$ rpki-client -vvf rpki.apnic.net/member_repository/A91EF17A/74BB24D23F5D11EF8BF7860EC4F9AE02/s--n1q4ZnRRYLdTsuRY6PJ2EF1k.mft File: s--n1q4ZnRRYLdTsuRY6PJ2EF1k.mft (raw, json) Hash identifier: yvsiDz+SbGIbDa5HMSS48ahe+FP2h26Ge+w64sYF/f0= Subject key identifier: BF:65:F5:34:B4:52:45:94:99:A9:DD:B7:88:D6:F5:31:D7:20:A3:58 Authority key identifier: B3:EF:A7:D6:AE:19:9D:14:58:2D:D4:EC:B9:16:3A:3C:9D:84:17:59 Certificate issuer: /CN=A91EF17A/serialNumber=B3EFA7D6AE199D14582DD4ECB9163A3C9D841759 Certificate serial: B5 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/s--n1q4ZnRRYLdTsuRY6PJ2EF1k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EF17A/74BB24D23F5D11EF8BF7860EC4F9AE02/s--n1q4ZnRRYLdTsuRY6PJ2EF1k.mft Manifest number: AA Signing time: Sun 11 May 2025 05:01:59 +0000 Manifest this update: Sun 11 May 2025 05:01:59 +0000 Manifest next update: Sun 18 May 2025 05:01:59 +0000 Files and hashes: 1: s--n1q4ZnRRYLdTsuRY6PJ2EF1k.crl (hash: JyS2hVPtmEjp70w3JCgxnf3ul8G6Lf/yIatLSs3z4SU=) 2: B4F165084F1F11EFA3B1F709C4F9AE02.roa (hash: Opc7LOJ46e70z/QSejyn173p++8Jd/mWqo5v6tc2Z4E=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EF17A/74BB24D23F5D11EF8BF7860EC4F9AE02/s--n1q4ZnRRYLdTsuRY6PJ2EF1k.crl rsync://rpki.apnic.net/member_repository/A91EF17A/74BB24D23F5D11EF8BF7860EC4F9AE02/s--n1q4ZnRRYLdTsuRY6PJ2EF1k.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/s--n1q4ZnRRYLdTsuRY6PJ2EF1k.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 18 May 2025 05:01:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 181 (0xb5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EF17A, serialNumber=B3EFA7D6AE199D14582DD4ECB9163A3C9D841759 Validity Not Before: May 11 05:01:59 2025 GMT Not After : May 18 05:01:59 2025 GMT Subject: CN=68202f47-032d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:6f:1f:75:86:7f:50:c6:31:53:02:16:a2:cf: 51:bf:1a:40:7e:04:72:16:a8:de:6a:c3:f9:46:b3: 89:3d:68:c9:85:54:ab:d6:75:fb:ba:ca:6d:47:35: 78:11:fd:f7:af:ff:61:c8:70:60:a2:80:ba:89:a3: a8:94:b7:a6:0c:ee:a4:77:10:f7:e0:51:9e:ac:d1: 18:25:3e:13:a2:87:29:fc:f9:f6:45:60:f5:28:f9: 05:06:5f:88:ae:02:60:99:45:26:a8:6b:49:d0:54: d0:84:25:e2:e3:72:ae:3e:c4:7a:40:57:9c:23:ac: 0e:6b:ca:e0:ed:36:d0:25:f6:48:52:aa:f2:90:d1: ec:83:02:35:be:66:ff:ec:2c:e8:0a:73:3a:07:99: c7:8e:f6:9b:7b:cf:2b:e4:31:d9:1c:b6:e0:be:98: 39:a4:1e:a3:71:f4:e0:29:74:e8:f3:56:14:07:f7: 27:6d:e8:5f:a5:ba:15:46:a2:22:4c:66:1e:6a:11: e8:16:3d:70:3f:e7:65:13:c0:36:ba:f5:d1:24:7f: 61:86:f5:7b:d6:c3:7b:85:eb:e4:2c:05:1a:5e:80: 2d:06:9e:48:e9:3a:bc:bc:6e:fa:ef:33:ad:0f:f6: 86:db:eb:ed:25:7e:e0:54:0d:d9:f0:f4:6c:8f:14: 1c:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BF:65:F5:34:B4:52:45:94:99:A9:DD:B7:88:D6:F5:31:D7:20:A3:58 X509v3 Authority Key Identifier: keyid:B3:EF:A7:D6:AE:19:9D:14:58:2D:D4:EC:B9:16:3A:3C:9D:84:17:59 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EF17A/74BB24D23F5D11EF8BF7860EC4F9AE02/s--n1q4ZnRRYLdTsuRY6PJ2EF1k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/s--n1q4ZnRRYLdTsuRY6PJ2EF1k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EF17A/74BB24D23F5D11EF8BF7860EC4F9AE02/s--n1q4ZnRRYLdTsuRY6PJ2EF1k.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c7:dd:85:e0:97:48:93:ac:97:b8:6b:a7:a7:4c:2d:f0:cb:f8: e3:7e:6b:d7:c9:41:cc:92:60:41:e3:80:a6:ae:56:9f:c8:af: b7:0d:47:37:b4:32:da:c3:ee:1f:02:a1:18:90:df:a1:05:04: 6c:87:08:3d:77:f9:e7:d8:26:18:d2:18:ef:e7:8e:7a:7b:8e: 50:9a:6c:19:ea:97:1f:67:da:58:0a:3e:c1:94:18:b7:ba:f9: fe:9a:da:2c:32:6a:db:58:23:b5:d5:1e:53:74:54:a4:0c:38: 9e:bf:77:bb:c9:fb:e0:d2:c3:4b:85:fa:62:61:44:af:da:b9: a9:d1:b9:32:b1:6c:c5:aa:1c:78:9f:28:14:50:aa:dc:0a:2b: 89:ca:ca:a2:f1:60:56:87:12:d5:24:92:65:11:ea:c9:76:0b: 11:7b:6a:f1:2e:2a:34:90:58:78:d1:a8:60:6b:83:9e:f3:cb: c3:3e:9f:81:53:1d:01:08:a1:42:a7:31:8a:80:08:4f:12:72: 79:43:ef:55:2b:4e:38:ab:31:23:ba:71:69:81:97:5e:ee:01: c0:cc:5b:9d:07:cd:14:18:c1:ac:dc:88:28:10:ed:3c:55:14: cc:17:ce:8a:2b:01:20:bc:34:e8:c4:e6:d5:d1:26:b5:04:d4: 0e:92:02:d1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICALUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUYxN0ExMTAvBgNVBAUTKEIzRUZBN0Q2QUUxOTlEMTQ1ODJERDRFQ0I5MTYzQTND OUQ4NDE3NTkwHhcNMjUwNTExMDUwMTU5WhcNMjUwNTE4MDUwMTU5WjAYMRYwFAYD VQQDEw02ODIwMmY0Ny0wMzJkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0G8fdYZ/UMYxUwIWos9RvxpAfgRyFqjeasP5RrOJPWjJhVSr1nX7usptRzV4 Ef33r/9hyHBgooC6iaOolLemDO6kdxD34FGerNEYJT4Toocp/Pn2RWD1KPkFBl+I rgJgmUUmqGtJ0FTQhCXi43KuPsR6QFecI6wOa8rg7TbQJfZIUqrykNHsgwI1vmb/ 7CzoCnM6B5nHjvabe88r5DHZHLbgvpg5pB6jcfTgKXTo81YUB/cnbehfpboVRqIi TGYeahHoFj1wP+dlE8A2uvXRJH9hhvV71sN7hevkLAUaXoAtBp5I6Tq8vG767zOt D/aG2+vtJX7gVA3Z8PRsjxQcxQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFL9l9TS0 UkWUmandt4jW9THXIKNYMB8GA1UdIwQYMBaAFLPvp9auGZ0UWC3U7LkWOjydhBdZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFRjE3QS83NEJCMjREMjNG NUQxMUVGOEJGNzg2MEVDNEY5QUUwMi9zLS1uMXE0Wm5SUllMZFRzdVJZNlBKMkVG MWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3MtLW4xcTRablJSWUxkVHN1Ulk2UEoyRUYxay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF RjE3QS83NEJCMjREMjNGNUQxMUVGOEJGNzg2MEVDNEY5QUUwMi9zLS1uMXE0Wm5S UllMZFRzdVJZNlBKMkVGMWsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDH3YXgl0iTrJe4a6enTC3wy/jjfmvXyUHMkmBB44CmrlafyK+3DUc3 tDLaw+4fAqEYkN+hBQRshwg9d/nn2CYY0hjv5456e45QmmwZ6pcfZ9pYCj7BlBi3 uvn+mtosMmrbWCO11R5TdFSkDDiev3e7yfvg0sNLhfpiYUSv2rmp0bkysWzFqhx4 nygUUKrcCiuJysqi8WBWhxLVJJJlEerJdgsRe2rxLio0kFh40ahga4Oe88vDPp+B Ux0BCKFCpzGKgAhPEnJ5Q+9VK044qzEjunFpgZde7gHAzFudB80UGMGs3IgoEO08 VRTMF86KKwEgvDToxObV0Sa1BNQOkgLR -----END CERTIFICATE-----Generated at Mon May 12 07:32:34 2025 by rpki-client