$ rpki-client -vvf rpki.apnic.net/member_repository/A91B829A/1F23E058057F11EAA5516B3FC4F9AE02/iV5rynpcNtnzBEctDScTpILJ2yU.mft File: iV5rynpcNtnzBEctDScTpILJ2yU.mft (raw, json) Hash identifier: A/3BJ2oujx4NkaloRrb/YtICRZhG6vw7VohAIY/29MI= Subject key identifier: 68:15:C9:D7:A4:8C:DF:1E:A1:F5:D3:3F:2E:50:AF:11:A9:19:F9:E4 Authority key identifier: 89:5E:6B:CA:7A:5C:36:D9:F3:04:47:2D:0D:27:13:A4:82:C9:DB:25 Certificate issuer: /CN=A91B829A/serialNumber=895E6BCA7A5C36D9F304472D0D2713A482C9DB25 Certificate serial: 0C4E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iV5rynpcNtnzBEctDScTpILJ2yU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B829A/1F23E058057F11EAA5516B3FC4F9AE02/iV5rynpcNtnzBEctDScTpILJ2yU.mft Manifest number: 0C44 Signing time: Fri 30 May 2025 18:38:43 +0000 Manifest this update: Fri 30 May 2025 18:38:43 +0000 Manifest next update: Fri 06 Jun 2025 18:38:43 +0000 Files and hashes: 1: iV5rynpcNtnzBEctDScTpILJ2yU.crl (hash: FdnQH1v/3EkM075jyZw19i7Tz9T8ZBd0xfPSMSWHVVw=) 2: 37759456617811ECBB095A62C4F9AE02.roa (hash: v3SUpuH8xWSras56GKvRnCYqonsTS7bWwXVAuKOWPmw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B829A/1F23E058057F11EAA5516B3FC4F9AE02/iV5rynpcNtnzBEctDScTpILJ2yU.crl rsync://rpki.apnic.net/member_repository/A91B829A/1F23E058057F11EAA5516B3FC4F9AE02/iV5rynpcNtnzBEctDScTpILJ2yU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iV5rynpcNtnzBEctDScTpILJ2yU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 18:38:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3150 (0xc4e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B829A, serialNumber=895E6BCA7A5C36D9F304472D0D2713A482C9DB25 Validity Not Before: May 30 18:38:43 2025 GMT Not After : Jun 6 18:38:43 2025 GMT Subject: CN=6839fb33-42d0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:f1:f4:5a:0d:07:90:db:0d:8f:f4:5f:5d:7d: 28:07:4e:65:1a:d0:33:9c:77:c9:c3:9f:87:39:5f: 80:d5:09:f3:22:c9:81:2a:f5:58:98:a1:0e:41:a9: 76:ee:02:3f:5a:8d:0a:9b:29:99:aa:91:c7:9e:c6: a4:1b:52:ee:ae:d6:da:c9:57:78:68:b5:e5:e2:6a: 13:59:7c:0d:e7:9b:70:7a:df:6d:33:17:ba:08:47: 28:99:01:f9:66:50:c8:62:20:24:16:8b:e4:dd:69: 8a:9d:55:45:12:c5:5a:88:68:2c:a8:29:ff:c9:32: c0:27:aa:80:bb:62:d8:e8:14:43:55:2a:5f:8c:c3: 17:8e:4c:39:30:a7:d6:5d:60:5e:13:23:a9:9d:74: bb:9b:9e:2c:9f:b2:33:7e:82:1a:c4:1a:2e:2b:69: 64:32:2b:d6:cc:1c:55:72:9a:6d:a9:66:05:63:64: 9d:a9:53:8e:e5:42:d8:8d:d2:0f:1c:84:6a:1d:30: dd:d2:24:91:c2:f0:06:59:89:4c:87:15:81:3a:b4: 35:2b:b1:ca:d0:56:ad:fe:2f:df:52:16:fd:fc:be: e2:da:d0:38:17:35:04:78:01:64:3f:26:f2:7f:d7: 54:16:2b:8c:a2:33:be:03:01:e9:b8:53:f2:50:9a: 5b:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 68:15:C9:D7:A4:8C:DF:1E:A1:F5:D3:3F:2E:50:AF:11:A9:19:F9:E4 X509v3 Authority Key Identifier: keyid:89:5E:6B:CA:7A:5C:36:D9:F3:04:47:2D:0D:27:13:A4:82:C9:DB:25 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B829A/1F23E058057F11EAA5516B3FC4F9AE02/iV5rynpcNtnzBEctDScTpILJ2yU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iV5rynpcNtnzBEctDScTpILJ2yU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B829A/1F23E058057F11EAA5516B3FC4F9AE02/iV5rynpcNtnzBEctDScTpILJ2yU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 53:6e:83:bb:1c:ef:b5:4a:2e:91:ef:a3:9b:6f:11:03:d6:77: b0:7a:a8:29:22:42:ba:5b:f1:d3:be:0e:f2:49:dd:07:f6:53: 32:95:2c:64:11:c4:c7:20:98:c3:d3:78:f7:e9:80:75:37:7f: bc:2a:63:43:c7:6e:0c:1d:aa:1b:af:47:c8:3f:4f:68:71:55: 1b:6f:4e:a3:31:80:7f:d9:fc:64:bd:df:3c:d2:87:fc:a3:d0: 04:54:41:16:3e:80:7f:31:ba:35:e8:41:f4:4e:ad:9d:0c:f5: 13:b5:da:b2:ab:fe:24:55:5d:dd:a7:1e:a6:84:74:b2:c7:ad: 51:51:05:e4:b1:1a:5a:06:77:cd:d9:79:1f:43:22:ca:59:52: 5e:de:cc:21:21:fb:e8:a9:c9:4d:10:52:8c:70:a4:2d:77:9c: 6e:cd:5d:10:a2:48:58:7f:29:16:24:1b:65:cd:bb:f6:c2:94: 55:57:c6:04:b6:e8:01:d9:9b:58:3e:bf:6e:2b:80:e9:c0:ae: 64:9e:8c:af:63:9a:cb:2f:81:11:d1:be:2f:f4:23:af:68:c2: 4e:a0:c8:df:85:73:33:05:ab:37:53:4f:de:01:47:75:0e:7f: 01:95:19:e5:f2:dd:08:ad:3f:b6:d5:d4:af:3d:17:6e:de:f2: 19:fc:c6:56 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDE4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjgyOUExMTAvBgNVBAUTKDg5NUU2QkNBN0E1QzM2RDlGMzA0NDcyRDBEMjcxM0E0 ODJDOURCMjUwHhcNMjUwNTMwMTgzODQzWhcNMjUwNjA2MTgzODQzWjAYMRYwFAYD VQQDEw02ODM5ZmIzMy00MmQwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuvH0Wg0HkNsNj/RfXX0oB05lGtAznHfJw5+HOV+A1QnzIsmBKvVYmKEOQal2 7gI/Wo0KmymZqpHHnsakG1LurtbayVd4aLXl4moTWXwN55twet9tMxe6CEcomQH5 ZlDIYiAkFovk3WmKnVVFEsVaiGgsqCn/yTLAJ6qAu2LY6BRDVSpfjMMXjkw5MKfW XWBeEyOpnXS7m54sn7IzfoIaxBouK2lkMivWzBxVcpptqWYFY2SdqVOO5ULYjdIP HIRqHTDd0iSRwvAGWYlMhxWBOrQ1K7HK0Fat/i/fUhb9/L7i2tA4FzUEeAFkPyby f9dUFiuMojO+AwHpuFPyUJpbMwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGgVydek jN8eofXTPy5QrxGpGfnkMB8GA1UdIwQYMBaAFIlea8p6XDbZ8wRHLQ0nE6SCydsl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCODI5QS8xRjIzRTA1ODA1 N0YxMUVBQTU1MTZCM0ZDNEY5QUUwMi9pVjVyeW5wY050bnpCRWN0RFNjVHBJTEoy eVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lWNXJ5bnBjTnRuekJFY3REU2NUcElMSjJ5VS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC ODI5QS8xRjIzRTA1ODA1N0YxMUVBQTU1MTZCM0ZDNEY5QUUwMi9pVjVyeW5wY050 bnpCRWN0RFNjVHBJTEoyeVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBTboO7HO+1Si6R76ObbxED1neweqgpIkK6W/HTvg7ySd0H9lMylSxk EcTHIJjD03j36YB1N3+8KmNDx24MHaobr0fIP09ocVUbb06jMYB/2fxkvd880of8 o9AEVEEWPoB/Mbo16EH0Tq2dDPUTtdqyq/4kVV3dpx6mhHSyx61RUQXksRpaBnfN 2XkfQyLKWVJe3swhIfvoqclNEFKMcKQtd5xuzV0QokhYfykWJBtlzbv2wpRVV8YE tugB2ZtYPr9uK4DpwK5knoyvY5rLL4ER0b4v9COvaMJOoMjfhXMzBas3U0/eAUd1 Dn8BlRnl8t0IrT+21dSvPRdu3vIZ/MZW -----END CERTIFICATE-----Generated at Sat May 31 17:16:10 2025 by rpki-client