$ rpki-client -vvf rpki.apnic.net/member_repository/A91DA8C2/95A69BE2005311F08E73E14AC4F9AE02/0k_MrTrOf_5b8Cpqj2jAYC4cG1E.mft File: 0k_MrTrOf_5b8Cpqj2jAYC4cG1E.mft (raw, json) Hash identifier: zaMHE9TTDRWrusp4/Tvn8tyfoCMvPybjBC++KY33K+w= Subject key identifier: 4F:59:26:16:D8:7B:2A:68:13:67:EF:EE:F1:B5:33:0F:EC:34:58:DB Authority key identifier: D2:4F:CC:AD:3A:CE:7F:FE:5B:F0:2A:6A:8F:68:C0:60:2E:1C:1B:51 Certificate issuer: /CN=A91DA8C2/serialNumber=D24FCCAD3ACE7FFE5BF02A6A8F68C0602E1C1B51 Certificate serial: 20 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0k_MrTrOf_5b8Cpqj2jAYC4cG1E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DA8C2/95A69BE2005311F08E73E14AC4F9AE02/0k_MrTrOf_5b8Cpqj2jAYC4cG1E.mft Manifest number: 1F Signing time: Fri 09 May 2025 06:54:53 +0000 Manifest this update: Fri 09 May 2025 06:54:52 +0000 Manifest next update: Fri 16 May 2025 06:54:52 +0000 Files and hashes: 1: 0k_MrTrOf_5b8Cpqj2jAYC4cG1E.crl (hash: esej0D7TIcYsPVUjPhl2dNJPL+zhKx30UVLV0rDLreA=) 2: 32EE2B68005411F08A6FEB4BC4F9AE02.roa (hash: wwcr+8+DOyZmloRteEL56x1j3vM+7vfdbP5INKVgy7U=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DA8C2/95A69BE2005311F08E73E14AC4F9AE02/0k_MrTrOf_5b8Cpqj2jAYC4cG1E.crl rsync://rpki.apnic.net/member_repository/A91DA8C2/95A69BE2005311F08E73E14AC4F9AE02/0k_MrTrOf_5b8Cpqj2jAYC4cG1E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0k_MrTrOf_5b8Cpqj2jAYC4cG1E.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 16 May 2025 06:54:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 32 (0x20) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DA8C2, serialNumber=D24FCCAD3ACE7FFE5BF02A6A8F68C0602E1C1B51 Validity Not Before: May 9 06:54:52 2025 GMT Not After : May 16 06:54:52 2025 GMT Subject: CN=681da6bd-37f3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:15:cb:88:45:e1:d7:68:2d:41:e1:f3:1e:3e: a7:f6:ce:3f:74:cf:5f:00:3a:e2:23:34:cc:0f:a8: 71:c2:4a:8c:d6:b8:c6:61:e9:71:11:44:25:79:d7: 9e:4b:9a:9e:41:44:3c:28:0b:a2:ee:31:4f:90:12: e1:1e:68:30:76:40:1e:0e:ef:00:61:d6:be:5d:10: f1:a7:fd:3a:1a:1d:e5:7e:d7:09:ae:d8:2d:60:95: bd:c4:3f:27:56:c8:51:b5:36:0b:4c:23:72:9a:fd: 7d:c8:60:b0:2a:e0:4c:50:08:03:01:34:8a:bf:79: e8:d9:f2:81:3d:bb:2e:6e:09:a6:97:1c:ce:77:5e: 4e:09:14:bb:c2:1c:2b:e6:5f:9f:b6:6c:dc:ac:d6: ca:90:b8:8a:7a:94:46:0d:96:b2:c7:53:4a:3e:25: 85:5f:63:83:a9:dd:95:33:33:26:1f:a2:3a:f9:8e: cf:e1:39:c7:d2:a6:4d:34:05:21:7e:16:20:5f:bb: cd:83:ab:20:50:07:39:5b:dd:d0:61:01:9d:97:98: 2d:e1:02:0f:dc:5e:5a:cc:52:5f:aa:38:ee:9b:6f: 55:5d:91:c4:a7:c6:64:84:92:16:6d:ff:8c:08:95: 67:46:dd:4e:ed:98:d8:a0:9b:c9:31:38:7b:d1:80: 39:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4F:59:26:16:D8:7B:2A:68:13:67:EF:EE:F1:B5:33:0F:EC:34:58:DB X509v3 Authority Key Identifier: keyid:D2:4F:CC:AD:3A:CE:7F:FE:5B:F0:2A:6A:8F:68:C0:60:2E:1C:1B:51 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DA8C2/95A69BE2005311F08E73E14AC4F9AE02/0k_MrTrOf_5b8Cpqj2jAYC4cG1E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0k_MrTrOf_5b8Cpqj2jAYC4cG1E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DA8C2/95A69BE2005311F08E73E14AC4F9AE02/0k_MrTrOf_5b8Cpqj2jAYC4cG1E.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5d:5d:08:8b:f0:e1:13:0a:83:4c:0c:32:4d:97:26:a2:73:b8: b3:93:5e:1c:0f:a4:8b:9f:1c:1e:ed:0a:6f:f0:98:eb:ca:ef: fc:7d:82:90:4f:4e:55:5d:77:d4:21:a4:69:b5:65:c2:8d:f9: b6:6c:49:f1:d2:4d:43:33:d1:c7:a8:df:23:49:09:03:97:2d: aa:97:72:54:4b:8a:53:a6:9d:37:4a:17:a3:10:29:83:9d:1d: 44:c7:f8:73:e6:e8:9d:3b:0b:bd:51:f6:aa:45:ef:0a:d4:73: 94:58:d6:82:5b:64:8b:e1:a1:f3:bd:94:43:0c:61:98:4c:b4: c4:22:d7:6d:c0:0c:c2:79:73:9c:c2:e0:41:b1:95:c8:01:e2: d5:82:b7:6a:b7:4d:8e:da:20:fb:21:24:70:d0:41:72:d9:35: 79:3a:c9:52:ba:46:45:09:a7:e6:d6:e4:c8:3f:8f:c6:a7:39: 76:4c:f3:d7:96:98:9b:2b:e9:f4:8d:1a:c3:42:ab:c4:71:ba: 18:18:02:15:84:c9:b5:3d:94:d2:21:aa:a2:34:8c:6e:25:fd: e5:8e:87:db:51:cb:dd:6a:5f:fc:ac:6c:34:90:99:f5:ef:71: 8c:ea:95:ee:9e:7c:4d:75:de:4c:6e:a2:a5:d4:bd:72:99:4b: 25:7d:43:cd -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBIDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFE QThDMjExMC8GA1UEBRMoRDI0RkNDQUQzQUNFN0ZGRTVCRjAyQTZBOEY2OEMwNjAy RTFDMUI1MTAeFw0yNTA1MDkwNjU0NTJaFw0yNTA1MTYwNjU0NTJaMBgxFjAUBgNV BAMTDTY4MWRhNmJkLTM3ZjMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDTFcuIReHXaC1B4fMePqf2zj90z18AOuIjNMwPqHHCSozWuMZh6XERRCV5155L mp5BRDwoC6LuMU+QEuEeaDB2QB4O7wBh1r5dEPGn/ToaHeV+1wmu2C1glb3EPydW yFG1NgtMI3Ka/X3IYLAq4ExQCAMBNIq/eejZ8oE9uy5uCaaXHM53Xk4JFLvCHCvm X5+2bNys1sqQuIp6lEYNlrLHU0o+JYVfY4Op3ZUzMyYfojr5js/hOcfSpk00BSF+ FiBfu82DqyBQBzlb3dBhAZ2XmC3hAg/cXlrMUl+qOO6bb1VdkcSnxmSEkhZt/4wI lWdG3U7tmNigm8kxOHvRgDlVAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUT1kmFth7 KmgTZ+/u8bUzD+w0WNswHwYDVR0jBBgwFoAU0k/MrTrOf/5b8Cpqj2jAYC4cG1Ew DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MURBOEMyLzk1QTY5QkUyMDA1 MzExRjA4RTczRTE0QUM0RjlBRTAyLzBrX01yVHJPZl81YjhDcHFqMmpBWUM0Y0cx RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvMGtfTXJUck9mXzViOENwcWoyakFZQzRjRzFFLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MURB OEMyLzk1QTY5QkUyMDA1MzExRjA4RTczRTE0QUM0RjlBRTAyLzBrX01yVHJPZl81 YjhDcHFqMmpBWUM0Y0cxRS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAF1dCIvw4RMKg0wMMk2XJqJzuLOTXhwPpIufHB7tCm/wmOvK7/x9gpBP TlVdd9QhpGm1ZcKN+bZsSfHSTUMz0ceo3yNJCQOXLaqXclRLilOmnTdKF6MQKYOd HUTH+HPm6J07C71R9qpF7wrUc5RY1oJbZIvhofO9lEMMYZhMtMQi123ADMJ5c5zC 4EGxlcgB4tWCt2q3TY7aIPshJHDQQXLZNXk6yVK6RkUJp+bW5Mg/j8anOXZM89eW mJsr6fSNGsNCq8RxuhgYAhWEybU9lNIhqqI0jG4l/eWOh9tRy91qX/ysbDSQmfXv cYzqle6efE113kxuoqXUvXKZSyV9Q80= -----END CERTIFICATE-----Generated at Sun May 11 06:36:25 2025 by rpki-client