$ rpki-client -vvf rpki.apnic.net/member_repository/A91E1887/84EE8B60355111EB9F41950EC4F9AE02/4Om5OZuKSl_c3iCfxb7AeK-Vz3s.mft File: 4Om5OZuKSl_c3iCfxb7AeK-Vz3s.mft (raw, json) Hash identifier: sWwGRXNAsg4QI1h2/dfv+oZAqvaWpTKQvucqaoDaLqg= Subject key identifier: 37:E0:F6:DC:83:C9:D4:94:F0:D2:6F:E7:1E:19:92:70:E6:92:B2:0E Authority key identifier: E0:E9:B9:39:9B:8A:4A:5F:DC:DE:20:9F:C5:BE:C0:78:AF:95:CF:7B Certificate issuer: /CN=A91E1887/serialNumber=E0E9B9399B8A4A5FDCDE209FC5BEC078AF95CF7B Certificate serial: 0723 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4Om5OZuKSl_c3iCfxb7AeK-Vz3s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E1887/84EE8B60355111EB9F41950EC4F9AE02/4Om5OZuKSl_c3iCfxb7AeK-Vz3s.mft Manifest number: 071D Signing time: Mon 12 May 2025 21:38:03 +0000 Manifest this update: Mon 12 May 2025 21:38:03 +0000 Manifest next update: Mon 19 May 2025 21:38:03 +0000 Files and hashes: 1: 4Om5OZuKSl_c3iCfxb7AeK-Vz3s.crl (hash: 5vzf8N6A0DpxZreYvUI9aIBgUwynMM13Bmafnp42wHY=) 2: 9F46C468355711EBA5B81020C4F9AE02.roa (hash: +mNdwjus2Kgr8/pfP9kkqV55Ej1FzQoLbQf0Qcf2IT0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E1887/84EE8B60355111EB9F41950EC4F9AE02/4Om5OZuKSl_c3iCfxb7AeK-Vz3s.crl rsync://rpki.apnic.net/member_repository/A91E1887/84EE8B60355111EB9F41950EC4F9AE02/4Om5OZuKSl_c3iCfxb7AeK-Vz3s.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4Om5OZuKSl_c3iCfxb7AeK-Vz3s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 19 May 2025 21:38:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1827 (0x723) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E1887, serialNumber=E0E9B9399B8A4A5FDCDE209FC5BEC078AF95CF7B Validity Not Before: May 12 21:38:03 2025 GMT Not After : May 19 21:38:03 2025 GMT Subject: CN=68226a3b-0bbf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:79:ac:94:8f:82:14:f3:67:5c:6e:0e:af:c4: df:28:67:d0:0b:03:f3:c7:bf:77:f4:3b:a7:90:6b: 62:b6:d0:f2:73:29:3c:4d:6c:da:b4:d8:3e:29:8a: 36:27:35:eb:b6:43:a8:af:4a:f0:07:d7:6e:a5:38: 04:4e:80:a0:11:9d:85:53:5f:de:46:23:14:0e:1c: 83:25:fd:67:4d:dd:b3:ff:30:b7:d8:b0:5b:02:72: e9:e5:c1:cb:44:e8:01:ec:b2:4f:89:f6:d8:48:51: ce:4f:90:34:2c:c0:89:ab:cc:bb:29:22:3b:bb:b2: 99:7a:9c:0e:f1:f8:4f:7c:24:50:29:07:3a:25:b5: a5:fa:e7:e5:0b:22:2e:f2:a0:3f:61:f1:47:6a:c7: 22:02:da:d0:83:e1:41:e5:d5:94:3c:f7:91:d2:a1: a7:fd:f2:a1:ad:6a:06:fb:4f:e6:b7:b9:52:4c:a5: a0:78:d5:1d:7e:0b:52:f4:30:15:0b:f6:a3:ea:a0: 80:25:20:e1:34:e8:8f:8e:75:43:7a:9b:3d:04:e7: 2c:97:c5:72:ea:f6:e2:2a:3e:d1:2a:f6:49:ec:e3: e1:19:c9:8a:07:b8:43:ac:f1:48:c4:bd:21:6d:1d: 76:a4:e9:db:ab:30:90:04:98:58:b5:16:61:d8:a0: 9f:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 37:E0:F6:DC:83:C9:D4:94:F0:D2:6F:E7:1E:19:92:70:E6:92:B2:0E X509v3 Authority Key Identifier: keyid:E0:E9:B9:39:9B:8A:4A:5F:DC:DE:20:9F:C5:BE:C0:78:AF:95:CF:7B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E1887/84EE8B60355111EB9F41950EC4F9AE02/4Om5OZuKSl_c3iCfxb7AeK-Vz3s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4Om5OZuKSl_c3iCfxb7AeK-Vz3s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E1887/84EE8B60355111EB9F41950EC4F9AE02/4Om5OZuKSl_c3iCfxb7AeK-Vz3s.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3e:a2:d2:df:41:f2:16:be:24:06:95:66:fb:7d:3a:48:cc:39: a4:13:ec:b4:63:5b:c0:2c:6c:4c:73:0b:87:15:fe:ad:ed:f2: 94:f2:55:52:a8:39:de:d4:27:d3:1a:38:32:67:58:7a:b8:6e: c5:27:f0:56:e6:10:4e:b5:aa:f5:38:dc:14:e5:48:c7:ae:6c: e4:75:43:86:de:29:27:f8:17:c8:b5:e5:91:ac:39:75:ff:42: 52:31:1f:29:e6:98:5f:a5:58:ac:2c:94:59:b2:b6:7f:aa:f0: 66:bf:9d:5f:09:2d:a0:b9:dc:fd:f9:20:e6:38:f8:dc:48:fe: 12:6e:03:f9:39:9b:56:bb:e9:ec:31:ab:df:d2:01:77:dd:bb: d7:56:e6:0c:00:7d:4c:fd:2e:03:fc:51:09:b9:d2:a3:70:e2: cc:e2:c4:33:b9:ba:37:3e:29:77:6f:27:a4:03:10:df:16:e3: bc:4b:e8:a1:bf:1b:c4:e0:7e:42:eb:17:35:70:0b:b3:9c:25: 6b:3c:ad:27:0c:c2:2c:6d:e7:cc:72:8c:ea:3b:c7:7f:13:93: 4f:ac:ae:ec:bc:96:f0:37:ac:de:9e:e7:87:44:9b:1d:0f:4a: 67:f5:8d:bc:89:59:75:71:24:2a:5e:7c:74:11:cb:54:3d:11: 87:53:fd:a2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICByMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTE4ODcxMTAvBgNVBAUTKEUwRTlCOTM5OUI4QTRBNUZEQ0RFMjA5RkM1QkVDMDc4 QUY5NUNGN0IwHhcNMjUwNTEyMjEzODAzWhcNMjUwNTE5MjEzODAzWjAYMRYwFAYD VQQDEw02ODIyNmEzYi0wYmJmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv3mslI+CFPNnXG4Or8TfKGfQCwPzx7939DunkGtittDycyk8TWzatNg+KYo2 JzXrtkOor0rwB9dupTgEToCgEZ2FU1/eRiMUDhyDJf1nTd2z/zC32LBbAnLp5cHL ROgB7LJPifbYSFHOT5A0LMCJq8y7KSI7u7KZepwO8fhPfCRQKQc6JbWl+uflCyIu 8qA/YfFHasciAtrQg+FB5dWUPPeR0qGn/fKhrWoG+0/mt7lSTKWgeNUdfgtS9DAV C/aj6qCAJSDhNOiPjnVDeps9BOcsl8Vy6vbiKj7RKvZJ7OPhGcmKB7hDrPFIxL0h bR12pOnbqzCQBJhYtRZh2KCfCwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDfg9tyD ydSU8NJv5x4ZknDmkrIOMB8GA1UdIwQYMBaAFODpuTmbikpf3N4gn8W+wHivlc97 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMTg4Ny84NEVFOEI2MDM1 NTExMUVCOUY0MTk1MEVDNEY5QUUwMi80T201T1p1S1NsX2MzaUNmeGI3QWVLLVZ6 M3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRPbTVPWnVLU2xfYzNpQ2Z4YjdBZUstVnozcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MTg4Ny84NEVFOEI2MDM1NTExMUVCOUY0MTk1MEVDNEY5QUUwMi80T201T1p1S1Ns X2MzaUNmeGI3QWVLLVZ6M3MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA+otLfQfIWviQGlWb7fTpIzDmkE+y0Y1vALGxMcwuHFf6t7fKU8lVS qDne1CfTGjgyZ1h6uG7FJ/BW5hBOtar1ONwU5UjHrmzkdUOG3ikn+BfIteWRrDl1 /0JSMR8p5phfpVisLJRZsrZ/qvBmv51fCS2gudz9+SDmOPjcSP4SbgP5OZtWu+ns Mavf0gF33bvXVuYMAH1M/S4D/FEJudKjcOLM4sQzubo3Pil3byekAxDfFuO8S+ih vxvE4H5C6xc1cAuznCVrPK0nDMIsbefMcozqO8d/E5NPrK7svJbwN6zenueHRJsd D0pn9Y28iVl1cSQqXnx0EctUPRGHU/2i -----END CERTIFICATE-----Generated at Wed May 14 21:59:38 2025 by rpki-client