$ rpki-client -vvf rpki.apnic.net/member_repository/A91398E5/7840D95EE49111E791BE1869C4F9AE02/a9bIzoghkMgWnoE2ReDt2bdX6xk.mft File: a9bIzoghkMgWnoE2ReDt2bdX6xk.mft (raw, json) Hash identifier: E5x1hElc8gmGFNbKwn1rfZQBapfm1IO6M0evIXOdGVg= Subject key identifier: 4F:F8:21:4B:D3:ED:38:4F:AA:FC:94:C9:A4:2A:55:2B:C8:47:55:55 Authority key identifier: 6B:D6:C8:CE:88:21:90:C8:16:9E:81:36:45:E0:ED:D9:B7:57:EB:19 Certificate issuer: /CN=A91398E5/serialNumber=6BD6C8CE882190C8169E813645E0EDD9B757EB19 Certificate serial: 16FE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/a9bIzoghkMgWnoE2ReDt2bdX6xk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91398E5/7840D95EE49111E791BE1869C4F9AE02/a9bIzoghkMgWnoE2ReDt2bdX6xk.mft Manifest number: 2026 Signing time: Thu 24 Apr 2025 16:39:25 +0000 Manifest this update: Thu 24 Apr 2025 16:39:24 +0000 Manifest next update: Thu 01 May 2025 16:39:24 +0000 Files and hashes: 1: a9bIzoghkMgWnoE2ReDt2bdX6xk.crl (hash: rRwO/PPGNAdjxQNMEvrMYjusyiQkfjv1lUfK9lgqVTo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91398E5/7840D95EE49111E791BE1869C4F9AE02/a9bIzoghkMgWnoE2ReDt2bdX6xk.crl rsync://rpki.apnic.net/member_repository/A91398E5/7840D95EE49111E791BE1869C4F9AE02/a9bIzoghkMgWnoE2ReDt2bdX6xk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/a9bIzoghkMgWnoE2ReDt2bdX6xk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 16:39:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5886 (0x16fe) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91398E5, serialNumber=6BD6C8CE882190C8169E813645E0EDD9B757EB19 Validity Not Before: Apr 24 16:39:24 2025 GMT Not After : May 1 16:39:24 2025 GMT Subject: CN=680a693c-3cb7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:88:86:44:63:ae:14:4f:d4:fe:ca:10:47:b6: 07:b0:9e:65:2a:cb:3d:6d:86:72:84:f0:96:b1:5c: 17:00:94:82:1d:70:9e:96:cf:9e:35:fd:d3:ba:86: eb:da:2d:cc:3b:dd:6a:0b:8a:ac:6f:7b:2d:61:69: ea:91:bb:46:9f:54:9d:89:a3:dd:f8:f1:82:b6:ed: 96:1e:ca:b0:1d:54:0f:27:b1:21:d1:b2:09:38:7a: 10:d0:d3:3f:d4:73:f2:bd:45:60:6b:fb:17:fc:e5: f3:f4:00:b8:1b:67:f4:a4:e2:80:5a:07:38:4e:34: 9f:25:09:47:86:0a:cd:2c:98:1b:97:3b:66:ce:e5: 43:bd:16:07:ae:7f:8f:6f:97:7c:bf:ca:16:13:dc: 16:6c:86:ef:2a:33:d7:7b:a7:15:78:21:9d:61:9f: 78:dc:60:13:a4:96:f8:0c:f2:5b:09:cc:c1:29:3a: 3e:bd:84:f6:54:af:bf:04:f4:cd:64:2f:7a:bc:35: 0a:80:04:77:a2:42:56:09:5a:3b:df:db:09:8b:c9: 0a:c7:c8:59:c5:2f:55:8c:3f:09:61:6e:af:b4:ee: e7:74:e9:db:85:11:12:73:58:06:6c:86:e0:5c:65: ce:07:23:16:c7:c2:aa:d5:73:10:a7:75:86:20:a9: 18:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4F:F8:21:4B:D3:ED:38:4F:AA:FC:94:C9:A4:2A:55:2B:C8:47:55:55 X509v3 Authority Key Identifier: keyid:6B:D6:C8:CE:88:21:90:C8:16:9E:81:36:45:E0:ED:D9:B7:57:EB:19 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91398E5/7840D95EE49111E791BE1869C4F9AE02/a9bIzoghkMgWnoE2ReDt2bdX6xk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/a9bIzoghkMgWnoE2ReDt2bdX6xk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91398E5/7840D95EE49111E791BE1869C4F9AE02/a9bIzoghkMgWnoE2ReDt2bdX6xk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 05:86:31:08:c5:e6:d0:80:c9:7d:e2:63:9c:f7:02:c7:88:33: 14:3e:87:00:fa:3c:70:f4:0f:9e:aa:96:81:9e:f8:6f:5f:4c: dc:10:3c:c5:2f:4d:dc:41:ef:56:ba:b7:01:09:eb:d2:9c:c7: 9e:e8:41:ed:58:44:c6:02:74:bc:1d:4e:58:8f:2e:e3:8f:1b: 66:cf:bc:9a:75:b1:e1:b1:43:fe:83:e7:a0:42:a5:ef:20:f5: 25:c7:07:e7:c2:8b:3f:64:7f:1e:4c:63:d0:a0:2e:26:ed:b9: d1:4f:17:28:b4:ba:7b:b5:66:b8:e5:96:29:9e:1b:7c:cf:4c: 75:68:8f:fd:cf:50:86:ba:6c:b2:a0:a5:28:b7:0e:9f:b1:0b: 25:c3:91:55:57:29:be:af:a7:ec:ec:98:1b:be:8a:b7:ad:39: 1b:c8:4c:8c:ab:bb:aa:8b:26:10:38:ac:8c:04:01:fa:ab:c8: 00:f7:f8:0b:f1:66:0e:65:eb:ae:d9:91:12:7c:35:28:1d:fe: e6:58:97:37:61:29:0f:22:62:84:5d:63:82:cb:71:5c:e3:c8: 3a:b5:7c:43:76:e1:8a:67:ca:eb:c6:be:8e:3f:0c:4a:5f:3a: 4d:4f:c5:f5:dc:12:11:ac:eb:69:70:af:6d:ad:39:0b:e2:04: 12:f7:cc:0a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICFv4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mzk4RTUxMTAvBgNVBAUTKDZCRDZDOENFODgyMTkwQzgxNjlFODEzNjQ1RTBFREQ5 Qjc1N0VCMTkwHhcNMjUwNDI0MTYzOTI0WhcNMjUwNTAxMTYzOTI0WjAYMRYwFAYD VQQDEw02ODBhNjkzYy0zY2I3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmIiGRGOuFE/U/soQR7YHsJ5lKss9bYZyhPCWsVwXAJSCHXCels+eNf3Tuobr 2i3MO91qC4qsb3stYWnqkbtGn1SdiaPd+PGCtu2WHsqwHVQPJ7Eh0bIJOHoQ0NM/ 1HPyvUVga/sX/OXz9AC4G2f0pOKAWgc4TjSfJQlHhgrNLJgblztmzuVDvRYHrn+P b5d8v8oWE9wWbIbvKjPXe6cVeCGdYZ943GATpJb4DPJbCczBKTo+vYT2VK+/BPTN ZC96vDUKgAR3okJWCVo739sJi8kKx8hZxS9VjD8JYW6vtO7ndOnbhRESc1gGbIbg XGXOByMWx8Kq1XMQp3WGIKkYNwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFE/4IUvT 7ThPqvyUyaQqVSvIR1VVMB8GA1UdIwQYMBaAFGvWyM6IIZDIFp6BNkXg7dm3V+sZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzOThFNS83ODQwRDk1RUU0 OTExMUU3OTFCRTE4NjlDNEY5QUUwMi9hOWJJem9naGtNZ1dub0UyUmVEdDJiZFg2 eGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2E5Ykl6b2doa01nV25vRTJSZUR0MmJkWDZ4ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz OThFNS83ODQwRDk1RUU0OTExMUU3OTFCRTE4NjlDNEY5QUUwMi9hOWJJem9naGtN Z1dub0UyUmVEdDJiZFg2eGsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAFhjEIxebQgMl94mOc9wLHiDMUPocA+jxw9A+eqpaBnvhvX0zcEDzF L03cQe9WurcBCevSnMee6EHtWETGAnS8HU5Yjy7jjxtmz7yadbHhsUP+g+egQqXv IPUlxwfnwos/ZH8eTGPQoC4m7bnRTxcotLp7tWa45ZYpnht8z0x1aI/9z1CGumyy oKUotw6fsQslw5FVVym+r6fs7Jgbvoq3rTkbyEyMq7uqiyYQOKyMBAH6q8gA9/gL 8WYOZeuu2ZESfDUoHf7mWJc3YSkPImKEXWOCy3Fc48g6tXxDduGKZ8rrxr6OPwxK XzpNT8X13BIRrOtpcK9trTkL4gQS98wK -----END CERTIFICATE-----Generated at Sat Apr 26 13:05:20 2025 by rpki-client