$ rpki-client -vvf rpki.apnic.net/member_repository/A91B5BD4/08AD6D226DB811ED8833FA0DC4F9AE02/rUH7gn-TEEuJ-m-nhfIRUL5vl5o.mft File: rUH7gn-TEEuJ-m-nhfIRUL5vl5o.mft (raw, json) Hash identifier: wgKnhnNofcwp/2UMp+U6pkoiqWvpUSRLBLzLiQsv+78= Subject key identifier: 98:58:83:79:18:B9:DC:5B:29:E0:E5:EB:1B:DF:7C:D7:78:06:A2:B3 Authority key identifier: AD:41:FB:82:7F:93:10:4B:89:FA:6F:A7:85:F2:11:50:BE:6F:97:9A Certificate issuer: /CN=A91B5BD4/serialNumber=AD41FB827F93104B89FA6FA785F21150BE6F979A Certificate serial: 01DC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rUH7gn-TEEuJ-m-nhfIRUL5vl5o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B5BD4/08AD6D226DB811ED8833FA0DC4F9AE02/rUH7gn-TEEuJ-m-nhfIRUL5vl5o.mft Manifest number: 01D7 Signing time: Sat 31 May 2025 02:31:09 +0000 Manifest this update: Sat 31 May 2025 02:31:09 +0000 Manifest next update: Sat 07 Jun 2025 02:31:09 +0000 Files and hashes: 1: rUH7gn-TEEuJ-m-nhfIRUL5vl5o.crl (hash: AyytMhC0AIltHZHB70VqYwx+N1SQcX1hGx4yOQlUMVQ=) 2: C248DFA26DBB11EDB3635D28C4F9AE02.roa (hash: gQzK7hVZPrZ6aKsXhdiMNjPzCoQYQhoW/DlG0FlsTCE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B5BD4/08AD6D226DB811ED8833FA0DC4F9AE02/rUH7gn-TEEuJ-m-nhfIRUL5vl5o.crl rsync://rpki.apnic.net/member_repository/A91B5BD4/08AD6D226DB811ED8833FA0DC4F9AE02/rUH7gn-TEEuJ-m-nhfIRUL5vl5o.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rUH7gn-TEEuJ-m-nhfIRUL5vl5o.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 02:31:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 476 (0x1dc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B5BD4, serialNumber=AD41FB827F93104B89FA6FA785F21150BE6F979A Validity Not Before: May 31 02:31:09 2025 GMT Not After : Jun 7 02:31:09 2025 GMT Subject: CN=683a69ed-be5a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f2:02:f0:1d:18:9f:06:9c:e5:87:6c:e6:df:dd: 56:3d:86:c0:59:d6:03:72:45:b4:57:91:a0:8b:e3: 1a:90:06:7d:0e:bb:97:8f:9a:7e:dd:98:02:df:1a: 1c:3f:db:9e:7d:b0:1c:85:f4:6d:ec:6e:41:54:b1: be:61:c2:31:32:55:e3:35:6b:d2:c2:c5:f0:92:ef: 82:03:3b:40:c2:58:f0:a5:25:9f:90:27:96:bc:c1: 0f:c4:a9:a6:3d:86:2a:ef:14:43:eb:9c:f6:70:9c: 62:9e:73:d1:af:77:bf:a8:b7:0b:99:b7:1c:f9:3d: 8b:b0:db:6a:1b:27:a0:71:6e:8d:59:47:32:79:f4: 21:90:48:33:9e:93:73:97:92:73:8a:80:6e:2b:00: 39:aa:1d:59:5c:44:d2:df:80:0c:62:eb:e4:d1:b1: 5e:18:a5:7f:26:6d:7d:9a:de:82:c2:76:41:67:80: fa:b0:c2:78:a5:59:69:40:b3:7a:8a:12:6d:4e:60: fb:64:90:46:1f:c3:4e:8a:64:26:b3:8d:d1:7b:b6: 87:66:f7:45:16:70:6f:05:ae:aa:a4:2d:4e:75:7f: e8:40:91:38:e6:95:38:df:c9:34:e8:0f:70:d6:f5: f1:71:39:18:39:ea:76:42:1b:87:a0:0c:f4:76:e3: bf:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 98:58:83:79:18:B9:DC:5B:29:E0:E5:EB:1B:DF:7C:D7:78:06:A2:B3 X509v3 Authority Key Identifier: keyid:AD:41:FB:82:7F:93:10:4B:89:FA:6F:A7:85:F2:11:50:BE:6F:97:9A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B5BD4/08AD6D226DB811ED8833FA0DC4F9AE02/rUH7gn-TEEuJ-m-nhfIRUL5vl5o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rUH7gn-TEEuJ-m-nhfIRUL5vl5o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B5BD4/08AD6D226DB811ED8833FA0DC4F9AE02/rUH7gn-TEEuJ-m-nhfIRUL5vl5o.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7f:9f:a5:0d:11:9e:b7:81:11:75:8c:95:6b:5a:46:33:6e:de: 16:6a:26:7c:d0:3b:1a:f5:ef:84:18:ae:8c:7a:ff:58:09:8b: 2f:36:78:44:ad:b2:d0:f2:50:2b:10:3f:8e:d8:6b:d9:f9:87: 9b:e6:75:4c:19:0a:85:96:9e:8e:f1:f4:f9:c0:a3:a1:aa:6f: 8d:15:81:2e:cf:bb:0d:b5:71:33:c6:0e:06:e7:1c:79:d5:59: 10:56:da:06:c3:cc:74:a5:07:58:d1:63:b6:0e:8f:76:22:e3: 16:c4:b2:88:08:ff:51:3b:5d:fe:23:7b:6b:b2:ad:e9:c4:83: b4:b0:8f:11:53:fb:14:00:cc:13:dc:38:a3:fe:89:e6:eb:98: 4f:11:b9:7d:c5:47:43:5d:36:a2:06:0d:d4:21:72:29:10:a8: c8:95:31:76:dc:63:83:22:cc:a2:56:3d:83:fb:f9:c5:0d:4c: 90:1e:a8:60:1a:d9:c8:34:5f:67:b3:8a:b4:ab:c9:ff:66:be: f6:b6:43:a5:91:5f:43:a5:10:ed:a2:9c:96:ae:4e:16:a5:79: 44:b4:96:79:91:48:38:3d:34:bc:b1:76:21:00:e5:cf:98:5f: c3:a8:7d:e4:76:fd:ee:46:b9:ac:bd:65:e1:54:e5:14:79:55: c4:90:f8:70 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAdwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjVCRDQxMTAvBgNVBAUTKEFENDFGQjgyN0Y5MzEwNEI4OUZBNkZBNzg1RjIxMTUw QkU2Rjk3OUEwHhcNMjUwNTMxMDIzMTA5WhcNMjUwNjA3MDIzMTA5WjAYMRYwFAYD VQQDEw02ODNhNjllZC1iZTVhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8gLwHRifBpzlh2zm391WPYbAWdYDckW0V5Ggi+MakAZ9DruXj5p+3ZgC3xoc P9uefbAchfRt7G5BVLG+YcIxMlXjNWvSwsXwku+CAztAwljwpSWfkCeWvMEPxKmm PYYq7xRD65z2cJxinnPRr3e/qLcLmbcc+T2LsNtqGyegcW6NWUcyefQhkEgznpNz l5JzioBuKwA5qh1ZXETS34AMYuvk0bFeGKV/Jm19mt6CwnZBZ4D6sMJ4pVlpQLN6 ihJtTmD7ZJBGH8NOimQms43Re7aHZvdFFnBvBa6qpC1OdX/oQJE45pU438k06A9w 1vXxcTkYOep2QhuHoAz0duO/0QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJhYg3kY udxbKeDl6xvffNd4BqKzMB8GA1UdIwQYMBaAFK1B+4J/kxBLifpvp4XyEVC+b5ea MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNUJENC8wOEFENkQyMjZE QjgxMUVEODgzM0ZBMERDNEY5QUUwMi9yVUg3Z24tVEVFdUotbS1uaGZJUlVMNXZs NW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JVSDdnbi1URUV1Si1tLW5oZklSVUw1dmw1by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NUJENC8wOEFENkQyMjZEQjgxMUVEODgzM0ZBMERDNEY5QUUwMi9yVUg3Z24tVEVF dUotbS1uaGZJUlVMNXZsNW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB/n6UNEZ63gRF1jJVrWkYzbt4WaiZ80Dsa9e+EGK6Mev9YCYsvNnhE rbLQ8lArED+O2GvZ+Yeb5nVMGQqFlp6O8fT5wKOhqm+NFYEuz7sNtXEzxg4G5xx5 1VkQVtoGw8x0pQdY0WO2Do92IuMWxLKICP9RO13+I3trsq3pxIO0sI8RU/sUAMwT 3Dij/onm65hPEbl9xUdDXTaiBg3UIXIpEKjIlTF23GODIsyiVj2D+/nFDUyQHqhg GtnINF9ns4q0q8n/Zr72tkOlkV9DpRDtopyWrk4WpXlEtJZ5kUg4PTS8sXYhAOXP mF/DqH3kdv3uRrmsvWXhVOUUeVXEkPhw -----END CERTIFICATE-----Generated at Sat May 31 16:28:45 2025 by rpki-client