$ rpki-client -vvf rpki.apnic.net/member_repository/A91EA9BD/07495890918211E891C4EC10C4F9AE02/2ktcISO6nQ-AI3ja3dSAG1Zwo-0.mft File: 2ktcISO6nQ-AI3ja3dSAG1Zwo-0.mft (raw, json) Hash identifier: /RbWdmmZraFoVtXSWUT0Ut7Ikw5zg4+TumUEAjQ4FvI= Subject key identifier: C0:81:5C:71:CA:49:CE:37:BC:84:34:57:96:56:23:17:C6:4A:E4:02 Authority key identifier: DA:4B:5C:21:23:BA:9D:0F:80:23:78:DA:DD:D4:80:1B:56:70:A3:ED Certificate issuer: /CN=A91EA9BD/serialNumber=DA4B5C2123BA9D0F802378DADDD4801B5670A3ED Certificate serial: 13CF Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2ktcISO6nQ-AI3ja3dSAG1Zwo-0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EA9BD/07495890918211E891C4EC10C4F9AE02/2ktcISO6nQ-AI3ja3dSAG1Zwo-0.mft Manifest number: 13B2 Signing time: Mon 12 May 2025 15:25:44 +0000 Manifest this update: Mon 12 May 2025 15:25:43 +0000 Manifest next update: Mon 19 May 2025 15:25:43 +0000 Files and hashes: 1: 2ktcISO6nQ-AI3ja3dSAG1Zwo-0.crl (hash: 7UJyXfvrlcf+p9MHoVFHzrhuLJtXnpWvbh/ECB/xXrk=) 2: 76C6BCF6B72811ECAEFC180DC4F9AE02.roa (hash: V/gOKs9LECUvwP7f76II+OxQFAc41Q7rou6YKiKk5l8=) 3: B969D2D0BA4A11EC90B53115C4F9AE02.roa (hash: kCVXgcVyC3mGVdPkmV42EUSht4RHcewllIn6s7mcD00=) 4: 49678FBCB72B11EC8C8E3017C4F9AE02.roa (hash: 6y2+7m6fZBqF1vnJPBAlEhf0LTJdURa/vtEhojNLyMc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EA9BD/07495890918211E891C4EC10C4F9AE02/2ktcISO6nQ-AI3ja3dSAG1Zwo-0.crl rsync://rpki.apnic.net/member_repository/A91EA9BD/07495890918211E891C4EC10C4F9AE02/2ktcISO6nQ-AI3ja3dSAG1Zwo-0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2ktcISO6nQ-AI3ja3dSAG1Zwo-0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 19 May 2025 15:25:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5071 (0x13cf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EA9BD, serialNumber=DA4B5C2123BA9D0F802378DADDD4801B5670A3ED Validity Not Before: May 12 15:25:43 2025 GMT Not After : May 19 15:25:43 2025 GMT Subject: CN=682212f8-611b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:c1:36:d5:0c:ab:12:25:ec:02:06:39:2c:bb: e4:8f:5a:72:77:ea:b3:e5:86:53:27:d9:0a:c4:8b: 7a:bb:dc:7b:01:a1:5d:64:cf:11:c8:1f:89:7b:f8: de:e5:17:5d:95:e6:08:4a:cc:cc:9b:39:d7:88:22: 7b:23:87:21:0c:b6:01:e1:c2:19:23:a1:3d:50:0e: 04:8c:e4:bf:1c:e5:63:a2:95:1f:5f:38:e8:c4:a7: b5:6d:24:cd:ab:28:ff:d9:02:28:15:ba:57:7f:da: 27:73:82:ad:aa:c7:6a:5b:07:fe:76:1f:b8:78:8e: f3:51:b4:1f:0a:e4:0a:68:d3:be:07:a1:e3:35:d1: f5:5f:32:ed:9c:16:08:01:ee:b5:4b:0d:26:7e:d8: b5:f1:4d:a1:f4:3a:6f:85:b6:98:1c:17:a4:b3:74: 3b:7a:3e:fa:3d:88:be:c0:1f:5d:12:83:83:67:62: 45:53:74:6f:17:9c:5e:f8:21:57:9e:3d:ea:29:8f: aa:43:a1:83:9f:c7:e4:bb:a2:ea:6d:53:4f:39:bb: 4e:2b:13:11:d8:e7:7e:42:4e:81:97:e3:0b:6e:23: ef:60:c9:a4:9b:29:07:44:a6:c5:73:70:92:11:15: d6:fd:2a:d4:fa:48:95:8a:d6:b2:a9:0a:96:26:f1: c5:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C0:81:5C:71:CA:49:CE:37:BC:84:34:57:96:56:23:17:C6:4A:E4:02 X509v3 Authority Key Identifier: keyid:DA:4B:5C:21:23:BA:9D:0F:80:23:78:DA:DD:D4:80:1B:56:70:A3:ED X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EA9BD/07495890918211E891C4EC10C4F9AE02/2ktcISO6nQ-AI3ja3dSAG1Zwo-0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2ktcISO6nQ-AI3ja3dSAG1Zwo-0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EA9BD/07495890918211E891C4EC10C4F9AE02/2ktcISO6nQ-AI3ja3dSAG1Zwo-0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 84:32:0b:8d:17:68:62:24:71:94:10:ec:f7:a4:2c:70:9f:c9: 24:4a:f1:2e:95:98:ce:38:98:5f:05:b4:4d:bb:65:3f:cf:20: f3:f9:90:4f:4f:31:b6:95:9d:c1:22:10:f2:06:b5:ae:23:bf: f7:44:76:df:8e:fb:10:30:25:f3:e2:51:0a:f7:44:af:da:79: 80:a7:b6:8c:22:5a:3c:dd:2d:89:78:cf:50:aa:1b:65:ac:31: fa:7f:be:16:c0:db:64:a4:dd:dd:92:ff:b5:20:2c:62:cb:34: 81:08:ec:31:ab:ac:5e:fa:5f:7b:e1:46:10:64:54:b7:19:3a: ea:bd:f3:1b:be:41:f6:9c:f2:f7:f2:55:91:78:59:fd:c4:04: 68:09:90:c7:4f:c5:c6:a2:54:fc:62:f1:0c:e5:8a:e7:6a:be: b0:05:4a:fb:e2:ca:c3:f1:4a:c1:eb:cb:4b:d7:4c:c0:ca:bb: 38:5f:e9:e5:00:54:6a:15:c2:92:5d:9d:f9:21:e5:85:ac:02: b2:3b:c7:ab:44:81:54:56:55:39:36:d0:be:f6:e8:9e:24:0d: 15:95:f0:8c:3f:6c:77:eb:1d:e1:e7:4b:27:01:64:aa:48:a3: 2c:d0:58:81:8c:a0:07:ca:ff:89:96:57:32:0f:dd:8d:6f:ef: d2:a3:b0:d8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICE88wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUE5QkQxMTAvBgNVBAUTKERBNEI1QzIxMjNCQTlEMEY4MDIzNzhEQURERDQ4MDFC NTY3MEEzRUQwHhcNMjUwNTEyMTUyNTQzWhcNMjUwNTE5MTUyNTQzWjAYMRYwFAYD VQQDEw02ODIyMTJmOC02MTFiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAusE21QyrEiXsAgY5LLvkj1pyd+qz5YZTJ9kKxIt6u9x7AaFdZM8RyB+Je/je 5RddleYISszMmznXiCJ7I4chDLYB4cIZI6E9UA4EjOS/HOVjopUfXzjoxKe1bSTN qyj/2QIoFbpXf9onc4KtqsdqWwf+dh+4eI7zUbQfCuQKaNO+B6HjNdH1XzLtnBYI Ae61Sw0mfti18U2h9DpvhbaYHBeks3Q7ej76PYi+wB9dEoODZ2JFU3RvF5xe+CFX nj3qKY+qQ6GDn8fku6LqbVNPObtOKxMR2Od+Qk6Bl+MLbiPvYMmkmykHRKbFc3CS ERXW/SrU+kiVitayqQqWJvHFnQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMCBXHHK Sc43vIQ0V5ZWIxfGSuQCMB8GA1UdIwQYMBaAFNpLXCEjup0PgCN42t3UgBtWcKPt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQTlCRC8wNzQ5NTg5MDkx ODIxMUU4OTFDNEVDMTBDNEY5QUUwMi8ya3RjSVNPNm5RLUFJM2phM2RTQUcxWndv LTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzJrdGNJU082blEtQUkzamEzZFNBRzFad28tMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QTlCRC8wNzQ5NTg5MDkxODIxMUU4OTFDNEVDMTBDNEY5QUUwMi8ya3RjSVNPNm5R LUFJM2phM2RTQUcxWndvLTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCEMguNF2hiJHGUEOz3pCxwn8kkSvEulZjOOJhfBbRNu2U/zyDz+ZBP TzG2lZ3BIhDyBrWuI7/3RHbfjvsQMCXz4lEK90Sv2nmAp7aMIlo83S2JeM9Qqhtl rDH6f74WwNtkpN3dkv+1ICxiyzSBCOwxq6xe+l974UYQZFS3GTrqvfMbvkH2nPL3 8lWReFn9xARoCZDHT8XGolT8YvEM5Yrnar6wBUr74srD8UrB68tL10zAyrs4X+nl AFRqFcKSXZ35IeWFrAKyO8erRIFUVlU5NtC+9uieJA0VlfCMP2x36x3h50snAWSq SKMs0FiBjKAHyv+JllcyD92Nb+/So7DY -----END CERTIFICATE-----Generated at Tue May 13 18:57:27 2025 by rpki-client