$ rpki-client -vvf rpki.apnic.net/member_repository/A91AF317/4FD576808C6F11EBBA819F31C4F9AE02/d5zZIVaek_nSaxOlqn43bPtfBpA.mft File: d5zZIVaek_nSaxOlqn43bPtfBpA.mft (raw, json) Hash identifier: gJj3WFBGPXBNJ6bvVZdk3k/CEGMIN15bB9sV65Y+f60= Subject key identifier: AC:49:26:FC:2D:7F:78:CB:A9:B5:0B:EC:D9:07:97:5E:AF:55:A6:A1 Authority key identifier: 77:9C:D9:21:56:9E:93:F9:D2:6B:13:A5:AA:7E:37:6C:FB:5F:06:90 Certificate issuer: /CN=A91AF317/serialNumber=779CD921569E93F9D26B13A5AA7E376CFB5F0690 Certificate serial: 0651 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/d5zZIVaek_nSaxOlqn43bPtfBpA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AF317/4FD576808C6F11EBBA819F31C4F9AE02/d5zZIVaek_nSaxOlqn43bPtfBpA.mft Manifest number: 064B Signing time: Fri 30 May 2025 22:46:57 +0000 Manifest this update: Fri 30 May 2025 22:46:57 +0000 Manifest next update: Fri 06 Jun 2025 22:46:57 +0000 Files and hashes: 1: d5zZIVaek_nSaxOlqn43bPtfBpA.crl (hash: KWmMbNou99/fPM+UjLx8VvwOwLNBDnhbhoASs0IwVtI=) 2: 291E55288C7111EBA752313FC4F9AE02.roa (hash: A4h072jPvWuDDgO/u+pRW1SBWKkT2qV8RaMiezxbECY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AF317/4FD576808C6F11EBBA819F31C4F9AE02/d5zZIVaek_nSaxOlqn43bPtfBpA.crl rsync://rpki.apnic.net/member_repository/A91AF317/4FD576808C6F11EBBA819F31C4F9AE02/d5zZIVaek_nSaxOlqn43bPtfBpA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/d5zZIVaek_nSaxOlqn43bPtfBpA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 22:46:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1617 (0x651) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AF317, serialNumber=779CD921569E93F9D26B13A5AA7E376CFB5F0690 Validity Not Before: May 30 22:46:57 2025 GMT Not After : Jun 6 22:46:57 2025 GMT Subject: CN=683a3561-68bb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:6a:60:c1:c4:67:aa:50:89:09:e5:e2:87:f4: 0a:9c:80:39:c4:93:28:e3:37:8d:68:2b:86:18:b0: ce:88:b1:43:62:16:58:48:f0:0e:9c:52:53:29:db: 4a:9b:db:f0:99:b7:56:43:53:13:81:43:e3:ac:71: 32:94:b5:6d:92:b7:e9:3e:7f:e5:99:4b:1c:71:98: c2:2c:33:d3:29:63:0c:0e:10:2a:91:1f:ae:c1:55: 54:f1:83:6e:29:b5:0a:60:be:40:30:11:8f:98:52: 77:36:d7:a1:2f:d4:8d:7c:cf:c1:f6:66:0c:f6:f2: 21:06:41:d2:c9:2d:4d:63:ea:42:b9:22:0b:e3:fe: c7:89:21:fb:48:34:69:45:81:7d:bf:8f:65:f1:1a: b3:22:33:1d:df:d7:bc:e9:bb:74:56:46:7a:ad:18: c2:45:fc:4c:47:ac:e6:4b:96:b9:5a:ff:c4:91:58: ac:38:69:7f:b6:67:35:5c:a9:25:7e:1d:5e:9d:0a: a2:fa:e0:42:e3:15:26:16:e2:5d:d8:8e:45:e8:2b: e6:98:9c:da:b1:1e:3c:11:8f:70:c8:81:bf:44:df: 05:7d:ad:8b:85:d0:b9:14:17:4e:78:9c:6f:3e:40: f3:b2:a7:60:be:21:94:10:39:ed:6c:28:93:fc:54: 26:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AC:49:26:FC:2D:7F:78:CB:A9:B5:0B:EC:D9:07:97:5E:AF:55:A6:A1 X509v3 Authority Key Identifier: keyid:77:9C:D9:21:56:9E:93:F9:D2:6B:13:A5:AA:7E:37:6C:FB:5F:06:90 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AF317/4FD576808C6F11EBBA819F31C4F9AE02/d5zZIVaek_nSaxOlqn43bPtfBpA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/d5zZIVaek_nSaxOlqn43bPtfBpA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AF317/4FD576808C6F11EBBA819F31C4F9AE02/d5zZIVaek_nSaxOlqn43bPtfBpA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 78:dc:13:c6:d3:a0:74:d7:8a:63:a0:4c:c3:09:4f:b3:24:bf: 0a:08:96:f4:09:20:b1:28:e5:a9:b1:a0:14:2d:c3:ac:b6:89: d7:18:f1:62:44:34:7e:db:6a:c6:f1:42:d9:a5:a8:23:4b:2a: 4d:90:14:f5:01:f2:6d:f1:f7:14:47:08:a4:a0:bd:34:51:42: 9d:6e:88:b6:10:3d:5e:ff:71:3d:da:74:f5:f3:61:2f:f8:6f: 9b:b2:b0:5e:46:60:01:41:6b:3c:d1:84:e7:71:f5:2c:15:d4: 3f:57:9e:0c:49:ac:bb:e6:3c:c0:ab:54:a5:7e:15:5f:d8:24: ae:22:40:e9:ff:fa:85:c2:2c:e7:7e:44:a0:4f:41:d2:07:56: 66:ad:d3:c0:0a:e2:c4:43:06:c4:01:15:98:d9:5e:75:75:88: 97:b0:0a:df:7d:bb:06:15:bc:0e:c2:45:5c:f6:76:27:e8:cd: a5:50:f3:f7:ac:21:bb:95:a8:e9:92:73:37:61:d3:80:7b:0e: 66:61:2c:a8:c1:7c:09:c0:69:e2:09:0c:75:02:e0:3a:48:fd: 5d:7d:cd:93:9c:8a:fc:40:92:b7:3e:db:17:5f:79:61:47:34: 7c:d7:2e:32:63:1b:6c:03:0d:e8:71:7c:ee:38:53:ea:ff:4f: b0:0c:58:1c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBlEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUYzMTcxMTAvBgNVBAUTKDc3OUNEOTIxNTY5RTkzRjlEMjZCMTNBNUFBN0UzNzZD RkI1RjA2OTAwHhcNMjUwNTMwMjI0NjU3WhcNMjUwNjA2MjI0NjU3WjAYMRYwFAYD VQQDEw02ODNhMzU2MS02OGJiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtGpgwcRnqlCJCeXih/QKnIA5xJMo4zeNaCuGGLDOiLFDYhZYSPAOnFJTKdtK m9vwmbdWQ1MTgUPjrHEylLVtkrfpPn/lmUsccZjCLDPTKWMMDhAqkR+uwVVU8YNu KbUKYL5AMBGPmFJ3NtehL9SNfM/B9mYM9vIhBkHSyS1NY+pCuSIL4/7HiSH7SDRp RYF9v49l8RqzIjMd39e86bt0VkZ6rRjCRfxMR6zmS5a5Wv/EkVisOGl/tmc1XKkl fh1enQqi+uBC4xUmFuJd2I5F6CvmmJzasR48EY9wyIG/RN8Ffa2LhdC5FBdOeJxv PkDzsqdgviGUEDntbCiT/FQmxQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKxJJvwt f3jLqbUL7NkHl16vVaahMB8GA1UdIwQYMBaAFHec2SFWnpP50msTpap+N2z7XwaQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBRjMxNy80RkQ1NzY4MDhD NkYxMUVCQkE4MTlGMzFDNEY5QUUwMi9kNXpaSVZhZWtfblNheE9scW40M2JQdGZC cEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2Q1elpJVmFla19uU2F4T2xxbjQzYlB0ZkJwQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB RjMxNy80RkQ1NzY4MDhDNkYxMUVCQkE4MTlGMzFDNEY5QUUwMi9kNXpaSVZhZWtf blNheE9scW40M2JQdGZCcEEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB43BPG06B014pjoEzDCU+zJL8KCJb0CSCxKOWpsaAULcOstonXGPFi RDR+22rG8ULZpagjSypNkBT1AfJt8fcURwikoL00UUKdboi2ED1e/3E92nT182Ev +G+bsrBeRmABQWs80YTncfUsFdQ/V54MSay75jzAq1SlfhVf2CSuIkDp//qFwizn fkSgT0HSB1ZmrdPACuLEQwbEARWY2V51dYiXsArffbsGFbwOwkVc9nYn6M2lUPP3 rCG7lajpknM3YdOAew5mYSyowXwJwGniCQx1AuA6SP1dfc2TnIr8QJK3PtsXX3lh RzR81y4yYxtsAw3ocXzuOFPq/0+wDFgc -----END CERTIFICATE-----Generated at Sat May 31 17:11:29 2025 by rpki-client