$ rpki-client -vvf rpki.apnic.net/member_repository/A91FF634/1327A73E172911E98DD18E23C4F9AE02/49O0eIJzzkWSmwmYOr9ktdRNHwg.mft File: 49O0eIJzzkWSmwmYOr9ktdRNHwg.mft (raw, json) Hash identifier: 9JHpyt9Pz8n7Z6EbeCq3qAKA6oDcDlWkiwBhAEyXzQg= Subject key identifier: 3B:5F:48:5E:EB:27:BC:08:5F:D1:93:51:A1:04:C5:69:65:95:9C:21 Authority key identifier: E3:D3:B4:78:82:73:CE:45:92:9B:09:98:3A:BF:64:B5:D4:4D:1F:08 Certificate issuer: /CN=A91FF634/serialNumber=E3D3B4788273CE45929B09983ABF64B5D44D1F08 Certificate serial: 112B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/49O0eIJzzkWSmwmYOr9ktdRNHwg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FF634/1327A73E172911E98DD18E23C4F9AE02/49O0eIJzzkWSmwmYOr9ktdRNHwg.mft Manifest number: 1114 Signing time: Fri 30 May 2025 17:28:16 +0000 Manifest this update: Fri 30 May 2025 17:28:15 +0000 Manifest next update: Fri 06 Jun 2025 17:28:15 +0000 Files and hashes: 1: 49O0eIJzzkWSmwmYOr9ktdRNHwg.crl (hash: s3AzYIBIvioBjNax2Klc1+IfBx1HCdUjKKFxHwUBREE=) 2: 97F937E440BC11EAA2B89432C4F9AE02.roa (hash: YvhnTG1A1W5kz0Vch4cPsIzgbILMaDioP1ySIyj5aeE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FF634/1327A73E172911E98DD18E23C4F9AE02/49O0eIJzzkWSmwmYOr9ktdRNHwg.crl rsync://rpki.apnic.net/member_repository/A91FF634/1327A73E172911E98DD18E23C4F9AE02/49O0eIJzzkWSmwmYOr9ktdRNHwg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/49O0eIJzzkWSmwmYOr9ktdRNHwg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 17:28:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4395 (0x112b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FF634, serialNumber=E3D3B4788273CE45929B09983ABF64B5D44D1F08 Validity Not Before: May 30 17:28:15 2025 GMT Not After : Jun 6 17:28:15 2025 GMT Subject: CN=6839eab0-44b7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:2e:cc:18:98:d0:fa:7e:be:b4:5a:eb:ef:b3: 22:f4:43:0a:95:fb:73:21:de:4e:e7:9f:c0:bb:ff: 8e:42:d6:ce:fc:73:15:f8:53:03:88:11:1e:90:11: ec:b4:18:ee:15:37:fd:ae:ff:14:70:ff:49:cf:38: 8c:a3:fa:e4:89:9e:2a:c4:4e:4c:92:59:3f:a5:82: 0e:97:fa:84:7c:ea:34:28:7b:6b:f2:85:f9:4d:19: f5:d5:01:16:0c:dc:03:d8:ed:92:1c:84:57:17:47: e6:0e:c8:47:d6:8e:b5:1c:2e:e5:3e:08:26:98:6c: 7c:61:aa:5b:9e:20:73:1e:46:a7:19:9c:c5:3e:4b: 19:16:fc:97:bf:29:56:58:18:3a:6c:97:82:91:14: b4:50:96:a8:7d:ec:88:8d:06:d3:69:90:d0:47:54: cc:ee:25:30:49:d7:2d:85:0a:df:44:02:f0:63:87: 1c:b0:6b:52:ec:b4:23:38:01:e4:3c:d7:40:a1:3b: 55:44:49:3f:64:42:15:86:bd:59:8c:d8:d9:5c:c6: 72:12:40:72:05:d0:38:2a:c2:ea:be:63:52:c4:a1: ce:34:35:be:f7:c2:57:7a:fe:d2:1d:26:f1:18:19: 1b:63:b7:25:53:63:34:c8:4c:01:f3:8c:ac:8d:ae: 0a:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3B:5F:48:5E:EB:27:BC:08:5F:D1:93:51:A1:04:C5:69:65:95:9C:21 X509v3 Authority Key Identifier: keyid:E3:D3:B4:78:82:73:CE:45:92:9B:09:98:3A:BF:64:B5:D4:4D:1F:08 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FF634/1327A73E172911E98DD18E23C4F9AE02/49O0eIJzzkWSmwmYOr9ktdRNHwg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/49O0eIJzzkWSmwmYOr9ktdRNHwg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FF634/1327A73E172911E98DD18E23C4F9AE02/49O0eIJzzkWSmwmYOr9ktdRNHwg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 84:3e:b4:45:fb:b2:dd:08:de:e7:50:2e:c6:10:32:fd:6f:a1: 35:1c:c7:16:7d:8b:8b:64:7d:77:f0:af:26:d4:a0:e3:03:60: ba:bd:7d:b5:f2:d4:80:36:98:c4:7b:5a:ec:76:ae:db:48:60: 4f:03:f8:85:6a:2c:45:6d:35:c1:41:17:93:c4:4c:a8:b4:51: 55:b0:51:c3:ef:03:f9:0d:f0:4a:9c:59:7b:85:3f:6a:be:5f: 04:db:28:43:95:fc:86:8d:6e:8d:86:28:6d:dd:0e:80:86:75: 24:1f:26:66:5e:c4:22:03:20:f0:37:89:f2:a0:6b:45:c8:13: e9:45:10:20:32:f3:66:00:09:36:c8:5a:ae:44:05:d1:77:38: 0a:36:ab:e9:1f:4a:54:3f:7c:d0:f3:21:6a:73:6e:b9:b1:e6: 44:3d:a2:a1:78:b2:75:4d:60:79:90:1d:1a:3f:8a:fc:89:39: 1e:ae:91:f8:71:c3:db:a3:07:f0:7b:e8:11:6d:68:4e:26:6e: 07:00:f5:ab:d7:6e:5c:4d:f0:15:7c:c0:b1:e1:97:54:59:5f: 9d:e0:2e:04:7b:fb:9b:1e:6e:69:c6:0d:45:dc:c3:c5:b6:56: 0b:a2:41:98:7b:02:ad:16:74:db:ec:a9:22:9e:0b:f9:fc:75: 9a:df:84:04 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICESswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkY2MzQxMTAvBgNVBAUTKEUzRDNCNDc4ODI3M0NFNDU5MjlCMDk5ODNBQkY2NEI1 RDQ0RDFGMDgwHhcNMjUwNTMwMTcyODE1WhcNMjUwNjA2MTcyODE1WjAYMRYwFAYD VQQDEw02ODM5ZWFiMC00NGI3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxy7MGJjQ+n6+tFrr77Mi9EMKlftzId5O55/Au/+OQtbO/HMV+FMDiBEekBHs tBjuFTf9rv8UcP9JzziMo/rkiZ4qxE5Mklk/pYIOl/qEfOo0KHtr8oX5TRn11QEW DNwD2O2SHIRXF0fmDshH1o61HC7lPggmmGx8YapbniBzHkanGZzFPksZFvyXvylW WBg6bJeCkRS0UJaofeyIjQbTaZDQR1TM7iUwSdcthQrfRALwY4ccsGtS7LQjOAHk PNdAoTtVREk/ZEIVhr1ZjNjZXMZyEkByBdA4KsLqvmNSxKHONDW+98JXev7SHSbx GBkbY7clU2M0yEwB84ysja4K8QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDtfSF7r J7wIX9GTUaEExWlllZwhMB8GA1UdIwQYMBaAFOPTtHiCc85FkpsJmDq/ZLXUTR8I MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGRjYzNC8xMzI3QTczRTE3 MjkxMUU5OEREMThFMjNDNEY5QUUwMi80OU8wZUlKenprV1Ntd21ZT3I5a3RkUk5I d2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzQ5TzBlSUp6emtXU213bVlPcjlrdGRSTkh3Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG RjYzNC8xMzI3QTczRTE3MjkxMUU5OEREMThFMjNDNEY5QUUwMi80OU8wZUlKenpr V1Ntd21ZT3I5a3RkUk5Id2cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCEPrRF+7LdCN7nUC7GEDL9b6E1HMcWfYuLZH138K8m1KDjA2C6vX21 8tSANpjEe1rsdq7bSGBPA/iFaixFbTXBQReTxEyotFFVsFHD7wP5DfBKnFl7hT9q vl8E2yhDlfyGjW6Nhiht3Q6AhnUkHyZmXsQiAyDwN4nyoGtFyBPpRRAgMvNmAAk2 yFquRAXRdzgKNqvpH0pUP3zQ8yFqc265seZEPaKheLJ1TWB5kB0aP4r8iTkerpH4 ccPbowfwe+gRbWhOJm4HAPWr125cTfAVfMCx4ZdUWV+d4C4Ee/ubHm5pxg1F3MPF tlYLokGYewKtFnTb7Kkingv5/HWa34QE -----END CERTIFICATE-----Generated at Sat May 31 17:50:40 2025 by rpki-client