$ rpki-client -vvf rpki.apnic.net/member_repository/A91EA449/401790FC073C11EF8D1DB056C4F9AE02/b2WgySJgsa2iMYeym6w76trAVmE.mft File: b2WgySJgsa2iMYeym6w76trAVmE.mft (raw, json) Hash identifier: v1xXv72/wkPsGAtV5c6BaLWOxH2eqai3E76sZM4uu5E= Subject key identifier: 51:B2:10:BD:E4:9A:46:90:BA:C1:73:A2:38:07:53:6D:3E:60:63:A2 Authority key identifier: 6F:65:A0:C9:22:60:B1:AD:A2:31:87:B2:9B:AC:3B:EA:DA:C0:56:61 Certificate issuer: /CN=A91EA449/serialNumber=6F65A0C92260B1ADA23187B29BAC3BEADAC05661 Certificate serial: D2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b2WgySJgsa2iMYeym6w76trAVmE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EA449/401790FC073C11EF8D1DB056C4F9AE02/b2WgySJgsa2iMYeym6w76trAVmE.mft Manifest number: CC Signing time: Tue 13 May 2025 05:01:28 +0000 Manifest this update: Tue 13 May 2025 05:01:27 +0000 Manifest next update: Tue 20 May 2025 05:01:27 +0000 Files and hashes: 1: b2WgySJgsa2iMYeym6w76trAVmE.crl (hash: bnBY7KJVu+RxgY+fAKzHwnXx3CkMKTNKUATlkDJs9nA=) 2: 9DE187FA2A8211F08575E277C4F9AE02.roa (hash: 3cMcK2pghckFQx7VXz26rv14j8WSI+XuvOlTpFA3AVU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EA449/401790FC073C11EF8D1DB056C4F9AE02/b2WgySJgsa2iMYeym6w76trAVmE.crl rsync://rpki.apnic.net/member_repository/A91EA449/401790FC073C11EF8D1DB056C4F9AE02/b2WgySJgsa2iMYeym6w76trAVmE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b2WgySJgsa2iMYeym6w76trAVmE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 20 May 2025 05:01:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 210 (0xd2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EA449, serialNumber=6F65A0C92260B1ADA23187B29BAC3BEADAC05661 Validity Not Before: May 13 05:01:27 2025 GMT Not After : May 20 05:01:27 2025 GMT Subject: CN=6822d228-8c56 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:cc:90:07:a2:ef:4f:90:95:81:35:fa:61:0d: 9b:7c:79:29:59:4e:f4:1d:e5:16:cb:29:ff:74:1f: bb:f5:47:25:7c:e0:07:22:07:62:47:ed:35:eb:cd: 06:a7:de:b7:6f:c6:28:ca:d1:0f:36:dd:5f:85:98: 85:39:7a:82:fc:0b:2b:18:5a:f4:ad:44:46:91:f5: 0e:24:aa:1d:44:37:c6:75:f6:76:f0:b7:2f:b4:b0: bd:77:6b:e1:b1:a5:02:43:7c:95:d8:86:4c:06:d6: 6e:90:b8:5b:65:15:7b:42:2e:5b:d0:16:11:f8:0a: d2:c2:58:e1:f8:ab:fc:1e:1b:b9:9b:4e:4b:d0:0b: d9:cb:f6:f3:d7:0a:ea:ae:39:13:91:26:80:aa:fb: a8:97:6d:b0:ae:d4:94:d9:28:f5:1a:a0:73:69:33: 19:3e:a3:6f:11:98:0a:eb:91:0a:1f:4d:7f:94:79: 79:6f:af:80:b9:05:49:f8:74:61:7e:f6:76:7b:2a: 5a:f9:4a:fd:33:a5:a7:03:0f:4c:72:f7:cb:58:59: 2f:9b:e1:b5:fd:f3:20:ef:cb:90:ec:75:87:4e:74: f7:fe:58:11:df:34:e7:7f:dc:83:c1:d7:8e:0a:6e: 4a:32:b5:da:8d:33:29:8a:3a:fc:78:6e:05:40:52: d1:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 51:B2:10:BD:E4:9A:46:90:BA:C1:73:A2:38:07:53:6D:3E:60:63:A2 X509v3 Authority Key Identifier: keyid:6F:65:A0:C9:22:60:B1:AD:A2:31:87:B2:9B:AC:3B:EA:DA:C0:56:61 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EA449/401790FC073C11EF8D1DB056C4F9AE02/b2WgySJgsa2iMYeym6w76trAVmE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b2WgySJgsa2iMYeym6w76trAVmE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EA449/401790FC073C11EF8D1DB056C4F9AE02/b2WgySJgsa2iMYeym6w76trAVmE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption d6:1b:a6:91:e9:03:2e:f6:8b:78:c1:53:44:28:37:32:f0:03: d5:26:6d:66:3e:83:07:82:b3:a6:91:5c:a0:0d:8d:af:aa:de: fc:f9:91:9f:5f:ef:3e:7a:70:77:da:fd:68:06:08:d2:cf:50: 52:2b:06:cd:17:3c:85:4e:87:48:db:93:50:c2:a0:79:4f:ba: bb:8e:cf:36:9a:6c:0a:3a:47:26:6f:cb:f4:07:08:9f:57:86: a9:9f:a7:fe:c0:2c:19:6e:92:1d:83:ad:b1:c1:f6:92:2b:ac: dd:e5:2e:ac:aa:28:da:b9:85:e0:5f:95:c9:f7:2f:44:40:8f: e2:ed:5f:72:42:94:a8:27:8b:1f:27:ef:4a:cb:55:e0:93:6c: 7f:3d:70:81:00:e0:a6:cd:29:c9:e4:de:b7:f4:8e:58:a0:80: 66:4d:16:74:e4:b5:a8:77:90:55:8e:d4:33:db:51:e4:fa:82: 4f:8e:4c:73:cb:fb:6d:1c:78:dd:ce:ba:46:21:98:e1:16:ee: 3b:e8:04:e4:58:bc:0f:9d:a9:86:e3:83:ba:c2:d1:3f:97:8e: 03:60:0c:e3:d1:c5:62:94:b8:ec:e4:8a:15:a9:f6:20:49:01: ed:e5:cd:77:f7:29:ac:73:4f:a9:76:e5:06:b5:60:b1:24:3c: 7f:e5:fb:9e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICANIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUE0NDkxMTAvBgNVBAUTKDZGNjVBMEM5MjI2MEIxQURBMjMxODdCMjlCQUMzQkVB REFDMDU2NjEwHhcNMjUwNTEzMDUwMTI3WhcNMjUwNTIwMDUwMTI3WjAYMRYwFAYD VQQDEw02ODIyZDIyOC04YzU2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArMyQB6LvT5CVgTX6YQ2bfHkpWU70HeUWyyn/dB+79UclfOAHIgdiR+01680G p963b8YoytEPNt1fhZiFOXqC/AsrGFr0rURGkfUOJKodRDfGdfZ28LcvtLC9d2vh saUCQ3yV2IZMBtZukLhbZRV7Qi5b0BYR+ArSwljh+Kv8Hhu5m05L0AvZy/bz1wrq rjkTkSaAqvuol22wrtSU2Sj1GqBzaTMZPqNvEZgK65EKH01/lHl5b6+AuQVJ+HRh fvZ2eypa+Ur9M6WnAw9McvfLWFkvm+G1/fMg78uQ7HWHTnT3/lgR3zTnf9yDwdeO Cm5KMrXajTMpijr8eG4FQFLRnwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFGyEL3k mkaQusFzojgHU20+YGOiMB8GA1UdIwQYMBaAFG9loMkiYLGtojGHspusO+rawFZh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQTQ0OS80MDE3OTBGQzA3 M0MxMUVGOEQxREIwNTZDNEY5QUUwMi9iMldneVNKZ3NhMmlNWWV5bTZ3NzZ0ckFW bUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2IyV2d5U0pnc2EyaU1ZZXltNnc3NnRyQVZtRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QTQ0OS80MDE3OTBGQzA3M0MxMUVGOEQxREIwNTZDNEY5QUUwMi9iMldneVNKZ3Nh MmlNWWV5bTZ3NzZ0ckFWbUUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDWG6aR6QMu9ot4wVNEKDcy8APVJm1mPoMHgrOmkVygDY2vqt78+ZGf X+8+enB32v1oBgjSz1BSKwbNFzyFTodI25NQwqB5T7q7js82mmwKOkcmb8v0Bwif V4apn6f+wCwZbpIdg62xwfaSK6zd5S6sqijauYXgX5XJ9y9EQI/i7V9yQpSoJ4sf J+9Ky1Xgk2x/PXCBAOCmzSnJ5N639I5YoIBmTRZ05LWod5BVjtQz21Hk+oJPjkxz y/ttHHjdzrpGIZjhFu476ATkWLwPnamG44O6wtE/l44DYAzj0cVilLjs5IoVqfYg SQHt5c139ymsc0+pduUGtWCxJDx/5fue -----END CERTIFICATE-----Generated at Wed May 14 20:35:47 2025 by rpki-client