$ rpki-client -vvf rpki.apnic.net/member_repository/A91CF77D/11E259D0D22D11EA8AE73D27C4F9AE02/mD14MALFTaj4puKVg4ucrwE2Q1g.mft File: mD14MALFTaj4puKVg4ucrwE2Q1g.mft (raw, json) Hash identifier: Ju6OGvg+bDGmaOZZp5SupYSQEwE4VAyCuSNe6qVu2OI= Subject key identifier: C6:86:FD:CB:1C:44:DE:C9:36:B0:EA:6A:6F:32:72:55:80:11:3A:25 Authority key identifier: 98:3D:78:30:02:C5:4D:A8:F8:A6:E2:95:83:8B:9C:AF:01:36:43:58 Certificate issuer: /CN=A91CF77D/serialNumber=983D783002C54DA8F8A6E295838B9CAF01364358 Certificate serial: 0830 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mD14MALFTaj4puKVg4ucrwE2Q1g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CF77D/11E259D0D22D11EA8AE73D27C4F9AE02/mD14MALFTaj4puKVg4ucrwE2Q1g.mft Manifest number: 0828 Signing time: Fri 30 May 2025 21:03:14 +0000 Manifest this update: Fri 30 May 2025 21:03:14 +0000 Manifest next update: Fri 06 Jun 2025 21:03:14 +0000 Files and hashes: 1: mD14MALFTaj4puKVg4ucrwE2Q1g.crl (hash: m3KJ+1O0zMBFdXELs3BnvZ/ua2orKxPZqNl/rvtPlZQ=) 2: D24575B2D22E11EA9D4DDE29C4F9AE02.roa (hash: OISPqX+sjE+FviBwbW316CZ6fba2RRqY67rA1yB66hs=) 3: 8FADE73CA49B11EEB19E774BC4F9AE02.roa (hash: 7eZAVrRcBGBKFlQHZK9vBEWzwyr7ij0OTTCgEmnjTCo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CF77D/11E259D0D22D11EA8AE73D27C4F9AE02/mD14MALFTaj4puKVg4ucrwE2Q1g.crl rsync://rpki.apnic.net/member_repository/A91CF77D/11E259D0D22D11EA8AE73D27C4F9AE02/mD14MALFTaj4puKVg4ucrwE2Q1g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mD14MALFTaj4puKVg4ucrwE2Q1g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 21:03:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2096 (0x830) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CF77D, serialNumber=983D783002C54DA8F8A6E295838B9CAF01364358 Validity Not Before: May 30 21:03:14 2025 GMT Not After : Jun 6 21:03:14 2025 GMT Subject: CN=683a1d12-4417 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:a5:18:fd:2d:b8:bd:1c:9d:f6:f5:81:64:3f: 02:bb:48:b2:d8:4e:c2:91:3e:3e:30:d1:f6:07:ec: fa:01:75:08:b9:0e:5c:33:40:28:33:9f:d4:c0:be: fb:1b:f5:1f:f5:1f:b9:e2:9c:db:a4:97:44:55:bf: 6b:53:83:ff:b2:7d:5e:75:f7:d9:27:90:79:0e:8d: 10:5e:93:ea:16:2e:7e:51:cc:f5:ab:b5:da:82:8f: 19:9c:3d:2d:19:09:4d:16:df:ab:4a:15:8e:75:e2: 34:bf:20:b9:bf:36:49:40:04:1f:cf:a9:8a:a0:e4: 2e:e4:0a:a5:fe:3e:24:cb:20:bc:a2:53:3d:57:f2: 2f:c7:52:6f:e4:81:78:9e:1c:b7:61:9f:31:4a:79: 67:3b:1a:cb:e1:61:14:f4:29:09:d5:3c:e2:09:6b: 64:8c:e7:f2:7e:c7:f6:42:75:5d:a3:01:c4:8f:6a: 0b:15:0d:bb:fd:66:dd:89:f4:43:f9:da:23:8e:28: e6:9d:b0:50:8d:57:35:e2:d2:08:8b:e2:05:4e:55: 30:51:bc:b4:da:6d:90:3d:7a:23:8f:d4:f1:39:6d: 76:a3:38:08:48:b5:5c:4d:14:61:b9:eb:fa:09:34: 74:ef:8e:46:1d:fd:d7:88:1b:41:10:3a:51:8c:56: 51:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C6:86:FD:CB:1C:44:DE:C9:36:B0:EA:6A:6F:32:72:55:80:11:3A:25 X509v3 Authority Key Identifier: keyid:98:3D:78:30:02:C5:4D:A8:F8:A6:E2:95:83:8B:9C:AF:01:36:43:58 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CF77D/11E259D0D22D11EA8AE73D27C4F9AE02/mD14MALFTaj4puKVg4ucrwE2Q1g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mD14MALFTaj4puKVg4ucrwE2Q1g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CF77D/11E259D0D22D11EA8AE73D27C4F9AE02/mD14MALFTaj4puKVg4ucrwE2Q1g.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 42:d3:3a:35:91:79:f4:f7:7d:b9:de:e8:c4:33:06:25:8d:d1: dc:ed:26:cf:66:15:00:6a:f5:dd:cc:75:ce:63:8c:11:4b:d7: 30:7e:9e:5d:4d:a9:69:ff:10:e2:ee:7f:22:a3:ea:4c:53:68: 36:b0:09:e4:f6:d2:6a:a5:3c:8e:d7:46:d4:88:50:67:8b:de: 81:4a:65:1b:5d:76:7f:52:16:1d:84:79:07:da:13:0a:df:2b: d7:e7:49:f2:c5:8b:3a:c9:89:c3:ea:33:73:ba:de:72:ac:37: d4:2e:c4:01:9a:e3:70:ed:c7:e4:49:40:94:cb:82:ea:8c:23: 02:67:96:92:a4:a2:fd:f5:ad:f5:17:e6:e9:42:ed:ea:ac:63: 61:64:e3:95:ae:62:ca:8d:87:a5:74:e9:ae:b3:35:49:71:6c: 47:5a:67:6a:74:ef:e8:bd:59:64:fa:53:f6:bd:db:ae:9e:cb: c6:02:fb:e6:e9:3a:7d:76:1a:f6:fa:a1:37:fe:19:48:66:25: 18:5a:86:05:69:29:2f:83:2d:d6:19:31:b3:57:57:0f:ec:4d: d1:a8:d2:af:40:68:88:7d:58:b4:21:b8:62:00:24:29:31:62: e7:bb:49:02:f1:98:41:92:86:80:fe:7a:30:bf:98:5f:61:78: e9:ae:d7:8f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCDAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0Y3N0QxMTAvBgNVBAUTKDk4M0Q3ODMwMDJDNTREQThGOEE2RTI5NTgzOEI5Q0FG MDEzNjQzNTgwHhcNMjUwNTMwMjEwMzE0WhcNMjUwNjA2MjEwMzE0WjAYMRYwFAYD VQQDEw02ODNhMWQxMi00NDE3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs6UY/S24vRyd9vWBZD8Cu0iy2E7CkT4+MNH2B+z6AXUIuQ5cM0AoM5/UwL77 G/Uf9R+54pzbpJdEVb9rU4P/sn1edffZJ5B5Do0QXpPqFi5+Ucz1q7Xago8ZnD0t GQlNFt+rShWOdeI0vyC5vzZJQAQfz6mKoOQu5Aql/j4kyyC8olM9V/Ivx1Jv5IF4 nhy3YZ8xSnlnOxrL4WEU9CkJ1TziCWtkjOfyfsf2QnVdowHEj2oLFQ27/WbdifRD +dojjijmnbBQjVc14tIIi+IFTlUwUby02m2QPXojj9TxOW12ozgISLVcTRRhuev6 CTR0745GHf3XiBtBEDpRjFZRGQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMaG/csc RN7JNrDqam8yclWAETolMB8GA1UdIwQYMBaAFJg9eDACxU2o+KbilYOLnK8BNkNY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRjc3RC8xMUUyNTlEMEQy MkQxMUVBOEFFNzNEMjdDNEY5QUUwMi9tRDE0TUFMRlRhajRwdUtWZzR1Y3J3RTJR MWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL21EMTRNQUxGVGFqNHB1S1ZnNHVjcndFMlExZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD Rjc3RC8xMUUyNTlEMEQyMkQxMUVBOEFFNzNEMjdDNEY5QUUwMi9tRDE0TUFMRlRh ajRwdUtWZzR1Y3J3RTJRMWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBC0zo1kXn093253ujEMwYljdHc7SbPZhUAavXdzHXOY4wRS9cwfp5d Talp/xDi7n8io+pMU2g2sAnk9tJqpTyO10bUiFBni96BSmUbXXZ/UhYdhHkH2hMK 3yvX50nyxYs6yYnD6jNzut5yrDfULsQBmuNw7cfkSUCUy4LqjCMCZ5aSpKL99a31 F+bpQu3qrGNhZOOVrmLKjYeldOmuszVJcWxHWmdqdO/ovVlk+lP2vduunsvGAvvm 6Tp9dhr2+qE3/hlIZiUYWoYFaSkvgy3WGTGzV1cP7E3RqNKvQGiIfVi0IbhiACQp MWLnu0kC8ZhBkoaA/nowv5hfYXjprteP -----END CERTIFICATE-----Generated at Sat May 31 16:47:48 2025 by rpki-client