$ rpki-client -vvf rpki.apnic.net/member_repository/A91A5A82/BB98A45E090811F0A493E922C4F9AE02/Wr7NjqrTfqV665OfLAsUKXSEH4o.mft File: Wr7NjqrTfqV665OfLAsUKXSEH4o.mft (raw, json) Hash identifier: jy5ec5VR2guVJX0iLLV6avS+ydSk6G2YgsOOYTfvMX8= Subject key identifier: 02:2C:6D:A6:F3:00:15:14:D9:1A:06:B3:B9:4F:3A:54:DA:18:9E:23 Authority key identifier: 5A:BE:CD:8E:AA:D3:7E:A5:7A:EB:93:9F:2C:0B:14:29:74:84:1F:8A Certificate issuer: /CN=A91A5A82/serialNumber=5ABECD8EAAD37EA57AEB939F2C0B142974841F8A Certificate serial: 24 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Wr7NjqrTfqV665OfLAsUKXSEH4o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A5A82/BB98A45E090811F0A493E922C4F9AE02/Wr7NjqrTfqV665OfLAsUKXSEH4o.mft Manifest number: 23 Signing time: Sat 31 May 2025 07:24:49 +0000 Manifest this update: Sat 31 May 2025 07:24:48 +0000 Manifest next update: Sat 07 Jun 2025 07:24:48 +0000 Files and hashes: 1: Wr7NjqrTfqV665OfLAsUKXSEH4o.crl (hash: 1vmMQWgiCjKDD2L9qX6/Rf4tEGaj76pzk6pbPKJYA9E=) 2: D0B32912090911F0A5348F26C4F9AE02.roa (hash: uW1VF7Kvr3qqb0xY8fd0nDeotf3CK4ccwfdt9+YehUk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A5A82/BB98A45E090811F0A493E922C4F9AE02/Wr7NjqrTfqV665OfLAsUKXSEH4o.crl rsync://rpki.apnic.net/member_repository/A91A5A82/BB98A45E090811F0A493E922C4F9AE02/Wr7NjqrTfqV665OfLAsUKXSEH4o.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Wr7NjqrTfqV665OfLAsUKXSEH4o.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 07:24:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 36 (0x24) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A5A82, serialNumber=5ABECD8EAAD37EA57AEB939F2C0B142974841F8A Validity Not Before: May 31 07:24:48 2025 GMT Not After : Jun 7 07:24:48 2025 GMT Subject: CN=683aaec1-fb4c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:7b:8c:33:77:28:55:e0:0f:02:b5:59:51:15: c0:f4:4a:3f:40:ac:59:a4:ba:ea:08:33:8e:20:b4: 87:e2:a6:4b:be:d9:bc:7b:31:b1:04:3f:71:25:34: ee:fb:a5:4e:73:72:28:ec:3d:52:7c:d1:7a:04:63: d3:46:52:0c:30:87:26:d7:61:00:ba:8d:a9:5a:d1: 6c:e8:08:55:78:7b:19:21:6e:49:e6:86:66:98:39: 21:b9:61:fe:75:96:d8:b0:f4:f0:3a:f9:62:e9:48: ee:fd:3f:73:cc:9b:dd:23:39:25:d9:a9:9c:e0:e6: 83:fe:35:32:c6:31:35:0b:83:ff:3b:ea:f8:1b:28: 93:7b:0d:fe:c3:c3:95:7e:d2:15:44:2b:4e:54:85: 4e:67:48:3d:2f:ce:9d:5e:dc:41:e5:6e:2b:72:b5: 73:35:69:67:06:da:ba:50:70:c5:a5:fb:f6:86:d2: 17:dc:69:32:fc:79:81:01:61:2c:2c:ce:7a:94:38: 4d:ac:e3:15:3e:1b:a4:6b:ad:17:cb:e0:ec:04:51: be:aa:42:90:75:99:e5:01:e4:2b:d5:9c:50:1c:e6: 9e:1c:f4:f7:92:f7:d5:3a:6c:7f:06:e6:dd:6e:8d: e3:f8:61:05:c8:94:58:71:24:26:ab:fa:97:c0:6f: 1d:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 02:2C:6D:A6:F3:00:15:14:D9:1A:06:B3:B9:4F:3A:54:DA:18:9E:23 X509v3 Authority Key Identifier: keyid:5A:BE:CD:8E:AA:D3:7E:A5:7A:EB:93:9F:2C:0B:14:29:74:84:1F:8A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A5A82/BB98A45E090811F0A493E922C4F9AE02/Wr7NjqrTfqV665OfLAsUKXSEH4o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Wr7NjqrTfqV665OfLAsUKXSEH4o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A5A82/BB98A45E090811F0A493E922C4F9AE02/Wr7NjqrTfqV665OfLAsUKXSEH4o.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 51:a1:9a:2e:56:dd:7e:e6:f7:ea:28:02:7f:4a:89:7e:26:ae: 3c:20:86:81:3e:8d:71:80:14:b4:98:b1:0e:8b:12:aa:4e:5e: 83:3b:5c:5f:07:33:d3:1b:b8:4f:e1:6f:e3:4d:6e:ee:cf:d7: d0:4f:69:0c:17:8b:c2:d7:2f:3f:f2:b1:78:8c:a1:ff:a2:6a: c6:b9:8a:ef:c5:57:8f:a3:40:68:20:23:a1:e9:0e:12:4a:28: 89:42:ae:f2:d6:76:84:0c:5f:c3:b6:db:f7:f1:45:b4:f0:17: bf:ff:d7:ce:62:3d:2d:a4:79:00:20:9e:87:89:6d:38:2b:c9: 12:8d:6f:0c:5a:e2:77:78:7d:35:b8:11:cf:f6:30:00:13:16: 1d:08:38:54:7d:2a:17:a2:b4:05:72:22:1c:74:56:0f:5d:7d: 30:12:b3:b3:f4:23:6d:4b:21:a1:3f:f7:7f:a5:b4:01:b1:44: ac:7b:a5:bc:b2:b9:52:e6:b5:e4:cc:99:2c:4d:5a:18:7b:f3: b3:8a:74:bc:50:a1:9b:99:07:c4:77:ce:90:1a:65:01:2d:a9: 20:b0:4a:61:69:a8:4b:00:e1:97:5f:6b:b3:99:f8:31:1b:a9: f0:09:92:9a:67:37:46:00:11:f6:da:16:25:8c:a8:c0:76:65: bf:22:c0:34 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBJDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFB NUE4MjExMC8GA1UEBRMoNUFCRUNEOEVBQUQzN0VBNTdBRUI5MzlGMkMwQjE0Mjk3 NDg0MUY4QTAeFw0yNTA1MzEwNzI0NDhaFw0yNTA2MDcwNzI0NDhaMBgxFjAUBgNV BAMTDTY4M2FhZWMxLWZiNGMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDce4wzdyhV4A8CtVlRFcD0Sj9ArFmkuuoIM44gtIfipku+2bx7MbEEP3ElNO77 pU5zcijsPVJ80XoEY9NGUgwwhybXYQC6jala0WzoCFV4exkhbknmhmaYOSG5Yf51 ltiw9PA6+WLpSO79P3PMm90jOSXZqZzg5oP+NTLGMTULg/876vgbKJN7Df7Dw5V+ 0hVEK05UhU5nSD0vzp1e3EHlbitytXM1aWcG2rpQcMWl+/aG0hfcaTL8eYEBYSws znqUOE2s4xU+G6RrrRfL4OwEUb6qQpB1meUB5CvVnFAc5p4c9PeS99U6bH8G5t1u jeP4YQXIlFhxJCar+pfAbx1dAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUAixtpvMA FRTZGgazuU86VNoYniMwHwYDVR0jBBgwFoAUWr7NjqrTfqV665OfLAsUKXSEH4ow DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUE1QTgyL0JCOThBNDVFMDkw ODExRjBBNDkzRTkyMkM0RjlBRTAyL1dyN05qcXJUZnFWNjY1T2ZMQXNVS1hTRUg0 by5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvV3I3TmpxclRmcVY2NjVPZkxBc1VLWFNFSDRvLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUE1 QTgyL0JCOThBNDVFMDkwODExRjBBNDkzRTkyMkM0RjlBRTAyL1dyN05qcXJUZnFW NjY1T2ZMQXNVS1hTRUg0by5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAFGhmi5W3X7m9+ooAn9KiX4mrjwghoE+jXGAFLSYsQ6LEqpOXoM7XF8H M9MbuE/hb+NNbu7P19BPaQwXi8LXLz/ysXiMof+iasa5iu/FV4+jQGggI6HpDhJK KIlCrvLWdoQMX8O22/fxRbTwF7//185iPS2keQAgnoeJbTgryRKNbwxa4nd4fTW4 Ec/2MAATFh0IOFR9KheitAVyIhx0Vg9dfTASs7P0I21LIaE/93+ltAGxRKx7pbyy uVLmteTMmSxNWhh787OKdLxQoZuZB8R3zpAaZQEtqSCwSmFpqEsA4Zdfa7OZ+DEb qfAJkppnN0YAEfbaFiWMqMB2Zb8iwDQ= -----END CERTIFICATE-----Generated at Sat May 31 17:50:34 2025 by rpki-client