$ rpki-client -vvf rpki.apnic.net/member_repository/A91B9011/3888E0C4C73A11EB90075510C4F9AE02/1RZ7lweHQQlX4l2fh1CFYPAFd24.mft File: 1RZ7lweHQQlX4l2fh1CFYPAFd24.mft (raw, json) Hash identifier: EYndQ1v1bZIOkb1zZFbe8htcfDPdBcWCNVnTvBR822A= Subject key identifier: 1F:21:12:5C:06:CF:BD:D6:35:31:85:1C:6C:35:EC:1B:76:D0:34:68 Authority key identifier: D5:16:7B:97:07:87:41:09:57:E2:5D:9F:87:50:85:60:F0:05:77:6E Certificate issuer: /CN=A91B9011/serialNumber=D5167B970787410957E25D9F87508560F005776E Certificate serial: 05BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1RZ7lweHQQlX4l2fh1CFYPAFd24.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B9011/3888E0C4C73A11EB90075510C4F9AE02/1RZ7lweHQQlX4l2fh1CFYPAFd24.mft Manifest number: 05B5 Signing time: Fri 30 May 2025 23:20:02 +0000 Manifest this update: Fri 30 May 2025 23:20:02 +0000 Manifest next update: Fri 06 Jun 2025 23:20:02 +0000 Files and hashes: 1: 1RZ7lweHQQlX4l2fh1CFYPAFd24.crl (hash: pfYbuZjHl5VEzbtuIYQqe59JL+cFYdq3B1AJdnrSqyQ=) 2: 438893AC55BE11EDBDE51983C4F9AE02.roa (hash: Y1Hqc3CucW1MGNfTEVOgwuu3xdmSB7zSj6HU8UBJr7c=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B9011/3888E0C4C73A11EB90075510C4F9AE02/1RZ7lweHQQlX4l2fh1CFYPAFd24.crl rsync://rpki.apnic.net/member_repository/A91B9011/3888E0C4C73A11EB90075510C4F9AE02/1RZ7lweHQQlX4l2fh1CFYPAFd24.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1RZ7lweHQQlX4l2fh1CFYPAFd24.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 23:20:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1466 (0x5ba) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B9011, serialNumber=D5167B970787410957E25D9F87508560F005776E Validity Not Before: May 30 23:20:02 2025 GMT Not After : Jun 6 23:20:02 2025 GMT Subject: CN=683a3d22-b417 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:af:71:ec:13:69:f3:87:c2:22:2e:4a:b7:50: 1f:2a:de:24:69:b2:45:fe:77:09:17:69:18:92:cb: d1:38:a5:c5:1a:c6:27:5f:24:d4:c9:f3:7a:e1:1a: 78:be:03:50:68:16:3d:ca:c8:af:be:8f:8c:b4:5a: 27:42:4e:68:7b:08:c7:21:75:c1:ad:4e:32:93:40: d0:5d:59:e9:22:72:7b:fa:ed:2b:b1:b7:bf:2e:2e: ce:79:65:c6:94:00:96:dc:cc:d4:a8:fa:85:a4:79: 5c:1f:4f:67:4e:94:53:83:fe:62:d7:0a:cf:e1:89: c6:2c:02:66:4f:09:7f:7d:86:18:e7:0d:59:27:66: 60:f8:13:70:b8:bf:58:3b:22:f7:d0:b1:46:ce:23: 75:dd:b2:c1:ae:bb:4c:94:93:a5:37:11:f2:18:52: 7a:62:72:e4:0c:b0:06:bf:21:0b:db:d7:c8:77:e0: c3:c9:d5:a5:78:be:69:8e:d9:64:33:9f:76:ba:94: 4d:89:f9:12:a4:36:ce:5b:4d:9c:e0:31:2c:8e:b8: b3:7e:0e:f5:47:0d:ef:61:d1:c9:b8:07:74:71:c3: 70:03:3c:80:a0:30:b0:58:82:a5:30:b9:9d:c6:b6: 4f:22:02:b0:28:b2:be:c3:55:4c:64:ca:51:bf:89: b5:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1F:21:12:5C:06:CF:BD:D6:35:31:85:1C:6C:35:EC:1B:76:D0:34:68 X509v3 Authority Key Identifier: keyid:D5:16:7B:97:07:87:41:09:57:E2:5D:9F:87:50:85:60:F0:05:77:6E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B9011/3888E0C4C73A11EB90075510C4F9AE02/1RZ7lweHQQlX4l2fh1CFYPAFd24.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1RZ7lweHQQlX4l2fh1CFYPAFd24.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B9011/3888E0C4C73A11EB90075510C4F9AE02/1RZ7lweHQQlX4l2fh1CFYPAFd24.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3f:6e:ef:2c:94:79:c1:74:63:fe:47:1f:35:6f:a3:6d:ca:c0: 4e:38:bd:89:23:5c:1e:8c:bf:2e:60:53:b8:0c:9a:56:3c:dc: 05:24:94:a8:2c:b4:00:71:bd:04:ca:fc:57:56:43:05:7b:6f: b5:58:19:8d:87:99:59:9f:69:12:ca:f4:f7:3f:c3:d9:8e:d9: 01:69:cc:13:c7:bf:d2:a2:43:de:81:08:38:f5:f0:da:53:94: f2:99:76:0b:18:33:49:f4:ae:2a:b2:85:8f:73:97:65:c1:c6: 95:c6:23:ae:59:34:46:d2:e0:e6:c4:7b:90:2e:20:fa:0f:a8: b5:72:e4:e8:b8:57:3f:1c:9f:42:f5:b6:1a:00:15:48:ac:13: 2b:9f:5c:f5:ea:27:2b:27:d7:35:51:fe:e2:8a:bf:b2:ea:01: 9c:f9:8a:ea:6e:95:f5:d0:69:fc:f2:87:01:d0:19:39:70:fc: ca:f3:08:0d:76:0a:d6:45:59:6a:af:f5:55:3b:cc:7e:71:02: 1f:7a:d9:d8:67:8b:c7:47:29:b6:5e:ee:c4:2d:a2:f9:63:03: 02:d4:7e:ff:d3:fb:e3:2b:75:c5:84:84:86:fe:8a:98:80:4a: 45:17:6e:bd:18:cb:9c:84:98:45:a9:a1:f0:76:12:91:80:a4: 6d:00:91:76 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBbowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjkwMTExMTAvBgNVBAUTKEQ1MTY3Qjk3MDc4NzQxMDk1N0UyNUQ5Rjg3NTA4NTYw RjAwNTc3NkUwHhcNMjUwNTMwMjMyMDAyWhcNMjUwNjA2MjMyMDAyWjAYMRYwFAYD VQQDEw02ODNhM2QyMi1iNDE3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA569x7BNp84fCIi5Kt1AfKt4kabJF/ncJF2kYksvROKXFGsYnXyTUyfN64Rp4 vgNQaBY9ysivvo+MtFonQk5oewjHIXXBrU4yk0DQXVnpInJ7+u0rsbe/Li7OeWXG lACW3MzUqPqFpHlcH09nTpRTg/5i1wrP4YnGLAJmTwl/fYYY5w1ZJ2Zg+BNwuL9Y OyL30LFGziN13bLBrrtMlJOlNxHyGFJ6YnLkDLAGvyEL29fId+DDydWleL5pjtlk M592upRNifkSpDbOW02c4DEsjrizfg71Rw3vYdHJuAd0ccNwAzyAoDCwWIKlMLmd xrZPIgKwKLK+w1VMZMpRv4m1dwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFB8hElwG z73WNTGFHGw17Bt20DRoMB8GA1UdIwQYMBaAFNUWe5cHh0EJV+Jdn4dQhWDwBXdu MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCOTAxMS8zODg4RTBDNEM3 M0ExMUVCOTAwNzU1MTBDNEY5QUUwMi8xUlo3bHdlSFFRbFg0bDJmaDFDRllQQUZk MjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFSWjdsd2VIUVFsWDRsMmZoMUNGWVBBRmQyNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC OTAxMS8zODg4RTBDNEM3M0ExMUVCOTAwNzU1MTBDNEY5QUUwMi8xUlo3bHdlSFFR bFg0bDJmaDFDRllQQUZkMjQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA/bu8slHnBdGP+Rx81b6NtysBOOL2JI1wejL8uYFO4DJpWPNwFJJSo LLQAcb0EyvxXVkMFe2+1WBmNh5lZn2kSyvT3P8PZjtkBacwTx7/SokPegQg49fDa U5TymXYLGDNJ9K4qsoWPc5dlwcaVxiOuWTRG0uDmxHuQLiD6D6i1cuTouFc/HJ9C 9bYaABVIrBMrn1z16icrJ9c1Uf7iir+y6gGc+YrqbpX10Gn88ocB0Bk5cPzK8wgN dgrWRVlqr/VVO8x+cQIfetnYZ4vHRym2Xu7ELaL5YwMC1H7/0/vjK3XFhISG/oqY gEpFF269GMuchJhFqaHwdhKRgKRtAJF2 -----END CERTIFICATE-----Generated at Sat May 31 17:34:16 2025 by rpki-client