$ rpki-client -vvf rpki.apnic.net/member_repository/A91B5CEA/1F63A56864EE11EDA4A34513C4F9AE02/RITQfaaNUwUM3PaxPAwFReZFfOU.mft File: RITQfaaNUwUM3PaxPAwFReZFfOU.mft (raw, json) Hash identifier: GQPdT1Y+VfBb94acK94+Fsrj+OvF9pqgvizSiWFG5sA= Subject key identifier: EC:DE:20:45:7A:38:CF:34:6C:02:B3:6E:59:F9:06:A4:78:18:83:BE Authority key identifier: 44:84:D0:7D:A6:8D:53:05:0C:DC:F6:B1:3C:0C:05:45:E6:45:7C:E5 Certificate issuer: /CN=A91B5CEA/serialNumber=4484D07DA68D53050CDCF6B13C0C0545E6457CE5 Certificate serial: 01E3 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/RITQfaaNUwUM3PaxPAwFReZFfOU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B5CEA/1F63A56864EE11EDA4A34513C4F9AE02/RITQfaaNUwUM3PaxPAwFReZFfOU.mft Manifest number: 01E0 Signing time: Sat 07 Jun 2025 02:17:35 +0000 Manifest this update: Sat 07 Jun 2025 02:17:34 +0000 Manifest next update: Sat 14 Jun 2025 02:17:34 +0000 Files and hashes: 1: RITQfaaNUwUM3PaxPAwFReZFfOU.crl (hash: E7XbkQy89zB+BiveAPjMuhi6qlkFqM+qL7p1KpPUBts=) 2: B3795CBC64F211ED9AEC046FC4F9AE02.roa (hash: EdWi73Mh5xQLy3TivA4ubB2nlEznz8QrqPnUKcwGaiM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B5CEA/1F63A56864EE11EDA4A34513C4F9AE02/RITQfaaNUwUM3PaxPAwFReZFfOU.crl rsync://rpki.apnic.net/member_repository/A91B5CEA/1F63A56864EE11EDA4A34513C4F9AE02/RITQfaaNUwUM3PaxPAwFReZFfOU.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/RITQfaaNUwUM3PaxPAwFReZFfOU.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 14 Jun 2025 02:17:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 483 (0x1e3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B5CEA, serialNumber=4484D07DA68D53050CDCF6B13C0C0545E6457CE5 Validity Not Before: Jun 7 02:17:34 2025 GMT Not After : Jun 14 02:17:34 2025 GMT Subject: CN=6843a13f-a9ca Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:c6:17:aa:35:58:9f:45:15:cb:5f:e1:da:c6: 73:a6:e9:3f:69:7c:14:bd:21:89:f4:2d:0f:2f:e6: 9e:c5:e1:a9:3c:bb:b0:21:a7:da:ad:3e:22:58:9c: 05:43:f4:75:38:99:a3:23:36:e9:d9:82:1b:f3:dd: 98:76:01:2f:02:ea:0b:60:87:e3:ad:0f:e1:34:52: 1c:12:09:28:6d:1e:a6:f6:3d:cf:c2:5a:0f:ab:4b: f9:ea:f2:da:d4:e4:95:e8:ec:1a:cf:a0:9a:d5:19: a8:6d:9d:87:6a:36:7e:d4:a8:31:43:d2:61:72:72: b6:2c:f4:79:47:d1:f9:47:b5:84:00:f7:e3:5c:03: 84:3a:80:bf:84:90:45:81:fb:02:cb:32:e9:43:34: 07:7b:1c:d9:48:b4:4c:47:85:3a:82:32:44:c1:a7: f7:d5:ec:46:05:7e:d3:6d:a4:86:cf:4d:38:ce:dc: 61:8b:93:0a:7f:f6:48:1b:a6:a2:9b:24:77:62:58: b9:a1:40:87:da:11:30:66:75:ba:fd:e2:82:78:6c: 1f:04:4c:05:df:48:bb:42:b3:a9:4e:b7:f1:53:d7: 8a:39:a6:1b:2f:37:16:91:fd:6a:ef:a3:52:df:87: d3:a3:8f:83:17:4f:1d:5a:71:79:6b:d4:4f:a7:63: 48:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EC:DE:20:45:7A:38:CF:34:6C:02:B3:6E:59:F9:06:A4:78:18:83:BE X509v3 Authority Key Identifier: keyid:44:84:D0:7D:A6:8D:53:05:0C:DC:F6:B1:3C:0C:05:45:E6:45:7C:E5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B5CEA/1F63A56864EE11EDA4A34513C4F9AE02/RITQfaaNUwUM3PaxPAwFReZFfOU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/RITQfaaNUwUM3PaxPAwFReZFfOU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B5CEA/1F63A56864EE11EDA4A34513C4F9AE02/RITQfaaNUwUM3PaxPAwFReZFfOU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 97:83:f4:e6:27:38:22:90:4c:a4:28:31:95:1b:97:46:5e:f6: ad:0b:94:dd:04:1a:24:f7:30:7b:fa:60:04:be:76:eb:8a:0c: 27:3a:c1:00:8e:89:3e:a5:e3:f8:a4:ae:b0:d7:a6:09:29:5b: 2b:6d:b0:41:8e:46:4e:7d:9e:7d:f0:f9:c2:64:d1:3c:39:02: 7c:6f:86:f4:56:0b:4b:d9:c6:90:0a:56:3b:aa:ac:b4:89:31: d2:dd:3b:54:5b:af:be:2c:98:31:10:52:83:67:8d:09:45:43: 1a:2f:2a:61:22:87:6c:41:5a:a5:ff:0c:14:c8:e3:b6:96:ea: a8:b9:43:8d:4a:78:5f:3d:ad:8f:59:c8:ec:38:75:11:19:24: ae:14:ea:94:6f:bc:fd:b2:2e:ae:8c:4f:02:09:cc:43:60:7a: d0:a7:cc:86:07:ad:c9:73:14:6c:1d:7c:28:ef:96:d8:9b:10: 8b:0f:95:98:5f:1b:eb:26:16:37:2c:07:75:15:da:d5:43:1f: 8f:05:69:c5:cf:7f:15:87:f1:27:95:f3:b8:76:f4:b3:dd:8c: 28:97:e6:4f:1e:c4:0b:c9:f0:20:03:84:e7:d2:93:30:fb:99: 21:4e:89:3e:96:9f:23:3c:35:5c:ea:e6:dc:8c:fe:df:54:03: 5a:50:29:78 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAeMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjVDRUExMTAvBgNVBAUTKDQ0ODREMDdEQTY4RDUzMDUwQ0RDRjZCMTNDMEMwNTQ1 RTY0NTdDRTUwHhcNMjUwNjA3MDIxNzM0WhcNMjUwNjE0MDIxNzM0WjAYMRYwFAYD VQQDEw02ODQzYTEzZi1hOWNhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxMYXqjVYn0UVy1/h2sZzpuk/aXwUvSGJ9C0PL+aexeGpPLuwIafarT4iWJwF Q/R1OJmjIzbp2YIb892YdgEvAuoLYIfjrQ/hNFIcEgkobR6m9j3PwloPq0v56vLa 1OSV6Owaz6Ca1RmobZ2HajZ+1KgxQ9JhcnK2LPR5R9H5R7WEAPfjXAOEOoC/hJBF gfsCyzLpQzQHexzZSLRMR4U6gjJEwaf31exGBX7TbaSGz004ztxhi5MKf/ZIG6ai myR3Yli5oUCH2hEwZnW6/eKCeGwfBEwF30i7QrOpTrfxU9eKOaYbLzcWkf1q76NS 34fTo4+DF08dWnF5a9RPp2NIUwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOzeIEV6 OM80bAKzbln5BqR4GIO+MB8GA1UdIwQYMBaAFESE0H2mjVMFDNz2sTwMBUXmRXzl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNUNFQS8xRjYzQTU2ODY0 RUUxMUVEQTRBMzQ1MTNDNEY5QUUwMi9SSVRRZmFhTlV3VU0zUGF4UEF3RlJlWkZm T1UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL1JJVFFmYWFOVXdVTTNQYXhQQXdGUmVaRmZPVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NUNFQS8xRjYzQTU2ODY0RUUxMUVEQTRBMzQ1MTNDNEY5QUUwMi9SSVRRZmFhTlV3 VU0zUGF4UEF3RlJlWkZmT1UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCXg/TmJzgikEykKDGVG5dGXvatC5TdBBok9zB7+mAEvnbrigwnOsEA jok+peP4pK6w16YJKVsrbbBBjkZOfZ598PnCZNE8OQJ8b4b0VgtL2caQClY7qqy0 iTHS3TtUW6++LJgxEFKDZ40JRUMaLyphIodsQVql/wwUyOO2luqouUONSnhfPa2P WcjsOHURGSSuFOqUb7z9si6ujE8CCcxDYHrQp8yGB63JcxRsHXwo75bYmxCLD5WY XxvrJhY3LAd1FdrVQx+PBWnFz38Vh/EnlfO4dvSz3Ywol+ZPHsQLyfAgA4Tn0pMw +5khTok+lp8jPDVc6ubcjP7fVANaUCl4 -----END CERTIFICATE-----Generated at Sat Jun 7 15:29:13 2025 by rpki-client