$ rpki-client -vvf rpki.apnic.net/member_repository/A91A5201/45AAA1E81B5511F0A395B813C4F9AE02/3uW4vIUKW2vLRtfjtMl-i4Mop6A.mft File: 3uW4vIUKW2vLRtfjtMl-i4Mop6A.mft (raw, json) Hash identifier: cB0lqetB0mnn798w42xiHbf606wskIOcBoyhNVVssec= Subject key identifier: 49:80:D1:06:B7:7E:29:D9:B1:CC:15:FD:8B:47:E8:F2:6A:41:F8:89 Authority key identifier: DE:E5:B8:BC:85:0A:5B:6B:CB:46:D7:E3:B4:C9:7E:8B:83:28:A7:A0 Certificate issuer: /CN=A91A5201/serialNumber=DEE5B8BC850A5B6BCB46D7E3B4C97E8B8328A7A0 Certificate serial: 18 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3uW4vIUKW2vLRtfjtMl-i4Mop6A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A5201/45AAA1E81B5511F0A395B813C4F9AE02/3uW4vIUKW2vLRtfjtMl-i4Mop6A.mft Manifest number: 17 Signing time: Sat 31 May 2025 07:31:36 +0000 Manifest this update: Sat 31 May 2025 07:31:36 +0000 Manifest next update: Sat 07 Jun 2025 07:31:36 +0000 Files and hashes: 1: 3uW4vIUKW2vLRtfjtMl-i4Mop6A.crl (hash: St1OQm9ENvwLogngxEPAVwNOJVZQ+Ch40jpWmGamwd4=) 2: D0CA23541BC611F09FDAC047C4F9AE02.roa (hash: KE/ITB6hhJ+i5ZAAKHW4Wk+MiRqF5kXhTWgdF88Y+V8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A5201/45AAA1E81B5511F0A395B813C4F9AE02/3uW4vIUKW2vLRtfjtMl-i4Mop6A.crl rsync://rpki.apnic.net/member_repository/A91A5201/45AAA1E81B5511F0A395B813C4F9AE02/3uW4vIUKW2vLRtfjtMl-i4Mop6A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3uW4vIUKW2vLRtfjtMl-i4Mop6A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 07:31:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 24 (0x18) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A5201, serialNumber=DEE5B8BC850A5B6BCB46D7E3B4C97E8B8328A7A0 Validity Not Before: May 31 07:31:36 2025 GMT Not After : Jun 7 07:31:36 2025 GMT Subject: CN=683ab058-4678 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:db:17:e8:9e:a9:91:66:2a:0c:84:d7:55:97: 81:47:07:cc:98:2b:19:ba:ec:99:99:b7:4f:79:de: 3a:0a:6a:3b:38:a6:e7:68:4f:ab:dc:9a:fe:14:42: 8a:ec:90:0a:52:2e:b2:20:bf:ca:1f:0c:1b:d1:4a: 8f:d0:ed:51:1d:01:1e:1b:1f:39:d3:e2:b2:2f:1e: b0:42:77:99:66:dc:71:3b:5d:3f:a7:08:39:df:a1: c2:e7:62:c2:11:f3:ec:21:c1:55:f9:4c:d8:35:bf: 04:8c:44:35:ed:09:ae:d2:aa:ab:47:f3:5b:87:5b: a4:97:43:11:38:31:d6:fe:f7:68:e6:d9:fd:a5:2f: 03:17:c4:24:ad:41:57:0c:29:4f:d6:9b:c5:35:45: 81:79:16:53:3d:ac:6d:81:71:08:65:ad:16:77:fe: 16:10:b4:2e:18:00:c8:88:8f:a0:99:07:4c:11:f8: aa:1c:2d:f7:c6:59:7e:4e:ce:02:64:b1:83:83:2d: 34:73:24:31:97:a0:42:f4:d6:82:4e:77:07:1f:1f: 35:3e:de:ca:4f:ae:5e:97:4b:f2:98:94:8f:d4:4d: ca:70:5b:5f:51:a0:3b:8a:05:c2:49:bd:7a:7c:7f: a4:92:e6:3a:bf:64:a7:88:eb:20:f0:3e:5f:3d:d0: 81:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 49:80:D1:06:B7:7E:29:D9:B1:CC:15:FD:8B:47:E8:F2:6A:41:F8:89 X509v3 Authority Key Identifier: keyid:DE:E5:B8:BC:85:0A:5B:6B:CB:46:D7:E3:B4:C9:7E:8B:83:28:A7:A0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A5201/45AAA1E81B5511F0A395B813C4F9AE02/3uW4vIUKW2vLRtfjtMl-i4Mop6A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3uW4vIUKW2vLRtfjtMl-i4Mop6A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A5201/45AAA1E81B5511F0A395B813C4F9AE02/3uW4vIUKW2vLRtfjtMl-i4Mop6A.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 58:4e:ed:ee:d8:65:10:7d:87:3f:86:d7:83:74:11:27:1a:1e: a1:1a:6c:56:b1:8a:2c:c7:e2:ea:bf:b2:60:61:23:b8:0e:dd: ad:cd:94:02:b1:31:06:8d:5a:e5:35:67:84:7f:30:ae:95:55: 13:75:75:de:2c:a9:e3:f4:85:6b:37:69:8d:22:d4:bd:fa:a6: ed:01:03:0c:a4:45:a7:b8:30:cb:6e:de:86:02:dd:b7:f9:6b: 3f:51:32:f0:c5:cc:1b:f0:98:cc:44:61:30:bc:2f:1c:70:d9: 1b:fe:69:07:8b:41:a1:6d:c3:b8:7d:33:44:b3:65:7a:fd:5c: 20:27:11:17:b9:21:6d:98:a2:92:27:89:0b:d2:f6:5c:bf:ca: 2c:ea:c0:8d:19:9d:fe:a7:ab:40:6e:84:67:c7:b0:e7:5c:4a: 96:f1:dc:bd:69:48:f5:ca:82:b5:71:28:53:ec:fe:52:ad:24: 0a:cf:2f:aa:30:ef:60:b9:8f:57:5e:0d:3f:10:50:91:97:c8: df:d7:e0:42:1d:a4:28:ee:c6:ac:f6:20:c0:4e:81:40:b3:d8: aa:3d:14:9c:e2:4c:81:a7:a8:bd:7a:80:10:a2:15:51:1d:47: 1f:d6:50:64:17:9a:90:3d:d8:75:8a:e7:b2:77:62:5f:02:9c: 80:7e:d9:94 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBGDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFB NTIwMTExMC8GA1UEBRMoREVFNUI4QkM4NTBBNUI2QkNCNDZEN0UzQjRDOTdFOEI4 MzI4QTdBMDAeFw0yNTA1MzEwNzMxMzZaFw0yNTA2MDcwNzMxMzZaMBgxFjAUBgNV BAMTDTY4M2FiMDU4LTQ2NzgwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCh2xfonqmRZioMhNdVl4FHB8yYKxm67JmZt0953joKajs4pudoT6vcmv4UQors kApSLrIgv8ofDBvRSo/Q7VEdAR4bHznT4rIvHrBCd5lm3HE7XT+nCDnfocLnYsIR 8+whwVX5TNg1vwSMRDXtCa7SqqtH81uHW6SXQxE4Mdb+92jm2f2lLwMXxCStQVcM KU/Wm8U1RYF5FlM9rG2BcQhlrRZ3/hYQtC4YAMiIj6CZB0wR+KocLffGWX5OzgJk sYODLTRzJDGXoEL01oJOdwcfHzU+3spPrl6XS/KYlI/UTcpwW19RoDuKBcJJvXp8 f6SS5jq/ZKeI6yDwPl890IG9AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUSYDRBrd+ KdmxzBX9i0fo8mpB+IkwHwYDVR0jBBgwFoAU3uW4vIUKW2vLRtfjtMl+i4Mop6Aw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUE1MjAxLzQ1QUFBMUU4MUI1 NTExRjBBMzk1QjgxM0M0RjlBRTAyLzN1VzR2SVVLVzJ2TFJ0Zmp0TWwtaTRNb3A2 QS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvM3VXNHZJVUtXMnZMUnRmanRNbC1pNE1vcDZBLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUE1 MjAxLzQ1QUFBMUU4MUI1NTExRjBBMzk1QjgxM0M0RjlBRTAyLzN1VzR2SVVLVzJ2 TFJ0Zmp0TWwtaTRNb3A2QS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAFhO7e7YZRB9hz+G14N0EScaHqEabFaxiizH4uq/smBhI7gO3a3NlAKx MQaNWuU1Z4R/MK6VVRN1dd4sqeP0hWs3aY0i1L36pu0BAwykRae4MMtu3oYC3bf5 az9RMvDFzBvwmMxEYTC8Lxxw2Rv+aQeLQaFtw7h9M0SzZXr9XCAnERe5IW2YopIn iQvS9ly/yizqwI0Znf6nq0BuhGfHsOdcSpbx3L1pSPXKgrVxKFPs/lKtJArPL6ow 72C5j1deDT8QUJGXyN/X4EIdpCjuxqz2IMBOgUCz2Ko9FJziTIGnqL16gBCiFVEd Rx/WUGQXmpA92HWK57J3Yl8CnIB+2ZQ= -----END CERTIFICATE-----Generated at Sat May 31 17:57:46 2025 by rpki-client