$ rpki-client -vvf rpki.apnic.net/member_repository/A91A5208/9E28557EE4EE11EFB1ED760EC4F9AE02/aK0NBHD2rG8Zxk7vQJTuC7WHHto.mft File: aK0NBHD2rG8Zxk7vQJTuC7WHHto.mft (raw, json) Hash identifier: zDvZg7Wj5WecY24vclDH007ro+nyq66Sp5e/Ycpuuh8= Subject key identifier: 0C:C9:E5:51:30:FA:A4:8E:AF:22:36:81:42:B9:9E:8C:7A:C6:6C:CE Authority key identifier: 68:AD:0D:04:70:F6:AC:6F:19:C6:4E:EF:40:94:EE:0B:B5:87:1E:DA Certificate issuer: /CN=A91A5208/serialNumber=68AD0D0470F6AC6F19C64EEF4094EE0BB5871EDA Certificate serial: 44 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aK0NBHD2rG8Zxk7vQJTuC7WHHto.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A5208/9E28557EE4EE11EFB1ED760EC4F9AE02/aK0NBHD2rG8Zxk7vQJTuC7WHHto.mft Manifest number: 40 Signing time: Sat 31 May 2025 07:05:40 +0000 Manifest this update: Sat 31 May 2025 07:05:40 +0000 Manifest next update: Sat 07 Jun 2025 07:05:40 +0000 Files and hashes: 1: aK0NBHD2rG8Zxk7vQJTuC7WHHto.crl (hash: t9FkcYVxm5eh7E4rfigQmUol7Ws2bL3+rVXgeevlvls=) 2: FF9C9380E84D11EFBDF0C033C4F9AE02.roa (hash: VsfS/oejZClbqFlHZRJnAMGoiF1B4LGgl4LCmgAUmio=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A5208/9E28557EE4EE11EFB1ED760EC4F9AE02/aK0NBHD2rG8Zxk7vQJTuC7WHHto.crl rsync://rpki.apnic.net/member_repository/A91A5208/9E28557EE4EE11EFB1ED760EC4F9AE02/aK0NBHD2rG8Zxk7vQJTuC7WHHto.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aK0NBHD2rG8Zxk7vQJTuC7WHHto.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 07:05:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 68 (0x44) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A5208, serialNumber=68AD0D0470F6AC6F19C64EEF4094EE0BB5871EDA Validity Not Before: May 31 07:05:40 2025 GMT Not After : Jun 7 07:05:40 2025 GMT Subject: CN=683aaa44-8c33 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:96:e0:f0:4d:61:fe:7a:0a:bb:ae:3b:ac:f1:e1: 24:35:53:93:6a:17:c1:5e:b3:f3:9e:5e:03:47:ed: 04:fc:e6:8c:9a:9b:ed:48:08:8c:33:36:fe:4e:de: 6e:e5:ba:73:8b:86:b8:a5:1e:41:24:35:b6:a7:e7: ab:1d:69:c1:e0:e7:fb:87:b1:e4:db:02:4a:70:d8: 73:50:e7:3d:b1:ae:39:bc:3d:49:a7:9d:f7:0e:00: 8a:91:a5:b8:ff:11:5c:67:45:41:8f:f4:83:03:01: 9b:28:5e:c4:a2:2b:1b:73:b9:47:eb:c2:c0:2c:a3: 8f:12:e4:1e:96:69:72:37:bd:bf:d0:bc:2d:c3:58: 47:ec:91:26:8b:90:47:3d:fa:83:f0:48:90:89:3f: ec:aa:48:4a:2c:c4:75:0f:65:79:ec:64:69:8a:56: 37:ae:a6:46:9c:c0:54:15:3d:23:f5:65:da:2f:a8: e4:34:b9:0d:1a:55:c8:ef:3b:10:a4:d8:f9:2c:1e: d9:b1:08:0c:66:61:f4:bb:e5:c0:bb:c0:9c:e5:01: 0c:65:3b:d9:f1:5a:b0:54:95:c3:b1:23:72:2a:dc: e4:ef:7a:23:c7:2c:01:9f:37:2d:e6:18:22:9b:43: e3:a5:65:68:01:13:64:b8:f1:d5:29:fb:25:a2:74: 3c:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0C:C9:E5:51:30:FA:A4:8E:AF:22:36:81:42:B9:9E:8C:7A:C6:6C:CE X509v3 Authority Key Identifier: keyid:68:AD:0D:04:70:F6:AC:6F:19:C6:4E:EF:40:94:EE:0B:B5:87:1E:DA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A5208/9E28557EE4EE11EFB1ED760EC4F9AE02/aK0NBHD2rG8Zxk7vQJTuC7WHHto.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aK0NBHD2rG8Zxk7vQJTuC7WHHto.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A5208/9E28557EE4EE11EFB1ED760EC4F9AE02/aK0NBHD2rG8Zxk7vQJTuC7WHHto.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1f:48:7f:58:29:f2:8b:7f:1b:99:eb:5f:8c:61:d4:39:75:c4: 73:66:0a:04:40:a7:fa:83:99:e7:9d:83:f6:81:02:4f:34:66: 88:37:78:93:f3:62:f0:e3:5c:32:3a:1f:9e:77:4e:a2:7c:a6: ba:49:50:c8:9c:ed:f4:ce:54:a3:6c:b2:06:1b:6e:a5:4b:e0: 12:2a:c0:3c:01:19:ca:99:9b:dc:14:5f:e1:c8:98:b6:38:66: 75:ea:37:67:62:d6:c5:c7:d2:f4:db:20:54:f0:ea:8b:2d:ec: 16:a6:f8:4b:de:47:8d:b3:05:ef:c9:ba:20:7d:f1:69:5d:01: b3:b8:b4:68:95:1a:e6:de:1d:50:b1:87:4d:ec:85:a5:6c:6e: 4e:20:c7:02:fa:ed:cf:de:69:cb:5b:6b:08:cd:0c:83:18:42: ff:a4:63:bd:83:f1:5a:89:36:c8:b9:03:6f:bc:23:43:6f:2b: 9a:b9:45:1c:9d:28:71:02:97:5c:13:66:3c:c5:c9:9c:3e:1c: 19:6b:93:f4:a3:18:e1:73:60:64:5c:26:c5:cb:c3:c6:95:1b: 29:8f:7e:ec:24:49:00:53:51:ad:93:e8:52:ea:19:12:da:d7: 1a:f5:20:10:a6:c0:70:05:4c:91:24:98:90:8e:f2:86:5d:bc: df:9f:7d:73 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBRDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFB NTIwODExMC8GA1UEBRMoNjhBRDBEMDQ3MEY2QUM2RjE5QzY0RUVGNDA5NEVFMEJC NTg3MUVEQTAeFw0yNTA1MzEwNzA1NDBaFw0yNTA2MDcwNzA1NDBaMBgxFjAUBgNV BAMTDTY4M2FhYTQ0LThjMzMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCW4PBNYf56CruuO6zx4SQ1U5NqF8Fes/OeXgNH7QT85oyam+1ICIwzNv5O3m7l unOLhrilHkEkNban56sdacHg5/uHseTbAkpw2HNQ5z2xrjm8PUmnnfcOAIqRpbj/ EVxnRUGP9IMDAZsoXsSiKxtzuUfrwsAso48S5B6WaXI3vb/QvC3DWEfskSaLkEc9 +oPwSJCJP+yqSEosxHUPZXnsZGmKVjeupkacwFQVPSP1ZdovqOQ0uQ0aVcjvOxCk 2PksHtmxCAxmYfS75cC7wJzlAQxlO9nxWrBUlcOxI3Iq3OTveiPHLAGfNy3mGCKb Q+OlZWgBE2S48dUp+yWidDwvAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUDMnlUTD6 pI6vIjaBQrmejHrGbM4wHwYDVR0jBBgwFoAUaK0NBHD2rG8Zxk7vQJTuC7WHHtow DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUE1MjA4LzlFMjg1NTdFRTRF RTExRUZCMUVENzYwRUM0RjlBRTAyL2FLME5CSEQyckc4WnhrN3ZRSlR1QzdXSEh0 by5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvYUswTkJIRDJyRzhaeGs3dlFKVHVDN1dISHRvLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUE1 MjA4LzlFMjg1NTdFRTRFRTExRUZCMUVENzYwRUM0RjlBRTAyL2FLME5CSEQyckc4 WnhrN3ZRSlR1QzdXSEh0by5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAB9If1gp8ot/G5nrX4xh1Dl1xHNmCgRAp/qDmeedg/aBAk80Zog3eJPz YvDjXDI6H553TqJ8prpJUMic7fTOVKNssgYbbqVL4BIqwDwBGcqZm9wUX+HImLY4 ZnXqN2di1sXH0vTbIFTw6ost7Bam+EveR42zBe/JuiB98WldAbO4tGiVGubeHVCx h03shaVsbk4gxwL67c/eactbawjNDIMYQv+kY72D8VqJNsi5A2+8I0NvK5q5RRyd KHECl1wTZjzFyZw+HBlrk/SjGOFzYGRcJsXLw8aVGymPfuwkSQBTUa2T6FLqGRLa 1xr1IBCmwHAFTJEkmJCO8oZdvN+ffXM= -----END CERTIFICATE-----Generated at Sat May 31 17:20:31 2025 by rpki-client