$ rpki-client -vvf rpki.apnic.net/member_repository/A91BADCE/0F7281BC3AF411EC89CE072FC4F9AE02/15qMdwXiQZ6rQpU7a8ilcga6xiY.mft File: 15qMdwXiQZ6rQpU7a8ilcga6xiY.mft (raw, json) Hash identifier: BLzkan5awjDO2Ib/gQkVJRM95fGXBW4dJLAVEKCOpqs= Subject key identifier: 4B:37:A2:D2:76:1B:FB:95:EE:CE:21:EF:56:2B:80:F1:B0:2C:E6:23 Authority key identifier: D7:9A:8C:77:05:E2:41:9E:AB:42:95:3B:6B:C8:A5:72:06:BA:C6:26 Certificate issuer: /CN=A91BADCE/serialNumber=D79A8C7705E2419EAB42953B6BC8A57206BAC626 Certificate serial: 04A5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/15qMdwXiQZ6rQpU7a8ilcga6xiY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BADCE/0F7281BC3AF411EC89CE072FC4F9AE02/15qMdwXiQZ6rQpU7a8ilcga6xiY.mft Manifest number: 0499 Signing time: Sat 31 May 2025 00:12:38 +0000 Manifest this update: Sat 31 May 2025 00:12:38 +0000 Manifest next update: Sat 07 Jun 2025 00:12:37 +0000 Files and hashes: 1: 15qMdwXiQZ6rQpU7a8ilcga6xiY.crl (hash: YRrUVOT6toExpOV2Pb615f9Rk7iIOIYVljQyvLgHaV0=) 2: 4BD423FE3AF911EC918C643AC4F9AE02.roa (hash: zGe92eYB2T/6F6go2IsVT92hr41aOIJDE55tjsezOT0=) 3: 56C4925E3B0711EC9715501EC4F9AE02.roa (hash: fn18Z/WO3LMBPpMiEymfF/J9ml4DPzxPa9csD1f45R4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BADCE/0F7281BC3AF411EC89CE072FC4F9AE02/15qMdwXiQZ6rQpU7a8ilcga6xiY.crl rsync://rpki.apnic.net/member_repository/A91BADCE/0F7281BC3AF411EC89CE072FC4F9AE02/15qMdwXiQZ6rQpU7a8ilcga6xiY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/15qMdwXiQZ6rQpU7a8ilcga6xiY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 00:12:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1189 (0x4a5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BADCE, serialNumber=D79A8C7705E2419EAB42953B6BC8A57206BAC626 Validity Not Before: May 31 00:12:38 2025 GMT Not After : Jun 7 00:12:37 2025 GMT Subject: CN=683a4976-8268 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:a5:ba:b4:ec:07:db:05:54:b3:2a:88:ff:71: c4:3b:54:d0:67:cf:4b:3d:23:58:1b:ac:4f:f7:fd: 6c:5d:7a:5c:7f:14:08:16:98:03:e3:e8:96:a1:9d: 7a:36:ea:78:4c:70:ee:58:fd:9a:47:f4:e7:6c:3d: d8:5a:42:43:31:74:95:6b:44:f4:21:6b:5b:ec:a2: f4:1e:db:b5:f7:64:46:9b:c3:39:9a:5f:ad:96:fb: e0:79:c6:16:6e:87:8f:4a:1f:1f:8a:6d:93:88:6e: 05:da:d2:f0:08:e7:50:38:27:83:e3:e7:ee:4f:8c: 8c:61:71:32:62:74:98:8f:88:59:31:48:53:4f:23: d1:e7:d0:7c:04:cb:ec:64:77:20:5f:a0:6e:83:44: f6:e3:22:84:f1:3b:d4:34:26:8f:fb:4e:c2:ab:c8: 9d:50:0e:dd:2f:e9:01:ff:e8:61:fd:79:bd:52:ee: 19:3c:49:51:8c:7d:d3:53:b6:bf:d6:0d:63:af:74: fb:03:02:d3:eb:ab:e2:d3:c4:40:d8:dc:0e:76:da: 49:14:92:07:40:40:82:90:ba:0a:0c:1b:bb:56:d2: 5d:a7:1f:cf:fa:54:e9:26:d3:ae:39:60:4d:dd:c2: a6:e2:37:ce:3a:81:3d:66:57:9c:7a:da:b1:f4:80: ef:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4B:37:A2:D2:76:1B:FB:95:EE:CE:21:EF:56:2B:80:F1:B0:2C:E6:23 X509v3 Authority Key Identifier: keyid:D7:9A:8C:77:05:E2:41:9E:AB:42:95:3B:6B:C8:A5:72:06:BA:C6:26 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BADCE/0F7281BC3AF411EC89CE072FC4F9AE02/15qMdwXiQZ6rQpU7a8ilcga6xiY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/15qMdwXiQZ6rQpU7a8ilcga6xiY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BADCE/0F7281BC3AF411EC89CE072FC4F9AE02/15qMdwXiQZ6rQpU7a8ilcga6xiY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0b:8d:ca:f4:7c:28:47:70:56:a1:87:17:2e:02:6c:e6:7a:d5: b1:97:e2:a1:95:34:63:36:a2:46:b3:39:92:49:12:15:fd:fe: e6:b8:57:35:82:cb:eb:5a:aa:39:4a:cb:01:30:b0:bd:b9:5b: d7:8d:dc:16:c8:1e:e6:f6:a5:37:5c:62:df:83:2d:5e:94:b4: 58:8d:4c:4f:e3:0e:e5:7d:cf:e8:e1:b0:f9:89:5d:ba:88:62: 1e:98:8b:4a:cc:cf:f9:b5:2f:c1:a9:de:45:7e:67:7e:0c:d5: 1d:81:bf:a6:5b:ea:be:10:63:9b:bd:a9:3c:5f:2f:f9:79:c9: 98:eb:a2:91:69:cb:73:d6:8c:c3:be:36:6b:93:75:dd:98:5e: a9:51:27:e5:3f:ba:7d:b5:2d:39:19:4c:b7:34:4a:7e:91:69: 89:18:57:67:27:20:b5:9a:00:4a:31:36:67:8e:1f:3a:21:8f: 7d:69:d6:2c:8f:b2:fb:7f:51:70:1d:2d:64:44:e0:86:9e:8f: a8:4b:26:79:6e:41:fc:f5:e2:3b:d9:23:51:c1:76:3f:d5:ba: ae:1e:7d:2c:46:1f:a9:ed:51:73:78:b5:46:25:19:fd:ba:55: 64:50:f4:c0:37:92:b4:a3:95:e5:a4:f5:63:3d:04:61:f8:4f: 8e:b4:4c:24 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBKUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkFEQ0UxMTAvBgNVBAUTKEQ3OUE4Qzc3MDVFMjQxOUVBQjQyOTUzQjZCQzhBNTcy MDZCQUM2MjYwHhcNMjUwNTMxMDAxMjM4WhcNMjUwNjA3MDAxMjM3WjAYMRYwFAYD VQQDEw02ODNhNDk3Ni04MjY4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3KW6tOwH2wVUsyqI/3HEO1TQZ89LPSNYG6xP9/1sXXpcfxQIFpgD4+iWoZ16 Nup4THDuWP2aR/TnbD3YWkJDMXSVa0T0IWtb7KL0Htu192RGm8M5ml+tlvvgecYW boePSh8fim2TiG4F2tLwCOdQOCeD4+fuT4yMYXEyYnSYj4hZMUhTTyPR59B8BMvs ZHcgX6Bug0T24yKE8TvUNCaP+07Cq8idUA7dL+kB/+hh/Xm9Uu4ZPElRjH3TU7a/ 1g1jr3T7AwLT66vi08RA2NwOdtpJFJIHQECCkLoKDBu7VtJdpx/P+lTpJtOuOWBN 3cKm4jfOOoE9Zlecetqx9IDvyQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEs3otJ2 G/uV7s4h71YrgPGwLOYjMB8GA1UdIwQYMBaAFNeajHcF4kGeq0KVO2vIpXIGusYm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQURDRS8wRjcyODFCQzNB RjQxMUVDODlDRTA3MkZDNEY5QUUwMi8xNXFNZHdYaVFaNnJRcFU3YThpbGNnYTZ4 aVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzE1cU1kd1hpUVo2clFwVTdhOGlsY2dhNnhpWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC QURDRS8wRjcyODFCQzNBRjQxMUVDODlDRTA3MkZDNEY5QUUwMi8xNXFNZHdYaVFa NnJRcFU3YThpbGNnYTZ4aVkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQALjcr0fChHcFahhxcuAmzmetWxl+KhlTRjNqJGszmSSRIV/f7muFc1 gsvrWqo5SssBMLC9uVvXjdwWyB7m9qU3XGLfgy1elLRYjUxP4w7lfc/o4bD5iV26 iGIemItKzM/5tS/Bqd5Ffmd+DNUdgb+mW+q+EGObvak8Xy/5ecmY66KRactz1ozD vjZrk3XdmF6pUSflP7p9tS05GUy3NEp+kWmJGFdnJyC1mgBKMTZnjh86IY99adYs j7L7f1FwHS1kROCGno+oSyZ5bkH89eI72SNRwXY/1bquHn0sRh+p7VFzeLVGJRn9 ulVkUPTAN5K0o5XlpPVjPQRh+E+OtEwk -----END CERTIFICATE-----Generated at Sat May 31 17:03:25 2025 by rpki-client