$ rpki-client -vvf rpki.apnic.net/member_repository/A91836D8/32DAB29207AF11F09606E534C4F9AE02/1RCJONILodf7ySo7qZ8tafyPSog.mft File: 1RCJONILodf7ySo7qZ8tafyPSog.mft (raw, json) Hash identifier: 22zNMCk3LAC9zQCxoqArY52tO2ExglEYw94htBRNmbE= Subject key identifier: 2D:89:EB:17:51:A3:2C:07:BC:16:0B:5A:98:B0:BA:D8:9C:1A:8A:9F Authority key identifier: D5:10:89:38:D2:0B:A1:D7:FB:C9:2A:3B:A9:9F:2D:69:FC:8F:4A:88 Certificate issuer: /CN=A91836D8/serialNumber=D5108938D20BA1D7FBC92A3BA99F2D69FC8F4A88 Certificate serial: 28 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1RCJONILodf7ySo7qZ8tafyPSog.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91836D8/32DAB29207AF11F09606E534C4F9AE02/1RCJONILodf7ySo7qZ8tafyPSog.mft Manifest number: 26 Signing time: Sat 31 May 2025 07:23:36 +0000 Manifest this update: Sat 31 May 2025 07:23:36 +0000 Manifest next update: Sat 07 Jun 2025 07:23:36 +0000 Files and hashes: 1: 1RCJONILodf7ySo7qZ8tafyPSog.crl (hash: lcSoRPcSE8zOmj1rqHE1xGWZcy2Z1rFsXRspKvX2sRU=) 2: 2A0F594C07B911F0B93D3034C4F9AE02.roa (hash: r5ruoCtRcYnEcHexWC9aJqjiLOW/BTPK5UGFj2P9wTI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91836D8/32DAB29207AF11F09606E534C4F9AE02/1RCJONILodf7ySo7qZ8tafyPSog.crl rsync://rpki.apnic.net/member_repository/A91836D8/32DAB29207AF11F09606E534C4F9AE02/1RCJONILodf7ySo7qZ8tafyPSog.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1RCJONILodf7ySo7qZ8tafyPSog.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 07:23:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 40 (0x28) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91836D8, serialNumber=D5108938D20BA1D7FBC92A3BA99F2D69FC8F4A88 Validity Not Before: May 31 07:23:36 2025 GMT Not After : Jun 7 07:23:36 2025 GMT Subject: CN=683aae78-fe62 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:07:67:72:e0:8e:5c:ce:5e:ba:68:a2:08:2d: 77:31:89:2d:18:64:42:12:9d:7f:a6:05:73:57:6e: d2:33:ab:24:81:30:f0:66:11:4d:a4:1c:f8:af:85: 62:24:30:7e:9a:1e:1f:dc:74:d5:29:7a:9b:34:43: 15:b5:c3:bc:8d:a2:17:9b:c3:d4:c6:ee:ef:72:4e: a7:9c:9f:ee:7a:96:7a:bf:6b:0f:cd:38:40:ba:ce: ce:33:e7:6a:b3:e3:74:0d:45:db:48:6d:cf:ee:41: 8e:3b:2c:2e:ef:95:7d:1f:3c:05:3c:b8:43:e3:f4: 59:0a:ea:7f:38:6a:94:73:2d:ab:6a:b2:68:3a:fc: 82:26:08:7d:05:26:1f:40:ca:00:0a:9a:4a:1d:97: be:17:e3:79:bb:10:8a:b1:af:2a:8b:aa:2f:47:09: 6b:38:cb:5a:a0:67:13:6c:8d:83:3a:8b:e9:b1:88: b1:e9:2c:57:36:23:6f:c5:10:83:9c:f1:dc:fa:ed: 8e:25:7c:53:5d:2a:2f:85:31:49:8b:0b:1d:05:81: a0:d8:54:85:2b:8b:6f:32:de:3e:c8:c8:9a:f0:c7: 86:8b:c3:cc:b6:c8:c1:b6:05:cb:63:77:ad:42:c8: e6:0d:fc:45:16:6b:53:5f:8e:c9:cf:c3:26:25:cb: 1e:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2D:89:EB:17:51:A3:2C:07:BC:16:0B:5A:98:B0:BA:D8:9C:1A:8A:9F X509v3 Authority Key Identifier: keyid:D5:10:89:38:D2:0B:A1:D7:FB:C9:2A:3B:A9:9F:2D:69:FC:8F:4A:88 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91836D8/32DAB29207AF11F09606E534C4F9AE02/1RCJONILodf7ySo7qZ8tafyPSog.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1RCJONILodf7ySo7qZ8tafyPSog.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91836D8/32DAB29207AF11F09606E534C4F9AE02/1RCJONILodf7ySo7qZ8tafyPSog.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9d:a5:79:2b:76:85:78:90:3b:34:05:c1:c0:04:d9:1a:d5:a1: 5e:05:c2:49:4a:9d:56:c5:99:f7:f7:c2:b4:5b:7e:80:8c:01: c1:9f:b2:e5:b5:7e:2f:76:59:72:c5:60:5e:17:31:3e:bf:be: 20:77:f9:a8:26:16:75:bf:a4:2a:23:0f:32:95:f2:e5:87:fb: 17:b8:d1:64:a6:d8:24:c7:fc:8b:09:a8:6c:15:ad:5b:8b:19: 58:62:d6:52:c9:df:a5:01:32:db:90:c7:7b:11:46:cb:3c:01: 00:4d:4f:c9:64:b5:7f:7f:34:34:86:2a:38:b7:3c:95:ea:0b: 78:1a:69:bc:4a:a1:1e:67:f3:d6:9a:5c:89:6e:37:a7:c3:da: ce:08:20:b3:a1:50:9b:23:b1:00:b0:9e:35:fa:5a:ab:91:d3: 7c:b7:23:95:64:a3:58:14:d5:e7:b4:95:81:26:29:a0:cf:e1: 7b:75:4f:a7:d7:4d:f2:aa:26:65:36:b0:ca:ae:19:39:e8:a5: c2:26:ce:f3:04:86:37:2a:89:01:2f:f6:8f:b5:79:32:70:a0: 9e:c6:17:71:74:a1:a9:60:71:ad:b4:ab:de:8f:ad:10:de:1e: 71:82:09:f3:1a:31:6f:b8:ef:eb:06:be:98:79:a5:8a:e7:5b: 6e:b1:e6:e7 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBKDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE4 MzZEODExMC8GA1UEBRMoRDUxMDg5MzhEMjBCQTFEN0ZCQzkyQTNCQTk5RjJENjlG QzhGNEE4ODAeFw0yNTA1MzEwNzIzMzZaFw0yNTA2MDcwNzIzMzZaMBgxFjAUBgNV BAMTDTY4M2FhZTc4LWZlNjIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDTB2dy4I5czl66aKIILXcxiS0YZEISnX+mBXNXbtIzqySBMPBmEU2kHPivhWIk MH6aHh/cdNUpeps0QxW1w7yNohebw9TG7u9yTqecn+56lnq/aw/NOEC6zs4z52qz 43QNRdtIbc/uQY47LC7vlX0fPAU8uEPj9FkK6n84apRzLatqsmg6/IImCH0FJh9A ygAKmkodl74X43m7EIqxryqLqi9HCWs4y1qgZxNsjYM6i+mxiLHpLFc2I2/FEIOc 8dz67Y4lfFNdKi+FMUmLCx0FgaDYVIUri28y3j7IyJrwx4aLw8y2yMG2Bctjd61C yOYN/EUWa1NfjsnPwyYlyx71AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQULYnrF1Gj LAe8FgtamLC62Jwaip8wHwYDVR0jBBgwFoAU1RCJONILodf7ySo7qZ8tafyPSogw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTgzNkQ4LzMyREFCMjkyMDdB RjExRjA5NjA2RTUzNEM0RjlBRTAyLzFSQ0pPTklMb2RmN3lTbzdxWjh0YWZ5UFNv Zy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvMVJDSk9OSUxvZGY3eVNvN3FaOHRhZnlQU29nLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTgz NkQ4LzMyREFCMjkyMDdBRjExRjA5NjA2RTUzNEM0RjlBRTAyLzFSQ0pPTklMb2Rm N3lTbzdxWjh0YWZ5UFNvZy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAJ2leSt2hXiQOzQFwcAE2RrVoV4FwklKnVbFmff3wrRbfoCMAcGfsuW1 fi92WXLFYF4XMT6/viB3+agmFnW/pCojDzKV8uWH+xe40WSm2CTH/IsJqGwVrVuL GVhi1lLJ36UBMtuQx3sRRss8AQBNT8lktX9/NDSGKji3PJXqC3gaabxKoR5n89aa XIluN6fD2s4IILOhUJsjsQCwnjX6WquR03y3I5Vko1gU1ee0lYEmKaDP4Xt1T6fX TfKqJmU2sMquGTnopcImzvMEhjcqiQEv9o+1eTJwoJ7GF3F0oalgca20q96PrRDe HnGCCfMaMW+47+sGvph5pYrnW26x5uc= -----END CERTIFICATE-----Generated at Sat May 31 16:33:05 2025 by rpki-client