$ rpki-client -vvf rpki.apnic.net/member_repository/A91B9B0D/A28ECBC08AB611EB8237D414C4F9AE02/5NYtMSl_F-ScQvp6e2YjYkrZQXU.mft File: 5NYtMSl_F-ScQvp6e2YjYkrZQXU.mft (raw, json) Hash identifier: f+0GqD/A1wMHuUbxCdFm7L1Y1XtB2YoCC2Q/ggfQR9o= Subject key identifier: 27:60:9D:47:28:12:9E:26:6A:B8:47:AC:68:69:4D:79:3E:E1:40:8B Authority key identifier: E4:D6:2D:31:29:7F:17:E4:9C:42:FA:7A:7B:66:23:62:4A:D9:41:75 Certificate issuer: /CN=A91B9B0D/serialNumber=E4D62D31297F17E49C42FA7A7B6623624AD94175 Certificate serial: 0652 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5NYtMSl_F-ScQvp6e2YjYkrZQXU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B9B0D/A28ECBC08AB611EB8237D414C4F9AE02/5NYtMSl_F-ScQvp6e2YjYkrZQXU.mft Manifest number: 064D Signing time: Fri 30 May 2025 22:45:52 +0000 Manifest this update: Fri 30 May 2025 22:45:52 +0000 Manifest next update: Fri 06 Jun 2025 22:45:51 +0000 Files and hashes: 1: 5NYtMSl_F-ScQvp6e2YjYkrZQXU.crl (hash: HcPpIOYTrEvd12+Nv5pHA2hCajey/OsdJzp+B1II8d0=) 2: 3F9CDA68179911EDB9008D18C4F9AE02.roa (hash: uQ87OwRIbPff2rIgxwDqjjJe9H/t71HNB3Wpu5Q8ifI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B9B0D/A28ECBC08AB611EB8237D414C4F9AE02/5NYtMSl_F-ScQvp6e2YjYkrZQXU.crl rsync://rpki.apnic.net/member_repository/A91B9B0D/A28ECBC08AB611EB8237D414C4F9AE02/5NYtMSl_F-ScQvp6e2YjYkrZQXU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5NYtMSl_F-ScQvp6e2YjYkrZQXU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 22:45:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1618 (0x652) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B9B0D, serialNumber=E4D62D31297F17E49C42FA7A7B6623624AD94175 Validity Not Before: May 30 22:45:52 2025 GMT Not After : Jun 6 22:45:51 2025 GMT Subject: CN=683a3520-834c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:c6:40:0a:ea:fe:de:7b:f3:84:24:f0:a9:39: 94:ef:d3:02:d6:e5:e5:69:c7:ee:34:cb:ec:7b:a8: 24:df:79:00:72:eb:3d:df:ff:d1:27:3a:b2:a0:39: 4c:78:d4:b8:cb:b9:da:d5:96:39:b6:cb:93:c1:9a: df:04:43:87:aa:03:72:b9:8d:de:65:9f:64:34:0c: 45:8f:20:f3:be:c7:09:b9:10:ce:3a:ac:48:65:6b: a9:e0:3a:eb:71:08:5e:04:91:44:48:e7:e8:17:05: f7:0f:44:48:03:a8:79:93:d2:2c:aa:50:05:36:69: 03:ec:4d:ef:54:76:1c:0e:a7:20:80:91:95:8c:c5: 19:dc:08:f0:00:37:8f:0d:95:ca:c0:ec:06:7b:6a: 28:38:31:db:b0:44:79:a2:9b:a9:30:40:67:cf:46: a0:b2:3c:bf:e7:0f:d1:a4:66:80:4e:09:6c:02:df: 23:6b:2d:d2:a9:39:71:d1:fe:6a:22:15:92:2e:ad: db:d6:8a:14:f7:48:da:85:41:f4:b4:7d:82:a4:e7: 40:a0:22:56:90:81:c7:cd:b1:8e:6e:8f:f2:d6:9f: 58:7a:45:e1:b3:9a:d2:d5:ee:d1:1d:13:1a:e7:2f: 11:b5:1c:4b:24:ad:a4:65:b4:db:4d:e5:21:fa:c6: ee:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 27:60:9D:47:28:12:9E:26:6A:B8:47:AC:68:69:4D:79:3E:E1:40:8B X509v3 Authority Key Identifier: keyid:E4:D6:2D:31:29:7F:17:E4:9C:42:FA:7A:7B:66:23:62:4A:D9:41:75 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B9B0D/A28ECBC08AB611EB8237D414C4F9AE02/5NYtMSl_F-ScQvp6e2YjYkrZQXU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5NYtMSl_F-ScQvp6e2YjYkrZQXU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B9B0D/A28ECBC08AB611EB8237D414C4F9AE02/5NYtMSl_F-ScQvp6e2YjYkrZQXU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 89:bd:45:10:0f:a4:d3:35:79:9b:bc:be:2d:82:92:aa:bb:d3: 4a:48:54:60:a0:31:bd:8b:0f:c1:08:37:ff:96:48:d0:32:d0: 9d:61:16:46:7f:c6:ba:d8:54:d1:b5:a3:8d:8d:7d:d6:c8:be: aa:6d:2c:69:52:04:98:6c:46:86:a1:8c:3b:ab:bc:76:f6:61: 0d:ae:fa:4f:6d:bb:71:52:89:12:9b:7b:5f:77:d6:27:81:50: c5:6b:31:2b:a6:a4:94:8b:37:38:8e:8c:f2:51:ac:f5:fd:92: ff:c8:8d:71:7c:27:08:48:be:de:23:80:db:61:0a:d2:a8:7f: b4:d7:9c:8d:fa:5b:a7:5f:d8:ee:c0:55:2a:32:5d:18:e8:a9: 0c:c1:fe:74:90:b1:f3:9a:68:09:0b:64:1a:42:ed:b7:87:74: 31:56:c1:bc:8b:09:59:13:c0:15:5a:2e:ae:09:0c:a2:cd:59: 51:c1:87:c7:26:f5:f0:dd:a2:e0:00:a0:11:87:c1:5a:a9:f6: 87:43:6b:bf:a1:38:5d:09:ce:cd:a7:0e:c5:3c:4a:5c:de:8a: 3d:71:bb:23:6a:c4:b2:cb:a4:c1:ca:a5:1d:2d:3e:1a:5a:e4: 31:45:3d:91:d7:63:5d:ac:36:a7:06:1d:13:bd:1d:f6:38:21: 55:0e:e0:a5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBlIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjlCMEQxMTAvBgNVBAUTKEU0RDYyRDMxMjk3RjE3RTQ5QzQyRkE3QTdCNjYyMzYy NEFEOTQxNzUwHhcNMjUwNTMwMjI0NTUyWhcNMjUwNjA2MjI0NTUxWjAYMRYwFAYD VQQDEw02ODNhMzUyMC04MzRjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApcZACur+3nvzhCTwqTmU79MC1uXlacfuNMvse6gk33kAcus93//RJzqyoDlM eNS4y7na1ZY5tsuTwZrfBEOHqgNyuY3eZZ9kNAxFjyDzvscJuRDOOqxIZWup4Drr cQheBJFESOfoFwX3D0RIA6h5k9IsqlAFNmkD7E3vVHYcDqcggJGVjMUZ3AjwADeP DZXKwOwGe2ooODHbsER5opupMEBnz0agsjy/5w/RpGaATglsAt8jay3SqTlx0f5q IhWSLq3b1ooU90jahUH0tH2CpOdAoCJWkIHHzbGObo/y1p9YekXhs5rS1e7RHRMa 5y8RtRxLJK2kZbTbTeUh+sbuRQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCdgnUco Ep4marhHrGhpTXk+4UCLMB8GA1UdIwQYMBaAFOTWLTEpfxfknEL6entmI2JK2UF1 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCOUIwRC9BMjhFQ0JDMDhB QjYxMUVCODIzN0Q0MTRDNEY5QUUwMi81Tll0TVNsX0YtU2NRdnA2ZTJZallrclpR WFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzVOWXRNU2xfRi1TY1F2cDZlMllqWWtyWlFYVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC OUIwRC9BMjhFQ0JDMDhBQjYxMUVCODIzN0Q0MTRDNEY5QUUwMi81Tll0TVNsX0Yt U2NRdnA2ZTJZallrclpRWFUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCJvUUQD6TTNXmbvL4tgpKqu9NKSFRgoDG9iw/BCDf/lkjQMtCdYRZG f8a62FTRtaONjX3WyL6qbSxpUgSYbEaGoYw7q7x29mENrvpPbbtxUokSm3tfd9Yn gVDFazErpqSUizc4jozyUaz1/ZL/yI1xfCcISL7eI4DbYQrSqH+015yN+lunX9ju wFUqMl0Y6KkMwf50kLHzmmgJC2QaQu23h3QxVsG8iwlZE8AVWi6uCQyizVlRwYfH JvXw3aLgAKARh8FaqfaHQ2u/oThdCc7Npw7FPEpc3oo9cbsjasSyy6TByqUdLT4a WuQxRT2R12NdrDanBh0TvR32OCFVDuCl -----END CERTIFICATE-----Generated at Sat May 31 16:38:48 2025 by rpki-client