$ rpki-client -vvf rpki.apnic.net/member_repository/A91B65AC/D4F3DB9EE1E011EEAF6E1E68C4F9AE02/cwYbqQQBgewK602PbgA_g4_JxI8.mft File: cwYbqQQBgewK602PbgA_g4_JxI8.mft (raw, json) Hash identifier: tsi/RWp+BnF2ME9+s54kLeQ+Zo/fhFEhSkdZL8Z/Maw= Subject key identifier: 95:84:7D:09:BC:F4:DF:B9:5A:A7:77:C4:7D:83:1D:84:5A:3B:34:8F Authority key identifier: 73:06:1B:A9:04:01:81:EC:0A:EB:4D:8F:6E:00:3F:83:8F:C9:C4:8F Certificate issuer: /CN=A91B65AC/serialNumber=73061BA9040181EC0AEB4D8F6E003F838FC9C48F Certificate serial: E5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cwYbqQQBgewK602PbgA_g4_JxI8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B65AC/D4F3DB9EE1E011EEAF6E1E68C4F9AE02/cwYbqQQBgewK602PbgA_g4_JxI8.mft Manifest number: E3 Signing time: Sat 31 May 2025 05:03:10 +0000 Manifest this update: Sat 31 May 2025 05:03:09 +0000 Manifest next update: Sat 07 Jun 2025 05:03:09 +0000 Files and hashes: 1: cwYbqQQBgewK602PbgA_g4_JxI8.crl (hash: o2Ru3Eq0hwhjzKBxDraIPuNuF+bnlJyxt1vcI0xw04s=) 2: 7D2E766CE5AF11EE9A0A642FC4F9AE02.roa (hash: Fb0vXPsGENJ9HpaLetk+Rjo+o9pYvcloVY8N7cgyCIk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B65AC/D4F3DB9EE1E011EEAF6E1E68C4F9AE02/cwYbqQQBgewK602PbgA_g4_JxI8.crl rsync://rpki.apnic.net/member_repository/A91B65AC/D4F3DB9EE1E011EEAF6E1E68C4F9AE02/cwYbqQQBgewK602PbgA_g4_JxI8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cwYbqQQBgewK602PbgA_g4_JxI8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 05:03:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 229 (0xe5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B65AC, serialNumber=73061BA9040181EC0AEB4D8F6E003F838FC9C48F Validity Not Before: May 31 05:03:09 2025 GMT Not After : Jun 7 05:03:09 2025 GMT Subject: CN=683a8d8d-f56b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:cb:cb:04:03:d7:3f:57:ef:fd:16:d7:9f:9b: 29:0a:37:9b:4e:e5:a2:1c:39:e0:42:d9:3a:42:71: 11:ab:a8:a5:be:da:ed:55:13:1f:fc:52:3c:ec:34: e8:36:18:06:06:b8:39:1a:24:3c:3e:0f:05:25:0e: 3a:bb:57:f4:a5:d0:55:ce:58:e6:ae:57:3c:bd:32: 43:88:f8:09:8b:67:43:c8:44:16:1b:11:fe:e1:95: bc:73:bd:b2:9e:34:cc:32:63:79:2f:fc:95:bf:be: 84:21:70:75:b2:d0:73:07:7b:c3:53:c9:61:70:53: 42:db:64:38:e3:36:6a:41:ec:6b:ab:92:e9:6c:14: 62:ac:c1:53:2e:5b:a6:1a:6a:3f:ae:4f:9a:58:7b: eb:7c:8d:cd:78:1f:cc:d2:dd:4f:79:6a:d1:5b:09: 8d:66:8a:93:18:d3:40:38:f1:db:cc:45:d1:c7:a8: 5c:ff:e2:84:cd:70:a5:bb:8c:c3:bd:91:d4:02:f4: b2:41:52:5b:14:6f:53:fb:ed:29:60:09:5d:9a:15: e6:8a:31:78:94:6f:86:10:bc:1a:31:d5:c4:2d:cf: 0e:b9:44:05:9d:4c:44:6f:84:4a:ce:b9:38:93:44: 5a:f7:fc:74:2d:96:43:8b:f3:16:60:59:0a:86:10: 45:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 95:84:7D:09:BC:F4:DF:B9:5A:A7:77:C4:7D:83:1D:84:5A:3B:34:8F X509v3 Authority Key Identifier: keyid:73:06:1B:A9:04:01:81:EC:0A:EB:4D:8F:6E:00:3F:83:8F:C9:C4:8F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B65AC/D4F3DB9EE1E011EEAF6E1E68C4F9AE02/cwYbqQQBgewK602PbgA_g4_JxI8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cwYbqQQBgewK602PbgA_g4_JxI8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B65AC/D4F3DB9EE1E011EEAF6E1E68C4F9AE02/cwYbqQQBgewK602PbgA_g4_JxI8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a8:a5:2d:c8:de:0b:c5:51:01:c5:32:65:6c:90:4e:33:aa:69: 46:fd:5f:44:2d:9d:55:e8:24:f9:aa:76:c9:0c:84:97:ac:05: 28:33:3a:bd:dd:cb:74:3a:70:aa:01:08:45:2e:6a:7a:41:e8: 25:0e:ff:1a:4b:15:3e:3c:37:8c:7b:54:52:d2:ab:50:33:1f: e5:23:e1:6e:52:2a:91:2a:1a:d3:c8:01:3d:e1:3c:74:8a:05: 66:c5:f3:57:ec:3b:05:40:de:e9:7e:9a:8c:32:53:be:fd:83: e2:26:90:71:be:8b:e4:05:7e:1a:a9:a7:df:7b:65:5b:f8:d5: ef:5c:f4:e9:ee:c8:20:df:cd:56:af:cd:c0:3f:86:d6:b1:7d: b2:1b:4c:60:f5:98:06:27:30:8f:0a:d9:9a:34:3f:b5:df:68: 16:8c:44:55:30:75:3d:9f:88:be:70:17:53:e4:ba:cd:df:9f: fb:b9:2d:3c:f9:11:34:21:dd:b6:14:d6:6e:4b:72:ae:4f:f5: 83:cf:01:32:53:76:4e:63:e8:64:6b:63:33:90:56:71:f8:f9: 35:e1:67:49:2b:b8:21:b9:af:e4:cf:98:16:02:6c:4d:d5:a7: 33:9e:43:63:3a:12:19:c8:34:af:cc:f6:8f:46:54:ab:f0:78: 61:a4:bb:f4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAOUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjY1QUMxMTAvBgNVBAUTKDczMDYxQkE5MDQwMTgxRUMwQUVCNEQ4RjZFMDAzRjgz OEZDOUM0OEYwHhcNMjUwNTMxMDUwMzA5WhcNMjUwNjA3MDUwMzA5WjAYMRYwFAYD VQQDEw02ODNhOGQ4ZC1mNTZiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqMvLBAPXP1fv/RbXn5spCjebTuWiHDngQtk6QnERq6ilvtrtVRMf/FI87DTo NhgGBrg5GiQ8Pg8FJQ46u1f0pdBVzljmrlc8vTJDiPgJi2dDyEQWGxH+4ZW8c72y njTMMmN5L/yVv76EIXB1stBzB3vDU8lhcFNC22Q44zZqQexrq5LpbBRirMFTLlum Gmo/rk+aWHvrfI3NeB/M0t1PeWrRWwmNZoqTGNNAOPHbzEXRx6hc/+KEzXClu4zD vZHUAvSyQVJbFG9T++0pYAldmhXmijF4lG+GELwaMdXELc8OuUQFnUxEb4RKzrk4 k0Ra9/x0LZZDi/MWYFkKhhBFdQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJWEfQm8 9N+5Wqd3xH2DHYRaOzSPMB8GA1UdIwQYMBaAFHMGG6kEAYHsCutNj24AP4OPycSP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNjVBQy9ENEYzREI5RUUx RTAxMUVFQUY2RTFFNjhDNEY5QUUwMi9jd1licVFRQmdld0s2MDJQYmdBX2c0X0p4 STguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2N3WWJxUVFCZ2V3SzYwMlBiZ0FfZzRfSnhJOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NjVBQy9ENEYzREI5RUUxRTAxMUVFQUY2RTFFNjhDNEY5QUUwMi9jd1licVFRQmdl d0s2MDJQYmdBX2c0X0p4STgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCopS3I3gvFUQHFMmVskE4zqmlG/V9ELZ1V6CT5qnbJDISXrAUoMzq9 3ct0OnCqAQhFLmp6QeglDv8aSxU+PDeMe1RS0qtQMx/lI+FuUiqRKhrTyAE94Tx0 igVmxfNX7DsFQN7pfpqMMlO+/YPiJpBxvovkBX4aqaffe2Vb+NXvXPTp7sgg381W r83AP4bWsX2yG0xg9ZgGJzCPCtmaND+132gWjERVMHU9n4i+cBdT5LrN35/7uS08 +RE0Id22FNZuS3KuT/WDzwEyU3ZOY+hka2MzkFZx+Pk14WdJK7ghua/kz5gWAmxN 1acznkNjOhIZyDSvzPaPRlSr8HhhpLv0 -----END CERTIFICATE-----Generated at Sat May 31 17:35:58 2025 by rpki-client