$ rpki-client -vvf rpki.apnic.net/member_repository/A91297A2/B3DFC8846D6211EEB307CE19C4F9AE02/45B7SOaYfi_fztAe0B1As_Y9sRg.mft File: 45B7SOaYfi_fztAe0B1As_Y9sRg.mft (raw, json) Hash identifier: 756CwsiXv4RfHY5oZhTmjq38VZce6wAF46fvYw7xXG0= Subject key identifier: 5B:86:6E:F5:AF:B9:80:F6:B5:77:0F:BB:DD:6D:F7:31:64:1E:45:B3 Authority key identifier: E3:90:7B:48:E6:98:7E:2F:DF:CE:D0:1E:D0:1D:40:B3:F6:3D:B1:18 Certificate issuer: /CN=A91297A2/serialNumber=E3907B48E6987E2FDFCED01ED01D40B3F63DB118 Certificate serial: 0139 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/45B7SOaYfi_fztAe0B1As_Y9sRg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91297A2/B3DFC8846D6211EEB307CE19C4F9AE02/45B7SOaYfi_fztAe0B1As_Y9sRg.mft Manifest number: 0134 Signing time: Sat 31 May 2025 04:11:11 +0000 Manifest this update: Sat 31 May 2025 04:11:10 +0000 Manifest next update: Sat 07 Jun 2025 04:11:10 +0000 Files and hashes: 1: 45B7SOaYfi_fztAe0B1As_Y9sRg.crl (hash: QE0CYCBNmBHY72m+YH7ZuF4ha/4m30z3RLF2tYFHfaI=) 2: 3802AF56829811EEB7C3F322C4F9AE02.roa (hash: /dryDqRy0DH6c/gZr4MBN4BosfeqNmHeRwKmrIx/CX8=) 3: B08503D8F8AA11EE91684140C4F9AE02.roa (hash: ZuM6BVmH6niQKuKQ1eCiPR55KnpBaOjGce45jTQXxyE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91297A2/B3DFC8846D6211EEB307CE19C4F9AE02/45B7SOaYfi_fztAe0B1As_Y9sRg.crl rsync://rpki.apnic.net/member_repository/A91297A2/B3DFC8846D6211EEB307CE19C4F9AE02/45B7SOaYfi_fztAe0B1As_Y9sRg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/45B7SOaYfi_fztAe0B1As_Y9sRg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 04:11:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 313 (0x139) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91297A2, serialNumber=E3907B48E6987E2FDFCED01ED01D40B3F63DB118 Validity Not Before: May 31 04:11:10 2025 GMT Not After : Jun 7 04:11:10 2025 GMT Subject: CN=683a815f-aa08 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ed:00:56:91:c3:50:b5:bf:8f:14:48:84:6b:77: 3d:ca:52:8b:2c:ec:bd:ee:ab:56:21:7f:8f:8a:dc: 57:4b:cc:2f:0f:6e:83:7f:80:04:a2:68:c9:af:0f: fa:81:2e:b2:22:0e:c1:48:ad:42:a5:b7:a2:5a:eb: 48:6c:54:c5:e1:56:b3:ca:93:4d:a8:b0:3d:47:54: ac:0d:9a:26:4d:c3:94:e3:f9:25:37:22:ba:1e:b8: 96:8c:92:d0:56:52:32:f9:cd:05:c5:05:d8:35:21: 4d:c9:b7:1c:ba:bc:11:00:99:b1:66:4a:54:05:5d: 13:69:31:6b:04:b8:12:2d:b7:fc:40:48:8c:c3:6e: 39:64:20:90:6a:62:dd:dc:ec:ad:1c:28:88:b3:2b: 12:86:93:ab:e6:3a:17:dc:c5:9e:15:bc:fb:d3:49: 46:d0:fe:71:c7:d6:1d:ce:35:d0:5d:54:3f:69:4c: c7:35:c8:ef:72:53:0d:a8:e8:bf:e5:f4:7f:50:32: e2:9b:1c:ce:34:b3:08:0a:96:46:48:6f:29:98:8e: 91:fb:1f:15:7f:3e:81:26:77:a1:8d:b2:7f:11:aa: 8b:ea:62:df:92:39:6a:8f:0a:11:74:7f:4d:ad:cf: 3a:8d:6d:94:76:7c:a9:36:4b:86:94:77:1e:14:2a: 94:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5B:86:6E:F5:AF:B9:80:F6:B5:77:0F:BB:DD:6D:F7:31:64:1E:45:B3 X509v3 Authority Key Identifier: keyid:E3:90:7B:48:E6:98:7E:2F:DF:CE:D0:1E:D0:1D:40:B3:F6:3D:B1:18 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91297A2/B3DFC8846D6211EEB307CE19C4F9AE02/45B7SOaYfi_fztAe0B1As_Y9sRg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/45B7SOaYfi_fztAe0B1As_Y9sRg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91297A2/B3DFC8846D6211EEB307CE19C4F9AE02/45B7SOaYfi_fztAe0B1As_Y9sRg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b3:3b:f2:61:c8:88:f3:0c:5f:bc:80:88:7d:85:99:53:fd:de: 36:60:08:60:bc:05:0f:b2:a0:05:44:e0:f1:d0:17:ec:9b:ed: 3a:2e:6d:95:76:ff:4d:3a:fc:f5:d4:67:c5:f7:d0:64:71:92: 46:58:8d:8c:25:66:ca:5e:2e:fd:e3:4b:42:13:94:38:4f:4c: ff:84:2a:ce:cd:e6:02:9f:b2:ff:bd:8d:9b:07:45:02:e3:d0: ad:f2:50:05:4d:bf:a1:76:54:ee:87:73:20:1d:83:cf:9e:34: c3:5a:2b:30:69:a0:cd:30:ba:89:a9:be:36:84:c8:be:ee:18: 12:bd:a1:a2:06:a0:ab:15:d8:76:6c:f9:fb:77:68:c0:32:14: 18:e5:c9:b4:c7:27:28:73:4a:12:a0:0d:9f:9c:7c:12:8c:fe: 70:99:02:df:5e:69:5a:8f:d8:16:0a:82:e9:46:c0:d7:8a:97: 1f:38:19:61:8d:4a:da:1f:76:9b:d7:2b:c3:93:a3:48:59:1d: 01:da:e4:5a:a6:77:7a:07:43:18:7b:27:a4:9b:a0:dc:b9:a4: 09:7f:47:5a:c8:78:43:e0:1f:22:2d:35:40:7f:15:5c:a7:84: 99:ba:e4:37:b3:4d:ab:b3:96:da:d4:1b:b6:65:ee:9a:a1:d4: b8:da:f1:78 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICATkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mjk3QTIxMTAvBgNVBAUTKEUzOTA3QjQ4RTY5ODdFMkZERkNFRDAxRUQwMUQ0MEIz RjYzREIxMTgwHhcNMjUwNTMxMDQxMTEwWhcNMjUwNjA3MDQxMTEwWjAYMRYwFAYD VQQDEw02ODNhODE1Zi1hYTA4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7QBWkcNQtb+PFEiEa3c9ylKLLOy97qtWIX+PitxXS8wvD26Df4AEomjJrw/6 gS6yIg7BSK1CpbeiWutIbFTF4VazypNNqLA9R1SsDZomTcOU4/klNyK6HriWjJLQ VlIy+c0FxQXYNSFNybccurwRAJmxZkpUBV0TaTFrBLgSLbf8QEiMw245ZCCQamLd 3OytHCiIsysShpOr5joX3MWeFbz700lG0P5xx9YdzjXQXVQ/aUzHNcjvclMNqOi/ 5fR/UDLimxzONLMICpZGSG8pmI6R+x8Vfz6BJnehjbJ/EaqL6mLfkjlqjwoRdH9N rc86jW2UdnypNkuGlHceFCqUswIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFuGbvWv uYD2tXcPu91t9zFkHkWzMB8GA1UdIwQYMBaAFOOQe0jmmH4v387QHtAdQLP2PbEY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyOTdBMi9CM0RGQzg4NDZE NjIxMUVFQjMwN0NFMTlDNEY5QUUwMi80NUI3U09hWWZpX2Z6dEFlMEIxQXNfWTlz UmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzQ1QjdTT2FZZmlfZnp0QWUwQjFBc19ZOXNSZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy OTdBMi9CM0RGQzg4NDZENjIxMUVFQjMwN0NFMTlDNEY5QUUwMi80NUI3U09hWWZp X2Z6dEFlMEIxQXNfWTlzUmcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCzO/JhyIjzDF+8gIh9hZlT/d42YAhgvAUPsqAFRODx0Bfsm+06Lm2V dv9NOvz11GfF99BkcZJGWI2MJWbKXi7940tCE5Q4T0z/hCrOzeYCn7L/vY2bB0UC 49Ct8lAFTb+hdlTuh3MgHYPPnjTDWiswaaDNMLqJqb42hMi+7hgSvaGiBqCrFdh2 bPn7d2jAMhQY5cm0xycoc0oSoA2fnHwSjP5wmQLfXmlaj9gWCoLpRsDXipcfOBlh jUraH3ab1yvDk6NIWR0B2uRapnd6B0MYeyekm6DcuaQJf0dayHhD4B8iLTVAfxVc p4SZuuQ3s02rs5ba1Bu2Ze6aodS42vF4 -----END CERTIFICATE-----Generated at Sat May 31 17:56:22 2025 by rpki-client