$ rpki-client -vvf rpki.apnic.net/member_repository/A9157DA9/423E1AD45A1811EFBD477338C4F9AE02/71OR8qIt1l9IQxoyJt3MZbdllqk.mft File: 71OR8qIt1l9IQxoyJt3MZbdllqk.mft (raw, json) Hash identifier: y9A4bJYrUVC5EcCfKiGMKIITTJmTIhFc+4pF3B9srsA= Subject key identifier: 95:EB:15:D0:A4:4C:D1:FD:A9:B8:5A:7F:9F:AD:FC:C5:2E:06:73:06 Authority key identifier: EF:53:91:F2:A2:2D:D6:5F:48:43:1A:32:26:DD:CC:65:B7:65:96:A9 Certificate issuer: /CN=A9157DA9/serialNumber=EF5391F2A22DD65F48431A3226DDCC65B76596A9 Certificate serial: 99 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/71OR8qIt1l9IQxoyJt3MZbdllqk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9157DA9/423E1AD45A1811EFBD477338C4F9AE02/71OR8qIt1l9IQxoyJt3MZbdllqk.mft Manifest number: 97 Signing time: Sat 31 May 2025 05:53:58 +0000 Manifest this update: Sat 31 May 2025 05:53:57 +0000 Manifest next update: Sat 07 Jun 2025 05:53:57 +0000 Files and hashes: 1: 71OR8qIt1l9IQxoyJt3MZbdllqk.crl (hash: hTSui03Us2csP0UeHEgckzIf64w4TND1P96Ri0T8h/w=) 2: 897F96FC5A1811EFAF24E138C4F9AE02.roa (hash: V/66FKVQueBWCxe2q60voG68SskFvIkojTU44XWkp4w=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9157DA9/423E1AD45A1811EFBD477338C4F9AE02/71OR8qIt1l9IQxoyJt3MZbdllqk.crl rsync://rpki.apnic.net/member_repository/A9157DA9/423E1AD45A1811EFBD477338C4F9AE02/71OR8qIt1l9IQxoyJt3MZbdllqk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/71OR8qIt1l9IQxoyJt3MZbdllqk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 05:53:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 153 (0x99) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9157DA9, serialNumber=EF5391F2A22DD65F48431A3226DDCC65B76596A9 Validity Not Before: May 31 05:53:57 2025 GMT Not After : Jun 7 05:53:57 2025 GMT Subject: CN=683a9976-4c6a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:3d:29:e2:da:00:d5:a7:c2:2f:51:c1:74:bb: c8:6a:1a:0c:17:20:3b:34:dd:4b:01:ec:d9:0e:1b: bd:e3:3b:bc:e0:e7:71:9e:35:77:19:cb:ba:34:22: f9:85:73:2a:f8:74:aa:1e:08:e5:f2:3c:18:ed:b2: a8:9d:17:b2:14:20:39:74:ab:23:33:c9:23:1b:26: 20:9f:47:c9:09:39:ff:d8:4a:53:ac:f9:e6:46:49: 03:2b:cd:f0:35:71:a6:d6:f0:39:69:09:02:63:25: 65:c3:b6:5e:7b:5e:bd:d9:97:06:89:46:11:75:78: fa:f4:e4:3f:87:00:8c:b1:76:d5:f4:ee:68:7e:bf: b4:65:dd:7f:29:b5:af:be:05:bc:4f:be:e4:54:df: 9d:3e:c2:96:98:56:e5:2f:10:7e:93:d8:98:1e:89: bf:85:9d:f4:d0:c5:c8:4f:72:8c:74:ab:6d:8d:02: 44:2d:c7:05:60:a1:86:2b:ac:ce:ea:de:cc:4a:90: fc:10:32:31:8b:48:28:56:b9:01:7e:35:23:aa:61: 3c:fa:99:ce:d8:e9:11:0b:c8:17:37:e0:be:df:12: 22:bf:90:ef:86:9f:e2:2e:17:af:18:cf:45:de:39: af:8e:4c:08:99:92:86:4a:61:c2:f1:99:fb:b1:2b: a6:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 95:EB:15:D0:A4:4C:D1:FD:A9:B8:5A:7F:9F:AD:FC:C5:2E:06:73:06 X509v3 Authority Key Identifier: keyid:EF:53:91:F2:A2:2D:D6:5F:48:43:1A:32:26:DD:CC:65:B7:65:96:A9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9157DA9/423E1AD45A1811EFBD477338C4F9AE02/71OR8qIt1l9IQxoyJt3MZbdllqk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/71OR8qIt1l9IQxoyJt3MZbdllqk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9157DA9/423E1AD45A1811EFBD477338C4F9AE02/71OR8qIt1l9IQxoyJt3MZbdllqk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0e:e5:33:bb:79:ca:7e:b6:da:1d:af:a6:34:69:7a:cb:a0:bd: 63:9a:b4:1a:af:21:5c:36:c8:cf:f0:8c:69:51:95:17:61:27: 2a:00:f4:a0:dd:71:80:38:1f:94:81:aa:5f:8e:e4:bd:b6:ac: 1b:3f:ab:e4:71:ba:11:5b:99:ed:5d:5c:ad:4e:ba:55:26:1a: a0:12:98:18:6a:16:47:b0:fb:bc:f0:0f:8e:50:d3:9a:23:06: c9:77:4d:25:ff:3b:e3:27:ec:5f:50:1d:1e:db:a8:4e:90:64: 4e:aa:e1:80:c9:1b:4e:d5:dc:82:76:10:e7:12:80:2a:fd:0f: 19:a4:79:e1:70:b9:9b:ec:f6:0d:8d:3d:c2:c1:83:4a:e4:e4: 49:ee:4a:c9:43:74:a3:75:ce:85:41:41:7d:c4:1f:f2:3d:26: e9:31:e1:a7:67:0c:e7:ea:b1:03:ef:d3:06:76:da:b8:f3:c4: da:74:7a:60:65:66:f3:55:58:b6:20:a5:e2:e2:70:54:41:83: d8:cb:bd:20:85:a7:bd:d3:0e:a5:e9:ea:2f:7d:6b:39:4b:9d: ec:ba:d5:3d:7f:03:2e:15:09:f2:80:32:59:14:3e:24:78:3a: bb:bc:1d:95:1d:16:28:43:3b:5c:2c:d3:ae:a2:0a:d6:9c:87: 3f:f3:fa:36 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAJkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTdEQTkxMTAvBgNVBAUTKEVGNTM5MUYyQTIyREQ2NUY0ODQzMUEzMjI2RERDQzY1 Qjc2NTk2QTkwHhcNMjUwNTMxMDU1MzU3WhcNMjUwNjA3MDU1MzU3WjAYMRYwFAYD VQQDEw02ODNhOTk3Ni00YzZhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzj0p4toA1afCL1HBdLvIahoMFyA7NN1LAezZDhu94zu84OdxnjV3Gcu6NCL5 hXMq+HSqHgjl8jwY7bKonReyFCA5dKsjM8kjGyYgn0fJCTn/2EpTrPnmRkkDK83w NXGm1vA5aQkCYyVlw7Zee1692ZcGiUYRdXj69OQ/hwCMsXbV9O5ofr+0Zd1/KbWv vgW8T77kVN+dPsKWmFblLxB+k9iYHom/hZ300MXIT3KMdKttjQJELccFYKGGK6zO 6t7MSpD8EDIxi0goVrkBfjUjqmE8+pnO2OkRC8gXN+C+3xIiv5Dvhp/iLhevGM9F 3jmvjkwImZKGSmHC8Zn7sSumhwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJXrFdCk TNH9qbhaf5+t/MUuBnMGMB8GA1UdIwQYMBaAFO9TkfKiLdZfSEMaMibdzGW3ZZap MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1N0RBOS80MjNFMUFENDVB MTgxMUVGQkQ0NzczMzhDNEY5QUUwMi83MU9SOHFJdDFsOUlReG95SnQzTVpiZGxs cWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzcxT1I4cUl0MWw5SVF4b3lKdDNNWmJkbGxxay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 N0RBOS80MjNFMUFENDVBMTgxMUVGQkQ0NzczMzhDNEY5QUUwMi83MU9SOHFJdDFs OUlReG95SnQzTVpiZGxscWsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAO5TO7ecp+ttodr6Y0aXrLoL1jmrQaryFcNsjP8IxpUZUXYScqAPSg 3XGAOB+UgapfjuS9tqwbP6vkcboRW5ntXVytTrpVJhqgEpgYahZHsPu88A+OUNOa IwbJd00l/zvjJ+xfUB0e26hOkGROquGAyRtO1dyCdhDnEoAq/Q8ZpHnhcLmb7PYN jT3CwYNK5ORJ7krJQ3Sjdc6FQUF9xB/yPSbpMeGnZwzn6rED79MGdtq488TadHpg ZWbzVVi2IKXi4nBUQYPYy70ghae90w6l6eovfWs5S53sutU9fwMuFQnygDJZFD4k eDq7vB2VHRYoQztcLNOuogrWnIc/8/o2 -----END CERTIFICATE-----Generated at Sat May 31 17:56:22 2025 by rpki-client