$ rpki-client -vvf rpki.apnic.net/member_repository/A91E8BE3/E6E6BE44BF9C11EF9DA88282C4F9AE02/b9CIejkD49bhe7nP2O8mknC6ywc.mft File: b9CIejkD49bhe7nP2O8mknC6ywc.mft (raw, json) Hash identifier: kAAUHwYnB8uI6bwDXWf4vMfm9EKIZ+o6qwRr5xYlt/c= Subject key identifier: A8:D0:4A:23:FA:6D:8A:EB:FF:FD:95:84:4A:6E:8B:F2:DC:BC:DC:5D Authority key identifier: 6F:D0:88:7A:39:03:E3:D6:E1:7B:B9:CF:D8:EF:26:92:70:BA:CB:07 Certificate issuer: /CN=A91E8BE3/serialNumber=6FD0887A3903E3D6E17BB9CFD8EF269270BACB07 Certificate serial: 54 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/b9CIejkD49bhe7nP2O8mknC6ywc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E8BE3/E6E6BE44BF9C11EF9DA88282C4F9AE02/b9CIejkD49bhe7nP2O8mknC6ywc.mft Manifest number: 4F Signing time: Wed 07 May 2025 06:30:26 +0000 Manifest this update: Wed 07 May 2025 06:30:25 +0000 Manifest next update: Wed 14 May 2025 06:30:25 +0000 Files and hashes: 1: b9CIejkD49bhe7nP2O8mknC6ywc.crl (hash: xZw6rAWNUB6ATWTI5neYHEh4/BBdT2IzYyjDPU46KA0=) 2: 3139D35EBFA811EFA9B7DC2AC4F9AE02.roa (hash: gL/pv5Q4H259tRW/M/fWgTAynaK4mXLMVK09D4O3Mmw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E8BE3/E6E6BE44BF9C11EF9DA88282C4F9AE02/b9CIejkD49bhe7nP2O8mknC6ywc.crl rsync://rpki.apnic.net/member_repository/A91E8BE3/E6E6BE44BF9C11EF9DA88282C4F9AE02/b9CIejkD49bhe7nP2O8mknC6ywc.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/b9CIejkD49bhe7nP2O8mknC6ywc.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 13 May 2025 23:16:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 84 (0x54) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E8BE3, serialNumber=6FD0887A3903E3D6E17BB9CFD8EF269270BACB07 Validity Not Before: May 7 06:30:25 2025 GMT Not After : May 14 06:30:25 2025 GMT Subject: CN=681afe02-95f9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:85:cb:9f:0a:01:0b:70:37:82:53:4b:1c:ea: cc:75:32:0b:32:6c:6f:fc:39:9a:da:c3:d3:76:5a: bc:32:fb:4d:17:6c:f5:f3:60:a7:14:d1:4c:8a:6c: 5f:11:fd:38:a2:e5:7c:07:75:0d:a5:41:a3:ba:4e: 0a:d8:a8:53:0a:c6:d7:c7:7c:57:af:73:46:03:24: 60:4e:0a:f8:a5:cf:c2:59:41:06:0e:43:85:75:67: 26:40:19:26:f3:3d:9a:51:33:71:93:22:af:ba:1e: 79:63:04:52:87:96:54:55:0f:34:ef:75:f6:4f:27: 54:07:25:15:82:3c:01:cb:84:80:93:e6:5c:51:26: cc:e4:5f:14:de:44:ba:61:2b:53:74:ba:47:9f:d2: 2a:73:fa:36:9f:c8:4a:82:99:c2:52:a3:3f:c1:e5: 11:d3:d1:30:6a:a3:b4:2a:c2:dc:c3:96:b0:2b:a5: e0:a4:ef:2d:0d:14:08:94:5d:94:1b:58:2c:91:0f: 17:f9:db:f2:d8:e3:ae:58:79:bc:d1:01:1c:57:92: 63:63:f4:aa:e6:4f:a5:73:f2:26:ee:25:44:34:94: 29:a5:1e:2e:79:73:15:bf:0f:b1:36:57:b0:9a:e1: ca:4a:82:e0:9d:7c:63:0c:72:fa:e6:d4:d3:dd:fc: a1:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A8:D0:4A:23:FA:6D:8A:EB:FF:FD:95:84:4A:6E:8B:F2:DC:BC:DC:5D X509v3 Authority Key Identifier: keyid:6F:D0:88:7A:39:03:E3:D6:E1:7B:B9:CF:D8:EF:26:92:70:BA:CB:07 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E8BE3/E6E6BE44BF9C11EF9DA88282C4F9AE02/b9CIejkD49bhe7nP2O8mknC6ywc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/b9CIejkD49bhe7nP2O8mknC6ywc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E8BE3/E6E6BE44BF9C11EF9DA88282C4F9AE02/b9CIejkD49bhe7nP2O8mknC6ywc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 78:da:a6:37:5e:9c:35:35:40:2d:21:f7:2a:f1:d0:bc:c8:28: 96:8b:3f:33:25:16:eb:f6:9d:77:f9:14:40:3f:e5:d2:88:1d: 0b:ca:90:2a:8d:60:87:58:e9:c8:0d:37:9b:ad:51:97:02:c2: e8:34:e4:29:d0:8d:c7:08:36:08:24:9e:85:c8:19:e0:72:db: 26:08:3a:98:e8:d6:69:e6:c3:5d:15:be:b0:50:0f:30:1f:59: a0:73:b5:43:0e:cf:5d:6f:38:97:f5:35:84:ad:d8:a1:a1:3e: 01:f7:0c:60:b1:d8:b6:90:0f:a9:f4:f0:53:f3:73:01:68:5c: 65:46:55:9b:84:6a:47:dd:59:31:8f:c5:0b:9d:0b:b1:28:a1: 86:67:e5:e9:9a:39:fa:5f:2a:3d:8f:0c:ef:3e:7a:41:37:97: e2:47:4a:8c:b8:f5:3b:50:5f:66:95:0c:21:7c:62:97:0a:21: 0b:8b:92:91:56:a0:b3:11:26:d7:61:2c:d3:f7:c1:be:e5:7a: fc:3e:0d:d7:56:d2:c4:3e:89:6c:0b:3b:94:bb:c3:38:6d:f5: 2d:5c:e0:dd:e6:3d:c7:f8:d4:d3:83:68:2c:a3:60:48:1d:43: e9:c4:c8:8f:d8:1a:e7:13:0d:cd:eb:36:03:99:01:6e:ae:cf: 6d:71:09:26 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBVDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFF OEJFMzExMC8GA1UEBRMoNkZEMDg4N0EzOTAzRTNENkUxN0JCOUNGRDhFRjI2OTI3 MEJBQ0IwNzAeFw0yNTA1MDcwNjMwMjVaFw0yNTA1MTQwNjMwMjVaMBgxFjAUBgNV BAMTDTY4MWFmZTAyLTk1ZjkwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC5hcufCgELcDeCU0sc6sx1MgsybG/8OZraw9N2Wrwy+00XbPXzYKcU0UyKbF8R /Tii5XwHdQ2lQaO6TgrYqFMKxtfHfFevc0YDJGBOCvilz8JZQQYOQ4V1ZyZAGSbz PZpRM3GTIq+6HnljBFKHllRVDzTvdfZPJ1QHJRWCPAHLhICT5lxRJszkXxTeRLph K1N0ukef0ipz+jafyEqCmcJSoz/B5RHT0TBqo7QqwtzDlrArpeCk7y0NFAiUXZQb WCyRDxf52/LY465YebzRARxXkmNj9KrmT6Vz8ibuJUQ0lCmlHi55cxW/D7E2V7Ca 4cpKguCdfGMMcvrm1NPd/KEXAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUqNBKI/pt iuv//ZWESm6L8ty83F0wHwYDVR0jBBgwFoAUb9CIejkD49bhe7nP2O8mknC6ywcw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUU4QkUzL0U2RTZCRTQ0QkY5 QzExRUY5REE4ODI4MkM0RjlBRTAyL2I5Q0llamtENDliaGU3blAyTzhta25DNnl3 Yy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvYjlDSWVqa0Q0OWJoZTduUDJPOG1rbkM2eXdjLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUU4 QkUzL0U2RTZCRTQ0QkY5QzExRUY5REE4ODI4MkM0RjlBRTAyL2I5Q0llamtENDli aGU3blAyTzhta25DNnl3Yy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAHjapjdenDU1QC0h9yrx0LzIKJaLPzMlFuv2nXf5FEA/5dKIHQvKkCqN YIdY6cgNN5utUZcCwug05CnQjccINggknoXIGeBy2yYIOpjo1mnmw10VvrBQDzAf WaBztUMOz11vOJf1NYSt2KGhPgH3DGCx2LaQD6n08FPzcwFoXGVGVZuEakfdWTGP xQudC7EooYZn5emaOfpfKj2PDO8+ekE3l+JHSoy49TtQX2aVDCF8YpcKIQuLkpFW oLMRJtdhLNP3wb7levw+DddW0sQ+iWwLO5S7wzht9S1c4N3mPcf41NODaCyjYEgd Q+nEyI/YGucTDc3rNgOZAW6uz21xCSY= -----END CERTIFICATE-----Generated at Wed May 7 15:36:04 2025 by rpki-client