$ rpki-client -vvf rpki.apnic.net/member_repository/A91398E5/7840D95EE49111E791BE1869C4F9AE02/a9bIzoghkMgWnoE2ReDt2bdX6xk.mft File: a9bIzoghkMgWnoE2ReDt2bdX6xk.mft (raw, json) Hash identifier: xHTTFRjahCvwAcxVilH5OLeFl0hzT90eY7JsB4AnmQk= Subject key identifier: 86:B0:2B:5A:71:70:06:2B:E1:9E:BC:6E:C6:00:1C:FD:2C:B8:C6:7A Authority key identifier: 6B:D6:C8:CE:88:21:90:C8:16:9E:81:36:45:E0:ED:D9:B7:57:EB:19 Certificate issuer: /CN=A91398E5/serialNumber=6BD6C8CE882190C8169E813645E0EDD9B757EB19 Certificate serial: 1710 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/a9bIzoghkMgWnoE2ReDt2bdX6xk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91398E5/7840D95EE49111E791BE1869C4F9AE02/a9bIzoghkMgWnoE2ReDt2bdX6xk.mft Manifest number: 204A Signing time: Fri 30 May 2025 16:48:56 +0000 Manifest this update: Fri 30 May 2025 16:48:56 +0000 Manifest next update: Fri 06 Jun 2025 16:48:56 +0000 Files and hashes: 1: a9bIzoghkMgWnoE2ReDt2bdX6xk.crl (hash: qTK3jZ+d7XR94q2ME5zpBEUFTKgVyB/dQP8z0kFOiNI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91398E5/7840D95EE49111E791BE1869C4F9AE02/a9bIzoghkMgWnoE2ReDt2bdX6xk.crl rsync://rpki.apnic.net/member_repository/A91398E5/7840D95EE49111E791BE1869C4F9AE02/a9bIzoghkMgWnoE2ReDt2bdX6xk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/a9bIzoghkMgWnoE2ReDt2bdX6xk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 16:48:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5904 (0x1710) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91398E5, serialNumber=6BD6C8CE882190C8169E813645E0EDD9B757EB19 Validity Not Before: May 30 16:48:56 2025 GMT Not After : Jun 6 16:48:56 2025 GMT Subject: CN=6839e178-36b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f4:8d:0f:bc:81:a2:75:15:b6:37:c5:11:6f:7c: f9:76:16:be:57:cb:4a:32:2e:74:b2:70:bf:86:de: 90:e5:b8:b8:e9:92:90:a4:e9:a5:47:27:7f:dd:53: 82:04:82:3c:56:74:11:69:1c:65:3f:dc:16:4a:8d: 08:87:0f:87:1b:79:d1:40:b6:b8:7e:91:30:3d:cd: d9:b5:97:f1:9c:6d:f6:c2:ee:f9:92:f0:b7:6f:2b: c4:dd:e8:1b:cc:46:32:33:ec:ed:88:1f:47:ab:36: 06:3e:85:e8:d7:a6:38:55:eb:19:37:34:12:42:13: 75:6c:18:48:fc:1d:7c:39:2a:f0:d0:5b:2b:c0:76: 5c:e6:6f:6c:fa:4a:91:44:58:1e:a1:09:2d:da:87: 79:13:c2:0b:cf:a3:5e:c6:e2:9f:be:1c:0d:73:e1: 71:4d:c1:99:35:5f:4c:e3:47:6d:aa:f1:7c:33:df: f8:37:6a:ba:8c:f5:e4:73:76:c6:81:03:a8:83:9b: 56:06:5a:7b:9b:9b:28:45:c5:39:04:02:df:3a:4a: 84:b2:01:a9:95:6a:8c:8a:a4:2b:b6:9f:fa:ba:62: c9:c0:ea:37:01:e6:25:c6:0c:2a:4e:15:7c:50:43: 13:e9:5b:fe:ed:9e:dc:88:76:d4:7f:67:22:27:bb: 60:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 86:B0:2B:5A:71:70:06:2B:E1:9E:BC:6E:C6:00:1C:FD:2C:B8:C6:7A X509v3 Authority Key Identifier: keyid:6B:D6:C8:CE:88:21:90:C8:16:9E:81:36:45:E0:ED:D9:B7:57:EB:19 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91398E5/7840D95EE49111E791BE1869C4F9AE02/a9bIzoghkMgWnoE2ReDt2bdX6xk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/a9bIzoghkMgWnoE2ReDt2bdX6xk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91398E5/7840D95EE49111E791BE1869C4F9AE02/a9bIzoghkMgWnoE2ReDt2bdX6xk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1d:88:b9:93:a6:3f:cc:ef:51:e1:81:12:b2:7a:c6:8a:d6:53: 2f:7b:f9:23:aa:77:5a:75:63:0f:f9:a8:75:b2:4c:17:8e:50: 49:0b:64:b4:87:19:a7:5b:31:65:ba:33:28:fa:73:8f:ee:e7: ed:f2:f0:1b:87:6c:fa:14:4f:d5:51:bf:35:15:c0:59:ef:1b: 75:54:f6:29:84:5f:88:5e:be:46:96:4c:5d:05:90:57:d6:f4: 9c:db:e3:63:12:50:11:8b:b5:35:ec:b3:48:e5:19:da:2b:01: 3c:b9:f4:82:69:75:ec:92:cf:da:7d:9f:57:ee:67:ba:10:62: c7:68:b3:0f:a6:87:6c:39:2d:55:04:c1:1f:28:9a:75:ab:b3: 8a:64:31:97:dc:9b:68:c4:01:bf:c2:ad:ab:87:58:9a:33:90: 8c:d6:67:a1:05:74:0e:04:5c:0d:d1:26:a6:2d:80:32:7e:f2: 3c:0b:4b:8b:71:34:8c:9c:ed:cc:69:52:80:f4:67:8b:dd:09: 0a:dd:fc:17:7a:42:3b:22:47:5b:f3:67:a5:e6:d7:ac:0e:3b: 64:8a:df:76:3c:d0:74:6c:03:36:8a:d8:d6:64:27:72:48:6d: 29:59:fb:82:a9:6e:eb:3f:af:09:43:80:b8:68:7f:f1:2b:ac: c0:49:86:4f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICFxAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mzk4RTUxMTAvBgNVBAUTKDZCRDZDOENFODgyMTkwQzgxNjlFODEzNjQ1RTBFREQ5 Qjc1N0VCMTkwHhcNMjUwNTMwMTY0ODU2WhcNMjUwNjA2MTY0ODU2WjAYMRYwFAYD VQQDEw02ODM5ZTE3OC0zNmI4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA9I0PvIGidRW2N8URb3z5dha+V8tKMi50snC/ht6Q5bi46ZKQpOmlRyd/3VOC BII8VnQRaRxlP9wWSo0Ihw+HG3nRQLa4fpEwPc3ZtZfxnG32wu75kvC3byvE3egb zEYyM+ztiB9HqzYGPoXo16Y4VesZNzQSQhN1bBhI/B18OSrw0FsrwHZc5m9s+kqR RFgeoQkt2od5E8ILz6NexuKfvhwNc+FxTcGZNV9M40dtqvF8M9/4N2q6jPXkc3bG gQOog5tWBlp7m5soRcU5BALfOkqEsgGplWqMiqQrtp/6umLJwOo3AeYlxgwqThV8 UEMT6Vv+7Z7ciHbUf2ciJ7tgsQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIawK1px cAYr4Z68bsYAHP0suMZ6MB8GA1UdIwQYMBaAFGvWyM6IIZDIFp6BNkXg7dm3V+sZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzOThFNS83ODQwRDk1RUU0 OTExMUU3OTFCRTE4NjlDNEY5QUUwMi9hOWJJem9naGtNZ1dub0UyUmVEdDJiZFg2 eGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2E5Ykl6b2doa01nV25vRTJSZUR0MmJkWDZ4ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz OThFNS83ODQwRDk1RUU0OTExMUU3OTFCRTE4NjlDNEY5QUUwMi9hOWJJem9naGtN Z1dub0UyUmVEdDJiZFg2eGsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAdiLmTpj/M71HhgRKyesaK1lMve/kjqndadWMP+ah1skwXjlBJC2S0 hxmnWzFlujMo+nOP7uft8vAbh2z6FE/VUb81FcBZ7xt1VPYphF+IXr5GlkxdBZBX 1vSc2+NjElARi7U17LNI5RnaKwE8ufSCaXXsks/afZ9X7me6EGLHaLMPpodsOS1V BMEfKJp1q7OKZDGX3JtoxAG/wq2rh1iaM5CM1mehBXQOBFwN0SamLYAyfvI8C0uL cTSMnO3MaVKA9GeL3QkK3fwXekI7Ikdb82el5tesDjtkit92PNB0bAM2itjWZCdy SG0pWfuCqW7rP68JQ4C4aH/xK6zASYZP -----END CERTIFICATE-----Generated at Sat May 31 17:28:52 2025 by rpki-client