$ rpki-client -vvf rpki.apnic.net/member_repository/A91B5AD4/11226B7E8F8A11EA9828C65DC4F9AE02/M1KIaoOU86z15jXjxHVvTQpuRek.mft File: M1KIaoOU86z15jXjxHVvTQpuRek.mft (raw, json) Hash identifier: EM1wohMtEDg8O0lKi99YnbSMWTT6ldNtJ3WbM0Z1/jU= Subject key identifier: E1:18:4A:E2:5B:E1:0E:FE:5A:38:EA:BB:72:A9:C9:10:E1:28:07:D7 Authority key identifier: 33:52:88:6A:83:94:F3:AC:F5:E6:35:E3:C4:75:6F:4D:0A:6E:45:E9 Certificate issuer: /CN=A91B5AD4/serialNumber=3352886A8394F3ACF5E635E3C4756F4D0A6E45E9 Certificate serial: 098D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/M1KIaoOU86z15jXjxHVvTQpuRek.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B5AD4/11226B7E8F8A11EA9828C65DC4F9AE02/M1KIaoOU86z15jXjxHVvTQpuRek.mft Manifest number: 0984 Signing time: Fri 30 May 2025 19:47:02 +0000 Manifest this update: Fri 30 May 2025 19:47:01 +0000 Manifest next update: Fri 06 Jun 2025 19:47:01 +0000 Files and hashes: 1: M1KIaoOU86z15jXjxHVvTQpuRek.crl (hash: Uw+w+ftarXCL/2/K8ro4GqkdGO7HqX8PupyseIu0e7Y=) 2: 67A60C64441E11EB861F005AC4F9AE02.roa (hash: JcavRD/UkGMKefo40xrhCPb2PgEwMsvZQrFanuv4C9k=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B5AD4/11226B7E8F8A11EA9828C65DC4F9AE02/M1KIaoOU86z15jXjxHVvTQpuRek.crl rsync://rpki.apnic.net/member_repository/A91B5AD4/11226B7E8F8A11EA9828C65DC4F9AE02/M1KIaoOU86z15jXjxHVvTQpuRek.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/M1KIaoOU86z15jXjxHVvTQpuRek.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 19:47:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2445 (0x98d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B5AD4, serialNumber=3352886A8394F3ACF5E635E3C4756F4D0A6E45E9 Validity Not Before: May 30 19:47:01 2025 GMT Not After : Jun 6 19:47:01 2025 GMT Subject: CN=683a0b35-d447 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:71:db:83:34:52:42:9c:a8:95:09:d7:70:96: e0:13:05:a9:0f:1c:7e:05:f6:25:80:36:bc:92:77: f2:c7:3c:cf:cc:bc:47:fc:19:47:0f:35:15:cb:be: 59:41:88:ad:28:4e:4d:6f:46:be:0a:70:1e:e0:69: 05:1a:a0:1f:62:56:9e:11:aa:23:bc:17:4b:26:34: 5a:62:e3:47:7b:a4:7b:6f:cd:42:a3:52:84:0f:7b: 9e:5f:72:93:48:09:3a:ab:ba:33:f9:ec:3d:16:15: 2e:dd:cd:b7:38:ea:02:0f:32:ed:25:e1:7f:3d:b9: 5c:fe:96:c5:9c:35:bd:d6:c7:5c:1e:ef:ce:e2:a3: 40:3c:c8:c5:12:4e:dd:33:7b:9c:f1:99:ab:a3:4e: e3:ac:a6:4b:52:05:16:22:49:af:ae:ad:12:5f:b8: da:17:f0:21:26:e3:c4:27:24:94:45:d3:e6:55:26: 32:f2:42:01:79:d5:1e:83:bc:c8:07:5b:b8:42:80: 19:9e:67:21:46:dc:30:59:b2:33:92:42:3b:32:b5: 05:08:c0:8d:05:0a:fa:de:ea:8f:7f:9e:ee:1c:8f: 00:f7:33:ce:fa:3d:ec:03:42:b4:5e:f7:78:13:79: 90:5b:84:52:a5:2d:16:c7:05:94:d8:a4:fe:4b:59: 91:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E1:18:4A:E2:5B:E1:0E:FE:5A:38:EA:BB:72:A9:C9:10:E1:28:07:D7 X509v3 Authority Key Identifier: keyid:33:52:88:6A:83:94:F3:AC:F5:E6:35:E3:C4:75:6F:4D:0A:6E:45:E9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B5AD4/11226B7E8F8A11EA9828C65DC4F9AE02/M1KIaoOU86z15jXjxHVvTQpuRek.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/M1KIaoOU86z15jXjxHVvTQpuRek.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B5AD4/11226B7E8F8A11EA9828C65DC4F9AE02/M1KIaoOU86z15jXjxHVvTQpuRek.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 47:89:68:23:c5:09:03:28:db:c8:3a:92:e8:50:ff:94:93:77: 26:fb:b3:46:54:3b:fd:4a:4d:a0:08:ea:a7:84:ef:3b:73:db: 25:83:dd:01:b5:e9:5e:6e:ae:c2:24:76:78:71:ac:15:71:8b: 07:80:03:61:25:67:62:1e:83:26:be:ba:52:03:b5:7f:9a:88: 50:df:77:26:9c:4e:b3:27:76:f5:3e:54:87:58:03:30:a4:06: 41:c1:87:98:76:70:79:1b:fd:a7:ed:03:26:18:80:84:01:88: 70:1a:79:af:04:c2:32:6d:7d:80:37:9e:07:85:86:29:2e:c2: ce:ff:5d:3f:e7:1b:92:1e:83:10:ce:31:80:59:53:6d:73:46: 17:41:c5:ad:3a:2c:eb:e2:20:10:f3:61:75:13:0e:a3:1b:91: c4:3e:9d:73:11:ca:97:a7:4e:4d:f1:d0:b4:d9:b5:c0:b8:d3: 68:fb:97:3c:bd:30:5a:b0:52:a3:d2:45:f5:c2:27:89:07:4b: b7:90:52:bb:77:c4:ce:45:e9:16:c0:60:f6:15:0e:23:53:2c: 93:91:b8:70:b9:60:37:fa:33:1b:da:92:b7:a3:f7:bd:85:49: ba:49:15:94:cb:c7:7d:ea:75:a5:b7:02:e9:fe:7b:08:fd:93: e9:27:14:15 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCY0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjVBRDQxMTAvBgNVBAUTKDMzNTI4ODZBODM5NEYzQUNGNUU2MzVFM0M0NzU2RjRE MEE2RTQ1RTkwHhcNMjUwNTMwMTk0NzAxWhcNMjUwNjA2MTk0NzAxWjAYMRYwFAYD VQQDEw02ODNhMGIzNS1kNDQ3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArHHbgzRSQpyolQnXcJbgEwWpDxx+BfYlgDa8knfyxzzPzLxH/BlHDzUVy75Z QYitKE5Nb0a+CnAe4GkFGqAfYlaeEaojvBdLJjRaYuNHe6R7b81Co1KED3ueX3KT SAk6q7oz+ew9FhUu3c23OOoCDzLtJeF/Pblc/pbFnDW91sdcHu/O4qNAPMjFEk7d M3uc8Zmro07jrKZLUgUWIkmvrq0SX7jaF/AhJuPEJySURdPmVSYy8kIBedUeg7zI B1u4QoAZnmchRtwwWbIzkkI7MrUFCMCNBQr63uqPf57uHI8A9zPO+j3sA0K0Xvd4 E3mQW4RSpS0WxwWU2KT+S1mRNwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOEYSuJb 4Q7+Wjjqu3KpyRDhKAfXMB8GA1UdIwQYMBaAFDNSiGqDlPOs9eY148R1b00KbkXp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNUFENC8xMTIyNkI3RThG OEExMUVBOTgyOEM2NURDNEY5QUUwMi9NMUtJYW9PVTg2ejE1alhqeEhWdlRRcHVS ZWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL00xS0lhb09VODZ6MTVqWGp4SFZ2VFFwdVJlay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NUFENC8xMTIyNkI3RThGOEExMUVBOTgyOEM2NURDNEY5QUUwMi9NMUtJYW9PVTg2 ejE1alhqeEhWdlRRcHVSZWsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBHiWgjxQkDKNvIOpLoUP+Uk3cm+7NGVDv9Sk2gCOqnhO87c9slg90B telebq7CJHZ4cawVcYsHgANhJWdiHoMmvrpSA7V/mohQ33cmnE6zJ3b1PlSHWAMw pAZBwYeYdnB5G/2n7QMmGICEAYhwGnmvBMIybX2AN54HhYYpLsLO/10/5xuSHoMQ zjGAWVNtc0YXQcWtOizr4iAQ82F1Ew6jG5HEPp1zEcqXp05N8dC02bXAuNNo+5c8 vTBasFKj0kX1wieJB0u3kFK7d8TORekWwGD2FQ4jUyyTkbhwuWA3+jMb2pK3o/e9 hUm6SRWUy8d96nWltwLp/nsI/ZPpJxQV -----END CERTIFICATE-----Generated at Sat May 31 16:43:54 2025 by rpki-client