$ rpki-client -vvf rpki.apnic.net/member_repository/A91FF19B/36488D80665B11EC8885A480C4F9AE02/cri4zRAwexYyTYeYJ98ypKqNaqE.mft File: cri4zRAwexYyTYeYJ98ypKqNaqE.mft (raw, json) Hash identifier: HNh02Y9FZsz7JUYKNly7H9N7FP0t+5NHXJAKOLLN+c8= Subject key identifier: 2A:D5:71:AC:8C:C1:B1:6D:F8:91:4D:3A:CB:3E:E6:C4:5E:D6:98:F4 Authority key identifier: 72:B8:B8:CD:10:30:7B:16:32:4D:87:98:27:DF:32:A4:AA:8D:6A:A1 Certificate issuer: /CN=A91FF19B/serialNumber=72B8B8CD10307B16324D879827DF32A4AA8D6AA1 Certificate serial: 042A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cri4zRAwexYyTYeYJ98ypKqNaqE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FF19B/36488D80665B11EC8885A480C4F9AE02/cri4zRAwexYyTYeYJ98ypKqNaqE.mft Manifest number: 0420 Signing time: Sat 10 May 2025 23:59:34 +0000 Manifest this update: Sat 10 May 2025 23:59:33 +0000 Manifest next update: Sat 17 May 2025 23:59:33 +0000 Files and hashes: 1: cri4zRAwexYyTYeYJ98ypKqNaqE.crl (hash: v6UfLGccXTWNTmvhptpKsYBcqkvf2AwgUsjrt1UDus4=) 2: 0C023160C4C911EE9278E261C4F9AE02.roa (hash: IyhV9MGtQ1VyJp3y60dauCI+itu5hIIH24D+SkqtwwY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FF19B/36488D80665B11EC8885A480C4F9AE02/cri4zRAwexYyTYeYJ98ypKqNaqE.crl rsync://rpki.apnic.net/member_repository/A91FF19B/36488D80665B11EC8885A480C4F9AE02/cri4zRAwexYyTYeYJ98ypKqNaqE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cri4zRAwexYyTYeYJ98ypKqNaqE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 17 May 2025 23:59:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1066 (0x42a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FF19B, serialNumber=72B8B8CD10307B16324D879827DF32A4AA8D6AA1 Validity Not Before: May 10 23:59:33 2025 GMT Not After : May 17 23:59:33 2025 GMT Subject: CN=681fe866-2bd2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:e3:c8:dc:4a:d5:92:1b:31:68:ce:75:9a:0f: 47:91:f1:aa:0f:1a:c1:88:0e:16:90:23:d4:67:3e: 44:5f:ae:72:fc:45:62:95:03:02:82:2d:fc:7f:63: 8a:65:cc:99:55:a5:b9:64:03:13:21:4a:42:0d:78: 5a:b3:a9:10:45:7d:03:61:a0:d1:26:cb:bf:5d:e9: 36:75:fa:a0:5f:df:cb:1b:09:12:5b:e7:6d:67:60: 5c:fc:9d:48:10:1c:76:d1:82:a5:1d:89:c5:1d:ca: 6b:c3:7f:16:ac:85:8a:c7:f7:96:29:aa:ed:b7:c7: f3:e8:ac:48:4f:94:a6:25:03:81:a3:e4:9c:a4:31: 3b:00:52:97:ef:24:29:db:c0:f2:01:fe:9c:1f:35: 4a:c1:ac:67:a2:26:66:7b:40:6b:10:52:ae:26:76: fb:64:8e:c9:da:7e:f9:08:e0:19:e3:21:48:84:71: 4f:00:74:b5:6b:e3:0b:5e:5b:ed:05:4e:64:c2:ad: ba:48:3b:f1:bd:e7:1f:f7:1e:96:22:ff:fc:e4:92: dd:f5:44:69:24:a1:45:9b:f6:f4:d9:b6:92:ee:84: 4b:b9:9a:97:4b:4c:1f:38:9e:de:ed:a6:bb:0b:bc: c2:30:de:a1:c3:30:74:f8:42:dd:a9:ef:3e:ba:e1: 41:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2A:D5:71:AC:8C:C1:B1:6D:F8:91:4D:3A:CB:3E:E6:C4:5E:D6:98:F4 X509v3 Authority Key Identifier: keyid:72:B8:B8:CD:10:30:7B:16:32:4D:87:98:27:DF:32:A4:AA:8D:6A:A1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FF19B/36488D80665B11EC8885A480C4F9AE02/cri4zRAwexYyTYeYJ98ypKqNaqE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cri4zRAwexYyTYeYJ98ypKqNaqE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FF19B/36488D80665B11EC8885A480C4F9AE02/cri4zRAwexYyTYeYJ98ypKqNaqE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 91:be:87:3b:e7:76:9a:82:69:52:04:ad:47:e2:fe:27:87:91: 18:bc:11:5d:73:86:8c:41:a8:27:d2:49:59:78:93:a0:c2:13: a0:25:29:cb:7c:73:c1:5e:cb:38:cf:8f:de:90:2d:cc:86:82: f4:cc:69:75:b7:e7:7f:f0:54:00:57:93:6c:49:e2:dd:67:17: 6b:d7:e8:00:c4:80:c6:83:ec:d2:4b:24:86:23:d7:aa:86:d0: 59:0e:2b:bf:19:d6:11:df:b9:9b:16:04:0b:5a:ec:a0:e1:28: 24:31:51:57:c4:63:6d:89:5f:0e:31:b4:c2:a3:60:fb:a2:f7: b3:17:9c:7b:69:60:ee:fe:4c:3b:e0:ae:7a:e0:94:96:7f:22: 84:fa:e1:41:e0:92:7b:e8:71:60:ae:bc:9d:33:b8:ed:d4:3a: f3:a6:29:84:28:f7:01:e7:17:1e:f3:8b:29:e5:e6:30:9a:f5: 47:b9:e2:f4:ff:17:5a:fd:77:32:11:04:0d:f7:02:6c:8b:33: b8:71:02:b9:be:85:e0:74:28:64:2e:32:36:1e:31:12:f2:21: e6:68:16:a8:e5:2f:90:d8:a6:8c:6b:be:36:b6:3e:c5:b4:0d: a6:73:a1:8a:95:ce:45:65:23:0d:e8:dd:39:a9:6b:17:e6:04: 72:8e:d2:b0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBCowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkYxOUIxMTAvBgNVBAUTKDcyQjhCOENEMTAzMDdCMTYzMjREODc5ODI3REYzMkE0 QUE4RDZBQTEwHhcNMjUwNTEwMjM1OTMzWhcNMjUwNTE3MjM1OTMzWjAYMRYwFAYD VQQDEw02ODFmZTg2Ni0yYmQyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoOPI3ErVkhsxaM51mg9HkfGqDxrBiA4WkCPUZz5EX65y/EVilQMCgi38f2OK ZcyZVaW5ZAMTIUpCDXhas6kQRX0DYaDRJsu/Xek2dfqgX9/LGwkSW+dtZ2Bc/J1I EBx20YKlHYnFHcprw38WrIWKx/eWKartt8fz6KxIT5SmJQOBo+ScpDE7AFKX7yQp 28DyAf6cHzVKwaxnoiZme0BrEFKuJnb7ZI7J2n75COAZ4yFIhHFPAHS1a+MLXlvt BU5kwq26SDvxvecf9x6WIv/85JLd9URpJKFFm/b02baS7oRLuZqXS0wfOJ7e7aa7 C7zCMN6hwzB0+ELdqe8+uuFB/wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCrVcayM wbFt+JFNOss+5sRe1pj0MB8GA1UdIwQYMBaAFHK4uM0QMHsWMk2HmCffMqSqjWqh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGRjE5Qi8zNjQ4OEQ4MDY2 NUIxMUVDODg4NUE0ODBDNEY5QUUwMi9jcmk0elJBd2V4WXlUWWVZSjk4eXBLcU5h cUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NyaTR6UkF3ZXhZeVRZZVlKOTh5cEtxTmFxRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG RjE5Qi8zNjQ4OEQ4MDY2NUIxMUVDODg4NUE0ODBDNEY5QUUwMi9jcmk0elJBd2V4 WXlUWWVZSjk4eXBLcU5hcUUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCRvoc753aagmlSBK1H4v4nh5EYvBFdc4aMQagn0klZeJOgwhOgJSnL fHPBXss4z4/ekC3MhoL0zGl1t+d/8FQAV5NsSeLdZxdr1+gAxIDGg+zSSySGI9eq htBZDiu/GdYR37mbFgQLWuyg4SgkMVFXxGNtiV8OMbTCo2D7ovezF5x7aWDu/kw7 4K564JSWfyKE+uFB4JJ76HFgrrydM7jt1DrzpimEKPcB5xce84sp5eYwmvVHueL0 /xda/XcyEQQN9wJsizO4cQK5voXgdChkLjI2HjES8iHmaBao5S+Q2KaMa742tj7F tA2mc6GKlc5FZSMN6N05qWsX5gRyjtKw -----END CERTIFICATE-----Generated at Sun May 11 15:16:17 2025 by rpki-client