$ rpki-client -vvf rpki.apnic.net/member_repository/A91E4845/400153B6D2EB11E5B4D15A4EC4F9AE02/AaQS70FsiE9vY38b2oAOtu9nttY.mft File: AaQS70FsiE9vY38b2oAOtu9nttY.mft (raw, json) Hash identifier: a1XGCk0xa8tRu6S5ndeVR0SwBQjDu0xcXMQ/9SxPVjE= Subject key identifier: 94:F7:D0:18:7E:93:F7:C0:72:D1:4F:EF:EA:E8:F8:FC:AE:1F:C1:31 Authority key identifier: 01:A4:12:EF:41:6C:88:4F:6F:63:7F:1B:DA:80:0E:B6:EF:67:B6:D6 Certificate issuer: /CN=A91E4845/serialNumber=01A412EF416C884F6F637F1BDA800EB6EF67B6D6 Certificate serial: 220A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AaQS70FsiE9vY38b2oAOtu9nttY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E4845/400153B6D2EB11E5B4D15A4EC4F9AE02/AaQS70FsiE9vY38b2oAOtu9nttY.mft Manifest number: 21DC Signing time: Fri 30 May 2025 16:04:30 +0000 Manifest this update: Fri 30 May 2025 16:04:29 +0000 Manifest next update: Fri 06 Jun 2025 16:04:29 +0000 Files and hashes: 1: AaQS70FsiE9vY38b2oAOtu9nttY.crl (hash: FACGkCW+HRMA/IOjYEaMOhuI7V/0PtKFLeRGVaHJlJw=) 2: 1DE1EBA25F0E11EF88D4A280C4F9AE02.roa (hash: CHZ8BUCP+ogBpGKfLieugzwCJ7wbfBVhmhSN5UggfIs=) 3: 756C3370F38611EFBF7CEF35C4F9AE02.roa (hash: du5SamzGoud2VmU4jSD3B3FaKaAiMGpYcMTILdk3Bb0=) 4: 2694EA4C3A5011F0B1C5451DC4F9AE02.roa (hash: i+D6U66jYq0hRY2atk2pQpTs28w0MJcSmyVG8V2Aw6o=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E4845/400153B6D2EB11E5B4D15A4EC4F9AE02/AaQS70FsiE9vY38b2oAOtu9nttY.crl rsync://rpki.apnic.net/member_repository/A91E4845/400153B6D2EB11E5B4D15A4EC4F9AE02/AaQS70FsiE9vY38b2oAOtu9nttY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AaQS70FsiE9vY38b2oAOtu9nttY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 16:04:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8714 (0x220a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E4845, serialNumber=01A412EF416C884F6F637F1BDA800EB6EF67B6D6 Validity Not Before: May 30 16:04:29 2025 GMT Not After : Jun 6 16:04:29 2025 GMT Subject: CN=6839d70d-ea4b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:3f:56:a2:a3:f7:df:d1:f6:63:22:26:44:3f: c1:62:59:c7:9c:0b:5c:cf:f4:7f:89:78:03:d0:ed: e8:eb:30:7b:ae:75:12:25:59:2b:f6:3d:f4:d9:23: 78:8e:5d:74:c0:b0:90:d9:01:3a:e0:2a:4a:78:05: 6e:6a:7f:64:07:8f:56:49:87:4f:24:29:51:f7:c7: aa:1f:79:ae:d1:e3:83:9a:55:1a:76:a8:94:5d:82: 56:eb:05:70:00:09:66:7a:f0:97:0e:e2:57:23:b8: 9a:64:a8:7f:38:68:94:03:92:3b:d0:22:83:5c:c8: ed:fd:0b:21:b0:67:91:f1:ea:44:5b:e2:16:13:52: d2:46:eb:48:72:df:a5:be:85:d2:09:12:cf:ef:d4: 16:d2:a3:d3:8d:98:f1:8e:bd:22:b6:ea:f5:92:3d: 4c:51:ee:6d:4e:e1:bf:e8:83:26:04:f4:ad:a7:4d: da:5e:97:43:21:77:af:0e:6e:bd:9f:4b:69:70:c4: 68:6e:31:b1:15:2d:a5:14:4c:5a:45:59:35:b4:d6: 59:37:74:05:7d:76:14:0b:7b:00:28:93:44:07:28: af:64:33:54:53:c9:a4:ef:07:0c:a5:9b:d8:74:27: 85:c3:ed:b4:2a:b5:1f:78:d3:0d:b1:af:82:18:fa: ef:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 94:F7:D0:18:7E:93:F7:C0:72:D1:4F:EF:EA:E8:F8:FC:AE:1F:C1:31 X509v3 Authority Key Identifier: keyid:01:A4:12:EF:41:6C:88:4F:6F:63:7F:1B:DA:80:0E:B6:EF:67:B6:D6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E4845/400153B6D2EB11E5B4D15A4EC4F9AE02/AaQS70FsiE9vY38b2oAOtu9nttY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AaQS70FsiE9vY38b2oAOtu9nttY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E4845/400153B6D2EB11E5B4D15A4EC4F9AE02/AaQS70FsiE9vY38b2oAOtu9nttY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 23:3d:b7:9d:74:3e:30:29:83:a2:fd:e8:53:9e:52:7c:7f:d5: 43:1d:98:2a:38:74:dc:bd:66:ef:e2:59:c6:2d:34:3d:c7:10: 62:30:bf:3a:06:e1:40:7b:20:38:89:73:d5:6c:c0:96:4c:c4: 75:f9:ac:b6:61:7c:96:12:5d:87:77:c1:1f:62:23:40:b2:6e: 01:66:f1:81:83:c7:73:4b:d7:f5:01:30:55:ab:e5:1b:6f:91: fc:64:76:82:b7:4e:fb:a1:a6:74:69:ea:c6:1e:8a:f6:07:49: 2b:bc:8a:e4:04:5d:ae:7e:ff:62:88:4b:c1:c0:f5:49:fe:ba: 4f:ff:37:0e:ed:77:f2:cf:52:86:9d:b9:94:2c:fb:3a:18:70: 38:02:69:14:59:04:0e:1a:49:4a:e9:7b:07:b2:33:92:51:00: 46:77:d9:d5:36:b6:c0:82:45:1d:38:6b:2b:dc:28:8f:9c:42: c2:8a:5c:72:55:13:1d:ff:98:dd:3a:1e:42:10:53:2c:77:fc: 69:c8:98:d6:3d:04:89:3a:96:31:2c:12:c3:51:f2:e6:bb:b3: 18:f7:dc:76:09:97:a2:92:61:4e:9d:2b:ee:01:f4:82:09:17: 47:da:73:14:54:b8:db:f0:86:55:dc:dc:4f:56:f2:c2:38:7d: 9f:bd:9b:a6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICIgowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTQ4NDUxMTAvBgNVBAUTKDAxQTQxMkVGNDE2Qzg4NEY2RjYzN0YxQkRBODAwRUI2 RUY2N0I2RDYwHhcNMjUwNTMwMTYwNDI5WhcNMjUwNjA2MTYwNDI5WjAYMRYwFAYD VQQDEw02ODM5ZDcwZC1lYTRiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApj9WoqP339H2YyImRD/BYlnHnAtcz/R/iXgD0O3o6zB7rnUSJVkr9j302SN4 jl10wLCQ2QE64CpKeAVuan9kB49WSYdPJClR98eqH3mu0eODmlUadqiUXYJW6wVw AAlmevCXDuJXI7iaZKh/OGiUA5I70CKDXMjt/QshsGeR8epEW+IWE1LSRutIct+l voXSCRLP79QW0qPTjZjxjr0itur1kj1MUe5tTuG/6IMmBPStp03aXpdDIXevDm69 n0tpcMRobjGxFS2lFExaRVk1tNZZN3QFfXYUC3sAKJNEByivZDNUU8mk7wcMpZvY dCeFw+20KrUfeNMNsa+CGPrvJwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJT30Bh+ k/fActFP7+ro+PyuH8ExMB8GA1UdIwQYMBaAFAGkEu9BbIhPb2N/G9qADrbvZ7bW MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNDg0NS80MDAxNTNCNkQy RUIxMUU1QjREMTVBNEVDNEY5QUUwMi9BYVFTNzBGc2lFOXZZMzhiMm9BT3R1OW50 dFkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0FhUVM3MEZzaUU5dlkzOGIyb0FPdHU5bnR0WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NDg0NS80MDAxNTNCNkQyRUIxMUU1QjREMTVBNEVDNEY5QUUwMi9BYVFTNzBGc2lF OXZZMzhiMm9BT3R1OW50dFkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAjPbeddD4wKYOi/ehTnlJ8f9VDHZgqOHTcvWbv4lnGLTQ9xxBiML86 BuFAeyA4iXPVbMCWTMR1+ay2YXyWEl2Hd8EfYiNAsm4BZvGBg8dzS9f1ATBVq+Ub b5H8ZHaCt077oaZ0aerGHor2B0krvIrkBF2ufv9iiEvBwPVJ/rpP/zcO7Xfyz1KG nbmULPs6GHA4AmkUWQQOGklK6XsHsjOSUQBGd9nVNrbAgkUdOGsr3CiPnELCilxy VRMd/5jdOh5CEFMsd/xpyJjWPQSJOpYxLBLDUfLmu7MY99x2CZeikmFOnSvuAfSC CRdH2nMUVLjb8IZV3NxPVvLCOH2fvZum -----END CERTIFICATE-----Generated at Sat May 31 17:08:55 2025 by rpki-client