$ rpki-client -vvf rpki.apnic.net/member_repository/A91A7B94/CC741BB6377011EE8DC8BB34C4F9AE02/MSb07wXjrnWgkUS2Z9OTR9TaqJA.mft File: MSb07wXjrnWgkUS2Z9OTR9TaqJA.mft (raw, json) Hash identifier: 0Wrg/23Wuc6fY4xldP9VJkXhDqiWmbN1u0fD5uJK4HA= Subject key identifier: 38:33:F3:E4:EA:3A:69:C9:40:53:F4:C3:9B:B9:90:70:25:F9:A0:88 Authority key identifier: 31:26:F4:EF:05:E3:AE:75:A0:91:44:B6:67:D3:93:47:D4:DA:A8:90 Certificate issuer: /CN=A91A7B94/serialNumber=3126F4EF05E3AE75A09144B667D39347D4DAA890 Certificate serial: 0169 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MSb07wXjrnWgkUS2Z9OTR9TaqJA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A7B94/CC741BB6377011EE8DC8BB34C4F9AE02/MSb07wXjrnWgkUS2Z9OTR9TaqJA.mft Manifest number: 0159 Signing time: Sat 31 May 2025 03:48:56 +0000 Manifest this update: Sat 31 May 2025 03:48:55 +0000 Manifest next update: Sat 07 Jun 2025 03:48:55 +0000 Files and hashes: 1: MSb07wXjrnWgkUS2Z9OTR9TaqJA.crl (hash: 0weveHQyCcb2GaRApqq7WJK1mOLDEi24nBxq1XdAg/0=) 2: 268DF20A940C11EE9B034255C4F9AE02.roa (hash: kgaZFM6PEa7OxBpQNYQJyC2BXzh6kZmUunDtbxoanho=) 3: 2732E7CE940C11EE9B034255C4F9AE02.roa (hash: vxzRpo3gFHIybngZJMla9i3xRZ+JSBWrRy4xi4ckalM=) 4: D29109C4EC6E11EEAEF9610BC4F9AE02.roa (hash: D8dAG/9CmCMBEAtiY945ZqCN3MyX7EsagCsHQSrxDDU=) 5: 7474F998377111EE8AFEB74DC4F9AE02.roa (hash: uxmO0Zu81b9ijLgJWFAnqvmhDLc0ZfCAbuCH6EbXLi0=) 6: B0562E7AEC6E11EEB7FC060BC4F9AE02.roa (hash: SpJD8GcSBoUz5MPi6PJr9VjMBRC58LFgHcmGttoe0yo=) 7: D2093EF4EC6E11EEAEF9610BC4F9AE02.roa (hash: G4Dla87V8rtQVoFrowa7K0BJ1dHwJVBSq0/2lBCHVpo=) 8: E9874B2A16D011EF90793868C4F9AE02.roa (hash: ViBEiXsjPtwDWgjWAoRfyKQaAhEvEFxJcWrERgHGyz4=) 9: AFDF1A1AEC6E11EEB7FC060BC4F9AE02.roa (hash: sVe/dlsdpYGwjAAFXOmmuTaA1ya2H4hHFG6dxtS3qXc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A7B94/CC741BB6377011EE8DC8BB34C4F9AE02/MSb07wXjrnWgkUS2Z9OTR9TaqJA.crl rsync://rpki.apnic.net/member_repository/A91A7B94/CC741BB6377011EE8DC8BB34C4F9AE02/MSb07wXjrnWgkUS2Z9OTR9TaqJA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MSb07wXjrnWgkUS2Z9OTR9TaqJA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 03:48:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 361 (0x169) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A7B94, serialNumber=3126F4EF05E3AE75A09144B667D39347D4DAA890 Validity Not Before: May 31 03:48:55 2025 GMT Not After : Jun 7 03:48:55 2025 GMT Subject: CN=683a7c27-fb58 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:f2:5e:ee:35:eb:aa:5b:65:ca:0d:88:4d:84: 1b:8a:48:b1:6b:40:4c:48:e1:44:ec:93:c1:2f:2d: 25:e9:34:3e:76:c8:59:61:0c:c4:98:ff:8e:1f:51: 6f:a4:84:ad:11:cc:20:93:f2:ae:fe:83:2c:6d:f2: 9c:6f:50:88:04:01:13:30:86:63:c0:24:e9:b8:ce: 96:93:e1:a7:ed:b1:7a:9c:cd:7a:50:0b:14:e0:39: 36:95:00:19:ee:5c:61:5f:4c:21:6a:a0:39:36:0a: fd:cd:ea:78:24:ed:a6:8e:de:75:7a:cb:0f:c0:23: ac:e1:9d:b7:fa:12:a1:9e:24:2e:81:1d:ef:f3:12: 37:1a:3a:2f:89:1c:0f:82:30:d5:bd:40:21:84:d6: 8d:d4:67:1b:f6:52:09:59:fa:e1:3f:2d:9c:26:0d: 00:c1:08:fb:26:aa:56:f7:cc:a2:8c:07:c1:62:f8: f2:84:fb:81:6f:8f:96:89:8c:b4:55:44:28:2e:04: f0:7f:15:a6:f6:a0:e3:24:11:e3:73:ef:19:c5:d7: 58:07:93:eb:f7:b5:c5:2f:25:b5:d4:ec:e1:3d:d6: 00:7d:45:9e:9d:76:d1:18:00:b4:68:89:b1:4c:3f: db:cc:60:ba:ed:8e:60:8b:54:ce:50:5f:03:e1:79: 00:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 38:33:F3:E4:EA:3A:69:C9:40:53:F4:C3:9B:B9:90:70:25:F9:A0:88 X509v3 Authority Key Identifier: keyid:31:26:F4:EF:05:E3:AE:75:A0:91:44:B6:67:D3:93:47:D4:DA:A8:90 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A7B94/CC741BB6377011EE8DC8BB34C4F9AE02/MSb07wXjrnWgkUS2Z9OTR9TaqJA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MSb07wXjrnWgkUS2Z9OTR9TaqJA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A7B94/CC741BB6377011EE8DC8BB34C4F9AE02/MSb07wXjrnWgkUS2Z9OTR9TaqJA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0b:0c:9d:ff:68:b6:1e:ce:7e:72:cb:53:a4:df:41:1b:51:dc: 1b:d5:ae:44:69:49:2b:22:ec:73:61:91:f5:2b:cf:15:1d:a6: 65:67:3d:91:39:19:e2:48:e4:0e:3b:ed:32:91:41:c6:be:a2: 52:e1:fd:f9:57:68:59:6e:86:19:05:ff:46:44:65:ad:84:b4: 7c:5b:cf:85:8d:7c:9b:2d:45:7a:ae:59:6f:b5:f9:74:96:82: 65:fc:12:92:c2:36:6b:f2:fe:46:47:76:22:e7:6f:89:15:ff: 2e:7b:63:44:06:c9:5d:62:87:37:ec:3b:d2:1d:29:d3:34:2c: 16:7c:3e:41:1c:be:ae:41:c4:64:ae:fc:00:06:19:6e:45:1e: 02:ab:81:55:45:06:c1:0a:4a:42:94:4f:36:fe:5c:9f:9b:bf: 8f:77:97:00:50:48:8a:6f:3d:77:7d:24:8d:9d:3a:ad:bc:11: 55:69:e5:9e:f7:b2:d9:7b:a5:31:81:9a:80:a7:15:08:45:95: af:8a:88:56:f3:f9:ad:6f:17:6b:97:3d:ad:7b:b2:03:7d:46: 35:73:f8:b9:87:44:fa:05:da:21:6b:d6:ec:c2:f1:3c:3a:24: e7:e5:72:1b:36:5b:93:35:2a:b4:70:8b:8a:52:83:d7:7a:e9: 43:7a:17:aa -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAWkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTdCOTQxMTAvBgNVBAUTKDMxMjZGNEVGMDVFM0FFNzVBMDkxNDRCNjY3RDM5MzQ3 RDREQUE4OTAwHhcNMjUwNTMxMDM0ODU1WhcNMjUwNjA3MDM0ODU1WjAYMRYwFAYD VQQDEw02ODNhN2MyNy1mYjU4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArfJe7jXrqltlyg2ITYQbikixa0BMSOFE7JPBLy0l6TQ+dshZYQzEmP+OH1Fv pIStEcwgk/Ku/oMsbfKcb1CIBAETMIZjwCTpuM6Wk+Gn7bF6nM16UAsU4Dk2lQAZ 7lxhX0whaqA5Ngr9zep4JO2mjt51essPwCOs4Z23+hKhniQugR3v8xI3GjoviRwP gjDVvUAhhNaN1Gcb9lIJWfrhPy2cJg0AwQj7JqpW98yijAfBYvjyhPuBb4+WiYy0 VUQoLgTwfxWm9qDjJBHjc+8ZxddYB5Pr97XFLyW11OzhPdYAfUWenXbRGAC0aImx TD/bzGC67Y5gi1TOUF8D4XkA0wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDgz8+Tq OmnJQFP0w5u5kHAl+aCIMB8GA1UdIwQYMBaAFDEm9O8F4651oJFEtmfTk0fU2qiQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBN0I5NC9DQzc0MUJCNjM3 NzAxMUVFOERDOEJCMzRDNEY5QUUwMi9NU2IwN3dYanJuV2drVVMyWjlPVFI5VGFx SkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL01TYjA3d1hqcm5XZ2tVUzJaOU9UUjlUYXFKQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB N0I5NC9DQzc0MUJCNjM3NzAxMUVFOERDOEJCMzRDNEY5QUUwMi9NU2IwN3dYanJu V2drVVMyWjlPVFI5VGFxSkEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQALDJ3/aLYezn5yy1Ok30EbUdwb1a5EaUkrIuxzYZH1K88VHaZlZz2R ORniSOQOO+0ykUHGvqJS4f35V2hZboYZBf9GRGWthLR8W8+FjXybLUV6rllvtfl0 loJl/BKSwjZr8v5GR3Yi52+JFf8ue2NEBsldYoc37DvSHSnTNCwWfD5BHL6uQcRk rvwABhluRR4Cq4FVRQbBCkpClE82/lyfm7+Pd5cAUEiKbz13fSSNnTqtvBFVaeWe 97LZe6UxgZqApxUIRZWviohW8/mtbxdrlz2te7IDfUY1c/i5h0T6Bdoha9bswvE8 OiTn5XIbNluTNSq0cIuKUoPXeulDeheq -----END CERTIFICATE-----Generated at Sat May 31 17:18:51 2025 by rpki-client