$ rpki-client -vvf rpki.apnic.net/member_repository/A91E46B1/F00DF366679711E8A7891C48C4F9AE02/MAeESqoZm6nIjWQEw9_oduHjn8Y.mft File: MAeESqoZm6nIjWQEw9_oduHjn8Y.mft (raw, json) Hash identifier: 7yXq5yHIXzmEdinjUvCkFGln0GSE8MyUonRyhfRnbME= Subject key identifier: DF:A5:D5:5C:47:27:30:D3:43:88:B9:22:8C:7A:F8:24:D4:AD:84:34 Authority key identifier: 30:07:84:4A:AA:19:9B:A9:C8:8D:64:04:C3:DF:E8:76:E1:E3:9F:C6 Certificate issuer: /CN=A91E46B1/serialNumber=3007844AAA199BA9C88D6404C3DFE876E1E39FC6 Certificate serial: 1491 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/MAeESqoZm6nIjWQEw9_oduHjn8Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E46B1/F00DF366679711E8A7891C48C4F9AE02/MAeESqoZm6nIjWQEw9_oduHjn8Y.mft Manifest number: 147F Signing time: Mon 02 Jun 2025 17:04:48 +0000 Manifest this update: Mon 02 Jun 2025 17:04:47 +0000 Manifest next update: Mon 09 Jun 2025 17:04:47 +0000 Files and hashes: 1: MAeESqoZm6nIjWQEw9_oduHjn8Y.crl (hash: f2dXcz1TqsUTLA73xzVOmT7pkaEJpBm2qDh+oaLR8D4=) 2: D0D94718CB8111E89EDE697DC4F9AE02.roa (hash: 9jViCMxta64fmIo5dm4osOtVC5SSmRZm2YRKWH3IWTM=) 3: 391E6EDE679B11E886728650C4F9AE02.roa (hash: FfJi+Cna0JYZDzk+rBUfl7UT75ngYXqfbGnsFnMhnRc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E46B1/F00DF366679711E8A7891C48C4F9AE02/MAeESqoZm6nIjWQEw9_oduHjn8Y.crl rsync://rpki.apnic.net/member_repository/A91E46B1/F00DF366679711E8A7891C48C4F9AE02/MAeESqoZm6nIjWQEw9_oduHjn8Y.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/MAeESqoZm6nIjWQEw9_oduHjn8Y.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 05:53:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5265 (0x1491) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E46B1, serialNumber=3007844AAA199BA9C88D6404C3DFE876E1E39FC6 Validity Not Before: Jun 2 17:04:47 2025 GMT Not After : Jun 9 17:04:47 2025 GMT Subject: CN=683dd9af-4311 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:30:07:aa:e7:26:87:df:58:db:50:a3:1d:fd: 2b:87:00:52:3e:df:45:7d:34:e8:ed:dd:dd:5d:25: 67:e3:2f:03:14:3e:94:10:15:b0:90:a0:bb:04:e9: ad:08:56:67:d6:dc:85:e0:1f:a3:6f:58:92:4a:21: 81:4e:0d:d2:23:36:2f:3c:8d:59:ee:a1:5f:c8:f3: 18:b8:18:e3:5d:2d:17:b4:b3:b1:b4:8a:7c:d2:ef: 2c:15:04:f9:97:5d:51:54:6e:d0:d1:33:df:c2:04: ec:3d:68:18:81:1a:60:fa:80:7d:ad:12:45:3f:c0: c7:65:7b:e2:d3:80:1c:65:a8:d6:06:9a:92:22:d0: aa:0c:cf:3a:1b:21:24:50:f5:b2:4b:54:0e:7e:ab: 13:ae:f1:6f:fa:b1:77:e8:c8:bc:20:94:b1:27:6e: ba:c0:f2:9e:8c:89:31:bc:c3:21:f1:d4:3e:14:e6: f0:c5:a2:4a:7d:1a:37:ff:46:1e:fd:c9:7d:c8:6b: 98:40:e0:0a:5b:aa:be:89:d0:63:a0:3d:71:1f:fb: 4b:44:84:16:95:54:20:74:2b:bc:c5:e3:fd:b5:e3: 8a:0e:3d:6d:0b:c9:f8:46:0d:eb:94:b4:5c:25:bc: b0:62:53:dc:e8:93:23:77:6c:2f:fd:fa:3d:93:85: 8d:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DF:A5:D5:5C:47:27:30:D3:43:88:B9:22:8C:7A:F8:24:D4:AD:84:34 X509v3 Authority Key Identifier: keyid:30:07:84:4A:AA:19:9B:A9:C8:8D:64:04:C3:DF:E8:76:E1:E3:9F:C6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E46B1/F00DF366679711E8A7891C48C4F9AE02/MAeESqoZm6nIjWQEw9_oduHjn8Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/MAeESqoZm6nIjWQEw9_oduHjn8Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E46B1/F00DF366679711E8A7891C48C4F9AE02/MAeESqoZm6nIjWQEw9_oduHjn8Y.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5c:1c:b2:42:f6:9a:43:74:52:cf:f4:49:52:9f:01:40:1d:d8: 3a:e7:ca:ff:2b:b5:9d:5a:12:13:be:07:93:74:08:f5:52:77: fe:f2:b7:e3:74:ae:0e:76:44:fe:da:ea:63:7e:eb:d3:6c:6b: e9:55:ee:7c:fa:13:5b:4f:c4:56:cf:db:6e:e0:d8:96:ab:a7: 55:71:75:71:0a:96:14:db:ee:e5:d3:54:be:48:f6:70:4a:e8: e2:71:4e:d1:3b:38:5c:49:2d:32:4e:19:e8:b5:3d:47:a7:87: 46:25:fc:81:5e:52:13:b3:67:14:13:69:83:56:5a:4e:42:e7: 9f:8a:dd:08:20:8c:fa:3b:67:9b:5f:83:8e:74:06:81:b8:00: 95:0a:07:a5:48:bd:aa:91:fd:01:72:11:01:55:00:b1:df:c7: 72:c3:c3:74:8a:65:21:4e:60:c4:ee:3f:86:ec:a0:70:71:d8: 76:da:2d:81:ec:dd:7e:19:a1:0a:e6:0d:32:9e:9e:fb:0e:30: 6b:03:ef:85:64:fa:18:cf:79:f8:83:3f:eb:22:fa:a1:3c:db: 01:c8:b4:2c:1c:59:7e:f6:df:ce:ed:59:8c:b1:73:20:ef:00: d2:77:fe:12:f8:43:a0:dc:ee:53:64:aa:8f:62:a5:c0:05:77: 30:fb:74:c4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICFJEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTQ2QjExMTAvBgNVBAUTKDMwMDc4NDRBQUExOTlCQTlDODhENjQwNEMzREZFODc2 RTFFMzlGQzYwHhcNMjUwNjAyMTcwNDQ3WhcNMjUwNjA5MTcwNDQ3WjAYMRYwFAYD VQQDEw02ODNkZDlhZi00MzExMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArTAHqucmh99Y21CjHf0rhwBSPt9FfTTo7d3dXSVn4y8DFD6UEBWwkKC7BOmt CFZn1tyF4B+jb1iSSiGBTg3SIzYvPI1Z7qFfyPMYuBjjXS0XtLOxtIp80u8sFQT5 l11RVG7Q0TPfwgTsPWgYgRpg+oB9rRJFP8DHZXvi04AcZajWBpqSItCqDM86GyEk UPWyS1QOfqsTrvFv+rF36Mi8IJSxJ266wPKejIkxvMMh8dQ+FObwxaJKfRo3/0Ye /cl9yGuYQOAKW6q+idBjoD1xH/tLRIQWlVQgdCu8xeP9teOKDj1tC8n4Rg3rlLRc JbywYlPc6JMjd2wv/fo9k4WNPQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFN+l1VxH JzDTQ4i5Iox6+CTUrYQ0MB8GA1UdIwQYMBaAFDAHhEqqGZupyI1kBMPf6Hbh45/G MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNDZCMS9GMDBERjM2NjY3 OTcxMUU4QTc4OTFDNDhDNEY5QUUwMi9NQWVFU3FvWm02bklqV1FFdzlfb2R1SGpu OFkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL01BZUVTcW9abTZuSWpXUUV3OV9vZHVIam44WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NDZCMS9GMDBERjM2NjY3OTcxMUU4QTc4OTFDNDhDNEY5QUUwMi9NQWVFU3FvWm02 bklqV1FFdzlfb2R1SGpuOFkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBcHLJC9ppDdFLP9ElSnwFAHdg658r/K7WdWhITvgeTdAj1Unf+8rfj dK4OdkT+2upjfuvTbGvpVe58+hNbT8RWz9tu4NiWq6dVcXVxCpYU2+7l01S+SPZw SujicU7ROzhcSS0yThnotT1Hp4dGJfyBXlITs2cUE2mDVlpOQuefit0IIIz6O2eb X4OOdAaBuACVCgelSL2qkf0BchEBVQCx38dyw8N0imUhTmDE7j+G7KBwcdh22i2B 7N1+GaEK5g0ynp77DjBrA++FZPoYz3n4gz/rIvqhPNsByLQsHFl+9t/O7VmMsXMg 7wDSd/4S+EOg3O5TZKqPYqXABXcw+3TE -----END CERTIFICATE-----Generated at Mon Jun 2 21:09:24 2025 by rpki-client