$ rpki-client -vvf rpki.apnic.net/member_repository/A91E734C/A73235EC73C211EA9D40B885C4F9AE02/bGgIQDgcHvMtPI2786zECCz2pbM.mft File: bGgIQDgcHvMtPI2786zECCz2pbM.mft (raw, json) Hash identifier: R9HdsspALb7A3gmPWiQhOCKvcG1zZi5UJ0k46ZcRLiM= Subject key identifier: 1C:34:F1:AD:59:2F:AF:1E:EB:1F:59:E8:6D:79:17:25:D3:97:CD:1D Authority key identifier: 6C:68:08:40:38:1C:1E:F3:2D:3C:8D:BB:F3:AC:C4:08:2C:F6:A5:B3 Certificate issuer: /CN=A91E734C/serialNumber=6C680840381C1EF32D3C8DBBF3ACC4082CF6A5B3 Certificate serial: 0A2D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bGgIQDgcHvMtPI2786zECCz2pbM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E734C/A73235EC73C211EA9D40B885C4F9AE02/bGgIQDgcHvMtPI2786zECCz2pbM.mft Manifest number: 0A0F Signing time: Mon 12 May 2025 19:40:29 +0000 Manifest this update: Mon 12 May 2025 19:40:29 +0000 Manifest next update: Mon 19 May 2025 19:40:29 +0000 Files and hashes: 1: bGgIQDgcHvMtPI2786zECCz2pbM.crl (hash: FoQrGzTLxvYhODAlAOuCEhSXyRI2zDs7L6iB6Nme4wY=) 2: A32546F8A3DB11EA98BC5D48C4F9AE02.roa (hash: G01L1XLnOeHPHEOBsipJ57Qla0AD5wDZb1QdjAc+xSg=) 3: 2131145E9E4C11EABF30421BC4F9AE02.roa (hash: t6ZMY4L5BwCt1IMJhlimNMIeL0Ws6WTTcjT9QCJWlnU=) 4: A3D50B2EA3DB11EA98BC5D48C4F9AE02.roa (hash: ytlftfyFWjiXKIbSy8izVb+CXXbL9qxoIXy1hZ6RR08=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E734C/A73235EC73C211EA9D40B885C4F9AE02/bGgIQDgcHvMtPI2786zECCz2pbM.crl rsync://rpki.apnic.net/member_repository/A91E734C/A73235EC73C211EA9D40B885C4F9AE02/bGgIQDgcHvMtPI2786zECCz2pbM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bGgIQDgcHvMtPI2786zECCz2pbM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 19 May 2025 19:40:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2605 (0xa2d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E734C, serialNumber=6C680840381C1EF32D3C8DBBF3ACC4082CF6A5B3 Validity Not Before: May 12 19:40:29 2025 GMT Not After : May 19 19:40:29 2025 GMT Subject: CN=68224ead-bfcd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:4b:73:f7:e5:4e:2d:d8:e5:3b:50:de:9f:cf: 10:b1:58:8f:96:dc:12:d0:9d:94:b6:36:ad:f0:32: af:a3:16:1f:3a:99:fb:e9:95:fa:bc:78:b3:cd:9c: f9:b6:fb:72:bc:65:2f:f0:75:2f:f4:33:f2:f7:47: 04:c7:0f:4d:e5:92:d7:b8:20:a4:fa:2e:d7:45:29: 1e:03:cb:05:b7:4e:34:fe:98:06:97:b6:b5:39:85: 18:f0:d0:3a:1d:0e:40:1e:66:62:6b:ef:fa:48:f0: 95:fa:4c:b4:92:f5:30:96:57:e7:cc:20:1f:74:ad: ed:ca:f1:33:2e:f8:69:bc:7e:cb:2c:d6:5f:ce:c1: 66:e3:aa:46:71:ac:f5:cb:34:1d:ca:c0:c4:01:46: fc:1e:2f:34:5a:58:f7:a6:85:4a:2a:9b:c1:c5:34: f7:40:0e:67:5f:4c:3b:59:f2:f5:07:fd:46:b2:03: 00:d3:dd:56:16:85:f0:a6:81:d4:0b:d7:38:53:98: cf:0d:18:01:fe:eb:ca:33:dd:0d:7a:d2:c3:41:8f: cd:de:29:16:c5:e7:da:ee:1f:42:2f:5e:41:a7:25: fa:40:3e:09:21:9b:82:43:eb:7d:09:74:ab:69:ed: f5:16:20:3e:2d:9e:93:d2:28:b1:0c:cd:4e:ea:77: 34:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1C:34:F1:AD:59:2F:AF:1E:EB:1F:59:E8:6D:79:17:25:D3:97:CD:1D X509v3 Authority Key Identifier: keyid:6C:68:08:40:38:1C:1E:F3:2D:3C:8D:BB:F3:AC:C4:08:2C:F6:A5:B3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E734C/A73235EC73C211EA9D40B885C4F9AE02/bGgIQDgcHvMtPI2786zECCz2pbM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bGgIQDgcHvMtPI2786zECCz2pbM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E734C/A73235EC73C211EA9D40B885C4F9AE02/bGgIQDgcHvMtPI2786zECCz2pbM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 70:bf:c9:c2:07:9e:52:cf:21:29:72:b6:7b:b2:1a:69:dd:b1: 69:0f:70:0b:d6:5f:58:a1:46:50:d6:a7:c7:40:f9:43:4a:e8: 4a:e6:02:3f:0c:7a:88:86:0e:c0:4d:c5:ea:c0:59:5e:80:7e: 9b:4b:52:21:78:25:fc:7c:76:61:3d:7e:e2:ad:9b:a3:28:dd: 7e:d6:85:21:9e:44:f8:64:7e:b6:01:c2:ab:24:cc:1f:7e:82: 10:d2:76:12:55:36:46:da:3c:36:20:d2:5e:b3:f4:c3:3a:4f: 01:c1:95:89:8f:15:b0:ee:5b:d1:d4:a6:ce:5f:94:5c:7e:a5: 87:1b:01:ff:a4:66:70:4d:23:a3:48:b5:6f:bf:31:48:9e:f0: b9:5f:75:49:67:23:1e:d6:ca:e8:c3:4a:62:c1:5a:04:2b:6f: 4e:26:1b:23:1f:fd:d8:1e:fe:24:83:85:2e:16:76:97:d7:ab: 85:3f:ce:cd:b4:07:fa:b5:44:d9:d8:63:f9:88:82:37:e5:bd: 0a:c6:15:f7:6a:e2:98:eb:b8:87:c1:3f:d1:e1:5e:1e:d4:bc: 3f:8f:d8:11:6a:0a:ec:4c:fc:6f:0a:d4:e6:d8:5c:6d:aa:5e: 33:a8:d8:41:35:03:1f:ad:51:31:a9:33:4f:dd:f8:4b:cc:9d: 76:13:58:cc -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCi0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTczNEMxMTAvBgNVBAUTKDZDNjgwODQwMzgxQzFFRjMyRDNDOERCQkYzQUNDNDA4 MkNGNkE1QjMwHhcNMjUwNTEyMTk0MDI5WhcNMjUwNTE5MTk0MDI5WjAYMRYwFAYD VQQDEw02ODIyNGVhZC1iZmNkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArktz9+VOLdjlO1Den88QsViPltwS0J2Utjat8DKvoxYfOpn76ZX6vHizzZz5 tvtyvGUv8HUv9DPy90cExw9N5ZLXuCCk+i7XRSkeA8sFt040/pgGl7a1OYUY8NA6 HQ5AHmZia+/6SPCV+ky0kvUwllfnzCAfdK3tyvEzLvhpvH7LLNZfzsFm46pGcaz1 yzQdysDEAUb8Hi80Wlj3poVKKpvBxTT3QA5nX0w7WfL1B/1GsgMA091WFoXwpoHU C9c4U5jPDRgB/uvKM90NetLDQY/N3ikWxefa7h9CL15BpyX6QD4JIZuCQ+t9CXSr ae31FiA+LZ6T0iixDM1O6nc02wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBw08a1Z L68e6x9Z6G15FyXTl80dMB8GA1UdIwQYMBaAFGxoCEA4HB7zLTyNu/OsxAgs9qWz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNzM0Qy9BNzMyMzVFQzcz QzIxMUVBOUQ0MEI4ODVDNEY5QUUwMi9iR2dJUURnY0h2TXRQSTI3ODZ6RUNDejJw Yk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JHZ0lRRGdjSHZNdFBJMjc4NnpFQ0N6MnBiTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NzM0Qy9BNzMyMzVFQzczQzIxMUVBOUQ0MEI4ODVDNEY5QUUwMi9iR2dJUURnY0h2 TXRQSTI3ODZ6RUNDejJwYk0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBwv8nCB55SzyEpcrZ7shpp3bFpD3AL1l9YoUZQ1qfHQPlDSuhK5gI/ DHqIhg7ATcXqwFlegH6bS1IheCX8fHZhPX7irZujKN1+1oUhnkT4ZH62AcKrJMwf foIQ0nYSVTZG2jw2INJes/TDOk8BwZWJjxWw7lvR1KbOX5RcfqWHGwH/pGZwTSOj SLVvvzFInvC5X3VJZyMe1srow0piwVoEK29OJhsjH/3YHv4kg4UuFnaX16uFP87N tAf6tUTZ2GP5iII35b0KxhX3auKY67iHwT/R4V4e1Lw/j9gRagrsTPxvCtTm2Fxt ql4zqNhBNQMfrVExqTNP3fhLzJ12E1jM -----END CERTIFICATE-----Generated at Tue May 13 00:57:45 2025 by rpki-client