$ rpki-client -vvf rpki.apnic.net/member_repository/A91E8D27/C0C5807042E911E29750A32E2979BB20/a-Q-axOWQ8tMGebfcyO1A8STEds.mft File: a-Q-axOWQ8tMGebfcyO1A8STEds.mft (raw, json) Hash identifier: U3NYkDOChM+eU63P6+IeoWpEp4ZHI0QpXpinXUuzLfM= Subject key identifier: B9:D7:2B:65:FF:4C:D3:E4:FD:88:5D:D9:72:17:FD:D8:FB:EB:63:DA Authority key identifier: 6B:E4:3E:6B:13:96:43:CB:4C:19:E6:DF:73:23:B5:03:C4:93:11:DB Certificate issuer: /CN=A91E8D27/serialNumber=6BE43E6B139643CB4C19E6DF7323B503C49311DB Certificate serial: 33FC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/a-Q-axOWQ8tMGebfcyO1A8STEds.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E8D27/C0C5807042E911E29750A32E2979BB20/a-Q-axOWQ8tMGebfcyO1A8STEds.mft Manifest number: 33DF Signing time: Sat 10 May 2025 15:18:32 +0000 Manifest this update: Sat 10 May 2025 15:18:31 +0000 Manifest next update: Sat 17 May 2025 15:18:31 +0000 Files and hashes: 1: a-Q-axOWQ8tMGebfcyO1A8STEds.crl (hash: fcynwtFKbbsl+03ko5A6gvY3r0rRRc77zTPbf7nWamg=) 2: 56C3DC822B0B11EF97C4A74AC4F9AE02.roa (hash: CVWZvuJMAyjtpzrMYgtcHwOIm2n01TzT8z4GiPVYHFA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E8D27/C0C5807042E911E29750A32E2979BB20/a-Q-axOWQ8tMGebfcyO1A8STEds.crl rsync://rpki.apnic.net/member_repository/A91E8D27/C0C5807042E911E29750A32E2979BB20/a-Q-axOWQ8tMGebfcyO1A8STEds.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/a-Q-axOWQ8tMGebfcyO1A8STEds.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 17 May 2025 15:18:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13308 (0x33fc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E8D27, serialNumber=6BE43E6B139643CB4C19E6DF7323B503C49311DB Validity Not Before: May 10 15:18:31 2025 GMT Not After : May 17 15:18:31 2025 GMT Subject: CN=681f6e48-52b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:b5:00:0c:13:2f:30:02:14:98:52:e1:9c:d9: a6:80:28:16:0a:15:53:ac:20:e2:25:ca:c3:ea:b3: f6:09:df:78:31:44:12:a4:e7:d8:f1:a1:70:2e:53: 09:60:ca:d0:af:25:57:68:b7:61:5c:7d:f1:1e:ca: 16:58:07:de:2b:e5:c3:47:ba:87:dc:d3:c0:32:7e: a3:33:31:5d:d5:f2:04:52:b7:9d:89:31:8c:b2:c4: 28:12:48:bd:e7:d8:7a:c4:07:49:46:f4:d3:41:92: 66:ae:94:47:99:2c:ba:8e:51:59:06:f9:a1:9e:59: 2e:7d:6b:77:77:b8:8e:ad:ef:f1:4d:e7:c5:2b:86: dc:ed:1f:87:5e:65:1b:0c:2e:f6:b6:cc:a2:64:f6: db:4e:28:7f:ea:c7:31:d6:47:1a:23:c7:8c:a4:c1: ff:63:ff:4d:17:68:0d:02:c9:01:02:f0:b6:4e:b1: 6a:38:33:1a:d2:90:0e:85:9f:35:c7:73:95:31:3c: 4e:d4:b6:6c:c7:a1:39:94:36:fa:fc:6a:92:5f:6d: 9e:0c:46:44:76:2a:fd:ba:3d:04:99:96:09:54:b7: 08:ff:29:ff:37:be:d8:68:84:e2:cc:7c:fa:75:70: a8:33:26:4b:bb:ed:6f:a0:31:cb:69:7e:1b:fc:c3: c7:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B9:D7:2B:65:FF:4C:D3:E4:FD:88:5D:D9:72:17:FD:D8:FB:EB:63:DA X509v3 Authority Key Identifier: keyid:6B:E4:3E:6B:13:96:43:CB:4C:19:E6:DF:73:23:B5:03:C4:93:11:DB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E8D27/C0C5807042E911E29750A32E2979BB20/a-Q-axOWQ8tMGebfcyO1A8STEds.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/a-Q-axOWQ8tMGebfcyO1A8STEds.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E8D27/C0C5807042E911E29750A32E2979BB20/a-Q-axOWQ8tMGebfcyO1A8STEds.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1f:35:01:e2:7e:bc:d4:05:d4:88:df:65:1a:53:4a:25:72:6f: 62:3a:b0:f9:9a:26:2c:a7:27:ae:1a:2e:4b:0d:4e:a6:1e:14: ca:05:3f:11:fd:ce:b5:9f:e7:7c:1a:28:c2:0c:30:a2:4c:48: 78:0d:34:95:9d:9b:90:80:8f:ca:f0:7b:29:33:0b:2c:12:59: c1:8f:c9:24:7c:63:b6:c5:97:31:97:1f:6d:d0:12:b6:b8:26: 89:64:51:14:65:56:7a:a6:2f:1a:71:df:73:34:19:9e:f5:79: a9:a5:50:a9:6c:c8:5c:07:b4:39:e7:61:c1:c1:80:8c:6f:1f: 74:83:c1:b9:3d:42:50:a3:dc:9b:98:98:23:a9:e4:f8:59:93: 96:6f:f7:d4:6f:53:e2:84:68:4a:e5:48:58:7f:57:83:53:86: 8f:42:d2:d2:d3:db:b0:55:e5:1e:bb:2e:66:47:07:7b:09:d3: 5c:c5:29:96:10:0b:f9:12:51:24:1f:3a:2c:0e:cb:91:d4:18: 09:68:53:62:44:c0:b5:f2:34:1a:69:e8:05:e2:ce:1d:09:9f: 23:2a:a6:e6:8a:ba:a2:13:67:8b:ae:50:80:d6:47:c1:d2:c0: a6:b6:8d:5d:61:bb:75:8a:32:53:ea:7b:38:9c:6d:54:3b:ed: 35:2b:56:44 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICM/wwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RThEMjcxMTAvBgNVBAUTKDZCRTQzRTZCMTM5NjQzQ0I0QzE5RTZERjczMjNCNTAz QzQ5MzExREIwHhcNMjUwNTEwMTUxODMxWhcNMjUwNTE3MTUxODMxWjAYMRYwFAYD VQQDEw02ODFmNmU0OC01MmI4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw7UADBMvMAIUmFLhnNmmgCgWChVTrCDiJcrD6rP2Cd94MUQSpOfY8aFwLlMJ YMrQryVXaLdhXH3xHsoWWAfeK+XDR7qH3NPAMn6jMzFd1fIEUrediTGMssQoEki9 59h6xAdJRvTTQZJmrpRHmSy6jlFZBvmhnlkufWt3d7iOre/xTefFK4bc7R+HXmUb DC72tsyiZPbbTih/6scx1kcaI8eMpMH/Y/9NF2gNAskBAvC2TrFqODMa0pAOhZ81 x3OVMTxO1LZsx6E5lDb6/GqSX22eDEZEdir9uj0EmZYJVLcI/yn/N77YaITizHz6 dXCoMyZLu+1voDHLaX4b/MPHAQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLnXK2X/ TNPk/Yhd2XIX/dj762PaMB8GA1UdIwQYMBaAFGvkPmsTlkPLTBnm33MjtQPEkxHb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFOEQyNy9DMEM1ODA3MDQy RTkxMUUyOTc1MEEzMkUyOTc5QkIyMC9hLVEtYXhPV1E4dE1HZWJmY3lPMUE4U1RF ZHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2EtUS1heE9XUTh0TUdlYmZjeU8xQThTVEVkcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF OEQyNy9DMEM1ODA3MDQyRTkxMUUyOTc1MEEzMkUyOTc5QkIyMC9hLVEtYXhPV1E4 dE1HZWJmY3lPMUE4U1RFZHMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAfNQHifrzUBdSI32UaU0olcm9iOrD5miYspyeuGi5LDU6mHhTKBT8R /c61n+d8GijCDDCiTEh4DTSVnZuQgI/K8HspMwssElnBj8kkfGO2xZcxlx9t0BK2 uCaJZFEUZVZ6pi8acd9zNBme9XmppVCpbMhcB7Q552HBwYCMbx90g8G5PUJQo9yb mJgjqeT4WZOWb/fUb1PihGhK5UhYf1eDU4aPQtLS09uwVeUeuy5mRwd7CdNcxSmW EAv5ElEkHzosDsuR1BgJaFNiRMC18jQaaegF4s4dCZ8jKqbmirqiE2eLrlCA1kfB 0sCmto1dYbt1ijJT6ns4nG1UO+01K1ZE -----END CERTIFICATE-----Generated at Sat May 10 22:03:29 2025 by rpki-client