$ rpki-client -vvf rpki.apnic.net/member_repository/A91FAF20/65A9A242F5C411E68AAA0085C4F9AE02/D429p9DJoeyhlFxhtykg9aoOlGc.mft File: D429p9DJoeyhlFxhtykg9aoOlGc.mft (raw, json) Hash identifier: 9ORc9VOkXrock1GOXvvRdi/KeEDb5VQb2Bo1NonJxEY= Subject key identifier: 24:26:B5:27:FC:D5:AA:D7:09:9D:9C:D9:A7:FC:9B:F8:0D:90:A7:74 Authority key identifier: 0F:8D:BD:A7:D0:C9:A1:EC:A1:94:5C:61:B7:29:20:F5:AA:0E:94:67 Certificate issuer: /CN=A91FAF20/serialNumber=0F8DBDA7D0C9A1ECA1945C61B72920F5AA0E9467 Certificate serial: 1BE5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D429p9DJoeyhlFxhtykg9aoOlGc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FAF20/65A9A242F5C411E68AAA0085C4F9AE02/D429p9DJoeyhlFxhtykg9aoOlGc.mft Manifest number: 1BD4 Signing time: Fri 16 May 2025 16:26:30 +0000 Manifest this update: Fri 16 May 2025 16:26:30 +0000 Manifest next update: Fri 23 May 2025 16:26:30 +0000 Files and hashes: 1: D429p9DJoeyhlFxhtykg9aoOlGc.crl (hash: 3B/OS6wxszBjRE68K+DTG5HJhiR+oKPqxCqHRlwEfww=) 2: D59EA6F4F5C611E6A4FFEF0AC4F9AE02.roa (hash: fVTj+Nhy/WhakS8dFaROX7k0zNO3tiUAb5xWLcSpOW0=) 3: C3ACDB568E9311E9AA8A2877C4F9AE02.roa (hash: u6rekZJ0jZc3ISHqsLCTcc0e5DQkPjPm3qL6iQKKzgs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FAF20/65A9A242F5C411E68AAA0085C4F9AE02/D429p9DJoeyhlFxhtykg9aoOlGc.crl rsync://rpki.apnic.net/member_repository/A91FAF20/65A9A242F5C411E68AAA0085C4F9AE02/D429p9DJoeyhlFxhtykg9aoOlGc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D429p9DJoeyhlFxhtykg9aoOlGc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 23 May 2025 16:26:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7141 (0x1be5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FAF20, serialNumber=0F8DBDA7D0C9A1ECA1945C61B72920F5AA0E9467 Validity Not Before: May 16 16:26:30 2025 GMT Not After : May 23 16:26:30 2025 GMT Subject: CN=68276736-49c5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:3f:a6:aa:46:12:1d:98:4b:56:5c:8f:cc:44: d8:c1:fd:52:70:d1:ca:94:39:3b:ab:28:05:c4:9a: 09:26:b4:f3:a9:df:ed:22:a6:1e:42:69:bd:25:4e: ca:e3:fe:f2:43:36:6f:9c:9f:98:7a:c2:1a:86:90: 6e:1b:d6:8a:a3:83:41:b5:55:25:d2:46:29:03:db: 24:09:ac:e6:39:66:36:a3:9a:d7:6f:a4:fc:34:c0: c7:6e:fa:49:e4:1f:cb:12:eb:d2:f5:cb:27:d2:8d: 15:62:4a:7c:f7:39:e3:c5:1f:62:ff:5e:85:40:35: d3:90:67:67:d6:7b:e5:b8:20:83:6f:d3:74:e0:43: 3e:7a:de:62:9f:a3:94:bf:ac:88:29:27:0d:33:85: d4:e9:94:79:7e:b1:c0:0c:6e:42:59:86:e5:30:e8: 3b:c7:b3:05:30:12:53:de:a2:db:e8:96:ca:9a:38: b0:27:0c:52:c8:7d:d2:18:60:a6:d6:f5:fe:6b:62: 98:03:47:be:32:b3:5f:f4:de:4e:f0:55:79:09:fd: d2:40:0d:7d:1f:ce:4f:49:50:e7:b7:bc:7c:00:b7: 78:e6:be:41:b2:13:c3:ce:22:83:48:45:93:27:01: 07:d0:cd:6d:b3:c5:7a:b3:3e:02:83:d1:87:50:9a: 77:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 24:26:B5:27:FC:D5:AA:D7:09:9D:9C:D9:A7:FC:9B:F8:0D:90:A7:74 X509v3 Authority Key Identifier: keyid:0F:8D:BD:A7:D0:C9:A1:EC:A1:94:5C:61:B7:29:20:F5:AA:0E:94:67 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FAF20/65A9A242F5C411E68AAA0085C4F9AE02/D429p9DJoeyhlFxhtykg9aoOlGc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D429p9DJoeyhlFxhtykg9aoOlGc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FAF20/65A9A242F5C411E68AAA0085C4F9AE02/D429p9DJoeyhlFxhtykg9aoOlGc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 02:12:3b:2c:b3:1f:98:db:35:b9:87:cc:73:99:88:d6:0e:df: 0a:06:e6:e7:f4:ef:ce:07:e8:c2:f2:ae:98:d7:e8:b3:cf:9f: 3a:6c:ec:a5:ee:4d:4c:32:03:bc:d2:49:70:60:3a:e9:3f:b1: 47:a3:ef:23:86:8c:2f:b5:56:2f:2c:14:a8:b2:79:6c:1f:a8: 2b:f1:0e:52:07:e5:0f:d0:10:0e:a3:1e:8b:ed:f9:01:00:60: c7:81:87:0e:ac:e0:0b:40:62:25:df:5d:77:82:7d:0c:26:95: fa:9f:d5:9f:c2:d7:26:eb:ad:7d:f4:a0:36:db:4e:86:f3:92: d5:ef:57:ac:70:68:38:68:54:61:eb:dc:24:f4:78:c2:c4:d8: 06:aa:a8:27:45:d9:3f:b3:c4:d3:ff:5d:a9:27:a4:db:c4:8a: 55:11:67:58:b0:f1:41:64:9a:32:7d:b1:a1:d1:e4:c1:6a:fd: 28:2b:dd:41:74:ed:30:73:38:7f:d9:56:fc:c8:08:5c:77:6c: 3b:f9:58:45:14:b6:54:b1:c5:a1:92:36:db:f3:66:54:05:b7: e8:6a:64:3f:f2:22:3c:eb:68:e1:5a:36:cd:a8:1e:4a:19:34: be:5d:20:1b:00:fa:a7:67:d6:29:25:c2:07:8c:f0:62:82:16: e1:68:f4:ed -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICG+UwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkFGMjAxMTAvBgNVBAUTKDBGOERCREE3RDBDOUExRUNBMTk0NUM2MUI3MjkyMEY1 QUEwRTk0NjcwHhcNMjUwNTE2MTYyNjMwWhcNMjUwNTIzMTYyNjMwWjAYMRYwFAYD VQQDEw02ODI3NjczNi00OWM1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6j+mqkYSHZhLVlyPzETYwf1ScNHKlDk7qygFxJoJJrTzqd/tIqYeQmm9JU7K 4/7yQzZvnJ+YesIahpBuG9aKo4NBtVUl0kYpA9skCazmOWY2o5rXb6T8NMDHbvpJ 5B/LEuvS9csn0o0VYkp89znjxR9i/16FQDXTkGdn1nvluCCDb9N04EM+et5in6OU v6yIKScNM4XU6ZR5frHADG5CWYblMOg7x7MFMBJT3qLb6JbKmjiwJwxSyH3SGGCm 1vX+a2KYA0e+MrNf9N5O8FV5Cf3SQA19H85PSVDnt7x8ALd45r5BshPDziKDSEWT JwEH0M1ts8V6sz4Cg9GHUJp3/QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCQmtSf8 1arXCZ2c2af8m/gNkKd0MB8GA1UdIwQYMBaAFA+NvafQyaHsoZRcYbcpIPWqDpRn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQUYyMC82NUE5QTI0MkY1 QzQxMUU2OEFBQTAwODVDNEY5QUUwMi9ENDI5cDlESm9leWhsRnhodHlrZzlhb09s R2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0Q0MjlwOURKb2V5aGxGeGh0eWtnOWFvT2xHYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG QUYyMC82NUE5QTI0MkY1QzQxMUU2OEFBQTAwODVDNEY5QUUwMi9ENDI5cDlESm9l eWhsRnhodHlrZzlhb09sR2MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQACEjsssx+Y2zW5h8xzmYjWDt8KBubn9O/OB+jC8q6Y1+izz586bOyl 7k1MMgO80klwYDrpP7FHo+8jhowvtVYvLBSosnlsH6gr8Q5SB+UP0BAOox6L7fkB AGDHgYcOrOALQGIl3113gn0MJpX6n9Wfwtcm66199KA2206G85LV71escGg4aFRh 69wk9HjCxNgGqqgnRdk/s8TT/12pJ6TbxIpVEWdYsPFBZJoyfbGh0eTBav0oK91B dO0wczh/2Vb8yAhcd2w7+VhFFLZUscWhkjbb82ZUBbfoamQ/8iI862jhWjbNqB5K GTS+XSAbAPqnZ9YpJcIHjPBighbhaPTt -----END CERTIFICATE-----Generated at Sun May 18 01:24:49 2025 by rpki-client