$ rpki-client -vvf rpki.apnic.net/member_repository/A91DF076/A408F582B90411E9B1D50B41C4F9AE02/R4pL3QESHRxrMz7MPiW6Gohxmao.mft File: R4pL3QESHRxrMz7MPiW6Gohxmao.mft (raw, json) Hash identifier: fDozM9AQxer6fFLWe1sgmUfetD7EapeIK2laxYgLItg= Subject key identifier: 00:91:74:29:90:B2:37:53:4A:E0:7F:25:F5:9C:68:88:59:E5:BD:92 Authority key identifier: 47:8A:4B:DD:01:12:1D:1C:6B:33:3E:CC:3E:25:BA:1A:88:71:99:AA Certificate issuer: /CN=A91DF076/serialNumber=478A4BDD01121D1C6B333ECC3E25BA1A887199AA Certificate serial: 0DD2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/R4pL3QESHRxrMz7MPiW6Gohxmao.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DF076/A408F582B90411E9B1D50B41C4F9AE02/R4pL3QESHRxrMz7MPiW6Gohxmao.mft Manifest number: 0DC9 Signing time: Fri 30 May 2025 18:04:36 +0000 Manifest this update: Fri 30 May 2025 18:04:36 +0000 Manifest next update: Fri 06 Jun 2025 18:04:36 +0000 Files and hashes: 1: R4pL3QESHRxrMz7MPiW6Gohxmao.crl (hash: yEriW7AzNKjKgDpPx/3MBYZ5BEynsmjVwZprihWk9dM=) 2: 7043D43679BB11ECB6D72266C4F9AE02.roa (hash: BOGz00jzThHZrjf4AnHf9t8835VNaXb3kuD1iUSrcgE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DF076/A408F582B90411E9B1D50B41C4F9AE02/R4pL3QESHRxrMz7MPiW6Gohxmao.crl rsync://rpki.apnic.net/member_repository/A91DF076/A408F582B90411E9B1D50B41C4F9AE02/R4pL3QESHRxrMz7MPiW6Gohxmao.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/R4pL3QESHRxrMz7MPiW6Gohxmao.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 18:04:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3538 (0xdd2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DF076, serialNumber=478A4BDD01121D1C6B333ECC3E25BA1A887199AA Validity Not Before: May 30 18:04:36 2025 GMT Not After : Jun 6 18:04:36 2025 GMT Subject: CN=6839f334-7756 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:6a:7e:2a:cd:02:6b:6c:bb:0d:ce:e9:8b:1f: b8:2c:6f:cd:7b:4f:2a:97:70:8e:3d:1d:69:7f:2c: 2a:e6:a2:b0:5f:e8:0a:dd:22:6e:52:fc:6d:93:06: 96:df:18:af:96:48:50:2b:d4:c1:d2:67:3a:9a:86: f6:de:59:78:6e:a3:52:73:c7:8e:cb:75:97:1e:2c: 1c:57:9b:5e:0e:e8:fe:89:ec:76:aa:da:88:32:55: bf:82:3b:7e:43:b6:0e:84:7b:4a:28:69:2f:21:91: 7b:f5:5c:20:f9:dd:c3:1d:7a:03:87:77:10:2b:f6: b3:6c:e2:f4:22:d1:c9:c7:43:4c:f6:68:09:ee:e2: 55:58:4f:d1:fc:5a:77:c7:65:8a:a6:a2:12:82:a7: ad:c9:76:0e:47:b8:c9:09:e1:29:2f:e1:b9:1a:52: ef:8a:d2:5f:f5:0a:dc:71:54:4d:e0:e8:55:ad:c9: a1:ab:5a:34:f4:2d:d3:d5:b3:db:85:f5:48:56:de: f6:7e:27:f7:41:05:09:34:5f:d6:60:1f:cd:4f:a8: 81:04:97:0c:b0:e4:28:cf:b0:52:42:b2:08:bb:cc: 92:81:8a:23:33:9e:cd:d1:6b:a0:e1:39:08:c0:61: a7:48:77:58:ee:d0:2c:4d:68:84:03:60:3a:6f:5d: 20:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 00:91:74:29:90:B2:37:53:4A:E0:7F:25:F5:9C:68:88:59:E5:BD:92 X509v3 Authority Key Identifier: keyid:47:8A:4B:DD:01:12:1D:1C:6B:33:3E:CC:3E:25:BA:1A:88:71:99:AA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DF076/A408F582B90411E9B1D50B41C4F9AE02/R4pL3QESHRxrMz7MPiW6Gohxmao.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/R4pL3QESHRxrMz7MPiW6Gohxmao.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DF076/A408F582B90411E9B1D50B41C4F9AE02/R4pL3QESHRxrMz7MPiW6Gohxmao.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 27:90:c6:ad:b5:29:d5:67:b0:ce:51:cb:45:73:af:d1:45:e4: 05:76:13:a6:42:e8:0a:7a:d2:4a:0d:59:9a:e3:92:2c:6f:df: 94:ee:2a:94:14:2e:d2:d6:91:00:11:1c:3a:c5:f3:5e:fb:c3: e2:6d:18:9e:d3:ab:b8:a4:b2:7d:02:68:2f:ab:6e:29:d5:f8: 48:d6:9a:5a:ef:3c:a7:3b:a4:f2:fc:bc:a5:70:c4:b7:46:cd: 68:8b:78:51:0f:b7:05:9c:f7:b4:57:e2:24:e9:00:bc:67:b7: fc:11:a6:75:64:cf:24:ef:c8:66:99:55:5d:53:8f:37:82:86: 8b:7b:16:fe:4b:5f:4d:a8:7f:da:6f:3f:94:f4:ea:de:45:80: e4:28:28:24:f8:26:f6:37:92:99:bf:45:f1:8d:b8:ea:f5:f2: 16:5c:44:af:f6:bd:b4:c3:65:63:a7:8d:aa:49:d4:14:78:3e: 59:13:ca:ef:d6:34:8a:9a:9e:6e:ff:ba:5b:c2:61:74:3b:12: 62:83:1a:5f:9f:fe:0e:d5:37:12:70:90:33:62:8c:4b:67:4b: 6c:1a:f0:c3:97:b0:47:8f:39:ca:20:27:5c:1b:ec:21:20:8b: 4b:23:65:cf:52:7c:70:ae:4a:83:bd:c6:76:60:e2:9e:0e:ab: c0:ba:ff:42 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDdIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REYwNzYxMTAvBgNVBAUTKDQ3OEE0QkREMDExMjFEMUM2QjMzM0VDQzNFMjVCQTFB ODg3MTk5QUEwHhcNMjUwNTMwMTgwNDM2WhcNMjUwNjA2MTgwNDM2WjAYMRYwFAYD VQQDEw02ODM5ZjMzNC03NzU2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArmp+Ks0Ca2y7Dc7pix+4LG/Ne08ql3COPR1pfywq5qKwX+gK3SJuUvxtkwaW 3xivlkhQK9TB0mc6mob23ll4bqNSc8eOy3WXHiwcV5teDuj+iex2qtqIMlW/gjt+ Q7YOhHtKKGkvIZF79Vwg+d3DHXoDh3cQK/azbOL0ItHJx0NM9mgJ7uJVWE/R/Fp3 x2WKpqISgqetyXYOR7jJCeEpL+G5GlLvitJf9QrccVRN4OhVrcmhq1o09C3T1bPb hfVIVt72fif3QQUJNF/WYB/NT6iBBJcMsOQoz7BSQrIIu8ySgYojM57N0Wug4TkI wGGnSHdY7tAsTWiEA2A6b10gUwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFACRdCmQ sjdTSuB/JfWcaIhZ5b2SMB8GA1UdIwQYMBaAFEeKS90BEh0cazM+zD4luhqIcZmq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERjA3Ni9BNDA4RjU4MkI5 MDQxMUU5QjFENTBCNDFDNEY5QUUwMi9SNHBMM1FFU0hSeHJNejdNUGlXNkdvaHht YW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1I0cEwzUUVTSFJ4ck16N01QaVc2R29oeG1hby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE RjA3Ni9BNDA4RjU4MkI5MDQxMUU5QjFENTBCNDFDNEY5QUUwMi9SNHBMM1FFU0hS eHJNejdNUGlXNkdvaHhtYW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAnkMattSnVZ7DOUctFc6/RReQFdhOmQugKetJKDVma45Isb9+U7iqU FC7S1pEAERw6xfNe+8PibRie06u4pLJ9Amgvq24p1fhI1ppa7zynO6Ty/LylcMS3 Rs1oi3hRD7cFnPe0V+Ik6QC8Z7f8EaZ1ZM8k78hmmVVdU483goaLexb+S19NqH/a bz+U9OreRYDkKCgk+Cb2N5KZv0Xxjbjq9fIWXESv9r20w2Vjp42qSdQUeD5ZE8rv 1jSKmp5u/7pbwmF0OxJigxpfn/4O1TcScJAzYoxLZ0tsGvDDl7BHjznKICdcG+wh IItLI2XPUnxwrkqDvcZ2YOKeDqvAuv9C -----END CERTIFICATE-----Generated at Sat May 31 16:38:49 2025 by rpki-client