$ rpki-client -vvf rpki.apnic.net/member_repository/A91DBF0C/414850708C5B11EFA706757FC4F9AE02/rg5L7FaP5v7kkvcuTTrLko2cHk8.mft File: rg5L7FaP5v7kkvcuTTrLko2cHk8.mft (raw, json) Hash identifier: 9aBHS0daBMT2aO6jNX0Zbyga3EI8IyM0FQZehRksITE= Subject key identifier: 9E:8A:73:83:6B:4E:5E:2A:51:76:8A:8E:80:60:65:83:F0:66:14:8F Authority key identifier: AE:0E:4B:EC:56:8F:E6:FE:E4:92:F7:2E:4D:3A:CB:92:8D:9C:1E:4F Certificate issuer: /CN=A91DBF0C/serialNumber=AE0E4BEC568FE6FEE492F72E4D3ACB928D9C1E4F Certificate serial: 72 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/rg5L7FaP5v7kkvcuTTrLko2cHk8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DBF0C/414850708C5B11EFA706757FC4F9AE02/rg5L7FaP5v7kkvcuTTrLko2cHk8.mft Manifest number: 6F Signing time: Sun 11 May 2025 05:40:09 +0000 Manifest this update: Sun 11 May 2025 05:40:09 +0000 Manifest next update: Sun 18 May 2025 05:40:08 +0000 Files and hashes: 1: rg5L7FaP5v7kkvcuTTrLko2cHk8.crl (hash: O7yCL5xnv8VdcMsH018RBAUlzdlS5RqQf9jw84N73ws=) 2: 9E4987668C7F11EFB4290976C4F9AE02.roa (hash: cHJy1BLtElHS3p1bo+4QsrHmfc/col4vczERE1sjyMs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DBF0C/414850708C5B11EFA706757FC4F9AE02/rg5L7FaP5v7kkvcuTTrLko2cHk8.crl rsync://rpki.apnic.net/member_repository/A91DBF0C/414850708C5B11EFA706757FC4F9AE02/rg5L7FaP5v7kkvcuTTrLko2cHk8.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/rg5L7FaP5v7kkvcuTTrLko2cHk8.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 18 May 2025 05:40:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 114 (0x72) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DBF0C, serialNumber=AE0E4BEC568FE6FEE492F72E4D3ACB928D9C1E4F Validity Not Before: May 11 05:40:09 2025 GMT Not After : May 18 05:40:08 2025 GMT Subject: CN=68203839-1b80 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:10:8c:70:b6:35:03:0a:6a:1c:4f:3e:90:30: 5e:a4:c5:5e:70:6c:19:5d:da:57:34:56:2b:6c:5e: 03:d9:c5:29:9d:e1:68:15:52:0f:ee:14:5d:1b:27: 75:cd:68:89:06:1d:f4:b8:81:f8:21:bf:f4:9d:7c: 84:e6:88:de:ad:e6:db:06:f5:39:2d:9f:eb:97:d1: 76:3d:3b:fe:46:86:79:b9:74:1a:49:7f:21:ad:9f: d2:46:da:bf:d8:40:1f:cf:55:26:b8:6b:47:19:2e: 2f:8f:81:8d:04:a7:64:19:0b:1b:cf:df:7f:69:17: dd:e1:ab:9e:c3:df:ed:7a:0f:2b:f1:cc:3a:c9:20: ad:f5:bc:5b:33:ac:86:61:aa:09:e7:6b:69:de:ab: 15:37:41:83:d9:fb:5d:e4:e5:49:cd:4a:2a:bc:45: 54:0c:ed:1b:8c:80:e0:60:73:97:d8:18:50:7b:03: 7f:47:57:ab:25:ba:41:1a:25:3e:0e:3f:be:e8:2d: f4:74:06:0c:7f:22:60:6d:b2:14:b2:87:b8:29:61: 3a:65:f0:f3:81:b9:67:67:43:21:03:43:cb:b0:82: 4a:14:a8:7f:e0:04:be:bc:7f:47:9f:31:0a:6e:54: 80:1a:0a:15:81:0c:d6:f4:7a:46:11:42:4d:f8:44: 5c:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9E:8A:73:83:6B:4E:5E:2A:51:76:8A:8E:80:60:65:83:F0:66:14:8F X509v3 Authority Key Identifier: keyid:AE:0E:4B:EC:56:8F:E6:FE:E4:92:F7:2E:4D:3A:CB:92:8D:9C:1E:4F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DBF0C/414850708C5B11EFA706757FC4F9AE02/rg5L7FaP5v7kkvcuTTrLko2cHk8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/rg5L7FaP5v7kkvcuTTrLko2cHk8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DBF0C/414850708C5B11EFA706757FC4F9AE02/rg5L7FaP5v7kkvcuTTrLko2cHk8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5e:c1:69:23:72:4f:a0:e8:24:1e:b5:bf:ae:94:b5:b0:2b:19: f3:e1:38:7a:aa:43:80:d1:d0:fc:28:a5:a4:98:c6:18:d0:7f: 72:58:e1:97:c9:21:1b:82:97:a0:6f:2d:0b:e8:57:45:bc:ee: aa:df:86:a0:37:b5:56:41:b7:ae:98:77:ad:af:4c:e2:5b:15: a2:4b:ef:eb:ac:15:43:b9:9a:c2:70:1f:4a:9e:e6:5f:29:68: b9:3a:a5:c7:cd:5c:e3:6f:2d:2a:4e:40:70:23:e0:5f:f5:db: b0:b0:8c:5e:6e:6b:3b:25:3f:13:51:db:a6:5c:7d:c9:2b:a6: 8e:72:a6:fe:e0:5e:dc:48:14:19:9a:e6:ca:47:d6:05:68:87: 36:6a:7c:67:16:9a:a5:59:18:52:f2:14:16:65:be:a4:c5:27: 53:ce:de:59:74:35:02:c0:c5:76:af:3c:33:6d:2e:8d:3d:75: 6d:a5:48:e9:40:45:a4:41:b7:16:dd:40:d3:18:ce:39:70:fa: e6:51:ba:82:aa:3a:88:25:9a:74:52:72:06:af:48:e2:c5:00: 42:81:24:8f:5f:6a:39:01:f5:ad:79:b7:40:a6:08:6d:49:5e: c1:59:19:3d:5e:1a:1f:23:b3:33:5a:76:fa:7e:c5:40:9b:16: 63:00:c3:18 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBcjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFE QkYwQzExMC8GA1UEBRMoQUUwRTRCRUM1NjhGRTZGRUU0OTJGNzJFNEQzQUNCOTI4 RDlDMUU0RjAeFw0yNTA1MTEwNTQwMDlaFw0yNTA1MTgwNTQwMDhaMBgxFjAUBgNV BAMTDTY4MjAzODM5LTFiODAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCfEIxwtjUDCmocTz6QMF6kxV5wbBld2lc0VitsXgPZxSmd4WgVUg/uFF0bJ3XN aIkGHfS4gfghv/SdfITmiN6t5tsG9Tktn+uX0XY9O/5Ghnm5dBpJfyGtn9JG2r/Y QB/PVSa4a0cZLi+PgY0Ep2QZCxvP339pF93hq57D3+16DyvxzDrJIK31vFszrIZh qgnna2neqxU3QYPZ+13k5UnNSiq8RVQM7RuMgOBgc5fYGFB7A39HV6slukEaJT4O P77oLfR0Bgx/ImBtshSyh7gpYTpl8POBuWdnQyEDQ8uwgkoUqH/gBL68f0efMQpu VIAaChWBDNb0ekYRQk34RFwZAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUnopzg2tO XipRdoqOgGBlg/BmFI8wHwYDVR0jBBgwFoAUrg5L7FaP5v7kkvcuTTrLko2cHk8w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MURCRjBDLzQxNDg1MDcwOEM1 QjExRUZBNzA2NzU3RkM0RjlBRTAyL3JnNUw3RmFQNXY3a2t2Y3VUVHJMa28yY0hr OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvcmc1TDdGYVA1djdra3ZjdVRUckxrbzJjSGs4LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MURC RjBDLzQxNDg1MDcwOEM1QjExRUZBNzA2NzU3RkM0RjlBRTAyL3JnNUw3RmFQNXY3 a2t2Y3VUVHJMa28yY0hrOC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAF7BaSNyT6DoJB61v66UtbArGfPhOHqqQ4DR0PwopaSYxhjQf3JY4ZfJ IRuCl6BvLQvoV0W87qrfhqA3tVZBt66Yd62vTOJbFaJL7+usFUO5msJwH0qe5l8p aLk6pcfNXONvLSpOQHAj4F/127CwjF5uazslPxNR26Zcfckrpo5ypv7gXtxIFBma 5spH1gVohzZqfGcWmqVZGFLyFBZlvqTFJ1PO3ll0NQLAxXavPDNtLo09dW2lSOlA RaRBtxbdQNMYzjlw+uZRuoKqOoglmnRScgavSOLFAEKBJI9fajkB9a15t0CmCG1J XsFZGT1eGh8jszNadvp+xUCbFmMAwxg= -----END CERTIFICATE-----Generated at Mon May 12 19:39:27 2025 by rpki-client