$ rpki-client -vvf rpki.apnic.net/member_repository/A91EC7F2/48EFD17CF1A711E8AA614F51C4F9AE02/g71HreMCJZx1jHTIMLKebzpXc9s.mft File: g71HreMCJZx1jHTIMLKebzpXc9s.mft (raw, json) Hash identifier: X98P2ht4Pn69U0ydV6qARgaSB1sZgVYjwMyTTX+ggmE= Subject key identifier: 6B:6A:29:AC:DD:AF:7F:CE:8D:AA:3E:BB:AA:46:C2:AA:65:BB:8E:55 Authority key identifier: 83:BD:47:AD:E3:02:25:9C:75:8C:74:C8:30:B2:9E:6F:3A:57:73:DB Certificate issuer: /CN=A91EC7F2/serialNumber=83BD47ADE302259C758C74C830B29E6F3A5773DB Certificate serial: 11D1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g71HreMCJZx1jHTIMLKebzpXc9s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EC7F2/48EFD17CF1A711E8AA614F51C4F9AE02/g71HreMCJZx1jHTIMLKebzpXc9s.mft Manifest number: 11B9 Signing time: Mon 12 May 2025 17:07:56 +0000 Manifest this update: Mon 12 May 2025 17:07:55 +0000 Manifest next update: Mon 19 May 2025 17:07:55 +0000 Files and hashes: 1: g71HreMCJZx1jHTIMLKebzpXc9s.crl (hash: 33llDCx1uqzZpXUuAymeSRFxNiLUr2RF8MzJ8mcrZaU=) 2: 9D003F28621711E9B8C69E15C4F9AE02.roa (hash: Cinni1CQdvw9QZ/TfXqeTRH7AM3KM0M/pfCrSaEHDYM=) 3: 09F041C675FB11EAB470A130C4F9AE02.roa (hash: TVhSAgEvsJfuZaOVoxgSaRmJu5V64CD24chcx4Ly8ag=) 4: 9C7048DC621711E9B8C69E15C4F9AE02.roa (hash: ScKShaSanQZL0Fzy7Q3PEdRjE3XVz96AGuDEeuPLE9c=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EC7F2/48EFD17CF1A711E8AA614F51C4F9AE02/g71HreMCJZx1jHTIMLKebzpXc9s.crl rsync://rpki.apnic.net/member_repository/A91EC7F2/48EFD17CF1A711E8AA614F51C4F9AE02/g71HreMCJZx1jHTIMLKebzpXc9s.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g71HreMCJZx1jHTIMLKebzpXc9s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 19 May 2025 17:07:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4561 (0x11d1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EC7F2, serialNumber=83BD47ADE302259C758C74C830B29E6F3A5773DB Validity Not Before: May 12 17:07:55 2025 GMT Not After : May 19 17:07:55 2025 GMT Subject: CN=68222aeb-2743 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:30:42:95:00:b2:49:18:4d:91:95:2a:b2:a0: 97:57:58:83:e7:50:3d:9f:e3:a1:fe:b4:04:62:2d: a1:15:9c:32:c0:26:85:37:ff:f2:e8:bf:fe:0c:d5: 46:d0:60:37:cf:b2:72:68:8b:cc:8e:e3:f5:96:82: 44:d1:06:26:63:f6:2a:f2:bd:27:94:31:9e:21:02: 9d:f4:84:99:15:32:5d:02:4f:8f:69:4d:f4:9d:c8: ea:8f:29:32:c6:cc:75:82:1c:e4:6f:aa:66:e6:a4: b2:1f:e8:5b:19:a8:a4:a0:19:8a:cf:64:de:2a:c6: 55:2b:b3:0a:bc:76:92:b7:34:26:61:f0:2d:b2:62: ea:d9:e4:89:04:32:2f:90:25:59:1e:c1:70:df:ef: f3:fc:32:65:cb:e5:c6:77:04:c4:77:ff:0c:f4:2b: 88:19:18:a6:35:58:2f:5c:2a:eb:11:fb:5d:15:6e: 8e:51:aa:5b:ca:f4:75:69:9e:cb:9c:13:c5:89:8c: b8:00:64:37:00:48:da:ce:ef:62:1c:5d:c8:d4:2d: cb:da:3f:4f:37:0a:a6:e7:68:ae:53:f3:b8:03:07: ef:43:26:ac:aa:fc:ec:c4:2c:08:55:a1:91:c9:16: 3a:41:d8:37:d2:6f:48:d4:77:98:47:4f:bb:cd:5e: 3f:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6B:6A:29:AC:DD:AF:7F:CE:8D:AA:3E:BB:AA:46:C2:AA:65:BB:8E:55 X509v3 Authority Key Identifier: keyid:83:BD:47:AD:E3:02:25:9C:75:8C:74:C8:30:B2:9E:6F:3A:57:73:DB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EC7F2/48EFD17CF1A711E8AA614F51C4F9AE02/g71HreMCJZx1jHTIMLKebzpXc9s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g71HreMCJZx1jHTIMLKebzpXc9s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EC7F2/48EFD17CF1A711E8AA614F51C4F9AE02/g71HreMCJZx1jHTIMLKebzpXc9s.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 50:b6:b9:9e:50:09:dc:fc:8a:19:bf:7c:ad:e7:23:89:19:7b: b8:07:ce:ab:cb:3d:67:05:3e:e7:6f:62:86:93:1a:e2:af:8f: 4a:19:7b:80:f0:52:c3:c4:ee:b8:09:4e:7d:23:6a:14:cf:b5: c0:dc:6c:f9:7a:96:ac:27:6f:70:8d:18:83:a4:99:bb:5c:7a: 59:e0:3a:db:95:9e:f0:54:6b:07:bc:db:e0:4f:01:be:74:49: 92:be:88:22:86:42:da:12:c3:32:19:f3:02:85:4d:fe:ac:ab: 62:3e:01:ed:b3:64:a1:01:c6:91:95:18:38:0f:49:1a:46:eb: 29:23:38:bd:1e:04:49:8f:21:6a:13:84:ed:26:9a:f8:f2:76: 34:b1:20:f2:c6:b6:d7:b0:14:26:da:4e:63:41:db:6c:7b:02: 4f:8a:eb:0a:e4:54:19:ac:f3:e1:88:92:65:8b:66:5a:14:19: f9:80:c0:af:a6:f8:b6:9a:d6:21:5b:85:5b:61:67:5d:57:12: 07:46:0e:38:5b:b0:b8:d0:9a:0a:13:c2:cf:29:d5:93:57:74: f9:ed:49:3b:10:10:a1:36:f5:b3:8e:1a:f5:d7:64:58:99:ea: 10:14:5d:d0:90:4e:5e:92:f7:9a:58:84:60:51:be:6b:ea:2b: 7e:02:2a:d1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEdEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUM3RjIxMTAvBgNVBAUTKDgzQkQ0N0FERTMwMjI1OUM3NThDNzRDODMwQjI5RTZG M0E1NzczREIwHhcNMjUwNTEyMTcwNzU1WhcNMjUwNTE5MTcwNzU1WjAYMRYwFAYD VQQDEw02ODIyMmFlYi0yNzQzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0TBClQCySRhNkZUqsqCXV1iD51A9n+Oh/rQEYi2hFZwywCaFN//y6L/+DNVG 0GA3z7JyaIvMjuP1loJE0QYmY/Yq8r0nlDGeIQKd9ISZFTJdAk+PaU30ncjqjyky xsx1ghzkb6pm5qSyH+hbGaikoBmKz2TeKsZVK7MKvHaStzQmYfAtsmLq2eSJBDIv kCVZHsFw3+/z/DJly+XGdwTEd/8M9CuIGRimNVgvXCrrEftdFW6OUapbyvR1aZ7L nBPFiYy4AGQ3AEjazu9iHF3I1C3L2j9PNwqm52iuU/O4AwfvQyasqvzsxCwIVaGR yRY6Qdg30m9I1HeYR0+7zV4/MQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGtqKazd r3/Ojao+u6pGwqplu45VMB8GA1UdIwQYMBaAFIO9R63jAiWcdYx0yDCynm86V3Pb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQzdGMi80OEVGRDE3Q0Yx QTcxMUU4QUE2MTRGNTFDNEY5QUUwMi9nNzFIcmVNQ0paeDFqSFRJTUxLZWJ6cFhj OXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2c3MUhyZU1DSlp4MWpIVElNTEtlYnpwWGM5cy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QzdGMi80OEVGRDE3Q0YxQTcxMUU4QUE2MTRGNTFDNEY5QUUwMi9nNzFIcmVNQ0pa eDFqSFRJTUxLZWJ6cFhjOXMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBQtrmeUAnc/IoZv3yt5yOJGXu4B86ryz1nBT7nb2KGkxrir49KGXuA 8FLDxO64CU59I2oUz7XA3Gz5epasJ29wjRiDpJm7XHpZ4DrblZ7wVGsHvNvgTwG+ dEmSvogihkLaEsMyGfMChU3+rKtiPgHts2ShAcaRlRg4D0kaRuspIzi9HgRJjyFq E4TtJpr48nY0sSDyxrbXsBQm2k5jQdtsewJPiusK5FQZrPPhiJJli2ZaFBn5gMCv pvi2mtYhW4VbYWddVxIHRg44W7C40JoKE8LPKdWTV3T57Uk7EBChNvWzjhr112RY meoQFF3QkE5ekveaWIRgUb5r6it+AirR -----END CERTIFICATE-----Generated at Tue May 13 04:34:22 2025 by rpki-client