$ rpki-client -vvf rpki.apnic.net/member_repository/A91F4091/5A116BAA1D9D11EFA10F2D3AC4F9AE02/g8kBUb4XghT8FnWDNNO21Sd6PL8.mft File: g8kBUb4XghT8FnWDNNO21Sd6PL8.mft (raw, json) Hash identifier: qj+9J7FNwzo6gm//NqGxE3ti61tGCCeI051sICAZP8w= Subject key identifier: 4D:CD:BD:F1:E9:27:30:C9:64:71:8C:E4:7F:3C:47:07:41:40:1D:68 Authority key identifier: 83:C9:01:51:BE:17:82:14:FC:16:75:83:34:D3:B6:D5:27:7A:3C:BF Certificate issuer: /CN=A91F4091/serialNumber=83C90151BE178214FC16758334D3B6D5277A3CBF Certificate serial: B2 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/g8kBUb4XghT8FnWDNNO21Sd6PL8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F4091/5A116BAA1D9D11EFA10F2D3AC4F9AE02/g8kBUb4XghT8FnWDNNO21Sd6PL8.mft Manifest number: B1 Signing time: Fri 09 May 2025 05:02:17 +0000 Manifest this update: Fri 09 May 2025 05:02:17 +0000 Manifest next update: Fri 16 May 2025 05:02:17 +0000 Files and hashes: 1: g8kBUb4XghT8FnWDNNO21Sd6PL8.crl (hash: lyz6X1wcmISTI/nupBiDPQXJ+g2sZQKtd5x48qOzN+k=) 2: 1E110D7E1DA011EFBC90D55EC4F9AE02.roa (hash: sXijOKbCJmo7Vc9siLjMj6vbNj9IjkbsFg/cetJYPUA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F4091/5A116BAA1D9D11EFA10F2D3AC4F9AE02/g8kBUb4XghT8FnWDNNO21Sd6PL8.crl rsync://rpki.apnic.net/member_repository/A91F4091/5A116BAA1D9D11EFA10F2D3AC4F9AE02/g8kBUb4XghT8FnWDNNO21Sd6PL8.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/g8kBUb4XghT8FnWDNNO21Sd6PL8.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 16 May 2025 05:02:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 178 (0xb2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F4091, serialNumber=83C90151BE178214FC16758334D3B6D5277A3CBF Validity Not Before: May 9 05:02:17 2025 GMT Not After : May 16 05:02:17 2025 GMT Subject: CN=681d8c59-fc84 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:89:d7:60:40:0d:01:18:c3:99:3f:d1:7d:50: e1:cc:80:ca:9b:0a:43:bd:ef:02:6a:34:36:d2:84: ff:92:c2:2d:64:8b:9b:41:75:8e:5a:78:1c:2a:d4: 24:e6:9e:71:f6:8a:2e:a5:ef:18:d3:ab:ba:66:a2: 34:b0:99:d0:ae:52:c9:c0:59:05:0e:a2:51:f2:8c: 3a:c9:87:c1:7f:55:b3:62:fc:95:8f:ef:2b:e9:2a: cd:8a:b9:d0:d2:81:4f:5c:c8:9f:79:c7:91:bf:ed: 47:21:4c:0d:79:2a:78:46:c3:f6:13:cf:26:5c:9f: aa:7a:f6:bb:84:72:98:b2:51:39:fd:85:9d:97:18: 2a:24:ab:9e:45:52:94:2a:66:3b:8a:7c:a0:80:71: da:e8:f5:f0:8e:22:c4:a5:f8:4a:97:8d:8c:75:ea: 5b:25:a9:76:bd:bf:03:90:ca:88:ed:b7:b7:37:20: c8:9f:aa:6e:59:dd:c3:c6:bb:fd:b3:16:84:eb:e3: 8e:40:88:9c:63:49:5d:05:28:6c:bf:6f:bf:1b:2f: ba:22:4a:38:01:cc:d2:1f:12:c7:29:38:d6:a3:cf: 52:86:28:a0:fa:44:3d:82:6b:a1:46:56:17:84:b9: df:e9:90:7e:5a:7b:2f:58:f3:e9:13:39:9e:40:8f: bd:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4D:CD:BD:F1:E9:27:30:C9:64:71:8C:E4:7F:3C:47:07:41:40:1D:68 X509v3 Authority Key Identifier: keyid:83:C9:01:51:BE:17:82:14:FC:16:75:83:34:D3:B6:D5:27:7A:3C:BF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F4091/5A116BAA1D9D11EFA10F2D3AC4F9AE02/g8kBUb4XghT8FnWDNNO21Sd6PL8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/g8kBUb4XghT8FnWDNNO21Sd6PL8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F4091/5A116BAA1D9D11EFA10F2D3AC4F9AE02/g8kBUb4XghT8FnWDNNO21Sd6PL8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3a:69:82:49:2a:ae:33:fd:34:5d:7c:d9:dc:ec:0d:ce:72:58: ae:c3:ab:43:72:13:37:f0:56:aa:d8:22:9c:ad:9d:b6:23:53: 00:71:8b:f8:1d:da:b1:c0:b8:4b:60:21:cc:ce:8f:19:32:5f: ca:80:56:4e:f7:da:94:d3:3a:93:8b:00:49:c7:a9:0d:d6:10: f3:83:41:e9:0f:18:59:9a:cc:64:e7:d9:6c:df:66:6e:3d:d3: f2:f9:94:db:81:59:0b:25:6b:4a:60:dc:09:bc:27:4d:95:c3: 9b:68:d9:b7:ec:36:86:59:97:39:fb:47:ea:4e:c6:9a:6f:f9: 48:30:70:24:81:af:81:6a:8c:d9:4a:53:c2:97:bf:91:e6:28: b7:9f:24:ab:77:38:9e:a3:c4:c0:32:00:77:74:53:32:e4:01: 73:52:7e:6f:8b:38:95:67:11:f3:b3:8e:e2:f5:ea:83:43:98: 40:86:f5:4f:b0:4b:3b:33:69:08:9e:24:3f:7b:81:a3:fe:9f: c9:d3:84:c8:1f:df:ab:00:f2:1e:13:b3:10:af:8c:96:60:5f: 77:9b:2a:f6:43:c1:4d:68:b3:93:5f:35:2b:66:ef:52:54:9e: 9f:e8:f7:0c:94:cb:30:c6:1c:61:7f:be:a8:e7:2b:88:94:0b: 90:3b:e6:23 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICALIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjQwOTExMTAvBgNVBAUTKDgzQzkwMTUxQkUxNzgyMTRGQzE2NzU4MzM0RDNCNkQ1 Mjc3QTNDQkYwHhcNMjUwNTA5MDUwMjE3WhcNMjUwNTE2MDUwMjE3WjAYMRYwFAYD VQQDEw02ODFkOGM1OS1mYzg0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxonXYEANARjDmT/RfVDhzIDKmwpDve8CajQ20oT/ksItZIubQXWOWngcKtQk 5p5x9ooupe8Y06u6ZqI0sJnQrlLJwFkFDqJR8ow6yYfBf1WzYvyVj+8r6SrNirnQ 0oFPXMifeceRv+1HIUwNeSp4RsP2E88mXJ+qeva7hHKYslE5/YWdlxgqJKueRVKU KmY7inyggHHa6PXwjiLEpfhKl42MdepbJal2vb8DkMqI7be3NyDIn6puWd3Dxrv9 sxaE6+OOQIicY0ldBShsv2+/Gy+6Iko4AczSHxLHKTjWo89Shiig+kQ9gmuhRlYX hLnf6ZB+WnsvWPPpEzmeQI+9EwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFE3NvfHp JzDJZHGM5H88RwdBQB1oMB8GA1UdIwQYMBaAFIPJAVG+F4IU/BZ1gzTTttUnejy/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNDA5MS81QTExNkJBQTFE OUQxMUVGQTEwRjJEM0FDNEY5QUUwMi9nOGtCVWI0WGdoVDhGbldETk5PMjFTZDZQ TDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2c4a0JVYjRYZ2hUOEZuV0ROTk8yMVNkNlBMOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NDA5MS81QTExNkJBQTFEOUQxMUVGQTEwRjJEM0FDNEY5QUUwMi9nOGtCVWI0WGdo VDhGbldETk5PMjFTZDZQTDgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA6aYJJKq4z/TRdfNnc7A3Ocliuw6tDchM38Faq2CKcrZ22I1MAcYv4 HdqxwLhLYCHMzo8ZMl/KgFZO99qU0zqTiwBJx6kN1hDzg0HpDxhZmsxk59ls32Zu PdPy+ZTbgVkLJWtKYNwJvCdNlcObaNm37DaGWZc5+0fqTsaab/lIMHAkga+BaozZ SlPCl7+R5ii3nySrdzieo8TAMgB3dFMy5AFzUn5viziVZxHzs47i9eqDQ5hAhvVP sEs7M2kIniQ/e4Gj/p/J04TIH9+rAPIeE7MQr4yWYF93myr2Q8FNaLOTXzUrZu9S VJ6f6PcMlMswxhxhf76o5yuIlAuQO+Yj -----END CERTIFICATE-----Generated at Sat May 10 10:28:12 2025 by rpki-client