$ rpki-client -vvf rpki.apnic.net/member_repository/A91E7E45/06C8563C83D911EAA3124F5CC4F9AE02/xIKbbAf9gE3wklz_wWHGcCgHoCY.mft File: xIKbbAf9gE3wklz_wWHGcCgHoCY.mft (raw, json) Hash identifier: STqHJHIlX84xISSoEEBYRdXPmIwe4LUYFLVo1zCl5Jk= Subject key identifier: 6C:2B:4C:0B:DC:20:43:E9:8E:83:38:A4:BC:CC:E1:A3:21:0C:D1:09 Authority key identifier: C4:82:9B:6C:07:FD:80:4D:F0:92:5C:FF:C1:61:C6:70:28:07:A0:26 Certificate issuer: /CN=A91E7E45/serialNumber=C4829B6C07FD804DF0925CFFC161C6702807A026 Certificate serial: 0A02 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xIKbbAf9gE3wklz_wWHGcCgHoCY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E7E45/06C8563C83D911EAA3124F5CC4F9AE02/xIKbbAf9gE3wklz_wWHGcCgHoCY.mft Manifest number: 09CC Signing time: Sat 10 May 2025 19:45:47 +0000 Manifest this update: Sat 10 May 2025 19:45:47 +0000 Manifest next update: Sat 17 May 2025 19:45:47 +0000 Files and hashes: 1: xIKbbAf9gE3wklz_wWHGcCgHoCY.crl (hash: HhSqFouOBj/R1c3/mXiH60oWmriBUgt3O5mK7X5uy8I=) 2: 7A976A4E0A7011F0AA901820C4F9AE02.roa (hash: fT5I6I+PgWW4dacN3a4Ms0RKDB8N3MNCREMj8FDesrg=) 3: 0FD437CAC11811EE8328EF7AC4F9AE02.roa (hash: 2Dd7cd8I4OSARGKZ0mccoyZW6iVZIc9ObRTGe4O/Dcc=) 4: 9406C1209FDB11EDB88C5662C4F9AE02.roa (hash: NOfiYVkjVgVKJdndF7rjEsZWLBXmxcXaA+rDg1JFfcI=) 5: E8137EDEA29011EAA7A47878C4F9AE02.roa (hash: eb8Dxmgs1pJ56B+p/g4fWelI2bfJeXR9VvaW0O1EVCY=) 6: FBA017C0B26F11EF9B327759C4F9AE02.roa (hash: Fh5T2BpUHXj8z7zvCSIDzf9GCkAnUEieH5BE04K3ZeI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E7E45/06C8563C83D911EAA3124F5CC4F9AE02/xIKbbAf9gE3wklz_wWHGcCgHoCY.crl rsync://rpki.apnic.net/member_repository/A91E7E45/06C8563C83D911EAA3124F5CC4F9AE02/xIKbbAf9gE3wklz_wWHGcCgHoCY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xIKbbAf9gE3wklz_wWHGcCgHoCY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 17 May 2025 19:45:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2562 (0xa02) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E7E45, serialNumber=C4829B6C07FD804DF0925CFFC161C6702807A026 Validity Not Before: May 10 19:45:47 2025 GMT Not After : May 17 19:45:47 2025 GMT Subject: CN=681faceb-d768 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:7c:21:9f:5b:b0:82:70:b3:1c:48:c7:5c:32: 68:04:ef:03:1c:c9:e3:5e:69:ee:29:c5:95:72:59: 82:3e:90:e4:8e:66:f4:5d:2e:dc:fd:a7:8f:96:3c: 6d:73:3a:e6:c4:e6:9c:15:90:36:a1:cf:4b:ee:1e: f9:41:2a:74:87:2d:a7:55:09:f8:7b:23:da:85:18: 9d:16:69:69:ea:b7:17:22:1f:d3:96:85:69:52:90: 28:a8:a1:df:28:58:2f:5b:fe:ca:a7:69:70:ad:fb: 2f:27:90:7a:1b:08:6b:f8:40:e7:3f:9b:a3:ec:8c: 5f:3c:68:5b:98:e6:7f:24:7f:bd:a7:3e:8b:a2:b4: a4:6b:1b:1a:a8:21:0c:a9:7d:89:d5:b7:0c:e1:ec: 26:2a:74:93:0a:7b:b1:51:cd:db:6e:80:4b:b9:cd: 9f:fc:e4:da:26:ba:84:36:95:ae:03:00:53:b5:df: c6:bf:d1:58:16:74:db:4a:30:9f:ec:ec:27:cd:c7: cf:05:a8:d4:46:99:fd:15:c7:e4:95:7c:07:1e:be: 11:a5:36:18:37:dc:13:cc:39:3a:ac:3a:e1:f7:8a: 7f:28:98:e2:af:83:0a:3d:a7:05:2a:06:02:ba:2a: ad:02:8e:76:d0:98:b6:ea:ea:46:44:db:a7:bc:cf: 1c:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6C:2B:4C:0B:DC:20:43:E9:8E:83:38:A4:BC:CC:E1:A3:21:0C:D1:09 X509v3 Authority Key Identifier: keyid:C4:82:9B:6C:07:FD:80:4D:F0:92:5C:FF:C1:61:C6:70:28:07:A0:26 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E7E45/06C8563C83D911EAA3124F5CC4F9AE02/xIKbbAf9gE3wklz_wWHGcCgHoCY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xIKbbAf9gE3wklz_wWHGcCgHoCY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E7E45/06C8563C83D911EAA3124F5CC4F9AE02/xIKbbAf9gE3wklz_wWHGcCgHoCY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 31:29:0a:08:d5:83:e5:d9:d5:92:30:8b:68:0f:89:f0:62:cd: 90:35:43:ad:b0:c3:0a:53:88:82:72:68:43:ea:8b:06:54:c0: d6:e2:a5:3d:42:14:80:02:71:e6:5d:c4:09:11:e8:68:89:10: 84:7d:6d:bb:76:c4:9a:fb:bd:0e:ef:fa:c6:43:53:ae:50:f9: a3:a9:8d:24:48:a7:80:6d:70:83:e4:38:7d:62:fc:0a:48:c3: bb:60:68:44:a2:2f:17:72:fb:3a:dc:f3:2b:9b:6f:11:73:ab: 57:d1:e1:86:68:1c:8d:b1:6c:91:18:b3:29:b6:19:47:f8:59: bf:1b:a3:f3:3f:8d:9f:b5:47:44:d8:50:46:04:7a:6a:15:fd: ef:86:5d:82:90:16:87:a6:bb:1b:8a:da:7a:c0:37:dd:3a:4e: f3:06:96:c6:c6:29:d0:e0:35:de:82:9c:d8:a7:aa:8d:02:f5: f6:a1:6c:5b:a8:95:93:5b:41:cd:10:8f:65:95:bb:e4:0b:dd: dd:e5:04:22:dd:7e:0d:b7:f5:0c:50:df:5e:ab:2d:3e:48:09: 28:6e:96:a4:0b:2c:3d:2e:71:a0:31:7c:9d:48:68:03:b2:01: 2d:f9:41:36:82:bd:69:8e:b4:1e:2d:8b:ee:d0:3b:38:a6:e5: 27:78:ad:1d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCgIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTdFNDUxMTAvBgNVBAUTKEM0ODI5QjZDMDdGRDgwNERGMDkyNUNGRkMxNjFDNjcw MjgwN0EwMjYwHhcNMjUwNTEwMTk0NTQ3WhcNMjUwNTE3MTk0NTQ3WjAYMRYwFAYD VQQDEw02ODFmYWNlYi1kNzY4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAr3whn1uwgnCzHEjHXDJoBO8DHMnjXmnuKcWVclmCPpDkjmb0XS7c/aePljxt czrmxOacFZA2oc9L7h75QSp0hy2nVQn4eyPahRidFmlp6rcXIh/TloVpUpAoqKHf KFgvW/7Kp2lwrfsvJ5B6Gwhr+EDnP5uj7IxfPGhbmOZ/JH+9pz6LorSkaxsaqCEM qX2J1bcM4ewmKnSTCnuxUc3bboBLuc2f/OTaJrqENpWuAwBTtd/Gv9FYFnTbSjCf 7OwnzcfPBajURpn9FcfklXwHHr4RpTYYN9wTzDk6rDrh94p/KJjir4MKPacFKgYC uiqtAo520Ji26upGRNunvM8cYQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGwrTAvc IEPpjoM4pLzM4aMhDNEJMB8GA1UdIwQYMBaAFMSCm2wH/YBN8JJc/8FhxnAoB6Am MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFN0U0NS8wNkM4NTYzQzgz RDkxMUVBQTMxMjRGNUNDNEY5QUUwMi94SUtiYkFmOWdFM3drbHpfd1dIR2NDZ0hv Q1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hJS2JiQWY5Z0Uzd2tsel93V0hHY0NnSG9DWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF N0U0NS8wNkM4NTYzQzgzRDkxMUVBQTMxMjRGNUNDNEY5QUUwMi94SUtiYkFmOWdF M3drbHpfd1dIR2NDZ0hvQ1kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAxKQoI1YPl2dWSMItoD4nwYs2QNUOtsMMKU4iCcmhD6osGVMDW4qU9 QhSAAnHmXcQJEehoiRCEfW27dsSa+70O7/rGQ1OuUPmjqY0kSKeAbXCD5Dh9YvwK SMO7YGhEoi8Xcvs63PMrm28Rc6tX0eGGaByNsWyRGLMpthlH+Fm/G6PzP42ftUdE 2FBGBHpqFf3vhl2CkBaHprsbitp6wDfdOk7zBpbGxinQ4DXegpzYp6qNAvX2oWxb qJWTW0HNEI9llbvkC93d5QQi3X4Nt/UMUN9eqy0+SAkobpakCyw9LnGgMXydSGgD sgEt+UE2gr1pjrQeLYvu0Ds4puUneK0d -----END CERTIFICATE-----Generated at Mon May 12 19:47:41 2025 by rpki-client