$ rpki-client -vvf rpki.apnic.net/member_repository/A91964B3/2A5940F24BB311E9AB151C17C4F9AE02/RkhU-1CpkDxSU0GMWD0PMbhB1Zc.mft File: RkhU-1CpkDxSU0GMWD0PMbhB1Zc.mft (raw, json) Hash identifier: diQyl/nrbIk6GjezSJbj8pLKc5dkw82lJwwUenVJEZk= Subject key identifier: F4:40:AD:23:0F:DB:95:CA:41:81:8B:41:94:21:C6:88:3B:06:9E:B1 Authority key identifier: 46:48:54:FB:50:A9:90:3C:52:53:41:8C:58:3D:0F:31:B8:41:D5:97 Certificate issuer: /CN=A91964B3/serialNumber=464854FB50A9903C5253418C583D0F31B841D597 Certificate serial: 100F Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RkhU-1CpkDxSU0GMWD0PMbhB1Zc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91964B3/2A5940F24BB311E9AB151C17C4F9AE02/RkhU-1CpkDxSU0GMWD0PMbhB1Zc.mft Manifest number: 0FFF Signing time: Sat 26 Apr 2025 14:24:21 +0000 Manifest this update: Sat 26 Apr 2025 14:24:21 +0000 Manifest next update: Sat 03 May 2025 14:24:21 +0000 Files and hashes: 1: RkhU-1CpkDxSU0GMWD0PMbhB1Zc.crl (hash: WukRPY/uACEvBoBac9vr+GjLYWMIaBjI1htwcq/df1c=) 2: 23B68638C5DD11EABC58FD24C4F9AE02.roa (hash: 7YuoX9OkBSRUQiHpsiuHEMGmDB7ygNEWHmpkRA4QfgE=) 3: 5D563164AF3411EFB5B51A57C4F9AE02.roa (hash: Mjf+9MFV/8wopOF7hLs3Tt14yZvRKLf5RcXcRhi35uI=) 4: 1396434EC90A11EF8577744AC4F9AE02.roa (hash: vv5/sNroDyn31EV1FuwDRkKZ1Ky/CQIEoorZo83v9h8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91964B3/2A5940F24BB311E9AB151C17C4F9AE02/RkhU-1CpkDxSU0GMWD0PMbhB1Zc.crl rsync://rpki.apnic.net/member_repository/A91964B3/2A5940F24BB311E9AB151C17C4F9AE02/RkhU-1CpkDxSU0GMWD0PMbhB1Zc.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RkhU-1CpkDxSU0GMWD0PMbhB1Zc.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 03 May 2025 14:24:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4111 (0x100f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91964B3, serialNumber=464854FB50A9903C5253418C583D0F31B841D597 Validity Not Before: Apr 26 14:24:21 2025 GMT Not After : May 3 14:24:21 2025 GMT Subject: CN=680cec95-2dce Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:b5:33:4d:5b:35:17:56:82:00:45:ce:0a:ab: 49:a5:c5:dd:f8:01:d0:d4:18:81:fb:a5:dd:84:e4: 7e:4f:f6:61:bc:74:82:0a:e2:b2:78:b7:e9:e8:66: da:b5:ac:11:d7:50:88:50:05:00:13:69:31:32:0b: 9a:c6:d2:fc:ef:e8:a0:ba:af:90:a7:8f:0b:ea:52: 4c:fb:34:83:f6:7e:ed:b7:3d:e8:e3:c3:33:e5:26: db:45:96:6e:76:93:c4:55:4c:30:77:84:0b:7f:4d: 5a:6b:26:f0:f5:65:e7:48:dc:12:fe:d4:86:95:66: c9:29:d2:13:b3:98:e3:96:33:a7:9d:1b:dc:cd:3c: 31:7d:de:ae:19:16:b6:4b:6a:51:38:b5:f9:7c:6a: 3f:45:9e:57:6b:7d:81:86:b9:16:0d:02:da:b0:0f: 98:39:ab:d0:9f:81:98:0b:73:b1:f0:dd:2d:2b:0f: 03:37:19:33:18:38:21:c9:cf:0b:d2:61:3d:b6:a3: ff:eb:d8:c2:2f:97:b9:b0:bc:2c:a9:fb:08:7f:12: 1a:a6:bb:5d:a0:e8:99:d2:50:25:f2:d9:25:5a:3d: 12:b5:a0:34:82:8c:b6:72:3f:0f:ee:f8:b2:9f:12: 56:4f:97:ef:60:da:58:db:b8:7d:fe:65:6a:14:ed: a1:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F4:40:AD:23:0F:DB:95:CA:41:81:8B:41:94:21:C6:88:3B:06:9E:B1 X509v3 Authority Key Identifier: keyid:46:48:54:FB:50:A9:90:3C:52:53:41:8C:58:3D:0F:31:B8:41:D5:97 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91964B3/2A5940F24BB311E9AB151C17C4F9AE02/RkhU-1CpkDxSU0GMWD0PMbhB1Zc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RkhU-1CpkDxSU0GMWD0PMbhB1Zc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91964B3/2A5940F24BB311E9AB151C17C4F9AE02/RkhU-1CpkDxSU0GMWD0PMbhB1Zc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 50:15:52:1d:27:2a:2b:a5:4c:40:30:12:89:08:3d:5c:73:5d: 2f:f9:9b:da:16:27:d7:26:3c:42:b0:2b:c8:29:32:fc:93:13: 1a:ad:9f:d5:f6:eb:f8:d1:9c:df:2e:a6:6c:77:21:84:c5:72: a6:6e:a0:af:9d:60:70:8c:41:7b:1f:a5:7c:e5:a1:86:f4:6b: bd:1d:7a:bc:47:6c:3e:77:f5:ad:7a:50:8c:8b:cd:dd:f2:ee: aa:2a:fc:5e:d0:e5:4c:bf:7f:da:58:cd:11:52:6a:16:e9:41: c9:c0:93:45:8c:26:ec:da:fd:73:68:23:c0:68:92:e0:7c:06: 48:7e:c1:03:ae:86:d7:c5:1b:13:70:9a:3e:1a:91:78:6a:23: 55:b0:86:60:de:73:9e:1f:20:80:7a:5c:ba:7c:e6:e1:d8:9b: 76:27:03:ff:6e:2c:ba:c4:5a:39:14:c1:a6:43:ab:c8:9a:11: 6c:f9:43:c6:ad:56:87:84:68:27:33:f9:8f:1b:73:0b:2d:7a: 26:7e:86:fa:c3:87:1f:6d:32:e9:ed:cb:34:6f:2d:15:2f:c0: 87:54:1c:9a:c8:96:64:e2:8d:83:8a:ad:fd:4b:4d:13:a7:40: 8b:ae:58:93:74:f5:f0:4d:ad:c6:e2:85:45:c9:33:a0:fa:2c: 99:65:6b:b7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEA8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTY0QjMxMTAvBgNVBAUTKDQ2NDg1NEZCNTBBOTkwM0M1MjUzNDE4QzU4M0QwRjMx Qjg0MUQ1OTcwHhcNMjUwNDI2MTQyNDIxWhcNMjUwNTAzMTQyNDIxWjAYMRYwFAYD VQQDEw02ODBjZWM5NS0yZGNlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsrUzTVs1F1aCAEXOCqtJpcXd+AHQ1BiB+6XdhOR+T/ZhvHSCCuKyeLfp6Gba tawR11CIUAUAE2kxMguaxtL87+iguq+Qp48L6lJM+zSD9n7ttz3o48Mz5SbbRZZu dpPEVUwwd4QLf01aaybw9WXnSNwS/tSGlWbJKdITs5jjljOnnRvczTwxfd6uGRa2 S2pROLX5fGo/RZ5Xa32BhrkWDQLasA+YOavQn4GYC3Ox8N0tKw8DNxkzGDghyc8L 0mE9tqP/69jCL5e5sLwsqfsIfxIaprtdoOiZ0lAl8tklWj0StaA0goy2cj8P7viy nxJWT5fvYNpY27h9/mVqFO2hywIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPRArSMP 25XKQYGLQZQhxog7Bp6xMB8GA1UdIwQYMBaAFEZIVPtQqZA8UlNBjFg9DzG4QdWX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NjRCMy8yQTU5NDBGMjRC QjMxMUU5QUIxNTFDMTdDNEY5QUUwMi9Sa2hVLTFDcGtEeFNVMEdNV0QwUE1iaEIx WmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1JraFUtMUNwa0R4U1UwR01XRDBQTWJoQjFaYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NjRCMy8yQTU5NDBGMjRCQjMxMUU5QUIxNTFDMTdDNEY5QUUwMi9Sa2hVLTFDcGtE eFNVMEdNV0QwUE1iaEIxWmMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBQFVIdJyorpUxAMBKJCD1cc10v+ZvaFifXJjxCsCvIKTL8kxMarZ/V 9uv40ZzfLqZsdyGExXKmbqCvnWBwjEF7H6V85aGG9Gu9HXq8R2w+d/WtelCMi83d 8u6qKvxe0OVMv3/aWM0RUmoW6UHJwJNFjCbs2v1zaCPAaJLgfAZIfsEDrobXxRsT cJo+GpF4aiNVsIZg3nOeHyCAely6fObh2Jt2JwP/biy6xFo5FMGmQ6vImhFs+UPG rVaHhGgnM/mPG3MLLXomfob6w4cfbTLp7cs0by0VL8CHVByayJZk4o2Diq39S00T p0CLrliTdPXwTa3G4oVFyTOg+iyZZWu3 -----END CERTIFICATE-----Generated at Sat Apr 26 17:15:18 2025 by rpki-client