$ rpki-client -vvf rpki.apnic.net/member_repository/A91799A0/40EDA11E9AE811EC974B491CC4F9AE02/N-A1JLWEfb6tAP43jEar0MpwRfg.mft File: N-A1JLWEfb6tAP43jEar0MpwRfg.mft (raw, json) Hash identifier: uRBXPXvk/j6fpSfygiff8g0PnqqBB/7R69ncANf3sfk= Subject key identifier: 8A:01:44:62:65:5C:E4:30:35:24:A4:93:0E:F7:52:60:99:CC:B1:31 Authority key identifier: 37:E0:35:24:B5:84:7D:BE:AD:00:FE:37:8C:46:AB:D0:CA:70:45:F8 Certificate issuer: /CN=A91799A0/serialNumber=37E03524B5847DBEAD00FE378C46ABD0CA7045F8 Certificate serial: 03AD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/N-A1JLWEfb6tAP43jEar0MpwRfg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91799A0/40EDA11E9AE811EC974B491CC4F9AE02/N-A1JLWEfb6tAP43jEar0MpwRfg.mft Manifest number: 03A1 Signing time: Sat 31 May 2025 00:57:54 +0000 Manifest this update: Sat 31 May 2025 00:57:54 +0000 Manifest next update: Sat 07 Jun 2025 00:57:54 +0000 Files and hashes: 1: N-A1JLWEfb6tAP43jEar0MpwRfg.crl (hash: L6izcdKk5x57pmPlFhdQZeuJ2r/HH6s93A81tbF8l9A=) 2: 99C173847DA711EFBC48DB25C4F9AE02.roa (hash: BrxJSBI7Q6Tw0excD7qGChxBI2yuS7vr/0+QLL4MRIg=) 3: B0A47CAE7DA711EFB7190E26C4F9AE02.roa (hash: MnBCnb88Lb1soYhMr2JBZDZOHnyxIxINjkfdJ2fBlW0=) 4: 46A569387DA911EFAC4E642AC4F9AE02.roa (hash: f8XNdnN9MpGjh5uhvA20BgKfLLbWC1Eb3g7qFqX+uVY=) 5: F39CE41C7C3811EFBF44AF4FC4F9AE02.roa (hash: qYKHA79o/QNNLBRngvTLprJN4A1dHBhKA8ix5QbqNOU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91799A0/40EDA11E9AE811EC974B491CC4F9AE02/N-A1JLWEfb6tAP43jEar0MpwRfg.crl rsync://rpki.apnic.net/member_repository/A91799A0/40EDA11E9AE811EC974B491CC4F9AE02/N-A1JLWEfb6tAP43jEar0MpwRfg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/N-A1JLWEfb6tAP43jEar0MpwRfg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 00:57:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 941 (0x3ad) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91799A0, serialNumber=37E03524B5847DBEAD00FE378C46ABD0CA7045F8 Validity Not Before: May 31 00:57:54 2025 GMT Not After : Jun 7 00:57:54 2025 GMT Subject: CN=683a5412-a07b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:fb:72:3c:b8:a9:a8:c5:61:f2:4b:64:5e:eb: 42:b8:cf:0e:52:aa:4c:21:36:f5:f2:7b:75:c3:b2: 23:e2:08:8a:75:90:e0:38:4f:a7:d8:d8:48:f6:ba: d0:39:aa:9e:f3:bd:c3:4c:f3:c8:79:84:64:18:34: 63:ff:e6:66:c6:88:d6:7f:46:ed:fe:bb:fb:d7:db: ce:d1:e4:31:1a:50:ab:0a:4b:47:27:ee:c2:a6:e2: f2:d2:44:e6:ad:68:22:92:36:3b:55:a5:bd:ef:04: 27:a4:38:3c:9a:aa:08:55:18:6d:d4:b9:7a:5b:ed: 6f:17:39:aa:9b:64:c4:95:c9:9c:26:87:ce:37:f2: ca:b7:f8:c1:e9:8c:b5:da:2d:9d:fe:1e:08:c8:aa: 09:c7:b6:d8:97:0b:8e:72:8e:af:80:7a:71:9c:7a: 76:7e:39:c6:82:0b:8b:41:69:51:d5:0f:12:73:b4: 9b:17:4a:99:e6:f6:f8:0f:64:bc:f7:e5:39:45:dd: 37:92:9c:f1:46:3e:04:78:2f:cc:83:d8:8b:f8:2d: ef:64:d7:bb:4e:61:d4:d1:69:ce:1b:ee:65:4e:d1: e6:a6:f8:24:b6:8f:c5:38:81:f4:51:7d:68:35:aa: a2:ee:58:b2:f4:60:a2:44:e6:75:b1:da:8b:8e:11: 07:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8A:01:44:62:65:5C:E4:30:35:24:A4:93:0E:F7:52:60:99:CC:B1:31 X509v3 Authority Key Identifier: keyid:37:E0:35:24:B5:84:7D:BE:AD:00:FE:37:8C:46:AB:D0:CA:70:45:F8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91799A0/40EDA11E9AE811EC974B491CC4F9AE02/N-A1JLWEfb6tAP43jEar0MpwRfg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/N-A1JLWEfb6tAP43jEar0MpwRfg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91799A0/40EDA11E9AE811EC974B491CC4F9AE02/N-A1JLWEfb6tAP43jEar0MpwRfg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 37:55:71:4a:f0:06:77:0c:0e:d9:44:11:b0:cc:e8:23:64:c6: 95:f7:92:f3:d8:97:b9:6f:c8:22:41:56:95:2c:61:eb:4b:2d: 4f:7f:88:6c:0e:37:fd:92:e3:85:a6:66:66:65:a2:bf:ae:ac: 33:68:e4:cb:22:85:9e:8d:ed:3c:00:72:31:cf:19:e3:3a:31: 0b:71:bd:af:86:26:e1:88:f2:4a:39:00:53:49:f6:eb:11:33: 48:77:6f:a2:e8:1d:30:2f:4a:d8:ef:19:5e:2e:48:32:48:f9: e2:eb:30:97:5b:f6:41:14:35:c5:fc:a0:8e:fd:1c:8a:6d:e1: 36:cd:62:70:7d:0a:cd:24:78:3b:32:d7:67:31:d0:7c:92:2b: 1c:c5:32:46:a9:ff:ea:fc:2d:7e:08:71:8f:99:b3:0b:29:40: 7b:44:b6:b6:43:5e:98:24:ec:e6:f5:4f:49:f1:01:bd:5c:ec: aa:07:4b:d4:c6:47:76:bd:06:25:fc:84:b8:5d:e0:70:56:59: bc:c5:22:e9:c0:3e:18:6a:a7:f5:50:81:1a:1f:36:96:59:a1: 6e:ff:4f:5f:fa:4f:c5:ab:85:21:70:df:84:ed:1d:d7:45:07: 81:07:5f:bb:d3:12:28:01:c0:12:62:ff:68:ac:73:db:62:2d: 95:91:ff:70 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA60wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Nzk5QTAxMTAvBgNVBAUTKDM3RTAzNTI0QjU4NDdEQkVBRDAwRkUzNzhDNDZBQkQw Q0E3MDQ1RjgwHhcNMjUwNTMxMDA1NzU0WhcNMjUwNjA3MDA1NzU0WjAYMRYwFAYD VQQDEw02ODNhNTQxMi1hMDdiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0PtyPLipqMVh8ktkXutCuM8OUqpMITb18nt1w7Ij4giKdZDgOE+n2NhI9rrQ Oaqe873DTPPIeYRkGDRj/+ZmxojWf0bt/rv719vO0eQxGlCrCktHJ+7CpuLy0kTm rWgikjY7VaW97wQnpDg8mqoIVRht1Ll6W+1vFzmqm2TElcmcJofON/LKt/jB6Yy1 2i2d/h4IyKoJx7bYlwuOco6vgHpxnHp2fjnGgguLQWlR1Q8Sc7SbF0qZ5vb4D2S8 9+U5Rd03kpzxRj4EeC/Mg9iL+C3vZNe7TmHU0WnOG+5lTtHmpvgkto/FOIH0UX1o Naqi7liy9GCiROZ1sdqLjhEH9wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIoBRGJl XOQwNSSkkw73UmCZzLExMB8GA1UdIwQYMBaAFDfgNSS1hH2+rQD+N4xGq9DKcEX4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3OTlBMC80MEVEQTExRTlB RTgxMUVDOTc0QjQ5MUNDNEY5QUUwMi9OLUExSkxXRWZiNnRBUDQzakVhcjBNcHdS ZmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL04tQTFKTFdFZmI2dEFQNDNqRWFyME1wd1JmZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 OTlBMC80MEVEQTExRTlBRTgxMUVDOTc0QjQ5MUNDNEY5QUUwMi9OLUExSkxXRWZi NnRBUDQzakVhcjBNcHdSZmcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA3VXFK8AZ3DA7ZRBGwzOgjZMaV95Lz2Je5b8giQVaVLGHrSy1Pf4hs Djf9kuOFpmZmZaK/rqwzaOTLIoWeje08AHIxzxnjOjELcb2vhibhiPJKOQBTSfbr ETNId2+i6B0wL0rY7xleLkgySPni6zCXW/ZBFDXF/KCO/RyKbeE2zWJwfQrNJHg7 MtdnMdB8kiscxTJGqf/q/C1+CHGPmbMLKUB7RLa2Q16YJOzm9U9J8QG9XOyqB0vU xkd2vQYl/IS4XeBwVlm8xSLpwD4Yaqf1UIEaHzaWWaFu/09f+k/Fq4UhcN+E7R3X RQeBB1+70xIoAcASYv9orHPbYi2Vkf9w -----END CERTIFICATE-----Generated at Sat May 31 16:33:12 2025 by rpki-client