$ rpki-client -vvf rpki.apnic.net/member_repository/A9154973/A65BC626606A11EF898EDB1FC4F9AE02/1gA1BzfqQktAGySBBT0rwpFsutE.mft File: 1gA1BzfqQktAGySBBT0rwpFsutE.mft (raw, json) Hash identifier: GrnwCbDC5cSB400Xw9p/Y44L4tV74kOZ7QvtgQBYloQ= Subject key identifier: F2:4B:3D:9A:EC:30:AC:B5:34:CA:28:86:83:3A:6E:4E:2B:DD:8C:86 Authority key identifier: D6:00:35:07:37:EA:42:4B:40:1B:24:81:05:3D:2B:C2:91:6C:BA:D1 Certificate issuer: /CN=A9154973/serialNumber=D600350737EA424B401B2481053D2BC2916CBAD1 Certificate serial: 92 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1gA1BzfqQktAGySBBT0rwpFsutE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9154973/A65BC626606A11EF898EDB1FC4F9AE02/1gA1BzfqQktAGySBBT0rwpFsutE.mft Manifest number: 91 Signing time: Sat 31 May 2025 06:00:59 +0000 Manifest this update: Sat 31 May 2025 06:00:59 +0000 Manifest next update: Sat 07 Jun 2025 06:00:59 +0000 Files and hashes: 1: 1gA1BzfqQktAGySBBT0rwpFsutE.crl (hash: DZN12CXRHQ7gmRtXy6G7jUoTN4GlS7rkaiC8fkAB6bU=) 2: FD557922606A11EF8B9F6820C4F9AE02.roa (hash: zTIt7VVx9LOh+fElZbmBDVws/qIJ7/N6iFJRXVOkuO4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9154973/A65BC626606A11EF898EDB1FC4F9AE02/1gA1BzfqQktAGySBBT0rwpFsutE.crl rsync://rpki.apnic.net/member_repository/A9154973/A65BC626606A11EF898EDB1FC4F9AE02/1gA1BzfqQktAGySBBT0rwpFsutE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1gA1BzfqQktAGySBBT0rwpFsutE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 06:00:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 146 (0x92) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9154973, serialNumber=D600350737EA424B401B2481053D2BC2916CBAD1 Validity Not Before: May 31 06:00:59 2025 GMT Not After : Jun 7 06:00:59 2025 GMT Subject: CN=683a9b1b-bd3f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:1b:4e:56:17:69:da:1a:36:0c:85:49:9c:2d: fa:6c:55:4d:f6:25:21:4f:cb:98:1f:24:79:ff:e2: d7:b0:27:dd:b3:6c:9f:86:4d:9b:44:88:15:7b:7f: 71:5f:59:90:a6:5c:7f:cc:93:da:30:67:89:60:33: 6c:e2:09:e7:7a:a4:83:2e:cc:cd:88:6a:95:eb:d9: 62:41:5b:cc:8e:11:2f:29:f4:4a:4e:7b:94:f0:56: d9:68:55:80:92:c1:b1:ec:af:64:34:bd:8b:82:85: c9:3c:3d:c3:06:ad:b2:70:76:4c:5c:1b:1f:0d:1c: 09:d7:7e:7e:8a:8a:99:da:62:98:06:1d:e7:bd:ce: 5d:49:50:d3:2c:11:2c:1c:5a:8c:c7:5b:86:1d:2d: f9:a1:ba:ca:40:fd:cc:d9:db:f7:d8:3e:2d:8b:59: 1d:b3:8c:c5:d4:d5:6e:cf:6d:b6:f1:14:d8:34:86: 11:c6:7c:19:22:95:46:72:bb:49:76:95:88:3f:4d: ac:f9:28:d6:77:ca:2c:6e:7f:b0:9e:ed:4b:37:e1: 68:8c:1e:1f:ed:75:cc:98:38:37:97:72:46:84:cc: 81:8d:93:fb:1b:77:e0:33:81:08:a2:ed:77:27:17: 24:17:29:01:40:bf:bb:63:da:37:22:1c:55:09:1a: fa:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F2:4B:3D:9A:EC:30:AC:B5:34:CA:28:86:83:3A:6E:4E:2B:DD:8C:86 X509v3 Authority Key Identifier: keyid:D6:00:35:07:37:EA:42:4B:40:1B:24:81:05:3D:2B:C2:91:6C:BA:D1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9154973/A65BC626606A11EF898EDB1FC4F9AE02/1gA1BzfqQktAGySBBT0rwpFsutE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1gA1BzfqQktAGySBBT0rwpFsutE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9154973/A65BC626606A11EF898EDB1FC4F9AE02/1gA1BzfqQktAGySBBT0rwpFsutE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6c:52:94:bc:c1:2f:cb:b2:47:b4:a1:0d:4b:43:bf:a6:fc:44: 9f:fe:36:d0:52:e0:08:69:c1:e5:5a:4d:f8:f8:3b:a6:0a:9f: e9:15:a3:6a:76:af:82:aa:78:c0:cd:ea:97:2f:0a:f1:30:cc: 35:36:01:e5:5d:d9:ca:6e:f9:8b:22:52:96:f5:b1:1d:3d:89: c4:61:5c:f2:e3:ff:b2:8e:6d:b9:7b:00:9d:07:6e:14:37:da: b4:8b:a6:1e:fc:f7:ab:2d:05:dc:03:f8:06:f3:c8:80:a2:c0: 5e:26:15:e1:0d:9d:fc:44:5c:90:be:b0:12:62:b0:14:4e:1d: 4d:77:19:5b:e3:39:ce:73:0b:8e:83:e0:c6:98:c5:0c:98:64: ef:36:8a:18:79:51:b3:b1:93:cd:95:b3:df:1c:71:7c:af:f8: 86:59:b2:a5:d3:aa:7d:dc:60:b3:35:6f:0e:bf:a8:12:8c:28: 18:60:22:e9:e7:6b:ea:aa:14:c1:5e:e1:40:49:d0:4f:e0:0c: c0:e5:8f:13:81:77:34:b4:c7:ca:c8:9c:0a:27:7c:29:21:72: c6:24:07:bd:d3:0b:75:5d:3d:13:fd:51:0e:a0:ac:9a:97:69: ae:a0:17:05:cc:c8:72:7a:5e:a6:17:08:03:3b:7e:3a:96:2c: f1:16:7b:89 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAJIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTQ5NzMxMTAvBgNVBAUTKEQ2MDAzNTA3MzdFQTQyNEI0MDFCMjQ4MTA1M0QyQkMy OTE2Q0JBRDEwHhcNMjUwNTMxMDYwMDU5WhcNMjUwNjA3MDYwMDU5WjAYMRYwFAYD VQQDEw02ODNhOWIxYi1iZDNmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxhtOVhdp2ho2DIVJnC36bFVN9iUhT8uYHyR5/+LXsCfds2yfhk2bRIgVe39x X1mQplx/zJPaMGeJYDNs4gnneqSDLszNiGqV69liQVvMjhEvKfRKTnuU8FbZaFWA ksGx7K9kNL2LgoXJPD3DBq2ycHZMXBsfDRwJ135+ioqZ2mKYBh3nvc5dSVDTLBEs HFqMx1uGHS35obrKQP3M2dv32D4ti1kds4zF1NVuz2228RTYNIYRxnwZIpVGcrtJ dpWIP02s+SjWd8osbn+wnu1LN+FojB4f7XXMmDg3l3JGhMyBjZP7G3fgM4EIou13 JxckFykBQL+7Y9o3IhxVCRr6LQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPJLPZrs MKy1NMoohoM6bk4r3YyGMB8GA1UdIwQYMBaAFNYANQc36kJLQBskgQU9K8KRbLrR MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NDk3My9BNjVCQzYyNjYw NkExMUVGODk4RURCMUZDNEY5QUUwMi8xZ0ExQnpmcVFrdEFHeVNCQlQwcndwRnN1 dEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFnQTFCemZxUWt0QUd5U0JCVDByd3BGc3V0RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NDk3My9BNjVCQzYyNjYwNkExMUVGODk4RURCMUZDNEY5QUUwMi8xZ0ExQnpmcVFr dEFHeVNCQlQwcndwRnN1dEUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBsUpS8wS/Lske0oQ1LQ7+m/ESf/jbQUuAIacHlWk34+DumCp/pFaNq dq+CqnjAzeqXLwrxMMw1NgHlXdnKbvmLIlKW9bEdPYnEYVzy4/+yjm25ewCdB24U N9q0i6Ye/PerLQXcA/gG88iAosBeJhXhDZ38RFyQvrASYrAUTh1Ndxlb4znOcwuO g+DGmMUMmGTvNooYeVGzsZPNlbPfHHF8r/iGWbKl06p93GCzNW8Ov6gSjCgYYCLp 52vqqhTBXuFASdBP4AzA5Y8TgXc0tMfKyJwKJ3wpIXLGJAe90wt1XT0T/VEOoKya l2muoBcFzMhyel6mFwgDO346lizxFnuJ -----END CERTIFICATE-----Generated at Sat May 31 17:20:37 2025 by rpki-client