$ rpki-client -vvf rpki.apnic.net/member_repository/A91B189B/328BDD40387211EB997AA23AC4F9AE02/_SqdXvq5ERsKWjAT80wsva_QH8I.mft File: _SqdXvq5ERsKWjAT80wsva_QH8I.mft (raw, json) Hash identifier: YoQuTsNe9m2m2EG+j8fFBQ0QDItz/vkZa8Ojdkf5ilY= Subject key identifier: 26:7C:21:10:33:9D:E5:43:5F:8C:D1:C4:1D:70:61:29:1C:10:A7:8F Authority key identifier: FD:2A:9D:5E:FA:B9:11:1B:0A:5A:30:13:F3:4C:2C:BD:AF:D0:1F:C2 Certificate issuer: /CN=A91B189B/serialNumber=FD2A9D5EFAB9111B0A5A3013F34C2CBDAFD01FC2 Certificate serial: 0721 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_SqdXvq5ERsKWjAT80wsva_QH8I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B189B/328BDD40387211EB997AA23AC4F9AE02/_SqdXvq5ERsKWjAT80wsva_QH8I.mft Manifest number: 071C Signing time: Fri 30 May 2025 22:02:58 +0000 Manifest this update: Fri 30 May 2025 22:02:57 +0000 Manifest next update: Fri 06 Jun 2025 22:02:57 +0000 Files and hashes: 1: _SqdXvq5ERsKWjAT80wsva_QH8I.crl (hash: 0RQFqlTDR1vdTBhUMqPbUsVbNEuzm2dljsgq+VyhYEg=) 2: DFCE0CFC387311EBA0AC593EC4F9AE02.roa (hash: OHqpc630iPDrvxa3JYL+djk/kcEwI5eOHtscWctQIpU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B189B/328BDD40387211EB997AA23AC4F9AE02/_SqdXvq5ERsKWjAT80wsva_QH8I.crl rsync://rpki.apnic.net/member_repository/A91B189B/328BDD40387211EB997AA23AC4F9AE02/_SqdXvq5ERsKWjAT80wsva_QH8I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_SqdXvq5ERsKWjAT80wsva_QH8I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 22:02:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1825 (0x721) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B189B, serialNumber=FD2A9D5EFAB9111B0A5A3013F34C2CBDAFD01FC2 Validity Not Before: May 30 22:02:57 2025 GMT Not After : Jun 6 22:02:57 2025 GMT Subject: CN=683a2b11-53ed Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:c5:b1:5a:ea:a3:97:b2:6f:f4:d7:c2:cb:30: 22:5f:9e:c9:9a:03:49:c4:af:72:15:07:99:63:73: ce:6a:29:a7:41:65:28:45:37:9f:f3:45:9e:7e:81: 77:6e:d4:49:77:ed:74:7d:78:5f:c5:af:60:9d:ed: 53:d8:5c:6a:8a:19:16:aa:f2:93:48:24:fc:8f:8e: 6a:86:64:f2:30:47:c7:ad:31:e9:44:1d:fe:e9:87: c6:98:c6:12:6c:f2:5a:77:55:bf:50:75:be:de:df: 1c:91:54:cb:d6:6a:35:42:7c:68:6d:6f:51:8f:5c: ba:e5:f8:2b:2a:8c:e9:45:e4:2f:df:e6:14:75:da: df:02:99:01:78:7d:68:b5:89:93:d2:6c:64:01:78: 39:cd:9e:8e:fb:a4:96:20:5b:0e:6e:a3:32:18:7a: a7:1c:8b:33:cd:62:26:2a:6f:ac:8c:17:d9:70:87: 46:99:59:40:08:73:86:c5:fe:45:05:61:97:6f:28: 65:10:96:e8:1f:d1:42:15:c0:d3:7f:02:90:0e:44: 94:37:2c:8b:2d:be:5c:67:a2:4c:13:9e:c6:19:8c: 8d:e7:42:43:26:19:10:b8:8f:cd:a7:96:7e:f2:e7: 38:02:f3:3b:c8:34:0c:64:7e:44:61:f0:1e:7c:7e: 9b:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 26:7C:21:10:33:9D:E5:43:5F:8C:D1:C4:1D:70:61:29:1C:10:A7:8F X509v3 Authority Key Identifier: keyid:FD:2A:9D:5E:FA:B9:11:1B:0A:5A:30:13:F3:4C:2C:BD:AF:D0:1F:C2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B189B/328BDD40387211EB997AA23AC4F9AE02/_SqdXvq5ERsKWjAT80wsva_QH8I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_SqdXvq5ERsKWjAT80wsva_QH8I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B189B/328BDD40387211EB997AA23AC4F9AE02/_SqdXvq5ERsKWjAT80wsva_QH8I.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 09:2c:48:da:88:4f:91:6b:ca:74:68:9b:a0:eb:be:82:18:d3: 63:7e:07:f8:0b:86:0a:f3:25:39:61:71:91:84:ab:88:f7:2f: b6:91:4b:69:c4:07:2a:07:1f:d9:5d:b2:6a:07:d5:4c:21:28: 15:4b:b8:f1:d6:8d:71:63:3d:65:a0:1c:62:18:b4:45:0f:eb: e9:97:d0:13:80:5c:0e:24:51:84:1e:6e:4e:9d:ab:81:68:fc: 49:0a:03:32:7a:ca:a5:4f:6b:27:ba:9f:16:67:07:ed:37:8a: 64:90:42:64:48:1f:32:b2:82:33:5d:42:8f:73:c7:75:30:9e: f1:e7:25:7e:ed:17:db:e4:57:1d:d7:2e:cd:bf:25:22:0c:d0: 31:4b:39:2d:9c:a8:e0:f6:b5:40:c4:68:11:3b:88:28:7b:c1: 48:42:7b:96:a6:9e:97:1d:14:03:b5:0d:55:92:16:25:3b:cc: bd:4f:0a:d6:6c:d3:99:9e:e9:d7:79:c3:5f:e6:9c:51:67:1d: 3a:da:c0:4b:7c:69:20:2f:b5:09:ba:9a:da:2c:53:ef:6f:66: fa:1d:18:3f:71:e6:08:5a:04:a9:3c:67:80:f3:7d:44:b4:9d: 95:d6:b8:33:a3:ea:24:08:eb:54:20:cf:0f:be:00:d5:1a:4d: 61:6d:69:e4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICByEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjE4OUIxMTAvBgNVBAUTKEZEMkE5RDVFRkFCOTExMUIwQTVBMzAxM0YzNEMyQ0JE QUZEMDFGQzIwHhcNMjUwNTMwMjIwMjU3WhcNMjUwNjA2MjIwMjU3WjAYMRYwFAYD VQQDEw02ODNhMmIxMS01M2VkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu8WxWuqjl7Jv9NfCyzAiX57JmgNJxK9yFQeZY3POaimnQWUoRTef80WefoF3 btRJd+10fXhfxa9gne1T2FxqihkWqvKTSCT8j45qhmTyMEfHrTHpRB3+6YfGmMYS bPJad1W/UHW+3t8ckVTL1mo1QnxobW9Rj1y65fgrKozpReQv3+YUddrfApkBeH1o tYmT0mxkAXg5zZ6O+6SWIFsObqMyGHqnHIszzWImKm+sjBfZcIdGmVlACHOGxf5F BWGXbyhlEJboH9FCFcDTfwKQDkSUNyyLLb5cZ6JME57GGYyN50JDJhkQuI/Np5Z+ 8uc4AvM7yDQMZH5EYfAefH6bKwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCZ8IRAz neVDX4zRxB1wYSkcEKePMB8GA1UdIwQYMBaAFP0qnV76uREbClowE/NMLL2v0B/C MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMTg5Qi8zMjhCREQ0MDM4 NzIxMUVCOTk3QUEyM0FDNEY5QUUwMi9fU3FkWHZxNUVSc0tXakFUODB3c3ZhX1FI OEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL19TcWRYdnE1RVJzS1dqQVQ4MHdzdmFfUUg4SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC MTg5Qi8zMjhCREQ0MDM4NzIxMUVCOTk3QUEyM0FDNEY5QUUwMi9fU3FkWHZxNUVS c0tXakFUODB3c3ZhX1FIOEkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAJLEjaiE+Ra8p0aJug676CGNNjfgf4C4YK8yU5YXGRhKuI9y+2kUtp xAcqBx/ZXbJqB9VMISgVS7jx1o1xYz1loBxiGLRFD+vpl9ATgFwOJFGEHm5OnauB aPxJCgMyesqlT2snup8WZwftN4pkkEJkSB8ysoIzXUKPc8d1MJ7x5yV+7Rfb5Fcd 1y7NvyUiDNAxSzktnKjg9rVAxGgRO4goe8FIQnuWpp6XHRQDtQ1VkhYlO8y9TwrW bNOZnunXecNf5pxRZx062sBLfGkgL7UJupraLFPvb2b6HRg/ceYIWgSpPGeA831E tJ2V1rgzo+okCOtUIM8PvgDVGk1hbWnk -----END CERTIFICATE-----Generated at Sat May 31 16:44:48 2025 by rpki-client