$ rpki-client -vvf rpki.apnic.net/member_repository/A91C8307/2BC92450BECD11EF98C74132C4F9AE02/Swkt8QQoD0W8PyeW9AHMK0xhROk.mft File: Swkt8QQoD0W8PyeW9AHMK0xhROk.mft (raw, json) Hash identifier: gTsOsCufIkmAD8cC98rQ7YmJPpvQOrpU7sAx4xCKLrg= Subject key identifier: BC:D2:3B:BF:20:C4:8E:62:CD:7E:57:7D:A0:89:25:AC:B1:FF:FB:6B Authority key identifier: 4B:09:2D:F1:04:28:0F:45:BC:3F:27:96:F4:01:CC:2B:4C:61:44:E9 Certificate issuer: /CN=A91C8307/serialNumber=4B092DF104280F45BC3F2796F401CC2B4C6144E9 Certificate serial: 57 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Swkt8QQoD0W8PyeW9AHMK0xhROk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C8307/2BC92450BECD11EF98C74132C4F9AE02/Swkt8QQoD0W8PyeW9AHMK0xhROk.mft Manifest number: 56 Signing time: Tue 03 Jun 2025 07:03:51 +0000 Manifest this update: Tue 03 Jun 2025 07:03:51 +0000 Manifest next update: Tue 10 Jun 2025 07:03:51 +0000 Files and hashes: 1: Swkt8QQoD0W8PyeW9AHMK0xhROk.crl (hash: HbjjjqAe7ofyKp8g4NRSKbNOrZdXeXn0JT5ZTF+wVMQ=) 2: DE72D5AEBED411EF835BB47AC4F9AE02.roa (hash: 5j81/BZOYpTkz0ooChEWGP+uFOoiaPO0/qxC0SgYzdY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C8307/2BC92450BECD11EF98C74132C4F9AE02/Swkt8QQoD0W8PyeW9AHMK0xhROk.crl rsync://rpki.apnic.net/member_repository/A91C8307/2BC92450BECD11EF98C74132C4F9AE02/Swkt8QQoD0W8PyeW9AHMK0xhROk.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Swkt8QQoD0W8PyeW9AHMK0xhROk.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 10 Jun 2025 07:03:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 87 (0x57) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C8307, serialNumber=4B092DF104280F45BC3F2796F401CC2B4C6144E9 Validity Not Before: Jun 3 07:03:51 2025 GMT Not After : Jun 10 07:03:51 2025 GMT Subject: CN=683e9e57-0025 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:26:0b:70:d0:24:c3:0e:6e:18:09:12:d4:92: 84:aa:69:3e:83:e8:0e:f8:3a:76:e1:e7:e4:bb:5d: 4a:69:01:5c:f9:c9:86:5a:40:cc:76:71:04:d8:70: 44:b0:94:eb:0f:b2:cb:55:aa:8b:81:8c:af:10:5c: 0b:82:64:eb:31:3a:f1:e9:6c:11:83:e5:d4:71:e2: 2d:63:ca:6a:1b:45:29:37:8e:d4:fb:8a:4c:d9:34: 66:63:e6:c6:40:70:2a:23:28:01:07:14:03:91:df: 67:0b:88:bf:65:38:5d:23:bd:5e:36:f1:8f:4b:48: 79:3d:c8:71:4f:80:66:37:0e:4a:68:07:eb:d5:58: c7:a7:5d:a3:2b:14:9d:d7:3b:3d:57:5b:c5:7e:b0: e3:cc:ec:e7:39:a3:00:93:55:82:a9:b2:7e:28:30: 5a:0e:be:45:59:5f:e8:90:5b:ed:14:64:8a:d7:45: 12:b2:6d:2b:7c:07:48:f5:99:89:b3:44:11:98:a4: 11:89:f7:4e:de:78:c5:dd:0a:4b:04:6f:3f:06:bb: 94:73:09:3a:fc:42:a7:a5:6c:0c:f5:05:16:10:f4: 86:d7:35:54:e6:1f:39:5d:a4:32:91:73:aa:11:df: 91:28:f4:8e:3f:2d:df:67:68:2b:ab:b3:98:71:8e: 30:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BC:D2:3B:BF:20:C4:8E:62:CD:7E:57:7D:A0:89:25:AC:B1:FF:FB:6B X509v3 Authority Key Identifier: keyid:4B:09:2D:F1:04:28:0F:45:BC:3F:27:96:F4:01:CC:2B:4C:61:44:E9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C8307/2BC92450BECD11EF98C74132C4F9AE02/Swkt8QQoD0W8PyeW9AHMK0xhROk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Swkt8QQoD0W8PyeW9AHMK0xhROk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C8307/2BC92450BECD11EF98C74132C4F9AE02/Swkt8QQoD0W8PyeW9AHMK0xhROk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 99:52:5b:fa:77:61:e1:f6:18:5c:bf:ad:41:82:3a:8e:05:98: 6c:d7:58:09:82:9b:30:fe:dd:b5:c4:fc:21:ef:d0:6c:79:4d: 2e:a4:ed:a6:b9:1f:5d:b5:5e:65:aa:f6:8b:d4:31:4f:b1:f5: 2a:25:0b:48:d3:45:db:7e:77:ef:d9:ec:f1:3b:6c:64:cd:3e: 41:c8:d2:5c:f0:a3:c0:4d:84:e1:f9:93:13:de:87:c4:a1:d0: d9:d6:cc:13:2c:46:42:df:5f:60:9a:d1:fc:d1:cb:31:dd:30: 43:dd:4e:29:d0:33:3e:58:25:09:f3:c5:56:f5:db:64:82:a3: bf:cb:2b:d8:51:59:64:67:ff:af:3e:e0:e9:d9:42:1f:53:af: a8:b5:5e:3a:2e:ad:7f:0b:70:32:7d:17:14:84:0e:5f:7a:57: 28:46:85:4c:1a:72:82:0e:3e:cd:34:4a:80:35:bf:12:cd:33: de:96:cd:77:7a:43:16:84:c7:10:1c:11:21:7d:ea:9a:9f:05: e8:67:ad:31:6a:6b:9c:3f:36:8e:3c:0d:b1:28:5a:ff:ed:68: a4:24:7f:66:31:a4:1a:13:90:7c:ee:cd:ce:6a:0e:59:88:c8: 68:57:a6:3b:3e:44:4d:0a:06:a8:a3:dc:34:c8:8e:21:ef:93: d5:e6:05:a6 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBVzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFD ODMwNzExMC8GA1UEBRMoNEIwOTJERjEwNDI4MEY0NUJDM0YyNzk2RjQwMUNDMkI0 QzYxNDRFOTAeFw0yNTA2MDMwNzAzNTFaFw0yNTA2MTAwNzAzNTFaMBgxFjAUBgNV BAMTDTY4M2U5ZTU3LTAwMjUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC7Jgtw0CTDDm4YCRLUkoSqaT6D6A74Onbh5+S7XUppAVz5yYZaQMx2cQTYcESw lOsPsstVqouBjK8QXAuCZOsxOvHpbBGD5dRx4i1jymobRSk3jtT7ikzZNGZj5sZA cCojKAEHFAOR32cLiL9lOF0jvV428Y9LSHk9yHFPgGY3DkpoB+vVWMenXaMrFJ3X Oz1XW8V+sOPM7Oc5owCTVYKpsn4oMFoOvkVZX+iQW+0UZIrXRRKybSt8B0j1mYmz RBGYpBGJ907eeMXdCksEbz8Gu5RzCTr8QqelbAz1BRYQ9IbXNVTmHzldpDKRc6oR 35Eo9I4/Ld9naCurs5hxjjBlAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUvNI7vyDE jmLNfld9oIklrLH/+2swHwYDVR0jBBgwFoAUSwkt8QQoD0W8PyeW9AHMK0xhROkw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUM4MzA3LzJCQzkyNDUwQkVD RDExRUY5OEM3NDEzMkM0RjlBRTAyL1N3a3Q4UVFvRDBXOFB5ZVc5QUhNSzB4aFJP ay5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvU3drdDhRUW9EMFc4UHllVzlBSE1LMHhoUk9rLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUM4 MzA3LzJCQzkyNDUwQkVDRDExRUY5OEM3NDEzMkM0RjlBRTAyL1N3a3Q4UVFvRDBX OFB5ZVc5QUhNSzB4aFJPay5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAJlSW/p3YeH2GFy/rUGCOo4FmGzXWAmCmzD+3bXE/CHv0Gx5TS6k7aa5 H121XmWq9ovUMU+x9SolC0jTRdt+d+/Z7PE7bGTNPkHI0lzwo8BNhOH5kxPeh8Sh 0NnWzBMsRkLfX2Ca0fzRyzHdMEPdTinQMz5YJQnzxVb122SCo7/LK9hRWWRn/68+ 4OnZQh9Tr6i1XjourX8LcDJ9FxSEDl96VyhGhUwacoIOPs00SoA1vxLNM96WzXd6 QxaExxAcESF96pqfBehnrTFqa5w/No48DbEoWv/taKQkf2YxpBoTkHzuzc5qDlmI yGhXpjs+RE0KBqij3DTIjiHvk9XmBaY= -----END CERTIFICATE-----Generated at Tue Jun 3 23:57:42 2025 by rpki-client