$ rpki-client -vvf rpki.apnic.net/member_repository/A91F8981/272B4C706C7F11EF914D7D57C4F9AE02/MhTiYKePfRZ36DATfBBlcwAxz2Y.mft File: MhTiYKePfRZ36DATfBBlcwAxz2Y.mft (raw, json) Hash identifier: 6sxQoKaE9s2NR0hcJ0BH4aH/gGS1VYHXWI0L+ukQNXk= Subject key identifier: 79:9D:84:8B:79:BD:D0:84:D9:58:A5:D8:64:8B:A9:9F:72:A9:C9:72 Authority key identifier: 32:14:E2:60:A7:8F:7D:16:77:E8:30:13:7C:10:65:73:00:31:CF:66 Certificate issuer: /CN=A91F8981/serialNumber=3214E260A78F7D1677E830137C1065730031CF66 Certificate serial: 7F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MhTiYKePfRZ36DATfBBlcwAxz2Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F8981/272B4C706C7F11EF914D7D57C4F9AE02/MhTiYKePfRZ36DATfBBlcwAxz2Y.mft Manifest number: 7E Signing time: Fri 09 May 2025 05:42:01 +0000 Manifest this update: Fri 09 May 2025 05:42:00 +0000 Manifest next update: Fri 16 May 2025 05:42:00 +0000 Files and hashes: 1: MhTiYKePfRZ36DATfBBlcwAxz2Y.crl (hash: FQPHtuuy71AmHPph1nB0hcY9Yv0vHZUfOwE4C6t7Un4=) 2: D80D96066C7F11EF92105459C4F9AE02.roa (hash: 7pF3uHzaE+Wewnte+bG2KwxN3eFFLWjZ6eq6MYtYcWc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F8981/272B4C706C7F11EF914D7D57C4F9AE02/MhTiYKePfRZ36DATfBBlcwAxz2Y.crl rsync://rpki.apnic.net/member_repository/A91F8981/272B4C706C7F11EF914D7D57C4F9AE02/MhTiYKePfRZ36DATfBBlcwAxz2Y.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MhTiYKePfRZ36DATfBBlcwAxz2Y.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 16 May 2025 05:42:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 127 (0x7f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F8981, serialNumber=3214E260A78F7D1677E830137C1065730031CF66 Validity Not Before: May 9 05:42:00 2025 GMT Not After : May 16 05:42:00 2025 GMT Subject: CN=681d95a9-ca45 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:21:52:cb:02:79:9a:24:50:3c:08:97:ba:4b: 94:dc:21:f4:38:cf:91:8a:8c:82:01:e4:db:86:09: 7d:ff:66:c2:fa:b1:31:cb:2d:d0:3c:7f:00:27:b1: fb:13:af:84:8e:98:89:3b:8e:a1:63:ff:f6:c2:2e: e9:6b:fd:dc:c9:94:37:e8:cc:0b:4b:d6:72:08:a8: db:cc:4f:fc:3d:85:19:bf:d6:67:7a:91:e7:f7:9a: 2b:46:7e:d3:5c:e8:da:ff:9d:85:09:a8:8c:b5:b3: f6:cf:37:6a:86:d6:0c:ee:8c:cd:fd:a7:20:79:1a: df:6b:09:ea:a2:dd:ec:23:5b:94:c3:1f:95:e0:76: 24:08:41:1e:20:94:94:4f:3b:16:c1:03:a2:4d:cf: 52:5f:2f:65:e7:70:64:59:36:3c:41:6f:81:57:d7: 57:33:42:7c:12:07:65:b2:94:2d:b8:61:5b:6a:7a: 88:15:77:7b:21:1e:bb:fb:8a:fd:8f:25:aa:a2:85: 18:2e:20:6d:d6:71:7c:12:8d:3e:d5:a6:73:5a:ce: 20:2b:32:cb:76:5c:74:80:e7:88:70:2f:b6:80:18: 12:f1:ec:1b:b0:f2:f8:a2:5b:61:33:49:03:8e:9a: 27:0a:ca:c3:f7:80:86:96:23:e0:a9:53:fb:ab:bc: bb:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 79:9D:84:8B:79:BD:D0:84:D9:58:A5:D8:64:8B:A9:9F:72:A9:C9:72 X509v3 Authority Key Identifier: keyid:32:14:E2:60:A7:8F:7D:16:77:E8:30:13:7C:10:65:73:00:31:CF:66 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F8981/272B4C706C7F11EF914D7D57C4F9AE02/MhTiYKePfRZ36DATfBBlcwAxz2Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MhTiYKePfRZ36DATfBBlcwAxz2Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F8981/272B4C706C7F11EF914D7D57C4F9AE02/MhTiYKePfRZ36DATfBBlcwAxz2Y.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 61:50:12:47:6c:52:44:c9:ab:8b:77:f1:09:0e:85:a4:51:36: e2:b1:c1:8e:cd:94:d9:c7:38:63:39:04:50:94:4c:db:04:16: 85:ae:bd:13:2c:5f:88:54:22:b6:b5:86:93:05:60:41:41:33: a1:81:ae:71:51:8e:91:7d:25:71:2e:44:10:97:62:5c:12:0d: f3:5a:8a:b9:28:95:d8:5d:c3:c2:3f:22:2b:a1:63:8e:41:87: 05:86:80:89:0a:0a:c6:18:e4:49:a2:13:65:0e:23:c3:4a:5a: 80:2f:56:a6:08:f7:3e:3a:b4:bb:41:f4:4d:cc:55:89:3b:c8: 2f:72:59:f4:6c:7f:68:dc:a9:7f:15:be:27:10:29:b6:64:40: d3:2d:81:33:20:7f:14:70:c6:f9:c4:fc:c8:68:7f:d9:c5:0f: 8d:5d:96:69:6d:35:aa:93:94:1d:be:a1:25:f0:87:c1:33:b8: 06:d2:d0:ff:ce:be:58:4f:44:36:e4:30:0e:11:a6:91:21:ea: d7:bd:ed:77:c1:8f:d6:e1:b0:63:24:b9:10:b5:01:50:57:01: 59:cf:9c:2c:48:0f:6d:3d:93:35:bc:35:fd:6f:f5:68:4e:75: 1c:ed:82:ef:a2:45:de:ec:9b:25:06:e5:cd:88:1d:28:22:4b: 88:c9:bc:df -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBfzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFG ODk4MTExMC8GA1UEBRMoMzIxNEUyNjBBNzhGN0QxNjc3RTgzMDEzN0MxMDY1NzMw MDMxQ0Y2NjAeFw0yNTA1MDkwNTQyMDBaFw0yNTA1MTYwNTQyMDBaMBgxFjAUBgNV BAMTDTY4MWQ5NWE5LWNhNDUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCeIVLLAnmaJFA8CJe6S5TcIfQ4z5GKjIIB5NuGCX3/ZsL6sTHLLdA8fwAnsfsT r4SOmIk7jqFj//bCLulr/dzJlDfozAtL1nIIqNvMT/w9hRm/1md6kef3mitGftNc 6Nr/nYUJqIy1s/bPN2qG1gzujM39pyB5Gt9rCeqi3ewjW5TDH5XgdiQIQR4glJRP OxbBA6JNz1JfL2XncGRZNjxBb4FX11czQnwSB2WylC24YVtqeogVd3shHrv7iv2P JaqihRguIG3WcXwSjT7VpnNaziArMst2XHSA54hwL7aAGBLx7Buw8viiW2EzSQOO micKysP3gIaWI+CpU/urvLuTAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUeZ2Ei3m9 0ITZWKXYZIupn3KpyXIwHwYDVR0jBBgwFoAUMhTiYKePfRZ36DATfBBlcwAxz2Yw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUY4OTgxLzI3MkI0QzcwNkM3 RjExRUY5MTREN0Q1N0M0RjlBRTAyL01oVGlZS2VQZlJaMzZEQVRmQkJsY3dBeHoy WS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvTWhUaVlLZVBmUlozNkRBVGZCQmxjd0F4ejJZLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUY4 OTgxLzI3MkI0QzcwNkM3RjExRUY5MTREN0Q1N0M0RjlBRTAyL01oVGlZS2VQZlJa MzZEQVRmQkJsY3dBeHoyWS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAGFQEkdsUkTJq4t38QkOhaRRNuKxwY7NlNnHOGM5BFCUTNsEFoWuvRMs X4hUIra1hpMFYEFBM6GBrnFRjpF9JXEuRBCXYlwSDfNairkoldhdw8I/IiuhY45B hwWGgIkKCsYY5EmiE2UOI8NKWoAvVqYI9z46tLtB9E3MVYk7yC9yWfRsf2jcqX8V vicQKbZkQNMtgTMgfxRwxvnE/Mhof9nFD41dlmltNaqTlB2+oSXwh8EzuAbS0P/O vlhPRDbkMA4RppEh6te97XfBj9bhsGMkuRC1AVBXAVnPnCxID209kzW8Nf1v9WhO dRztgu+iRd7smyUG5c2IHSgiS4jJvN8= -----END CERTIFICATE-----Generated at Sun May 11 01:01:01 2025 by rpki-client