$ rpki-client -vvf rpki.apnic.net/member_repository/A91A7E29/56F1C532879011EC86D0441EC4F9AE02/1f9FyAWBJcJy3wRtwLjgb6owT88.mft File: 1f9FyAWBJcJy3wRtwLjgb6owT88.mft (raw, json) Hash identifier: PjS2+BVS8vGGj8kExDo/Uk66GF++IJQmhnQvrnFPGq0= Subject key identifier: BD:7F:50:5B:86:16:E4:4C:B0:02:05:8E:C9:65:E5:68:DF:F4:FD:CA Authority key identifier: D5:FF:45:C8:05:81:25:C2:72:DF:04:6D:C0:B8:E0:6F:AA:30:4F:CF Certificate issuer: /CN=A91A7E29/serialNumber=D5FF45C8058125C272DF046DC0B8E06FAA304FCF Certificate serial: 03DE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1f9FyAWBJcJy3wRtwLjgb6owT88.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A7E29/56F1C532879011EC86D0441EC4F9AE02/1f9FyAWBJcJy3wRtwLjgb6owT88.mft Manifest number: 03D6 Signing time: Sat 31 May 2025 00:48:21 +0000 Manifest this update: Sat 31 May 2025 00:48:20 +0000 Manifest next update: Sat 07 Jun 2025 00:48:20 +0000 Files and hashes: 1: 1f9FyAWBJcJy3wRtwLjgb6owT88.crl (hash: BCTKT1722gP60wVnFBlBz23/isR6xD4P2z6EpcITCb0=) 2: 99F51284A1E911EDAD7CE929C4F9AE02.roa (hash: DgFh0007lZzBIY6/Uazy8v7Lvih8jtP3rAyQ1LouyMA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A7E29/56F1C532879011EC86D0441EC4F9AE02/1f9FyAWBJcJy3wRtwLjgb6owT88.crl rsync://rpki.apnic.net/member_repository/A91A7E29/56F1C532879011EC86D0441EC4F9AE02/1f9FyAWBJcJy3wRtwLjgb6owT88.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1f9FyAWBJcJy3wRtwLjgb6owT88.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 00:48:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 990 (0x3de) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A7E29, serialNumber=D5FF45C8058125C272DF046DC0B8E06FAA304FCF Validity Not Before: May 31 00:48:20 2025 GMT Not After : Jun 7 00:48:20 2025 GMT Subject: CN=683a51d4-8256 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:f0:ae:78:9a:ac:ad:c8:01:46:91:d8:da:5a: 4c:4b:ea:a6:52:14:25:ae:5e:a3:ef:4f:63:f4:de: 85:0e:e6:bd:70:65:01:a5:18:24:02:80:01:27:a4: e6:7e:09:6f:48:a2:8e:0b:ad:cd:5f:8f:f4:ed:da: f0:d1:ab:72:6d:2d:72:1d:17:8a:9b:cd:20:4e:e8: cf:a4:90:18:aa:67:45:7c:83:17:e8:f3:f2:86:f5: 01:80:aa:a2:3a:99:2f:5d:bd:27:7d:08:25:e7:ba: 90:5c:8d:f9:6a:52:8f:fe:25:36:b8:69:c0:4a:19: de:b7:2e:c5:33:69:82:3d:80:32:f3:fb:31:23:c0: 5f:07:f3:75:e5:d6:af:72:d6:d8:30:a8:46:8b:33: fb:70:ae:e7:1a:4c:50:7f:88:1b:ad:5a:d6:f2:af: 3f:c3:63:25:61:b5:76:bc:48:95:9b:69:27:d9:ee: fb:d7:a2:64:65:ea:14:0c:30:bf:35:6d:da:c3:5e: d8:d2:fd:af:48:8a:59:fa:8e:80:44:75:80:68:c9: 2f:80:e0:ff:f4:55:f0:b3:47:2d:4c:c2:ef:c0:60: 84:49:17:b1:7f:24:0c:fe:0e:9a:0f:b6:4b:be:63: b9:b2:27:f5:21:e3:f9:95:58:9d:f1:20:03:ff:8f: 04:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BD:7F:50:5B:86:16:E4:4C:B0:02:05:8E:C9:65:E5:68:DF:F4:FD:CA X509v3 Authority Key Identifier: keyid:D5:FF:45:C8:05:81:25:C2:72:DF:04:6D:C0:B8:E0:6F:AA:30:4F:CF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A7E29/56F1C532879011EC86D0441EC4F9AE02/1f9FyAWBJcJy3wRtwLjgb6owT88.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1f9FyAWBJcJy3wRtwLjgb6owT88.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A7E29/56F1C532879011EC86D0441EC4F9AE02/1f9FyAWBJcJy3wRtwLjgb6owT88.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3b:07:0e:cc:72:ff:e1:52:f7:05:fd:ee:43:c8:a3:29:bb:37: c3:c3:bb:ad:aa:e3:97:b4:c6:69:98:2d:bd:93:66:7b:73:5c: e7:50:8d:4f:12:03:c7:65:06:5b:81:a5:9d:0d:fb:88:5d:48: 32:f5:71:db:e3:e9:0e:7a:4d:0b:14:3a:2c:5e:94:3b:20:b3: 7a:07:d8:99:80:85:a4:fc:10:62:60:a7:c9:8b:c6:d4:50:10: 88:fa:d8:dd:fd:b9:fc:4e:ff:e2:69:b0:d3:f5:74:3c:d3:23: 2c:da:b1:51:ee:00:af:16:e7:17:c9:39:bb:59:8a:90:a9:49: 35:a3:20:a0:2a:e8:56:af:42:74:78:63:30:e2:3b:98:0d:ce: 1f:bf:06:ad:89:6b:3d:ce:f4:a3:72:f2:2d:d5:2a:b3:25:d1: 19:f3:0d:7d:63:82:c7:28:f9:d2:04:6e:b1:84:3f:d3:ee:09: cd:4c:a4:9d:29:84:5d:4f:b5:4b:5c:93:c9:30:f5:37:b5:38: 56:11:83:5a:16:27:45:55:8d:37:06:c9:63:f1:78:5a:ee:02: bd:97:60:0d:e4:37:a1:b1:45:af:26:41:5b:b0:41:bc:41:16: b7:f1:e8:d0:f3:d2:de:d8:f5:6f:a8:bf:ba:96:be:3a:dd:73: 17:24:1f:c8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA94wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTdFMjkxMTAvBgNVBAUTKEQ1RkY0NUM4MDU4MTI1QzI3MkRGMDQ2REMwQjhFMDZG QUEzMDRGQ0YwHhcNMjUwNTMxMDA0ODIwWhcNMjUwNjA3MDA0ODIwWjAYMRYwFAYD VQQDEw02ODNhNTFkNC04MjU2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsPCueJqsrcgBRpHY2lpMS+qmUhQlrl6j709j9N6FDua9cGUBpRgkAoABJ6Tm fglvSKKOC63NX4/07drw0atybS1yHReKm80gTujPpJAYqmdFfIMX6PPyhvUBgKqi OpkvXb0nfQgl57qQXI35alKP/iU2uGnAShnety7FM2mCPYAy8/sxI8BfB/N15dav ctbYMKhGizP7cK7nGkxQf4gbrVrW8q8/w2MlYbV2vEiVm2kn2e7716JkZeoUDDC/ NW3aw17Y0v2vSIpZ+o6ARHWAaMkvgOD/9FXws0ctTMLvwGCESRexfyQM/g6aD7ZL vmO5sif1IeP5lVid8SAD/48E6wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFL1/UFuG FuRMsAIFjsll5Wjf9P3KMB8GA1UdIwQYMBaAFNX/RcgFgSXCct8EbcC44G+qME/P MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBN0UyOS81NkYxQzUzMjg3 OTAxMUVDODZEMDQ0MUVDNEY5QUUwMi8xZjlGeUFXQkpjSnkzd1J0d0xqZ2I2b3dU ODguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFmOUZ5QVdCSmNKeTN3UnR3TGpnYjZvd1Q4OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB N0UyOS81NkYxQzUzMjg3OTAxMUVDODZEMDQ0MUVDNEY5QUUwMi8xZjlGeUFXQkpj Snkzd1J0d0xqZ2I2b3dUODgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA7Bw7Mcv/hUvcF/e5DyKMpuzfDw7utquOXtMZpmC29k2Z7c1znUI1P EgPHZQZbgaWdDfuIXUgy9XHb4+kOek0LFDosXpQ7ILN6B9iZgIWk/BBiYKfJi8bU UBCI+tjd/bn8Tv/iabDT9XQ80yMs2rFR7gCvFucXyTm7WYqQqUk1oyCgKuhWr0J0 eGMw4juYDc4fvwatiWs9zvSjcvIt1SqzJdEZ8w19Y4LHKPnSBG6xhD/T7gnNTKSd KYRdT7VLXJPJMPU3tThWEYNaFidFVY03Bslj8Xha7gK9l2AN5DehsUWvJkFbsEG8 QRa38ejQ89Le2PVvqL+6lr463XMXJB/I -----END CERTIFICATE-----Generated at Sat May 31 17:00:21 2025 by rpki-client