$ rpki-client -vvf rpki.apnic.net/member_repository/A91D74A6/7171BBF2D19C11EF83CEAD3CC4F9AE02/3IDIXlEBCJqyQl0_yRd5haASXG4.mft File: 3IDIXlEBCJqyQl0_yRd5haASXG4.mft (raw, json) Hash identifier: UbmHqksA2B7uEt62l5zZyDdyrCsblsguz5Xr6kvxY4Q= Subject key identifier: 9A:2D:75:AA:25:7A:C2:3B:85:1B:26:BF:98:3C:19:D5:ED:82:E6:CE Authority key identifier: DC:80:C8:5E:51:01:08:9A:B2:42:5D:3F:C9:17:79:85:A0:12:5C:6E Certificate issuer: /CN=A91D74A6/serialNumber=DC80C85E5101089AB2425D3FC9177985A0125C6E Certificate serial: 53 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/3IDIXlEBCJqyQl0_yRd5haASXG4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D74A6/7171BBF2D19C11EF83CEAD3CC4F9AE02/3IDIXlEBCJqyQl0_yRd5haASXG4.mft Manifest number: 4B Signing time: Sun 11 May 2025 06:13:44 +0000 Manifest this update: Sun 11 May 2025 06:13:43 +0000 Manifest next update: Sun 18 May 2025 06:13:43 +0000 Files and hashes: 1: 3IDIXlEBCJqyQl0_yRd5haASXG4.crl (hash: to0xVHPqG8kzrQ5cHoYKkGzytTjDSDQ6+hNglc5e79U=) 2: 727850D8D3EF11EFB596E00CC4F9AE02.roa (hash: hvte1LGzH8lQs5HlVIeT4otbezAzwXIr7d7vqIECmd8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D74A6/7171BBF2D19C11EF83CEAD3CC4F9AE02/3IDIXlEBCJqyQl0_yRd5haASXG4.crl rsync://rpki.apnic.net/member_repository/A91D74A6/7171BBF2D19C11EF83CEAD3CC4F9AE02/3IDIXlEBCJqyQl0_yRd5haASXG4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/3IDIXlEBCJqyQl0_yRd5haASXG4.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 18 May 2025 06:13:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 83 (0x53) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D74A6, serialNumber=DC80C85E5101089AB2425D3FC9177985A0125C6E Validity Not Before: May 11 06:13:43 2025 GMT Not After : May 18 06:13:43 2025 GMT Subject: CN=68204017-5b54 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:65:95:ca:af:b8:34:c6:3d:6d:94:90:f8:f3: dd:2a:b0:2a:51:b0:c5:9c:9a:1a:bf:32:b3:d8:f8: ab:a3:bb:ef:98:1f:11:a8:57:64:7a:d4:a3:c3:00: 86:b4:24:d5:ed:56:f5:f0:f1:aa:eb:5a:5b:c7:67: 92:52:47:ed:f8:aa:f8:8e:58:b5:ef:c0:74:ba:7c: 1a:e7:f1:8a:5a:0d:39:d2:23:e3:16:20:85:6d:5c: ac:09:86:55:4a:a4:b2:95:3e:65:9b:1f:24:d5:e9: 4b:a6:2e:dc:4b:ca:ea:58:29:4a:2f:16:1b:20:f2: 3e:97:cb:ac:42:4a:8f:cb:09:78:49:88:08:b1:e1: 97:e0:3c:02:1d:fe:45:da:92:6b:e8:e4:e8:39:bd: 9a:62:99:86:c0:65:3e:6d:34:9b:64:9f:35:d5:e5: f3:ed:35:0e:76:49:2f:17:39:fb:3f:82:b7:e9:d6: 10:9f:39:b2:67:b0:05:54:b1:aa:50:e1:a4:5a:dd: e5:96:b4:61:a4:87:0c:2f:c0:59:6e:75:de:6a:19: cb:cb:dc:e7:67:12:a0:08:ab:ac:b6:ec:9e:8d:a0: 14:60:03:f7:db:13:17:bc:1f:cd:93:32:0b:70:4c: 81:14:ed:e4:9e:db:42:c1:7f:2e:60:a8:82:b2:96: 27:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9A:2D:75:AA:25:7A:C2:3B:85:1B:26:BF:98:3C:19:D5:ED:82:E6:CE X509v3 Authority Key Identifier: keyid:DC:80:C8:5E:51:01:08:9A:B2:42:5D:3F:C9:17:79:85:A0:12:5C:6E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D74A6/7171BBF2D19C11EF83CEAD3CC4F9AE02/3IDIXlEBCJqyQl0_yRd5haASXG4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/3IDIXlEBCJqyQl0_yRd5haASXG4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D74A6/7171BBF2D19C11EF83CEAD3CC4F9AE02/3IDIXlEBCJqyQl0_yRd5haASXG4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7a:bf:ae:f7:c3:84:65:bc:ed:e2:08:6c:a1:3e:61:64:27:25: 06:3f:b5:c2:f8:a0:5f:2b:6e:31:a9:06:97:04:cf:bc:99:e7: cd:ab:db:48:c1:2b:2d:b9:1b:96:a3:92:ce:94:13:c3:eb:b1: 9c:84:c6:4d:84:c9:a5:21:c7:2e:b9:e1:5e:aa:20:27:f0:dd: ec:25:53:e8:fa:16:49:48:60:b2:ae:42:d4:c3:72:2e:1f:3e: c1:83:b6:a9:1a:87:87:bc:0a:99:bd:b8:59:e0:24:17:a3:34: 8e:f5:a3:14:c7:21:a9:af:04:f6:40:83:f1:a3:ac:cb:42:7b: a0:3f:fb:3b:aa:ff:5f:7b:66:9e:fe:13:19:b1:76:a1:e1:05: 53:ac:f7:93:59:d9:7e:d0:ac:b9:19:23:a5:cc:a4:99:61:0a: ec:cb:c0:a8:e3:98:4f:d9:4a:78:1f:18:45:5b:4d:82:72:79: 90:d7:10:94:46:db:b3:6d:09:d0:10:e6:7b:f3:ff:1b:50:87: 5c:28:af:87:ee:e2:23:91:85:bc:60:fe:2b:7c:55:38:87:c0: 9f:38:4a:2d:24:44:da:df:be:67:14:21:5a:0c:79:e0:43:3e: f7:fa:84:a0:0b:5a:80:1f:f5:e2:13:fd:70:b2:10:6f:24:71: 3b:ff:8f:1b -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBUzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFE NzRBNjExMC8GA1UEBRMoREM4MEM4NUU1MTAxMDg5QUIyNDI1RDNGQzkxNzc5ODVB MDEyNUM2RTAeFw0yNTA1MTEwNjEzNDNaFw0yNTA1MTgwNjEzNDNaMBgxFjAUBgNV BAMTDTY4MjA0MDE3LTViNTQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDJZZXKr7g0xj1tlJD4890qsCpRsMWcmhq/MrPY+Kuju++YHxGoV2R61KPDAIa0 JNXtVvXw8arrWlvHZ5JSR+34qviOWLXvwHS6fBrn8YpaDTnSI+MWIIVtXKwJhlVK pLKVPmWbHyTV6UumLtxLyupYKUovFhsg8j6Xy6xCSo/LCXhJiAix4ZfgPAId/kXa kmvo5Og5vZpimYbAZT5tNJtknzXV5fPtNQ52SS8XOfs/grfp1hCfObJnsAVUsapQ 4aRa3eWWtGGkhwwvwFludd5qGcvL3OdnEqAIq6y27J6NoBRgA/fbExe8H82TMgtw TIEU7eSe20LBfy5gqIKylie3AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUmi11qiV6 wjuFGya/mDwZ1e2C5s4wHwYDVR0jBBgwFoAU3IDIXlEBCJqyQl0/yRd5haASXG4w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUQ3NEE2LzcxNzFCQkYyRDE5 QzExRUY4M0NFQUQzQ0M0RjlBRTAyLzNJRElYbEVCQ0pxeVFsMF95UmQ1aGFBU1hH NC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvM0lESVhsRUJDSnF5UWwwX3lSZDVoYUFTWEc0LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUQ3 NEE2LzcxNzFCQkYyRDE5QzExRUY4M0NFQUQzQ0M0RjlBRTAyLzNJRElYbEVCQ0px eVFsMF95UmQ1aGFBU1hHNC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAHq/rvfDhGW87eIIbKE+YWQnJQY/tcL4oF8rbjGpBpcEz7yZ582r20jB Ky25G5ajks6UE8PrsZyExk2EyaUhxy654V6qICfw3ewlU+j6FklIYLKuQtTDci4f PsGDtqkah4e8Cpm9uFngJBejNI71oxTHIamvBPZAg/GjrMtCe6A/+zuq/197Zp7+ ExmxdqHhBVOs95NZ2X7QrLkZI6XMpJlhCuzLwKjjmE/ZSngfGEVbTYJyeZDXEJRG 27NtCdAQ5nvz/xtQh1wor4fu4iORhbxg/it8VTiHwJ84Si0kRNrfvmcUIVoMeeBD Pvf6hKALWoAf9eIT/XCyEG8kcTv/jxs= -----END CERTIFICATE-----Generated at Sun May 11 22:13:43 2025 by rpki-client