$ rpki-client -vvf rpki.apnic.net/member_repository/A91DF076/A408F582B90411E9B1D50B41C4F9AE02/R4pL3QESHRxrMz7MPiW6Gohxmao.mft File: R4pL3QESHRxrMz7MPiW6Gohxmao.mft (raw, json) Hash identifier: 0rv3nl4r9B2DofUuj8NwCuBpqL41rXRodBPXftYeEEk= Subject key identifier: 15:63:CC:11:C2:E1:C2:31:AA:B1:E3:FB:E3:A7:3D:64:65:57:ED:CE Authority key identifier: 47:8A:4B:DD:01:12:1D:1C:6B:33:3E:CC:3E:25:BA:1A:88:71:99:AA Certificate issuer: /CN=A91DF076/serialNumber=478A4BDD01121D1C6B333ECC3E25BA1A887199AA Certificate serial: 0DC9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/R4pL3QESHRxrMz7MPiW6Gohxmao.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DF076/A408F582B90411E9B1D50B41C4F9AE02/R4pL3QESHRxrMz7MPiW6Gohxmao.mft Manifest number: 0DC0 Signing time: Sat 10 May 2025 17:46:21 +0000 Manifest this update: Sat 10 May 2025 17:46:20 +0000 Manifest next update: Sat 17 May 2025 17:46:20 +0000 Files and hashes: 1: R4pL3QESHRxrMz7MPiW6Gohxmao.crl (hash: eKa0RzsYvxV9ct6TxZjYoWFqXtu2GiEOj2cJKo1Ri9U=) 2: 7043D43679BB11ECB6D72266C4F9AE02.roa (hash: BOGz00jzThHZrjf4AnHf9t8835VNaXb3kuD1iUSrcgE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DF076/A408F582B90411E9B1D50B41C4F9AE02/R4pL3QESHRxrMz7MPiW6Gohxmao.crl rsync://rpki.apnic.net/member_repository/A91DF076/A408F582B90411E9B1D50B41C4F9AE02/R4pL3QESHRxrMz7MPiW6Gohxmao.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/R4pL3QESHRxrMz7MPiW6Gohxmao.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 17 May 2025 17:46:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3529 (0xdc9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DF076, serialNumber=478A4BDD01121D1C6B333ECC3E25BA1A887199AA Validity Not Before: May 10 17:46:20 2025 GMT Not After : May 17 17:46:20 2025 GMT Subject: CN=681f90ed-2e25 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:fe:f4:52:be:d2:c9:bb:30:6b:10:28:6e:11: d1:00:bb:02:05:35:16:6c:a8:24:59:a4:00:ca:52: d4:69:1d:7a:48:4a:5b:ea:cd:9a:5c:e1:4a:8b:a0: 50:c6:5d:73:f1:86:40:86:e5:4a:f9:cf:66:ff:29: 8e:5b:cc:ae:fa:38:9f:b8:8a:e2:0f:51:10:f8:40: 5e:2d:db:4b:8c:96:3f:66:c4:ef:0c:a8:78:5a:58: 6a:a0:19:22:34:6f:f4:3f:a7:54:f8:fe:d8:0a:3d: a2:41:87:fc:da:f3:a7:4c:83:1f:b5:56:67:57:3a: af:bf:7b:5d:16:e8:d0:82:ae:16:15:fd:40:9f:7d: d3:f9:fe:7f:6a:f4:9c:4b:5b:4b:82:e6:80:a5:ad: 48:81:db:c7:49:cc:e4:6c:7e:06:88:f9:8e:4f:e2: 62:45:dd:cf:dc:f1:88:e0:f1:fa:a2:c5:66:5c:09: 6a:94:ae:92:b6:0c:d5:17:72:9c:3b:21:a4:14:76: 40:44:a8:05:f8:8d:50:38:f8:1b:c1:19:95:c1:f9: 55:c3:0f:d2:8a:60:8f:1f:6f:96:db:4a:28:0e:c1: d3:06:d9:6e:44:90:8b:38:26:23:f4:ae:aa:bb:08: 43:39:d2:c9:45:f5:42:19:89:6a:24:fc:fe:1e:80: 39:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 15:63:CC:11:C2:E1:C2:31:AA:B1:E3:FB:E3:A7:3D:64:65:57:ED:CE X509v3 Authority Key Identifier: keyid:47:8A:4B:DD:01:12:1D:1C:6B:33:3E:CC:3E:25:BA:1A:88:71:99:AA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DF076/A408F582B90411E9B1D50B41C4F9AE02/R4pL3QESHRxrMz7MPiW6Gohxmao.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/R4pL3QESHRxrMz7MPiW6Gohxmao.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DF076/A408F582B90411E9B1D50B41C4F9AE02/R4pL3QESHRxrMz7MPiW6Gohxmao.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 97:ed:64:0e:fb:9b:0a:ae:9f:04:25:5a:bb:e4:11:db:27:83: ba:fb:66:a6:f7:7f:bc:3d:ac:e5:7e:4b:2b:71:e3:5f:08:69: 80:e0:94:7a:f1:f1:95:68:27:13:ec:f4:09:1a:16:99:52:92: 77:27:bf:99:6c:66:c4:48:43:d4:26:65:8d:85:c9:9e:71:98: e5:91:dd:81:ac:29:3f:70:44:a2:be:f0:0c:5c:a4:87:cc:9b: 2a:5c:3e:94:0b:80:bc:61:2e:ca:0d:fc:df:27:05:ad:df:d7: dc:55:58:cb:42:73:8a:e8:a5:75:7a:e8:03:5a:48:a1:b6:49: 8a:4f:91:02:4a:36:19:9a:58:79:5c:17:79:4b:4a:8f:75:75: 64:24:13:fe:d7:19:a2:9e:db:05:e3:e2:b7:f9:82:52:46:df: 94:ab:e8:53:94:bd:69:da:e1:8d:5e:1c:07:d1:51:f8:1a:06: a4:6a:37:2f:25:59:16:4d:04:d3:02:2c:15:d2:bc:ff:16:c3: d5:99:e9:ee:ad:7c:92:6b:26:05:aa:64:d7:cf:26:54:e4:4a: 50:55:a3:b9:5c:dc:10:ee:cf:6a:36:b8:42:35:0a:ee:5e:6f: 36:9c:ee:e1:65:bd:5d:5c:c8:98:b6:f1:e1:e3:22:0f:cc:9d: 6f:48:44:f3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDckwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REYwNzYxMTAvBgNVBAUTKDQ3OEE0QkREMDExMjFEMUM2QjMzM0VDQzNFMjVCQTFB ODg3MTk5QUEwHhcNMjUwNTEwMTc0NjIwWhcNMjUwNTE3MTc0NjIwWjAYMRYwFAYD VQQDEw02ODFmOTBlZC0yZTI1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwf70Ur7SybswaxAobhHRALsCBTUWbKgkWaQAylLUaR16SEpb6s2aXOFKi6BQ xl1z8YZAhuVK+c9m/ymOW8yu+jifuIriD1EQ+EBeLdtLjJY/ZsTvDKh4WlhqoBki NG/0P6dU+P7YCj2iQYf82vOnTIMftVZnVzqvv3tdFujQgq4WFf1An33T+f5/avSc S1tLguaApa1IgdvHSczkbH4GiPmOT+JiRd3P3PGI4PH6osVmXAlqlK6StgzVF3Kc OyGkFHZARKgF+I1QOPgbwRmVwflVww/SimCPH2+W20ooDsHTBtluRJCLOCYj9K6q uwhDOdLJRfVCGYlqJPz+HoA5hwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBVjzBHC 4cIxqrHj++OnPWRlV+3OMB8GA1UdIwQYMBaAFEeKS90BEh0cazM+zD4luhqIcZmq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERjA3Ni9BNDA4RjU4MkI5 MDQxMUU5QjFENTBCNDFDNEY5QUUwMi9SNHBMM1FFU0hSeHJNejdNUGlXNkdvaHht YW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1I0cEwzUUVTSFJ4ck16N01QaVc2R29oeG1hby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE RjA3Ni9BNDA4RjU4MkI5MDQxMUU5QjFENTBCNDFDNEY5QUUwMi9SNHBMM1FFU0hS eHJNejdNUGlXNkdvaHhtYW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCX7WQO+5sKrp8EJVq75BHbJ4O6+2am93+8PazlfksrceNfCGmA4JR6 8fGVaCcT7PQJGhaZUpJ3J7+ZbGbESEPUJmWNhcmecZjlkd2BrCk/cESivvAMXKSH zJsqXD6UC4C8YS7KDfzfJwWt39fcVVjLQnOK6KV1eugDWkihtkmKT5ECSjYZmlh5 XBd5S0qPdXVkJBP+1xmintsF4+K3+YJSRt+Uq+hTlL1p2uGNXhwH0VH4Ggakajcv JVkWTQTTAiwV0rz/FsPVmenurXySayYFqmTXzyZU5EpQVaO5XNwQ7s9qNrhCNQru Xm82nO7hZb1dXMiYtvHh4yIPzJ1vSETz -----END CERTIFICATE-----Generated at Mon May 12 09:12:17 2025 by rpki-client