$ rpki-client -vvf rpki.apnic.net/member_repository/A91CBB09/611DABA07CE811ECAC894839C4F9AE02/l1vVXWFcmGCsz9hgmYU7yxmpm-Q.mft File: l1vVXWFcmGCsz9hgmYU7yxmpm-Q.mft (raw, json) Hash identifier: 0tD3uH1UfIKp3x3eSXwJsgTaudVwIIfB6N9dcs0jK5Y= Subject key identifier: 98:53:4A:41:9C:9D:72:7E:D6:64:24:59:1E:03:18:02:17:2A:B1:C0 Authority key identifier: 97:5B:D5:5D:61:5C:98:60:AC:CF:D8:60:99:85:3B:CB:19:A9:9B:E4 Certificate issuer: /CN=A91CBB09/serialNumber=975BD55D615C9860ACCFD86099853BCB19A99BE4 Certificate serial: 03F0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l1vVXWFcmGCsz9hgmYU7yxmpm-Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CBB09/611DABA07CE811ECAC894839C4F9AE02/l1vVXWFcmGCsz9hgmYU7yxmpm-Q.mft Manifest number: 03EB Signing time: Sat 31 May 2025 00:41:53 +0000 Manifest this update: Sat 31 May 2025 00:41:52 +0000 Manifest next update: Sat 07 Jun 2025 00:41:52 +0000 Files and hashes: 1: l1vVXWFcmGCsz9hgmYU7yxmpm-Q.crl (hash: mtyfVVjNWDC763LzZiiiIgQSroXMSrtgtygbAeK81W8=) 2: F865B8887CEB11ECA79BD83DC4F9AE02.roa (hash: 9AbsTY8cTY46TpPDuvc4IXAIWNpWgIpIVFjtcxPCVMI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CBB09/611DABA07CE811ECAC894839C4F9AE02/l1vVXWFcmGCsz9hgmYU7yxmpm-Q.crl rsync://rpki.apnic.net/member_repository/A91CBB09/611DABA07CE811ECAC894839C4F9AE02/l1vVXWFcmGCsz9hgmYU7yxmpm-Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l1vVXWFcmGCsz9hgmYU7yxmpm-Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 00:41:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1008 (0x3f0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CBB09, serialNumber=975BD55D615C9860ACCFD86099853BCB19A99BE4 Validity Not Before: May 31 00:41:52 2025 GMT Not After : Jun 7 00:41:52 2025 GMT Subject: CN=683a5050-f869 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:67:d4:44:9d:51:fb:b1:1b:76:22:d1:71:cd: 7e:da:82:fe:5d:b2:61:52:09:04:d3:f2:1a:9c:a1: 03:8f:27:bb:8f:fa:8b:dd:bd:f6:ac:83:11:45:2a: a5:01:47:05:87:c0:2f:c9:83:97:78:8c:92:8c:75: ab:1b:48:8e:89:7c:d2:47:d5:ba:a2:38:c0:82:89: 4c:9f:4e:48:9c:e2:0c:47:94:6c:19:78:4d:42:15: 27:07:fc:ef:4d:5d:24:b7:0c:1f:7c:a9:70:d9:b0: f1:3a:32:24:6b:04:5e:5d:b4:e2:f8:ca:f9:50:9a: 23:7e:91:b5:e6:bb:40:cf:85:67:0f:3c:99:e5:7c: ee:2a:3d:76:c9:a1:6c:f8:bd:1c:93:6f:43:62:2b: 2e:4a:92:83:31:17:cb:b4:cc:ab:72:1b:5f:39:9b: f3:1f:ea:96:7e:78:a7:e7:2a:8e:56:37:50:26:8e: fb:a2:cd:6c:ca:56:33:77:a3:d8:03:77:7c:7b:ee: 51:b2:f9:aa:12:8b:bf:c0:b5:df:9f:1b:e5:9b:48: 57:02:b3:10:e7:f3:00:71:8d:c6:91:5a:d0:fc:d6: d3:b4:cd:41:39:24:52:47:74:c6:1e:b7:8a:33:8a: 22:6a:1b:49:53:3e:79:07:94:51:01:ea:fa:bc:6f: fa:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 98:53:4A:41:9C:9D:72:7E:D6:64:24:59:1E:03:18:02:17:2A:B1:C0 X509v3 Authority Key Identifier: keyid:97:5B:D5:5D:61:5C:98:60:AC:CF:D8:60:99:85:3B:CB:19:A9:9B:E4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CBB09/611DABA07CE811ECAC894839C4F9AE02/l1vVXWFcmGCsz9hgmYU7yxmpm-Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l1vVXWFcmGCsz9hgmYU7yxmpm-Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CBB09/611DABA07CE811ECAC894839C4F9AE02/l1vVXWFcmGCsz9hgmYU7yxmpm-Q.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 59:5a:e2:5d:04:60:74:a1:f1:79:ea:45:5a:2f:1f:0e:a8:ff: b5:a5:da:77:1f:14:32:54:fb:67:24:d9:eb:7a:e5:43:58:0f: 98:a4:fc:d6:69:5e:48:47:8f:43:06:c2:d8:61:95:c8:d4:30: a2:c0:3b:ec:d9:8a:d5:28:34:0e:36:af:a4:23:27:5e:eb:c1: b2:94:c7:57:d7:f8:da:f4:87:d6:f8:86:d0:5f:6f:8d:4f:d5: 57:25:bc:bb:a1:98:96:c9:fb:31:11:e6:f2:1e:64:0e:d1:f5: 9d:b0:95:b9:b4:61:93:25:c2:dd:71:7f:02:a7:d9:21:e3:c2: d4:dd:1d:38:84:88:6b:1f:26:46:26:d2:4a:0f:07:cf:c4:bb: a7:66:3e:94:8a:91:5e:2d:92:7a:08:e7:99:33:7c:9f:1c:27: cd:ef:a2:c2:8c:21:f1:1b:b6:85:8a:19:d9:9f:d0:70:02:8e: 2c:0d:d8:ee:d2:dd:0f:04:dd:fe:9f:40:53:87:62:d6:5c:08: 0e:74:85:bb:8d:b6:79:68:65:f0:80:c2:b4:2c:e9:c9:7c:39: 08:78:6a:e3:db:1a:76:00:bf:84:74:47:76:b7:bc:52:34:d3: 70:8e:0d:72:eb:89:1b:f7:84:7f:16:19:f4:e3:8e:77:85:05: 3a:4d:fc:a4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA/AwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0JCMDkxMTAvBgNVBAUTKDk3NUJENTVENjE1Qzk4NjBBQ0NGRDg2MDk5ODUzQkNC MTlBOTlCRTQwHhcNMjUwNTMxMDA0MTUyWhcNMjUwNjA3MDA0MTUyWjAYMRYwFAYD VQQDEw02ODNhNTA1MC1mODY5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvmfURJ1R+7EbdiLRcc1+2oL+XbJhUgkE0/IanKEDjye7j/qL3b32rIMRRSql AUcFh8AvyYOXeIySjHWrG0iOiXzSR9W6ojjAgolMn05InOIMR5RsGXhNQhUnB/zv TV0ktwwffKlw2bDxOjIkawReXbTi+Mr5UJojfpG15rtAz4VnDzyZ5XzuKj12yaFs +L0ck29DYisuSpKDMRfLtMyrchtfOZvzH+qWfnin5yqOVjdQJo77os1sylYzd6PY A3d8e+5RsvmqEou/wLXfnxvlm0hXArMQ5/MAcY3GkVrQ/NbTtM1BOSRSR3TGHreK M4oiahtJUz55B5RRAer6vG/6ZQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJhTSkGc nXJ+1mQkWR4DGAIXKrHAMB8GA1UdIwQYMBaAFJdb1V1hXJhgrM/YYJmFO8sZqZvk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDQkIwOS82MTFEQUJBMDdD RTgxMUVDQUM4OTQ4MzlDNEY5QUUwMi9sMXZWWFdGY21HQ3N6OWhnbVlVN3l4bXBt LVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2wxdlZYV0ZjbUdDc3o5aGdtWVU3eXhtcG0tUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD QkIwOS82MTFEQUJBMDdDRTgxMUVDQUM4OTQ4MzlDNEY5QUUwMi9sMXZWWFdGY21H Q3N6OWhnbVlVN3l4bXBtLVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBZWuJdBGB0ofF56kVaLx8OqP+1pdp3HxQyVPtnJNnreuVDWA+YpPzW aV5IR49DBsLYYZXI1DCiwDvs2YrVKDQONq+kIyde68GylMdX1/ja9IfW+IbQX2+N T9VXJby7oZiWyfsxEebyHmQO0fWdsJW5tGGTJcLdcX8Cp9kh48LU3R04hIhrHyZG JtJKDwfPxLunZj6UipFeLZJ6COeZM3yfHCfN76LCjCHxG7aFihnZn9BwAo4sDdju 0t0PBN3+n0BTh2LWXAgOdIW7jbZ5aGXwgMK0LOnJfDkIeGrj2xp2AL+EdEd2t7xS NNNwjg1y64kb94R/Fhn04453hQU6Tfyk -----END CERTIFICATE-----Generated at Sat May 31 16:49:14 2025 by rpki-client