$ rpki-client -vvf rpki.apnic.net/member_repository/A91E9580/C7CE2E107F8D11EAAD8CD51EC4F9AE02/_k_aOWcBbBE6yAe4STQKxlIPCAI.mft File: _k_aOWcBbBE6yAe4STQKxlIPCAI.mft (raw, json) Hash identifier: 0OwTzWRZhc0gaKd0j2K8Caqg58GvhuYTo54U2p6akiQ= Subject key identifier: A5:2B:76:D6:56:52:23:42:FA:5C:98:95:01:E4:B0:94:51:C1:B7:1D Authority key identifier: FE:4F:DA:39:67:01:6C:11:3A:C8:07:B8:49:34:0A:C6:52:0F:08:02 Certificate issuer: /CN=A91E9580/serialNumber=FE4FDA3967016C113AC807B849340AC6520F0802 Certificate serial: 09EF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_k_aOWcBbBE6yAe4STQKxlIPCAI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E9580/C7CE2E107F8D11EAAD8CD51EC4F9AE02/_k_aOWcBbBE6yAe4STQKxlIPCAI.mft Manifest number: 09CC Signing time: Sun 04 May 2025 19:45:32 +0000 Manifest this update: Sun 04 May 2025 19:45:32 +0000 Manifest next update: Sun 11 May 2025 19:45:32 +0000 Files and hashes: 1: _k_aOWcBbBE6yAe4STQKxlIPCAI.crl (hash: Q5S/hG8TdvYMFQAUiA/GbJhkvfuPvobVzg90VFNBGlc=) 2: 699CD772C2B911EBBB4C8928C4F9AE02.roa (hash: yfdf5Mv/GJ9tUDZNlDnmM6hHiINUq2OvlkNbS0rVles=) 3: DE76B04EC2BA11EB99E5E36FC4F9AE02.roa (hash: qU5SgxuYfj9EbloGsgp5NlU+LGZow7QsAYGZSye/EIM=) 4: 91F5867070B811EDB6E1F81BC4F9AE02.roa (hash: PgZPVHxtNUmnyrhnnwVcg3kijll4dZA2GpurrS7x078=) 5: 1E9514207F9311EA8177A82DC4F9AE02.roa (hash: mCrr4AsBoN0UqBzrLZ/+kB+0BpCUxnU7wJAUdq4LZdc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E9580/C7CE2E107F8D11EAAD8CD51EC4F9AE02/_k_aOWcBbBE6yAe4STQKxlIPCAI.crl rsync://rpki.apnic.net/member_repository/A91E9580/C7CE2E107F8D11EAAD8CD51EC4F9AE02/_k_aOWcBbBE6yAe4STQKxlIPCAI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_k_aOWcBbBE6yAe4STQKxlIPCAI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 11 May 2025 19:45:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2543 (0x9ef) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E9580, serialNumber=FE4FDA3967016C113AC807B849340AC6520F0802 Validity Not Before: May 4 19:45:32 2025 GMT Not After : May 11 19:45:32 2025 GMT Subject: CN=6817c3dc-6b6a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:c6:9b:de:3f:0e:b4:b1:f4:aa:7f:01:df:a7: 9d:29:f8:94:40:f7:b8:6a:5a:ec:59:49:6b:6d:fa: 95:7b:99:66:28:82:a4:ad:21:28:89:a7:50:1c:20: ed:e0:58:a1:75:7f:37:1b:be:e4:e0:76:91:3d:a3: f2:f2:95:c8:ad:e8:98:ec:cd:b1:31:f8:07:e1:93: 07:64:b9:48:ab:17:69:5a:9e:ce:ce:4e:b3:d5:e8: f3:22:17:22:20:95:f2:a8:20:1b:13:0f:0f:8d:71: cc:b5:8d:45:a0:ad:e5:3d:23:58:30:a8:c4:a4:cd: 3e:d5:28:b0:7d:81:08:49:78:f9:6e:e7:ee:ef:6a: 46:dd:36:0c:33:7e:bc:51:6d:49:1b:ef:fe:50:41: c4:0e:bd:49:22:8e:6a:09:4c:20:6b:57:85:90:49: ec:bb:ff:c9:85:a7:40:1e:18:9c:74:38:05:c0:99: 7a:9c:93:62:30:dc:b7:a0:66:7a:5a:d2:49:9b:b7: 7b:96:40:8f:a5:9b:71:1a:38:04:0c:a0:a4:92:98: 92:88:78:1e:ff:5c:87:f1:f9:4a:f2:4a:8e:6d:5a: 2f:db:9c:df:f1:00:26:a3:8d:c8:77:9c:53:9c:2f: 2d:c1:a5:5c:93:8e:96:c6:d0:5e:c3:e7:60:19:89: 25:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A5:2B:76:D6:56:52:23:42:FA:5C:98:95:01:E4:B0:94:51:C1:B7:1D X509v3 Authority Key Identifier: keyid:FE:4F:DA:39:67:01:6C:11:3A:C8:07:B8:49:34:0A:C6:52:0F:08:02 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E9580/C7CE2E107F8D11EAAD8CD51EC4F9AE02/_k_aOWcBbBE6yAe4STQKxlIPCAI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_k_aOWcBbBE6yAe4STQKxlIPCAI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E9580/C7CE2E107F8D11EAAD8CD51EC4F9AE02/_k_aOWcBbBE6yAe4STQKxlIPCAI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 41:f4:29:c7:4c:fe:9f:fa:af:6f:19:59:68:f9:34:69:07:26: 27:f7:5e:cd:88:0b:05:a1:d5:9b:93:ae:00:85:85:91:6d:5c: a1:cc:f6:7d:35:21:db:17:9c:2f:3e:61:70:e5:e6:f8:f4:06: 4d:1f:d1:b6:0f:60:50:0b:7e:0e:72:4a:33:0f:73:87:ae:27: a5:70:1e:6d:9f:4e:1c:6d:6f:74:04:95:3f:e4:a0:a2:6e:09: 2c:7a:ce:ca:98:fc:b6:5a:e5:98:34:07:1c:a9:99:36:11:98: ef:58:e5:e7:1d:ed:8a:d2:f4:17:7d:85:00:5e:6c:b0:2d:5c: e6:33:b5:16:08:ae:ee:5f:84:5a:3b:60:cc:b5:b3:f2:22:92: 49:03:1d:8c:59:c9:a8:9e:47:2a:cd:89:5e:7c:70:a0:89:9b: db:64:43:03:0c:91:cd:d0:4c:48:ae:7f:ed:95:81:53:b3:87: a7:b8:7e:a5:4b:7d:72:fc:7d:d0:93:89:b8:55:1c:8f:91:b9: 13:0a:40:48:d4:eb:bf:24:9d:1b:31:a4:67:06:1a:bd:ca:04: 55:3f:d9:59:79:13:55:7e:b9:51:e8:4f:27:21:93:aa:22:c6: e8:a8:23:2d:c1:8d:a6:53:9e:91:46:f6:9d:d0:3f:6d:a3:cd: 04:2b:96:99 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCe8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTk1ODAxMTAvBgNVBAUTKEZFNEZEQTM5NjcwMTZDMTEzQUM4MDdCODQ5MzQwQUM2 NTIwRjA4MDIwHhcNMjUwNTA0MTk0NTMyWhcNMjUwNTExMTk0NTMyWjAYMRYwFAYD VQQDEw02ODE3YzNkYy02YjZhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxsab3j8OtLH0qn8B36edKfiUQPe4alrsWUlrbfqVe5lmKIKkrSEoiadQHCDt 4FihdX83G77k4HaRPaPy8pXIreiY7M2xMfgH4ZMHZLlIqxdpWp7Ozk6z1ejzIhci IJXyqCAbEw8PjXHMtY1FoK3lPSNYMKjEpM0+1SiwfYEISXj5bufu72pG3TYMM368 UW1JG+/+UEHEDr1JIo5qCUwga1eFkEnsu//JhadAHhicdDgFwJl6nJNiMNy3oGZ6 WtJJm7d7lkCPpZtxGjgEDKCkkpiSiHge/1yH8flK8kqObVov25zf8QAmo43Id5xT nC8twaVck46WxtBew+dgGYkljQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKUrdtZW UiNC+lyYlQHksJRRwbcdMB8GA1UdIwQYMBaAFP5P2jlnAWwROsgHuEk0CsZSDwgC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFOTU4MC9DN0NFMkUxMDdG OEQxMUVBQUQ4Q0Q1MUVDNEY5QUUwMi9fa19hT1djQmJCRTZ5QWU0U1RRS3hsSVBD QUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL19rX2FPV2NCYkJFNnlBZTRTVFFLeGxJUENBSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF OTU4MC9DN0NFMkUxMDdGOEQxMUVBQUQ4Q0Q1MUVDNEY5QUUwMi9fa19hT1djQmJC RTZ5QWU0U1RRS3hsSVBDQUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBB9CnHTP6f+q9vGVlo+TRpByYn917NiAsFodWbk64AhYWRbVyhzPZ9 NSHbF5wvPmFw5eb49AZNH9G2D2BQC34OckozD3OHrielcB5tn04cbW90BJU/5KCi bgkses7KmPy2WuWYNAccqZk2EZjvWOXnHe2K0vQXfYUAXmywLVzmM7UWCK7uX4Ra O2DMtbPyIpJJAx2MWcmonkcqzYlefHCgiZvbZEMDDJHN0ExIrn/tlYFTs4enuH6l S31y/H3Qk4m4VRyPkbkTCkBI1Ou/JJ0bMaRnBhq9ygRVP9lZeRNVfrlR6E8nIZOq IsboqCMtwY2mU56RRvad0D9to80EK5aZ -----END CERTIFICATE-----Generated at Mon May 5 06:16:02 2025 by rpki-client