$ rpki-client -vvf rpki.apnic.net/member_repository/A91A93B6/70BCFCE07C5711EDA8107866C4F9AE02/7f0U22_TsCp5NdqtR_wCnzpwTEA.mft File: 7f0U22_TsCp5NdqtR_wCnzpwTEA.mft (raw, json) Hash identifier: i1hrrEysGIrKfw0IfErSjjj5WH9Q71Nk0Qodw6IcltE= Subject key identifier: 5F:F7:F5:F5:F1:AC:16:F5:15:FB:B4:7B:09:10:15:E8:47:66:C4:A8 Authority key identifier: ED:FD:14:DB:6F:D3:B0:2A:79:35:DA:AD:47:FC:02:9F:3A:70:4C:40 Certificate issuer: /CN=A91A93B6/serialNumber=EDFD14DB6FD3B02A7935DAAD47FC029F3A704C40 Certificate serial: 01D7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7f0U22_TsCp5NdqtR_wCnzpwTEA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A93B6/70BCFCE07C5711EDA8107866C4F9AE02/7f0U22_TsCp5NdqtR_wCnzpwTEA.mft Manifest number: 01D1 Signing time: Sat 31 May 2025 02:37:51 +0000 Manifest this update: Sat 31 May 2025 02:37:50 +0000 Manifest next update: Sat 07 Jun 2025 02:37:50 +0000 Files and hashes: 1: 7f0U22_TsCp5NdqtR_wCnzpwTEA.crl (hash: xlIxwJdVIlh3+BsnN7HZGIOiLJjOYDLGpnePBsgVbNM=) 2: 780A3032CB3211EE953DEF37C4F9AE02.roa (hash: bI9ehsJkdKReP7tO6LRGZVdy5KgC9pIKmuFrjzQkdWA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A93B6/70BCFCE07C5711EDA8107866C4F9AE02/7f0U22_TsCp5NdqtR_wCnzpwTEA.crl rsync://rpki.apnic.net/member_repository/A91A93B6/70BCFCE07C5711EDA8107866C4F9AE02/7f0U22_TsCp5NdqtR_wCnzpwTEA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7f0U22_TsCp5NdqtR_wCnzpwTEA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 02:37:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 471 (0x1d7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A93B6, serialNumber=EDFD14DB6FD3B02A7935DAAD47FC029F3A704C40 Validity Not Before: May 31 02:37:50 2025 GMT Not After : Jun 7 02:37:50 2025 GMT Subject: CN=683a6b7e-4ba9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ee:43:70:c3:0e:cb:03:f1:30:bd:46:40:1b:a8: c4:e9:b3:f3:1a:b3:32:c8:b6:f4:4c:6c:e1:2c:78: 34:87:48:d5:18:d4:a7:8a:6f:88:9c:b3:20:ca:22: 16:0b:e9:1f:19:f7:74:56:a5:56:78:6c:f8:43:c4: ca:95:3e:7b:d4:45:78:33:70:4d:88:1b:d2:37:cd: e4:7c:52:71:10:fb:ef:06:20:27:d1:4e:bc:33:e6: c5:dd:fe:e0:dd:07:52:97:ad:24:21:34:76:4b:e3: 4c:e6:e6:4f:4c:47:b0:85:cf:7d:c1:cf:3f:cc:86: 4d:74:a0:a1:81:a2:9b:de:70:87:e1:8f:7c:02:39: d4:ed:d5:e5:96:ca:d0:9c:19:bd:1c:1a:50:e3:ef: 0a:39:fc:3b:e9:f1:76:06:40:fc:43:f3:d0:a0:34: d0:eb:0c:60:1f:23:3c:cc:93:e6:26:49:04:8a:60: e0:31:b9:8c:b4:f7:12:2b:38:e7:fe:3e:d3:83:dc: f9:33:f1:0d:62:2a:a4:04:26:81:d1:dc:1a:03:85: c6:49:61:ca:1f:8d:53:96:18:9c:5f:c4:e4:3d:0b: 1d:1a:03:48:8c:ac:55:cc:65:e4:d5:b3:6e:22:f4: 86:09:e9:50:61:17:78:53:a5:c6:73:57:9d:55:70: 92:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5F:F7:F5:F5:F1:AC:16:F5:15:FB:B4:7B:09:10:15:E8:47:66:C4:A8 X509v3 Authority Key Identifier: keyid:ED:FD:14:DB:6F:D3:B0:2A:79:35:DA:AD:47:FC:02:9F:3A:70:4C:40 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A93B6/70BCFCE07C5711EDA8107866C4F9AE02/7f0U22_TsCp5NdqtR_wCnzpwTEA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7f0U22_TsCp5NdqtR_wCnzpwTEA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A93B6/70BCFCE07C5711EDA8107866C4F9AE02/7f0U22_TsCp5NdqtR_wCnzpwTEA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 80:58:85:4a:e9:e5:7e:ed:d6:a9:82:3c:3b:70:83:68:87:97: de:e6:fc:1f:f5:ad:49:34:7d:f0:06:c8:b7:71:d2:29:ea:3e: cb:90:12:c2:47:e9:c9:3c:1d:6c:9f:3a:22:4b:5f:a4:18:19: 83:ac:b3:e6:33:11:7c:34:20:cf:1a:28:49:32:22:3d:5a:b0: 24:96:cd:6c:af:75:09:7b:de:a0:b2:07:16:39:47:1a:ed:4d: a3:03:79:04:c7:b4:6c:31:2e:3d:8e:d4:d7:c6:e6:ff:7e:b5: 53:aa:4e:e1:89:09:06:86:34:2a:5f:54:56:4b:7b:8e:61:e4: c8:49:2f:17:2f:13:44:23:43:0d:19:68:63:bc:d3:d0:94:a1: c9:f4:c7:08:e2:01:e5:b6:e6:5f:a6:e3:1b:c3:d3:f5:a0:64: 7b:51:5c:51:de:ed:9c:d4:98:23:80:c4:6c:e4:c7:74:a2:14: ad:1d:ef:c5:37:b3:81:22:49:35:7a:1a:d3:32:ed:17:eb:11: d7:5d:03:80:31:86:65:26:39:10:7d:65:52:f1:39:bf:04:8c: 54:26:5c:f0:7a:6b:ca:26:14:ae:aa:68:92:56:04:36:ab:9c: 9a:30:23:e2:bb:b5:2b:c8:fd:04:0d:79:11:30:f0:2c:3e:35: 65:a7:1c:ae -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAdcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTkzQjYxMTAvBgNVBAUTKEVERkQxNERCNkZEM0IwMkE3OTM1REFBRDQ3RkMwMjlG M0E3MDRDNDAwHhcNMjUwNTMxMDIzNzUwWhcNMjUwNjA3MDIzNzUwWjAYMRYwFAYD VQQDEw02ODNhNmI3ZS00YmE5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7kNwww7LA/EwvUZAG6jE6bPzGrMyyLb0TGzhLHg0h0jVGNSnim+InLMgyiIW C+kfGfd0VqVWeGz4Q8TKlT571EV4M3BNiBvSN83kfFJxEPvvBiAn0U68M+bF3f7g 3QdSl60kITR2S+NM5uZPTEewhc99wc8/zIZNdKChgaKb3nCH4Y98AjnU7dXllsrQ nBm9HBpQ4+8KOfw76fF2BkD8Q/PQoDTQ6wxgHyM8zJPmJkkEimDgMbmMtPcSKzjn /j7Tg9z5M/ENYiqkBCaB0dwaA4XGSWHKH41TlhicX8TkPQsdGgNIjKxVzGXk1bNu IvSGCelQYRd4U6XGc1edVXCSCwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFF/39fXx rBb1Ffu0ewkQFehHZsSoMB8GA1UdIwQYMBaAFO39FNtv07AqeTXarUf8Ap86cExA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBOTNCNi83MEJDRkNFMDdD NTcxMUVEQTgxMDc4NjZDNEY5QUUwMi83ZjBVMjJfVHNDcDVOZHF0Ul93Q256cHdU RUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzdmMFUyMl9Uc0NwNU5kcXRSX3dDbnpwd1RFQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB OTNCNi83MEJDRkNFMDdDNTcxMUVEQTgxMDc4NjZDNEY5QUUwMi83ZjBVMjJfVHND cDVOZHF0Ul93Q256cHdURUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCAWIVK6eV+7dapgjw7cINoh5fe5vwf9a1JNH3wBsi3cdIp6j7LkBLC R+nJPB1snzoiS1+kGBmDrLPmMxF8NCDPGihJMiI9WrAkls1sr3UJe96gsgcWOUca 7U2jA3kEx7RsMS49jtTXxub/frVTqk7hiQkGhjQqX1RWS3uOYeTISS8XLxNEI0MN GWhjvNPQlKHJ9McI4gHltuZfpuMbw9P1oGR7UVxR3u2c1JgjgMRs5Md0ohStHe/F N7OBIkk1ehrTMu0X6xHXXQOAMYZlJjkQfWVS8Tm/BIxUJlzwemvKJhSuqmiSVgQ2 q5yaMCPiu7UryP0EDXkRMPAsPjVlpxyu -----END CERTIFICATE-----Generated at Sat May 31 17:27:55 2025 by rpki-client