$ rpki-client -vvf rpki.apnic.net/member_repository/A91E2AE5/8D3E54EAED5911E3B09011925911EA32/tDpaYNRoBqaf_vfGdiGexLqLo20.mft File: tDpaYNRoBqaf_vfGdiGexLqLo20.mft (raw, json) Hash identifier: M3fT8YUxHzHvK6L548nNmapQ8Plummer5RpIZx9cIkY= Subject key identifier: 04:3D:87:E5:DE:0F:58:B0:6D:73:AB:50:CD:90:29:65:5F:E3:48:3B Authority key identifier: B4:3A:5A:60:D4:68:06:A6:9F:FE:F7:C6:76:21:9E:C4:BA:8B:A3:6D Certificate issuer: /CN=A91E2AE5/serialNumber=B43A5A60D46806A69FFEF7C676219EC4BA8BA36D Certificate serial: 2B88 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tDpaYNRoBqaf_vfGdiGexLqLo20.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E2AE5/8D3E54EAED5911E3B09011925911EA32/tDpaYNRoBqaf_vfGdiGexLqLo20.mft Manifest number: 2B64 Signing time: Wed 14 May 2025 15:36:06 +0000 Manifest this update: Wed 14 May 2025 15:36:05 +0000 Manifest next update: Wed 21 May 2025 15:36:05 +0000 Files and hashes: 1: tDpaYNRoBqaf_vfGdiGexLqLo20.crl (hash: I+ZaAicP4cRQ8TTzgW3yn6iVly5V3JlixzkaBgFPEFs=) 2: 2815E7D4BF4211E9A93A3957C4F9AE02.roa (hash: q2QK7nleDfVKJdydH1BhBELt50ggXZGsQHTMsb+GgzQ=) 3: 43487B18BF1811E9A2C00E63C4F9AE02.roa (hash: R7GiqDFWTFG5/KzmRDTnU8CgA9M5hlMTeWah7zEstzM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E2AE5/8D3E54EAED5911E3B09011925911EA32/tDpaYNRoBqaf_vfGdiGexLqLo20.crl rsync://rpki.apnic.net/member_repository/A91E2AE5/8D3E54EAED5911E3B09011925911EA32/tDpaYNRoBqaf_vfGdiGexLqLo20.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tDpaYNRoBqaf_vfGdiGexLqLo20.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 21 May 2025 15:36:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11144 (0x2b88) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E2AE5, serialNumber=B43A5A60D46806A69FFEF7C676219EC4BA8BA36D Validity Not Before: May 14 15:36:05 2025 GMT Not After : May 21 15:36:05 2025 GMT Subject: CN=6824b865-6da8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:c8:7f:1d:79:d0:25:fa:b9:24:fe:30:dd:6c: 67:6a:74:aa:e7:31:5e:9b:01:5f:5b:0f:cf:f9:4b: 16:9f:33:5f:1f:97:80:40:d7:e3:b9:b0:21:dd:ba: 4c:81:b0:25:10:d3:a6:6f:f9:3f:a9:4f:97:1c:33: 6c:87:66:a0:97:e4:14:11:21:4d:c3:e3:43:94:3d: 69:c6:b0:af:3e:35:08:6a:db:6c:76:a2:f0:57:10: 17:bc:ba:5c:7f:13:95:0a:7b:2b:69:27:30:85:33: 2d:ea:32:ef:b6:8e:8d:2b:e3:ff:bd:bc:2b:fa:89: eb:55:c6:dc:fc:b3:09:62:a6:d4:c2:1c:f7:60:e0: 91:72:0d:4b:cd:fe:be:56:2e:fb:73:8b:38:bc:76: fa:05:80:3b:f2:fd:64:c4:40:eb:9a:cc:8a:46:8c: 47:e7:6e:e3:6c:6d:60:a0:a6:3e:75:5c:f4:fd:a9: fe:06:b6:95:e6:82:b3:04:40:c3:b2:73:ac:a6:53: 7d:76:69:84:92:83:d6:18:7a:b2:2e:e4:64:55:67: 9f:f6:1d:64:ca:49:9f:a9:0c:73:85:72:64:6e:32: 14:35:ad:c8:21:8e:2c:5e:04:d7:55:65:c1:f8:bf: 34:d3:54:cc:f5:bd:f5:92:2c:d2:62:67:a3:d4:a3: 42:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 04:3D:87:E5:DE:0F:58:B0:6D:73:AB:50:CD:90:29:65:5F:E3:48:3B X509v3 Authority Key Identifier: keyid:B4:3A:5A:60:D4:68:06:A6:9F:FE:F7:C6:76:21:9E:C4:BA:8B:A3:6D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E2AE5/8D3E54EAED5911E3B09011925911EA32/tDpaYNRoBqaf_vfGdiGexLqLo20.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tDpaYNRoBqaf_vfGdiGexLqLo20.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E2AE5/8D3E54EAED5911E3B09011925911EA32/tDpaYNRoBqaf_vfGdiGexLqLo20.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9c:00:aa:59:d7:c9:fc:e1:33:81:4a:44:94:5e:0a:23:b2:53: a0:6a:1e:99:06:ea:5b:6b:18:1c:3b:51:5c:92:32:bc:4c:fd: aa:0b:2b:e9:3c:a1:c4:4f:ed:5f:70:a3:b8:31:af:62:e4:25: 6f:84:2b:9e:29:c8:6f:2a:5d:13:57:6c:fa:55:a4:b4:40:cc: af:03:e2:96:ad:34:32:64:97:5b:e9:15:41:6e:16:07:c5:69: 3c:c3:d1:32:96:43:1d:3b:cd:7c:35:ff:84:c5:5a:6e:b2:34: a1:2f:90:99:31:c4:fd:3d:88:0e:df:7e:9f:a1:39:43:ac:b2: 78:c3:2a:3e:d6:b0:3b:68:af:9e:af:e4:62:67:1f:8f:40:14: e9:dd:09:e6:8a:cd:fa:8d:34:45:f7:c7:74:82:19:85:70:9b: 53:32:27:46:e1:b1:0d:c5:85:90:bb:85:5f:ef:f4:9a:66:df: 4b:c7:fb:71:71:0c:45:46:8b:a2:52:c3:9b:59:83:e9:38:0f: f2:81:7e:71:54:4d:ec:87:9e:df:42:72:2a:d4:9e:3b:7c:41: f8:f6:0b:32:12:4f:89:c3:b8:ba:8d:fd:37:94:a0:6b:c8:07: 7d:12:b7:f6:a7:83:d2:82:88:43:b7:ae:22:55:be:61:39:a9: b1:e5:0b:5a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICK4gwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTJBRTUxMTAvBgNVBAUTKEI0M0E1QTYwRDQ2ODA2QTY5RkZFRjdDNjc2MjE5RUM0 QkE4QkEzNkQwHhcNMjUwNTE0MTUzNjA1WhcNMjUwNTIxMTUzNjA1WjAYMRYwFAYD VQQDEw02ODI0Yjg2NS02ZGE4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqsh/HXnQJfq5JP4w3WxnanSq5zFemwFfWw/P+UsWnzNfH5eAQNfjubAh3bpM gbAlENOmb/k/qU+XHDNsh2agl+QUESFNw+NDlD1pxrCvPjUIattsdqLwVxAXvLpc fxOVCnsraScwhTMt6jLvto6NK+P/vbwr+onrVcbc/LMJYqbUwhz3YOCRcg1Lzf6+ Vi77c4s4vHb6BYA78v1kxEDrmsyKRoxH527jbG1goKY+dVz0/an+BraV5oKzBEDD snOsplN9dmmEkoPWGHqyLuRkVWef9h1kykmfqQxzhXJkbjIUNa3IIY4sXgTXVWXB +L8001TM9b31kizSYmej1KNCHQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAQ9h+Xe D1iwbXOrUM2QKWVf40g7MB8GA1UdIwQYMBaAFLQ6WmDUaAamn/73xnYhnsS6i6Nt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMkFFNS84RDNFNTRFQUVE NTkxMUUzQjA5MDExOTI1OTExRUEzMi90RHBhWU5Sb0JxYWZfdmZHZGlHZXhMcUxv MjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3REcGFZTlJvQnFhZl92ZkdkaUdleExxTG8yMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MkFFNS84RDNFNTRFQUVENTkxMUUzQjA5MDExOTI1OTExRUEzMi90RHBhWU5Sb0Jx YWZfdmZHZGlHZXhMcUxvMjAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCcAKpZ18n84TOBSkSUXgojslOgah6ZBupbaxgcO1FckjK8TP2qCyvp PKHET+1fcKO4Ma9i5CVvhCueKchvKl0TV2z6VaS0QMyvA+KWrTQyZJdb6RVBbhYH xWk8w9EylkMdO818Nf+ExVpusjShL5CZMcT9PYgO336foTlDrLJ4wyo+1rA7aK+e r+RiZx+PQBTp3Qnmis36jTRF98d0ghmFcJtTMidG4bENxYWQu4Vf7/SaZt9Lx/tx cQxFRouiUsObWYPpOA/ygX5xVE3sh57fQnIq1J47fEH49gsyEk+Jw7i6jf03lKBr yAd9Erf2p4PSgohDt64iVb5hOamx5Qta -----END CERTIFICATE-----Generated at Fri May 16 02:55:19 2025 by rpki-client