$ rpki-client -vvf rpki.apnic.net/member_repository/A91FDA40/96F0D70CBBDA11ED8878EF47C4F9AE02/N7YqdyUcUqBLM7gtLtAgTJJ6Qpo.mft File: N7YqdyUcUqBLM7gtLtAgTJJ6Qpo.mft (raw, json) Hash identifier: 9umaHbDQoM3vNVg1KsFvGt5+UTGDanyqnW2wJI4A7xI= Subject key identifier: A5:0B:8B:6F:FD:EA:B9:76:77:93:10:9A:5F:CA:40:83:47:B7:69:F3 Authority key identifier: 37:B6:2A:77:25:1C:52:A0:4B:33:B8:2D:2E:D0:20:4C:92:7A:42:9A Certificate issuer: /CN=A91FDA40/serialNumber=37B62A77251C52A04B33B82D2ED0204C927A429A Certificate serial: 01B2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/N7YqdyUcUqBLM7gtLtAgTJJ6Qpo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FDA40/96F0D70CBBDA11ED8878EF47C4F9AE02/N7YqdyUcUqBLM7gtLtAgTJJ6Qpo.mft Manifest number: 01A9 Signing time: Sat 31 May 2025 02:59:16 +0000 Manifest this update: Sat 31 May 2025 02:59:15 +0000 Manifest next update: Sat 07 Jun 2025 02:59:15 +0000 Files and hashes: 1: N7YqdyUcUqBLM7gtLtAgTJJ6Qpo.crl (hash: 9LJxUavp7hOLwyD4nz1W5v08DFH69MiVLGwRPVG4kqQ=) 2: A24D0F54140C11EFBC640B71C4F9AE02.roa (hash: wRJLakVb4OT38G6t+rRsnOSv4LpQV0AO0Scq5OD6JMU=) 3: 545EDE9C140911EF8520A25BC4F9AE02.roa (hash: Tv8VFI61ht6g4zpgpyoiarorIdL71VBSjtb/bqzuKfo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FDA40/96F0D70CBBDA11ED8878EF47C4F9AE02/N7YqdyUcUqBLM7gtLtAgTJJ6Qpo.crl rsync://rpki.apnic.net/member_repository/A91FDA40/96F0D70CBBDA11ED8878EF47C4F9AE02/N7YqdyUcUqBLM7gtLtAgTJJ6Qpo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/N7YqdyUcUqBLM7gtLtAgTJJ6Qpo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 02:59:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 434 (0x1b2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FDA40, serialNumber=37B62A77251C52A04B33B82D2ED0204C927A429A Validity Not Before: May 31 02:59:15 2025 GMT Not After : Jun 7 02:59:15 2025 GMT Subject: CN=683a7083-df29 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:a4:df:1b:4f:c6:db:bf:d2:4f:52:f7:68:77: 22:4d:a7:32:4c:d5:47:d6:ac:07:9a:4a:67:25:0f: fc:c1:7f:b4:3e:6e:cf:80:04:ca:20:77:6e:13:98: 72:81:8f:26:77:21:71:cc:f3:d0:d6:69:44:45:92: 29:c3:47:cd:e2:bc:c5:61:94:5b:3e:b7:31:a8:0f: 66:10:10:9f:71:1a:0b:44:bf:4d:1c:2d:80:b9:d1: 34:cf:32:59:6e:48:ba:d6:5c:97:16:f2:0e:7b:13: 66:19:3e:36:b7:c0:dd:c5:8f:74:78:c2:c9:2c:2e: 99:05:fb:d3:aa:b3:e5:63:87:9c:cb:b3:be:30:f8: 52:00:62:4f:96:67:44:5d:cf:a8:4c:1e:83:19:c1: 55:e7:f4:b2:d8:79:77:45:61:89:d5:c5:4e:6d:4d: e6:81:fa:1c:91:e7:2e:5c:72:23:ca:69:90:81:bb: 6e:56:e8:08:ec:ca:1e:2e:9c:02:98:b5:70:77:42: d5:eb:7e:53:92:eb:14:e7:34:a2:d8:87:12:d1:77: ee:29:2a:06:55:73:44:a4:0a:00:74:59:86:9b:ed: 64:1a:f8:7e:fb:42:b3:0e:41:97:2d:f1:82:f7:4e: 55:1f:1a:15:9c:b5:c3:49:40:aa:1b:5e:3b:d1:24: 21:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A5:0B:8B:6F:FD:EA:B9:76:77:93:10:9A:5F:CA:40:83:47:B7:69:F3 X509v3 Authority Key Identifier: keyid:37:B6:2A:77:25:1C:52:A0:4B:33:B8:2D:2E:D0:20:4C:92:7A:42:9A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FDA40/96F0D70CBBDA11ED8878EF47C4F9AE02/N7YqdyUcUqBLM7gtLtAgTJJ6Qpo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/N7YqdyUcUqBLM7gtLtAgTJJ6Qpo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FDA40/96F0D70CBBDA11ED8878EF47C4F9AE02/N7YqdyUcUqBLM7gtLtAgTJJ6Qpo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b0:ca:0b:75:e8:f1:5c:fc:2f:54:be:fe:cc:2b:9e:94:8b:70: 29:36:9c:4b:ff:23:10:af:e7:fe:55:73:22:c1:50:04:26:d9: 2a:b9:d4:9c:1f:d9:a7:9f:40:85:8b:3d:3c:ce:bd:13:9e:24: 34:9b:e8:68:52:12:80:c5:d4:79:ec:07:2d:bc:88:d4:f4:a6: 53:53:c8:8b:df:88:de:d2:a3:2b:d9:b4:cd:f3:af:7a:db:43: 22:ca:fb:63:ef:57:47:8c:4b:9a:16:40:24:96:09:a8:b3:8c: b2:9f:ba:43:20:74:8a:a2:22:9c:c0:ff:78:01:49:f7:b3:79: 43:77:91:cd:ba:46:6a:29:f1:9d:43:84:88:11:4e:46:b4:9f: bb:2b:2f:28:eb:0a:57:5b:c4:30:e7:0b:ca:b9:6d:11:bf:c5: 8f:4e:26:f1:14:d1:8f:4f:8a:3f:1c:8f:0f:2e:eb:ea:40:56: 38:71:ee:5f:ae:72:aa:73:20:f1:35:3d:24:3e:47:7d:ab:37: e5:50:7a:5e:c2:39:b6:bd:45:66:88:4e:50:1e:09:e2:82:b0: 20:3f:8a:5e:9a:31:4e:dd:ae:b3:38:6c:d1:66:3a:c7:38:70: 8f:56:06:5f:31:1a:36:87:5f:b8:0b:a1:55:18:f5:43:2f:34: 62:35:9f:20 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAbIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkRBNDAxMTAvBgNVBAUTKDM3QjYyQTc3MjUxQzUyQTA0QjMzQjgyRDJFRDAyMDRD OTI3QTQyOUEwHhcNMjUwNTMxMDI1OTE1WhcNMjUwNjA3MDI1OTE1WjAYMRYwFAYD VQQDEw02ODNhNzA4My1kZjI5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA36TfG0/G27/ST1L3aHciTacyTNVH1qwHmkpnJQ/8wX+0Pm7PgATKIHduE5hy gY8mdyFxzPPQ1mlERZIpw0fN4rzFYZRbPrcxqA9mEBCfcRoLRL9NHC2AudE0zzJZ bki61lyXFvIOexNmGT42t8DdxY90eMLJLC6ZBfvTqrPlY4ecy7O+MPhSAGJPlmdE Xc+oTB6DGcFV5/Sy2Hl3RWGJ1cVObU3mgfockecuXHIjymmQgbtuVugI7MoeLpwC mLVwd0LV635TkusU5zSi2IcS0XfuKSoGVXNEpAoAdFmGm+1kGvh++0KzDkGXLfGC 905VHxoVnLXDSUCqG1470SQhFQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKULi2/9 6rl2d5MQml/KQINHt2nzMB8GA1UdIwQYMBaAFDe2KnclHFKgSzO4LS7QIEySekKa MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGREE0MC85NkYwRDcwQ0JC REExMUVEODg3OEVGNDdDNEY5QUUwMi9ON1lxZHlVY1VxQkxNN2d0THRBZ1RKSjZR cG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL043WXFkeVVjVXFCTE03Z3RMdEFnVEpKNlFwby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG REE0MC85NkYwRDcwQ0JCREExMUVEODg3OEVGNDdDNEY5QUUwMi9ON1lxZHlVY1Vx QkxNN2d0THRBZ1RKSjZRcG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCwygt16PFc/C9Uvv7MK56Ui3ApNpxL/yMQr+f+VXMiwVAEJtkqudSc H9mnn0CFiz08zr0TniQ0m+hoUhKAxdR57ActvIjU9KZTU8iL34je0qMr2bTN8696 20Miyvtj71dHjEuaFkAklgmos4yyn7pDIHSKoiKcwP94AUn3s3lDd5HNukZqKfGd Q4SIEU5GtJ+7Ky8o6wpXW8Qw5wvKuW0Rv8WPTibxFNGPT4o/HI8PLuvqQFY4ce5f rnKqcyDxNT0kPkd9qzflUHpewjm2vUVmiE5QHgnigrAgP4pemjFO3a6zOGzRZjrH OHCPVgZfMRo2h1+4C6FVGPVDLzRiNZ8g -----END CERTIFICATE-----Generated at Sat May 31 16:34:01 2025 by rpki-client