$ rpki-client -vvf rpki.apnic.net/member_repository/A91B3CA4/15F68B5CCF1911EAAEF60B1EC4F9AE02/tY0p97gQfxWFtf_nDFAsbI9dMwI.mft File: tY0p97gQfxWFtf_nDFAsbI9dMwI.mft (raw, json) Hash identifier: emh9r6y/CfWJaiGWxYSfpO5YYPnScft/wAJ+ssLoUC0= Subject key identifier: CD:47:CB:74:79:5C:F9:BA:1E:44:B2:84:EB:EF:8B:94:14:FC:5F:5E Authority key identifier: B5:8D:29:F7:B8:10:7F:15:85:B5:FF:E7:0C:50:2C:6C:8F:5D:33:02 Certificate issuer: /CN=A91B3CA4/serialNumber=B58D29F7B8107F1585B5FFE70C502C6C8F5D3302 Certificate serial: 085B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tY0p97gQfxWFtf_nDFAsbI9dMwI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B3CA4/15F68B5CCF1911EAAEF60B1EC4F9AE02/tY0p97gQfxWFtf_nDFAsbI9dMwI.mft Manifest number: 0842 Signing time: Fri 30 May 2025 20:59:59 +0000 Manifest this update: Fri 30 May 2025 20:59:58 +0000 Manifest next update: Fri 06 Jun 2025 20:59:58 +0000 Files and hashes: 1: tY0p97gQfxWFtf_nDFAsbI9dMwI.crl (hash: c+yMJGgh8I2eyw8BlHfZgD30Qe4FbmyuePaVX0ntrxk=) 2: C33EB0EC7C4211EB933D233EC4F9AE02.roa (hash: V3s4r52s3OPKDLcYcdmKSn/0GHVPcogcj1iQaYzRFaU=) 3: 3C3F21BAD6F011EE9B38B67DC4F9AE02.roa (hash: w/43LlQIYPABEvYlfxDIIPmu3emguiTlymMjfBLzQJU=) 4: 8F44F16A4BCC11EDA2E6375FC4F9AE02.roa (hash: khDPT7nUu2MBxImumtcyIV73z19WxJClk9M9DnU+8VY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B3CA4/15F68B5CCF1911EAAEF60B1EC4F9AE02/tY0p97gQfxWFtf_nDFAsbI9dMwI.crl rsync://rpki.apnic.net/member_repository/A91B3CA4/15F68B5CCF1911EAAEF60B1EC4F9AE02/tY0p97gQfxWFtf_nDFAsbI9dMwI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tY0p97gQfxWFtf_nDFAsbI9dMwI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 20:59:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2139 (0x85b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B3CA4, serialNumber=B58D29F7B8107F1585B5FFE70C502C6C8F5D3302 Validity Not Before: May 30 20:59:58 2025 GMT Not After : Jun 6 20:59:58 2025 GMT Subject: CN=683a1c4f-0f5e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:33:63:5a:3b:12:dc:e3:06:45:cf:c9:33:bc: a5:f0:f4:56:fb:ce:b5:4b:ec:a3:67:ef:c5:36:ea: 7a:b7:52:fe:07:a3:83:28:af:5d:ee:a9:88:43:d9: d8:0c:d5:f4:88:09:52:c9:dd:88:37:c7:b0:5d:c8: 24:19:10:e3:61:67:ce:cd:cf:26:75:4d:ad:10:19: 5f:14:a6:bb:ed:d1:4c:dd:c9:4e:05:e3:8b:02:8f: fc:29:11:7a:52:5a:85:6f:a1:34:cf:af:92:5e:ed: 92:c1:39:85:6f:5f:0d:bf:cd:e5:88:21:0e:a4:21: 17:a6:d8:75:78:de:fb:b2:50:80:90:46:39:6a:df: 69:b8:00:30:3c:c7:74:62:4d:7c:e7:a6:9b:9f:25: ef:8e:3e:2d:be:6d:31:03:e2:f6:04:92:f8:a6:9a: 7d:aa:95:ab:1e:e9:5e:1d:b7:73:3d:c0:ca:c4:02: 2d:88:59:f5:bd:09:db:1c:b6:24:74:e2:39:a7:f3: 71:82:41:b7:60:fc:c1:56:5b:81:7a:89:c2:bf:84: 7d:fd:7d:bf:d2:09:39:1a:a0:cf:95:36:b0:65:a9: 5d:cb:a1:bf:28:ef:e0:62:c6:21:9a:33:e1:12:cd: 33:27:eb:41:d7:ae:7c:9f:0e:2d:1e:29:95:bc:8d: 89:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CD:47:CB:74:79:5C:F9:BA:1E:44:B2:84:EB:EF:8B:94:14:FC:5F:5E X509v3 Authority Key Identifier: keyid:B5:8D:29:F7:B8:10:7F:15:85:B5:FF:E7:0C:50:2C:6C:8F:5D:33:02 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B3CA4/15F68B5CCF1911EAAEF60B1EC4F9AE02/tY0p97gQfxWFtf_nDFAsbI9dMwI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tY0p97gQfxWFtf_nDFAsbI9dMwI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B3CA4/15F68B5CCF1911EAAEF60B1EC4F9AE02/tY0p97gQfxWFtf_nDFAsbI9dMwI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 78:8b:ba:ca:3f:16:ae:a0:66:64:64:e6:65:d0:41:5d:ab:6c: 10:9a:09:33:e0:0a:0c:15:16:10:35:80:f5:98:ab:8e:41:d2: c4:2d:ee:21:da:53:e3:6f:77:ca:bf:65:44:de:de:5e:61:c8: 5d:14:87:7f:b9:67:ee:40:18:5e:93:f0:95:32:15:b4:f7:68: 9d:11:10:ba:7b:42:26:c9:2e:81:00:81:8b:4e:f0:d7:77:c2: 4d:39:dd:0c:56:ca:c1:33:06:13:a3:9d:ce:56:ff:44:18:f5: b0:1e:5c:87:90:1f:e0:4b:1d:1d:11:83:5f:42:59:7e:29:78: 2e:91:38:3c:7c:c5:3d:1e:76:8c:ac:bb:ae:1c:8d:37:bc:0c: 49:13:c2:ce:9e:6c:3f:72:0d:e0:16:f5:be:f1:8c:55:3b:e7: c4:64:5f:e7:b2:df:71:ce:81:4a:68:d0:86:36:58:d9:d7:ff: d5:bf:5c:12:e1:7c:e9:bd:b4:03:cd:df:f9:3e:8c:23:da:b4: 8b:24:31:f5:b6:4f:9a:9a:0f:18:2c:87:43:90:bc:7a:d1:5c: 5d:5c:a2:a5:fb:d2:c0:49:45:df:30:72:30:a4:13:f6:32:76: b0:8a:ee:84:5f:b6:b7:70:81:3a:bf:dd:90:41:5a:5b:65:f7: 6e:6a:b4:c3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCFswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjNDQTQxMTAvBgNVBAUTKEI1OEQyOUY3QjgxMDdGMTU4NUI1RkZFNzBDNTAyQzZD OEY1RDMzMDIwHhcNMjUwNTMwMjA1OTU4WhcNMjUwNjA2MjA1OTU4WjAYMRYwFAYD VQQDEw02ODNhMWM0Zi0wZjVlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzzNjWjsS3OMGRc/JM7yl8PRW+861S+yjZ+/FNup6t1L+B6ODKK9d7qmIQ9nY DNX0iAlSyd2IN8ewXcgkGRDjYWfOzc8mdU2tEBlfFKa77dFM3clOBeOLAo/8KRF6 UlqFb6E0z6+SXu2SwTmFb18Nv83liCEOpCEXpth1eN77slCAkEY5at9puAAwPMd0 Yk1856abnyXvjj4tvm0xA+L2BJL4ppp9qpWrHuleHbdzPcDKxAItiFn1vQnbHLYk dOI5p/NxgkG3YPzBVluBeonCv4R9/X2/0gk5GqDPlTawZaldy6G/KO/gYsYhmjPh Es0zJ+tB1658nw4tHimVvI2JtwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFM1Hy3R5 XPm6HkSyhOvvi5QU/F9eMB8GA1UdIwQYMBaAFLWNKfe4EH8VhbX/5wxQLGyPXTMC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCM0NBNC8xNUY2OEI1Q0NG MTkxMUVBQUVGNjBCMUVDNEY5QUUwMi90WTBwOTdnUWZ4V0Z0Zl9uREZBc2JJOWRN d0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RZMHA5N2dRZnhXRnRmX25ERkFzYkk5ZE13SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC M0NBNC8xNUY2OEI1Q0NGMTkxMUVBQUVGNjBCMUVDNEY5QUUwMi90WTBwOTdnUWZ4 V0Z0Zl9uREZBc2JJOWRNd0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB4i7rKPxauoGZkZOZl0EFdq2wQmgkz4AoMFRYQNYD1mKuOQdLELe4h 2lPjb3fKv2VE3t5eYchdFId/uWfuQBhek/CVMhW092idERC6e0ImyS6BAIGLTvDX d8JNOd0MVsrBMwYTo53OVv9EGPWwHlyHkB/gSx0dEYNfQll+KXgukTg8fMU9HnaM rLuuHI03vAxJE8LOnmw/cg3gFvW+8YxVO+fEZF/nst9xzoFKaNCGNljZ1//Vv1wS 4XzpvbQDzd/5Powj2rSLJDH1tk+amg8YLIdDkLx60VxdXKKl+9LASUXfMHIwpBP2 Mnawiu6EX7a3cIE6v92QQVpbZfduarTD -----END CERTIFICATE-----Generated at Sat May 31 17:04:57 2025 by rpki-client