$ rpki-client -vvf rpki.apnic.net/member_repository/A91C022C/BA0F2DF2D4B911EF9FA8E24FC4F9AE02/15aZWndnWcQmQxeAAofr7u-0umo.mft File: 15aZWndnWcQmQxeAAofr7u-0umo.mft (raw, json) Hash identifier: KrMzzvfmdNbcb4eY7uR7QhdaetbKupQH8bshx2f2NJY= Subject key identifier: EF:B4:66:40:50:E4:92:E7:7F:85:13:F0:BE:B2:75:A0:52:E9:51:F1 Authority key identifier: D7:96:99:5A:77:67:59:C4:26:43:17:80:02:87:EB:EE:EF:B4:BA:6A Certificate issuer: /CN=A91C022C/serialNumber=D796995A776759C4264317800287EBEEEFB4BA6A Certificate serial: 4F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/15aZWndnWcQmQxeAAofr7u-0umo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C022C/BA0F2DF2D4B911EF9FA8E24FC4F9AE02/15aZWndnWcQmQxeAAofr7u-0umo.mft Manifest number: 4B Signing time: Sat 31 May 2025 06:59:07 +0000 Manifest this update: Sat 31 May 2025 06:59:07 +0000 Manifest next update: Sat 07 Jun 2025 06:59:07 +0000 Files and hashes: 1: 15aZWndnWcQmQxeAAofr7u-0umo.crl (hash: 0mjA1L+P8aWaiKVeRvN12XCTK4QR6oQAgH7q1R3yh1E=) 2: 90405CE2D5DD11EF99075D78C4F9AE02.roa (hash: hTL1z9/ySOlu0XaviOinYnMnBTyzcwAp4EbODVpERNU=) 3: B6CFF1B2D5F911EFB9B1055CC4F9AE02.roa (hash: ZxCbb7cdq/LewtopQIPSnB7gN2Ydt1y4TyGzN7hgTr4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C022C/BA0F2DF2D4B911EF9FA8E24FC4F9AE02/15aZWndnWcQmQxeAAofr7u-0umo.crl rsync://rpki.apnic.net/member_repository/A91C022C/BA0F2DF2D4B911EF9FA8E24FC4F9AE02/15aZWndnWcQmQxeAAofr7u-0umo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/15aZWndnWcQmQxeAAofr7u-0umo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 06:59:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 79 (0x4f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C022C, serialNumber=D796995A776759C4264317800287EBEEEFB4BA6A Validity Not Before: May 31 06:59:07 2025 GMT Not After : Jun 7 06:59:07 2025 GMT Subject: CN=683aa8bb-2557 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f5:c8:ea:71:31:cb:e1:26:de:44:e8:42:ba:f3: 1e:bd:6d:21:ed:81:74:ed:63:c4:0d:4a:4e:34:ee: 0e:f1:13:fe:d9:2f:51:35:e5:ef:38:bc:86:c3:72: 95:b7:65:52:09:4f:c7:28:43:cc:c5:7a:10:00:76: 64:61:9b:a9:0a:99:11:f8:c4:93:42:26:21:86:ff: f5:27:86:1b:7f:84:68:4e:65:65:2e:d9:08:5c:b7: 56:38:19:9e:ec:80:0b:4f:44:22:49:aa:21:80:01: 4f:c4:5e:a6:51:4d:c8:a7:ae:e5:47:92:88:01:c1: 2a:b0:c6:0a:7c:4a:ff:ef:6a:4f:75:f6:ad:d8:91: 13:e7:66:88:b4:5b:fa:87:65:ac:1d:11:02:f9:ba: b6:a5:de:81:7f:92:fd:24:93:e5:66:9b:6b:42:0b: fb:0e:b6:8f:d7:9c:ce:d3:a6:97:d1:c2:78:99:0a: 35:3a:f8:c2:3f:d3:fa:93:ce:b3:26:5c:d9:0e:ea: d2:cb:88:d8:0b:ae:27:2c:53:aa:ee:3b:d9:fd:7f: 41:a1:1c:b6:48:d0:a9:f2:3e:69:51:0f:c6:cf:e5: 05:8a:83:4e:31:c1:ff:c1:d5:35:97:aa:b2:b6:bb: ca:57:b0:74:ad:f9:17:0c:62:03:fe:e3:e1:69:eb: 87:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EF:B4:66:40:50:E4:92:E7:7F:85:13:F0:BE:B2:75:A0:52:E9:51:F1 X509v3 Authority Key Identifier: keyid:D7:96:99:5A:77:67:59:C4:26:43:17:80:02:87:EB:EE:EF:B4:BA:6A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C022C/BA0F2DF2D4B911EF9FA8E24FC4F9AE02/15aZWndnWcQmQxeAAofr7u-0umo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/15aZWndnWcQmQxeAAofr7u-0umo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C022C/BA0F2DF2D4B911EF9FA8E24FC4F9AE02/15aZWndnWcQmQxeAAofr7u-0umo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5f:c9:67:07:bd:22:88:67:9c:e1:dc:62:46:d1:6a:d5:e0:11: 89:d9:6a:ad:86:67:96:08:25:20:a9:4e:ef:cd:cb:4e:26:1a: a6:ad:e6:08:93:47:39:6c:9e:ea:60:62:a0:cd:5f:99:2a:30: 85:44:f3:ae:b6:4f:16:ef:38:5a:66:f1:12:87:6a:04:20:f1: b4:cc:a9:5d:3b:c3:f2:97:20:b3:e6:47:ef:05:c5:51:86:31: bb:34:49:b8:cd:cc:e4:c3:4c:74:e3:42:0a:5e:4f:93:47:c7: 71:cb:99:e2:06:f9:e0:78:c1:84:e3:fb:c2:90:35:d0:7f:c8: 98:a2:e1:6a:6d:27:9b:74:dd:c6:8c:9b:b7:b3:ad:21:ff:97: 75:db:c8:1f:fa:b5:95:e8:18:90:31:9f:2e:b7:eb:c1:39:aa: 01:2e:5d:85:76:83:ff:23:96:87:2c:02:8b:82:66:2b:e4:a5: 85:db:f6:be:d1:ac:d6:85:d9:a8:e1:c4:21:2c:25:f3:da:b5: 3c:6a:d8:e9:c2:21:e4:58:e1:b7:e8:eb:e6:a7:2b:4d:30:33: 4c:43:8f:58:7b:65:d6:4f:58:30:74:eb:66:80:e5:65:85:85: 0d:1b:64:b9:97:af:33:37:f2:67:00:2b:ed:ad:27:ba:3f:c0: 6c:a5:b8:ba -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBTzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFD MDIyQzExMC8GA1UEBRMoRDc5Njk5NUE3NzY3NTlDNDI2NDMxNzgwMDI4N0VCRUVF RkI0QkE2QTAeFw0yNTA1MzEwNjU5MDdaFw0yNTA2MDcwNjU5MDdaMBgxFjAUBgNV BAMTDTY4M2FhOGJiLTI1NTcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQD1yOpxMcvhJt5E6EK68x69bSHtgXTtY8QNSk407g7xE/7ZL1E15e84vIbDcpW3 ZVIJT8coQ8zFehAAdmRhm6kKmRH4xJNCJiGG//Unhht/hGhOZWUu2Qhct1Y4GZ7s gAtPRCJJqiGAAU/EXqZRTcinruVHkogBwSqwxgp8Sv/vak919q3YkRPnZoi0W/qH ZawdEQL5ural3oF/kv0kk+Vmm2tCC/sOto/XnM7TppfRwniZCjU6+MI/0/qTzrMm XNkO6tLLiNgLricsU6ruO9n9f0GhHLZI0KnyPmlRD8bP5QWKg04xwf/B1TWXqrK2 u8pXsHSt+RcMYgP+4+Fp64fZAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU77RmQFDk kud/hRPwvrJ1oFLpUfEwHwYDVR0jBBgwFoAU15aZWndnWcQmQxeAAofr7u+0umow DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUMwMjJDL0JBMEYyREYyRDRC OTExRUY5RkE4RTI0RkM0RjlBRTAyLzE1YVpXbmRuV2NRbVF4ZUFBb2ZyN3UtMHVt by5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvMTVhWlduZG5XY1FtUXhlQUFvZnI3dS0wdW1vLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUMw MjJDL0JBMEYyREYyRDRCOTExRUY5RkE4RTI0RkM0RjlBRTAyLzE1YVpXbmRuV2NR bVF4ZUFBb2ZyN3UtMHVtby5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAF/JZwe9IohnnOHcYkbRatXgEYnZaq2GZ5YIJSCpTu/Ny04mGqat5giT RzlsnupgYqDNX5kqMIVE8662TxbvOFpm8RKHagQg8bTMqV07w/KXILPmR+8FxVGG Mbs0SbjNzOTDTHTjQgpeT5NHx3HLmeIG+eB4wYTj+8KQNdB/yJii4WptJ5t03caM m7ezrSH/l3XbyB/6tZXoGJAxny6368E5qgEuXYV2g/8jlocsAouCZivkpYXb9r7R rNaF2ajhxCEsJfPatTxq2OnCIeRY4bfo6+anK00wM0xDj1h7ZdZPWDB062aA5WWF hQ0bZLmXrzM38mcAK+2tJ7o/wGyluLo= -----END CERTIFICATE-----Generated at Sat May 31 17:13:01 2025 by rpki-client