$ rpki-client -vvf rpki.apnic.net/member_repository/A91BB1F3/4297D05245AE11EFB6237870C4F9AE02/dQ-le1kVZTnLFuVKYKbO21sQ654.mft File: dQ-le1kVZTnLFuVKYKbO21sQ654.mft (raw, json) Hash identifier: Za6Kdcjh7w3Plcq7cjo6Y2bADAuiltnLds58ZnJPfZw= Subject key identifier: 5D:EC:4F:53:3E:E6:E1:E3:77:87:60:73:CD:96:5D:22:9E:3C:9B:60 Authority key identifier: 75:0F:A5:7B:59:15:65:39:CB:16:E5:4A:60:A6:CE:DB:5B:10:EB:9E Certificate issuer: /CN=A91BB1F3/serialNumber=750FA57B59156539CB16E54A60A6CEDB5B10EB9E Certificate serial: A5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dQ-le1kVZTnLFuVKYKbO21sQ654.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BB1F3/4297D05245AE11EFB6237870C4F9AE02/dQ-le1kVZTnLFuVKYKbO21sQ654.mft Manifest number: A3 Signing time: Sat 31 May 2025 05:47:01 +0000 Manifest this update: Sat 31 May 2025 05:47:00 +0000 Manifest next update: Sat 07 Jun 2025 05:47:00 +0000 Files and hashes: 1: dQ-le1kVZTnLFuVKYKbO21sQ654.crl (hash: IituWh5M9WQ8ReevlxIIyIL9u7o3jJRwivgCrZq9n+4=) 2: F9E4E14645AE11EF8870C771C4F9AE02.roa (hash: R0ve1rGoHZXsOYQBScXwsDxNaaTbtMNOWotF4DpFkvU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BB1F3/4297D05245AE11EFB6237870C4F9AE02/dQ-le1kVZTnLFuVKYKbO21sQ654.crl rsync://rpki.apnic.net/member_repository/A91BB1F3/4297D05245AE11EFB6237870C4F9AE02/dQ-le1kVZTnLFuVKYKbO21sQ654.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dQ-le1kVZTnLFuVKYKbO21sQ654.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 05:47:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 165 (0xa5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BB1F3, serialNumber=750FA57B59156539CB16E54A60A6CEDB5B10EB9E Validity Not Before: May 31 05:47:00 2025 GMT Not After : Jun 7 05:47:00 2025 GMT Subject: CN=683a97d5-742a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:52:ee:d2:27:e3:9b:59:0c:a2:a8:82:fe:63: dc:f8:a9:49:42:fc:65:24:2b:bd:3d:cc:32:dd:5d: 8a:83:52:ed:52:c1:43:77:48:d1:82:7b:b8:75:59: f4:89:31:1d:f1:aa:1f:fb:c7:f2:42:69:6c:e3:9e: fb:48:b8:c0:a1:e7:c5:19:0b:20:a3:45:6a:72:76: b0:1b:71:83:49:a9:35:ae:7a:49:fa:c8:c8:f9:18: be:2b:57:c2:3e:c4:a5:67:e9:1c:a6:3f:5e:cd:17: ef:05:41:a3:79:0a:1c:ec:46:a3:6f:8c:36:79:85: 84:31:1d:ff:2f:01:22:f1:8d:cb:73:63:8b:63:5c: 4e:84:36:b2:a9:9e:2f:6d:30:f4:8a:dc:72:b7:6e: a0:e7:02:35:d8:9e:72:c5:37:67:bb:3f:ef:56:21: 8f:1f:68:a6:52:c3:4f:ea:9e:5d:66:ca:bc:06:45: e3:51:c7:79:ee:c3:53:83:4c:99:ab:21:87:ea:96: a7:83:66:9d:03:09:9d:8e:e8:eb:e0:17:c9:f0:a7: 9c:14:d9:a8:fa:1f:ec:1e:e4:87:05:b3:7c:74:68: 14:32:05:29:8e:4f:10:02:9a:3f:dc:f7:71:32:96: 57:04:90:fc:03:7f:e2:2e:ef:fb:9a:62:9a:95:80: 74:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5D:EC:4F:53:3E:E6:E1:E3:77:87:60:73:CD:96:5D:22:9E:3C:9B:60 X509v3 Authority Key Identifier: keyid:75:0F:A5:7B:59:15:65:39:CB:16:E5:4A:60:A6:CE:DB:5B:10:EB:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BB1F3/4297D05245AE11EFB6237870C4F9AE02/dQ-le1kVZTnLFuVKYKbO21sQ654.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dQ-le1kVZTnLFuVKYKbO21sQ654.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BB1F3/4297D05245AE11EFB6237870C4F9AE02/dQ-le1kVZTnLFuVKYKbO21sQ654.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2d:ec:93:d6:65:be:bb:eb:f9:9e:86:39:0d:b6:f9:2f:33:df: de:b7:6e:e2:d9:80:41:c6:33:9a:33:4c:71:af:1c:bc:2b:9d: ed:d5:89:e4:7e:c0:ae:09:5e:2b:07:5b:9b:71:5d:f5:b0:aa: cc:1d:1d:92:45:4e:ff:6b:cc:59:24:20:d6:35:71:73:85:d3: ea:c0:90:86:d7:90:0e:eb:d6:5f:1f:66:cf:6e:9b:73:5a:6b: 3b:65:24:6f:da:af:c6:f8:00:b9:d9:e8:0c:cb:3b:9e:9b:29: 3d:84:b1:dc:ae:78:6b:3b:d9:ce:ed:5c:25:d1:ae:bb:cf:3b: c2:49:ab:1c:a2:0d:eb:fa:12:63:27:7d:8e:2c:79:f9:51:a9: 31:ce:4e:7c:b8:52:a8:01:26:39:58:fd:5b:64:31:a4:fb:90: 3c:92:36:be:ac:f2:9e:9f:86:9f:ca:48:81:c7:77:c8:83:3d: 6b:ee:ee:18:59:63:6b:63:54:0f:d6:59:8f:27:cd:5d:b6:4e: a5:c1:00:42:60:3e:b4:fa:ac:83:30:a3:9b:9c:11:11:89:c0: 98:aa:77:fe:a4:0b:c4:b5:9c:10:17:0d:ca:d5:8d:3d:50:db: 3d:2e:9e:f1:78:64:84:61:17:a8:28:f2:fa:6c:bf:37:5d:d9: 94:88:15:54 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAKUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkIxRjMxMTAvBgNVBAUTKDc1MEZBNTdCNTkxNTY1MzlDQjE2RTU0QTYwQTZDRURC NUIxMEVCOUUwHhcNMjUwNTMxMDU0NzAwWhcNMjUwNjA3MDU0NzAwWjAYMRYwFAYD VQQDEw02ODNhOTdkNS03NDJhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvVLu0ifjm1kMoqiC/mPc+KlJQvxlJCu9Pcwy3V2Kg1LtUsFDd0jRgnu4dVn0 iTEd8aof+8fyQmls4577SLjAoefFGQsgo0VqcnawG3GDSak1rnpJ+sjI+Ri+K1fC PsSlZ+kcpj9ezRfvBUGjeQoc7Eajb4w2eYWEMR3/LwEi8Y3Lc2OLY1xOhDayqZ4v bTD0itxyt26g5wI12J5yxTdnuz/vViGPH2imUsNP6p5dZsq8BkXjUcd57sNTg0yZ qyGH6pang2adAwmdjujr4BfJ8KecFNmo+h/sHuSHBbN8dGgUMgUpjk8QApo/3Pdx MpZXBJD8A3/iLu/7mmKalYB0pwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFF3sT1M+ 5uHjd4dgc82WXSKePJtgMB8GA1UdIwQYMBaAFHUPpXtZFWU5yxblSmCmzttbEOue MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQjFGMy80Mjk3RDA1MjQ1 QUUxMUVGQjYyMzc4NzBDNEY5QUUwMi9kUS1sZTFrVlpUbkxGdVZLWUtiTzIxc1E2 NTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2RRLWxlMWtWWlRuTEZ1VktZS2JPMjFzUTY1NC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC QjFGMy80Mjk3RDA1MjQ1QUUxMUVGQjYyMzc4NzBDNEY5QUUwMi9kUS1sZTFrVlpU bkxGdVZLWUtiTzIxc1E2NTQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAt7JPWZb676/mehjkNtvkvM9/et27i2YBBxjOaM0xxrxy8K53t1Ynk fsCuCV4rB1ubcV31sKrMHR2SRU7/a8xZJCDWNXFzhdPqwJCG15AO69ZfH2bPbptz Wms7ZSRv2q/G+AC52egMyzuemyk9hLHcrnhrO9nO7Vwl0a67zzvCSascog3r+hJj J32OLHn5Uakxzk58uFKoASY5WP1bZDGk+5A8kja+rPKen4afykiBx3fIgz1r7u4Y WWNrY1QP1lmPJ81dtk6lwQBCYD60+qyDMKObnBERicCYqnf+pAvEtZwQFw3K1Y09 UNs9Lp7xeGSEYReoKPL6bL83XdmUiBVU -----END CERTIFICATE-----Generated at Sat May 31 17:48:41 2025 by rpki-client