$ rpki-client -vvf rpki.apnic.net/member_repository/A91F81AD/4CCB00902CBE11ED99824B4CC4F9AE02/pM0-Z9GyJPMlBH6fXkhKzcT2Y-w.mft File: pM0-Z9GyJPMlBH6fXkhKzcT2Y-w.mft (raw, json) Hash identifier: 2HZ6JGdm0H6sCJsq/wrhwzpGqMF2555M6Y0yo0DbvyE= Subject key identifier: 9C:B3:24:58:36:A8:EB:F8:A6:B6:A3:BA:69:91:46:BB:08:7F:5D:59 Authority key identifier: A4:CD:3E:67:D1:B2:24:F3:25:04:7E:9F:5E:48:4A:CD:C4:F6:63:EC Certificate issuer: /CN=A91F81AD/serialNumber=A4CD3E67D1B224F325047E9F5E484ACDC4F663EC Certificate serial: 021C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pM0-Z9GyJPMlBH6fXkhKzcT2Y-w.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F81AD/4CCB00902CBE11ED99824B4CC4F9AE02/pM0-Z9GyJPMlBH6fXkhKzcT2Y-w.mft Manifest number: 0216 Signing time: Fri 25 Apr 2025 01:45:10 +0000 Manifest this update: Fri 25 Apr 2025 01:45:10 +0000 Manifest next update: Fri 02 May 2025 01:45:10 +0000 Files and hashes: 1: pM0-Z9GyJPMlBH6fXkhKzcT2Y-w.crl (hash: UaLEbZXd/lHxdZ1y8iOfWMyF4hUy2dhH9zmMPlSHEIk=) 2: FA957D0A80FA11ED9B35954DC4F9AE02.roa (hash: cB+yZz7NXLEFl+NAyUDxFvEYEWhBfd/lLd6SEh+qscM=) 3: F9F81E3480FA11ED9B35954DC4F9AE02.roa (hash: uF//tcko2WVqVVcNN8K7d2s/1bV6GiNlBkTpEaTcZJA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F81AD/4CCB00902CBE11ED99824B4CC4F9AE02/pM0-Z9GyJPMlBH6fXkhKzcT2Y-w.crl rsync://rpki.apnic.net/member_repository/A91F81AD/4CCB00902CBE11ED99824B4CC4F9AE02/pM0-Z9GyJPMlBH6fXkhKzcT2Y-w.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pM0-Z9GyJPMlBH6fXkhKzcT2Y-w.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 01:45:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 540 (0x21c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F81AD, serialNumber=A4CD3E67D1B224F325047E9F5E484ACDC4F663EC Validity Not Before: Apr 25 01:45:10 2025 GMT Not After : May 2 01:45:10 2025 GMT Subject: CN=680ae926-ab44 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:f5:fb:6d:9e:dc:27:da:4d:0a:95:9f:b6:78: 3d:39:70:35:70:92:24:9e:62:bf:c6:4c:cb:d7:11: 97:9c:d0:39:4e:eb:12:93:4d:08:bc:d1:57:65:45: 17:90:96:98:1a:45:42:f9:55:de:0c:d0:7d:83:2e: bb:22:68:cb:53:50:a2:9d:14:eb:42:19:1d:d9:48: e7:0f:89:5e:e9:56:a5:3e:ae:b5:76:be:04:bf:de: b0:7c:ed:71:3a:dd:d7:61:02:81:45:4d:b6:03:dc: 2f:c8:78:06:5d:ad:28:2a:ca:65:88:53:89:51:4e: ff:5c:25:0e:31:99:22:33:74:46:85:bc:48:95:c8: 91:af:f2:bd:d3:32:bf:1b:10:58:f1:fa:49:2c:73: 90:2e:f7:97:4c:44:2a:70:42:35:a6:cc:10:c2:64: cb:c1:2e:c7:27:ad:d1:7b:7a:50:ef:b8:20:af:bc: 07:0c:92:dc:47:cc:a7:8b:d6:d3:69:f0:1d:53:54: af:79:44:32:87:ff:7d:28:80:d1:bd:a8:f8:58:f8: a4:d8:0b:14:07:80:5f:04:6e:1f:63:d5:83:76:00: 6e:0e:83:87:5f:a9:d1:ca:7c:8b:0d:c5:2e:b7:94: e2:d4:53:f7:f0:df:b3:28:1e:bb:7c:bc:47:7a:c7: c2:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9C:B3:24:58:36:A8:EB:F8:A6:B6:A3:BA:69:91:46:BB:08:7F:5D:59 X509v3 Authority Key Identifier: keyid:A4:CD:3E:67:D1:B2:24:F3:25:04:7E:9F:5E:48:4A:CD:C4:F6:63:EC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F81AD/4CCB00902CBE11ED99824B4CC4F9AE02/pM0-Z9GyJPMlBH6fXkhKzcT2Y-w.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pM0-Z9GyJPMlBH6fXkhKzcT2Y-w.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F81AD/4CCB00902CBE11ED99824B4CC4F9AE02/pM0-Z9GyJPMlBH6fXkhKzcT2Y-w.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 43:56:31:a0:fa:40:f0:64:5a:c9:36:54:b7:65:dd:6d:a3:cb: 79:cd:f4:8d:12:26:08:05:d5:85:d5:f1:ab:1f:09:c6:4f:71: 2b:04:bf:05:62:6a:39:9e:dc:62:e2:9a:be:9b:8b:26:78:2a: 1b:0b:ae:f0:51:ff:ab:94:37:fe:4e:c7:ca:27:c6:82:0a:a7: 6b:d3:95:87:02:cd:f6:cb:ef:ae:6d:f0:9e:3e:d7:ba:b8:a6: d8:a0:11:c9:c0:a8:30:7c:83:a8:30:69:7c:18:2b:e7:20:5e: e3:85:2c:90:f7:87:78:b2:fe:07:48:f7:ad:cc:06:81:03:1b: a6:2e:d4:cf:86:9b:7d:b5:0d:a7:ea:f5:95:95:c2:87:99:ff: df:14:68:3a:3a:5e:8a:41:d8:72:9a:3f:78:ac:af:ef:76:57: c5:c9:a3:2e:26:1e:c9:0e:dd:ef:95:ec:e9:d2:fa:3a:63:42: f7:89:54:30:10:25:a2:46:d9:b1:83:20:79:59:e2:1a:99:41: c9:6b:70:c8:db:9f:6a:e6:e1:66:94:db:19:ff:06:01:3c:bd: 6e:27:45:c8:4f:0a:e9:65:99:72:2d:6c:1a:d4:f9:f4:ca:f7: 23:9d:a9:2a:50:45:8e:28:2b:4f:86:cd:93:b3:8c:0d:b5:b2: cc:64:9d:6f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAhwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjgxQUQxMTAvBgNVBAUTKEE0Q0QzRTY3RDFCMjI0RjMyNTA0N0U5RjVFNDg0QUNE QzRGNjYzRUMwHhcNMjUwNDI1MDE0NTEwWhcNMjUwNTAyMDE0NTEwWjAYMRYwFAYD VQQDEw02ODBhZTkyNi1hYjQ0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4fX7bZ7cJ9pNCpWftng9OXA1cJIknmK/xkzL1xGXnNA5TusSk00IvNFXZUUX kJaYGkVC+VXeDNB9gy67ImjLU1CinRTrQhkd2UjnD4le6ValPq61dr4Ev96wfO1x Ot3XYQKBRU22A9wvyHgGXa0oKspliFOJUU7/XCUOMZkiM3RGhbxIlciRr/K90zK/ GxBY8fpJLHOQLveXTEQqcEI1pswQwmTLwS7HJ63Re3pQ77ggr7wHDJLcR8yni9bT afAdU1SveUQyh/99KIDRvaj4WPik2AsUB4BfBG4fY9WDdgBuDoOHX6nRynyLDcUu t5Ti1FP38N+zKB67fLxHesfCCQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJyzJFg2 qOv4prajummRRrsIf11ZMB8GA1UdIwQYMBaAFKTNPmfRsiTzJQR+n15ISs3E9mPs MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGODFBRC80Q0NCMDA5MDJD QkUxMUVEOTk4MjRCNENDNEY5QUUwMi9wTTAtWjlHeUpQTWxCSDZmWGtoS3pjVDJZ LXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3BNMC1aOUd5SlBNbEJINmZYa2hLemNUMlktdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG ODFBRC80Q0NCMDA5MDJDQkUxMUVEOTk4MjRCNENDNEY5QUUwMi9wTTAtWjlHeUpQ TWxCSDZmWGtoS3pjVDJZLXcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBDVjGg+kDwZFrJNlS3Zd1to8t5zfSNEiYIBdWF1fGrHwnGT3ErBL8F Ymo5ntxi4pq+m4smeCobC67wUf+rlDf+TsfKJ8aCCqdr05WHAs32y++ubfCePte6 uKbYoBHJwKgwfIOoMGl8GCvnIF7jhSyQ94d4sv4HSPetzAaBAxumLtTPhpt9tQ2n 6vWVlcKHmf/fFGg6Ol6KQdhymj94rK/vdlfFyaMuJh7JDt3vlezp0vo6Y0L3iVQw ECWiRtmxgyB5WeIamUHJa3DI259q5uFmlNsZ/wYBPL1uJ0XITwrpZZlyLWwa1Pn0 yvcjnakqUEWOKCtPhs2Ts4wNtbLMZJ1v -----END CERTIFICATE-----Generated at Sat Apr 26 16:46:08 2025 by rpki-client