$ rpki-client -vvf rpki.apnic.net/member_repository/A91DA13E/54D6A50E06B511EB9372D32BC4F9AE02/3oqNpw4WUAnRQNn2JFJNxNR51eg.mft File: 3oqNpw4WUAnRQNn2JFJNxNR51eg.mft (raw, json) Hash identifier: /GKKBIZeD7srWUke9Vjf7KppeVIZnZbB8NC5dbznYm4= Subject key identifier: 13:85:70:A0:7F:55:F9:E4:C0:50:D3:81:13:E0:BD:01:5B:9B:1D:26 Authority key identifier: DE:8A:8D:A7:0E:16:50:09:D1:40:D9:F6:24:52:4D:C4:D4:79:D5:E8 Certificate issuer: /CN=A91DA13E/serialNumber=DE8A8DA70E165009D140D9F624524DC4D479D5E8 Certificate serial: 07BD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3oqNpw4WUAnRQNn2JFJNxNR51eg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DA13E/54D6A50E06B511EB9372D32BC4F9AE02/3oqNpw4WUAnRQNn2JFJNxNR51eg.mft Manifest number: 07A9 Signing time: Sat 10 May 2025 20:58:46 +0000 Manifest this update: Sat 10 May 2025 20:58:45 +0000 Manifest next update: Sat 17 May 2025 20:58:45 +0000 Files and hashes: 1: 3oqNpw4WUAnRQNn2JFJNxNR51eg.crl (hash: hEmm+INgdvA/GbihqFNZ5mB3nj8MPFyMspFzLK6FL6M=) 2: 29D6DCB2849211EE8F9C5870C4F9AE02.roa (hash: uenMBzygNtm8pOViOrVCvIQk55vDxQTLDfSdNpW+OjU=) 3: B9A51B1AFA4F11EDB82FCB1FC4F9AE02.roa (hash: pC04v+mNv7zR9Y+4n59q7qozKs19qd8Pl1ty97dV8dI=) 4: 298965AC06B611EBBBFD6B2CC4F9AE02.roa (hash: 4189wGj0EPbmCiBfwKVkbJETVgwnkFWeQOcnoateYoU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DA13E/54D6A50E06B511EB9372D32BC4F9AE02/3oqNpw4WUAnRQNn2JFJNxNR51eg.crl rsync://rpki.apnic.net/member_repository/A91DA13E/54D6A50E06B511EB9372D32BC4F9AE02/3oqNpw4WUAnRQNn2JFJNxNR51eg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3oqNpw4WUAnRQNn2JFJNxNR51eg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 17 May 2025 20:58:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1981 (0x7bd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DA13E, serialNumber=DE8A8DA70E165009D140D9F624524DC4D479D5E8 Validity Not Before: May 10 20:58:45 2025 GMT Not After : May 17 20:58:45 2025 GMT Subject: CN=681fbe05-2027 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:3a:54:9a:80:22:3e:fb:a2:51:27:c7:ae:88: ad:81:21:cc:43:53:bf:e8:b6:e4:28:99:30:a7:f5: aa:45:66:1a:59:5d:c7:b9:8c:2d:77:66:e4:9c:c0: 10:d6:a5:c8:76:1d:bd:1a:9d:03:6a:30:ec:95:28: 8a:5e:16:bc:0b:e4:1f:45:31:d5:f0:58:c0:32:8a: 74:a9:b9:74:95:8e:d3:28:2e:0f:66:fe:13:08:e1: 13:95:86:d7:2d:05:22:a1:58:2a:34:39:ce:18:24: ff:23:39:29:5a:1e:06:4f:32:fd:23:48:e0:48:91: 95:f9:3d:ec:19:d5:42:04:82:ad:cb:4c:e0:24:79: f4:5e:5d:61:e0:5d:dd:dd:a9:1f:54:17:df:aa:1e: 02:1a:56:5e:3b:d2:9c:98:a0:03:a4:91:c8:8d:e7: 48:f7:a6:9e:30:b8:55:96:e5:ff:23:4e:eb:1e:cd: f6:7d:38:02:de:b9:9b:81:c7:f5:ae:8c:7a:65:a2: a7:ce:dd:d4:05:4e:60:d6:ec:a0:37:05:c6:4a:76: c9:ec:a9:e8:6b:ff:31:1f:12:00:24:b1:35:86:4e: 77:50:50:dc:ef:6d:8a:f3:9b:57:bd:f6:c9:a1:4e: 98:60:6c:85:67:67:bd:90:05:f7:1f:b3:a8:25:06: 5a:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 13:85:70:A0:7F:55:F9:E4:C0:50:D3:81:13:E0:BD:01:5B:9B:1D:26 X509v3 Authority Key Identifier: keyid:DE:8A:8D:A7:0E:16:50:09:D1:40:D9:F6:24:52:4D:C4:D4:79:D5:E8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DA13E/54D6A50E06B511EB9372D32BC4F9AE02/3oqNpw4WUAnRQNn2JFJNxNR51eg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3oqNpw4WUAnRQNn2JFJNxNR51eg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DA13E/54D6A50E06B511EB9372D32BC4F9AE02/3oqNpw4WUAnRQNn2JFJNxNR51eg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9c:b9:99:24:ce:b2:f3:56:ac:5c:12:ec:87:b2:b8:bf:6d:a2: 53:5d:5a:9c:86:b2:43:7c:2d:86:16:ea:51:99:52:ef:28:0a: 18:05:8e:eb:e3:32:bf:b1:f8:9b:03:10:58:75:b8:7f:a6:3b: 0b:b1:18:fc:f2:b1:b1:15:e3:7f:e5:0c:eb:db:fe:88:79:23: df:e7:1b:28:34:56:37:7e:31:e2:98:38:18:98:33:77:23:8b: 43:8f:82:f7:92:5f:fd:11:7b:0e:7f:86:ee:f3:7a:5f:2c:a9: 9d:f4:6b:2d:a6:46:0a:71:94:85:25:17:e8:a6:1c:49:2c:7d: 30:0d:3a:91:1f:09:2c:04:b4:3a:38:a7:77:05:d6:32:56:de: e9:25:2f:70:2c:dd:9a:eb:b9:59:df:3e:2b:29:5f:01:ca:16: d7:ba:f4:17:91:eb:20:20:0c:1a:14:04:d6:c9:2d:98:f9:3f: e6:a9:ba:b2:e8:d9:9c:08:62:e8:02:ed:f1:52:14:ff:75:58: 03:49:1f:2d:18:18:e5:12:ec:3f:3e:0a:64:7c:73:0f:63:b8: 42:d6:14:00:9c:7b:64:ba:5a:3a:c8:aa:0d:4a:f7:0f:4e:cc: 40:ca:d0:32:f4:6a:ed:98:7d:a5:93:dc:0d:da:8e:60:19:22: 59:d7:67:c5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB70wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REExM0UxMTAvBgNVBAUTKERFOEE4REE3MEUxNjUwMDlEMTQwRDlGNjI0NTI0REM0 RDQ3OUQ1RTgwHhcNMjUwNTEwMjA1ODQ1WhcNMjUwNTE3MjA1ODQ1WjAYMRYwFAYD VQQDEw02ODFmYmUwNS0yMDI3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvTpUmoAiPvuiUSfHroitgSHMQ1O/6LbkKJkwp/WqRWYaWV3HuYwtd2bknMAQ 1qXIdh29Gp0DajDslSiKXha8C+QfRTHV8FjAMop0qbl0lY7TKC4PZv4TCOETlYbX LQUioVgqNDnOGCT/IzkpWh4GTzL9I0jgSJGV+T3sGdVCBIKty0zgJHn0Xl1h4F3d 3akfVBffqh4CGlZeO9KcmKADpJHIjedI96aeMLhVluX/I07rHs32fTgC3rmbgcf1 rox6ZaKnzt3UBU5g1uygNwXGSnbJ7Knoa/8xHxIAJLE1hk53UFDc722K85tXvfbJ oU6YYGyFZ2e9kAX3H7OoJQZaAwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBOFcKB/ VfnkwFDTgRPgvQFbmx0mMB8GA1UdIwQYMBaAFN6KjacOFlAJ0UDZ9iRSTcTUedXo MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQTEzRS81NEQ2QTUwRTA2 QjUxMUVCOTM3MkQzMkJDNEY5QUUwMi8zb3FOcHc0V1VBblJRTm4ySkZKTnhOUjUx ZWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzNvcU5wdzRXVUFuUlFObjJKRkpOeE5SNTFlZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QTEzRS81NEQ2QTUwRTA2QjUxMUVCOTM3MkQzMkJDNEY5QUUwMi8zb3FOcHc0V1VB blJRTm4ySkZKTnhOUjUxZWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCcuZkkzrLzVqxcEuyHsri/baJTXVqchrJDfC2GFupRmVLvKAoYBY7r 4zK/sfibAxBYdbh/pjsLsRj88rGxFeN/5Qzr2/6IeSPf5xsoNFY3fjHimDgYmDN3 I4tDj4L3kl/9EXsOf4bu83pfLKmd9GstpkYKcZSFJRfophxJLH0wDTqRHwksBLQ6 OKd3BdYyVt7pJS9wLN2a67lZ3z4rKV8ByhbXuvQXkesgIAwaFATWyS2Y+T/mqbqy 6NmcCGLoAu3xUhT/dVgDSR8tGBjlEuw/PgpkfHMPY7hC1hQAnHtkulo6yKoNSvcP TsxAytAy9GrtmH2lk9wN2o5gGSJZ12fF -----END CERTIFICATE-----Generated at Mon May 12 01:34:42 2025 by rpki-client