$ rpki-client -vvf rpki.apnic.net/member_repository/A91DA898/407A25EAD87F11EF91CC5346C4F9AE02/_edM0WVtTsrysOa7wxNdTrhAeCs.mft File: _edM0WVtTsrysOa7wxNdTrhAeCs.mft (raw, json) Hash identifier: b7Tfb0ZQCVKKVg2BjUvGyKTKK8ndltosSMUuW3pf42E= Subject key identifier: CE:7B:A0:03:8B:43:DC:00:E3:B3:70:96:ED:97:9C:1E:31:E6:4A:5A Authority key identifier: FD:E7:4C:D1:65:6D:4E:CA:F2:B0:E6:BB:C3:13:5D:4E:B8:40:78:2B Certificate issuer: /CN=A91DA898/serialNumber=FDE74CD1656D4ECAF2B0E6BBC3135D4EB840782B Certificate serial: 3A Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/_edM0WVtTsrysOa7wxNdTrhAeCs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DA898/407A25EAD87F11EF91CC5346C4F9AE02/_edM0WVtTsrysOa7wxNdTrhAeCs.mft Manifest number: 3A Signing time: Sat 10 May 2025 14:35:18 +0000 Manifest this update: Sat 10 May 2025 14:35:18 +0000 Manifest next update: Sat 17 May 2025 14:35:18 +0000 Files and hashes: 1: _edM0WVtTsrysOa7wxNdTrhAeCs.crl (hash: SG4MuE1kPb8XGXpw6ED14dxUPknP9Wx4lCAeQA9G8SY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DA898/407A25EAD87F11EF91CC5346C4F9AE02/_edM0WVtTsrysOa7wxNdTrhAeCs.crl rsync://rpki.apnic.net/member_repository/A91DA898/407A25EAD87F11EF91CC5346C4F9AE02/_edM0WVtTsrysOa7wxNdTrhAeCs.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/_edM0WVtTsrysOa7wxNdTrhAeCs.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 17 May 2025 14:35:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 58 (0x3a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DA898, serialNumber=FDE74CD1656D4ECAF2B0E6BBC3135D4EB840782B Validity Not Before: May 10 14:35:18 2025 GMT Not After : May 17 14:35:18 2025 GMT Subject: CN=681f6426-1620 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:a0:34:3e:11:1f:b0:10:9b:c0:36:9d:6a:b0: 43:1a:cc:04:04:c5:3b:c6:3f:32:9b:2c:9e:a9:2b: 57:c0:dd:f1:c7:e3:0b:36:56:16:59:5f:1d:47:c6: 5d:93:cb:bd:87:e6:b0:a5:3f:17:d6:e3:c0:e7:ea: 0e:c5:56:4c:33:ad:9e:21:4f:97:a4:f2:65:ac:e7: f3:c7:44:90:b2:d9:d3:00:cb:2f:5f:92:26:37:c1: bc:d1:f7:fe:71:b0:89:d2:60:35:22:7e:61:ad:08: f7:70:a7:21:b0:25:92:52:dc:e1:57:5b:2b:5a:10: ab:91:3d:2f:6e:c8:08:ea:64:24:98:16:6f:f7:fb: 26:e4:24:bd:75:40:70:c9:01:4b:d4:c2:1c:e9:4a: 91:8e:78:e5:e6:b0:22:76:68:51:7b:1e:38:11:2d: 7f:e9:fd:f7:69:62:92:12:6b:a2:1b:d4:d3:0a:06: 59:a6:84:d1:88:f5:06:17:35:07:07:c2:35:2e:64: 6f:b8:21:f3:e3:af:5d:87:24:3f:89:d9:6b:29:e2: 29:cd:0f:1b:db:7c:63:4f:7a:a4:6b:26:11:b6:5e: 67:8e:c7:e2:23:3c:f3:32:2b:f9:c9:42:6a:fb:13: 72:64:73:ef:36:9e:f4:4b:52:32:28:61:2b:1e:e8: 6f:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CE:7B:A0:03:8B:43:DC:00:E3:B3:70:96:ED:97:9C:1E:31:E6:4A:5A X509v3 Authority Key Identifier: keyid:FD:E7:4C:D1:65:6D:4E:CA:F2:B0:E6:BB:C3:13:5D:4E:B8:40:78:2B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DA898/407A25EAD87F11EF91CC5346C4F9AE02/_edM0WVtTsrysOa7wxNdTrhAeCs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/_edM0WVtTsrysOa7wxNdTrhAeCs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DA898/407A25EAD87F11EF91CC5346C4F9AE02/_edM0WVtTsrysOa7wxNdTrhAeCs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0f:e6:85:3b:2d:0a:9f:7f:31:46:87:d3:d0:ab:6c:d0:b6:0e: 6a:a3:1f:be:9a:73:64:07:d9:aa:98:fd:25:3e:c2:94:8b:4b: 47:35:5c:33:b4:88:1a:6d:68:5b:5b:d2:f1:de:8d:e4:59:dd: ed:8e:60:40:04:5a:20:3a:93:1a:7a:6b:4f:cc:0c:7c:e0:b2: f2:87:26:50:66:84:8e:b4:7e:8b:c4:e0:dd:2a:de:4e:da:6a: e3:0e:05:61:99:f3:c8:f3:3e:35:cb:cc:b4:78:b7:da:7b:c7: 45:d7:1f:06:6e:0d:9d:86:fc:22:e8:90:cd:37:ac:cc:c2:87: ea:73:df:8d:fa:fb:cd:1e:fb:6f:35:33:6d:d7:6d:45:eb:31: d9:90:24:70:74:d0:fb:d9:18:14:86:d1:41:fe:78:ab:61:61: 5d:ad:43:f1:79:e2:db:0b:d8:01:02:c4:46:aa:b5:5c:4c:56: 40:f7:ae:00:18:96:cc:98:4d:fd:90:71:58:2a:4d:18:6e:7e: 38:7b:e6:7e:80:9c:25:2e:d2:2c:0b:80:9b:33:2e:b6:d4:35: 5b:6e:91:92:64:37:f5:d9:4e:aa:2d:30:6c:95:16:c7:e5:c6: d8:22:6f:51:c6:b6:0e:3c:1d:b3:14:84:ae:44:38:0d:73:a3: 59:29:35:be -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBOjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFE QTg5ODExMC8GA1UEBRMoRkRFNzRDRDE2NTZENEVDQUYyQjBFNkJCQzMxMzVENEVC ODQwNzgyQjAeFw0yNTA1MTAxNDM1MThaFw0yNTA1MTcxNDM1MThaMBgxFjAUBgNV BAMTDTY4MWY2NDI2LTE2MjAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDgoDQ+ER+wEJvANp1qsEMazAQExTvGPzKbLJ6pK1fA3fHH4ws2VhZZXx1Hxl2T y72H5rClPxfW48Dn6g7FVkwzrZ4hT5ek8mWs5/PHRJCy2dMAyy9fkiY3wbzR9/5x sInSYDUifmGtCPdwpyGwJZJS3OFXWytaEKuRPS9uyAjqZCSYFm/3+ybkJL11QHDJ AUvUwhzpSpGOeOXmsCJ2aFF7HjgRLX/p/fdpYpISa6Ib1NMKBlmmhNGI9QYXNQcH wjUuZG+4IfPjr12HJD+J2Wsp4inNDxvbfGNPeqRrJhG2XmeOx+IjPPMyK/nJQmr7 E3Jkc+82nvRLUjIoYSse6G+tAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUznugA4tD 3ADjs3CW7ZecHjHmSlowHwYDVR0jBBgwFoAU/edM0WVtTsrysOa7wxNdTrhAeCsw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MURBODk4LzQwN0EyNUVBRDg3 RjExRUY5MUNDNTM0NkM0RjlBRTAyL19lZE0wV1Z0VHNyeXNPYTd3eE5kVHJoQWVD cy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvX2VkTTBXVnRUc3J5c09hN3d4TmRUcmhBZUNzLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MURB ODk4LzQwN0EyNUVBRDg3RjExRUY5MUNDNTM0NkM0RjlBRTAyL19lZE0wV1Z0VHNy eXNPYTd3eE5kVHJoQWVDcy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAA/mhTstCp9/MUaH09CrbNC2DmqjH76ac2QH2aqY/SU+wpSLS0c1XDO0 iBptaFtb0vHejeRZ3e2OYEAEWiA6kxp6a0/MDHzgsvKHJlBmhI60fovE4N0q3k7a auMOBWGZ88jzPjXLzLR4t9p7x0XXHwZuDZ2G/CLokM03rMzCh+pz3436+80e+281 M23XbUXrMdmQJHB00PvZGBSG0UH+eKthYV2tQ/F54tsL2AECxEaqtVxMVkD3rgAY lsyYTf2QcVgqTRhufjh75n6AnCUu0iwLgJszLrbUNVtukZJkN/XZTqotMGyVFsfl xtgib1HGtg48HbMUhK5EOA1zo1kpNb4= -----END CERTIFICATE-----Generated at Sun May 11 03:39:47 2025 by rpki-client