$ rpki-client -vvf rpki.apnic.net/member_repository/A91C941B/69F6B7DE1A8311EC8C922229C4F9AE02/CAJbm0Tu2K4LdvEeA3LOlhh3rZ8.mft File: CAJbm0Tu2K4LdvEeA3LOlhh3rZ8.mft (raw, json) Hash identifier: Gpngf2bRFZ2xN2IaWiLjgI51o9ErkPT1CwmW3kicIzg= Subject key identifier: A7:FC:2B:44:F6:49:7E:A5:40:34:89:43:20:31:B6:E1:C1:EC:E1:BE Authority key identifier: 08:02:5B:9B:44:EE:D8:AE:0B:76:F1:1E:03:72:CE:96:18:77:AD:9F Certificate issuer: /CN=A91C941B/serialNumber=08025B9B44EED8AE0B76F11E0372CE961877AD9F Certificate serial: 04F0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CAJbm0Tu2K4LdvEeA3LOlhh3rZ8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C941B/69F6B7DE1A8311EC8C922229C4F9AE02/CAJbm0Tu2K4LdvEeA3LOlhh3rZ8.mft Manifest number: 04E3 Signing time: Fri 30 May 2025 23:57:12 +0000 Manifest this update: Fri 30 May 2025 23:57:11 +0000 Manifest next update: Fri 06 Jun 2025 23:57:11 +0000 Files and hashes: 1: CAJbm0Tu2K4LdvEeA3LOlhh3rZ8.crl (hash: 5oKgc09mhfhlbmuad+1HPjC8RgbodVJRjkkgllCDPQs=) 2: B3883EE61A8C11ECBD6CCF18C4F9AE02.roa (hash: eZkG1iVHjA07zqibQCS20vDKvxGWhApC6gs+W5wfJ9g=) 3: F719961A1A8611ECB908E939C4F9AE02.roa (hash: 8CERVYgkltWj4G95QfjHRAzhZOs/2MofXT3PQbZreQ8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C941B/69F6B7DE1A8311EC8C922229C4F9AE02/CAJbm0Tu2K4LdvEeA3LOlhh3rZ8.crl rsync://rpki.apnic.net/member_repository/A91C941B/69F6B7DE1A8311EC8C922229C4F9AE02/CAJbm0Tu2K4LdvEeA3LOlhh3rZ8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CAJbm0Tu2K4LdvEeA3LOlhh3rZ8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 23:57:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1264 (0x4f0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C941B, serialNumber=08025B9B44EED8AE0B76F11E0372CE961877AD9F Validity Not Before: May 30 23:57:11 2025 GMT Not After : Jun 6 23:57:11 2025 GMT Subject: CN=683a45d8-6f8e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:d6:76:dc:63:2c:53:4a:7f:ca:6c:53:b9:9b: 4e:5a:ee:e8:62:ad:e6:7c:61:10:9c:f7:0d:cb:7e: 55:76:2f:53:92:94:2c:a3:44:82:0d:59:e6:b7:da: 73:d6:cd:c8:85:7f:8e:c1:f6:c2:15:1e:9e:94:ca: 82:b9:e8:42:ad:99:79:bb:f0:d0:9c:70:f4:0b:b8: ff:eb:b8:09:c2:57:1d:0d:96:b8:75:53:36:c9:1f: bc:e5:40:e4:a1:a3:48:09:ec:b5:ef:f0:ea:64:b5: bd:aa:c8:b3:af:5b:b4:62:e7:99:8e:64:a5:a1:f6: 21:41:2b:56:0f:7f:22:d3:88:14:ef:fb:d6:c4:a6: 20:ba:b1:99:23:2d:2f:d5:d2:7a:b9:21:79:b8:bc: c6:d9:57:b0:f8:78:f2:c1:87:e4:51:9a:f3:ff:ba: bd:ca:27:9d:57:0c:3a:07:f4:fd:7a:8e:16:6c:96: c6:97:19:67:16:a9:c2:3a:b6:73:4a:a2:b1:52:60: 0c:03:25:17:53:5b:e3:56:6b:dc:fe:d4:b2:7d:d0: fb:7d:88:40:9a:28:db:86:e4:8a:8c:d2:6b:fd:c3: f2:a2:1c:f2:f5:23:91:9d:46:21:09:4c:1e:c7:50: 04:9b:b3:5d:90:ff:57:2e:69:c3:d6:76:7b:22:96: 23:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A7:FC:2B:44:F6:49:7E:A5:40:34:89:43:20:31:B6:E1:C1:EC:E1:BE X509v3 Authority Key Identifier: keyid:08:02:5B:9B:44:EE:D8:AE:0B:76:F1:1E:03:72:CE:96:18:77:AD:9F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C941B/69F6B7DE1A8311EC8C922229C4F9AE02/CAJbm0Tu2K4LdvEeA3LOlhh3rZ8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CAJbm0Tu2K4LdvEeA3LOlhh3rZ8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C941B/69F6B7DE1A8311EC8C922229C4F9AE02/CAJbm0Tu2K4LdvEeA3LOlhh3rZ8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 48:58:aa:3c:c7:d0:40:46:d9:09:87:2e:ad:55:41:c3:e0:86: d1:44:33:25:c4:4d:3c:6d:0a:e0:87:da:5b:09:9b:cc:0d:94: 1b:65:8e:5f:51:c6:55:b5:b8:68:2e:2b:6a:cf:3a:41:ac:f5: 66:45:4d:87:57:3c:1b:4a:8a:8c:2f:1a:f0:02:56:d1:f3:35: 06:bb:4c:12:7f:0f:9f:1f:91:42:2a:17:84:d8:33:48:69:f5: 66:26:ca:d5:7c:f9:cb:aa:e4:9d:72:f0:11:f4:85:a6:c1:46: 84:dd:21:b7:1f:c8:e1:63:7b:8f:22:65:53:e3:65:38:3c:33: 0e:92:8f:57:fe:f7:29:9b:b1:03:5e:90:d8:e3:6c:3e:d3:79: 11:da:03:e1:0a:37:05:99:51:04:f0:2e:44:9a:2e:6b:44:8d: 78:ab:c9:87:c9:f1:20:5c:50:7b:f4:56:50:e0:52:ac:12:76: bc:ce:47:c8:60:d5:de:56:43:00:f6:81:17:1b:29:94:00:c8: c0:0a:8c:30:43:b1:83:e3:2c:a6:2d:bc:f0:be:fb:92:8d:b1: 7c:76:8e:c2:9e:e4:84:65:6a:9c:b3:55:ef:ce:60:31:f4:23: 0b:a2:90:04:8b:f1:62:ac:7f:28:b7:a7:d4:21:7a:c3:a4:1e: 17:29:2d:f8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBPAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Qzk0MUIxMTAvBgNVBAUTKDA4MDI1QjlCNDRFRUQ4QUUwQjc2RjExRTAzNzJDRTk2 MTg3N0FEOUYwHhcNMjUwNTMwMjM1NzExWhcNMjUwNjA2MjM1NzExWjAYMRYwFAYD VQQDEw02ODNhNDVkOC02ZjhlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAstZ23GMsU0p/ymxTuZtOWu7oYq3mfGEQnPcNy35Vdi9TkpQso0SCDVnmt9pz 1s3IhX+OwfbCFR6elMqCuehCrZl5u/DQnHD0C7j/67gJwlcdDZa4dVM2yR+85UDk oaNICey17/DqZLW9qsizr1u0YueZjmSlofYhQStWD38i04gU7/vWxKYgurGZIy0v 1dJ6uSF5uLzG2Vew+HjywYfkUZrz/7q9yiedVww6B/T9eo4WbJbGlxlnFqnCOrZz SqKxUmAMAyUXU1vjVmvc/tSyfdD7fYhAmijbhuSKjNJr/cPyohzy9SORnUYhCUwe x1AEm7NdkP9XLmnD1nZ7IpYjOwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKf8K0T2 SX6lQDSJQyAxtuHB7OG+MB8GA1UdIwQYMBaAFAgCW5tE7tiuC3bxHgNyzpYYd62f MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDOTQxQi82OUY2QjdERTFB ODMxMUVDOEM5MjIyMjlDNEY5QUUwMi9DQUpibTBUdTJLNExkdkVlQTNMT2xoaDNy WjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NBSmJtMFR1Mks0TGR2RWVBM0xPbGhoM3JaOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD OTQxQi82OUY2QjdERTFBODMxMUVDOEM5MjIyMjlDNEY5QUUwMi9DQUpibTBUdTJL NExkdkVlQTNMT2xoaDNyWjgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBIWKo8x9BARtkJhy6tVUHD4IbRRDMlxE08bQrgh9pbCZvMDZQbZY5f UcZVtbhoLitqzzpBrPVmRU2HVzwbSoqMLxrwAlbR8zUGu0wSfw+fH5FCKheE2DNI afVmJsrVfPnLquSdcvAR9IWmwUaE3SG3H8jhY3uPImVT42U4PDMOko9X/vcpm7ED XpDY42w+03kR2gPhCjcFmVEE8C5Emi5rRI14q8mHyfEgXFB79FZQ4FKsEna8zkfI YNXeVkMA9oEXGymUAMjACowwQ7GD4yymLbzwvvuSjbF8do7CnuSEZWqcs1XvzmAx 9CMLopAEi/FirH8ot6fUIXrDpB4XKS34 -----END CERTIFICATE-----Generated at Sat May 31 17:17:36 2025 by rpki-client