$ rpki-client -vvf rpki.apnic.net/member_repository/A91C8DD5/D5A1A1C612A711E7ADB4DE4DC4F9AE02/1sP4E3joVAB4unmUQu7b7HgOD3s.mft File: 1sP4E3joVAB4unmUQu7b7HgOD3s.mft (raw, json) Hash identifier: V/qW0vEzWPH1p32SLrcMhOXSagKwsJF/eh//rzLBHQw= Subject key identifier: 7E:61:39:2E:D4:54:A6:D4:1C:91:D4:8E:3E:B3:D4:9B:18:E9:BE:6E Authority key identifier: D6:C3:F8:13:78:E8:54:00:78:BA:79:94:42:EE:DB:EC:78:0E:0F:7B Certificate issuer: /CN=A91C8DD5/serialNumber=D6C3F81378E8540078BA799442EEDBEC780E0F7B Certificate serial: 1B4D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1sP4E3joVAB4unmUQu7b7HgOD3s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C8DD5/D5A1A1C612A711E7ADB4DE4DC4F9AE02/1sP4E3joVAB4unmUQu7b7HgOD3s.mft Manifest number: 1B43 Signing time: Fri 30 May 2025 16:27:33 +0000 Manifest this update: Fri 30 May 2025 16:27:33 +0000 Manifest next update: Fri 06 Jun 2025 16:27:33 +0000 Files and hashes: 1: 1sP4E3joVAB4unmUQu7b7HgOD3s.crl (hash: OY3M6KlDdH8t+zWPGba49264iqApU17u9hj86frxa+8=) 2: 020A31F812B011E7A7C42661C4F9AE02.roa (hash: XaEt+47rBdBuIr1qA7i6V/F+AJaSo/IaiolwteWY5gM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C8DD5/D5A1A1C612A711E7ADB4DE4DC4F9AE02/1sP4E3joVAB4unmUQu7b7HgOD3s.crl rsync://rpki.apnic.net/member_repository/A91C8DD5/D5A1A1C612A711E7ADB4DE4DC4F9AE02/1sP4E3joVAB4unmUQu7b7HgOD3s.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1sP4E3joVAB4unmUQu7b7HgOD3s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 16:27:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6989 (0x1b4d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C8DD5, serialNumber=D6C3F81378E8540078BA799442EEDBEC780E0F7B Validity Not Before: May 30 16:27:33 2025 GMT Not After : Jun 6 16:27:33 2025 GMT Subject: CN=6839dc75-1f87 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:8a:a7:c2:50:86:e8:80:29:b1:78:80:92:ca: ad:be:6f:fe:48:73:6c:52:14:00:c7:ae:93:1b:71: bf:a5:28:6f:2a:09:72:9f:9d:f8:4c:07:0d:de:7f: cb:36:86:29:0d:35:d0:7e:b0:af:2a:9b:c6:07:24: a0:35:19:29:89:3a:36:01:04:71:56:64:4e:73:7e: 1b:2b:7a:05:06:f2:18:09:8d:17:0a:02:f8:30:3f: 18:8a:33:e9:3b:ab:90:fa:3b:9d:21:75:25:be:f9: 11:df:40:3a:00:0f:8a:da:2f:98:10:32:e8:d8:17: 01:f3:69:9f:b8:0c:63:db:f9:1b:53:be:a0:fe:b2: 3b:57:80:f1:84:ff:8f:04:80:1e:c5:61:f0:8b:1a: ed:1f:16:03:17:b7:5f:d5:1c:5b:6e:b8:a3:5d:5a: 41:3b:7f:ee:e6:bf:9a:14:a5:8c:54:4b:ab:eb:0e: 02:c4:86:26:06:67:51:7e:5f:fd:d7:a6:b1:51:dc: 59:e9:62:6d:0a:44:f4:df:01:25:9b:27:e9:1e:84: e1:69:e5:d4:7d:9e:58:8f:04:7b:43:cd:e6:15:0e: 0c:78:3c:4b:7d:8e:d2:cd:bd:c9:21:bb:a2:16:be: f0:e2:3c:9f:40:dd:ba:f1:8c:05:6d:78:d8:9d:5c: 74:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7E:61:39:2E:D4:54:A6:D4:1C:91:D4:8E:3E:B3:D4:9B:18:E9:BE:6E X509v3 Authority Key Identifier: keyid:D6:C3:F8:13:78:E8:54:00:78:BA:79:94:42:EE:DB:EC:78:0E:0F:7B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C8DD5/D5A1A1C612A711E7ADB4DE4DC4F9AE02/1sP4E3joVAB4unmUQu7b7HgOD3s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1sP4E3joVAB4unmUQu7b7HgOD3s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C8DD5/D5A1A1C612A711E7ADB4DE4DC4F9AE02/1sP4E3joVAB4unmUQu7b7HgOD3s.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 79:34:a7:0a:94:18:22:0f:de:e9:fa:d7:b5:ce:e8:cb:b1:1b: fd:18:60:e4:f5:3b:01:6f:79:a3:ae:09:c5:8a:c0:d7:ec:07: 68:40:ce:6e:40:10:09:85:09:74:ef:88:97:6f:d6:5f:9c:ff: a8:1f:4d:7a:14:c6:1d:51:e7:90:63:44:85:58:d8:0a:b8:19: 99:70:b7:fd:8d:c1:1d:ee:06:c3:ae:35:8f:83:88:b3:7c:26: 0d:c8:8a:60:69:34:59:1f:a1:f8:4e:bd:73:21:75:2d:df:15: 17:c4:9c:ac:bc:39:55:71:a8:f4:2f:43:c3:58:49:12:95:87: b0:48:7c:53:2e:4d:c9:12:f2:35:32:45:d5:5f:aa:9f:d7:71: ac:4b:cc:e2:21:07:cf:fd:f2:b0:64:53:3b:30:3d:3f:58:13: 7a:64:25:35:bb:58:ac:ad:33:4e:43:87:c2:27:a2:ea:68:e2: af:9d:46:17:4c:16:ab:f4:59:40:32:5d:fe:de:a1:bb:28:18: 12:eb:e2:f0:78:a9:22:6a:53:1a:ed:ba:2b:35:3c:77:aa:a9: d0:8d:69:25:3f:11:d8:09:3b:5b:4e:ea:32:9a:e9:77:5f:31: 59:11:69:2b:e9:c9:30:57:9b:fa:6b:48:ed:b3:67:de:2e:06: a8:81:46:ff -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICG00wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzhERDUxMTAvBgNVBAUTKEQ2QzNGODEzNzhFODU0MDA3OEJBNzk5NDQyRUVEQkVD NzgwRTBGN0IwHhcNMjUwNTMwMTYyNzMzWhcNMjUwNjA2MTYyNzMzWjAYMRYwFAYD VQQDEw02ODM5ZGM3NS0xZjg3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvYqnwlCG6IApsXiAksqtvm/+SHNsUhQAx66TG3G/pShvKglyn534TAcN3n/L NoYpDTXQfrCvKpvGBySgNRkpiTo2AQRxVmROc34bK3oFBvIYCY0XCgL4MD8YijPp O6uQ+judIXUlvvkR30A6AA+K2i+YEDLo2BcB82mfuAxj2/kbU76g/rI7V4DxhP+P BIAexWHwixrtHxYDF7df1RxbbrijXVpBO3/u5r+aFKWMVEur6w4CxIYmBmdRfl/9 16axUdxZ6WJtCkT03wElmyfpHoThaeXUfZ5YjwR7Q83mFQ4MeDxLfY7Szb3JIbui Fr7w4jyfQN268YwFbXjYnVx0twIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFH5hOS7U VKbUHJHUjj6z1JsY6b5uMB8GA1UdIwQYMBaAFNbD+BN46FQAeLp5lELu2+x4Dg97 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDOERENS9ENUExQTFDNjEy QTcxMUU3QURCNERFNERDNEY5QUUwMi8xc1A0RTNqb1ZBQjR1bm1VUXU3YjdIZ09E M3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFzUDRFM2pvVkFCNHVubVVRdTdiN0hnT0Qzcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD OERENS9ENUExQTFDNjEyQTcxMUU3QURCNERFNERDNEY5QUUwMi8xc1A0RTNqb1ZB QjR1bm1VUXU3YjdIZ09EM3MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB5NKcKlBgiD97p+te1zujLsRv9GGDk9TsBb3mjrgnFisDX7AdoQM5u QBAJhQl074iXb9ZfnP+oH016FMYdUeeQY0SFWNgKuBmZcLf9jcEd7gbDrjWPg4iz fCYNyIpgaTRZH6H4Tr1zIXUt3xUXxJysvDlVcaj0L0PDWEkSlYewSHxTLk3JEvI1 MkXVX6qf13GsS8ziIQfP/fKwZFM7MD0/WBN6ZCU1u1isrTNOQ4fCJ6LqaOKvnUYX TBar9FlAMl3+3qG7KBgS6+LweKkialMa7borNTx3qqnQjWklPxHYCTtbTuoymul3 XzFZEWkr6ckwV5v6a0jts2feLgaogUb/ -----END CERTIFICATE-----Generated at Sat May 31 16:40:49 2025 by rpki-client