$ rpki-client -vvf rpki.apnic.net/member_repository/A91F71E8/62B787A0EEE411E89E665D4DC4F9AE02/s9eTeQ4RSsj43IK64zwdkr29tes.mft File: s9eTeQ4RSsj43IK64zwdkr29tes.mft (raw, json) Hash identifier: NttLKCJdy+NjgenMVg0seEZXjERD/lyt0/6rWfxhlTM= Subject key identifier: 3F:9B:D5:A5:E3:6A:5D:C8:AB:C9:ED:BD:07:8F:BF:1A:47:A7:4F:30 Authority key identifier: B3:D7:93:79:0E:11:4A:C8:F8:DC:82:BA:E3:3C:1D:92:BD:BD:B5:EB Certificate issuer: /CN=A91F71E8/serialNumber=B3D793790E114AC8F8DC82BAE33C1D92BDBDB5EB Certificate serial: 0846 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/s9eTeQ4RSsj43IK64zwdkr29tes.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F71E8/62B787A0EEE411E89E665D4DC4F9AE02/s9eTeQ4RSsj43IK64zwdkr29tes.mft Manifest number: 19FA Signing time: Mon 12 May 2025 17:07:27 +0000 Manifest this update: Mon 12 May 2025 17:07:27 +0000 Manifest next update: Mon 19 May 2025 17:07:27 +0000 Files and hashes: 1: s9eTeQ4RSsj43IK64zwdkr29tes.crl (hash: tWPhC2tsffNOfkti8BGz9FASpWlhgsBrerpxWNrIEDU=) 2: F87AC94C35BB11EDB0314E29C4F9AE02.roa (hash: k9wHhpt8UiUsBAqNUER2NNEPeQj08b6887cRTKa39g0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F71E8/62B787A0EEE411E89E665D4DC4F9AE02/s9eTeQ4RSsj43IK64zwdkr29tes.crl rsync://rpki.apnic.net/member_repository/A91F71E8/62B787A0EEE411E89E665D4DC4F9AE02/s9eTeQ4RSsj43IK64zwdkr29tes.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/s9eTeQ4RSsj43IK64zwdkr29tes.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 19 May 2025 17:07:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2118 (0x846) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F71E8, serialNumber=B3D793790E114AC8F8DC82BAE33C1D92BDBDB5EB Validity Not Before: May 12 17:07:27 2025 GMT Not After : May 19 17:07:27 2025 GMT Subject: CN=68222acf-ba2f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:1b:41:a7:9f:cf:2f:0e:7a:17:34:b1:fa:ae: df:ea:77:83:fe:fb:49:6f:9e:e6:84:eb:64:29:6c: a6:d3:7d:22:8b:f5:3c:fb:74:1a:26:d4:71:65:fc: c8:90:2a:34:84:81:a3:75:5b:54:65:c1:71:44:b8: 63:02:af:59:71:ef:b2:33:38:90:50:cb:17:3d:67: 76:d1:0e:cd:dd:4f:f7:74:b2:d2:4d:6a:c1:a6:a5: c7:bb:52:1e:de:12:fd:d3:6e:ea:de:36:9b:bc:38: a4:bc:e7:48:13:51:15:f5:cb:16:75:f7:30:03:b9: 47:29:f0:1b:13:d2:70:20:5c:22:a4:25:25:fe:66: 3a:b3:3a:d6:5d:4f:50:8d:06:8f:67:db:7d:68:38: 4b:45:c6:e8:ea:38:f9:1e:3a:ab:1b:d8:a2:d7:4b: d8:b0:e0:6c:63:64:cb:c4:32:57:ea:ae:89:fa:81: 43:8e:b8:4c:c0:38:36:18:86:71:84:c5:91:40:bb: bf:6c:49:b4:26:29:fc:ff:8d:82:24:73:6f:ce:1d: 92:81:1a:13:6d:44:a3:76:c3:fe:cc:4e:fd:05:20: b7:21:1b:c7:e0:d3:db:f8:83:84:a6:97:cd:c7:84: b7:30:34:84:eb:83:1c:3a:d5:9c:85:96:0e:81:c4: 62:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3F:9B:D5:A5:E3:6A:5D:C8:AB:C9:ED:BD:07:8F:BF:1A:47:A7:4F:30 X509v3 Authority Key Identifier: keyid:B3:D7:93:79:0E:11:4A:C8:F8:DC:82:BA:E3:3C:1D:92:BD:BD:B5:EB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F71E8/62B787A0EEE411E89E665D4DC4F9AE02/s9eTeQ4RSsj43IK64zwdkr29tes.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/s9eTeQ4RSsj43IK64zwdkr29tes.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F71E8/62B787A0EEE411E89E665D4DC4F9AE02/s9eTeQ4RSsj43IK64zwdkr29tes.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 57:0c:a2:be:1f:01:8a:9a:c1:73:88:2b:64:ee:fc:17:9b:e8: 0b:d3:52:06:58:f9:0c:2e:f2:a3:b9:35:92:57:2d:2a:94:ba: e4:f7:3a:df:cf:c6:6d:ca:c5:c2:19:91:83:4a:98:ba:3c:f5: 35:5b:c4:de:57:eb:b7:0a:72:8a:be:57:d1:a0:5c:34:10:d5: 98:3d:b4:74:2a:04:25:fe:e2:ee:c4:0b:ac:b8:27:b5:d2:05: 09:ff:1d:0a:d3:e8:0d:64:23:54:b9:3f:39:dc:fc:7c:f7:95: 57:28:a1:d5:d4:9d:48:49:5a:e5:53:87:a3:85:f3:bf:6c:3e: 07:7e:7e:b6:6f:8c:e3:4f:18:87:b0:53:1a:42:3f:a5:ce:06: 44:5c:65:79:c7:11:b0:e6:db:4e:fa:75:e4:2a:38:e0:1c:d1: 26:13:4b:9f:45:ab:48:56:21:94:83:c4:28:fc:06:b7:25:d1: 0d:cd:4a:34:89:e5:2d:38:8c:81:d1:9c:ac:a8:b7:b1:cb:64: fe:ed:ff:5a:19:b3:ac:80:c6:2c:4f:53:4f:ae:af:8c:74:14: 61:59:52:5c:dc:18:3e:3e:70:b7:ca:2a:d3:d4:73:5f:8c:c2: be:4e:03:35:3e:b9:1f:4b:82:53:85:52:62:57:c1:7f:43:66: 83:5e:53:ac -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCEYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjcxRTgxMTAvBgNVBAUTKEIzRDc5Mzc5MEUxMTRBQzhGOERDODJCQUUzM0MxRDky QkRCREI1RUIwHhcNMjUwNTEyMTcwNzI3WhcNMjUwNTE5MTcwNzI3WjAYMRYwFAYD VQQDEw02ODIyMmFjZi1iYTJmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxBtBp5/PLw56FzSx+q7f6neD/vtJb57mhOtkKWym030ii/U8+3QaJtRxZfzI kCo0hIGjdVtUZcFxRLhjAq9Zce+yMziQUMsXPWd20Q7N3U/3dLLSTWrBpqXHu1Ie 3hL9027q3jabvDikvOdIE1EV9csWdfcwA7lHKfAbE9JwIFwipCUl/mY6szrWXU9Q jQaPZ9t9aDhLRcbo6jj5HjqrG9ii10vYsOBsY2TLxDJX6q6J+oFDjrhMwDg2GIZx hMWRQLu/bEm0Jin8/42CJHNvzh2SgRoTbUSjdsP+zE79BSC3IRvH4NPb+IOEppfN x4S3MDSE64McOtWchZYOgcRiBQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFD+b1aXj al3Iq8ntvQePvxpHp08wMB8GA1UdIwQYMBaAFLPXk3kOEUrI+NyCuuM8HZK9vbXr MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNzFFOC82MkI3ODdBMEVF RTQxMUU4OUU2NjVENERDNEY5QUUwMi9zOWVUZVE0UlNzajQzSUs2NHp3ZGtyMjl0 ZXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3M5ZVRlUTRSU3NqNDNJSzY0endka3IyOXRlcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NzFFOC82MkI3ODdBMEVFRTQxMUU4OUU2NjVENERDNEY5QUUwMi9zOWVUZVE0UlNz ajQzSUs2NHp3ZGtyMjl0ZXMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBXDKK+HwGKmsFziCtk7vwXm+gL01IGWPkMLvKjuTWSVy0qlLrk9zrf z8ZtysXCGZGDSpi6PPU1W8TeV+u3CnKKvlfRoFw0ENWYPbR0KgQl/uLuxAusuCe1 0gUJ/x0K0+gNZCNUuT853Px895VXKKHV1J1ISVrlU4ejhfO/bD4Hfn62b4zjTxiH sFMaQj+lzgZEXGV5xxGw5ttO+nXkKjjgHNEmE0ufRatIViGUg8Qo/Aa3JdENzUo0 ieUtOIyB0ZysqLexy2T+7f9aGbOsgMYsT1NPrq+MdBRhWVJc3Bg+PnC3yirT1HNf jMK+TgM1PrkfS4JThVJiV8F/Q2aDXlOs -----END CERTIFICATE-----Generated at Wed May 14 03:45:08 2025 by rpki-client