$ rpki-client -vvf rpki.apnic.net/member_repository/A91822BF/1039BC401ADB11EAAA3A8235C4F9AE02/A3e5PJH9r0aaWRtMUtJMsVVdK9Q.mft File: A3e5PJH9r0aaWRtMUtJMsVVdK9Q.mft (raw, json) Hash identifier: Xzw+Ofl+EtlqXOl4zunE4yCtiQT5+9c9G5mpPv9hWOw= Subject key identifier: 75:92:04:1C:A8:6C:FC:92:D7:43:0B:35:EB:F0:E4:7D:6C:33:67:30 Authority key identifier: 03:77:B9:3C:91:FD:AF:46:9A:59:1B:4C:52:D2:4C:B1:55:5D:2B:D4 Certificate issuer: /CN=A91822BF/serialNumber=0377B93C91FDAF469A591B4C52D24CB1555D2BD4 Certificate serial: 0BC4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/A3e5PJH9r0aaWRtMUtJMsVVdK9Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91822BF/1039BC401ADB11EAAA3A8235C4F9AE02/A3e5PJH9r0aaWRtMUtJMsVVdK9Q.mft Manifest number: 0BBD Signing time: Thu 24 Apr 2025 18:46:51 +0000 Manifest this update: Thu 24 Apr 2025 18:46:51 +0000 Manifest next update: Thu 01 May 2025 18:46:51 +0000 Files and hashes: 1: A3e5PJH9r0aaWRtMUtJMsVVdK9Q.crl (hash: r72Dgam82ajakqwxCoDtkdlrUeppkCdBJuWbk/Xfgbc=) 2: 37EA3E261ADC11EA8EB46F37C4F9AE02.roa (hash: 3kGetLo0/1T2TeuK7e4cz2fvy6XLEBwpuyaFMSSdmUI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91822BF/1039BC401ADB11EAAA3A8235C4F9AE02/A3e5PJH9r0aaWRtMUtJMsVVdK9Q.crl rsync://rpki.apnic.net/member_repository/A91822BF/1039BC401ADB11EAAA3A8235C4F9AE02/A3e5PJH9r0aaWRtMUtJMsVVdK9Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/A3e5PJH9r0aaWRtMUtJMsVVdK9Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 18:46:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3012 (0xbc4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91822BF, serialNumber=0377B93C91FDAF469A591B4C52D24CB1555D2BD4 Validity Not Before: Apr 24 18:46:51 2025 GMT Not After : May 1 18:46:51 2025 GMT Subject: CN=680a871b-fb2b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:34:8a:79:e4:4d:b0:0c:67:75:e2:82:9b:80: 86:62:6f:a4:5b:76:f4:de:2f:96:54:d4:ca:23:3a: 42:88:f4:5e:20:de:2c:9a:cd:5d:98:1c:00:0e:53: b3:4d:ed:ba:21:c6:4c:3e:d6:cf:dd:25:f9:05:6f: 68:d9:5e:8a:98:c9:ed:d9:1e:68:0e:2c:97:14:69: 5c:26:5e:a2:38:76:5e:d3:d2:a3:ff:c9:a3:c8:83: 5f:c1:45:05:16:8b:9b:0d:6a:bd:f5:af:da:31:95: 53:90:40:5f:7a:94:0e:07:ad:49:b8:20:46:b1:ee: 94:7f:3d:93:8b:34:3d:e0:2f:ee:e9:e2:0b:bd:8e: d0:54:11:45:e2:12:3f:95:cd:30:f0:ae:01:c7:2d: a8:a2:60:ae:9f:80:c1:04:a3:e3:4e:49:cc:30:79: 25:76:93:4e:f7:90:2d:36:70:96:10:65:20:d1:4c: 99:c5:c0:e8:45:d5:4c:88:98:34:c0:07:aa:bb:38: 73:30:e9:0c:17:79:c5:01:9f:ed:e4:33:d9:3a:e7: ca:2c:67:13:7a:c6:aa:0a:c0:24:7e:2b:26:30:86: af:f7:3f:84:4b:3c:21:e4:26:7d:54:8c:e2:86:5c: 40:d0:92:c5:55:b2:a9:9f:03:fe:0f:61:77:a6:c6: 06:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 75:92:04:1C:A8:6C:FC:92:D7:43:0B:35:EB:F0:E4:7D:6C:33:67:30 X509v3 Authority Key Identifier: keyid:03:77:B9:3C:91:FD:AF:46:9A:59:1B:4C:52:D2:4C:B1:55:5D:2B:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91822BF/1039BC401ADB11EAAA3A8235C4F9AE02/A3e5PJH9r0aaWRtMUtJMsVVdK9Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/A3e5PJH9r0aaWRtMUtJMsVVdK9Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91822BF/1039BC401ADB11EAAA3A8235C4F9AE02/A3e5PJH9r0aaWRtMUtJMsVVdK9Q.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 96:23:47:64:96:9a:17:81:5a:4e:6d:24:3a:e0:3b:3c:99:28: 99:ac:b6:94:32:45:e2:d7:67:a9:aa:4c:69:4b:43:31:9d:36: e1:f1:4c:53:ae:66:28:77:65:7c:13:e4:af:6c:dc:a6:a5:31: 21:0b:94:31:5a:ef:13:aa:a7:56:63:3c:5a:6b:86:a8:c3:88: 1b:5e:1f:6a:f2:88:6e:f9:e6:25:e7:98:d8:f1:bc:93:8d:3d: 5b:9a:1d:94:9e:c2:b3:a4:f0:a5:fb:7c:cf:fd:d6:c4:46:3f: 66:29:14:4a:ff:71:0b:80:1a:f5:14:53:5b:81:82:ec:22:f6: 70:0d:ab:cc:10:5d:55:30:0e:b9:0a:a2:5e:ff:d7:fe:ba:05: 5a:e7:33:44:bf:f4:d3:45:ea:84:bc:bf:37:fb:79:b5:9f:1f: db:da:1c:a6:1d:ae:f8:c6:06:3a:e2:f9:46:4a:ac:17:5e:52: 98:59:5e:7e:1e:c4:bd:bb:c0:de:b8:31:63:c8:0c:96:67:0e: 0e:b6:51:9b:fd:d3:4a:d4:2d:f7:85:da:87:f7:84:1b:49:08: 4a:cc:d4:5c:51:f9:28:01:8c:3d:fd:6d:7f:1c:f7:a2:37:76: 69:8b:ea:18:eb:ec:e8:99:49:74:4b:2e:be:a3:40:2e:6a:cc: fd:23:1b:36 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC8QwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODIyQkYxMTAvBgNVBAUTKDAzNzdCOTNDOTFGREFGNDY5QTU5MUI0QzUyRDI0Q0Ix NTU1RDJCRDQwHhcNMjUwNDI0MTg0NjUxWhcNMjUwNTAxMTg0NjUxWjAYMRYwFAYD VQQDEw02ODBhODcxYi1mYjJiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtjSKeeRNsAxndeKCm4CGYm+kW3b03i+WVNTKIzpCiPReIN4sms1dmBwADlOz Te26IcZMPtbP3SX5BW9o2V6KmMnt2R5oDiyXFGlcJl6iOHZe09Kj/8mjyINfwUUF FoubDWq99a/aMZVTkEBfepQOB61JuCBGse6Ufz2TizQ94C/u6eILvY7QVBFF4hI/ lc0w8K4Bxy2oomCun4DBBKPjTknMMHkldpNO95AtNnCWEGUg0UyZxcDoRdVMiJg0 wAequzhzMOkMF3nFAZ/t5DPZOufKLGcTesaqCsAkfismMIav9z+ESzwh5CZ9VIzi hlxA0JLFVbKpnwP+D2F3psYG0wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHWSBByo bPyS10MLNevw5H1sM2cwMB8GA1UdIwQYMBaAFAN3uTyR/a9GmlkbTFLSTLFVXSvU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4MjJCRi8xMDM5QkM0MDFB REIxMUVBQUEzQTgyMzVDNEY5QUUwMi9BM2U1UEpIOXIwYWFXUnRNVXRKTXNWVmRL OVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0EzZTVQSkg5cjBhYVdSdE1VdEpNc1ZWZEs5US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 MjJCRi8xMDM5QkM0MDFBREIxMUVBQUEzQTgyMzVDNEY5QUUwMi9BM2U1UEpIOXIw YWFXUnRNVXRKTXNWVmRLOVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCWI0dklpoXgVpObSQ64Ds8mSiZrLaUMkXi12epqkxpS0MxnTbh8UxT rmYod2V8E+SvbNympTEhC5QxWu8TqqdWYzxaa4aow4gbXh9q8ohu+eYl55jY8byT jT1bmh2UnsKzpPCl+3zP/dbERj9mKRRK/3ELgBr1FFNbgYLsIvZwDavMEF1VMA65 CqJe/9f+ugVa5zNEv/TTReqEvL83+3m1nx/b2hymHa74xgY64vlGSqwXXlKYWV5+ HsS9u8DeuDFjyAyWZw4OtlGb/dNK1C33hdqH94QbSQhKzNRcUfkoAYw9/W1/HPei N3Zpi+oY6+zomUl0Sy6+o0Auasz9Ixs2 -----END CERTIFICATE-----Generated at Sat Apr 26 12:58:19 2025 by rpki-client