$ rpki-client -vvf rpki.apnic.net/member_repository/A91DEFAF/07176240492C11EBA981BF52C4F9AE02/We3oFpsKLDIUaf8RsWKL3gwfLEE.mft File: We3oFpsKLDIUaf8RsWKL3gwfLEE.mft (raw, json) Hash identifier: jRbe7UGjFPLhUvoKUonsdTuqDE3TOOeXO11iEwUMvuw= Subject key identifier: C8:C9:32:2F:A5:AC:BF:31:D8:FD:20:77:85:5B:55:24:06:DC:A6:8B Authority key identifier: 59:ED:E8:16:9B:0A:2C:32:14:69:FF:11:B1:62:8B:DE:0C:1F:2C:41 Certificate issuer: /CN=A91DEFAF/serialNumber=59EDE8169B0A2C321469FF11B1628BDE0C1F2C41 Certificate serial: 06F9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/We3oFpsKLDIUaf8RsWKL3gwfLEE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DEFAF/07176240492C11EBA981BF52C4F9AE02/We3oFpsKLDIUaf8RsWKL3gwfLEE.mft Manifest number: 06F2 Signing time: Mon 12 May 2025 21:46:16 +0000 Manifest this update: Mon 12 May 2025 21:46:15 +0000 Manifest next update: Mon 19 May 2025 21:46:15 +0000 Files and hashes: 1: We3oFpsKLDIUaf8RsWKL3gwfLEE.crl (hash: hAndsXxRKHlX0Nr5eAIEaM1WcKey3AQUAlw1Xj8cbuY=) 2: A793BA7E492D11EB8BE07D54C4F9AE02.roa (hash: rr5k3fKZgvDyXFLnJfEeotntvMNKxGcDJEuXf2w7Hns=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DEFAF/07176240492C11EBA981BF52C4F9AE02/We3oFpsKLDIUaf8RsWKL3gwfLEE.crl rsync://rpki.apnic.net/member_repository/A91DEFAF/07176240492C11EBA981BF52C4F9AE02/We3oFpsKLDIUaf8RsWKL3gwfLEE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/We3oFpsKLDIUaf8RsWKL3gwfLEE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 19 May 2025 21:46:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1785 (0x6f9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DEFAF, serialNumber=59EDE8169B0A2C321469FF11B1628BDE0C1F2C41 Validity Not Before: May 12 21:46:15 2025 GMT Not After : May 19 21:46:15 2025 GMT Subject: CN=68226c27-a028 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:37:23:5b:07:e6:5d:4a:82:09:b3:4b:bb:27: 30:8f:60:f0:a5:77:84:b1:f4:73:54:b7:8d:97:e2: ad:ff:4f:82:d1:68:0f:88:f5:3a:62:86:3d:c6:46: 82:d9:1a:76:47:2d:c7:89:51:8e:9a:d9:64:1a:55: 9b:78:97:d4:d1:9b:17:ed:14:f4:54:9c:f2:72:de: e6:04:d0:b1:76:df:98:eb:08:f2:25:46:6c:14:96: f2:0f:82:82:58:35:77:b6:61:51:bd:33:c2:70:a7: cb:63:1d:22:fa:06:e8:6d:2a:96:22:69:d6:23:00: a7:4f:57:ab:ad:4d:9a:67:64:6d:67:d7:ca:cb:fe: 22:26:b3:4d:81:c6:a3:f9:83:9a:b3:91:ba:13:aa: 6e:05:65:25:52:ad:77:76:b5:aa:a4:7a:2d:50:96: 1e:f2:73:1d:e3:c7:87:d2:fc:e6:ea:21:46:c4:62: 66:4a:24:78:12:bd:8b:2b:4a:4f:1a:c3:44:57:73: 95:52:18:c0:18:05:e6:bf:aa:7d:62:5f:c7:6a:42: cc:a8:49:aa:08:87:60:c0:17:86:f1:a6:c4:f1:30: fd:d0:24:75:bb:a2:dc:b6:0d:dd:3f:6b:7f:34:2b: 83:06:2c:31:e0:d0:3f:6e:78:29:c3:2c:e6:c0:f8: e1:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C8:C9:32:2F:A5:AC:BF:31:D8:FD:20:77:85:5B:55:24:06:DC:A6:8B X509v3 Authority Key Identifier: keyid:59:ED:E8:16:9B:0A:2C:32:14:69:FF:11:B1:62:8B:DE:0C:1F:2C:41 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DEFAF/07176240492C11EBA981BF52C4F9AE02/We3oFpsKLDIUaf8RsWKL3gwfLEE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/We3oFpsKLDIUaf8RsWKL3gwfLEE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DEFAF/07176240492C11EBA981BF52C4F9AE02/We3oFpsKLDIUaf8RsWKL3gwfLEE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 80:76:e2:e3:d4:28:1b:4a:0c:0c:30:f4:ae:5f:5a:1b:5a:fb: 08:58:c2:e2:bc:11:f6:92:62:7b:64:0a:80:e1:d9:db:b0:ed: 8c:9b:b2:4e:10:bf:b0:8e:c4:7c:f0:ae:e4:ae:a4:6f:75:91: fe:39:64:64:77:44:7e:26:16:dd:09:6f:ab:14:99:f8:a6:97: 79:24:da:22:3b:d2:92:47:c1:9b:2e:05:91:03:e4:72:29:c9: 38:a3:5b:88:7a:23:78:20:73:69:e4:42:ad:30:2e:a6:11:a3: ce:3b:07:c6:40:ad:c5:65:36:da:66:9b:b6:b0:df:48:7f:d7: f3:a9:00:28:40:b2:b0:c2:1e:3f:83:9d:d6:ae:ee:43:1b:19: 4b:f3:58:ed:54:d7:19:6c:3f:c0:81:3a:b1:29:53:cb:5c:44: ad:bf:19:96:2f:a7:f4:e2:64:b6:16:ac:ec:df:34:04:73:94: a2:ce:e0:a0:fa:32:10:c0:96:12:2a:47:d8:66:1f:59:50:38: 86:45:93:eb:60:50:ed:25:cf:b4:8a:0d:05:32:8f:43:df:60: b6:6a:bb:ef:5c:dd:0e:74:48:a2:46:6d:9c:75:4d:22:6e:39: a5:b7:ef:43:7b:58:19:8f:b0:ce:ce:94:90:9a:74:99:0b:e8: 58:fb:3c:d6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBvkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REVGQUYxMTAvBgNVBAUTKDU5RURFODE2OUIwQTJDMzIxNDY5RkYxMUIxNjI4QkRF MEMxRjJDNDEwHhcNMjUwNTEyMjE0NjE1WhcNMjUwNTE5MjE0NjE1WjAYMRYwFAYD VQQDEw02ODIyNmMyNy1hMDI4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArzcjWwfmXUqCCbNLuycwj2DwpXeEsfRzVLeNl+Kt/0+C0WgPiPU6YoY9xkaC 2Rp2Ry3HiVGOmtlkGlWbeJfU0ZsX7RT0VJzyct7mBNCxdt+Y6wjyJUZsFJbyD4KC WDV3tmFRvTPCcKfLYx0i+gbobSqWImnWIwCnT1errU2aZ2RtZ9fKy/4iJrNNgcaj +YOas5G6E6puBWUlUq13drWqpHotUJYe8nMd48eH0vzm6iFGxGJmSiR4Er2LK0pP GsNEV3OVUhjAGAXmv6p9Yl/HakLMqEmqCIdgwBeG8abE8TD90CR1u6Lctg3dP2t/ NCuDBiwx4NA/bngpwyzmwPjhfwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMjJMi+l rL8x2P0gd4VbVSQG3KaLMB8GA1UdIwQYMBaAFFnt6BabCiwyFGn/EbFii94MHyxB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERUZBRi8wNzE3NjI0MDQ5 MkMxMUVCQTk4MUJGNTJDNEY5QUUwMi9XZTNvRnBzS0xESVVhZjhSc1dLTDNnd2ZM RUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1dlM29GcHNLTERJVWFmOFJzV0tMM2d3ZkxFRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE RUZBRi8wNzE3NjI0MDQ5MkMxMUVCQTk4MUJGNTJDNEY5QUUwMi9XZTNvRnBzS0xE SVVhZjhSc1dLTDNnd2ZMRUUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCAduLj1CgbSgwMMPSuX1obWvsIWMLivBH2kmJ7ZAqA4dnbsO2Mm7JO EL+wjsR88K7krqRvdZH+OWRkd0R+JhbdCW+rFJn4ppd5JNoiO9KSR8GbLgWRA+Ry Kck4o1uIeiN4IHNp5EKtMC6mEaPOOwfGQK3FZTbaZpu2sN9If9fzqQAoQLKwwh4/ g53Wru5DGxlL81jtVNcZbD/AgTqxKVPLXEStvxmWL6f04mS2Fqzs3zQEc5SizuCg +jIQwJYSKkfYZh9ZUDiGRZPrYFDtJc+0ig0FMo9D32C2arvvXN0OdEiiRm2cdU0i bjmlt+9De1gZj7DOzpSQmnSZC+hY+zzW -----END CERTIFICATE-----Generated at Tue May 13 14:14:56 2025 by rpki-client