$ rpki-client -vvf rpki.apnic.net/member_repository/A91C6A39/730F00B2B1C411E9BECB1825C4F9AE02/57QbPSVuxr0M5xIbNw3kdBuDXmE.mft File: 57QbPSVuxr0M5xIbNw3kdBuDXmE.mft (raw, json) Hash identifier: WpkrVJ/4qrfXqjFVbpbSO1mK1djHbRnyRyETphDI7NY= Subject key identifier: 71:5A:A8:64:8A:B1:A3:FF:C9:AE:9A:11:53:A1:1E:C8:4B:5B:67:68 Authority key identifier: E7:B4:1B:3D:25:6E:C6:BD:0C:E7:12:1B:37:0D:E4:74:1B:83:5E:61 Certificate issuer: /CN=A91C6A39/serialNumber=E7B41B3D256EC6BD0CE7121B370DE4741B835E61 Certificate serial: 0DFE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/57QbPSVuxr0M5xIbNw3kdBuDXmE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C6A39/730F00B2B1C411E9BECB1825C4F9AE02/57QbPSVuxr0M5xIbNw3kdBuDXmE.mft Manifest number: 0DEF Signing time: Fri 30 May 2025 18:02:31 +0000 Manifest this update: Fri 30 May 2025 18:02:30 +0000 Manifest next update: Fri 06 Jun 2025 18:02:30 +0000 Files and hashes: 1: 57QbPSVuxr0M5xIbNw3kdBuDXmE.crl (hash: 5Lf8vGemvmGmTtc39DTO0b76PlXndt02vuYK/qmh2pc=) 2: 032B593EB1C511E9A4B3CE25C4F9AE02.roa (hash: f/BgI5BL/1PcY7ExwBK48s2FrmJ9kEJMRjBuMiCgse4=) 3: 0F56E156828C11EDA6BCA176C4F9AE02.roa (hash: 6jQR+LA7AhS3kcRLFdYcgiTc91j8m964KZdBUexFMD8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C6A39/730F00B2B1C411E9BECB1825C4F9AE02/57QbPSVuxr0M5xIbNw3kdBuDXmE.crl rsync://rpki.apnic.net/member_repository/A91C6A39/730F00B2B1C411E9BECB1825C4F9AE02/57QbPSVuxr0M5xIbNw3kdBuDXmE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/57QbPSVuxr0M5xIbNw3kdBuDXmE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 18:02:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3582 (0xdfe) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C6A39, serialNumber=E7B41B3D256EC6BD0CE7121B370DE4741B835E61 Validity Not Before: May 30 18:02:30 2025 GMT Not After : Jun 6 18:02:30 2025 GMT Subject: CN=6839f2b7-1842 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:35:ed:35:24:1e:39:56:e1:d8:17:db:0d:34: 23:cb:0c:15:4c:0d:69:11:95:c0:4f:83:1f:36:27: b8:c1:07:6a:66:11:fd:25:a8:59:f0:29:be:93:ef: b8:5a:55:09:98:dd:8e:0a:55:f8:b2:6e:4b:20:7e: ae:25:fa:30:af:9f:71:89:d2:af:8d:19:4c:47:06: 3e:3e:5e:3b:fe:a9:e4:51:a7:ca:ac:a8:2e:54:80: 01:e5:70:72:24:21:c2:fd:83:e2:b2:4d:26:fc:a9: 38:94:91:d5:94:c3:5f:2c:9f:1c:6e:94:f9:7a:20: 71:5c:41:6b:74:9b:b4:8c:7b:41:97:0f:ff:c9:5c: 12:66:7f:31:93:63:c8:41:0c:40:b8:c0:be:8c:6a: 35:0b:b1:f3:0e:9c:e2:9e:03:d4:07:cf:3e:f5:bb: db:12:92:28:47:58:7c:15:9b:73:b5:e7:9a:29:c1: 38:ac:25:d2:2c:d8:29:b6:ae:2c:02:86:66:6a:ef: cb:0e:b0:70:e0:09:ab:3a:59:54:f0:0d:20:e4:6f: bd:4f:96:cb:a7:a9:47:62:15:31:80:0a:5f:7c:76: 4e:a8:f7:a3:a6:47:01:9a:14:4b:dc:1b:e8:eb:c0: 7d:5a:8c:50:40:3f:b7:7e:41:5b:bc:89:a7:2c:1a: b9:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 71:5A:A8:64:8A:B1:A3:FF:C9:AE:9A:11:53:A1:1E:C8:4B:5B:67:68 X509v3 Authority Key Identifier: keyid:E7:B4:1B:3D:25:6E:C6:BD:0C:E7:12:1B:37:0D:E4:74:1B:83:5E:61 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C6A39/730F00B2B1C411E9BECB1825C4F9AE02/57QbPSVuxr0M5xIbNw3kdBuDXmE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/57QbPSVuxr0M5xIbNw3kdBuDXmE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C6A39/730F00B2B1C411E9BECB1825C4F9AE02/57QbPSVuxr0M5xIbNw3kdBuDXmE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 74:4c:57:71:c7:cf:d0:e7:ba:e6:47:2e:fe:c4:ce:e3:a4:48: 22:fc:8f:95:05:5e:1a:b8:84:0d:68:c0:9d:66:07:1f:4c:98: 87:9a:8c:b8:91:38:30:d0:71:19:49:33:6c:af:ae:69:f5:15: 5f:e7:6e:b0:87:4c:7f:aa:3d:8a:5f:e4:ad:cc:20:f3:3b:e3: 9e:16:6b:c7:57:d2:9a:1c:61:ed:57:93:e8:53:d2:d8:1e:4f: 8a:07:7f:6a:2d:1b:30:d7:33:f5:70:82:14:d1:2c:63:0e:26: 04:a2:8e:e7:d3:eb:c1:d7:5b:82:b2:0a:8a:3b:d5:83:e4:27: 9e:72:e4:c3:bf:c8:c0:4d:c4:f3:ef:ae:dc:8e:f1:8a:ee:eb: 40:e1:64:c6:aa:12:93:36:71:fa:5e:67:3d:b2:3d:0f:33:71: 90:d6:5e:f7:50:d7:81:6f:4f:86:77:24:7c:96:2f:9a:c8:b9: 66:c5:60:59:be:f9:99:ae:1f:f9:70:f5:99:ec:94:2b:11:ce: 12:58:93:2c:ba:85:0f:0e:ca:e1:f0:5a:e1:c8:14:57:c6:d0: c9:54:c5:f4:7e:aa:cd:d6:b4:f8:70:e3:83:5b:ff:31:e8:79: 61:2c:2c:b2:1d:59:d4:d3:e8:5e:45:03:b6:5b:a1:0a:3c:d8: 0d:31:55:5c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDf4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzZBMzkxMTAvBgNVBAUTKEU3QjQxQjNEMjU2RUM2QkQwQ0U3MTIxQjM3MERFNDc0 MUI4MzVFNjEwHhcNMjUwNTMwMTgwMjMwWhcNMjUwNjA2MTgwMjMwWjAYMRYwFAYD VQQDEw02ODM5ZjJiNy0xODQyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzDXtNSQeOVbh2BfbDTQjywwVTA1pEZXAT4MfNie4wQdqZhH9JahZ8Cm+k++4 WlUJmN2OClX4sm5LIH6uJfowr59xidKvjRlMRwY+Pl47/qnkUafKrKguVIAB5XBy JCHC/YPisk0m/Kk4lJHVlMNfLJ8cbpT5eiBxXEFrdJu0jHtBlw//yVwSZn8xk2PI QQxAuMC+jGo1C7HzDpzingPUB88+9bvbEpIoR1h8FZtzteeaKcE4rCXSLNgptq4s AoZmau/LDrBw4AmrOllU8A0g5G+9T5bLp6lHYhUxgApffHZOqPejpkcBmhRL3Bvo 68B9WoxQQD+3fkFbvImnLBq5vQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHFaqGSK saP/ya6aEVOhHshLW2doMB8GA1UdIwQYMBaAFOe0Gz0lbsa9DOcSGzcN5HQbg15h MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNkEzOS83MzBGMDBCMkIx QzQxMUU5QkVDQjE4MjVDNEY5QUUwMi81N1FiUFNWdXhyME01eEliTncza2RCdURY bUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzU3UWJQU1Z1eHIwTTV4SWJOdzNrZEJ1RFhtRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD NkEzOS83MzBGMDBCMkIxQzQxMUU5QkVDQjE4MjVDNEY5QUUwMi81N1FiUFNWdXhy ME01eEliTncza2RCdURYbUUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB0TFdxx8/Q57rmRy7+xM7jpEgi/I+VBV4auIQNaMCdZgcfTJiHmoy4 kTgw0HEZSTNsr65p9RVf526wh0x/qj2KX+StzCDzO+OeFmvHV9KaHGHtV5PoU9LY Hk+KB39qLRsw1zP1cIIU0SxjDiYEoo7n0+vB11uCsgqKO9WD5CeecuTDv8jATcTz 767cjvGK7utA4WTGqhKTNnH6Xmc9sj0PM3GQ1l73UNeBb0+GdyR8li+ayLlmxWBZ vvmZrh/5cPWZ7JQrEc4SWJMsuoUPDsrh8FrhyBRXxtDJVMX0fqrN1rT4cOODW/8x 6HlhLCyyHVnU0+heRQO2W6EKPNgNMVVc -----END CERTIFICATE-----Generated at Sat May 31 17:48:46 2025 by rpki-client