$ rpki-client -vvf rpki.apnic.net/member_repository/A91517CF/B4155458B2C711EF916BB67FC4F9AE02/7D2Af3k8nPX84zXuFeCYREm0MJY.mft File: 7D2Af3k8nPX84zXuFeCYREm0MJY.mft (raw, json) Hash identifier: SMby1J3H/OSTF8hA1ddw41KQeUvxc5a2RHNz6JAZGnY= Subject key identifier: E9:4C:6F:97:CA:6D:2E:F2:5D:81:C8:EE:E4:0E:7E:4E:A9:33:97:1B Authority key identifier: EC:3D:80:7F:79:3C:9C:F5:FC:E3:35:EE:15:E0:98:44:49:B4:30:96 Certificate issuer: /CN=A91517CF/serialNumber=EC3D807F793C9CF5FCE335EE15E0984449B43096 Certificate serial: 5F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7D2Af3k8nPX84zXuFeCYREm0MJY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91517CF/B4155458B2C711EF916BB67FC4F9AE02/7D2Af3k8nPX84zXuFeCYREm0MJY.mft Manifest number: 5D Signing time: Sat 31 May 2025 06:42:48 +0000 Manifest this update: Sat 31 May 2025 06:42:47 +0000 Manifest next update: Sat 07 Jun 2025 06:42:47 +0000 Files and hashes: 1: 7D2Af3k8nPX84zXuFeCYREm0MJY.crl (hash: Igfx6ozs20pK+/UirG1lqhNAs6yvkxQBsB+xDEFdM1A=) 2: 18164B6AB2C811EFA702DF80C4F9AE02.roa (hash: WLNXMP0ra3REMtSs7laKuUO//z/EEyMC3rb1Y8gR3Jk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91517CF/B4155458B2C711EF916BB67FC4F9AE02/7D2Af3k8nPX84zXuFeCYREm0MJY.crl rsync://rpki.apnic.net/member_repository/A91517CF/B4155458B2C711EF916BB67FC4F9AE02/7D2Af3k8nPX84zXuFeCYREm0MJY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7D2Af3k8nPX84zXuFeCYREm0MJY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 06:42:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 95 (0x5f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91517CF, serialNumber=EC3D807F793C9CF5FCE335EE15E0984449B43096 Validity Not Before: May 31 06:42:47 2025 GMT Not After : Jun 7 06:42:47 2025 GMT Subject: CN=683aa4e8-2361 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:e0:9b:ae:d7:9c:d4:bd:b9:e9:0b:c5:4d:c8: 7d:6f:7f:24:94:bb:ce:75:32:4c:78:7c:80:29:1e: cc:c9:59:3b:90:83:b7:d7:b4:a4:93:da:d0:5e:d0: d9:2c:22:f1:4c:e2:24:cc:d4:e2:50:7f:31:9e:90: 04:1e:8a:b3:54:59:15:a5:af:fe:e3:2f:88:48:5c: bc:2f:36:6d:d5:34:4c:96:01:21:b0:d9:5b:b3:6e: fe:69:1c:2b:8a:24:7e:85:09:3e:8d:b5:87:69:56: d6:b6:a4:db:70:87:06:f4:42:87:1c:42:e4:31:c3: ce:c9:82:81:7c:9a:68:54:71:e8:5d:95:97:1a:04: 77:42:45:d4:1d:b0:a7:a3:e0:56:ac:87:9c:68:3d: a3:cf:4e:45:06:3e:4c:81:94:64:eb:28:c8:17:a4: d7:21:6d:cb:e3:38:1e:83:91:e7:04:26:d7:15:3d: 84:9f:0f:ae:71:2e:28:1f:f8:cb:40:11:40:93:a4: 38:06:1b:98:05:83:91:42:d3:1a:45:67:74:27:be: 67:f5:01:1d:c7:11:cc:ef:3e:17:62:a0:2d:5c:b4: 81:89:83:9f:de:74:91:5e:3b:eb:f0:ff:d6:19:45: 8b:cc:11:7e:73:43:57:56:67:09:d2:6a:82:e7:31: 19:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E9:4C:6F:97:CA:6D:2E:F2:5D:81:C8:EE:E4:0E:7E:4E:A9:33:97:1B X509v3 Authority Key Identifier: keyid:EC:3D:80:7F:79:3C:9C:F5:FC:E3:35:EE:15:E0:98:44:49:B4:30:96 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91517CF/B4155458B2C711EF916BB67FC4F9AE02/7D2Af3k8nPX84zXuFeCYREm0MJY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7D2Af3k8nPX84zXuFeCYREm0MJY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91517CF/B4155458B2C711EF916BB67FC4F9AE02/7D2Af3k8nPX84zXuFeCYREm0MJY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 98:d3:8d:7e:92:7f:e6:05:38:22:28:71:fd:4d:b1:4f:ae:a9: 1a:23:35:3a:8b:2f:2a:9c:31:c9:95:38:1c:91:95:12:54:9a: 5a:27:fd:53:33:bc:16:f8:d4:63:f4:42:d4:91:48:92:94:70: cb:50:bc:8e:7d:04:ae:2a:f8:12:73:94:fc:c3:89:a5:a4:2d: a6:1b:78:70:2d:dc:b2:5f:bb:3f:f9:fb:49:d2:5c:8d:ec:3c: d3:2c:82:d2:79:e5:a7:93:28:13:4e:14:37:3c:fd:19:40:ef: fa:cd:43:e6:0a:ff:e7:da:64:bf:03:89:47:14:e2:f7:28:f8: b9:5b:45:68:5e:79:7c:57:f6:01:dd:5d:1e:50:57:d8:6c:f0: ce:12:29:e6:f9:71:e4:0b:f5:9b:bc:dd:2f:1f:62:2c:c1:b2: f9:bf:7a:ff:c2:55:3c:6d:cc:39:60:f2:07:e1:03:93:7d:68: fa:e2:03:21:d2:aa:51:bf:1b:1f:2a:79:c9:00:96:8a:2e:34: 02:84:6c:bc:3a:81:49:77:86:4c:c4:f6:65:d6:82:17:f7:ee: a5:f6:27:5e:63:14:09:98:80:2b:de:c7:25:43:3a:aa:68:d1: 90:bf:10:2b:16:51:7b:eb:ed:f6:21:b2:ae:10:fd:0d:1e:76: a3:a4:a0:96 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBXzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE1 MTdDRjExMC8GA1UEBRMoRUMzRDgwN0Y3OTNDOUNGNUZDRTMzNUVFMTVFMDk4NDQ0 OUI0MzA5NjAeFw0yNTA1MzEwNjQyNDdaFw0yNTA2MDcwNjQyNDdaMBgxFjAUBgNV BAMTDTY4M2FhNGU4LTIzNjEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCg4Juu15zUvbnpC8VNyH1vfySUu851Mkx4fIApHszJWTuQg7fXtKST2tBe0Nks IvFM4iTM1OJQfzGekAQeirNUWRWlr/7jL4hIXLwvNm3VNEyWASGw2Vuzbv5pHCuK JH6FCT6NtYdpVta2pNtwhwb0QoccQuQxw87JgoF8mmhUcehdlZcaBHdCRdQdsKej 4Fash5xoPaPPTkUGPkyBlGTrKMgXpNchbcvjOB6DkecEJtcVPYSfD65xLigf+MtA EUCTpDgGG5gFg5FC0xpFZ3Qnvmf1AR3HEczvPhdioC1ctIGJg5/edJFeO+vw/9YZ RYvMEX5zQ1dWZwnSaoLnMRmzAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU6Uxvl8pt LvJdgcju5A5+TqkzlxswHwYDVR0jBBgwFoAU7D2Af3k8nPX84zXuFeCYREm0MJYw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTUxN0NGL0I0MTU1NDU4QjJD NzExRUY5MTZCQjY3RkM0RjlBRTAyLzdEMkFmM2s4blBYODR6WHVGZUNZUkVtME1K WS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvN0QyQWYzazhuUFg4NHpYdUZlQ1lSRW0wTUpZLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTUx N0NGL0I0MTU1NDU4QjJDNzExRUY5MTZCQjY3RkM0RjlBRTAyLzdEMkFmM2s4blBY ODR6WHVGZUNZUkVtME1KWS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAJjTjX6Sf+YFOCIocf1NsU+uqRojNTqLLyqcMcmVOByRlRJUmlon/VMz vBb41GP0QtSRSJKUcMtQvI59BK4q+BJzlPzDiaWkLaYbeHAt3LJfuz/5+0nSXI3s PNMsgtJ55aeTKBNOFDc8/RlA7/rNQ+YK/+faZL8DiUcU4vco+LlbRWheeXxX9gHd XR5QV9hs8M4SKeb5ceQL9Zu83S8fYizBsvm/ev/CVTxtzDlg8gfhA5N9aPriAyHS qlG/Gx8qeckAloouNAKEbLw6gUl3hkzE9mXWghf37qX2J15jFAmYgCvexyVDOqpo 0ZC/ECsWUXvr7fYhsq4Q/Q0edqOkoJY= -----END CERTIFICATE-----Generated at Sat May 31 17:51:39 2025 by rpki-client