$ rpki-client -vvf rpki.apnic.net/member_repository/A91DC33B/B4C9FE9206F511E89618F42FC4F9AE02/S0Nd1JrBEcPde6D08IaF8hZRWFk.mft File: S0Nd1JrBEcPde6D08IaF8hZRWFk.mft (raw, json) Hash identifier: 3a1ac2vTmTQc6CezhmdXDPBOCStEn+lIaQn3WQkKoAM= Subject key identifier: 92:C9:6E:15:B7:0B:61:5E:DE:BD:0F:F7:90:F0:3F:E4:ED:47:D1:DE Authority key identifier: 4B:43:5D:D4:9A:C1:11:C3:DD:7B:A0:F4:F0:86:85:F2:16:51:58:59 Certificate issuer: /CN=A91DC33B/serialNumber=4B435DD49AC111C3DD7BA0F4F08685F216515859 Certificate serial: 1663 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/S0Nd1JrBEcPde6D08IaF8hZRWFk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DC33B/B4C9FE9206F511E89618F42FC4F9AE02/S0Nd1JrBEcPde6D08IaF8hZRWFk.mft Manifest number: 165C Signing time: Thu 08 May 2025 16:47:59 +0000 Manifest this update: Thu 08 May 2025 16:47:59 +0000 Manifest next update: Thu 15 May 2025 16:47:59 +0000 Files and hashes: 1: S0Nd1JrBEcPde6D08IaF8hZRWFk.crl (hash: +yMOAqXq+Jizwrscc5rH4ulmIljdiKjQZtc5SkI4moY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DC33B/B4C9FE9206F511E89618F42FC4F9AE02/S0Nd1JrBEcPde6D08IaF8hZRWFk.crl rsync://rpki.apnic.net/member_repository/A91DC33B/B4C9FE9206F511E89618F42FC4F9AE02/S0Nd1JrBEcPde6D08IaF8hZRWFk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/S0Nd1JrBEcPde6D08IaF8hZRWFk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 15 May 2025 16:47:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5731 (0x1663) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DC33B, serialNumber=4B435DD49AC111C3DD7BA0F4F08685F216515859 Validity Not Before: May 8 16:47:59 2025 GMT Not After : May 15 16:47:59 2025 GMT Subject: CN=681ce03f-d218 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:d6:65:83:fc:89:58:5b:73:2d:4a:9a:8c:88: b8:7c:c9:ed:cf:28:2e:3d:71:28:af:99:97:a0:ea: 7d:d1:98:59:db:24:20:ef:33:b2:98:e4:4b:87:4c: 69:a0:f3:11:6b:c8:a0:92:fd:b7:63:83:4c:0d:00: a9:bb:3c:d8:6d:cf:f0:62:a7:be:7d:a9:f6:44:a1: cc:95:1a:6b:95:55:5a:84:41:45:ee:db:8a:f3:03: 5d:b3:df:36:ee:46:38:98:1b:ae:9f:ad:ca:13:d6: 21:4b:bc:1d:d6:ee:bb:14:b8:87:c3:c4:e6:aa:85: e6:60:e9:60:60:01:c7:b0:67:bd:4a:f4:b8:72:36: 44:20:42:46:38:af:45:8c:cc:4f:73:d9:f7:fe:5a: 0e:af:13:38:a8:fe:23:35:6a:64:f7:fe:51:e2:b2: 52:e8:bf:6f:12:04:32:53:dc:a5:d1:b3:02:70:72: 23:96:54:e6:06:01:4b:72:a0:8d:75:bd:50:3a:89: 64:2a:7d:9b:19:ef:8d:79:3c:a2:fc:30:f3:2c:00: 56:ad:6f:b0:ee:23:fa:d5:58:81:d8:13:d2:a3:d0: 59:2c:1b:a4:04:8f:d5:c5:2b:7d:80:41:24:b3:7f: db:61:d8:ad:5a:a0:79:60:ea:55:5f:87:2e:5e:cf: cd:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 92:C9:6E:15:B7:0B:61:5E:DE:BD:0F:F7:90:F0:3F:E4:ED:47:D1:DE X509v3 Authority Key Identifier: keyid:4B:43:5D:D4:9A:C1:11:C3:DD:7B:A0:F4:F0:86:85:F2:16:51:58:59 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DC33B/B4C9FE9206F511E89618F42FC4F9AE02/S0Nd1JrBEcPde6D08IaF8hZRWFk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/S0Nd1JrBEcPde6D08IaF8hZRWFk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DC33B/B4C9FE9206F511E89618F42FC4F9AE02/S0Nd1JrBEcPde6D08IaF8hZRWFk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 73:4b:31:0a:07:b2:ad:cd:0a:f3:66:55:d3:4e:21:c2:69:18: d3:46:04:ad:16:03:83:cd:f4:eb:e7:f7:9c:f6:bd:6f:3a:71: a5:8d:bf:7f:9d:a8:c0:9c:c7:0d:9d:38:7c:30:5c:7f:3f:fd: 11:b3:60:10:4f:40:f2:04:ff:86:77:01:76:2a:7f:e9:0d:0a: 8b:c2:57:53:9e:28:e3:98:0c:1e:e8:92:d4:c3:37:b6:3b:e8: 5a:fb:a7:82:b5:7d:5a:56:89:04:a1:6e:c5:8e:c1:65:c0:9a: a1:d5:de:65:fe:8a:ad:43:05:ff:02:4b:f4:e2:c3:1d:b7:8f: 08:f7:e0:37:19:70:43:ee:9f:ac:1e:36:36:55:a4:74:7e:d1: 95:2a:08:ed:83:45:8d:9b:71:58:92:d9:9b:09:52:a7:c7:9d: 37:1b:72:d6:70:60:44:12:30:2f:66:14:08:b5:94:37:14:52: aa:39:6b:71:d2:8e:b2:d0:76:b8:05:59:38:d5:e0:ff:e6:d0: 44:cf:fd:0c:3b:2e:88:a9:f9:75:0f:89:46:96:40:74:ae:85: e6:47:8a:5d:96:6e:8b:cd:11:bf:b7:87:95:12:22:3a:99:e2: 32:80:dc:d8:86:92:9e:38:12:50:0e:90:04:af:02:42:1a:71: f0:eb:90:12 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICFmMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REMzM0IxMTAvBgNVBAUTKDRCNDM1REQ0OUFDMTExQzNERDdCQTBGNEYwODY4NUYy MTY1MTU4NTkwHhcNMjUwNTA4MTY0NzU5WhcNMjUwNTE1MTY0NzU5WjAYMRYwFAYD VQQDEw02ODFjZTAzZi1kMjE4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6dZlg/yJWFtzLUqajIi4fMntzyguPXEor5mXoOp90ZhZ2yQg7zOymORLh0xp oPMRa8igkv23Y4NMDQCpuzzYbc/wYqe+fan2RKHMlRprlVVahEFF7tuK8wNds982 7kY4mBuun63KE9YhS7wd1u67FLiHw8TmqoXmYOlgYAHHsGe9SvS4cjZEIEJGOK9F jMxPc9n3/loOrxM4qP4jNWpk9/5R4rJS6L9vEgQyU9yl0bMCcHIjllTmBgFLcqCN db1QOolkKn2bGe+NeTyi/DDzLABWrW+w7iP61ViB2BPSo9BZLBukBI/VxSt9gEEk s3/bYditWqB5YOpVX4cuXs/NkwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJLJbhW3 C2Fe3r0P95DwP+TtR9HeMB8GA1UdIwQYMBaAFEtDXdSawRHD3Xug9PCGhfIWUVhZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQzMzQi9CNEM5RkU5MjA2 RjUxMUU4OTYxOEY0MkZDNEY5QUUwMi9TME5kMUpyQkVjUGRlNkQwOElhRjhoWlJX RmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1MwTmQxSnJCRWNQZGU2RDA4SWFGOGhaUldGay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QzMzQi9CNEM5RkU5MjA2RjUxMUU4OTYxOEY0MkZDNEY5QUUwMi9TME5kMUpyQkVj UGRlNkQwOElhRjhoWlJXRmsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBzSzEKB7KtzQrzZlXTTiHCaRjTRgStFgODzfTr5/ec9r1vOnGljb9/ najAnMcNnTh8MFx/P/0Rs2AQT0DyBP+GdwF2Kn/pDQqLwldTnijjmAwe6JLUwze2 O+ha+6eCtX1aVokEoW7FjsFlwJqh1d5l/oqtQwX/Akv04sMdt48I9+A3GXBD7p+s HjY2VaR0ftGVKgjtg0WNm3FYktmbCVKnx503G3LWcGBEEjAvZhQItZQ3FFKqOWtx 0o6y0Ha4BVk41eD/5tBEz/0MOy6Iqfl1D4lGlkB0roXmR4pdlm6LzRG/t4eVEiI6 meIygNzYhpKeOBJQDpAErwJCGnHw65AS -----END CERTIFICATE-----Generated at Sat May 10 14:10:08 2025 by rpki-client