$ rpki-client -vvf rpki.apnic.net/member_repository/A91D8100/AAC72E0CFCCE11EA8C19D87FC4F9AE02/K99csyKL7Ic-zuddZ1g1RlOCNJI.mft File: K99csyKL7Ic-zuddZ1g1RlOCNJI.mft (raw, json) Hash identifier: N8w5X6wk2tM0qniB8G+RusykL20xCpMuq0Dkn88anTk= Subject key identifier: 6A:04:11:36:C9:9F:88:BD:4E:1F:84:53:92:CD:F1:0D:A5:00:97:01 Authority key identifier: 2B:DF:5C:B3:22:8B:EC:87:3E:CE:E7:5D:67:58:35:46:53:82:34:92 Certificate issuer: /CN=A91D8100/serialNumber=2BDF5CB3228BEC873ECEE75D6758354653823492 Certificate serial: 07BE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/K99csyKL7Ic-zuddZ1g1RlOCNJI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D8100/AAC72E0CFCCE11EA8C19D87FC4F9AE02/K99csyKL7Ic-zuddZ1g1RlOCNJI.mft Manifest number: 07B4 Signing time: Wed 14 May 2025 21:17:11 +0000 Manifest this update: Wed 14 May 2025 21:17:11 +0000 Manifest next update: Wed 21 May 2025 21:17:11 +0000 Files and hashes: 1: K99csyKL7Ic-zuddZ1g1RlOCNJI.crl (hash: h22HOi26RsZbEWDWE7P57OwyAG5TYwlaiXZcdIPJAHM=) 2: 353932A29B3111EEAFB64748C4F9AE02.roa (hash: 9uk0usjnIlSyDjwPsAY9kObLcGremCDO3bEAYN35jzU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D8100/AAC72E0CFCCE11EA8C19D87FC4F9AE02/K99csyKL7Ic-zuddZ1g1RlOCNJI.crl rsync://rpki.apnic.net/member_repository/A91D8100/AAC72E0CFCCE11EA8C19D87FC4F9AE02/K99csyKL7Ic-zuddZ1g1RlOCNJI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/K99csyKL7Ic-zuddZ1g1RlOCNJI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 21 May 2025 21:17:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1982 (0x7be) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D8100, serialNumber=2BDF5CB3228BEC873ECEE75D6758354653823492 Validity Not Before: May 14 21:17:11 2025 GMT Not After : May 21 21:17:11 2025 GMT Subject: CN=68250857-dbe1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:7a:3e:3a:ef:0c:ba:2b:01:41:d2:d8:60:28: 0b:88:36:df:26:c8:2d:20:e1:cf:65:29:7d:7e:ec: 9b:b4:2c:8b:c0:4f:7e:52:64:78:bc:61:20:70:9e: 86:0f:dc:f3:d8:ff:dc:b4:ed:90:8d:7d:fd:f3:cf: 7a:57:41:af:82:a8:da:59:94:4b:24:2a:54:32:76: 5c:83:5f:9c:93:cb:4a:8d:b9:00:0e:fc:f9:4c:1e: b6:70:08:96:5f:ae:12:4a:82:6f:5e:38:eb:45:01: 71:32:a1:ed:0f:0e:f0:d4:c8:72:14:1d:d2:f1:e7: f9:a8:5d:fc:d7:1f:11:bf:a5:b4:8c:63:39:0a:62: 3c:68:c2:74:1d:d3:1f:b2:5b:fa:2e:b0:c4:6f:32: b8:48:fd:a4:d5:57:7f:b9:b2:c4:cb:b7:2b:8d:ce: 52:a3:ad:f4:68:ec:0d:ee:24:58:0f:d0:4d:ba:4d: cb:67:4d:60:75:58:ca:31:54:51:66:a1:05:78:37: b1:ab:70:ad:c9:dc:ca:ab:6c:bb:7e:1f:af:73:f1: fe:38:88:d7:c0:3d:a5:64:cd:d9:89:30:ea:29:20: f6:53:25:c3:87:f7:26:03:3e:63:eb:89:86:3f:1e: e7:fe:ba:78:8d:97:b7:ec:9f:d8:c7:7e:52:1d:9b: 82:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6A:04:11:36:C9:9F:88:BD:4E:1F:84:53:92:CD:F1:0D:A5:00:97:01 X509v3 Authority Key Identifier: keyid:2B:DF:5C:B3:22:8B:EC:87:3E:CE:E7:5D:67:58:35:46:53:82:34:92 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D8100/AAC72E0CFCCE11EA8C19D87FC4F9AE02/K99csyKL7Ic-zuddZ1g1RlOCNJI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/K99csyKL7Ic-zuddZ1g1RlOCNJI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D8100/AAC72E0CFCCE11EA8C19D87FC4F9AE02/K99csyKL7Ic-zuddZ1g1RlOCNJI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption d8:ef:48:40:43:63:0c:46:24:cc:b7:9b:21:5c:fd:bb:8a:bc: 45:95:51:b4:50:6f:be:42:81:34:de:63:78:25:e0:3d:d3:f8: 22:c2:ed:6f:3e:ea:96:c1:26:a5:47:78:96:1c:ed:c1:0f:3c: e6:9c:e5:89:14:ea:0b:c9:39:7c:d3:db:2b:c2:29:72:14:ca: 73:68:d5:2f:b8:5c:93:82:da:e5:b9:40:39:43:aa:37:7e:67: 45:28:ef:47:ff:dd:72:51:38:cb:e4:5c:3d:26:2d:06:5a:21: e0:43:3a:2f:6a:2f:14:c4:55:84:40:90:fb:c6:a9:33:6c:ba: 61:30:ea:e1:dd:d0:24:f5:fa:30:ce:65:8e:45:a0:b3:46:9a: 50:bc:37:38:7e:b3:ce:84:55:c0:1b:9d:cd:1c:dc:74:18:e6: 58:46:b6:27:22:6c:d3:cb:95:51:59:69:db:bc:d5:61:b9:fa: a3:9a:98:f1:51:cd:e7:e0:30:86:3a:39:87:45:d0:c0:0b:3f: da:13:a4:0d:a6:e1:2d:70:c4:94:21:d6:70:d0:f4:06:75:73: f1:6d:d4:8f:ca:13:59:bc:10:70:cb:dc:90:1d:ae:b2:e7:65: e5:6d:40:b3:80:4d:01:0c:26:04:39:67:fe:de:77:c6:57:bf: df:5a:e5:e3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB74wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDgxMDAxMTAvBgNVBAUTKDJCREY1Q0IzMjI4QkVDODczRUNFRTc1RDY3NTgzNTQ2 NTM4MjM0OTIwHhcNMjUwNTE0MjExNzExWhcNMjUwNTIxMjExNzExWjAYMRYwFAYD VQQDEw02ODI1MDg1Ny1kYmUxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnno+Ou8MuisBQdLYYCgLiDbfJsgtIOHPZSl9fuybtCyLwE9+UmR4vGEgcJ6G D9zz2P/ctO2QjX398896V0GvgqjaWZRLJCpUMnZcg1+ck8tKjbkADvz5TB62cAiW X64SSoJvXjjrRQFxMqHtDw7w1MhyFB3S8ef5qF381x8Rv6W0jGM5CmI8aMJ0HdMf slv6LrDEbzK4SP2k1Vd/ubLEy7crjc5So630aOwN7iRYD9BNuk3LZ01gdVjKMVRR ZqEFeDexq3CtydzKq2y7fh+vc/H+OIjXwD2lZM3ZiTDqKSD2UyXDh/cmAz5j64mG Px7n/rp4jZe37J/Yx35SHZuC9wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGoEETbJ n4i9Th+EU5LN8Q2lAJcBMB8GA1UdIwQYMBaAFCvfXLMii+yHPs7nXWdYNUZTgjSS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEODEwMC9BQUM3MkUwQ0ZD Q0UxMUVBOEMxOUQ4N0ZDNEY5QUUwMi9LOTljc3lLTDdJYy16dWRkWjFnMVJsT0NO SkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0s5OWNzeUtMN0ljLXp1ZGRaMWcxUmxPQ05KSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE ODEwMC9BQUM3MkUwQ0ZDQ0UxMUVBOEMxOUQ4N0ZDNEY5QUUwMi9LOTljc3lLTDdJ Yy16dWRkWjFnMVJsT0NOSkkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDY70hAQ2MMRiTMt5shXP27irxFlVG0UG++QoE03mN4JeA90/giwu1v PuqWwSalR3iWHO3BDzzmnOWJFOoLyTl809srwilyFMpzaNUvuFyTgtrluUA5Q6o3 fmdFKO9H/91yUTjL5Fw9Ji0GWiHgQzovai8UxFWEQJD7xqkzbLphMOrh3dAk9fow zmWORaCzRppQvDc4frPOhFXAG53NHNx0GOZYRrYnImzTy5VRWWnbvNVhufqjmpjx Uc3n4DCGOjmHRdDACz/aE6QNpuEtcMSUIdZw0PQGdXPxbdSPyhNZvBBwy9yQHa6y 52XlbUCzgE0BDCYEOWf+3nfGV7/fWuXj -----END CERTIFICATE-----Generated at Thu May 15 19:37:13 2025 by rpki-client