$ rpki-client -vvf rpki.apnic.net/member_repository/A91B42CA/D34DB97E1DA011E283A1619208B02CD2/57DhU8QU0ThUitp16M0FzWk2cgY.mft File: 57DhU8QU0ThUitp16M0FzWk2cgY.mft (raw, json) Hash identifier: Hwww1wsKAfhu+vNMS9wuvnhKuDYcAgj9PjE6MiyyWYA= Subject key identifier: 88:36:C2:53:03:0D:47:3C:D1:FA:E3:7A:04:00:70:C5:89:F0:E9:83 Authority key identifier: E7:B0:E1:53:C4:14:D1:38:54:8A:DA:75:E8:CD:05:CD:69:36:72:06 Certificate issuer: /CN=A91B42CA/serialNumber=E7B0E153C414D138548ADA75E8CD05CD69367206 Certificate serial: 3488 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/57DhU8QU0ThUitp16M0FzWk2cgY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B42CA/D34DB97E1DA011E283A1619208B02CD2/57DhU8QU0ThUitp16M0FzWk2cgY.mft Manifest number: 5287 Signing time: Mon 02 Jun 2025 15:07:11 +0000 Manifest this update: Mon 02 Jun 2025 15:07:11 +0000 Manifest next update: Mon 09 Jun 2025 15:07:11 +0000 Files and hashes: 1: 57DhU8QU0ThUitp16M0FzWk2cgY.crl (hash: Gk4tsCpINsRhuy4CHSfi6vRCHwDZuNDpO2Wu0hYugqk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B42CA/D34DB97E1DA011E283A1619208B02CD2/57DhU8QU0ThUitp16M0FzWk2cgY.crl rsync://rpki.apnic.net/member_repository/A91B42CA/D34DB97E1DA011E283A1619208B02CD2/57DhU8QU0ThUitp16M0FzWk2cgY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/57DhU8QU0ThUitp16M0FzWk2cgY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 15:07:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13448 (0x3488) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B42CA, serialNumber=E7B0E153C414D138548ADA75E8CD05CD69367206 Validity Not Before: Jun 2 15:07:11 2025 GMT Not After : Jun 9 15:07:11 2025 GMT Subject: CN=683dbe1f-c4e7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:d7:86:8a:db:56:d0:0d:21:9f:c2:ea:ef:71: b8:63:c2:63:61:ea:56:06:08:d9:d9:db:4d:6f:f2: 7f:3e:71:d6:ce:c2:0f:55:c2:18:37:ca:62:ce:9a: d1:f8:3d:38:44:59:54:99:76:ed:2e:87:82:86:4f: c8:71:38:e2:6d:97:1a:b7:f3:c8:22:de:a3:1c:5f: 50:e5:5b:2c:5b:38:89:79:03:02:f6:cb:7a:32:47: ac:29:2a:53:23:04:02:e4:72:05:cb:04:42:47:ca: 96:2c:ac:77:27:f9:f4:54:af:22:85:2e:b1:98:0d: 11:e5:44:de:11:bd:ef:89:cf:70:9e:6f:c0:29:82: 04:59:d2:8d:49:89:7e:9b:35:a4:d1:e5:c0:f9:c6: 45:fc:01:c5:be:b8:6f:aa:3d:af:aa:11:c5:a8:22: 20:e4:bb:81:96:d4:d2:96:2b:c9:1a:a2:e7:8a:b9: 39:cc:0b:85:9f:04:b2:5b:0b:29:71:37:db:23:df: a3:62:8e:32:b7:31:df:50:04:49:c2:78:2c:95:b3: 76:69:31:aa:bc:37:da:b6:e6:69:4f:aa:5e:ef:69: 61:e6:ef:8c:2c:56:fc:00:4a:90:fd:32:40:1e:a9: 0c:11:60:f4:97:9f:48:08:0d:b0:bb:22:89:82:2d: fa:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 88:36:C2:53:03:0D:47:3C:D1:FA:E3:7A:04:00:70:C5:89:F0:E9:83 X509v3 Authority Key Identifier: keyid:E7:B0:E1:53:C4:14:D1:38:54:8A:DA:75:E8:CD:05:CD:69:36:72:06 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B42CA/D34DB97E1DA011E283A1619208B02CD2/57DhU8QU0ThUitp16M0FzWk2cgY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/57DhU8QU0ThUitp16M0FzWk2cgY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B42CA/D34DB97E1DA011E283A1619208B02CD2/57DhU8QU0ThUitp16M0FzWk2cgY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4d:b1:61:92:df:92:80:97:35:b1:f6:7c:52:bb:59:9e:ef:f4: a2:91:41:eb:01:b2:b8:ff:d0:64:f0:e3:9b:d3:61:de:ba:23: 25:75:c8:d4:54:da:69:98:a6:f0:28:74:2b:0e:81:dc:c0:e7: 01:94:1e:d2:d2:0d:9f:49:b6:17:aa:57:e7:f8:d9:77:51:14: 43:f9:d1:48:ee:f7:a0:7b:8e:93:03:13:8e:96:24:d9:74:c2: f5:a7:1d:dd:a1:ff:89:2c:d4:79:f4:1a:62:5c:8a:79:52:53: 33:6a:5a:5b:cb:71:d4:f6:09:a6:88:65:ee:42:91:88:54:a9: 2e:55:1a:56:fc:70:aa:02:74:f3:50:30:07:6f:3b:48:3d:72: 2a:13:3e:03:00:d9:5b:8f:36:5b:24:ba:05:75:65:07:1a:2b: 00:12:67:a1:44:2f:e3:9c:f8:e8:2b:5f:ea:f5:5f:0b:91:2c: b0:71:1a:61:48:75:cd:54:ff:fa:e5:e5:95:4a:25:6d:60:de: 35:d1:1b:4c:4d:75:10:7a:25:60:c1:ee:26:a4:54:1e:ce:34: 5b:f4:f0:7f:1b:7a:27:ff:4e:83:8d:a4:7c:d8:4f:af:1e:c6: 87:05:09:74:0f:cb:27:f4:2e:3e:35:d3:b8:63:e0:fe:93:23: 73:ee:bf:d4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNIgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjQyQ0ExMTAvBgNVBAUTKEU3QjBFMTUzQzQxNEQxMzg1NDhBREE3NUU4Q0QwNUNE NjkzNjcyMDYwHhcNMjUwNjAyMTUwNzExWhcNMjUwNjA5MTUwNzExWjAYMRYwFAYD VQQDEw02ODNkYmUxZi1jNGU3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAo9eGittW0A0hn8Lq73G4Y8JjYepWBgjZ2dtNb/J/PnHWzsIPVcIYN8pizprR +D04RFlUmXbtLoeChk/IcTjibZcat/PIIt6jHF9Q5VssWziJeQMC9st6MkesKSpT IwQC5HIFywRCR8qWLKx3J/n0VK8ihS6xmA0R5UTeEb3vic9wnm/AKYIEWdKNSYl+ mzWk0eXA+cZF/AHFvrhvqj2vqhHFqCIg5LuBltTSlivJGqLnirk5zAuFnwSyWwsp cTfbI9+jYo4ytzHfUARJwngslbN2aTGqvDfatuZpT6pe72lh5u+MLFb8AEqQ/TJA HqkMEWD0l59ICA2wuyKJgi36kwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIg2wlMD DUc80frjegQAcMWJ8OmDMB8GA1UdIwQYMBaAFOew4VPEFNE4VIradejNBc1pNnIG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNDJDQS9EMzREQjk3RTFE QTAxMUUyODNBMTYxOTIwOEIwMkNEMi81N0RoVThRVTBUaFVpdHAxNk0wRnpXazJj Z1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzU3RGhVOFFVMFRoVWl0cDE2TTBGeldrMmNnWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NDJDQS9EMzREQjk3RTFEQTAxMUUyODNBMTYxOTIwOEIwMkNEMi81N0RoVThRVTBU aFVpdHAxNk0wRnpXazJjZ1kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBNsWGS35KAlzWx9nxSu1me7/SikUHrAbK4/9Bk8OOb02HeuiMldcjU VNppmKbwKHQrDoHcwOcBlB7S0g2fSbYXqlfn+Nl3URRD+dFI7vege46TAxOOliTZ dML1px3dof+JLNR59BpiXIp5UlMzalpby3HU9gmmiGXuQpGIVKkuVRpW/HCqAnTz UDAHbztIPXIqEz4DANlbjzZbJLoFdWUHGisAEmehRC/jnPjoK1/q9V8LkSywcRph SHXNVP/65eWVSiVtYN410RtMTXUQeiVgwe4mpFQezjRb9PB/G3on/06DjaR82E+v HsaHBQl0D8sn9C4+NdO4Y+D+kyNz7r/U -----END CERTIFICATE-----Generated at Wed Jun 4 00:01:45 2025 by rpki-client