$ rpki-client -vvf rpki.apnic.net/member_repository/A91998BE/150E57C6CF4911EA9CC9353EC4F9AE02/0NDWzWh3DDh4O764QbES0FYBdKI.mft File: 0NDWzWh3DDh4O764QbES0FYBdKI.mft (raw, json) Hash identifier: 2DE1Znn1pk1bGKTHT1rt9juH6Bpen9HA5dRrdtGAorc= Subject key identifier: BD:F6:6F:F7:46:B3:76:7B:92:51:74:AD:12:12:1C:C4:4D:6B:67:30 Authority key identifier: D0:D0:D6:CD:68:77:0C:38:78:3B:BE:B8:41:B1:12:D0:56:01:74:A2 Certificate issuer: /CN=A91998BE/serialNumber=D0D0D6CD68770C38783BBEB841B112D0560174A2 Certificate serial: 0889 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0NDWzWh3DDh4O764QbES0FYBdKI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91998BE/150E57C6CF4911EA9CC9353EC4F9AE02/0NDWzWh3DDh4O764QbES0FYBdKI.mft Manifest number: 0857 Signing time: Fri 30 May 2025 21:00:08 +0000 Manifest this update: Fri 30 May 2025 21:00:08 +0000 Manifest next update: Fri 06 Jun 2025 21:00:08 +0000 Files and hashes: 1: 0NDWzWh3DDh4O764QbES0FYBdKI.crl (hash: jSkL29Uv/KEEOJuLj6C67sDP8M8YXVVohMKF/hpB5k4=) 2: 577FD5BE067C11ED882FC127C4F9AE02.roa (hash: FZgwTWzQksQtmk/Nfe/JqxwRHSDF1+BlazvC8MqkPtA=) 3: 4EF79184489411ED86987260C4F9AE02.roa (hash: a8Efs0GAW5Tg39h9an5o87GfSDA70jqZExOy2QFYQOc=) 4: 12FD08CAC88411ECAAB5BD09C4F9AE02.roa (hash: Rk9fezvR7MLf0U22xpSZ4jUyV+Jwv2bIeNDcvnRfGXA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91998BE/150E57C6CF4911EA9CC9353EC4F9AE02/0NDWzWh3DDh4O764QbES0FYBdKI.crl rsync://rpki.apnic.net/member_repository/A91998BE/150E57C6CF4911EA9CC9353EC4F9AE02/0NDWzWh3DDh4O764QbES0FYBdKI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0NDWzWh3DDh4O764QbES0FYBdKI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 21:00:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2185 (0x889) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91998BE, serialNumber=D0D0D6CD68770C38783BBEB841B112D0560174A2 Validity Not Before: May 30 21:00:08 2025 GMT Not After : Jun 6 21:00:08 2025 GMT Subject: CN=683a1c58-462d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:8a:cb:5e:c4:2b:54:43:2a:42:6f:c6:1f:21: 52:fb:17:e5:04:66:05:14:5e:1d:b6:a1:d5:af:68: b0:58:34:fc:ca:da:20:fb:0c:a1:48:8a:79:52:d3: 33:32:a9:39:66:63:a9:78:b0:0f:dc:62:d0:7e:b0: 27:32:2b:9b:b4:fa:72:b4:c1:0e:d9:62:90:21:54: ac:b8:ce:d4:48:4a:37:07:76:75:1f:6c:7b:26:dc: 9b:f1:1b:32:ec:b5:12:13:5c:a2:b0:e3:3a:e8:98: df:e8:29:6b:c3:a5:a8:40:3b:b4:30:01:ad:c5:f2: 5d:ed:85:14:ee:8e:b4:58:67:d3:e7:68:28:cf:ac: 16:39:03:b4:66:a8:36:cb:3d:88:2e:01:53:ec:b4: c0:cc:ce:b2:b7:59:34:08:d1:2a:e1:ca:d6:97:91: c0:04:d2:ee:7b:3e:47:67:ce:5c:7f:6e:0a:aa:74: d3:a5:7c:a7:ca:d3:24:e1:75:a5:be:d8:06:2c:76: 3d:90:09:82:80:62:b0:e3:72:66:cc:d9:2d:e5:af: 3b:77:99:fb:ec:84:d8:ab:cf:de:a9:36:8f:3e:8d: 08:c4:fd:32:1e:97:e6:30:68:53:a8:96:51:74:67: 72:3e:9f:14:c2:23:30:b8:01:cb:2a:c4:87:5b:ca: fb:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BD:F6:6F:F7:46:B3:76:7B:92:51:74:AD:12:12:1C:C4:4D:6B:67:30 X509v3 Authority Key Identifier: keyid:D0:D0:D6:CD:68:77:0C:38:78:3B:BE:B8:41:B1:12:D0:56:01:74:A2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91998BE/150E57C6CF4911EA9CC9353EC4F9AE02/0NDWzWh3DDh4O764QbES0FYBdKI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0NDWzWh3DDh4O764QbES0FYBdKI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91998BE/150E57C6CF4911EA9CC9353EC4F9AE02/0NDWzWh3DDh4O764QbES0FYBdKI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7e:8b:8a:38:02:5f:4a:a2:54:85:27:ae:28:17:8a:e3:75:1d: 35:ca:f4:1d:31:ac:be:8d:da:59:be:15:52:54:12:7f:f3:68: 19:bf:11:26:6d:24:3d:be:c2:f4:87:1b:67:bc:9e:82:ee:d0: 53:8f:30:ea:37:5d:4d:d8:08:0e:1d:d3:1e:7c:7d:59:1e:6a: 25:e4:81:3d:d0:5b:69:37:6d:da:96:fd:fa:c9:cf:89:7a:26: 73:43:82:e7:32:7a:7c:4b:a9:64:3d:19:8a:d8:93:2f:c4:f6: c0:04:b8:76:49:f9:20:41:0c:ae:aa:6d:9b:3e:d1:b8:23:05: f9:02:d3:c0:5e:cd:71:f6:53:85:a6:49:04:dd:16:97:ba:7d: b1:20:55:20:c9:3e:31:d0:4e:4f:46:95:c7:5a:e4:0e:f1:3b: ab:a0:dd:b6:53:1c:e6:76:56:28:d2:37:09:b4:e1:d0:8f:c3: 17:34:5e:25:25:34:d8:ec:c5:5f:2c:e3:d0:63:3e:82:ca:f5: 53:8c:e0:46:2f:d5:b4:a3:d4:28:ca:75:07:d3:05:38:8a:7e: 1e:fd:53:d4:b7:09:65:67:1c:54:c0:80:b5:1c:c6:cd:da:17: db:39:fc:ae:f8:30:45:18:84:95:66:5e:f2:3c:8c:97:15:3b: 5f:e4:83:03 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCIkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTk4QkUxMTAvBgNVBAUTKEQwRDBENkNENjg3NzBDMzg3ODNCQkVCODQxQjExMkQw NTYwMTc0QTIwHhcNMjUwNTMwMjEwMDA4WhcNMjUwNjA2MjEwMDA4WjAYMRYwFAYD VQQDEw02ODNhMWM1OC00NjJkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzorLXsQrVEMqQm/GHyFS+xflBGYFFF4dtqHVr2iwWDT8ytog+wyhSIp5UtMz Mqk5ZmOpeLAP3GLQfrAnMiubtPpytMEO2WKQIVSsuM7USEo3B3Z1H2x7Jtyb8Rsy 7LUSE1yisOM66Jjf6Clrw6WoQDu0MAGtxfJd7YUU7o60WGfT52goz6wWOQO0Zqg2 yz2ILgFT7LTAzM6yt1k0CNEq4crWl5HABNLuez5HZ85cf24KqnTTpXynytMk4XWl vtgGLHY9kAmCgGKw43JmzNkt5a87d5n77ITYq8/eqTaPPo0IxP0yHpfmMGhTqJZR dGdyPp8UwiMwuAHLKsSHW8r7RwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFL32b/dG s3Z7klF0rRISHMRNa2cwMB8GA1UdIwQYMBaAFNDQ1s1odww4eDu+uEGxEtBWAXSi MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5OThCRS8xNTBFNTdDNkNG NDkxMUVBOUNDOTM1M0VDNEY5QUUwMi8wTkRXeldoM0REaDRPNzY0UWJFUzBGWUJk S0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzBORFd6V2gzRERoNE83NjRRYkVTMEZZQmRLSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 OThCRS8xNTBFNTdDNkNGNDkxMUVBOUNDOTM1M0VDNEY5QUUwMi8wTkRXeldoM0RE aDRPNzY0UWJFUzBGWUJkS0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB+i4o4Al9KolSFJ64oF4rjdR01yvQdMay+jdpZvhVSVBJ/82gZvxEm bSQ9vsL0hxtnvJ6C7tBTjzDqN11N2AgOHdMefH1ZHmol5IE90FtpN23alv36yc+J eiZzQ4LnMnp8S6lkPRmK2JMvxPbABLh2SfkgQQyuqm2bPtG4IwX5AtPAXs1x9lOF pkkE3RaXun2xIFUgyT4x0E5PRpXHWuQO8TuroN22UxzmdlYo0jcJtOHQj8MXNF4l JTTY7MVfLOPQYz6CyvVTjOBGL9W0o9QoynUH0wU4in4e/VPUtwllZxxUwIC1HMbN 2hfbOfyu+DBFGISVZl7yPIyXFTtf5IMD -----END CERTIFICATE-----Generated at Sat May 31 17:12:59 2025 by rpki-client