$ rpki-client -vvf rpki.apnic.net/member_repository/A91DC146/DAA76492AE0E11EB8ABA334DC4F9AE02/aQxynxg5BWTWcLGPd3R1Tl0nmVE.mft File: aQxynxg5BWTWcLGPd3R1Tl0nmVE.mft (raw, json) Hash identifier: SjHTCnm84vy9QLQPCp7UQvj2J0FpHqkiFQ7urGCuMEk= Subject key identifier: 8C:F4:5A:77:90:20:38:94:42:21:FD:1D:5A:26:B7:3B:FD:59:2E:B6 Authority key identifier: 69:0C:72:9F:18:39:05:64:D6:70:B1:8F:77:74:75:4E:5D:27:99:51 Certificate issuer: /CN=A91DC146/serialNumber=690C729F18390564D670B18F7774754E5D279951 Certificate serial: 05EF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aQxynxg5BWTWcLGPd3R1Tl0nmVE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DC146/DAA76492AE0E11EB8ABA334DC4F9AE02/aQxynxg5BWTWcLGPd3R1Tl0nmVE.mft Manifest number: 05EA Signing time: Mon 12 May 2025 22:44:00 +0000 Manifest this update: Mon 12 May 2025 22:44:00 +0000 Manifest next update: Mon 19 May 2025 22:44:00 +0000 Files and hashes: 1: aQxynxg5BWTWcLGPd3R1Tl0nmVE.crl (hash: Xq9dfs/enuL/nDO1nhhoT9bDQw7kQlYS0vUUoiGXm0Y=) 2: 4BB44892AE1111EBB4C2DA11C4F9AE02.roa (hash: JNSnvB3lv0/9vnQPkUAqkaUeoo68hc8fXSyVzWlD/Po=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DC146/DAA76492AE0E11EB8ABA334DC4F9AE02/aQxynxg5BWTWcLGPd3R1Tl0nmVE.crl rsync://rpki.apnic.net/member_repository/A91DC146/DAA76492AE0E11EB8ABA334DC4F9AE02/aQxynxg5BWTWcLGPd3R1Tl0nmVE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aQxynxg5BWTWcLGPd3R1Tl0nmVE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 19 May 2025 22:43:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1519 (0x5ef) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DC146, serialNumber=690C729F18390564D670B18F7774754E5D279951 Validity Not Before: May 12 22:44:00 2025 GMT Not After : May 19 22:44:00 2025 GMT Subject: CN=682279b0-31cc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:8b:b7:be:c9:37:e9:40:67:e5:7b:1e:55:2d: f5:6a:ae:95:5b:74:3b:d6:7b:47:05:fb:b7:50:19: 4e:3e:1e:4b:53:4d:2e:cd:92:1d:aa:21:ff:37:00: 34:79:eb:cc:80:69:a2:69:67:a0:c5:e1:41:17:83: 5a:b4:5d:9f:29:e3:71:69:6f:f6:34:0a:e2:69:1b: d6:c3:c6:36:12:6d:e7:66:b2:3f:46:78:07:e7:51: e2:fb:d9:36:f7:32:46:81:e7:54:a5:1b:d6:2d:30: 1c:09:64:12:25:21:b0:85:5f:05:63:d7:76:8e:b3: 8c:c4:71:70:2f:48:6e:55:32:27:61:87:a0:96:68: 71:4c:67:19:73:6b:72:ee:98:56:6e:07:ed:d2:70: 38:11:6a:c0:69:e8:a3:c0:e0:a9:1c:75:46:6b:f5: 69:91:74:73:86:65:4e:a9:8d:89:43:9b:fe:91:3a: e5:bc:ff:f7:da:30:43:a0:05:c8:69:e1:74:5f:09: 88:30:8f:d6:ed:c8:f5:43:7a:8b:24:5c:82:47:e1: f1:fd:7d:28:f8:92:e3:68:cb:19:7a:00:c0:d5:ff: f0:df:2e:22:f5:7d:9a:94:5b:19:1c:38:1a:db:a9: 88:76:f4:e6:2a:eb:c5:ec:ae:74:89:89:18:75:4f: 30:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8C:F4:5A:77:90:20:38:94:42:21:FD:1D:5A:26:B7:3B:FD:59:2E:B6 X509v3 Authority Key Identifier: keyid:69:0C:72:9F:18:39:05:64:D6:70:B1:8F:77:74:75:4E:5D:27:99:51 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DC146/DAA76492AE0E11EB8ABA334DC4F9AE02/aQxynxg5BWTWcLGPd3R1Tl0nmVE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aQxynxg5BWTWcLGPd3R1Tl0nmVE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DC146/DAA76492AE0E11EB8ABA334DC4F9AE02/aQxynxg5BWTWcLGPd3R1Tl0nmVE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ad:7a:84:92:7b:1e:d6:f1:0f:d6:8a:60:61:c9:10:d0:80:7d: 26:c5:a0:a0:f9:f4:10:78:e3:b8:5f:9a:ae:cb:e9:dd:df:79: fd:03:3c:44:e9:f9:de:3f:82:0b:0a:cf:64:69:48:95:04:1d: a2:6d:45:66:ad:21:03:b6:21:4c:30:a6:96:d4:67:33:e0:be: d1:c4:c2:cc:57:17:80:bf:a3:d1:c4:0c:6b:d3:39:d6:4c:ac: 7d:89:71:ca:1d:2d:ee:38:54:79:4c:3c:ef:12:02:4b:0d:aa: 45:7b:62:29:b4:c4:e8:15:24:60:9f:ab:db:8b:73:d5:a9:10: 1c:c4:4b:ff:5b:1a:ce:d3:ba:18:73:3a:cf:a5:73:b8:7b:f1: 0a:0d:72:73:fa:89:b4:95:0e:c0:30:02:e2:79:7c:ea:36:ee: a8:8b:c4:a7:ea:0e:aa:8c:6c:4c:53:46:18:c6:50:53:5c:27: 19:fc:d7:d8:2f:06:77:16:9c:63:48:79:08:63:82:6e:c8:cb: 25:99:43:46:5a:5c:bb:18:e3:3c:3f:dd:d0:47:90:3b:bc:e7: 12:35:25:bf:5d:b4:5c:44:e4:bb:35:11:fe:0e:49:45:41:d3: bd:30:66:cf:78:b5:3a:0d:19:57:0b:d6:1f:36:64:19:6c:ed: 6d:8f:55:cd -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBe8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REMxNDYxMTAvBgNVBAUTKDY5MEM3MjlGMTgzOTA1NjRENjcwQjE4Rjc3NzQ3NTRF NUQyNzk5NTEwHhcNMjUwNTEyMjI0NDAwWhcNMjUwNTE5MjI0NDAwWjAYMRYwFAYD VQQDEw02ODIyNzliMC0zMWNjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsou3vsk36UBn5XseVS31aq6VW3Q71ntHBfu3UBlOPh5LU00uzZIdqiH/NwA0 eevMgGmiaWegxeFBF4NatF2fKeNxaW/2NAriaRvWw8Y2Em3nZrI/RngH51Hi+9k2 9zJGgedUpRvWLTAcCWQSJSGwhV8FY9d2jrOMxHFwL0huVTInYYeglmhxTGcZc2ty 7phWbgft0nA4EWrAaeijwOCpHHVGa/VpkXRzhmVOqY2JQ5v+kTrlvP/32jBDoAXI aeF0XwmIMI/W7cj1Q3qLJFyCR+Hx/X0o+JLjaMsZegDA1f/w3y4i9X2alFsZHDga 26mIdvTmKuvF7K50iYkYdU8wfwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIz0WneQ IDiUQiH9HVomtzv9WS62MB8GA1UdIwQYMBaAFGkMcp8YOQVk1nCxj3d0dU5dJ5lR MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQzE0Ni9EQUE3NjQ5MkFF MEUxMUVCOEFCQTMzNERDNEY5QUUwMi9hUXh5bnhnNUJXVFdjTEdQZDNSMVRsMG5t VkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FReHlueGc1QldUV2NMR1BkM1IxVGwwbm1WRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QzE0Ni9EQUE3NjQ5MkFFMEUxMUVCOEFCQTMzNERDNEY5QUUwMi9hUXh5bnhnNUJX VFdjTEdQZDNSMVRsMG5tVkUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCteoSSex7W8Q/WimBhyRDQgH0mxaCg+fQQeOO4X5quy+nd33n9AzxE 6fneP4ILCs9kaUiVBB2ibUVmrSEDtiFMMKaW1Gcz4L7RxMLMVxeAv6PRxAxr0znW TKx9iXHKHS3uOFR5TDzvEgJLDapFe2IptMToFSRgn6vbi3PVqRAcxEv/WxrO07oY czrPpXO4e/EKDXJz+om0lQ7AMALieXzqNu6oi8Sn6g6qjGxMU0YYxlBTXCcZ/NfY LwZ3FpxjSHkIY4JuyMslmUNGWly7GOM8P93QR5A7vOcSNSW/XbRcROS7NRH+DklF QdO9MGbPeLU6DRlXC9YfNmQZbO1tj1XN -----END CERTIFICATE-----Generated at Tue May 13 11:38:26 2025 by rpki-client