$ rpki-client -vvf rpki.apnic.net/member_repository/A91FD38A/9AEF17BE05F411EA886A3C23C4F9AE02/tiCpxJY3Zsw8WAYGlJIun2eIEd4.mft File: tiCpxJY3Zsw8WAYGlJIun2eIEd4.mft (raw, json) Hash identifier: ORbKh1xY4aqNGQybE+Pg0jtx7gr+/XvgJ1yWNx7Qq/M= Subject key identifier: DD:D7:DD:33:C8:F0:51:CA:F1:13:A8:21:E9:D2:59:C8:17:05:9F:F6 Authority key identifier: B6:20:A9:C4:96:37:66:CC:3C:58:06:06:94:92:2E:9F:67:88:11:DE Certificate issuer: /CN=A91FD38A/serialNumber=B620A9C4963766CC3C58060694922E9F678811DE Certificate serial: 0C42 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tiCpxJY3Zsw8WAYGlJIun2eIEd4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FD38A/9AEF17BE05F411EA886A3C23C4F9AE02/tiCpxJY3Zsw8WAYGlJIun2eIEd4.mft Manifest number: 0C39 Signing time: Wed 14 May 2025 18:37:24 +0000 Manifest this update: Wed 14 May 2025 18:37:24 +0000 Manifest next update: Wed 21 May 2025 18:37:24 +0000 Files and hashes: 1: tiCpxJY3Zsw8WAYGlJIun2eIEd4.crl (hash: s05kV+KIMaPdD+uVqwDEEjvDVcOB6MWdH58vOWLoQGo=) 2: AA5D86B2381311EA998E103FC4F9AE02.roa (hash: SvZjqtxcRIhPhrqiLm27nklXEkCJpvMYZMwhSGgkVOM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FD38A/9AEF17BE05F411EA886A3C23C4F9AE02/tiCpxJY3Zsw8WAYGlJIun2eIEd4.crl rsync://rpki.apnic.net/member_repository/A91FD38A/9AEF17BE05F411EA886A3C23C4F9AE02/tiCpxJY3Zsw8WAYGlJIun2eIEd4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tiCpxJY3Zsw8WAYGlJIun2eIEd4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 21 May 2025 18:37:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3138 (0xc42) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FD38A, serialNumber=B620A9C4963766CC3C58060694922E9F678811DE Validity Not Before: May 14 18:37:24 2025 GMT Not After : May 21 18:37:24 2025 GMT Subject: CN=6824e2e4-abda Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:8a:61:b1:db:a9:d6:b6:43:1b:4e:34:e1:b7: 57:64:63:55:3a:b9:e2:25:0e:e0:1c:4b:8a:8f:c0: e4:69:84:68:75:6f:b5:73:cb:5e:ec:01:59:46:d1: 41:ae:ae:9f:14:1a:d9:5f:bc:50:75:e8:96:4b:06: 21:ab:a6:24:1c:49:26:90:a9:ec:f9:fa:6a:8c:65: e7:21:9c:e4:a0:49:ec:e3:43:1b:a2:bb:a1:56:3e: 23:a4:a7:5c:04:bc:3f:90:9b:1d:00:3e:00:13:a3: d6:40:de:35:24:0a:56:c9:b9:01:34:80:c0:21:b2: 1b:51:fe:a1:b0:14:8c:01:82:8e:41:f3:96:64:8d: a7:88:22:f2:0a:2a:6b:24:2c:08:38:d2:7a:71:cc: 41:d0:3d:3e:c4:5d:85:30:f2:f9:3c:56:f3:8c:01: 42:27:1c:3a:d9:bd:73:1c:59:cd:c0:e6:46:8f:46: af:08:b5:8b:ea:c5:3d:e3:ba:c2:2d:07:7b:01:c9: 7b:07:11:22:4d:de:2a:a1:2d:69:f5:32:b2:f0:2e: ec:a7:27:27:ee:58:ab:99:e1:f2:8c:ad:5d:03:43: dc:f1:67:8c:26:5a:5b:01:a5:b0:48:99:68:b2:df: 50:3f:1b:86:a5:33:90:6c:ea:5e:c7:af:9a:4d:61: 91:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DD:D7:DD:33:C8:F0:51:CA:F1:13:A8:21:E9:D2:59:C8:17:05:9F:F6 X509v3 Authority Key Identifier: keyid:B6:20:A9:C4:96:37:66:CC:3C:58:06:06:94:92:2E:9F:67:88:11:DE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FD38A/9AEF17BE05F411EA886A3C23C4F9AE02/tiCpxJY3Zsw8WAYGlJIun2eIEd4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tiCpxJY3Zsw8WAYGlJIun2eIEd4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FD38A/9AEF17BE05F411EA886A3C23C4F9AE02/tiCpxJY3Zsw8WAYGlJIun2eIEd4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b5:7b:bf:d4:53:c6:bc:00:b4:07:27:b6:79:07:28:92:2b:df: 71:37:72:68:45:33:fb:09:61:6d:e7:54:57:48:f4:1f:70:4f: 77:db:4e:a8:06:b8:87:b9:46:37:10:8f:62:e2:a6:9d:aa:ff: 2c:1b:15:e0:e6:0c:7c:1a:7f:48:57:ff:69:31:a6:28:cb:fd: aa:42:6d:35:83:8f:d2:78:ae:9e:ea:6d:a7:e9:1a:ec:6f:65: 3d:bf:fb:1c:3c:05:0f:06:cd:6b:36:43:cc:87:c8:96:a2:c0: b4:09:6c:da:16:f3:48:ed:fa:45:3f:49:f6:41:21:ec:66:60: 2a:52:e3:6f:91:f0:fd:45:47:ea:f0:c7:cc:bf:a1:9b:6a:28: d2:79:5a:f2:41:19:2e:c9:fb:92:f5:7c:45:22:aa:96:76:e7: 8a:eb:a2:12:a0:a1:d6:c2:da:60:93:a4:14:13:22:43:17:d3: 9d:e3:4f:0a:b9:39:ed:de:8c:a8:be:9d:e5:57:00:ed:7c:4b: 2d:ec:48:6f:df:32:85:0e:61:09:f1:b0:c1:f3:3c:79:5d:29: c7:36:7e:5f:92:3b:77:ac:68:c9:cd:f1:18:26:c8:a2:39:43: ea:4f:14:0d:dd:e5:80:ce:ab:98:4b:8b:50:76:5c:ce:c5:75: c0:22:3c:39 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDEIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkQzOEExMTAvBgNVBAUTKEI2MjBBOUM0OTYzNzY2Q0MzQzU4MDYwNjk0OTIyRTlG Njc4ODExREUwHhcNMjUwNTE0MTgzNzI0WhcNMjUwNTIxMTgzNzI0WjAYMRYwFAYD VQQDEw02ODI0ZTJlNC1hYmRhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyIphsdup1rZDG0404bdXZGNVOrniJQ7gHEuKj8DkaYRodW+1c8te7AFZRtFB rq6fFBrZX7xQdeiWSwYhq6YkHEkmkKns+fpqjGXnIZzkoEns40MboruhVj4jpKdc BLw/kJsdAD4AE6PWQN41JApWybkBNIDAIbIbUf6hsBSMAYKOQfOWZI2niCLyCipr JCwIONJ6ccxB0D0+xF2FMPL5PFbzjAFCJxw62b1zHFnNwOZGj0avCLWL6sU947rC LQd7Acl7BxEiTd4qoS1p9TKy8C7spycn7lirmeHyjK1dA0Pc8WeMJlpbAaWwSJlo st9QPxuGpTOQbOpex6+aTWGRcQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFN3X3TPI 8FHK8ROoIenSWcgXBZ/2MB8GA1UdIwQYMBaAFLYgqcSWN2bMPFgGBpSSLp9niBHe MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGRDM4QS85QUVGMTdCRTA1 RjQxMUVBODg2QTNDMjNDNEY5QUUwMi90aUNweEpZM1pzdzhXQVlHbEpJdW4yZUlF ZDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RpQ3B4SlkzWnN3OFdBWUdsSkl1bjJlSUVkNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG RDM4QS85QUVGMTdCRTA1RjQxMUVBODg2QTNDMjNDNEY5QUUwMi90aUNweEpZM1pz dzhXQVlHbEpJdW4yZUlFZDQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC1e7/UU8a8ALQHJ7Z5ByiSK99xN3JoRTP7CWFt51RXSPQfcE93206o BriHuUY3EI9i4qadqv8sGxXg5gx8Gn9IV/9pMaYoy/2qQm01g4/SeK6e6m2n6Rrs b2U9v/scPAUPBs1rNkPMh8iWosC0CWzaFvNI7fpFP0n2QSHsZmAqUuNvkfD9RUfq 8MfMv6GbaijSeVryQRkuyfuS9XxFIqqWdueK66ISoKHWwtpgk6QUEyJDF9Od408K uTnt3oyovp3lVwDtfEst7Ehv3zKFDmEJ8bDB8zx5XSnHNn5fkjt3rGjJzfEYJsii OUPqTxQN3eWAzquYS4tQdlzOxXXAIjw5 -----END CERTIFICATE-----Generated at Thu May 15 19:27:55 2025 by rpki-client