$ rpki-client -vvf rpki.apnic.net/member_repository/A91ACFEB/CB2C33E6936E11EAA5E56B7EC4F9AE02/U4XhOhtYRftEzutr7Y3rTomvOCk.mft File: U4XhOhtYRftEzutr7Y3rTomvOCk.mft (raw, json) Hash identifier: +QWc+pXLKaV2yxKKqj7+zHX6o3UzkfKgqO11wUv/qyQ= Subject key identifier: 69:C2:4E:5A:D2:27:98:EF:AC:17:E4:6A:B9:62:84:5E:DA:31:AF:70 Authority key identifier: 53:85:E1:3A:1B:58:45:FB:44:CE:EB:6B:ED:8D:EB:4E:89:AF:38:29 Certificate issuer: /CN=A91ACFEB/serialNumber=5385E13A1B5845FB44CEEB6BED8DEB4E89AF3829 Certificate serial: 097C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U4XhOhtYRftEzutr7Y3rTomvOCk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91ACFEB/CB2C33E6936E11EAA5E56B7EC4F9AE02/U4XhOhtYRftEzutr7Y3rTomvOCk.mft Manifest number: 096C Signing time: Fri 30 May 2025 21:01:35 +0000 Manifest this update: Fri 30 May 2025 21:01:35 +0000 Manifest next update: Fri 06 Jun 2025 21:01:35 +0000 Files and hashes: 1: U4XhOhtYRftEzutr7Y3rTomvOCk.crl (hash: V7uw3muvzMtIWNbImyBlmQafI6JONOJQB+5UG9Ldosk=) 2: 3636BCD2937011EA8A795583C4F9AE02.roa (hash: Xd/9pByFb2cbZ9xoUnmDVjNmjmus87X0lFOERhfsZNI=) 3: 35831FCE937011EA8A795583C4F9AE02.roa (hash: N79J5/addSjvuTRJUjHpGEDoonJ5OZtfdl2v8Aonsr8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91ACFEB/CB2C33E6936E11EAA5E56B7EC4F9AE02/U4XhOhtYRftEzutr7Y3rTomvOCk.crl rsync://rpki.apnic.net/member_repository/A91ACFEB/CB2C33E6936E11EAA5E56B7EC4F9AE02/U4XhOhtYRftEzutr7Y3rTomvOCk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U4XhOhtYRftEzutr7Y3rTomvOCk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 21:01:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2428 (0x97c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91ACFEB, serialNumber=5385E13A1B5845FB44CEEB6BED8DEB4E89AF3829 Validity Not Before: May 30 21:01:35 2025 GMT Not After : Jun 6 21:01:35 2025 GMT Subject: CN=683a1caf-693b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:01:71:21:1a:e2:55:ca:e3:7c:54:97:cb:fd: 98:ab:c3:4d:df:0c:82:b7:8a:42:94:47:07:60:b7: 05:63:e7:24:b0:f6:67:72:b5:8e:a1:30:77:c2:42: 2e:84:a8:ea:ee:f1:f5:1b:b3:d9:e9:a2:10:66:be: fb:f4:ca:df:ea:7c:1d:ad:a3:a0:cc:ec:52:c7:8c: 52:8b:18:5d:32:6e:a4:a5:04:90:5a:a3:f7:e4:91: e9:f2:76:21:24:60:5a:74:9f:7c:45:9d:b4:2b:49: 26:37:7c:08:bc:dc:14:9d:40:da:7f:84:82:13:8c: 64:5e:ee:51:f7:a6:44:10:4d:e8:e3:94:89:b9:67: a2:ea:4e:cb:fa:2d:c7:aa:a5:d1:51:00:ff:7a:35: be:a8:3a:f3:56:89:d4:da:63:85:1f:59:f8:2c:eb: ec:18:46:ad:71:e9:1f:63:03:28:30:34:2b:32:ee: 90:2f:34:10:af:9b:2d:8b:11:35:de:49:78:f6:25: 3f:e9:ec:0e:49:63:95:99:0f:8f:c8:59:58:51:5e: ff:33:e0:c3:ff:5a:3d:7d:28:86:02:89:f6:d4:df: 88:ec:c7:d9:87:df:76:4d:89:ca:3a:7b:33:0e:9f: d9:ec:ec:05:35:ae:89:ac:14:b2:12:5a:ed:5f:6b: 9f:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 69:C2:4E:5A:D2:27:98:EF:AC:17:E4:6A:B9:62:84:5E:DA:31:AF:70 X509v3 Authority Key Identifier: keyid:53:85:E1:3A:1B:58:45:FB:44:CE:EB:6B:ED:8D:EB:4E:89:AF:38:29 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91ACFEB/CB2C33E6936E11EAA5E56B7EC4F9AE02/U4XhOhtYRftEzutr7Y3rTomvOCk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U4XhOhtYRftEzutr7Y3rTomvOCk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91ACFEB/CB2C33E6936E11EAA5E56B7EC4F9AE02/U4XhOhtYRftEzutr7Y3rTomvOCk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8b:20:79:34:9a:8b:5e:98:7b:fe:1c:b0:43:70:3f:0c:15:cc: 10:f5:50:d6:7f:ac:86:0f:c2:9c:39:bf:10:98:74:03:a9:4d: d8:d6:f8:56:92:7c:dc:d2:3e:7e:24:f7:3a:8c:37:cd:32:89: d1:59:e1:9d:27:21:af:fb:6c:9c:a4:35:d1:4c:89:fe:50:42: ed:03:f8:d3:85:36:21:e8:2b:66:4b:2e:77:cf:62:68:b2:5b: 8d:39:4c:9b:81:a0:08:be:df:a5:78:ed:c9:19:fa:06:a0:51: c6:d0:88:bf:e2:ec:b0:ab:ef:b7:a2:ad:ea:e2:a9:de:70:7f: e5:4f:ae:04:3e:3c:cf:04:46:13:de:78:3a:93:27:c1:50:1f: c2:81:4b:db:34:6d:62:96:45:f7:5c:0d:7e:12:e4:5e:70:b5: 73:91:22:58:b5:6c:06:46:f4:4e:d8:5d:de:f2:1a:2f:b2:1c: 86:2a:dd:74:24:37:77:18:03:03:3c:2b:d8:85:38:31:f6:d0: e3:e3:f8:17:a8:89:8e:8a:ad:de:df:e2:94:9f:65:b7:69:68: 59:2d:2e:2a:6a:3f:66:19:08:9a:f9:5d:e4:d0:32:97:cf:27: fb:2e:34:4c:37:3e:7d:61:95:ef:33:9c:88:a2:d6:83:83:3c: 9f:06:37:84 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCXwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUNGRUIxMTAvBgNVBAUTKDUzODVFMTNBMUI1ODQ1RkI0NENFRUI2QkVEOERFQjRF ODlBRjM4MjkwHhcNMjUwNTMwMjEwMTM1WhcNMjUwNjA2MjEwMTM1WjAYMRYwFAYD VQQDEw02ODNhMWNhZi02OTNiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2gFxIRriVcrjfFSXy/2Yq8NN3wyCt4pClEcHYLcFY+cksPZncrWOoTB3wkIu hKjq7vH1G7PZ6aIQZr779Mrf6nwdraOgzOxSx4xSixhdMm6kpQSQWqP35JHp8nYh JGBadJ98RZ20K0kmN3wIvNwUnUDaf4SCE4xkXu5R96ZEEE3o45SJuWei6k7L+i3H qqXRUQD/ejW+qDrzVonU2mOFH1n4LOvsGEatcekfYwMoMDQrMu6QLzQQr5stixE1 3kl49iU/6ewOSWOVmQ+PyFlYUV7/M+DD/1o9fSiGAon21N+I7MfZh992TYnKOnsz Dp/Z7OwFNa6JrBSyElrtX2ufSwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGnCTlrS J5jvrBfkarlihF7aMa9wMB8GA1UdIwQYMBaAFFOF4TobWEX7RM7ra+2N606Jrzgp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQ0ZFQi9DQjJDMzNFNjkz NkUxMUVBQTVFNTZCN0VDNEY5QUUwMi9VNFhoT2h0WVJmdEV6dXRyN1kzclRvbXZP Q2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1U0WGhPaHRZUmZ0RXp1dHI3WTNyVG9tdk9Day5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB Q0ZFQi9DQjJDMzNFNjkzNkUxMUVBQTVFNTZCN0VDNEY5QUUwMi9VNFhoT2h0WVJm dEV6dXRyN1kzclRvbXZPQ2subWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCLIHk0motemHv+HLBDcD8MFcwQ9VDWf6yGD8KcOb8QmHQDqU3Y1vhW knzc0j5+JPc6jDfNMonRWeGdJyGv+2ycpDXRTIn+UELtA/jThTYh6CtmSy53z2Jo sluNOUybgaAIvt+leO3JGfoGoFHG0Ii/4uywq++3oq3q4qnecH/lT64EPjzPBEYT 3ng6kyfBUB/CgUvbNG1ilkX3XA1+EuRecLVzkSJYtWwGRvRO2F3e8hovshyGKt10 JDd3GAMDPCvYhTgx9tDj4/gXqImOiq3e3+KUn2W3aWhZLS4qaj9mGQia+V3k0DKX zyf7LjRMNz59YZXvM5yIotaDgzyfBjeE -----END CERTIFICATE-----Generated at Sat May 31 16:49:06 2025 by rpki-client