$ rpki-client -vvf rpki.apnic.net/member_repository/A91FCEB1/9C14B4063A2111E79AA0D51CC4F9AE02/0I2GgcK-TUfCopBV9m5olVhGF_c.mft File: 0I2GgcK-TUfCopBV9m5olVhGF_c.mft (raw, json) Hash identifier: dlecfd2QDBirxDU+B04Pf2FP2nMsnT/ushsoH5hxKvg= Subject key identifier: B2:93:B8:B6:E6:83:67:E1:BA:98:CE:4D:2A:E2:91:B7:92:9D:D0:4D Authority key identifier: D0:8D:86:81:C2:BE:4D:47:C2:A2:90:55:F6:6E:68:95:58:46:17:F7 Certificate issuer: /CN=A91FCEB1/serialNumber=D08D8681C2BE4D47C2A29055F66E6895584617F7 Certificate serial: 1A6B Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/0I2GgcK-TUfCopBV9m5olVhGF_c.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FCEB1/9C14B4063A2111E79AA0D51CC4F9AE02/0I2GgcK-TUfCopBV9m5olVhGF_c.mft Manifest number: 215E Signing time: Sat 10 May 2025 15:54:17 +0000 Manifest this update: Sat 10 May 2025 15:54:17 +0000 Manifest next update: Sat 17 May 2025 15:54:17 +0000 Files and hashes: 1: 0I2GgcK-TUfCopBV9m5olVhGF_c.crl (hash: d0Ltg88oomS3KGam/h9ndOeQ+DEPYnlg17u8MJj4OfI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FCEB1/9C14B4063A2111E79AA0D51CC4F9AE02/0I2GgcK-TUfCopBV9m5olVhGF_c.crl rsync://rpki.apnic.net/member_repository/A91FCEB1/9C14B4063A2111E79AA0D51CC4F9AE02/0I2GgcK-TUfCopBV9m5olVhGF_c.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/0I2GgcK-TUfCopBV9m5olVhGF_c.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 17 May 2025 15:54:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6763 (0x1a6b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FCEB1, serialNumber=D08D8681C2BE4D47C2A29055F66E6895584617F7 Validity Not Before: May 10 15:54:17 2025 GMT Not After : May 17 15:54:17 2025 GMT Subject: CN=681f76a9-efff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:6d:ac:a3:ab:45:f2:76:f0:0e:20:8b:39:d2: 87:d1:8c:91:7c:c6:4e:ef:87:8e:fe:c4:a4:08:de: 69:db:ed:82:02:19:9e:c8:b0:f3:f3:ff:aa:4c:14: c6:f9:2b:dc:11:b7:e0:86:44:76:45:49:0f:48:da: 9d:43:cf:08:b5:78:40:e8:7c:47:61:32:69:82:c0: ae:ec:f2:d1:99:7f:0a:c3:4b:ff:64:66:ad:0b:e3: fe:b4:88:b3:02:6d:6b:1c:c8:da:19:85:5c:6a:61: 29:4b:ff:4d:0f:13:51:09:c4:43:e2:ad:88:4b:57: 96:3a:01:ec:e4:85:90:6b:f6:2b:53:0a:4a:3d:49: 60:21:ec:d4:d7:bd:88:72:6b:ce:2c:f4:f3:d3:38: bd:6f:87:ac:77:c7:1a:86:9a:58:6c:be:22:1f:04: d4:f5:ed:78:6d:ec:ee:ba:d4:20:e2:53:1e:f2:b9: 4b:f6:b2:a0:a8:d0:6f:fd:01:bc:d0:23:2e:bc:a1: 5b:68:ed:71:0f:e7:08:27:68:b2:02:47:f8:b4:55: f6:76:01:85:f4:3e:9b:c8:b3:08:43:22:c6:cf:66: 5f:c8:64:a5:f8:6f:35:c4:ce:f6:28:c0:a2:8a:e9: 3e:67:c8:3e:6b:cb:a1:df:98:f5:2a:59:91:6c:c4: df:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B2:93:B8:B6:E6:83:67:E1:BA:98:CE:4D:2A:E2:91:B7:92:9D:D0:4D X509v3 Authority Key Identifier: keyid:D0:8D:86:81:C2:BE:4D:47:C2:A2:90:55:F6:6E:68:95:58:46:17:F7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FCEB1/9C14B4063A2111E79AA0D51CC4F9AE02/0I2GgcK-TUfCopBV9m5olVhGF_c.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/0I2GgcK-TUfCopBV9m5olVhGF_c.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FCEB1/9C14B4063A2111E79AA0D51CC4F9AE02/0I2GgcK-TUfCopBV9m5olVhGF_c.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9a:f0:6d:31:58:b3:60:ed:52:50:e0:1e:9d:23:49:bb:7d:60: d0:98:33:de:35:eb:7f:d3:c0:3b:cf:d2:b5:f3:4c:fb:e5:36: 9b:0c:19:f4:6a:56:f8:8b:45:47:17:47:20:9c:c4:e4:e5:da: 9b:07:9e:f7:a5:b0:73:59:f0:83:d9:17:4f:04:e0:b4:7c:22: bc:74:6d:c1:e5:67:ea:ab:27:54:35:6e:80:cd:62:6f:57:70: 0c:6d:7a:e6:a5:57:e0:3c:5a:fa:49:2d:91:72:51:a5:d6:7f: f5:14:de:66:36:7b:11:63:e4:6a:c4:16:c5:de:d3:90:c2:4c: 9f:87:44:1c:5f:d2:f1:9c:cd:68:45:1d:c2:30:80:96:c6:00: 2e:da:b9:69:65:97:c7:b0:29:78:d0:ee:91:4a:b5:e0:6d:19: c3:87:74:cc:6b:81:ce:71:18:b4:d9:fd:f7:81:ab:83:d3:42: 84:21:e9:9f:6b:c0:8e:06:f2:77:9b:07:c0:04:46:b4:22:e1: e6:8e:83:cc:d6:9e:e6:2f:d7:f3:36:ae:3b:90:a6:69:7e:64: 94:26:4f:48:b5:78:c8:0e:7f:8d:4e:1f:e2:89:bf:56:45:6f: 41:a3:37:01:12:22:dc:05:dc:e3:de:8b:c9:63:15:bd:22:cf: 43:5c:32:4d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICGmswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkNFQjExMTAvBgNVBAUTKEQwOEQ4NjgxQzJCRTRENDdDMkEyOTA1NUY2NkU2ODk1 NTg0NjE3RjcwHhcNMjUwNTEwMTU1NDE3WhcNMjUwNTE3MTU1NDE3WjAYMRYwFAYD VQQDEw02ODFmNzZhOS1lZmZmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0m2so6tF8nbwDiCLOdKH0YyRfMZO74eO/sSkCN5p2+2CAhmeyLDz8/+qTBTG +SvcEbfghkR2RUkPSNqdQ88ItXhA6HxHYTJpgsCu7PLRmX8Kw0v/ZGatC+P+tIiz Am1rHMjaGYVcamEpS/9NDxNRCcRD4q2IS1eWOgHs5IWQa/YrUwpKPUlgIezU172I cmvOLPTz0zi9b4esd8cahppYbL4iHwTU9e14bezuutQg4lMe8rlL9rKgqNBv/QG8 0CMuvKFbaO1xD+cIJ2iyAkf4tFX2dgGF9D6byLMIQyLGz2ZfyGSl+G81xM72KMCi iuk+Z8g+a8uh35j1KlmRbMTfIQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLKTuLbm g2fhupjOTSrikbeSndBNMB8GA1UdIwQYMBaAFNCNhoHCvk1HwqKQVfZuaJVYRhf3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQ0VCMS85QzE0QjQwNjNB MjExMUU3OUFBMEQ1MUNDNEY5QUUwMi8wSTJHZ2NLLVRVZkNvcEJWOW01b2xWaEdG X2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzBJMkdnY0stVFVmQ29wQlY5bTVvbFZoR0ZfYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG Q0VCMS85QzE0QjQwNjNBMjExMUU3OUFBMEQ1MUNDNEY5QUUwMi8wSTJHZ2NLLVRV ZkNvcEJWOW01b2xWaEdGX2MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCa8G0xWLNg7VJQ4B6dI0m7fWDQmDPeNet/08A7z9K180z75TabDBn0 alb4i0VHF0cgnMTk5dqbB573pbBzWfCD2RdPBOC0fCK8dG3B5WfqqydUNW6AzWJv V3AMbXrmpVfgPFr6SS2RclGl1n/1FN5mNnsRY+RqxBbF3tOQwkyfh0QcX9LxnM1o RR3CMICWxgAu2rlpZZfHsCl40O6RSrXgbRnDh3TMa4HOcRi02f33gauD00KEIemf a8COBvJ3mwfABEa0IuHmjoPM1p7mL9fzNq47kKZpfmSUJk9ItXjIDn+NTh/iib9W RW9BozcBEiLcBdzj3ovJYxW9Is9DXDJN -----END CERTIFICATE-----Generated at Sun May 11 16:53:54 2025 by rpki-client