$ rpki-client -vvf rpki.apnic.net/member_repository/A91C7C44/D533A7B463DE11ED80BCD337C4F9AE02/s0it0HgdstIdxNM510-HoDk4ycc.mft File: s0it0HgdstIdxNM510-HoDk4ycc.mft (raw, json) Hash identifier: A3PA1lqJcTV5l8ml2V0oObHJkyMpa1AwbEhCOxGSMDw= Subject key identifier: 97:A3:1F:E7:70:11:38:67:6A:63:6C:B7:00:E8:AD:9F:40:42:E4:94 Authority key identifier: B3:48:AD:D0:78:1D:B2:D2:1D:C4:D3:39:D7:4F:87:A0:39:38:C9:C7 Certificate issuer: /CN=A91C7C44/serialNumber=B348ADD0781DB2D21DC4D339D74F87A03938C9C7 Certificate serial: 01E8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/s0it0HgdstIdxNM510-HoDk4ycc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C7C44/D533A7B463DE11ED80BCD337C4F9AE02/s0it0HgdstIdxNM510-HoDk4ycc.mft Manifest number: 01E2 Signing time: Sat 31 May 2025 02:26:01 +0000 Manifest this update: Sat 31 May 2025 02:26:00 +0000 Manifest next update: Sat 07 Jun 2025 02:26:00 +0000 Files and hashes: 1: s0it0HgdstIdxNM510-HoDk4ycc.crl (hash: fn9MzZYicsRJZs0KZyLmMjgNOEgoYzT647IfCFb4qa4=) 2: 945D844463E311EDAD1B0B3FC4F9AE02.roa (hash: N+dN6EXW9kLpuaXIDcRP+SypH2TkoWeKEFt5XA9cnJo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C7C44/D533A7B463DE11ED80BCD337C4F9AE02/s0it0HgdstIdxNM510-HoDk4ycc.crl rsync://rpki.apnic.net/member_repository/A91C7C44/D533A7B463DE11ED80BCD337C4F9AE02/s0it0HgdstIdxNM510-HoDk4ycc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/s0it0HgdstIdxNM510-HoDk4ycc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 02:25:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 488 (0x1e8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C7C44, serialNumber=B348ADD0781DB2D21DC4D339D74F87A03938C9C7 Validity Not Before: May 31 02:26:00 2025 GMT Not After : Jun 7 02:26:00 2025 GMT Subject: CN=683a68b8-3754 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:a1:99:c6:26:63:cc:8e:35:57:72:33:9d:f3: c9:1c:99:2d:97:06:b6:60:1e:70:bf:e4:80:66:7d: a0:e5:3a:16:b1:47:1f:96:09:e6:b1:1c:90:56:c8: 05:ad:45:c1:76:be:92:89:a5:6a:a7:42:2e:9d:eb: 80:c7:0d:75:cf:8a:db:b8:bb:91:1f:c5:49:68:4d: 83:3b:2b:c2:79:49:ef:d7:fa:26:0a:c2:f5:9b:40: 6a:fc:d2:8c:25:26:95:0c:2c:14:ca:34:13:f5:d0: 7c:5c:c1:37:5b:fe:16:e5:60:48:ac:e5:88:94:bd: d2:1b:3f:7e:f3:ad:9b:f0:a2:71:ad:6f:8a:68:8c: 7b:a1:77:31:70:03:9f:aa:3b:86:4b:1d:b8:0f:58: a8:9f:39:57:61:a7:9b:70:cd:4f:6c:cd:88:38:d2: ed:99:f0:d0:c0:38:54:0a:37:ef:3f:e2:ec:16:9b: 86:79:b5:a7:cf:9d:7b:71:5c:99:e5:6e:bf:99:48: 12:e0:74:ef:60:3e:6c:d4:be:23:34:78:17:7c:05: d5:19:57:a9:5e:ee:40:e0:b4:a8:e9:55:7d:52:e7: 02:cf:16:43:31:ce:b0:87:09:64:43:60:89:f4:8c: 9f:07:aa:89:46:2e:1d:1a:b4:c3:0e:d5:f1:3b:11: 1a:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 97:A3:1F:E7:70:11:38:67:6A:63:6C:B7:00:E8:AD:9F:40:42:E4:94 X509v3 Authority Key Identifier: keyid:B3:48:AD:D0:78:1D:B2:D2:1D:C4:D3:39:D7:4F:87:A0:39:38:C9:C7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C7C44/D533A7B463DE11ED80BCD337C4F9AE02/s0it0HgdstIdxNM510-HoDk4ycc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/s0it0HgdstIdxNM510-HoDk4ycc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C7C44/D533A7B463DE11ED80BCD337C4F9AE02/s0it0HgdstIdxNM510-HoDk4ycc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 68:27:49:d2:32:73:b1:19:cd:43:26:2a:fa:85:3a:7d:d0:b5: 15:e7:96:c0:aa:5d:be:61:6d:55:ea:7f:be:41:68:5b:bb:fb: bb:d9:81:d3:8e:31:fd:13:5b:19:41:95:aa:f6:1d:b8:7b:fa: f7:78:83:a0:88:57:71:2a:8a:1e:7b:6b:3a:95:43:6a:48:ef: 9e:54:b9:fe:e2:81:90:a8:3c:5e:92:61:f1:04:6c:61:54:ae: 00:c2:ed:7b:a8:4a:ca:8c:ba:6b:de:b2:e5:f1:c5:82:15:76: 1f:20:2a:4e:d4:8d:c2:fa:09:8e:cc:3a:00:0c:aa:b8:1e:2c: 46:83:91:93:f8:67:d3:ea:ec:0c:fc:42:cd:0f:da:8f:35:ea: f5:31:4a:b3:90:0b:b4:22:1d:26:08:e7:38:a4:53:82:cb:ea: 87:ad:9c:9d:f2:12:a7:2c:4f:11:02:3c:91:30:74:47:a0:ec: db:33:e4:d9:a1:f8:c2:fb:77:f1:cd:2a:55:d8:e7:74:e7:0c: d3:d7:a4:9b:f3:74:97:99:a6:61:48:8e:58:c0:f3:62:29:15: 13:25:ae:a3:5c:2b:0c:44:29:06:7e:6f:56:e4:be:ef:35:42: 2c:14:ce:2e:09:f2:82:17:f3:70:b1:4f:77:d3:c1:d1:5d:96: e1:5c:f0:75 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAegwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzdDNDQxMTAvBgNVBAUTKEIzNDhBREQwNzgxREIyRDIxREM0RDMzOUQ3NEY4N0Ew MzkzOEM5QzcwHhcNMjUwNTMxMDIyNjAwWhcNMjUwNjA3MDIyNjAwWjAYMRYwFAYD VQQDEw02ODNhNjhiOC0zNzU0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqKGZxiZjzI41V3IznfPJHJktlwa2YB5wv+SAZn2g5ToWsUcflgnmsRyQVsgF rUXBdr6SiaVqp0IuneuAxw11z4rbuLuRH8VJaE2DOyvCeUnv1/omCsL1m0Bq/NKM JSaVDCwUyjQT9dB8XME3W/4W5WBIrOWIlL3SGz9+862b8KJxrW+KaIx7oXcxcAOf qjuGSx24D1ionzlXYaebcM1PbM2IONLtmfDQwDhUCjfvP+LsFpuGebWnz517cVyZ 5W6/mUgS4HTvYD5s1L4jNHgXfAXVGVepXu5A4LSo6VV9UucCzxZDMc6whwlkQ2CJ 9IyfB6qJRi4dGrTDDtXxOxEaPQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJejH+dw EThnamNstwDorZ9AQuSUMB8GA1UdIwQYMBaAFLNIrdB4HbLSHcTTOddPh6A5OMnH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDN0M0NC9ENTMzQTdCNDYz REUxMUVEODBCQ0QzMzdDNEY5QUUwMi9zMGl0MEhnZHN0SWR4Tk01MTAtSG9EazR5 Y2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3MwaXQwSGdkc3RJZHhOTTUxMC1Ib0RrNHljYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD N0M0NC9ENTMzQTdCNDYzREUxMUVEODBCQ0QzMzdDNEY5QUUwMi9zMGl0MEhnZHN0 SWR4Tk01MTAtSG9EazR5Y2MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBoJ0nSMnOxGc1DJir6hTp90LUV55bAql2+YW1V6n++QWhbu/u72YHT jjH9E1sZQZWq9h24e/r3eIOgiFdxKooee2s6lUNqSO+eVLn+4oGQqDxekmHxBGxh VK4Awu17qErKjLpr3rLl8cWCFXYfICpO1I3C+gmOzDoADKq4HixGg5GT+GfT6uwM /ELND9qPNer1MUqzkAu0Ih0mCOc4pFOCy+qHrZyd8hKnLE8RAjyRMHRHoOzbM+TZ ofjC+3fxzSpV2Od05wzT16Sb83SXmaZhSI5YwPNiKRUTJa6jXCsMRCkGfm9W5L7v NUIsFM4uCfKCF/NwsU9308HRXZbhXPB1 -----END CERTIFICATE-----Generated at Sat May 31 17:41:00 2025 by rpki-client