$ rpki-client -vvf rpki.apnic.net/member_repository/A919C233/1FDAFD6243E611E8BC415F65C4F9AE02/28IYSbtMFwTSMZPEG3DGaxqWVi8.mft File: 28IYSbtMFwTSMZPEG3DGaxqWVi8.mft (raw, json) Hash identifier: nhdp3BxACEyG4hE6o/eqzlQHavu2qCEoLqWRJdCmoo8= Subject key identifier: FF:BB:43:5D:5B:DC:63:25:9B:D4:12:53:75:B0:52:A3:B0:55:E0:FC Authority key identifier: DB:C2:18:49:BB:4C:17:04:D2:31:93:C4:1B:70:C6:6B:1A:96:56:2F Certificate issuer: /CN=A919C233/serialNumber=DBC21849BB4C1704D23193C41B70C66B1A96562F Certificate serial: 153C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/28IYSbtMFwTSMZPEG3DGaxqWVi8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919C233/1FDAFD6243E611E8BC415F65C4F9AE02/28IYSbtMFwTSMZPEG3DGaxqWVi8.mft Manifest number: 1532 Signing time: Fri 30 May 2025 16:58:56 +0000 Manifest this update: Fri 30 May 2025 16:58:56 +0000 Manifest next update: Fri 06 Jun 2025 16:58:56 +0000 Files and hashes: 1: 28IYSbtMFwTSMZPEG3DGaxqWVi8.crl (hash: XOWPQAWvsX93mJPdPq3HmErEpbc29TvNK4te2998fg0=) 2: C355C10243E611E8843B4E66C4F9AE02.roa (hash: 5VbFHuIW6aaxrhGlGBpgNLnc8AtIEGwJvLioejJi97Q=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919C233/1FDAFD6243E611E8BC415F65C4F9AE02/28IYSbtMFwTSMZPEG3DGaxqWVi8.crl rsync://rpki.apnic.net/member_repository/A919C233/1FDAFD6243E611E8BC415F65C4F9AE02/28IYSbtMFwTSMZPEG3DGaxqWVi8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/28IYSbtMFwTSMZPEG3DGaxqWVi8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 16:58:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5436 (0x153c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919C233, serialNumber=DBC21849BB4C1704D23193C41B70C66B1A96562F Validity Not Before: May 30 16:58:56 2025 GMT Not After : Jun 6 16:58:56 2025 GMT Subject: CN=6839e3d0-e5c3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:2e:25:05:e8:33:a1:58:b0:a8:c1:22:1a:cf: 68:30:8c:b4:50:5d:aa:61:45:de:0b:0e:3d:c1:5c: 85:d9:da:99:79:66:3d:28:0e:9c:1d:a4:23:55:76: c3:b1:cc:81:bd:be:7d:45:a3:1d:c7:d4:90:0b:4e: fe:1f:ed:b6:00:33:cb:7f:48:6d:75:9d:3d:a9:2d: 1f:3a:ae:a3:7b:d8:1d:06:a8:cc:1f:bd:22:fe:ad: 1e:35:be:ba:eb:9e:a1:c2:b7:88:c9:44:a3:34:3d: ef:26:45:41:b7:2f:77:15:78:49:55:24:17:d7:f0: 50:4b:29:2e:94:aa:da:51:3a:35:89:cb:c5:f0:26: 97:2f:92:7d:44:8d:d9:fa:bf:38:c6:b0:de:c9:6b: 58:97:34:4e:35:14:01:05:bf:55:d4:43:ea:b3:da: 40:9f:a4:f9:0b:58:ff:4d:88:0a:a1:df:2f:3c:35: 86:bd:9f:7b:43:6d:04:35:c0:72:08:bf:2f:e4:3d: 19:2c:31:36:58:ad:ad:a3:60:08:c4:14:7f:35:6e: d4:41:fa:9f:8a:1c:05:9c:04:e4:dc:9a:81:b9:05: b9:b2:5c:d2:a4:bc:72:4c:30:ec:d7:b1:6f:ed:5f: 02:b8:30:3f:dc:b6:67:4b:2b:b6:1a:42:a1:0c:25: ca:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FF:BB:43:5D:5B:DC:63:25:9B:D4:12:53:75:B0:52:A3:B0:55:E0:FC X509v3 Authority Key Identifier: keyid:DB:C2:18:49:BB:4C:17:04:D2:31:93:C4:1B:70:C6:6B:1A:96:56:2F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919C233/1FDAFD6243E611E8BC415F65C4F9AE02/28IYSbtMFwTSMZPEG3DGaxqWVi8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/28IYSbtMFwTSMZPEG3DGaxqWVi8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919C233/1FDAFD6243E611E8BC415F65C4F9AE02/28IYSbtMFwTSMZPEG3DGaxqWVi8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 21:c0:fd:3c:09:5f:f3:3f:24:f8:99:41:7e:3e:1c:c0:bb:f7: 96:c9:8e:e4:d8:ca:6a:48:4a:da:5f:79:37:ec:f1:ed:42:7c: 9f:39:56:21:71:4e:3f:1f:4a:6e:56:d9:b3:c3:fb:9e:31:e9: ff:60:b9:40:e8:58:f5:66:d1:d8:e7:3d:a7:a2:34:35:77:98: 26:19:16:ea:6d:f9:87:8b:32:0e:40:80:72:cb:72:b8:32:09: 31:a3:71:e7:d5:16:d9:32:eb:3e:c3:fa:94:e9:06:19:b2:fe: ad:d2:64:7b:01:ca:1e:c6:84:b9:3f:b5:f8:db:27:aa:d9:cb: b4:c8:9d:7f:d6:97:f3:96:8e:ef:47:3f:bc:75:62:35:25:58: 4d:df:20:53:83:26:d5:28:1f:44:37:f2:15:01:45:ec:94:8e: ca:cf:ce:00:ad:48:d9:52:ea:77:42:35:d6:c1:e7:a7:a4:0d: 29:e6:7e:26:6d:38:84:b8:21:55:22:00:2a:dd:0b:90:c1:49: 8c:c2:6e:b2:63:5a:ec:b7:fd:55:e1:1d:a3:44:e6:cd:15:44: 55:ef:9b:f3:1e:93:bb:d7:ed:45:bb:e3:be:23:c0:d6:d6:61: 5a:74:80:bf:a4:89:7d:80:3c:1d:9f:54:34:14:5a:5a:b3:4c: 00:44:41:d1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICFTwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUMyMzMxMTAvBgNVBAUTKERCQzIxODQ5QkI0QzE3MDREMjMxOTNDNDFCNzBDNjZC MUE5NjU2MkYwHhcNMjUwNTMwMTY1ODU2WhcNMjUwNjA2MTY1ODU2WjAYMRYwFAYD VQQDEw02ODM5ZTNkMC1lNWMzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzC4lBegzoViwqMEiGs9oMIy0UF2qYUXeCw49wVyF2dqZeWY9KA6cHaQjVXbD scyBvb59RaMdx9SQC07+H+22ADPLf0htdZ09qS0fOq6je9gdBqjMH70i/q0eNb66 656hwreIyUSjND3vJkVBty93FXhJVSQX1/BQSykulKraUTo1icvF8CaXL5J9RI3Z +r84xrDeyWtYlzRONRQBBb9V1EPqs9pAn6T5C1j/TYgKod8vPDWGvZ97Q20ENcBy CL8v5D0ZLDE2WK2to2AIxBR/NW7UQfqfihwFnATk3JqBuQW5slzSpLxyTDDs17Fv 7V8CuDA/3LZnSyu2GkKhDCXKiQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFP+7Q11b 3GMlm9QSU3WwUqOwVeD8MB8GA1UdIwQYMBaAFNvCGEm7TBcE0jGTxBtwxmsallYv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5QzIzMy8xRkRBRkQ2MjQz RTYxMUU4QkM0MTVGNjVDNEY5QUUwMi8yOElZU2J0TUZ3VFNNWlBFRzNER2F4cVdW aTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzI4SVlTYnRNRndUU01aUEVHM0RHYXhxV1ZpOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 QzIzMy8xRkRBRkQ2MjQzRTYxMUU4QkM0MTVGNjVDNEY5QUUwMi8yOElZU2J0TUZ3 VFNNWlBFRzNER2F4cVdWaTgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAhwP08CV/zPyT4mUF+PhzAu/eWyY7k2MpqSEraX3k37PHtQnyfOVYh cU4/H0puVtmzw/ueMen/YLlA6Fj1ZtHY5z2nojQ1d5gmGRbqbfmHizIOQIByy3K4 Mgkxo3Hn1RbZMus+w/qU6QYZsv6t0mR7AcoexoS5P7X42yeq2cu0yJ1/1pfzlo7v Rz+8dWI1JVhN3yBTgybVKB9EN/IVAUXslI7Kz84ArUjZUup3QjXWweenpA0p5n4m bTiEuCFVIgAq3QuQwUmMwm6yY1rst/1V4R2jRObNFURV75vzHpO71+1Fu+O+I8DW 1mFadIC/pIl9gDwdn1Q0FFpas0wAREHR -----END CERTIFICATE-----Generated at Sat May 31 16:45:41 2025 by rpki-client