$ rpki-client -vvf rpki.apnic.net/member_repository/A91E8AF2/5732C838844C11EEB1F2CA29C4F9AE02/fNlYoAf08OVuSo0kV2aIYiurciE.mft File: fNlYoAf08OVuSo0kV2aIYiurciE.mft (raw, json) Hash identifier: snvLnmi7zMim81L859GA0OtuC9J3MglrlS9TiSBEUXY= Subject key identifier: F7:01:BB:22:77:5B:46:60:23:2E:FA:9E:8A:F3:CE:17:E4:EA:5E:65 Authority key identifier: 7C:D9:58:A0:07:F4:F0:E5:6E:4A:8D:24:57:66:88:62:2B:AB:72:21 Certificate issuer: /CN=A91E8AF2/serialNumber=7CD958A007F4F0E56E4A8D24576688622BAB7221 Certificate serial: 011F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fNlYoAf08OVuSo0kV2aIYiurciE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E8AF2/5732C838844C11EEB1F2CA29C4F9AE02/fNlYoAf08OVuSo0kV2aIYiurciE.mft Manifest number: 011B Signing time: Tue 13 May 2025 04:01:24 +0000 Manifest this update: Tue 13 May 2025 04:01:23 +0000 Manifest next update: Tue 20 May 2025 04:01:23 +0000 Files and hashes: 1: fNlYoAf08OVuSo0kV2aIYiurciE.crl (hash: wJr5rQk1ugXF/9P3NSNGhtAgxvM2I1VXVEu9+QG/hgg=) 2: E7021416B54B11EE86895416C4F9AE02.roa (hash: vzHahXAFIekcStIbFKvBTMDftL9nSsfmNUK1qbKIERQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E8AF2/5732C838844C11EEB1F2CA29C4F9AE02/fNlYoAf08OVuSo0kV2aIYiurciE.crl rsync://rpki.apnic.net/member_repository/A91E8AF2/5732C838844C11EEB1F2CA29C4F9AE02/fNlYoAf08OVuSo0kV2aIYiurciE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fNlYoAf08OVuSo0kV2aIYiurciE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 20 May 2025 04:01:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 287 (0x11f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E8AF2, serialNumber=7CD958A007F4F0E56E4A8D24576688622BAB7221 Validity Not Before: May 13 04:01:23 2025 GMT Not After : May 20 04:01:23 2025 GMT Subject: CN=6822c414-deff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:55:4d:a3:6a:9f:61:30:0a:5d:21:c0:57:dd: d7:8b:74:92:c0:09:3c:c0:5f:6a:7c:6b:f0:63:0e: df:73:2f:92:86:a8:28:bf:1c:35:cd:cc:75:31:53: b5:fc:1a:3f:dd:ca:2e:ae:b5:97:c1:f3:eb:bc:ea: b9:63:6b:f9:69:28:aa:89:24:00:b9:46:ee:97:ae: f9:bc:49:d2:85:50:20:03:ff:fd:11:2c:32:09:96: 1e:85:2e:60:cd:64:7e:aa:33:63:73:89:ce:4c:5c: 75:fe:c6:59:6b:9e:df:01:99:3b:72:1a:1c:02:b0: 99:18:ac:5c:c4:e9:81:a0:a8:5b:f6:b3:85:2c:70: c5:cc:5b:02:db:52:5f:49:7f:fa:03:31:97:4c:81: 8f:4b:24:a8:d1:22:5e:40:8f:ab:0e:97:fc:a9:59: c5:b8:bd:0d:15:db:28:49:06:1c:ff:c1:7a:aa:ba: 7b:3a:85:84:71:dc:69:c7:e7:c6:82:b1:ee:70:be: 8b:4c:a4:ff:b9:d8:95:88:1a:7b:db:dd:21:e8:87: c0:4a:e2:02:56:05:50:f4:bf:e8:1c:d0:7f:2d:ca: bf:16:83:7c:c3:65:02:9f:83:11:28:25:d3:2d:03: 28:c3:ca:88:2f:10:a7:b7:70:61:98:86:db:cc:6d: 57:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F7:01:BB:22:77:5B:46:60:23:2E:FA:9E:8A:F3:CE:17:E4:EA:5E:65 X509v3 Authority Key Identifier: keyid:7C:D9:58:A0:07:F4:F0:E5:6E:4A:8D:24:57:66:88:62:2B:AB:72:21 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E8AF2/5732C838844C11EEB1F2CA29C4F9AE02/fNlYoAf08OVuSo0kV2aIYiurciE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fNlYoAf08OVuSo0kV2aIYiurciE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E8AF2/5732C838844C11EEB1F2CA29C4F9AE02/fNlYoAf08OVuSo0kV2aIYiurciE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 16:ff:04:59:31:84:59:04:ea:7c:62:10:4d:54:83:03:4a:fc: 03:d7:fc:6c:35:6e:af:61:2b:d3:75:3e:d8:88:5e:96:91:33: 8d:a8:6a:c9:57:77:0d:7f:d1:33:f8:a5:e6:69:6f:cf:ec:33: 28:2a:7e:a8:04:d5:26:01:c3:08:24:d1:af:81:b9:66:f3:cf: 57:32:46:9c:ea:82:ae:76:a2:bd:79:85:8f:e7:89:66:00:39: e0:24:bb:8e:02:ae:58:9b:fd:4b:c0:f2:d2:bb:10:e2:ea:a0: 80:d5:6f:7c:a8:f9:c2:bc:82:9b:4c:0f:07:ad:76:a4:db:97: bd:45:bd:e5:93:11:53:8c:11:57:c2:ae:36:ad:10:a8:21:3a: 64:6c:e4:fe:de:d1:1e:38:a9:30:da:12:2f:ee:e7:e0:19:b3: 6e:fa:bc:2e:e2:27:6e:1f:cd:48:9f:82:40:f1:e9:75:b1:7d: a3:8b:76:b5:26:a1:25:63:45:a8:bc:4a:a3:05:1b:11:30:43: eb:6a:0f:25:00:1e:76:c5:40:89:4a:df:58:f0:99:56:90:84: 92:1b:d5:3f:0a:3f:4c:8c:9a:31:f7:f0:1f:ab:ce:99:89:9e: 60:d2:d0:93:a2:d0:1b:f1:8a:70:66:e2:7a:15:43:a1:c5:96: 70:38:a7:f7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAR8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RThBRjIxMTAvBgNVBAUTKDdDRDk1OEEwMDdGNEYwRTU2RTRBOEQyNDU3NjY4ODYy MkJBQjcyMjEwHhcNMjUwNTEzMDQwMTIzWhcNMjUwNTIwMDQwMTIzWjAYMRYwFAYD VQQDEw02ODIyYzQxNC1kZWZmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuVVNo2qfYTAKXSHAV93Xi3SSwAk8wF9qfGvwYw7fcy+Shqgovxw1zcx1MVO1 /Bo/3courrWXwfPrvOq5Y2v5aSiqiSQAuUbul675vEnShVAgA//9ESwyCZYehS5g zWR+qjNjc4nOTFx1/sZZa57fAZk7chocArCZGKxcxOmBoKhb9rOFLHDFzFsC21Jf SX/6AzGXTIGPSySo0SJeQI+rDpf8qVnFuL0NFdsoSQYc/8F6qrp7OoWEcdxpx+fG grHucL6LTKT/udiViBp7290h6IfASuICVgVQ9L/oHNB/Lcq/FoN8w2UCn4MRKCXT LQMow8qILxCnt3BhmIbbzG1XfwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPcBuyJ3 W0ZgIy76norzzhfk6l5lMB8GA1UdIwQYMBaAFHzZWKAH9PDlbkqNJFdmiGIrq3Ih MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFOEFGMi81NzMyQzgzODg0 NEMxMUVFQjFGMkNBMjlDNEY5QUUwMi9mTmxZb0FmMDhPVnVTbzBrVjJhSVlpdXJj aUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2ZObFlvQWYwOE9WdVNvMGtWMmFJWWl1cmNpRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF OEFGMi81NzMyQzgzODg0NEMxMUVFQjFGMkNBMjlDNEY5QUUwMi9mTmxZb0FmMDhP VnVTbzBrVjJhSVlpdXJjaUUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAW/wRZMYRZBOp8YhBNVIMDSvwD1/xsNW6vYSvTdT7YiF6WkTONqGrJ V3cNf9Ez+KXmaW/P7DMoKn6oBNUmAcMIJNGvgblm889XMkac6oKudqK9eYWP54lm ADngJLuOAq5Ym/1LwPLSuxDi6qCA1W98qPnCvIKbTA8HrXak25e9Rb3lkxFTjBFX wq42rRCoITpkbOT+3tEeOKkw2hIv7ufgGbNu+rwu4iduH81In4JA8el1sX2ji3a1 JqElY0WovEqjBRsRMEPrag8lAB52xUCJSt9Y8JlWkISSG9U/Cj9MjJox9/Afq86Z iZ5g0tCTotAb8YpwZuJ6FUOhxZZwOKf3 -----END CERTIFICATE-----Generated at Wed May 14 13:31:31 2025 by rpki-client