$ rpki-client -vvf rpki.apnic.net/member_repository/A91864A7/C8055FD6C92511ED80936149C4F9AE02/_0KzQ2BElUaW_-CLDuGXXGxbjW0.mft File: _0KzQ2BElUaW_-CLDuGXXGxbjW0.mft (raw, json) Hash identifier: 8gK64zg5bmHdbL6BWXnDrPXA+Csj8CeEUrmvekBa+NM= Subject key identifier: 13:ED:31:82:AD:30:F8:83:47:5D:BF:62:E9:0A:4E:56:75:DC:10:D6 Authority key identifier: FF:42:B3:43:60:44:95:46:96:FF:E0:8B:0E:E1:97:5C:6C:5B:8D:6D Certificate issuer: /CN=A91864A7/serialNumber=FF42B3436044954696FFE08B0EE1975C6C5B8D6D Certificate serial: 01B0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_0KzQ2BElUaW_-CLDuGXXGxbjW0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91864A7/C8055FD6C92511ED80936149C4F9AE02/_0KzQ2BElUaW_-CLDuGXXGxbjW0.mft Manifest number: 01A4 Signing time: Sat 31 May 2025 03:04:51 +0000 Manifest this update: Sat 31 May 2025 03:04:51 +0000 Manifest next update: Sat 07 Jun 2025 03:04:51 +0000 Files and hashes: 1: _0KzQ2BElUaW_-CLDuGXXGxbjW0.crl (hash: tHHtxX5JyPi7RCz2K9Vb4QiqQYRJ4N1+BpcZ5/sw3is=) 2: BCAE303EF6C611EE8AA17A87C4F9AE02.roa (hash: b9dTa2nX+qFG6d7y+XsHyu+bx2asCK2u/yxDxyFKOqQ=) 3: B34D1A26F6C811EEBC4BE00BC4F9AE02.roa (hash: wwr+xiQ0ICFC4K2aFb1fxrN51KszvejW5t2iwGw5e3Y=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91864A7/C8055FD6C92511ED80936149C4F9AE02/_0KzQ2BElUaW_-CLDuGXXGxbjW0.crl rsync://rpki.apnic.net/member_repository/A91864A7/C8055FD6C92511ED80936149C4F9AE02/_0KzQ2BElUaW_-CLDuGXXGxbjW0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_0KzQ2BElUaW_-CLDuGXXGxbjW0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 03:04:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 432 (0x1b0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91864A7, serialNumber=FF42B3436044954696FFE08B0EE1975C6C5B8D6D Validity Not Before: May 31 03:04:51 2025 GMT Not After : Jun 7 03:04:51 2025 GMT Subject: CN=683a71d3-8a31 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:f8:61:93:50:0e:d0:7b:2e:b9:2f:09:f2:f0: ac:0d:72:91:18:00:e8:76:8c:fe:14:9c:83:04:84: c8:71:15:92:33:38:98:61:f8:e7:a8:cd:b1:5c:a9: c0:12:a0:89:34:44:28:06:d2:1a:c8:51:8f:9d:94: 6f:30:61:50:66:3e:94:0c:67:66:90:4b:37:60:2c: 8e:16:e6:4e:29:28:af:c8:b4:8b:98:c7:bd:b9:36: 1f:c9:12:83:d0:6c:1e:67:d8:b9:38:5f:ee:92:0a: c6:d1:74:7b:47:57:5b:da:d5:d0:fa:0c:7c:d8:1a: 58:37:95:c9:30:f0:c6:fb:64:53:43:f7:bc:3e:54: 57:27:f3:50:59:51:f6:5b:1c:7c:49:66:60:a6:2b: d7:6d:a0:d4:04:9c:0a:3c:25:9e:93:29:5e:2a:cc: e1:0e:9b:80:e7:4b:13:05:57:e7:62:8a:00:af:ca: 2a:e6:ef:87:fa:9d:27:6d:b0:44:c7:ec:8e:ce:eb: 43:e3:f4:d0:77:9f:9c:fb:b5:02:3b:a0:4d:87:59: f4:e8:a9:49:4d:bc:ef:6a:3a:0f:e9:62:ab:ce:2c: f9:9c:a5:ff:85:3a:61:a9:80:a4:ab:ab:40:ec:24: 9e:5c:76:62:f1:1b:c8:f8:b8:71:8d:f9:d2:d0:79: 5b:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 13:ED:31:82:AD:30:F8:83:47:5D:BF:62:E9:0A:4E:56:75:DC:10:D6 X509v3 Authority Key Identifier: keyid:FF:42:B3:43:60:44:95:46:96:FF:E0:8B:0E:E1:97:5C:6C:5B:8D:6D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91864A7/C8055FD6C92511ED80936149C4F9AE02/_0KzQ2BElUaW_-CLDuGXXGxbjW0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_0KzQ2BElUaW_-CLDuGXXGxbjW0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91864A7/C8055FD6C92511ED80936149C4F9AE02/_0KzQ2BElUaW_-CLDuGXXGxbjW0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 74:06:27:47:89:75:1e:61:a6:4d:ae:c8:99:4f:73:91:2c:cc: a9:77:96:b2:0a:2f:85:77:bc:04:aa:77:05:0a:69:d4:57:6e: cc:d5:dd:05:17:24:3d:86:84:66:f5:d8:2a:f3:a6:86:6d:c0: b0:9b:be:3b:03:4c:b3:e7:5c:92:89:e2:ff:5e:f1:9c:76:a6: ac:36:77:a6:c4:00:aa:1c:95:0e:98:0f:29:01:75:2b:b5:b3: 46:48:bb:ea:de:48:52:a6:2c:a4:5f:32:29:48:af:5c:cd:07: 58:6b:f6:70:46:59:7b:a1:86:c3:47:ea:b7:b2:74:8a:74:31: 18:8d:dc:0a:15:20:2a:90:8c:0f:c6:f5:e3:b0:62:dc:87:c0: 79:97:31:db:89:e6:a1:1a:08:38:b4:d2:58:87:51:e7:e0:91: ca:10:19:e1:8d:2e:3a:3f:1c:aa:4e:d2:5c:96:e8:db:2f:71: fe:91:88:f0:b4:93:02:af:43:27:9e:27:b7:6f:bb:93:f8:61: 55:d8:ca:78:bc:9d:fe:2f:f9:58:00:94:93:0b:5f:39:b1:49: c6:63:b9:d7:ac:2f:07:3d:8a:e0:78:23:51:09:dd:dc:47:f2: 7a:91:c0:69:30:ab:56:c2:02:90:22:57:42:e7:38:37:12:07: 06:64:c1:0f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAbAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODY0QTcxMTAvBgNVBAUTKEZGNDJCMzQzNjA0NDk1NDY5NkZGRTA4QjBFRTE5NzVD NkM1QjhENkQwHhcNMjUwNTMxMDMwNDUxWhcNMjUwNjA3MDMwNDUxWjAYMRYwFAYD VQQDEw02ODNhNzFkMy04YTMxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApfhhk1AO0HsuuS8J8vCsDXKRGADodoz+FJyDBITIcRWSMziYYfjnqM2xXKnA EqCJNEQoBtIayFGPnZRvMGFQZj6UDGdmkEs3YCyOFuZOKSivyLSLmMe9uTYfyRKD 0GweZ9i5OF/ukgrG0XR7R1db2tXQ+gx82BpYN5XJMPDG+2RTQ/e8PlRXJ/NQWVH2 Wxx8SWZgpivXbaDUBJwKPCWekyleKszhDpuA50sTBVfnYooAr8oq5u+H+p0nbbBE x+yOzutD4/TQd5+c+7UCO6BNh1n06KlJTbzvajoP6WKrziz5nKX/hTphqYCkq6tA 7CSeXHZi8RvI+LhxjfnS0HlbEQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBPtMYKt MPiDR12/YukKTlZ13BDWMB8GA1UdIwQYMBaAFP9Cs0NgRJVGlv/giw7hl1xsW41t MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NjRBNy9DODA1NUZENkM5 MjUxMUVEODA5MzYxNDlDNEY5QUUwMi9fMEt6UTJCRWxVYVdfLUNMRHVHWFhHeGJq VzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL18wS3pRMkJFbFVhV18tQ0xEdUdYWEd4YmpXMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NjRBNy9DODA1NUZENkM5MjUxMUVEODA5MzYxNDlDNEY5QUUwMi9fMEt6UTJCRWxV YVdfLUNMRHVHWFhHeGJqVzAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB0BidHiXUeYaZNrsiZT3ORLMypd5ayCi+Fd7wEqncFCmnUV27M1d0F FyQ9hoRm9dgq86aGbcCwm747A0yz51ySieL/XvGcdqasNnemxACqHJUOmA8pAXUr tbNGSLvq3khSpiykXzIpSK9czQdYa/ZwRll7oYbDR+q3snSKdDEYjdwKFSAqkIwP xvXjsGLch8B5lzHbieahGgg4tNJYh1Hn4JHKEBnhjS46PxyqTtJclujbL3H+kYjw tJMCr0Mnnie3b7uT+GFV2Mp4vJ3+L/lYAJSTC185sUnGY7nXrC8HPYrgeCNRCd3c R/J6kcBpMKtWwgKQIldC5zg3EgcGZMEP -----END CERTIFICATE-----Generated at Sat May 31 17:11:24 2025 by rpki-client