$ rpki-client -vvf rpki.apnic.net/member_repository/A91EBB2D/965BD57EB89511EC8242D27EC4F9AE02/Od1jNTmfErgZIRzpGqfc9i9tgbw.mft File: Od1jNTmfErgZIRzpGqfc9i9tgbw.mft (raw, json) Hash identifier: 8qSOaNuNSB3ENH9LVc8A1mxMhr3gFzK7WaCKftwR2T4= Subject key identifier: 9E:7B:41:67:54:0D:F2:F6:7F:BA:06:2D:51:3C:9D:85:8E:80:7C:A2 Authority key identifier: 39:DD:63:35:39:9F:12:B8:19:21:1C:E9:1A:A7:DC:F6:2F:6D:81:BC Certificate issuer: /CN=A91EBB2D/serialNumber=39DD6335399F12B819211CE91AA7DCF62F6D81BC Certificate serial: 0355 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Od1jNTmfErgZIRzpGqfc9i9tgbw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EBB2D/965BD57EB89511EC8242D27EC4F9AE02/Od1jNTmfErgZIRzpGqfc9i9tgbw.mft Manifest number: 034D Signing time: Thu 15 May 2025 01:02:27 +0000 Manifest this update: Thu 15 May 2025 01:02:26 +0000 Manifest next update: Thu 22 May 2025 01:02:26 +0000 Files and hashes: 1: Od1jNTmfErgZIRzpGqfc9i9tgbw.crl (hash: +STWo1GmTdVcaFLTAIK+1q1bpdPqsdQJJuI9kDWa5Aw=) 2: 8FA9D71068D611EEAD2D927FC4F9AE02.roa (hash: KckJvrN2O9+k1z94FA9x81wNFJzF7Y7yD41j1qhB6N4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EBB2D/965BD57EB89511EC8242D27EC4F9AE02/Od1jNTmfErgZIRzpGqfc9i9tgbw.crl rsync://rpki.apnic.net/member_repository/A91EBB2D/965BD57EB89511EC8242D27EC4F9AE02/Od1jNTmfErgZIRzpGqfc9i9tgbw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Od1jNTmfErgZIRzpGqfc9i9tgbw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 22 May 2025 01:02:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 853 (0x355) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EBB2D, serialNumber=39DD6335399F12B819211CE91AA7DCF62F6D81BC Validity Not Before: May 15 01:02:26 2025 GMT Not After : May 22 01:02:26 2025 GMT Subject: CN=68253d22-059a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:28:fd:1c:57:c5:05:95:a0:f8:d8:82:fa:5b: dc:73:b8:61:85:03:56:57:0e:fe:42:4a:fa:ac:18: 35:4b:61:5f:0c:4e:a9:55:c8:42:b5:8f:fe:ef:a3: 56:fa:8e:90:d8:8d:34:af:2b:22:d7:54:01:68:e8: c5:ac:87:8b:36:77:d7:3b:9e:17:d8:ed:ed:0a:f2: f2:46:d9:d0:a4:ce:34:60:94:e5:d7:8e:91:f5:2c: 5e:03:9a:6e:08:75:7e:ed:44:6e:cd:00:cb:ee:1f: ae:74:7c:74:0b:9a:ea:bf:fc:71:bf:c9:b3:8b:7e: 68:d5:62:2d:f6:10:97:52:78:55:8d:f5:b4:15:1a: ac:45:f2:36:6d:8c:ff:a3:f3:19:7d:98:f2:d2:9c: a7:c0:80:ed:0c:4c:9f:6e:be:0c:b2:50:f8:18:2c: 9c:00:67:3d:06:1d:e5:c7:3a:ec:c0:96:03:a6:d9: 8d:bc:7c:83:4f:72:a7:0a:04:cd:d0:0b:e3:c3:4e: da:a1:d9:ec:60:61:6c:17:91:06:1c:69:e5:d9:ee: 58:c0:3f:59:b7:6f:31:22:ec:67:06:fb:29:02:02: dc:7f:d0:89:5d:6d:53:88:50:2c:5a:6d:34:13:b5: 09:90:c7:2c:21:68:f1:56:df:24:95:0b:ad:41:c4: b1:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9E:7B:41:67:54:0D:F2:F6:7F:BA:06:2D:51:3C:9D:85:8E:80:7C:A2 X509v3 Authority Key Identifier: keyid:39:DD:63:35:39:9F:12:B8:19:21:1C:E9:1A:A7:DC:F6:2F:6D:81:BC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EBB2D/965BD57EB89511EC8242D27EC4F9AE02/Od1jNTmfErgZIRzpGqfc9i9tgbw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Od1jNTmfErgZIRzpGqfc9i9tgbw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EBB2D/965BD57EB89511EC8242D27EC4F9AE02/Od1jNTmfErgZIRzpGqfc9i9tgbw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b4:01:16:d0:97:ff:7b:b3:cf:20:12:1b:43:d7:bb:79:26:c3: 0e:0d:c7:a0:7e:e8:c4:e3:4c:5d:52:54:66:51:9e:75:c1:93: 80:83:c3:5c:44:79:9a:30:80:84:d0:26:4e:42:00:bb:db:7b: 2c:6d:19:00:ee:1f:50:0b:71:3d:ef:81:0b:9a:04:34:c3:d3: 00:cb:60:0c:95:a1:f7:57:04:67:ee:ee:80:03:39:fb:fd:ba: 72:cd:6d:48:0d:41:0f:4a:82:23:04:7f:e6:0e:11:c2:a0:41: c0:e5:e8:95:c1:a6:ad:9d:f3:1e:0d:6b:9a:f1:1a:d4:86:a9: c3:42:db:32:1e:12:03:c9:a6:b7:63:d1:b5:ec:f8:f8:6c:02: 4a:d8:db:20:b4:97:7e:8d:b1:da:75:59:40:0b:6f:6f:89:03: 04:62:c7:bc:7e:08:7a:56:f3:e1:a8:83:af:df:c2:3d:7a:03: f5:28:2f:b7:ad:0f:ff:87:ca:10:33:e7:35:2d:8b:53:eb:2b: ff:f2:10:e1:8b:9c:8b:1e:6c:49:b6:4a:47:91:a0:e8:a8:b9: ee:10:05:22:e6:c3:86:74:e4:8b:83:41:30:a1:82:03:72:f6: 15:7c:ea:61:7e:4e:89:52:3d:e7:07:c1:1c:28:6d:1f:e9:2f: 63:9a:dc:8b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA1UwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUJCMkQxMTAvBgNVBAUTKDM5REQ2MzM1Mzk5RjEyQjgxOTIxMUNFOTFBQTdEQ0Y2 MkY2RDgxQkMwHhcNMjUwNTE1MDEwMjI2WhcNMjUwNTIyMDEwMjI2WjAYMRYwFAYD VQQDEw02ODI1M2QyMi0wNTlhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqSj9HFfFBZWg+NiC+lvcc7hhhQNWVw7+Qkr6rBg1S2FfDE6pVchCtY/+76NW +o6Q2I00rysi11QBaOjFrIeLNnfXO54X2O3tCvLyRtnQpM40YJTl146R9SxeA5pu CHV+7URuzQDL7h+udHx0C5rqv/xxv8mzi35o1WIt9hCXUnhVjfW0FRqsRfI2bYz/ o/MZfZjy0pynwIDtDEyfbr4MslD4GCycAGc9Bh3lxzrswJYDptmNvHyDT3KnCgTN 0Avjw07aodnsYGFsF5EGHGnl2e5YwD9Zt28xIuxnBvspAgLcf9CJXW1TiFAsWm00 E7UJkMcsIWjxVt8klQutQcSx5wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJ57QWdU DfL2f7oGLVE8nYWOgHyiMB8GA1UdIwQYMBaAFDndYzU5nxK4GSEc6Rqn3PYvbYG8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQkIyRC85NjVCRDU3RUI4 OTUxMUVDODI0MkQyN0VDNEY5QUUwMi9PZDFqTlRtZkVyZ1pJUnpwR3FmYzlpOXRn YncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09kMWpOVG1mRXJnWklSenBHcWZjOWk5dGdidy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QkIyRC85NjVCRDU3RUI4OTUxMUVDODI0MkQyN0VDNEY5QUUwMi9PZDFqTlRtZkVy Z1pJUnpwR3FmYzlpOXRnYncubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC0ARbQl/97s88gEhtD17t5JsMODcegfujE40xdUlRmUZ51wZOAg8Nc RHmaMICE0CZOQgC723ssbRkA7h9QC3E974ELmgQ0w9MAy2AMlaH3VwRn7u6AAzn7 /bpyzW1IDUEPSoIjBH/mDhHCoEHA5eiVwaatnfMeDWua8RrUhqnDQtsyHhIDyaa3 Y9G17Pj4bAJK2NsgtJd+jbHadVlAC29viQMEYse8fgh6VvPhqIOv38I9egP1KC+3 rQ//h8oQM+c1LYtT6yv/8hDhi5yLHmxJtkpHkaDoqLnuEAUi5sOGdOSLg0EwoYID cvYVfOphfk6JUj3nB8EcKG0f6S9jmtyL -----END CERTIFICATE-----Generated at Fri May 16 13:02:11 2025 by rpki-client