$ rpki-client -vvf rpki.apnic.net/member_repository/A91FDA40/96F0D70CBBDA11ED8878EF47C4F9AE02/N7YqdyUcUqBLM7gtLtAgTJJ6Qpo.mft File: N7YqdyUcUqBLM7gtLtAgTJJ6Qpo.mft (raw, json) Hash identifier: RKKbnfS88+ShcDOa51h6+k7LVtAf7LFj8+oV0FyDxVI= Subject key identifier: 2F:FA:70:0D:14:13:91:51:75:C2:7E:D9:28:B4:8D:39:B3:17:2D:9A Authority key identifier: 37:B6:2A:77:25:1C:52:A0:4B:33:B8:2D:2E:D0:20:4C:92:7A:42:9A Certificate issuer: /CN=A91FDA40/serialNumber=37B62A77251C52A04B33B82D2ED0204C927A429A Certificate serial: 01A8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/N7YqdyUcUqBLM7gtLtAgTJJ6Qpo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FDA40/96F0D70CBBDA11ED8878EF47C4F9AE02/N7YqdyUcUqBLM7gtLtAgTJJ6Qpo.mft Manifest number: 019F Signing time: Fri 09 May 2025 02:33:55 +0000 Manifest this update: Fri 09 May 2025 02:33:55 +0000 Manifest next update: Fri 16 May 2025 02:33:55 +0000 Files and hashes: 1: N7YqdyUcUqBLM7gtLtAgTJJ6Qpo.crl (hash: fzIUVIENfIwHG0JLsX77rZx6RnC+dr4i69QSCaR0Wik=) 2: A24D0F54140C11EFBC640B71C4F9AE02.roa (hash: wRJLakVb4OT38G6t+rRsnOSv4LpQV0AO0Scq5OD6JMU=) 3: 545EDE9C140911EF8520A25BC4F9AE02.roa (hash: Tv8VFI61ht6g4zpgpyoiarorIdL71VBSjtb/bqzuKfo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FDA40/96F0D70CBBDA11ED8878EF47C4F9AE02/N7YqdyUcUqBLM7gtLtAgTJJ6Qpo.crl rsync://rpki.apnic.net/member_repository/A91FDA40/96F0D70CBBDA11ED8878EF47C4F9AE02/N7YqdyUcUqBLM7gtLtAgTJJ6Qpo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/N7YqdyUcUqBLM7gtLtAgTJJ6Qpo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 16 May 2025 02:33:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 424 (0x1a8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FDA40, serialNumber=37B62A77251C52A04B33B82D2ED0204C927A429A Validity Not Before: May 9 02:33:55 2025 GMT Not After : May 16 02:33:55 2025 GMT Subject: CN=681d6993-fcd6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:12:9c:1b:71:29:36:43:d0:c9:8a:42:60:75: 39:96:1e:22:e0:3d:c4:af:46:ed:e5:5b:e4:8f:b1: c1:50:4f:ee:2f:cc:7a:1d:f2:0e:87:fd:2e:44:2f: fc:ec:83:dd:01:fd:c9:bf:30:5e:cb:97:09:c3:4f: d5:47:02:05:c1:66:ed:5c:aa:77:81:b2:59:b0:96: fa:7e:d1:20:de:bf:9f:e7:cd:e7:00:42:46:cd:21: b0:74:27:df:0d:b9:88:75:55:dd:60:54:2e:e5:e9: 1c:f9:c5:1e:05:3e:f5:8e:a4:3b:13:bb:7e:b7:b9: a3:fe:86:1e:d6:9c:f7:3e:45:22:99:be:2a:e9:53: 0b:35:e2:b4:4c:7b:da:f3:70:46:a5:75:ed:9b:f7: d6:72:7e:6d:90:28:b4:0f:7b:d9:f1:ae:ed:a2:db: 79:e6:15:b1:ae:aa:db:c9:ab:2f:86:72:5e:64:4f: 5b:b6:78:17:1b:3f:9f:a5:36:09:a3:7e:c2:61:79: 2e:a5:5b:a5:ec:62:94:44:f4:cb:59:99:cc:0c:d8: dc:57:ce:5d:00:e7:ac:47:be:87:cc:72:99:f3:6a: 86:36:7e:fa:da:ef:ad:85:72:1d:74:8d:2c:c2:a8: c5:f4:49:7c:a5:ed:47:12:af:25:43:c0:73:93:9f: 95:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2F:FA:70:0D:14:13:91:51:75:C2:7E:D9:28:B4:8D:39:B3:17:2D:9A X509v3 Authority Key Identifier: keyid:37:B6:2A:77:25:1C:52:A0:4B:33:B8:2D:2E:D0:20:4C:92:7A:42:9A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FDA40/96F0D70CBBDA11ED8878EF47C4F9AE02/N7YqdyUcUqBLM7gtLtAgTJJ6Qpo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/N7YqdyUcUqBLM7gtLtAgTJJ6Qpo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FDA40/96F0D70CBBDA11ED8878EF47C4F9AE02/N7YqdyUcUqBLM7gtLtAgTJJ6Qpo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 02:fa:67:2b:e6:9d:9e:81:a8:5e:47:68:a7:e6:64:24:f7:95: 6d:0d:28:8c:90:4b:01:6d:cd:a8:1a:31:e3:a7:b5:9e:17:5f: f6:16:38:2b:32:0d:87:bb:d0:46:ae:78:58:51:f4:aa:48:7c: 6f:83:18:06:9c:c0:c9:c2:ec:7b:3f:53:57:d3:72:f7:77:43: 6c:18:02:27:06:bc:8a:1d:ea:0b:52:a1:0d:95:83:aa:77:23: 8c:dc:e3:04:0b:82:06:3b:d9:4d:a1:09:44:27:4e:6d:9c:a3: 63:63:ca:a1:07:cc:58:fa:b6:18:3a:d2:d8:a5:ef:ee:64:f2: b4:3e:d8:3c:c9:19:62:68:32:1a:9b:4f:b3:ba:33:33:57:89: 36:70:47:96:8f:05:c7:07:be:e5:67:ba:db:31:da:ff:29:2b: e3:ce:7a:64:d0:b3:f7:20:1d:87:e2:50:a4:9f:c6:62:bb:23: e5:e5:7b:9e:60:57:ad:af:78:e1:87:09:f6:71:4d:16:34:3d: 90:b2:ae:f6:84:7b:f9:33:bb:c0:0f:fb:2e:d5:64:5e:6a:16: 51:1a:73:37:02:8d:1c:f1:82:5d:b0:38:94:e6:c8:49:8a:da: 0e:1e:ea:e9:4e:6a:26:51:2a:0e:6a:15:a7:52:0b:1e:c5:ea: a6:3d:a2:06 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAagwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkRBNDAxMTAvBgNVBAUTKDM3QjYyQTc3MjUxQzUyQTA0QjMzQjgyRDJFRDAyMDRD OTI3QTQyOUEwHhcNMjUwNTA5MDIzMzU1WhcNMjUwNTE2MDIzMzU1WjAYMRYwFAYD VQQDEw02ODFkNjk5My1mY2Q2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqBKcG3EpNkPQyYpCYHU5lh4i4D3Er0bt5Vvkj7HBUE/uL8x6HfIOh/0uRC/8 7IPdAf3JvzBey5cJw0/VRwIFwWbtXKp3gbJZsJb6ftEg3r+f583nAEJGzSGwdCff DbmIdVXdYFQu5ekc+cUeBT71jqQ7E7t+t7mj/oYe1pz3PkUimb4q6VMLNeK0THva 83BGpXXtm/fWcn5tkCi0D3vZ8a7tott55hWxrqrbyasvhnJeZE9btngXGz+fpTYJ o37CYXkupVul7GKURPTLWZnMDNjcV85dAOesR76HzHKZ82qGNn762u+thXIddI0s wqjF9El8pe1HEq8lQ8Bzk5+VSwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFC/6cA0U E5FRdcJ+2Si0jTmzFy2aMB8GA1UdIwQYMBaAFDe2KnclHFKgSzO4LS7QIEySekKa MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGREE0MC85NkYwRDcwQ0JC REExMUVEODg3OEVGNDdDNEY5QUUwMi9ON1lxZHlVY1VxQkxNN2d0THRBZ1RKSjZR cG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL043WXFkeVVjVXFCTE03Z3RMdEFnVEpKNlFwby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG REE0MC85NkYwRDcwQ0JCREExMUVEODg3OEVGNDdDNEY5QUUwMi9ON1lxZHlVY1Vx QkxNN2d0THRBZ1RKSjZRcG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAC+mcr5p2egaheR2in5mQk95VtDSiMkEsBbc2oGjHjp7WeF1/2Fjgr Mg2Hu9BGrnhYUfSqSHxvgxgGnMDJwux7P1NX03L3d0NsGAInBryKHeoLUqENlYOq dyOM3OMEC4IGO9lNoQlEJ05tnKNjY8qhB8xY+rYYOtLYpe/uZPK0Ptg8yRliaDIa m0+zujMzV4k2cEeWjwXHB77lZ7rbMdr/KSvjznpk0LP3IB2H4lCkn8ZiuyPl5Xue YFetr3jhhwn2cU0WND2Qsq72hHv5M7vAD/su1WReahZRGnM3Ao0c8YJdsDiU5shJ itoOHurpTmomUSoOahWnUgsexeqmPaIG -----END CERTIFICATE-----Generated at Sat May 10 16:39:25 2025 by rpki-client