$ rpki-client -vvf rpki.apnic.net/member_repository/A91E4D3D/A70A8FEED8B911EBABC1F485C4F9AE02/aGr0G8M9rvgo-rSuSjoNWHutDT8.mft File: aGr0G8M9rvgo-rSuSjoNWHutDT8.mft (raw, json) Hash identifier: PIqYrPsLlfnZE17hXIh/hGGz1KbjH8GtDBLvmBNSMg8= Subject key identifier: EA:A4:C2:AE:1E:F4:F1:E0:8A:78:5F:8D:69:E6:26:C9:87:93:94:C8 Authority key identifier: 68:6A:F4:1B:C3:3D:AE:F8:28:FA:B4:AE:4A:3A:0D:58:7B:AD:0D:3F Certificate issuer: /CN=A91E4D3D/serialNumber=686AF41BC33DAEF828FAB4AE4A3A0D587BAD0D3F Certificate serial: 059B Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/aGr0G8M9rvgo-rSuSjoNWHutDT8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E4D3D/A70A8FEED8B911EBABC1F485C4F9AE02/aGr0G8M9rvgo-rSuSjoNWHutDT8.mft Manifest number: 058A Signing time: Thu 08 May 2025 23:05:48 +0000 Manifest this update: Thu 08 May 2025 23:05:48 +0000 Manifest next update: Thu 15 May 2025 23:05:48 +0000 Files and hashes: 1: aGr0G8M9rvgo-rSuSjoNWHutDT8.crl (hash: MS4xluOOc/9+w6AmbC98PeX5d/61ER0tBDlcY51GVw4=) 2: 63FEB4F8D97411EBB8CC3F40C4F9AE02.roa (hash: yGTQCTRuD+wL7C1TW/wqimXEB6uk1jKvb4AJw6pgI0Q=) 3: 40310456D8D211EB97FF5586C4F9AE02.roa (hash: 4sD3HQWKjSm5VjpYk8vQ01ZycYjzVEzhHz6+9q9It7w=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E4D3D/A70A8FEED8B911EBABC1F485C4F9AE02/aGr0G8M9rvgo-rSuSjoNWHutDT8.crl rsync://rpki.apnic.net/member_repository/A91E4D3D/A70A8FEED8B911EBABC1F485C4F9AE02/aGr0G8M9rvgo-rSuSjoNWHutDT8.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/aGr0G8M9rvgo-rSuSjoNWHutDT8.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 15 May 2025 23:05:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1435 (0x59b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E4D3D, serialNumber=686AF41BC33DAEF828FAB4AE4A3A0D587BAD0D3F Validity Not Before: May 8 23:05:48 2025 GMT Not After : May 15 23:05:48 2025 GMT Subject: CN=681d38cc-525f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:31:8f:d1:00:78:12:59:49:d3:7f:d2:37:dc: 0c:af:50:d7:d7:61:1e:44:40:3a:8b:06:4d:0b:93: 02:5e:a3:a7:aa:fd:cf:31:01:fe:dc:35:47:58:d1: c0:ec:e2:26:4b:53:05:5a:6a:b3:61:6d:1a:7a:d2: 60:82:88:8d:df:3b:24:96:98:60:f0:9f:e2:79:1d: b9:66:15:d0:a7:a0:08:4a:74:69:e4:df:ee:19:0e: 55:36:56:a3:04:c1:84:85:73:1b:f8:ec:c2:25:82: a5:64:1c:d5:06:1e:00:ce:db:f3:49:30:61:e2:09: 6f:e3:5c:25:2d:72:ad:28:28:32:3a:65:da:0e:34: ec:8a:38:6d:c6:5c:d7:f2:a4:19:d0:d1:7f:7f:71: 3d:9a:2d:8e:36:2b:79:bc:a7:70:98:e4:8f:8c:ef: 80:cf:f5:35:0c:50:5e:33:88:7f:29:bc:35:48:be: 51:4b:2d:c3:d5:02:5b:e5:1f:7d:01:63:d1:22:e5: 31:06:96:d0:db:42:55:9f:00:4b:97:1e:de:d6:ab: 04:c5:56:5c:16:70:0e:74:c7:5f:3d:d7:00:58:51: f8:5b:3d:06:40:f6:6f:64:b5:50:e3:e4:f3:d0:a4: 8e:58:89:9c:4d:c6:ee:04:7d:43:aa:26:09:f6:d8: 38:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EA:A4:C2:AE:1E:F4:F1:E0:8A:78:5F:8D:69:E6:26:C9:87:93:94:C8 X509v3 Authority Key Identifier: keyid:68:6A:F4:1B:C3:3D:AE:F8:28:FA:B4:AE:4A:3A:0D:58:7B:AD:0D:3F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E4D3D/A70A8FEED8B911EBABC1F485C4F9AE02/aGr0G8M9rvgo-rSuSjoNWHutDT8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/aGr0G8M9rvgo-rSuSjoNWHutDT8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E4D3D/A70A8FEED8B911EBABC1F485C4F9AE02/aGr0G8M9rvgo-rSuSjoNWHutDT8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 82:29:83:5b:b8:84:c6:91:24:36:53:79:d8:a9:69:f8:c0:c4: 42:21:46:8a:aa:32:b6:ab:58:12:dc:50:4a:ad:1b:60:a7:f0: e5:b3:ea:fb:b7:8a:19:52:ba:8d:6b:fe:83:70:35:ba:91:a4: 08:6a:94:98:03:8f:14:cc:8b:19:68:b7:fb:3e:58:68:17:37: 4c:c2:47:6f:82:71:41:b9:cd:80:69:5a:e2:c6:1d:d4:e1:8f: 7f:ec:06:d8:95:ac:48:23:9c:a4:f9:35:6f:7b:55:9c:68:0b: f6:c7:e4:30:00:28:4f:84:54:59:3d:82:d9:10:df:b1:b3:43: bb:0f:77:57:0f:56:40:01:c6:84:0b:8d:45:c6:d3:f3:c8:9c: 7e:c0:93:ad:bb:b6:95:4b:92:1c:9b:b6:af:3b:5f:36:0e:6c: 05:e1:de:2c:b2:90:bd:f8:ba:c1:92:e4:95:57:5a:30:cd:2b: cf:9e:a7:3b:4f:91:ab:55:6a:f1:ad:7f:42:c6:9e:5e:6a:cd: 2a:c3:00:20:61:37:ff:0d:ce:fe:f4:11:ed:f4:0a:f5:3e:6e: e2:a2:3e:35:e4:c6:95:6c:f6:f9:48:71:f4:36:dd:54:a8:cf: 88:05:1a:62:81:09:bd:af:77:70:ba:32:16:57:2a:62:cd:f8: 5e:fa:ec:bf -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBZswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTREM0QxMTAvBgNVBAUTKDY4NkFGNDFCQzMzREFFRjgyOEZBQjRBRTRBM0EwRDU4 N0JBRDBEM0YwHhcNMjUwNTA4MjMwNTQ4WhcNMjUwNTE1MjMwNTQ4WjAYMRYwFAYD VQQDEw02ODFkMzhjYy01MjVmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvjGP0QB4EllJ03/SN9wMr1DX12EeREA6iwZNC5MCXqOnqv3PMQH+3DVHWNHA 7OImS1MFWmqzYW0aetJggoiN3zsklphg8J/ieR25ZhXQp6AISnRp5N/uGQ5VNlaj BMGEhXMb+OzCJYKlZBzVBh4AztvzSTBh4glv41wlLXKtKCgyOmXaDjTsijhtxlzX 8qQZ0NF/f3E9mi2ONit5vKdwmOSPjO+Az/U1DFBeM4h/Kbw1SL5RSy3D1QJb5R99 AWPRIuUxBpbQ20JVnwBLlx7e1qsExVZcFnAOdMdfPdcAWFH4Wz0GQPZvZLVQ4+Tz 0KSOWImcTcbuBH1DqiYJ9tg4owIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOqkwq4e 9PHginhfjWnmJsmHk5TIMB8GA1UdIwQYMBaAFGhq9BvDPa74KPq0rko6DVh7rQ0/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNEQzRC9BNzBBOEZFRUQ4 QjkxMUVCQUJDMUY0ODVDNEY5QUUwMi9hR3IwRzhNOXJ2Z28tclN1U2pvTldIdXRE VDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2FHcjBHOE05cnZnby1yU3VTam9OV0h1dERUOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NEQzRC9BNzBBOEZFRUQ4QjkxMUVCQUJDMUY0ODVDNEY5QUUwMi9hR3IwRzhNOXJ2 Z28tclN1U2pvTldIdXREVDgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCCKYNbuITGkSQ2U3nYqWn4wMRCIUaKqjK2q1gS3FBKrRtgp/Dls+r7 t4oZUrqNa/6DcDW6kaQIapSYA48UzIsZaLf7PlhoFzdMwkdvgnFBuc2AaVrixh3U 4Y9/7AbYlaxII5yk+TVve1WcaAv2x+QwAChPhFRZPYLZEN+xs0O7D3dXD1ZAAcaE C41FxtPzyJx+wJOtu7aVS5Icm7avO182DmwF4d4sspC9+LrBkuSVV1owzSvPnqc7 T5GrVWrxrX9Cxp5eas0qwwAgYTf/Dc7+9BHt9Ar1Pm7ioj415MaVbPb5SHH0Nt1U qM+IBRpigQm9r3dwujIWVypizfhe+uy/ -----END CERTIFICATE-----Generated at Sat May 10 08:36:14 2025 by rpki-client