$ rpki-client -vvf rpki.apnic.net/member_repository/A91ED571/ECD2DF96CE6F11E9A0D86D51C4F9AE02/9PFcZ17ZpcLRmVsn-1P_YP8CSeA.mft File: 9PFcZ17ZpcLRmVsn-1P_YP8CSeA.mft (raw, json) Hash identifier: yaacVdX9rS4RqxVgBP5Ffcpuc5OZDt2J+QsFy/XOc6k= Subject key identifier: D2:F6:26:F5:00:1C:CC:E6:8F:D4:C0:F6:DB:06:F6:97:27:04:F3:B7 Authority key identifier: F4:F1:5C:67:5E:D9:A5:C2:D1:99:5B:27:FB:53:FF:60:FF:02:49:E0 Certificate issuer: /CN=A91ED571/serialNumber=F4F15C675ED9A5C2D1995B27FB53FF60FF0249E0 Certificate serial: 0D4D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9PFcZ17ZpcLRmVsn-1P_YP8CSeA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91ED571/ECD2DF96CE6F11E9A0D86D51C4F9AE02/9PFcZ17ZpcLRmVsn-1P_YP8CSeA.mft Manifest number: 0D46 Signing time: Thu 24 Apr 2025 17:57:39 +0000 Manifest this update: Thu 24 Apr 2025 17:57:39 +0000 Manifest next update: Thu 01 May 2025 17:57:39 +0000 Files and hashes: 1: 9PFcZ17ZpcLRmVsn-1P_YP8CSeA.crl (hash: vXqwOcj7vZa+gW0S5khDtso9R1w3h+GMNYKefs3Xzag=) 2: C9819022CE7011E98E86DD52C4F9AE02.roa (hash: EM624Ee5dZvup/p2NN7lZAjAZv2Q+/2EJL827rz91tU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91ED571/ECD2DF96CE6F11E9A0D86D51C4F9AE02/9PFcZ17ZpcLRmVsn-1P_YP8CSeA.crl rsync://rpki.apnic.net/member_repository/A91ED571/ECD2DF96CE6F11E9A0D86D51C4F9AE02/9PFcZ17ZpcLRmVsn-1P_YP8CSeA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9PFcZ17ZpcLRmVsn-1P_YP8CSeA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 17:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3405 (0xd4d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91ED571, serialNumber=F4F15C675ED9A5C2D1995B27FB53FF60FF0249E0 Validity Not Before: Apr 24 17:57:39 2025 GMT Not After : May 1 17:57:39 2025 GMT Subject: CN=680a7b93-2057 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:14:01:5f:6d:43:7f:31:c3:6e:73:6a:95:aa: eb:2c:d6:99:03:c5:3a:20:06:e1:ed:92:6c:ad:b3: bc:27:00:ac:4f:81:d2:6a:b7:43:ff:61:5c:23:66: 59:4a:29:af:85:cb:28:32:4d:7d:9a:a5:48:38:dd: 53:b2:80:84:ba:a6:06:03:39:fb:09:a4:96:41:49: 8d:ab:a6:e2:86:62:f2:e0:66:d7:05:f1:47:ca:66: ec:9a:22:a4:9d:9e:cf:ff:26:93:a2:b8:88:39:94: c7:c5:f7:8e:6f:8a:ff:0b:ef:41:f4:89:94:59:d6: 98:fb:ed:26:3b:c3:32:2c:a4:4d:d6:b7:25:2c:73: ab:6d:25:14:44:08:cd:e6:60:05:e9:4a:a3:95:51: 1b:a5:66:c3:0d:13:6c:dd:14:bc:c9:05:98:6e:9d: 82:73:e2:7e:a9:a7:80:f5:73:ef:72:49:70:ae:a7: 27:82:4f:34:fa:64:c3:69:ac:2c:07:a4:43:3e:65: 5c:58:f2:a4:13:90:16:35:89:33:e0:db:19:7e:f0: 90:90:0a:3b:61:f9:4f:61:8e:0e:db:0c:74:41:60: 9f:fd:83:87:1b:51:fb:0d:5f:1f:86:fc:2a:83:c1: 87:09:d9:2b:9d:9c:6d:e2:85:8c:72:30:d7:55:ca: 10:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D2:F6:26:F5:00:1C:CC:E6:8F:D4:C0:F6:DB:06:F6:97:27:04:F3:B7 X509v3 Authority Key Identifier: keyid:F4:F1:5C:67:5E:D9:A5:C2:D1:99:5B:27:FB:53:FF:60:FF:02:49:E0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91ED571/ECD2DF96CE6F11E9A0D86D51C4F9AE02/9PFcZ17ZpcLRmVsn-1P_YP8CSeA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9PFcZ17ZpcLRmVsn-1P_YP8CSeA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91ED571/ECD2DF96CE6F11E9A0D86D51C4F9AE02/9PFcZ17ZpcLRmVsn-1P_YP8CSeA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 13:f3:c0:52:3e:d3:6f:d6:c9:6c:54:0c:04:55:5d:94:51:24: 31:5d:33:04:59:30:d8:d2:7a:d3:46:cb:f7:e8:5d:ea:02:e8: 88:76:9b:2f:82:b5:70:48:2c:a5:9e:c8:8f:95:80:78:5a:95: 3d:f4:2c:65:a0:fd:7a:e8:09:8d:a2:e7:4f:5a:7e:90:b2:cd: c6:af:5c:d2:e4:e0:8c:9b:25:eb:73:b6:ac:29:f0:f1:c4:f7: 33:d9:fa:a3:9c:5b:94:31:87:cb:ba:07:9f:f9:47:b5:b1:c1: 84:0e:8b:8b:69:94:13:fc:89:49:3c:27:36:12:1e:43:68:ec: 7a:25:4b:02:d8:d3:27:49:80:1f:18:01:6a:1b:ef:af:9e:8c: 98:61:81:e5:0d:7c:c8:67:e3:d6:09:ac:5d:3a:5b:13:df:e5: 18:bc:58:a8:ef:13:3e:08:8c:7b:ef:a9:d9:55:49:f2:c6:a6: b7:99:99:09:c1:7e:0b:29:fd:4c:78:f4:e9:7e:73:2a:2d:fc: 69:f5:4a:58:fe:30:9a:04:34:a5:c7:d1:38:90:a5:c1:1b:8c: 45:94:b7:f9:a9:f8:93:b0:8e:4b:7f:57:51:68:7f:db:c5:19: 32:32:1a:d7:63:08:b3:c6:6f:c2:10:e1:e2:e8:70:bb:8f:86: d2:5d:a0:c6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDU0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUQ1NzExMTAvBgNVBAUTKEY0RjE1QzY3NUVEOUE1QzJEMTk5NUIyN0ZCNTNGRjYw RkYwMjQ5RTAwHhcNMjUwNDI0MTc1NzM5WhcNMjUwNTAxMTc1NzM5WjAYMRYwFAYD VQQDEw02ODBhN2I5My0yMDU3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApRQBX21DfzHDbnNqlarrLNaZA8U6IAbh7ZJsrbO8JwCsT4HSardD/2FcI2ZZ SimvhcsoMk19mqVION1TsoCEuqYGAzn7CaSWQUmNq6bihmLy4GbXBfFHymbsmiKk nZ7P/yaToriIOZTHxfeOb4r/C+9B9ImUWdaY++0mO8MyLKRN1rclLHOrbSUURAjN 5mAF6UqjlVEbpWbDDRNs3RS8yQWYbp2Cc+J+qaeA9XPvcklwrqcngk80+mTDaaws B6RDPmVcWPKkE5AWNYkz4NsZfvCQkAo7YflPYY4O2wx0QWCf/YOHG1H7DV8fhvwq g8GHCdkrnZxt4oWMcjDXVcoQxwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNL2JvUA HMzmj9TA9tsG9pcnBPO3MB8GA1UdIwQYMBaAFPTxXGde2aXC0ZlbJ/tT/2D/Akng MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFRDU3MS9FQ0QyREY5NkNF NkYxMUU5QTBEODZENTFDNEY5QUUwMi85UEZjWjE3WnBjTFJtVnNuLTFQX1lQOENT ZUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzlQRmNaMTdacGNMUm1Wc24tMVBfWVA4Q1NlQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF RDU3MS9FQ0QyREY5NkNFNkYxMUU5QTBEODZENTFDNEY5QUUwMi85UEZjWjE3WnBj TFJtVnNuLTFQX1lQOENTZUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAT88BSPtNv1slsVAwEVV2UUSQxXTMEWTDY0nrTRsv36F3qAuiIdpsv grVwSCylnsiPlYB4WpU99CxloP166AmNoudPWn6Qss3Gr1zS5OCMmyXrc7asKfDx xPcz2fqjnFuUMYfLugef+Ue1scGEDouLaZQT/IlJPCc2Eh5DaOx6JUsC2NMnSYAf GAFqG++vnoyYYYHlDXzIZ+PWCaxdOlsT3+UYvFio7xM+CIx776nZVUnyxqa3mZkJ wX4LKf1MePTpfnMqLfxp9UpY/jCaBDSlx9E4kKXBG4xFlLf5qfiTsI5Lf1dRaH/b xRkyMhrXYwizxm/CEOHi6HC7j4bSXaDG -----END CERTIFICATE-----Generated at Sat Apr 26 12:22:41 2025 by rpki-client