$ rpki-client -vvf rpki.apnic.net/member_repository/A919C6E7/E4A0CCAE5DDD11EF830DF561C4F9AE02/cRYXAC2fDJ62W07dYfehyR_NuD4.mft File: cRYXAC2fDJ62W07dYfehyR_NuD4.mft (raw, json) Hash identifier: TxU/0XhMPAxBvu6uKaFwaa/dyaeKnm4J4VvbUaG2/fc= Subject key identifier: 17:92:35:F6:F3:D4:DF:40:09:36:D2:03:39:80:A4:A9:8D:A8:B5:A2 Authority key identifier: 71:16:17:00:2D:9F:0C:9E:B6:5B:4E:DD:61:F7:A1:C9:1F:CD:B8:3E Certificate issuer: /CN=A919C6E7/serialNumber=711617002D9F0C9EB65B4EDD61F7A1C91FCDB83E Certificate serial: 93 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cRYXAC2fDJ62W07dYfehyR_NuD4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919C6E7/E4A0CCAE5DDD11EF830DF561C4F9AE02/cRYXAC2fDJ62W07dYfehyR_NuD4.mft Manifest number: 92 Signing time: Sat 31 May 2025 05:58:18 +0000 Manifest this update: Sat 31 May 2025 05:58:17 +0000 Manifest next update: Sat 07 Jun 2025 05:58:17 +0000 Files and hashes: 1: cRYXAC2fDJ62W07dYfehyR_NuD4.crl (hash: QdCgbdR/bUIaGME6ZZFoNoXgUG+gLLTMP/bHabAhWzc=) 2: 73EF25545DDE11EFBCDB7463C4F9AE02.roa (hash: JrlJ2EvGFrH8+I8VUWwxgID9iYwpW3LVV5yISMkbZ08=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919C6E7/E4A0CCAE5DDD11EF830DF561C4F9AE02/cRYXAC2fDJ62W07dYfehyR_NuD4.crl rsync://rpki.apnic.net/member_repository/A919C6E7/E4A0CCAE5DDD11EF830DF561C4F9AE02/cRYXAC2fDJ62W07dYfehyR_NuD4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cRYXAC2fDJ62W07dYfehyR_NuD4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 05:58:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 147 (0x93) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919C6E7, serialNumber=711617002D9F0C9EB65B4EDD61F7A1C91FCDB83E Validity Not Before: May 31 05:58:17 2025 GMT Not After : Jun 7 05:58:17 2025 GMT Subject: CN=683a9a79-f3a4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:b7:7f:52:6c:80:d1:0e:6e:a1:54:bb:dc:9e: b4:3f:d9:7d:eb:71:b1:7a:f0:cd:19:10:f6:c3:33: a2:2d:1c:20:1c:85:10:31:48:af:96:f6:02:27:56: f9:f4:7b:89:f5:ce:02:b5:5c:cf:ba:5e:82:a0:87: 55:72:59:33:6e:15:00:9d:af:f6:10:a8:9b:c2:68: b5:51:15:5c:fd:e7:67:18:8b:d6:04:c8:b3:fe:e8: d0:72:bf:5b:12:3a:65:ee:d9:92:d8:3d:eb:89:63: c1:db:5b:2d:9c:27:a4:11:9a:be:79:98:1a:ed:40: 20:a2:a6:80:26:48:29:18:70:56:33:a0:16:9f:60: 23:6f:d3:a6:41:e6:a7:6f:e3:3c:5e:6d:2a:d4:80: 31:f3:35:36:54:e3:64:19:ec:65:a1:8f:d3:e4:e2: 46:ed:8e:70:f7:e4:ff:f8:54:11:77:3f:32:af:ef: f2:08:1a:91:49:dc:60:fc:c2:92:55:fe:12:67:34: 5b:55:09:0b:a4:5c:9f:2c:fb:97:c4:93:03:0f:f0: 32:7c:d9:fc:2c:85:f3:65:6e:7e:ca:75:03:c3:2d: d2:10:99:9e:9a:f3:9e:77:74:9f:bb:4c:0d:5a:ed: f5:30:cb:9c:29:d9:1c:c1:84:12:1d:8c:fd:84:a4: 28:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 17:92:35:F6:F3:D4:DF:40:09:36:D2:03:39:80:A4:A9:8D:A8:B5:A2 X509v3 Authority Key Identifier: keyid:71:16:17:00:2D:9F:0C:9E:B6:5B:4E:DD:61:F7:A1:C9:1F:CD:B8:3E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919C6E7/E4A0CCAE5DDD11EF830DF561C4F9AE02/cRYXAC2fDJ62W07dYfehyR_NuD4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cRYXAC2fDJ62W07dYfehyR_NuD4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919C6E7/E4A0CCAE5DDD11EF830DF561C4F9AE02/cRYXAC2fDJ62W07dYfehyR_NuD4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 36:8f:61:2d:9c:c0:3b:30:ef:69:d3:f2:16:8e:1c:29:41:a5: e8:e0:a5:3e:db:ba:43:e1:1b:ad:70:b4:72:f4:f3:5a:9c:67: 71:19:fe:26:60:3d:4b:65:e8:75:4a:81:8d:6d:88:15:91:91: 71:c1:2a:04:a7:20:d1:50:00:c4:b4:c0:fa:2a:04:aa:e5:6f: af:c1:2f:bc:2e:1e:cc:e7:c4:05:98:36:fc:b4:d2:02:cd:a8: 89:3a:05:b0:d1:12:51:36:c4:b5:f4:d7:9b:97:cc:51:f1:27: b9:73:b1:30:24:79:cb:0e:0b:3a:14:21:24:02:8e:1c:a6:6c: 1c:67:9b:4e:ce:b3:d9:1c:1b:32:37:99:01:9a:2f:76:d3:3a: b9:fe:ef:fc:70:20:ce:1f:1e:45:17:5e:c4:af:a2:bb:bc:f1: a2:69:10:e1:5d:fd:03:79:3d:4a:6f:99:1d:50:c4:4c:d9:2b: 3c:6a:4f:b2:f5:a1:a4:32:10:1c:a0:73:60:21:e0:ce:24:55: e1:26:25:b1:e3:f6:b8:a1:42:ab:51:65:00:c8:02:dd:74:bb: b1:eb:30:c8:f4:94:07:d4:c3:c0:3c:b1:10:99:e9:7c:19:12: 41:30:db:7e:c0:61:10:d8:b9:ef:9a:a2:26:97:3e:df:ef:82: fb:66:82:03 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAJMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUM2RTcxMTAvBgNVBAUTKDcxMTYxNzAwMkQ5RjBDOUVCNjVCNEVERDYxRjdBMUM5 MUZDREI4M0UwHhcNMjUwNTMxMDU1ODE3WhcNMjUwNjA3MDU1ODE3WjAYMRYwFAYD VQQDEw02ODNhOWE3OS1mM2E0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvLd/UmyA0Q5uoVS73J60P9l963GxevDNGRD2wzOiLRwgHIUQMUivlvYCJ1b5 9HuJ9c4CtVzPul6CoIdVclkzbhUAna/2EKibwmi1URVc/ednGIvWBMiz/ujQcr9b Ejpl7tmS2D3riWPB21stnCekEZq+eZga7UAgoqaAJkgpGHBWM6AWn2Ajb9OmQean b+M8Xm0q1IAx8zU2VONkGexloY/T5OJG7Y5w9+T/+FQRdz8yr+/yCBqRSdxg/MKS Vf4SZzRbVQkLpFyfLPuXxJMDD/AyfNn8LIXzZW5+ynUDwy3SEJmemvOed3Sfu0wN Wu31MMucKdkcwYQSHYz9hKQoHwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBeSNfbz 1N9ACTbSAzmApKmNqLWiMB8GA1UdIwQYMBaAFHEWFwAtnwyetltO3WH3ockfzbg+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5QzZFNy9FNEEwQ0NBRTVE REQxMUVGODMwREY1NjFDNEY5QUUwMi9jUllYQUMyZkRKNjJXMDdkWWZlaHlSX051 RDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NSWVhBQzJmREo2MlcwN2RZZmVoeVJfTnVENC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 QzZFNy9FNEEwQ0NBRTVEREQxMUVGODMwREY1NjFDNEY5QUUwMi9jUllYQUMyZkRK NjJXMDdkWWZlaHlSX051RDQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA2j2EtnMA7MO9p0/IWjhwpQaXo4KU+27pD4RutcLRy9PNanGdxGf4m YD1LZeh1SoGNbYgVkZFxwSoEpyDRUADEtMD6KgSq5W+vwS+8Lh7M58QFmDb8tNIC zaiJOgWw0RJRNsS19Nebl8xR8Se5c7EwJHnLDgs6FCEkAo4cpmwcZ5tOzrPZHBsy N5kBmi920zq5/u/8cCDOHx5FF17Er6K7vPGiaRDhXf0DeT1Kb5kdUMRM2Ss8ak+y 9aGkMhAcoHNgIeDOJFXhJiWx4/a4oUKrUWUAyALddLux6zDI9JQH1MPAPLEQmel8 GRJBMNt+wGEQ2LnvmqImlz7f74L7ZoID -----END CERTIFICATE-----Generated at Sat May 31 14:56:23 2025 by rpki-client