$ rpki-client -vvf rpki.apnic.net/member_repository/A91A95C1/CBE6BC740F0011EDA744066AC4F9AE02/CkMWPL6xv3mMnOQcHF50ociDesY.mft File: CkMWPL6xv3mMnOQcHF50ociDesY.mft (raw, json) Hash identifier: NjA0n9kiGoe8Pq4H0SAtnUnZ+nCujF/AwlVsW/82mHI= Subject key identifier: 4F:FE:7D:CB:92:04:C6:8A:99:3B:88:7E:9D:78:B0:46:B2:04:27:AA Authority key identifier: 0A:43:16:3C:BE:B1:BF:79:8C:9C:E4:1C:1C:5E:74:A1:C8:83:7A:C6 Certificate issuer: /CN=A91A95C1/serialNumber=0A43163CBEB1BF798C9CE41C1C5E74A1C8837AC6 Certificate serial: 027A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CkMWPL6xv3mMnOQcHF50ociDesY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A95C1/CBE6BC740F0011EDA744066AC4F9AE02/CkMWPL6xv3mMnOQcHF50ociDesY.mft Manifest number: 0275 Signing time: Sat 31 May 2025 01:54:06 +0000 Manifest this update: Sat 31 May 2025 01:54:06 +0000 Manifest next update: Sat 07 Jun 2025 01:54:06 +0000 Files and hashes: 1: CkMWPL6xv3mMnOQcHF50ociDesY.crl (hash: fHx/83smNG0MSAfMtZ0Yl0+nWnF7y7IJYXyUS1oX3ok=) 2: DA61302A0F0211EDABBE3C6AC4F9AE02.roa (hash: vW2EZP2Cwb4m+zHwX4dxc62MHLuj24Kv3gEJBseD9aY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A95C1/CBE6BC740F0011EDA744066AC4F9AE02/CkMWPL6xv3mMnOQcHF50ociDesY.crl rsync://rpki.apnic.net/member_repository/A91A95C1/CBE6BC740F0011EDA744066AC4F9AE02/CkMWPL6xv3mMnOQcHF50ociDesY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CkMWPL6xv3mMnOQcHF50ociDesY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 01:54:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 634 (0x27a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A95C1, serialNumber=0A43163CBEB1BF798C9CE41C1C5E74A1C8837AC6 Validity Not Before: May 31 01:54:06 2025 GMT Not After : Jun 7 01:54:06 2025 GMT Subject: CN=683a613e-575c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:17:ce:45:26:ba:22:b3:65:b4:5d:6b:d4:92: 74:c4:4f:16:44:34:79:2d:c0:79:fe:3d:01:1e:20: c6:21:29:a9:20:e1:68:41:52:57:8f:35:9e:38:36: 49:73:4e:2d:57:89:58:f4:04:52:ad:eb:92:ad:10: 80:a8:49:7a:aa:e1:94:22:83:f1:c1:d6:e3:fc:e0: b1:d5:80:24:e5:1d:1f:5c:ed:4b:5c:22:a6:9c:fb: 05:c7:1a:64:6c:ea:3b:74:f0:c5:c9:c6:38:12:6b: 92:83:b1:5c:48:eb:de:a5:28:e4:97:3d:2a:c6:dc: 49:ad:f2:3e:5b:42:9e:41:95:a8:ac:c8:0f:77:a0: 91:2b:d7:c5:f6:14:ff:37:5a:99:95:e4:9f:c4:2b: 31:a4:8b:bf:84:75:76:dd:85:f4:94:92:11:dd:8b: b8:6e:a2:9a:4b:a3:10:c5:b1:02:f9:f1:76:57:95: 77:ff:75:aa:6c:93:f9:d4:04:59:f8:01:bc:10:5b: da:ef:29:39:26:5b:77:47:fb:1c:b5:ae:cc:d1:9e: b9:e4:fa:ce:91:a0:d4:8e:5d:ef:da:10:82:c4:93: ac:70:02:d0:0a:00:20:96:66:59:fa:d5:71:69:fe: 8c:d1:ab:40:c5:18:de:0d:f9:71:70:0f:16:09:86: a6:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4F:FE:7D:CB:92:04:C6:8A:99:3B:88:7E:9D:78:B0:46:B2:04:27:AA X509v3 Authority Key Identifier: keyid:0A:43:16:3C:BE:B1:BF:79:8C:9C:E4:1C:1C:5E:74:A1:C8:83:7A:C6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A95C1/CBE6BC740F0011EDA744066AC4F9AE02/CkMWPL6xv3mMnOQcHF50ociDesY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CkMWPL6xv3mMnOQcHF50ociDesY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A95C1/CBE6BC740F0011EDA744066AC4F9AE02/CkMWPL6xv3mMnOQcHF50ociDesY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 18:7c:83:20:ed:46:c6:b4:2f:4a:08:3d:fc:fc:97:ac:58:90: 68:1e:f0:2e:8d:bc:ff:6f:7f:a6:34:8b:2d:b8:99:fc:ae:e1: 72:ae:62:0b:48:22:aa:90:c0:41:34:42:04:8f:b8:6f:7a:b5: d6:cd:34:eb:2f:f3:88:a7:39:16:54:e9:e9:60:fe:dd:43:01: ad:d1:8f:15:dc:a8:7b:3b:06:8d:d4:00:90:2c:ff:64:40:31: a6:d1:0c:9a:b8:ce:71:32:e6:ea:13:07:39:4e:bc:ef:b4:05: d4:75:d4:4f:4c:d6:cd:42:91:a3:07:3d:2b:61:4b:00:69:1a: 7f:a8:fc:42:7e:67:14:27:ca:4e:7a:98:1f:e7:5a:bf:4d:3d: 0a:b1:9f:88:4f:c0:4f:cc:fa:fe:df:f9:00:f2:e5:e8:ef:93: f9:a2:c7:0c:d2:a5:eb:5d:d7:7e:ac:5d:b2:ff:08:90:3f:ca: 02:92:71:99:7f:e4:5e:2c:7b:42:5b:90:4e:36:f9:bd:f2:0e: 74:b5:85:0b:6b:22:66:99:05:91:f5:b8:d5:74:94:51:ea:83: 84:be:2e:d0:9d:13:d4:c1:c3:8e:52:60:76:43:c7:42:71:ac: 8c:79:07:17:07:e2:82:26:f1:42:bf:19:47:75:db:7d:9a:cc: 17:06:ac:f6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAnowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTk1QzExMTAvBgNVBAUTKDBBNDMxNjNDQkVCMUJGNzk4QzlDRTQxQzFDNUU3NEEx Qzg4MzdBQzYwHhcNMjUwNTMxMDE1NDA2WhcNMjUwNjA3MDE1NDA2WjAYMRYwFAYD VQQDEw02ODNhNjEzZS01NzVjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsBfORSa6IrNltF1r1JJ0xE8WRDR5LcB5/j0BHiDGISmpIOFoQVJXjzWeODZJ c04tV4lY9ARSreuSrRCAqEl6quGUIoPxwdbj/OCx1YAk5R0fXO1LXCKmnPsFxxpk bOo7dPDFycY4EmuSg7FcSOvepSjklz0qxtxJrfI+W0KeQZWorMgPd6CRK9fF9hT/ N1qZleSfxCsxpIu/hHV23YX0lJIR3Yu4bqKaS6MQxbEC+fF2V5V3/3WqbJP51ARZ +AG8EFva7yk5Jlt3R/scta7M0Z655PrOkaDUjl3v2hCCxJOscALQCgAglmZZ+tVx af6M0atAxRjeDflxcA8WCYamrQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFE/+fcuS BMaKmTuIfp14sEayBCeqMB8GA1UdIwQYMBaAFApDFjy+sb95jJzkHBxedKHIg3rG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBOTVDMS9DQkU2QkM3NDBG MDAxMUVEQTc0NDA2NkFDNEY5QUUwMi9Da01XUEw2eHYzbU1uT1FjSEY1MG9jaURl c1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NrTVdQTDZ4djNtTW5PUWNIRjUwb2NpRGVzWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB OTVDMS9DQkU2QkM3NDBGMDAxMUVEQTc0NDA2NkFDNEY5QUUwMi9Da01XUEw2eHYz bU1uT1FjSEY1MG9jaURlc1kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAYfIMg7UbGtC9KCD38/JesWJBoHvAujbz/b3+mNIstuJn8ruFyrmIL SCKqkMBBNEIEj7hverXWzTTrL/OIpzkWVOnpYP7dQwGt0Y8V3Kh7OwaN1ACQLP9k QDGm0QyauM5xMubqEwc5TrzvtAXUddRPTNbNQpGjBz0rYUsAaRp/qPxCfmcUJ8pO epgf51q/TT0KsZ+IT8BPzPr+3/kA8uXo75P5oscM0qXrXdd+rF2y/wiQP8oCknGZ f+ReLHtCW5BONvm98g50tYULayJmmQWR9bjVdJRR6oOEvi7QnRPUwcOOUmB2Q8dC cayMeQcXB+KCJvFCvxlHddt9mswXBqz2 -----END CERTIFICATE-----Generated at Sat May 31 17:24:48 2025 by rpki-client