$ rpki-client -vvf rpki.apnic.net/member_repository/A91B5CC0/CFA79F1A503F11ED81D0756BC4F9AE02/_i41K0L3TxDVdoNTA6LpeOHEN7Y.mft File: _i41K0L3TxDVdoNTA6LpeOHEN7Y.mft (raw, json) Hash identifier: MtS/SuMXbaU9fJt7uDmzIx3LJkUnH3n7Lj9RjrO+xTM= Subject key identifier: 4D:04:F9:70:C4:FB:01:14:60:A7:B7:3F:E9:2B:31:D4:38:C2:4A:C1 Authority key identifier: FE:2E:35:2B:42:F7:4F:10:D5:76:83:53:03:A2:E9:78:E1:C4:37:B6 Certificate issuer: /CN=A91B5CC0/serialNumber=FE2E352B42F74F10D576835303A2E978E1C437B6 Certificate serial: 01EC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_i41K0L3TxDVdoNTA6LpeOHEN7Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B5CC0/CFA79F1A503F11ED81D0756BC4F9AE02/_i41K0L3TxDVdoNTA6LpeOHEN7Y.mft Manifest number: 01E9 Signing time: Sat 31 May 2025 02:19:53 +0000 Manifest this update: Sat 31 May 2025 02:19:52 +0000 Manifest next update: Sat 07 Jun 2025 02:19:52 +0000 Files and hashes: 1: _i41K0L3TxDVdoNTA6LpeOHEN7Y.crl (hash: v6//Uyql8/IV7393kXYs0M1c25EF3NBtCUPsDQpf2z4=) 2: FA13BAAC504611ED9AE40711C4F9AE02.roa (hash: ezVuFYLFE5nPFWmkFpb3o3Zc1r5CWJVIlBRAQm/fLig=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B5CC0/CFA79F1A503F11ED81D0756BC4F9AE02/_i41K0L3TxDVdoNTA6LpeOHEN7Y.crl rsync://rpki.apnic.net/member_repository/A91B5CC0/CFA79F1A503F11ED81D0756BC4F9AE02/_i41K0L3TxDVdoNTA6LpeOHEN7Y.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_i41K0L3TxDVdoNTA6LpeOHEN7Y.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 02:19:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 492 (0x1ec) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B5CC0, serialNumber=FE2E352B42F74F10D576835303A2E978E1C437B6 Validity Not Before: May 31 02:19:52 2025 GMT Not After : Jun 7 02:19:52 2025 GMT Subject: CN=683a6748-a01a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:3e:ec:c5:6a:71:16:03:54:e9:87:a3:e1:bb: a0:60:fa:3e:bb:48:ec:84:ff:58:1e:4d:7b:fd:54: 03:34:70:e9:9b:56:ad:0b:6d:11:6b:d5:08:89:09: dd:c4:bd:18:f6:5b:6a:39:b7:9e:68:b8:b1:d3:08: 0f:63:54:1c:e1:1a:82:92:71:c1:9a:5d:2a:cd:16: 38:cd:aa:52:cd:1b:61:9c:c5:e7:4a:dc:04:28:4f: a3:f5:6e:f7:c4:c1:48:f7:2f:fc:16:50:aa:04:91: 8f:45:21:b3:ed:0f:c4:52:48:13:50:d2:90:3f:9f: 7d:66:38:d8:03:99:bb:4b:ac:e9:44:d6:fd:05:67: 4c:09:2d:ae:fa:92:3f:be:df:83:83:c9:15:c7:c2: d8:79:70:5f:dd:75:8a:c6:f4:59:27:59:5a:44:23: 51:48:b5:02:b0:c0:56:19:fb:ae:b1:f3:ec:e2:46: a4:8f:3f:9c:19:41:8e:2f:76:b1:a9:b7:ea:c7:58: 1e:d7:39:5c:f8:20:68:4c:17:11:f7:3e:ba:54:53: b0:d2:01:9d:5f:9a:01:cd:08:dd:73:02:58:d4:e8: 3b:78:f4:84:dc:06:77:3a:69:61:28:1c:49:cf:05: 2d:60:d6:60:02:e5:12:5f:02:a5:b9:17:b3:39:4a: b9:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4D:04:F9:70:C4:FB:01:14:60:A7:B7:3F:E9:2B:31:D4:38:C2:4A:C1 X509v3 Authority Key Identifier: keyid:FE:2E:35:2B:42:F7:4F:10:D5:76:83:53:03:A2:E9:78:E1:C4:37:B6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B5CC0/CFA79F1A503F11ED81D0756BC4F9AE02/_i41K0L3TxDVdoNTA6LpeOHEN7Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_i41K0L3TxDVdoNTA6LpeOHEN7Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B5CC0/CFA79F1A503F11ED81D0756BC4F9AE02/_i41K0L3TxDVdoNTA6LpeOHEN7Y.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a0:ea:db:c9:e8:a0:07:60:67:61:fd:d4:ba:13:8b:f4:9e:e6: 3e:a2:21:7b:68:d9:c8:53:7e:2e:6f:df:cc:6f:7f:96:16:13: 46:ab:9e:72:01:64:63:ca:6d:81:36:3a:07:fd:78:da:db:fb: 69:da:9d:ef:85:fc:39:c9:85:b9:d1:ce:34:be:0d:85:18:3a: 8a:85:b3:46:8e:64:ee:4c:e0:c7:fa:9f:37:54:54:0d:b1:90: 13:d1:a6:8e:33:77:a0:d0:4d:b3:bc:2d:ad:b4:b8:ac:7f:93: e1:e6:c1:cd:8b:96:58:38:0f:83:95:8c:ca:7d:ad:6c:c0:ef: 44:7d:55:49:e9:92:00:78:4e:5b:b4:a6:91:65:91:15:b1:c9: f9:84:6c:61:a3:fd:2a:90:f5:6d:12:af:a4:ef:d2:8b:be:ab: 04:5d:5d:c7:cd:c8:7e:64:a6:c8:3a:f0:02:78:74:3f:88:2c: 39:10:47:76:ff:2e:e7:9f:c7:42:a5:ad:15:e8:a5:ca:e7:b3: 63:b8:a5:9e:5b:76:33:56:17:bd:fd:3f:10:c1:3a:e5:b8:8a: ae:77:37:18:e2:dd:f6:7a:f5:c9:c2:f4:d4:71:7e:cf:b4:7a: 88:3c:ae:cf:0a:57:60:4b:93:33:c6:eb:e9:28:4f:d8:cc:a0: 28:b4:93:ef -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAewwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjVDQzAxMTAvBgNVBAUTKEZFMkUzNTJCNDJGNzRGMTBENTc2ODM1MzAzQTJFOTc4 RTFDNDM3QjYwHhcNMjUwNTMxMDIxOTUyWhcNMjUwNjA3MDIxOTUyWjAYMRYwFAYD VQQDEw02ODNhNjc0OC1hMDFhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsz7sxWpxFgNU6Yej4bugYPo+u0jshP9YHk17/VQDNHDpm1atC20Ra9UIiQnd xL0Y9ltqObeeaLix0wgPY1Qc4RqCknHBml0qzRY4zapSzRthnMXnStwEKE+j9W73 xMFI9y/8FlCqBJGPRSGz7Q/EUkgTUNKQP599ZjjYA5m7S6zpRNb9BWdMCS2u+pI/ vt+Dg8kVx8LYeXBf3XWKxvRZJ1laRCNRSLUCsMBWGfuusfPs4kakjz+cGUGOL3ax qbfqx1ge1zlc+CBoTBcR9z66VFOw0gGdX5oBzQjdcwJY1Og7ePSE3AZ3OmlhKBxJ zwUtYNZgAuUSXwKluRezOUq5WwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFE0E+XDE +wEUYKe3P+krMdQ4wkrBMB8GA1UdIwQYMBaAFP4uNStC908Q1XaDUwOi6XjhxDe2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNUNDMC9DRkE3OUYxQTUw M0YxMUVEODFEMDc1NkJDNEY5QUUwMi9faTQxSzBMM1R4RFZkb05UQTZMcGVPSEVO N1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL19pNDFLMEwzVHhEVmRvTlRBNkxwZU9IRU43WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NUNDMC9DRkE3OUYxQTUwM0YxMUVEODFEMDc1NkJDNEY5QUUwMi9faTQxSzBMM1R4 RFZkb05UQTZMcGVPSEVON1kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCg6tvJ6KAHYGdh/dS6E4v0nuY+oiF7aNnIU34ub9/Mb3+WFhNGq55y AWRjym2BNjoH/Xja2/tp2p3vhfw5yYW50c40vg2FGDqKhbNGjmTuTODH+p83VFQN sZAT0aaOM3eg0E2zvC2ttLisf5Ph5sHNi5ZYOA+DlYzKfa1swO9EfVVJ6ZIAeE5b tKaRZZEVscn5hGxho/0qkPVtEq+k79KLvqsEXV3Hzch+ZKbIOvACeHQ/iCw5EEd2 /y7nn8dCpa0V6KXK57NjuKWeW3YzVhe9/T8QwTrluIqudzcY4t32evXJwvTUcX7P tHqIPK7PCldgS5MzxuvpKE/YzKAotJPv -----END CERTIFICATE-----Generated at Sat May 31 16:38:48 2025 by rpki-client