$ rpki-client -vvf rpki.apnic.net/member_repository/A91D7156/B9F0844CF23D11E9AF842724C4F9AE02/A0a2NPJj9jaEI52232S7us33-KQ.mft File: A0a2NPJj9jaEI52232S7us33-KQ.mft (raw, json) Hash identifier: oXInbj0z0dW5+b5G2XxuvWCLMAhydGTIgiQez+L2MFc= Subject key identifier: F5:6F:3E:10:3C:4A:C1:13:0B:E0:7A:12:75:37:C9:52:B9:C8:22:80 Authority key identifier: 03:46:B6:34:F2:63:F6:36:84:23:9D:B6:DF:64:BB:BA:CD:F7:F8:A4 Certificate issuer: /CN=A91D7156/serialNumber=0346B634F263F63684239DB6DF64BBBACDF7F8A4 Certificate serial: 10E9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/A0a2NPJj9jaEI52232S7us33-KQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D7156/B9F0844CF23D11E9AF842724C4F9AE02/A0a2NPJj9jaEI52232S7us33-KQ.mft Manifest number: 0ED2 Signing time: Sat 10 May 2025 18:00:00 +0000 Manifest this update: Sat 10 May 2025 18:00:00 +0000 Manifest next update: Sat 17 May 2025 18:00:00 +0000 Files and hashes: 1: A0a2NPJj9jaEI52232S7us33-KQ.crl (hash: nYw1ax+gVjHhMIo/IeT1oYMvxGAV2L3AZkKkwbZhDZg=) 2: 5CF5B0D0C0FC11EFBD950B83C4F9AE02.roa (hash: YaMSZkZmb/43IpCXVJI7v5m+sQOENYgB4njMtXBa97I=) 3: 2D5961DC1EBC11F0B2B33B09C4F9AE02.roa (hash: kT106haiRM4ZjdYNWHcXydA/jvJTOUaP5rchRM73yq8=) 4: 26DA1E16247411EA8E1A1178C4F9AE02.roa (hash: 2d6B7dOvusdbolEglGxOmkSZdHYDTyLSYjs57fzYYnk=) 5: 161D8022A24611EF966F6286C4F9AE02.roa (hash: ceTZVpw7rCFHUlXqkaohAqOzq6O3kLILB+r7fOW1zYs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D7156/B9F0844CF23D11E9AF842724C4F9AE02/A0a2NPJj9jaEI52232S7us33-KQ.crl rsync://rpki.apnic.net/member_repository/A91D7156/B9F0844CF23D11E9AF842724C4F9AE02/A0a2NPJj9jaEI52232S7us33-KQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/A0a2NPJj9jaEI52232S7us33-KQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 17 May 2025 17:59:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4329 (0x10e9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D7156, serialNumber=0346B634F263F63684239DB6DF64BBBACDF7F8A4 Validity Not Before: May 10 18:00:00 2025 GMT Not After : May 17 18:00:00 2025 GMT Subject: CN=681f9420-5615 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:d0:8a:28:e2:1a:ae:5b:a8:42:a7:5d:eb:82: 97:6f:66:9d:f0:b3:49:bd:bf:cc:53:16:18:a7:ce: fc:a4:58:26:20:d0:d2:da:bd:a5:0f:fd:22:2c:af: a9:00:de:c0:3e:a6:67:fa:25:ae:02:69:40:be:79: 09:5c:67:16:4c:55:e9:de:37:6b:1e:4a:36:d6:71: 60:a5:db:61:55:a7:73:17:d4:2a:fe:19:a9:25:99: a2:52:9f:3a:24:41:18:a3:8d:23:b8:0e:b1:be:f5: 87:a7:a5:a0:73:eb:ef:f2:a7:ee:b2:a2:81:4a:2b: 1d:09:10:b4:12:f6:cf:d6:2d:b7:d9:0b:a5:de:e6: 06:ff:c5:00:32:04:b9:2b:88:86:6a:61:f0:ef:73: 54:83:2f:5a:c3:87:6b:82:06:8a:09:62:b9:30:ad: c2:7e:b9:eb:54:35:c5:0b:a5:ff:d5:38:49:5a:3a: 6a:e4:27:ed:d3:f4:a3:43:55:eb:d1:57:2a:73:bb: fc:f5:84:91:aa:72:0f:8c:57:e2:18:e0:88:a5:b3: ce:e6:9e:71:08:e0:69:4f:ef:b6:6f:c6:48:91:1b: bc:b4:10:e1:9d:86:3c:8c:0b:59:fd:ba:a8:0a:ec: 0d:18:64:f7:99:76:30:aa:b3:ac:76:fa:d3:c7:5d: 31:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F5:6F:3E:10:3C:4A:C1:13:0B:E0:7A:12:75:37:C9:52:B9:C8:22:80 X509v3 Authority Key Identifier: keyid:03:46:B6:34:F2:63:F6:36:84:23:9D:B6:DF:64:BB:BA:CD:F7:F8:A4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D7156/B9F0844CF23D11E9AF842724C4F9AE02/A0a2NPJj9jaEI52232S7us33-KQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/A0a2NPJj9jaEI52232S7us33-KQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D7156/B9F0844CF23D11E9AF842724C4F9AE02/A0a2NPJj9jaEI52232S7us33-KQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a9:1a:f9:26:ee:b0:aa:71:09:2f:04:d0:74:15:aa:e4:f7:ce: 19:6a:06:89:1f:5a:b0:d6:b1:2d:4d:0d:f0:6a:63:c1:e3:95: 73:cf:fe:e7:c6:01:2c:a0:bf:cd:72:b2:26:d1:09:3d:9a:e7: bf:f3:14:42:f6:c0:00:4f:94:d7:89:cf:0a:90:06:1d:c6:a2: a6:ae:56:bf:95:bf:70:83:d6:73:b7:94:b7:94:81:40:19:20: 2b:a7:52:c0:3f:cd:9e:1a:e0:ca:95:ce:ec:3e:3c:86:7e:84: 62:60:dd:c8:7a:91:c6:3e:5a:d0:3e:05:c7:bd:71:58:9c:5a: 6b:ae:4a:6f:83:39:3b:2c:1a:be:16:6f:dd:fc:94:7e:72:e4: 02:ee:d5:35:10:bd:37:49:eb:a7:8b:0e:f3:41:44:ed:37:68: dc:42:dc:b0:f8:be:fe:e6:17:12:71:9d:3c:ff:8f:43:d8:ab: 61:24:67:1c:7b:34:a6:ee:0b:38:d3:55:51:cc:54:9b:0e:e4: 69:44:5d:2f:c2:95:4c:78:e4:63:07:6e:04:b1:df:c8:ab:5e: cd:82:be:95:0d:51:69:ad:ca:0c:e1:3e:6c:65:1d:3f:6d:fa: 45:4e:13:98:c5:11:c2:7d:61:38:36:90:3d:92:10:e0:6c:19: 09:d5:a1:4d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEOkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDcxNTYxMTAvBgNVBAUTKDAzNDZCNjM0RjI2M0Y2MzY4NDIzOURCNkRGNjRCQkJB Q0RGN0Y4QTQwHhcNMjUwNTEwMTgwMDAwWhcNMjUwNTE3MTgwMDAwWjAYMRYwFAYD VQQDEw02ODFmOTQyMC01NjE1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAztCKKOIarluoQqdd64KXb2ad8LNJvb/MUxYYp878pFgmINDS2r2lD/0iLK+p AN7APqZn+iWuAmlAvnkJXGcWTFXp3jdrHko21nFgpdthVadzF9Qq/hmpJZmiUp86 JEEYo40juA6xvvWHp6Wgc+vv8qfusqKBSisdCRC0EvbP1i232Qul3uYG/8UAMgS5 K4iGamHw73NUgy9aw4drggaKCWK5MK3CfrnrVDXFC6X/1ThJWjpq5Cft0/SjQ1Xr 0Vcqc7v89YSRqnIPjFfiGOCIpbPO5p5xCOBpT++2b8ZIkRu8tBDhnYY8jAtZ/bqo CuwNGGT3mXYwqrOsdvrTx10xMQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPVvPhA8 SsETC+B6EnU3yVK5yCKAMB8GA1UdIwQYMBaAFANGtjTyY/Y2hCOdtt9ku7rN9/ik MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENzE1Ni9COUYwODQ0Q0Yy M0QxMUU5QUY4NDI3MjRDNEY5QUUwMi9BMGEyTlBKajlqYUVJNTIyMzJTN3VzMzMt S1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0EwYTJOUEpqOWphRUk1MjIzMlM3dXMzMy1LUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NzE1Ni9COUYwODQ0Q0YyM0QxMUU5QUY4NDI3MjRDNEY5QUUwMi9BMGEyTlBKajlq YUVJNTIyMzJTN3VzMzMtS1EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCpGvkm7rCqcQkvBNB0Fark984ZagaJH1qw1rEtTQ3wamPB45Vzz/7n xgEsoL/NcrIm0Qk9mue/8xRC9sAAT5TXic8KkAYdxqKmrla/lb9wg9Zzt5S3lIFA GSArp1LAP82eGuDKlc7sPjyGfoRiYN3IepHGPlrQPgXHvXFYnFprrkpvgzk7LBq+ Fm/d/JR+cuQC7tU1EL03Seuniw7zQUTtN2jcQtyw+L7+5hcScZ08/49D2KthJGcc ezSm7gs401VRzFSbDuRpRF0vwpVMeORjB24Esd/Iq17Ngr6VDVFprcoM4T5sZR0/ bfpFThOYxRHCfWE4NpA9khDgbBkJ1aFN -----END CERTIFICATE-----Generated at Mon May 12 01:26:08 2025 by rpki-client