$ rpki-client -vvf rpki.apnic.net/member_repository/A91DD3FB/4212BC9E02BB11EBB3D4040BC4F9AE02/PR9_sUZBCjwzWzPEmCpzY4vlQJ4.mft File: PR9_sUZBCjwzWzPEmCpzY4vlQJ4.mft (raw, json) Hash identifier: uzP+ASo5mbASR1eMOTMi06/MJOTrdLiqkN754+l5qG8= Subject key identifier: E3:EC:D7:51:DB:66:05:D3:8E:D9:F2:2F:E4:F4:30:D9:ED:B2:74:21 Authority key identifier: 3D:1F:7F:B1:46:41:0A:3C:33:5B:33:C4:98:2A:73:63:8B:E5:40:9E Certificate issuer: /CN=A91DD3FB/serialNumber=3D1F7FB146410A3C335B33C4982A73638BE5409E Certificate serial: 07AD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PR9_sUZBCjwzWzPEmCpzY4vlQJ4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DD3FB/4212BC9E02BB11EBB3D4040BC4F9AE02/PR9_sUZBCjwzWzPEmCpzY4vlQJ4.mft Manifest number: 07A7 Signing time: Fri 30 May 2025 21:27:38 +0000 Manifest this update: Fri 30 May 2025 21:27:38 +0000 Manifest next update: Fri 06 Jun 2025 21:27:38 +0000 Files and hashes: 1: PR9_sUZBCjwzWzPEmCpzY4vlQJ4.crl (hash: Q5PhAfS2lHhvVhc8vB65b7KHiPgWxcGAnnSK1Jw/JBw=) 2: 2037569602BD11EBB333DA0FC4F9AE02.roa (hash: wrP/aiUubLvMy2sDZxNt1LMzFgR4k2obYAa+c5WHPY8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DD3FB/4212BC9E02BB11EBB3D4040BC4F9AE02/PR9_sUZBCjwzWzPEmCpzY4vlQJ4.crl rsync://rpki.apnic.net/member_repository/A91DD3FB/4212BC9E02BB11EBB3D4040BC4F9AE02/PR9_sUZBCjwzWzPEmCpzY4vlQJ4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PR9_sUZBCjwzWzPEmCpzY4vlQJ4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 21:27:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1965 (0x7ad) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DD3FB, serialNumber=3D1F7FB146410A3C335B33C4982A73638BE5409E Validity Not Before: May 30 21:27:38 2025 GMT Not After : Jun 6 21:27:38 2025 GMT Subject: CN=683a22ca-a864 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:96:ea:92:eb:2b:40:01:3a:ba:e1:27:dd:dc: 41:0e:8f:d4:ce:27:36:b5:29:52:97:62:17:cb:05: d1:14:e3:9e:6f:81:63:7d:73:fb:c8:2c:c6:bd:38: 34:e7:37:1b:43:f9:07:7a:07:0b:a3:16:5e:c9:8d: c3:f8:34:7c:dd:70:da:9e:fa:ab:30:ca:09:1d:41: bd:5f:ba:2a:1b:10:df:33:b4:c6:90:1d:b1:3b:a4: a2:63:e2:9b:dc:d7:6b:16:df:e5:6e:1f:b3:2f:82: 98:7d:6a:4f:4b:2f:1e:a5:22:fc:b9:40:e5:11:f9: bf:fe:14:05:22:23:ba:f8:4c:b8:cd:cc:d9:b8:b4: d8:2e:08:a4:84:f7:f7:e2:7d:d1:f9:88:1e:d4:bc: 81:64:f5:b4:f5:56:cc:65:4a:c9:bd:e7:49:db:80: 57:73:a3:52:41:48:83:3c:8e:36:0b:f2:55:07:61: da:3c:4f:02:62:8e:f9:f1:d4:15:92:c1:9f:76:26: ca:7a:01:7e:c8:96:ec:cd:cf:d8:05:90:c8:9b:59: 36:e0:18:c5:3b:73:04:12:42:a1:14:a9:a8:be:43: 9d:f6:96:d3:3a:e6:48:b2:83:33:12:ce:54:57:f7: 7c:f9:a8:5e:0a:69:9e:ec:34:57:38:8e:1e:34:ca: 22:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E3:EC:D7:51:DB:66:05:D3:8E:D9:F2:2F:E4:F4:30:D9:ED:B2:74:21 X509v3 Authority Key Identifier: keyid:3D:1F:7F:B1:46:41:0A:3C:33:5B:33:C4:98:2A:73:63:8B:E5:40:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DD3FB/4212BC9E02BB11EBB3D4040BC4F9AE02/PR9_sUZBCjwzWzPEmCpzY4vlQJ4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PR9_sUZBCjwzWzPEmCpzY4vlQJ4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DD3FB/4212BC9E02BB11EBB3D4040BC4F9AE02/PR9_sUZBCjwzWzPEmCpzY4vlQJ4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0d:14:19:25:8c:4a:1b:3f:82:68:b2:4c:09:e9:e4:8d:f7:af: be:2b:9e:f0:68:c6:7b:13:61:ad:d4:66:72:58:3f:4b:db:21: be:d2:fe:b7:34:9e:7f:9d:66:80:3a:07:a1:36:75:8b:7e:45: 0b:a6:9b:53:5e:e0:99:b2:ed:8f:dc:78:c4:d7:94:61:9d:74: 78:e1:5b:5c:7b:18:e2:40:c8:29:f6:1e:ff:be:b2:a9:15:ab: 53:08:48:02:00:d9:f3:de:7a:ad:a7:f0:3e:bf:e8:d3:90:ba: 00:6d:8e:ed:ec:ab:ba:2d:ac:f6:74:f1:d8:f7:d2:91:63:28: 01:bb:f9:b0:02:6e:e2:61:3f:54:be:66:90:ad:10:34:e5:db: a9:18:e6:c9:b9:f3:bd:31:52:a7:28:45:1f:8d:05:30:70:e9: 7e:4e:ba:0d:a2:96:c1:ab:e3:aa:6b:43:c6:b6:2c:ac:f1:67: e5:c8:f5:7d:ff:24:da:86:ba:9d:ea:26:c1:e5:12:6f:99:93: 7a:73:df:49:3a:09:b0:53:45:b0:03:25:7b:2b:36:51:23:52: 01:d6:fe:13:a0:ef:b0:36:f1:07:ac:0c:58:fd:de:32:4b:0b: 52:27:d7:aa:4a:01:cb:4c:2a:0d:5a:7e:e1:b5:c3:f3:53:af: 59:d4:65:87 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB60wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REQzRkIxMTAvBgNVBAUTKDNEMUY3RkIxNDY0MTBBM0MzMzVCMzNDNDk4MkE3MzYz OEJFNTQwOUUwHhcNMjUwNTMwMjEyNzM4WhcNMjUwNjA2MjEyNzM4WjAYMRYwFAYD VQQDEw02ODNhMjJjYS1hODY0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3ZbqkusrQAE6uuEn3dxBDo/Uzic2tSlSl2IXywXRFOOeb4FjfXP7yCzGvTg0 5zcbQ/kHegcLoxZeyY3D+DR83XDanvqrMMoJHUG9X7oqGxDfM7TGkB2xO6SiY+Kb 3NdrFt/lbh+zL4KYfWpPSy8epSL8uUDlEfm//hQFIiO6+Ey4zczZuLTYLgikhPf3 4n3R+Yge1LyBZPW09VbMZUrJvedJ24BXc6NSQUiDPI42C/JVB2HaPE8CYo758dQV ksGfdibKegF+yJbszc/YBZDIm1k24BjFO3MEEkKhFKmovkOd9pbTOuZIsoMzEs5U V/d8+aheCmme7DRXOI4eNMoiYwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOPs11Hb ZgXTjtnyL+T0MNntsnQhMB8GA1UdIwQYMBaAFD0ff7FGQQo8M1szxJgqc2OL5UCe MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERDNGQi80MjEyQkM5RTAy QkIxMUVCQjNENDA0MEJDNEY5QUUwMi9QUjlfc1VaQkNqd3pXelBFbUNwelk0dmxR SjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BSOV9zVVpCQ2p3eld6UEVtQ3B6WTR2bFFKNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE RDNGQi80MjEyQkM5RTAyQkIxMUVCQjNENDA0MEJDNEY5QUUwMi9QUjlfc1VaQkNq d3pXelBFbUNwelk0dmxRSjQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQANFBkljEobP4JoskwJ6eSN96++K57waMZ7E2Gt1GZyWD9L2yG+0v63 NJ5/nWaAOgehNnWLfkULpptTXuCZsu2P3HjE15RhnXR44VtcexjiQMgp9h7/vrKp FatTCEgCANnz3nqtp/A+v+jTkLoAbY7t7Ku6Laz2dPHY99KRYygBu/mwAm7iYT9U vmaQrRA05dupGObJufO9MVKnKEUfjQUwcOl+TroNopbBq+Oqa0PGtiys8WflyPV9 /yTahrqd6ibB5RJvmZN6c99JOgmwU0WwAyV7KzZRI1IB1v4ToO+wNvEHrAxY/d4y SwtSJ9eqSgHLTCoNWn7htcPzU69Z1GWH -----END CERTIFICATE-----Generated at Sat May 31 15:42:05 2025 by rpki-client