$ rpki-client -vvf rpki.apnic.net/member_repository/A91CE978/3223F35E1D9811E28A8C2E8208B02CD2/ah5PcoR-s2mVIsk9Jnc_Dfg5br4.mft File: ah5PcoR-s2mVIsk9Jnc_Dfg5br4.mft (raw, json) Hash identifier: FQlwlrAJVGZxQvMRZADlr/Z3eR91JJ+L0uE0A9ie1vs= Subject key identifier: B7:AD:F4:EF:B3:F9:79:9D:0F:26:C6:D0:12:55:75:43:D8:26:F2:94 Authority key identifier: 6A:1E:4F:72:84:7E:B3:69:95:22:C9:3D:26:77:3F:0D:F8:39:6E:BE Certificate issuer: /CN=A91CE978/serialNumber=6A1E4F72847EB3699522C93D26773F0DF8396EBE Certificate serial: 3536 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ah5PcoR-s2mVIsk9Jnc_Dfg5br4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CE978/3223F35E1D9811E28A8C2E8208B02CD2/ah5PcoR-s2mVIsk9Jnc_Dfg5br4.mft Manifest number: 34D1 Signing time: Sat 26 Apr 2025 14:52:32 +0000 Manifest this update: Sat 26 Apr 2025 14:52:31 +0000 Manifest next update: Sat 03 May 2025 14:52:31 +0000 Files and hashes: 1: ah5PcoR-s2mVIsk9Jnc_Dfg5br4.crl (hash: MiCofMuOtAs0b67JavNL7PHhRrbj1q1MwG2d3mJocAk=) 2: 64E2B628BE4911EE897F291BC4F9AE02.roa (hash: oj9MA2Xl79Ulu/1U7XExVD59vw2GZhJkFrHTogIDTCg=) 3: E6F73E22B99E11EEBF189021C4F9AE02.roa (hash: 1mDu3Q1bdiSa3axtc15ZDTGlc4zW4OxSySLPwHbTbvE=) 4: DDF4B0D2F08C11EEB70A1F76C4F9AE02.roa (hash: 3IhKk2ns73ug1cPcItokkvNYGQWI9rs7b4nF6YtsTSc=) 5: D79607EEDCDD11EE85DBEB12C4F9AE02.roa (hash: vltJ7Buw53igWVIfCgs9blss6VeKEkgF9l7xhGZDnwo=) 6: 29F7413CBB6011EEB59E5D81C4F9AE02.roa (hash: ZqgeyChgSkuAuEy8E4XBqCcFOmGTEjV9SXx7odN3pv4=) 7: D1EE6884F06C11EEA5BAA656C4F9AE02.roa (hash: 8K4hb6GJHcWswysfKKK+VFXlsdhKy8EjS5fIz+8731Q=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CE978/3223F35E1D9811E28A8C2E8208B02CD2/ah5PcoR-s2mVIsk9Jnc_Dfg5br4.crl rsync://rpki.apnic.net/member_repository/A91CE978/3223F35E1D9811E28A8C2E8208B02CD2/ah5PcoR-s2mVIsk9Jnc_Dfg5br4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ah5PcoR-s2mVIsk9Jnc_Dfg5br4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 03 May 2025 14:52:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13622 (0x3536) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CE978, serialNumber=6A1E4F72847EB3699522C93D26773F0DF8396EBE Validity Not Before: Apr 26 14:52:31 2025 GMT Not After : May 3 14:52:31 2025 GMT Subject: CN=680cf330-4f5d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f2:ce:fc:8b:40:cc:37:5c:ef:8b:b0:a9:dd:6a: 29:92:94:f2:86:e8:c7:7d:de:78:68:86:65:8a:3a: 09:5e:9d:16:ed:b8:c5:2c:03:4e:d0:13:a0:42:2e: 69:e1:98:87:89:f4:65:ca:76:87:e4:35:cf:b4:fa: 67:2e:52:23:8f:48:64:7c:43:3d:4c:62:85:20:ba: 86:7b:3f:ec:42:40:f9:e7:a5:ee:0c:dc:7d:58:75: f0:10:ab:06:c4:b5:dc:30:a3:65:4e:a2:4f:bf:a3: 9b:3e:93:40:fe:27:ab:ac:60:7d:59:7f:fc:cb:55: 41:92:01:db:9f:75:11:70:03:b7:fd:ed:49:1d:d3: 58:78:cd:80:8f:46:77:68:64:fb:d0:80:f8:84:c6: 11:13:67:a0:c0:9e:69:d2:4f:57:65:c2:e0:83:f1: 4c:c0:f0:e5:f0:bd:ba:23:f6:0c:8c:fe:90:98:40: 7d:35:94:11:67:c5:47:bb:a2:2f:a1:81:42:a1:36: 62:6e:00:f7:e2:20:5a:66:91:55:25:40:a8:17:61: 68:55:d3:b4:37:8d:3e:86:5a:85:28:fd:d6:30:99: dc:57:93:14:a0:7b:20:30:99:ed:be:e1:2e:e6:f0: 9f:1f:c6:e5:24:bd:8b:85:63:3d:06:9c:3b:0a:f5: 57:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B7:AD:F4:EF:B3:F9:79:9D:0F:26:C6:D0:12:55:75:43:D8:26:F2:94 X509v3 Authority Key Identifier: keyid:6A:1E:4F:72:84:7E:B3:69:95:22:C9:3D:26:77:3F:0D:F8:39:6E:BE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CE978/3223F35E1D9811E28A8C2E8208B02CD2/ah5PcoR-s2mVIsk9Jnc_Dfg5br4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ah5PcoR-s2mVIsk9Jnc_Dfg5br4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CE978/3223F35E1D9811E28A8C2E8208B02CD2/ah5PcoR-s2mVIsk9Jnc_Dfg5br4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 01:6d:61:d1:4a:12:75:ae:5a:57:87:37:72:2b:23:87:a4:47: a4:66:87:fc:a3:5d:71:25:a0:1a:76:d6:f1:aa:b6:33:86:c9: fa:38:ac:b8:d7:42:c2:64:a7:00:ca:9f:16:d3:44:c0:94:27: db:47:1f:5a:e2:31:15:6e:1b:e3:38:a0:07:ac:c5:ab:2e:5b: d4:4a:13:fd:3d:52:ae:de:c7:a3:f2:7d:e3:a6:58:e5:fd:96: a0:91:83:6c:48:1e:d9:f4:5b:11:aa:8a:f9:b1:9c:a7:5e:4f: a1:fd:bf:3d:40:cd:08:58:29:34:34:a9:e3:82:0e:e5:cd:27: 36:9b:32:ee:ba:5e:8f:b0:b5:f2:2c:75:8b:ac:63:0f:b4:97: d3:bb:a7:02:c1:8c:d3:41:bb:2b:ff:a9:5d:41:22:c2:d0:f8: ca:8a:bc:03:52:95:fb:38:e1:d0:40:b0:4a:1e:00:8f:93:2f: bd:fc:b4:0c:fd:a0:8f:9d:0d:dc:18:04:06:3c:7f:c4:96:3f: 90:60:65:63:1d:56:33:5f:22:58:75:fe:70:85:de:6d:fa:02: 08:9b:02:52:61:87:33:64:6c:19:cb:a7:43:c8:28:fd:b0:3b: b0:93:75:ce:67:30:f9:9f:1b:5e:0a:0d:72:55:c2:7f:bc:4b: 0d:21:9c:5d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNTYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0U5NzgxMTAvBgNVBAUTKDZBMUU0RjcyODQ3RUIzNjk5NTIyQzkzRDI2NzczRjBE RjgzOTZFQkUwHhcNMjUwNDI2MTQ1MjMxWhcNMjUwNTAzMTQ1MjMxWjAYMRYwFAYD VQQDEw02ODBjZjMzMC00ZjVkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8s78i0DMN1zvi7Cp3WopkpTyhujHfd54aIZlijoJXp0W7bjFLANO0BOgQi5p 4ZiHifRlynaH5DXPtPpnLlIjj0hkfEM9TGKFILqGez/sQkD556XuDNx9WHXwEKsG xLXcMKNlTqJPv6ObPpNA/ierrGB9WX/8y1VBkgHbn3URcAO3/e1JHdNYeM2Aj0Z3 aGT70ID4hMYRE2egwJ5p0k9XZcLgg/FMwPDl8L26I/YMjP6QmEB9NZQRZ8VHu6Iv oYFCoTZibgD34iBaZpFVJUCoF2FoVdO0N40+hlqFKP3WMJncV5MUoHsgMJntvuEu 5vCfH8blJL2LhWM9Bpw7CvVX9wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLet9O+z +XmdDybG0BJVdUPYJvKUMB8GA1UdIwQYMBaAFGoeT3KEfrNplSLJPSZ3Pw34OW6+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRTk3OC8zMjIzRjM1RTFE OTgxMUUyOEE4QzJFODIwOEIwMkNEMi9haDVQY29SLXMybVZJc2s5Sm5jX0RmZzVi cjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FoNVBjb1ItczJtVklzazlKbmNfRGZnNWJyNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RTk3OC8zMjIzRjM1RTFEOTgxMUUyOEE4QzJFODIwOEIwMkNEMi9haDVQY29SLXMy bVZJc2s5Sm5jX0RmZzVicjQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQABbWHRShJ1rlpXhzdyKyOHpEekZof8o11xJaAadtbxqrYzhsn6OKy4 10LCZKcAyp8W00TAlCfbRx9a4jEVbhvjOKAHrMWrLlvUShP9PVKu3sej8n3jpljl /ZagkYNsSB7Z9FsRqor5sZynXk+h/b89QM0IWCk0NKnjgg7lzSc2mzLuul6PsLXy LHWLrGMPtJfTu6cCwYzTQbsr/6ldQSLC0PjKirwDUpX7OOHQQLBKHgCPky+9/LQM /aCPnQ3cGAQGPH/Elj+QYGVjHVYzXyJYdf5whd5t+gIImwJSYYczZGwZy6dDyCj9 sDuwk3XOZzD5nxteCg1yVcJ/vEsNIZxd -----END CERTIFICATE-----Generated at Sat Apr 26 23:00:53 2025 by rpki-client