$ rpki-client -vvf rpki.apnic.net/member_repository/A91B6C85/28707CBE288611EF8F1FB185C4F9AE02/7TFghH3ErtktjFnRmEZbHL7y3yI.mft File: 7TFghH3ErtktjFnRmEZbHL7y3yI.mft (raw, json) Hash identifier: eJkKNvCC1QU2MrJKTbUNNoIDLbSCJQvPWf2EcQ9M6+w= Subject key identifier: 5E:FD:E4:9A:24:E6:63:00:CF:24:CA:8B:E1:CE:B9:0D:82:0F:33:E7 Authority key identifier: ED:31:60:84:7D:C4:AE:D9:2D:8C:59:D1:98:46:5B:1C:BE:F2:DF:22 Certificate issuer: /CN=A91B6C85/serialNumber=ED3160847DC4AED92D8C59D198465B1CBEF2DF22 Certificate serial: B5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7TFghH3ErtktjFnRmEZbHL7y3yI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B6C85/28707CBE288611EF8F1FB185C4F9AE02/7TFghH3ErtktjFnRmEZbHL7y3yI.mft Manifest number: B5 Signing time: Sat 31 May 2025 05:32:47 +0000 Manifest this update: Sat 31 May 2025 05:32:46 +0000 Manifest next update: Sat 07 Jun 2025 05:32:46 +0000 Files and hashes: 1: 7TFghH3ErtktjFnRmEZbHL7y3yI.crl (hash: 0HX5a9165OrrVTodk7rcPzlKkpcYXtVSSYUKwc4GHIU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B6C85/28707CBE288611EF8F1FB185C4F9AE02/7TFghH3ErtktjFnRmEZbHL7y3yI.crl rsync://rpki.apnic.net/member_repository/A91B6C85/28707CBE288611EF8F1FB185C4F9AE02/7TFghH3ErtktjFnRmEZbHL7y3yI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7TFghH3ErtktjFnRmEZbHL7y3yI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 05:32:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 181 (0xb5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B6C85, serialNumber=ED3160847DC4AED92D8C59D198465B1CBEF2DF22 Validity Not Before: May 31 05:32:46 2025 GMT Not After : Jun 7 05:32:46 2025 GMT Subject: CN=683a947f-9121 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:cb:e6:a5:1b:a4:af:ab:b4:e8:d1:5a:42:d1: 32:fa:92:1f:6e:7d:7d:86:08:07:10:9b:70:c6:2d: 79:9c:2d:04:d0:da:8e:09:03:ad:c7:6f:45:34:da: 31:69:24:aa:1e:0b:eb:d2:cd:66:b4:4a:4f:86:82: 2b:09:22:eb:8e:43:8a:50:42:93:0f:7a:af:f1:c9: 92:98:b0:c4:3c:54:a4:9b:6f:e2:37:14:81:e7:df: 65:b4:60:55:5f:4c:18:6a:0a:4f:72:a8:d1:01:59: d1:c8:21:81:c4:02:a4:0d:ff:80:4e:1b:31:39:69: 45:c2:f6:8c:57:05:fa:52:ea:e4:93:f5:30:85:eb: eb:4f:81:f7:4c:c0:f7:c3:4e:c5:cc:41:df:91:96: 18:48:99:20:a0:75:ec:a6:47:6d:41:4e:63:18:5a: 52:d1:14:ef:b8:ea:13:33:90:ac:e5:cb:9b:95:ee: 63:60:a9:9c:9d:16:84:9b:fe:d0:12:ee:f1:9e:f4: af:43:d8:9c:11:87:84:03:c3:05:ed:6c:20:5a:87: c6:a3:0e:ad:4e:53:e4:18:ce:e3:0a:92:3f:c1:33: 06:c2:e6:04:74:ea:53:e6:7c:2e:16:b0:b5:82:8a: 6b:e3:1f:f2:8c:2a:e7:25:ff:96:e5:22:e2:ad:04: 40:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5E:FD:E4:9A:24:E6:63:00:CF:24:CA:8B:E1:CE:B9:0D:82:0F:33:E7 X509v3 Authority Key Identifier: keyid:ED:31:60:84:7D:C4:AE:D9:2D:8C:59:D1:98:46:5B:1C:BE:F2:DF:22 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B6C85/28707CBE288611EF8F1FB185C4F9AE02/7TFghH3ErtktjFnRmEZbHL7y3yI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7TFghH3ErtktjFnRmEZbHL7y3yI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B6C85/28707CBE288611EF8F1FB185C4F9AE02/7TFghH3ErtktjFnRmEZbHL7y3yI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3a:f1:9b:91:11:d6:06:29:24:66:a9:e6:9a:4b:6c:a1:e0:b4: 4c:a6:6a:07:64:7f:0a:09:73:b3:3f:66:68:5d:d4:67:68:57: c1:1d:fc:cf:d4:0f:dd:87:08:1c:2f:2a:1e:00:ac:52:36:a8: 84:2d:c8:3d:8b:3c:b6:1b:ca:64:d7:12:c9:3f:5e:41:fe:24: 59:29:f5:9a:af:d6:f3:87:b3:04:25:2e:fe:b7:79:d4:24:27: 2a:3f:83:fc:d2:51:8b:d7:3a:91:26:b3:16:e8:86:8e:d9:0d: d4:23:42:71:26:8a:3d:7b:8a:b2:fb:b0:e3:3b:9a:d1:e2:57: 2e:39:57:ec:ab:35:d6:f5:60:d3:09:52:47:77:5e:d0:7e:4d: b8:ea:27:43:c0:e8:aa:e7:52:da:0d:e8:11:27:a4:52:47:7a: ea:42:b8:18:78:e9:a4:f7:85:0e:bc:2c:dc:f8:ee:50:8e:c7: 8a:81:23:a7:bf:81:20:32:20:95:4a:14:fe:7d:aa:21:26:28: 2d:09:3e:9a:47:58:c2:a0:33:55:7b:9e:0d:b7:8e:47:fc:36: c7:ae:71:c4:e6:66:ae:d4:58:b3:fe:2a:a0:1a:a9:42:7d:a2: 67:ea:4a:14:86:00:88:f6:b3:75:8d:44:97:38:d7:73:a7:dc: 9d:eb:7d:29 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICALUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjZDODUxMTAvBgNVBAUTKEVEMzE2MDg0N0RDNEFFRDkyRDhDNTlEMTk4NDY1QjFD QkVGMkRGMjIwHhcNMjUwNTMxMDUzMjQ2WhcNMjUwNjA3MDUzMjQ2WjAYMRYwFAYD VQQDEw02ODNhOTQ3Zi05MTIxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnsvmpRukr6u06NFaQtEy+pIfbn19hggHEJtwxi15nC0E0NqOCQOtx29FNNox aSSqHgvr0s1mtEpPhoIrCSLrjkOKUEKTD3qv8cmSmLDEPFSkm2/iNxSB599ltGBV X0wYagpPcqjRAVnRyCGBxAKkDf+AThsxOWlFwvaMVwX6Uurkk/UwhevrT4H3TMD3 w07FzEHfkZYYSJkgoHXspkdtQU5jGFpS0RTvuOoTM5Cs5cuble5jYKmcnRaEm/7Q Eu7xnvSvQ9icEYeEA8MF7WwgWofGow6tTlPkGM7jCpI/wTMGwuYEdOpT5nwuFrC1 gopr4x/yjCrnJf+W5SLirQRAMQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFF795Jok 5mMAzyTKi+HOuQ2CDzPnMB8GA1UdIwQYMBaAFO0xYIR9xK7ZLYxZ0ZhGWxy+8t8i MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNkM4NS8yODcwN0NCRTI4 ODYxMUVGOEYxRkIxODVDNEY5QUUwMi83VEZnaEgzRXJ0a3RqRm5SbUVaYkhMN3kz eUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzdURmdoSDNFcnRrdGpGblJtRVpiSEw3eTN5SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NkM4NS8yODcwN0NCRTI4ODYxMUVGOEYxRkIxODVDNEY5QUUwMi83VEZnaEgzRXJ0 a3RqRm5SbUVaYkhMN3kzeUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA68ZuREdYGKSRmqeaaS2yh4LRMpmoHZH8KCXOzP2ZoXdRnaFfBHfzP 1A/dhwgcLyoeAKxSNqiELcg9izy2G8pk1xLJP15B/iRZKfWar9bzh7MEJS7+t3nU JCcqP4P80lGL1zqRJrMW6IaO2Q3UI0JxJoo9e4qy+7DjO5rR4lcuOVfsqzXW9WDT CVJHd17Qfk246idDwOiq51LaDegRJ6RSR3rqQrgYeOmk94UOvCzc+O5QjseKgSOn v4EgMiCVShT+faohJigtCT6aR1jCoDNVe54Nt45H/DbHrnHE5mau1Fiz/iqgGqlC faJn6koUhgCI9rN1jUSXONdzp9yd630p -----END CERTIFICATE-----Generated at Sat May 31 17:51:34 2025 by rpki-client