$ rpki-client -vvf rpki.apnic.net/member_repository/A91A9083/C86CD806D1B011EF8833C933C4F9AE02/aU9WG2PafMV3kxY21HiK0rC0riA.mft File: aU9WG2PafMV3kxY21HiK0rC0riA.mft (raw, json) Hash identifier: ACgkX+CV0ou0wRkMHX2OG7PvcJ4Mk3D4kAXj5EiQ27w= Subject key identifier: F5:31:3C:B7:7D:3B:3D:65:27:4F:53:FF:98:81:6D:A3:D0:95:2E:E0 Authority key identifier: 69:4F:56:1B:63:DA:7C:C5:77:93:16:36:D4:78:8A:D2:B0:B4:AE:20 Certificate issuer: /CN=A91A9083/serialNumber=694F561B63DA7CC577931636D4788AD2B0B4AE20 Certificate serial: 40 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aU9WG2PafMV3kxY21HiK0rC0riA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A9083/C86CD806D1B011EF8833C933C4F9AE02/aU9WG2PafMV3kxY21HiK0rC0riA.mft Manifest number: 3F Signing time: Fri 09 May 2025 06:32:14 +0000 Manifest this update: Fri 09 May 2025 06:32:13 +0000 Manifest next update: Fri 16 May 2025 06:32:13 +0000 Files and hashes: 1: aU9WG2PafMV3kxY21HiK0rC0riA.crl (hash: SjewjDkLb4dgt8M8ET8YDKolYbeHotZdbp8AZCSgb0o=) 2: 8DDA6872D25311EF8EBE2767C4F9AE02.roa (hash: PORQCBDGSlwilkpipBB8A0mqgYc20HJgljabtkGa8CI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A9083/C86CD806D1B011EF8833C933C4F9AE02/aU9WG2PafMV3kxY21HiK0rC0riA.crl rsync://rpki.apnic.net/member_repository/A91A9083/C86CD806D1B011EF8833C933C4F9AE02/aU9WG2PafMV3kxY21HiK0rC0riA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aU9WG2PafMV3kxY21HiK0rC0riA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 16 May 2025 06:32:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 64 (0x40) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A9083, serialNumber=694F561B63DA7CC577931636D4788AD2B0B4AE20 Validity Not Before: May 9 06:32:13 2025 GMT Not After : May 16 06:32:13 2025 GMT Subject: CN=681da16e-df5b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:94:26:17:db:c5:6c:1a:7a:bd:62:70:d6:ad: ab:d8:3c:ab:86:5b:be:92:eb:d3:26:30:d3:8d:dd: 60:0d:23:18:2a:0e:0b:b9:ad:71:01:6d:b9:22:6e: e6:42:b3:ea:d5:37:62:63:17:a1:43:9c:20:af:77: 2e:cc:13:a6:5c:32:de:c2:44:49:ae:60:5d:36:cd: ec:93:b8:03:1a:31:8c:64:df:b9:c1:b2:c9:8e:5a: da:89:c6:a6:8f:e4:93:a7:ab:53:0d:f1:3c:f5:70: 55:1e:c5:5f:40:15:e9:99:f6:22:cd:17:b4:41:ee: 6e:54:3c:5f:31:3f:cd:1e:59:06:aa:0f:f3:35:a2: 5b:c7:a9:0c:ab:af:09:e1:f7:93:6d:a7:4c:23:4f: 46:05:ff:76:d2:c2:3f:ec:5b:a5:53:b5:aa:76:56: bd:8e:1f:83:44:81:ac:bd:b7:5b:cf:75:73:30:33: 95:80:91:a1:52:b0:c2:3b:2e:69:bf:76:5f:bb:ca: 3b:c7:a8:32:fe:7a:a1:a5:ab:83:ec:aa:38:c7:77: 3a:52:82:43:10:8f:68:f2:c0:74:64:93:7d:1c:30: c3:9e:0a:b6:fe:18:4d:54:84:bd:c2:03:84:1c:03: 1d:c1:9b:9c:fd:a9:25:93:7a:0c:6f:78:99:c0:ed: e8:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F5:31:3C:B7:7D:3B:3D:65:27:4F:53:FF:98:81:6D:A3:D0:95:2E:E0 X509v3 Authority Key Identifier: keyid:69:4F:56:1B:63:DA:7C:C5:77:93:16:36:D4:78:8A:D2:B0:B4:AE:20 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A9083/C86CD806D1B011EF8833C933C4F9AE02/aU9WG2PafMV3kxY21HiK0rC0riA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aU9WG2PafMV3kxY21HiK0rC0riA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A9083/C86CD806D1B011EF8833C933C4F9AE02/aU9WG2PafMV3kxY21HiK0rC0riA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 10:91:cd:4f:9a:83:6a:64:fc:19:98:8d:09:72:f7:59:4c:6a: 46:ca:09:f3:d9:03:43:3f:e2:a3:5e:be:03:dd:bb:70:5d:b7: fb:d5:e1:fe:75:9a:74:4a:51:48:49:36:aa:3d:21:e2:22:d1: 44:1f:49:1f:e7:bb:95:a8:c5:79:4c:7a:56:66:f6:30:d8:8b: 3d:e2:01:77:c5:67:82:37:67:fb:6c:0b:1b:8a:7b:a9:ec:51: da:a3:2f:c5:a5:3e:69:f2:f0:2d:cd:6f:51:43:d2:d9:d3:e3: 98:9a:45:13:3b:38:49:46:a7:f4:72:ce:f4:d8:3c:fc:80:3a: 34:d9:62:5e:b4:1f:f4:5b:6c:34:13:9c:b4:87:f5:e4:76:84: c7:9a:86:47:58:46:71:4a:6d:b4:b4:35:1a:6b:a8:78:a0:d3: 89:7c:f2:ae:8c:db:33:4f:b0:12:f3:ce:13:b1:3e:86:3e:02: 0e:31:47:db:5a:e7:18:2d:d8:bb:f1:ec:e8:89:3e:63:0a:c9: dc:49:64:e7:8e:83:7a:8d:22:c6:6d:ee:46:e7:c6:e9:e1:00: 4f:95:7c:db:26:95:7e:6c:da:69:93:e3:e5:49:b6:11:27:71: 44:ec:35:e8:7c:73:c2:f6:60:85:58:cf:b0:da:13:a8:af:1d: f4:74:33:a9 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBQDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFB OTA4MzExMC8GA1UEBRMoNjk0RjU2MUI2M0RBN0NDNTc3OTMxNjM2RDQ3ODhBRDJC MEI0QUUyMDAeFw0yNTA1MDkwNjMyMTNaFw0yNTA1MTYwNjMyMTNaMBgxFjAUBgNV BAMTDTY4MWRhMTZlLWRmNWIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCrlCYX28VsGnq9YnDWravYPKuGW76S69MmMNON3WANIxgqDgu5rXEBbbkibuZC s+rVN2JjF6FDnCCvdy7ME6ZcMt7CREmuYF02zeyTuAMaMYxk37nBssmOWtqJxqaP 5JOnq1MN8Tz1cFUexV9AFemZ9iLNF7RB7m5UPF8xP80eWQaqD/M1olvHqQyrrwnh 95Ntp0wjT0YF/3bSwj/sW6VTtap2Vr2OH4NEgay9t1vPdXMwM5WAkaFSsMI7Lmm/ dl+7yjvHqDL+eqGlq4PsqjjHdzpSgkMQj2jywHRkk30cMMOeCrb+GE1UhL3CA4Qc Ax3Bm5z9qSWTegxveJnA7ei5AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU9TE8t307 PWUnT1P/mIFto9CVLuAwHwYDVR0jBBgwFoAUaU9WG2PafMV3kxY21HiK0rC0riAw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUE5MDgzL0M4NkNEODA2RDFC MDExRUY4ODMzQzkzM0M0RjlBRTAyL2FVOVdHMlBhZk1WM2t4WTIxSGlLMHJDMHJp QS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvYVU5V0cyUGFmTVYza3hZMjFIaUswckMwcmlBLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUE5 MDgzL0M4NkNEODA2RDFCMDExRUY4ODMzQzkzM0M0RjlBRTAyL2FVOVdHMlBhZk1W M2t4WTIxSGlLMHJDMHJpQS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBABCRzU+ag2pk/BmYjQly91lMakbKCfPZA0M/4qNevgPdu3Bdt/vV4f51 mnRKUUhJNqo9IeIi0UQfSR/nu5WoxXlMelZm9jDYiz3iAXfFZ4I3Z/tsCxuKe6ns UdqjL8WlPmny8C3Nb1FD0tnT45iaRRM7OElGp/RyzvTYPPyAOjTZYl60H/RbbDQT nLSH9eR2hMeahkdYRnFKbbS0NRprqHig04l88q6M2zNPsBLzzhOxPoY+Ag4xR9ta 5xgt2Lvx7OiJPmMKydxJZOeOg3qNIsZt7kbnxunhAE+VfNsmlX5s2mmT4+VJthEn cUTsNeh8c8L2YIVYz7DaE6ivHfR0M6k= -----END CERTIFICATE-----Generated at Fri May 9 17:22:04 2025 by rpki-client