$ rpki-client -vvf rpki.apnic.net/member_repository/A91A9083/C86CD806D1B011EF8833C933C4F9AE02/aU9WG2PafMV3kxY21HiK0rC0riA.mft File: aU9WG2PafMV3kxY21HiK0rC0riA.mft (raw, json) Hash identifier: w+CAKNuBcMjdTSSdt+dkplwdibsr1Stvfu2D2HukyHQ= Subject key identifier: D0:D8:05:E5:A6:1C:FB:63:80:44:47:1C:86:CE:C2:B3:2F:18:76:7E Authority key identifier: 69:4F:56:1B:63:DA:7C:C5:77:93:16:36:D4:78:8A:D2:B0:B4:AE:20 Certificate issuer: /CN=A91A9083/serialNumber=694F561B63DA7CC577931636D4788AD2B0B4AE20 Certificate serial: 39 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aU9WG2PafMV3kxY21HiK0rC0riA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A9083/C86CD806D1B011EF8833C933C4F9AE02/aU9WG2PafMV3kxY21HiK0rC0riA.mft Manifest number: 38 Signing time: Fri 25 Apr 2025 06:35:10 +0000 Manifest this update: Fri 25 Apr 2025 06:35:10 +0000 Manifest next update: Fri 02 May 2025 06:35:10 +0000 Files and hashes: 1: aU9WG2PafMV3kxY21HiK0rC0riA.crl (hash: j24oXCgU5Kxnwa9NLMmqhiMqt2NeIwnd6TKbFHpH0aE=) 2: 8DDA6872D25311EF8EBE2767C4F9AE02.roa (hash: PORQCBDGSlwilkpipBB8A0mqgYc20HJgljabtkGa8CI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A9083/C86CD806D1B011EF8833C933C4F9AE02/aU9WG2PafMV3kxY21HiK0rC0riA.crl rsync://rpki.apnic.net/member_repository/A91A9083/C86CD806D1B011EF8833C933C4F9AE02/aU9WG2PafMV3kxY21HiK0rC0riA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aU9WG2PafMV3kxY21HiK0rC0riA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 06:35:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 57 (0x39) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A9083, serialNumber=694F561B63DA7CC577931636D4788AD2B0B4AE20 Validity Not Before: Apr 25 06:35:10 2025 GMT Not After : May 2 06:35:10 2025 GMT Subject: CN=680b2d1e-cd69 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:7d:63:9b:21:ee:89:5f:49:75:6f:ae:c9:be: b1:32:08:36:dd:8e:32:4f:6b:ce:29:da:ca:19:a5: af:f3:47:52:5d:de:80:28:40:10:ad:da:10:86:4c: a0:00:b2:af:9f:20:01:2e:db:38:5a:95:22:78:b2: b5:c4:ab:f0:b9:e5:3e:62:09:16:5f:3e:d3:e1:41: 05:6f:65:0e:bd:8c:25:bc:fc:f8:e3:80:63:ab:43: b9:38:48:b6:c8:e4:79:e1:7b:7d:7c:1e:10:84:66: 36:e3:b3:03:c9:60:bb:b4:d9:4f:c0:5f:1a:57:a3: 60:27:cf:d1:30:77:ce:04:d2:a0:8f:3b:75:60:07: d1:24:3d:c0:74:a8:ad:bc:7a:6f:f1:ab:27:02:cf: e1:88:79:de:1f:16:16:e9:cd:43:5a:cd:51:4d:e3: 3e:0e:71:1e:2f:e1:dd:78:2d:e1:33:01:21:c0:bc: 90:09:03:e4:d5:66:05:51:98:ed:93:23:e6:ed:c3: 1d:2a:2d:52:28:ab:16:6a:09:48:77:50:b8:ed:ad: ab:4a:42:71:00:39:cd:f8:0d:d9:89:14:fd:46:ee: df:5a:93:c1:58:5a:88:65:f0:02:27:04:9a:99:e5: 13:ad:2f:86:90:08:18:87:bc:92:7a:10:9a:17:91: d6:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D0:D8:05:E5:A6:1C:FB:63:80:44:47:1C:86:CE:C2:B3:2F:18:76:7E X509v3 Authority Key Identifier: keyid:69:4F:56:1B:63:DA:7C:C5:77:93:16:36:D4:78:8A:D2:B0:B4:AE:20 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A9083/C86CD806D1B011EF8833C933C4F9AE02/aU9WG2PafMV3kxY21HiK0rC0riA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aU9WG2PafMV3kxY21HiK0rC0riA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A9083/C86CD806D1B011EF8833C933C4F9AE02/aU9WG2PafMV3kxY21HiK0rC0riA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 11:e2:80:8f:d2:42:77:44:66:24:6d:bf:32:7d:24:45:e9:7b: 81:d8:54:d5:70:b9:5a:d7:5a:03:30:8b:f5:5e:bc:96:0d:c4: d2:fc:e6:b9:71:89:c5:52:1a:61:6e:e5:d1:78:b4:06:0a:96: cf:7f:97:8b:42:86:f1:04:97:92:e0:f1:af:88:24:1f:2e:d8: ef:0b:e5:aa:5a:ef:14:42:8c:d4:35:1d:ff:82:be:40:18:3a: b2:15:32:87:34:0c:27:2f:c0:1a:c8:0b:1b:21:06:a2:c5:69: 95:1a:6e:64:36:b1:e7:dc:b2:c2:f5:79:c9:54:73:94:89:04: 6d:e7:dd:d1:78:c3:93:cd:99:5f:78:c6:94:1b:f6:60:51:33: 93:ca:c2:f5:0e:68:2b:4b:db:b5:e2:fc:62:eb:86:35:5e:0f: 46:b2:9b:89:30:ce:cc:a9:c8:77:10:87:e1:07:05:3d:10:df: 0b:a5:ad:c8:6b:d1:c3:fa:c7:53:cf:e8:f9:ae:5b:7a:8d:e2: 30:07:5b:c9:bc:e6:70:1e:cb:4a:12:71:ff:a4:73:a9:7b:19: 55:30:ee:8c:16:b5:1a:d2:bb:a4:a6:c5:e7:6f:ad:4f:31:68: 6a:35:4d:2f:13:e6:01:ca:6d:30:c4:11:0a:bb:27:3c:9a:5b: ee:7a:27:e5 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBOTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFB OTA4MzExMC8GA1UEBRMoNjk0RjU2MUI2M0RBN0NDNTc3OTMxNjM2RDQ3ODhBRDJC MEI0QUUyMDAeFw0yNTA0MjUwNjM1MTBaFw0yNTA1MDIwNjM1MTBaMBgxFjAUBgNV BAMTDTY4MGIyZDFlLWNkNjkwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDefWObIe6JX0l1b67JvrEyCDbdjjJPa84p2soZpa/zR1Jd3oAoQBCt2hCGTKAA sq+fIAEu2zhalSJ4srXEq/C55T5iCRZfPtPhQQVvZQ69jCW8/PjjgGOrQ7k4SLbI 5Hnhe318HhCEZjbjswPJYLu02U/AXxpXo2Anz9Ewd84E0qCPO3VgB9EkPcB0qK28 em/xqycCz+GIed4fFhbpzUNazVFN4z4OcR4v4d14LeEzASHAvJAJA+TVZgVRmO2T I+btwx0qLVIoqxZqCUh3ULjtratKQnEAOc34DdmJFP1G7t9ak8FYWohl8AInBJqZ 5ROtL4aQCBiHvJJ6EJoXkdZ1AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU0NgF5aYc +2OAREcchs7Csy8Ydn4wHwYDVR0jBBgwFoAUaU9WG2PafMV3kxY21HiK0rC0riAw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUE5MDgzL0M4NkNEODA2RDFC MDExRUY4ODMzQzkzM0M0RjlBRTAyL2FVOVdHMlBhZk1WM2t4WTIxSGlLMHJDMHJp QS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvYVU5V0cyUGFmTVYza3hZMjFIaUswckMwcmlBLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUE5 MDgzL0M4NkNEODA2RDFCMDExRUY4ODMzQzkzM0M0RjlBRTAyL2FVOVdHMlBhZk1W M2t4WTIxSGlLMHJDMHJpQS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBABHigI/SQndEZiRtvzJ9JEXpe4HYVNVwuVrXWgMwi/VevJYNxNL85rlx icVSGmFu5dF4tAYKls9/l4tChvEEl5Lg8a+IJB8u2O8L5apa7xRCjNQ1Hf+CvkAY OrIVMoc0DCcvwBrICxshBqLFaZUabmQ2sefcssL1eclUc5SJBG3n3dF4w5PNmV94 xpQb9mBRM5PKwvUOaCtL27Xi/GLrhjVeD0aym4kwzsypyHcQh+EHBT0Q3wulrchr 0cP6x1PP6PmuW3qN4jAHW8m85nAey0oScf+kc6l7GVUw7owWtRrSu6SmxedvrU8x aGo1TS8T5gHKbTDEEQq7JzyaW+56J+U= -----END CERTIFICATE-----Generated at Sat Apr 26 05:22:21 2025 by rpki-client