$ rpki-client -vvf rpki.apnic.net/member_repository/A91F91EB/497F2BD8F70511E9ADBA451FC4F9AE02/t9zhQRKgKYL1dXyrjTSRAyyOGPo.mft File: t9zhQRKgKYL1dXyrjTSRAyyOGPo.mft (raw, json) Hash identifier: V3X9+rh4K12h7G21rZ/K2fcNhb/lKP4ETqJYEpnvR+w= Subject key identifier: 30:E9:58:7D:68:58:DE:D3:72:41:26:3C:A9:88:AB:DE:83:54:B5:D6 Authority key identifier: B7:DC:E1:41:12:A0:29:82:F5:75:7C:AB:8D:34:91:03:2C:8E:18:FA Certificate issuer: /CN=A91F91EB/serialNumber=B7DCE14112A02982F5757CAB8D3491032C8E18FA Certificate serial: 0C85 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/t9zhQRKgKYL1dXyrjTSRAyyOGPo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F91EB/497F2BD8F70511E9ADBA451FC4F9AE02/t9zhQRKgKYL1dXyrjTSRAyyOGPo.mft Manifest number: 0C7F Signing time: Sat 10 May 2025 18:04:55 +0000 Manifest this update: Sat 10 May 2025 18:04:54 +0000 Manifest next update: Sat 17 May 2025 18:04:54 +0000 Files and hashes: 1: t9zhQRKgKYL1dXyrjTSRAyyOGPo.crl (hash: GlfutE/pslzN63Qwj3sN9wLf4VTdjDdG0bhqOA41Vr4=) 2: 8D243F849A6D11EA8674310DC4F9AE02.roa (hash: ZlxWP9id3BOwgT849Ql20JmEjoi9oTlH+F8ceOZ0tcg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F91EB/497F2BD8F70511E9ADBA451FC4F9AE02/t9zhQRKgKYL1dXyrjTSRAyyOGPo.crl rsync://rpki.apnic.net/member_repository/A91F91EB/497F2BD8F70511E9ADBA451FC4F9AE02/t9zhQRKgKYL1dXyrjTSRAyyOGPo.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/t9zhQRKgKYL1dXyrjTSRAyyOGPo.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 17 May 2025 18:04:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3205 (0xc85) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F91EB, serialNumber=B7DCE14112A02982F5757CAB8D3491032C8E18FA Validity Not Before: May 10 18:04:54 2025 GMT Not After : May 17 18:04:54 2025 GMT Subject: CN=681f9547-9e81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:6f:06:5e:c8:d2:f8:a0:fb:af:bb:fc:db:2d: 78:4f:1c:4d:f7:0d:41:91:c4:a2:7e:5e:54:fb:8c: 4a:1f:89:af:0b:c0:8b:1f:43:d3:dd:b3:b3:2f:e7: 7c:cb:9e:96:a9:ca:99:8f:c4:12:fd:df:4f:32:3f: da:33:b9:1e:f8:a8:ba:5c:37:17:c6:23:7a:b0:6e: 59:f9:ae:a5:5e:71:5f:05:a2:4f:de:66:de:52:dd: dd:bc:fb:e6:2b:ac:e5:2c:bf:05:b0:9b:10:43:43: 74:92:8e:c9:ef:d7:42:4f:37:af:86:89:96:8a:27: 83:ca:6e:6f:cd:ec:3f:7b:12:0e:60:cd:cd:62:56: e5:41:a9:a6:4b:65:21:cd:4e:64:c3:0b:ec:b3:44: 21:54:83:35:65:23:92:86:df:33:77:07:df:b8:ec: 61:79:b8:79:62:84:ec:c5:4b:2d:f4:e2:59:c7:b9: 4d:a7:db:37:e7:66:1d:22:6d:cb:5e:a1:a6:f4:9a: e9:2b:cf:0d:7d:ca:32:c3:ff:e1:cf:06:df:4c:fe: 78:8b:d5:a1:ae:e6:71:74:45:dd:e4:f7:13:41:08: 85:5e:af:2a:82:ae:10:25:dd:a1:27:71:49:f6:a2: 51:b6:c2:24:bf:b3:f9:29:68:89:3e:00:9a:41:c0: 08:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 30:E9:58:7D:68:58:DE:D3:72:41:26:3C:A9:88:AB:DE:83:54:B5:D6 X509v3 Authority Key Identifier: keyid:B7:DC:E1:41:12:A0:29:82:F5:75:7C:AB:8D:34:91:03:2C:8E:18:FA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F91EB/497F2BD8F70511E9ADBA451FC4F9AE02/t9zhQRKgKYL1dXyrjTSRAyyOGPo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/t9zhQRKgKYL1dXyrjTSRAyyOGPo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F91EB/497F2BD8F70511E9ADBA451FC4F9AE02/t9zhQRKgKYL1dXyrjTSRAyyOGPo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4a:db:f6:0b:69:e6:d8:ae:4d:4f:1a:a9:4f:18:e7:b9:ad:18: 8d:94:48:01:08:dc:6e:96:dd:3e:4c:43:29:10:89:d7:34:c7: f8:22:ab:9e:ad:fc:fb:58:91:76:65:d4:76:74:9b:07:5d:24: 33:e6:88:6d:d4:ab:51:15:87:dd:53:09:cd:be:80:05:60:e8: 84:a1:e7:c2:c5:1a:44:e4:5e:0e:16:93:ff:7a:f8:fd:f8:68: 42:31:cc:ea:cd:d4:cb:7e:a8:b3:ca:13:71:d1:69:43:2b:3f: 63:38:56:4d:41:9e:5b:17:c2:0a:88:17:7b:e0:84:6d:10:f4: 17:98:0f:51:5b:07:57:ad:ac:3e:ef:59:78:2f:5d:ff:78:92: 12:43:4f:e0:b2:2f:2f:a3:5c:eb:bb:01:c8:e2:79:92:4e:b8: 1b:b2:83:1b:82:f1:33:7d:fc:35:f6:3c:9d:17:ac:ca:6f:a6: 10:1c:7d:c7:b9:74:53:38:49:1e:4c:57:83:ab:e2:de:5e:e9: d0:8a:76:de:57:31:b2:1a:82:db:37:ee:b5:a8:af:17:ef:cb: f3:32:c1:32:31:b2:0e:d3:63:d9:a9:3b:44:2a:40:4b:66:49: 3a:84:1b:96:af:af:e0:a4:d8:ee:3d:cd:32:8e:8d:63:b0:dd: 31:b7:78:d7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDIUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjkxRUIxMTAvBgNVBAUTKEI3RENFMTQxMTJBMDI5ODJGNTc1N0NBQjhEMzQ5MTAz MkM4RTE4RkEwHhcNMjUwNTEwMTgwNDU0WhcNMjUwNTE3MTgwNDU0WjAYMRYwFAYD VQQDEw02ODFmOTU0Ny05ZTgxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA128GXsjS+KD7r7v82y14TxxN9w1BkcSifl5U+4xKH4mvC8CLH0PT3bOzL+d8 y56WqcqZj8QS/d9PMj/aM7ke+Ki6XDcXxiN6sG5Z+a6lXnFfBaJP3mbeUt3dvPvm K6zlLL8FsJsQQ0N0ko7J79dCTzevhomWiieDym5vzew/exIOYM3NYlblQammS2Uh zU5kwwvss0QhVIM1ZSOSht8zdwffuOxhebh5YoTsxUst9OJZx7lNp9s352YdIm3L XqGm9JrpK88Nfcoyw//hzwbfTP54i9WhruZxdEXd5PcTQQiFXq8qgq4QJd2hJ3FJ 9qJRtsIkv7P5KWiJPgCaQcAIlwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDDpWH1o WN7TckEmPKmIq96DVLXWMB8GA1UdIwQYMBaAFLfc4UESoCmC9XV8q400kQMsjhj6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGOTFFQi80OTdGMkJEOEY3 MDUxMUU5QURCQTQ1MUZDNEY5QUUwMi90OXpoUVJLZ0tZTDFkWHlyalRTUkF5eU9H UG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3Q5emhRUktnS1lMMWRYeXJqVFNSQXl5T0dQby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG OTFFQi80OTdGMkJEOEY3MDUxMUU5QURCQTQ1MUZDNEY5QUUwMi90OXpoUVJLZ0tZ TDFkWHlyalRTUkF5eU9HUG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBK2/YLaebYrk1PGqlPGOe5rRiNlEgBCNxult0+TEMpEInXNMf4Ique rfz7WJF2ZdR2dJsHXSQz5oht1KtRFYfdUwnNvoAFYOiEoefCxRpE5F4OFpP/evj9 +GhCMczqzdTLfqizyhNx0WlDKz9jOFZNQZ5bF8IKiBd74IRtEPQXmA9RWwdXraw+ 71l4L13/eJISQ0/gsi8vo1zruwHI4nmSTrgbsoMbgvEzffw19jydF6zKb6YQHH3H uXRTOEkeTFeDq+LeXunQinbeVzGyGoLbN+61qK8X78vzMsEyMbIO02PZqTtEKkBL Zkk6hBuWr6/gpNjuPc0yjo1jsN0xt3jX -----END CERTIFICATE-----Generated at Mon May 12 14:05:01 2025 by rpki-client