IZkPs.crl rsync://rpki.apnic.net/member_repository/A91D4D97/1F6146E0567811EC922A3567C4F9AE02/cn1G1OfHecpnYSxgtGVS68IZkPs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cn1G1OfHecpnYSxgtGVS68IZkPs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 22 May 2025 00:17:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1095 (0x447) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D4D97, serialNumber=727D46D4E7C779CA67612C60B46552EBC21990FB Validity Not Before: May 15 00:17:01 2025 GMT Not After : May 22 00:17:01 2025 GMT Subject: CN=6825327d-34ec Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:69:66:e1:bb:24:d3:66:b7:89:4c:b4:96:8f: b7:05:39:99:c8:ec:dc:41:ee:00:08:b3:c5:ee:cb: c6:28:a3:1d:ff:33:cc:31:8b:22:35:7d:05:4f:89: b6:d8:81:c8:85:d3:25:48:30:d0:d4:fa:d0:e7:ec: 9b:58:4e:dd:e5:16:4e:61:6f:6f:71:35:d3:81:b5: e8:5b:64:d9:0e:0a:a7:e1:92:64:62:29:7c:5f:13: 9f:45:3d:a2:45:9a:e0:11:f5:86:a4:39:fd:d1:61: 0b:2f:ad:c2:2c:0c:46:1a:35:0f:cd:81:46:08:f1: f7:ff:95:8a:3c:9a:73:3e:45:a5:db:54:db:f6:4a: 93:46:a3:5a:bc:10:8d:4d:72:57:43:33:07:a4:86: f9:ed:5d:82:6c:a4:28:7e:ef:c2:00:38:51:b7:82: 0c:db:4c:27:0b:d4:b4:3b:e4:87:9d:1c:e2:db:03: ec:13:3a:1d:ea:5d:17:02:fb:85:f3:1b:8b:a8:dd: 86:b0:45:74:e1:b5:36:6c:b9:5a:fd:5b:2f:a3:77: 79:69:7a:fd:9e:e7:e2:d5:2b:48:43:1f:d7:b0:f9: e3:9c:20:e8:47:fc:53:6b:12:95:63:5b:b5:87:63: 8f:19:fd:40:a9:7d:19:88:23:e6:8b:16:b5:e9:2d: 7c:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B9:93:C4:F9:5F:1B:87:F9:61:A6:83:A7:0E:5D:B9:1F:7E:EF:E4:CB X509v3 Authority Key Identifier: keyid:72:7D:46:D4:E7:C7:79:CA:67:61:2C:60:B4:65:52:EB:C2:19:90:FB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D4D97/1F6146E0567811EC922A3567C4F9AE02/cn1G1OfHecpnYSxgtGVS68IZkPs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cn1G1OfHecpnYSxgtGVS68IZkPs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D4D97/1F6146E0567811EC922A3567C4F9AE02/cn1G1OfHecpnYSxgtGVS68IZkPs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption d9:7c:a9:3d:36:77:52:c3:da:77:28:c1:a9:23:17:59:88:61: 91:bd:1a:7b:8f:8b:ef:20:d4:42:33:95:c5:a9:96:fb:58:0b: cb:95:50:b9:a5:90:ec:35:81:7b:ea:69:69:7f:ca:67:57:8c: 3f:ca:7b:76:c8:bd:30:94:18:3f:d7:94:66:15:85:8c:29:d9: 1c:db:8e:c8:b5:8b:e5:72:c9:d7:a3:e9:ac:2c:43:fb:55:6f: c3:41:49:5c:88:0f:6e:4f:11:48:41:a8:cd:95:f3:f4:a1:f8: b7:b4:69:c7:a5:58:5f:b9:bd:e1:d4:28:7a:ab:8f:67:b9:64: 7e:a6:c4:64:50:c8:b6:a6:04:36:63:1e:7c:ae:bd:61:cf:99: 95:0b:ab:47:18:23:b5:b8:c9:98:5c:01:f1:62:92:61:85:03: ec:4e:2a:c5:44:c4:db:07:6d:53:56:d5:02:f9:01:bc:5f:a9: 21:44:81:ec:c0:e8:64:6c:88:98:21:e5:e4:12:ca:1f:bd:bf: 22:5a:d1:64:b3:5f:9a:96:6e:6f:a1:a2:3e:1c:c7:b1:2c:71: 41:ef:5d:e8:77:9d:6e:87:54:08:e7:d3:a1:48:14:81:6d:13: 72:6a:11:16:18:af:7c:b1:35:3b:a6:e1:8c:af:ec:a7:dc:a5: 7f:cf:18:c0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBEcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDREOTcxMTAvBgNVBAUTKDcyN0Q0NkQ0RTdDNzc5Q0E2NzYxMkM2MEI0NjU1MkVC QzIxOTkwRkIwHhcNMjUwNTE1MDAxNzAxWhcNMjUwNTIyMDAxNzAxWjAYMRYwFAYD VQQDEw02ODI1MzI3ZC0zNGVjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAumlm4bsk02a3iUy0lo+3BTmZyOzcQe4ACLPF7svGKKMd/zPMMYsiNX0FT4m2 2IHIhdMlSDDQ1PrQ5+ybWE7d5RZOYW9vcTXTgbXoW2TZDgqn4ZJkYil8XxOfRT2i RZrgEfWGpDn90WELL63CLAxGGjUPzYFGCPH3/5WKPJpzPkWl21Tb9kqTRqNavBCN TXJXQzMHpIb57V2CbKQofu/CADhRt4IM20wnC9S0O+SHnRzi2wPsEzod6l0XAvuF 8xuLqN2GsEV04bU2bLla/Vsvo3d5aXr9nufi1StIQx/XsPnjnCDoR/xTaxKVY1u1 h2OPGf1AqX0ZiCPmixa16S185wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLmTxPlf G4f5YaaDpw5duR9+7+TLMB8GA1UdIwQYMBaAFHJ9RtTnx3nKZ2EsYLRlUuvCGZD7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENEQ5Ny8xRjYxNDZFMDU2 NzgxMUVDOTIyQTM1NjdDNEY5QUUwMi9jbjFHMU9mSGVjcG5ZU3hndEdWUzY4SVpr UHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NuMUcxT2ZIZWNwbllTeGd0R1ZTNjhJWmtQcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NEQ5Ny8xRjYxNDZFMDU2NzgxMUVDOTIyQTM1NjdDNEY5QUUwMi9jbjFHMU9mSGVj cG5ZU3hndEdWUzY4SVprUHMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDZfKk9NndSw9p3KMGpIxdZiGGRvRp7j4vvINRCM5XFqZb7WAvLlVC5 pZDsNYF76mlpf8pnV4w/ynt2yL0wlBg/15RmFYWMKdkc247ItYvlcsnXo+msLEP7 VW/DQUlciA9uTxFIQajNlfP0ofi3tGnHpVhfub3h1Ch6q49nuWR+psRkUMi2pgQ2 Yx58rr1hz5mVC6tHGCO1uMmYXAHxYpJhhQPsTirFRMTbB21TVtUC+QG8X6khRIHs wOhkbIiYIeXkEsofvb8iWtFks1+alm5voaI+HMexLHFB713od51uh1QI59OhSBSB bRNyahEWGK98sTU7puGMr+yn3KV/zxjA -----END CERTIFICATE-----Generated at Thu May 15 21:01:37 2025 by rpki-client