$ rpki-client -vvf rpki.apnic.net/member_repository/A91CD056/D70264AAC9E611ECAC228D30C4F9AE02/-mfVMKhwCqjrfU9svpZHvlN_X84.mft File: -mfVMKhwCqjrfU9svpZHvlN_X84.mft (raw, json) Hash identifier: G3fzxIcG1jvAtXPAsi2Qz8K5D7Joh4d29ByqndE/nEE= Subject key identifier: 28:9E:C3:21:5A:CB:C3:C6:F8:95:82:97:C3:B1:97:E6:5A:E7:E9:09 Authority key identifier: FA:67:D5:30:A8:70:0A:A8:EB:7D:4F:6C:BE:96:47:BE:53:7F:5F:CE Certificate issuer: /CN=A91CD056/serialNumber=FA67D530A8700AA8EB7D4F6CBE9647BE537F5FCE Certificate serial: 0328 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-mfVMKhwCqjrfU9svpZHvlN_X84.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CD056/D70264AAC9E611ECAC228D30C4F9AE02/-mfVMKhwCqjrfU9svpZHvlN_X84.mft Manifest number: 0324 Signing time: Sat 31 May 2025 01:19:50 +0000 Manifest this update: Sat 31 May 2025 01:19:50 +0000 Manifest next update: Sat 07 Jun 2025 01:19:50 +0000 Files and hashes: 1: -mfVMKhwCqjrfU9svpZHvlN_X84.crl (hash: 7EANA2admlAmyNiFdV0gs+uMjNtZEFmqodijjZzo+X8=) 2: 3E62F2ECC9EA11ECB6295B34C4F9AE02.roa (hash: mfXzwKGY7gUqiLkJW1SqazxLmJ2CAU7Yff9kCtQmKuM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CD056/D70264AAC9E611ECAC228D30C4F9AE02/-mfVMKhwCqjrfU9svpZHvlN_X84.crl rsync://rpki.apnic.net/member_repository/A91CD056/D70264AAC9E611ECAC228D30C4F9AE02/-mfVMKhwCqjrfU9svpZHvlN_X84.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-mfVMKhwCqjrfU9svpZHvlN_X84.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 01:19:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 808 (0x328) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CD056, serialNumber=FA67D530A8700AA8EB7D4F6CBE9647BE537F5FCE Validity Not Before: May 31 01:19:50 2025 GMT Not After : Jun 7 01:19:50 2025 GMT Subject: CN=683a5936-22e1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:07:37:d8:90:d1:f0:bd:26:99:c0:f2:a9:f1: 9d:ca:2a:a5:d7:a5:59:6c:2f:d0:05:1d:83:84:40: 15:d1:2e:03:d7:12:af:f7:b5:8d:70:f8:26:a6:5c: e3:37:16:af:df:59:ea:a0:af:34:92:e4:1f:26:94: 63:af:37:5b:fe:7f:3f:ba:af:d6:6f:6f:1a:60:cc: 9f:08:b7:c5:cd:58:fe:af:b9:c0:13:49:b2:bf:3c: d2:59:37:f9:78:b0:7d:84:c9:5b:a8:5f:b3:a3:0f: 31:74:2e:1c:a0:db:3d:83:96:df:b1:ff:1d:a7:95: 2e:f1:69:63:bb:c6:80:bf:30:78:d7:b1:78:ca:9e: 11:8d:c4:58:45:9f:0e:a2:f8:35:5d:8c:05:34:45: c4:76:d3:f9:5a:46:aa:f1:27:81:14:37:a3:cc:7f: 3f:60:b9:01:38:00:5f:c4:a5:14:8a:ca:a6:f7:ee: 41:0e:8e:8c:b1:c4:d1:e7:2f:72:a9:10:ac:83:9f: 43:9d:c5:11:56:d8:28:7d:7b:d7:1b:dd:72:d3:a4: e5:73:de:22:11:bc:17:69:16:2d:76:e0:8d:b9:ca: d8:1b:6e:0f:18:97:f5:0a:32:dd:10:03:fa:88:3a: 02:87:88:9f:13:fa:97:a6:f8:b8:ae:f9:b5:4d:7e: 09:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 28:9E:C3:21:5A:CB:C3:C6:F8:95:82:97:C3:B1:97:E6:5A:E7:E9:09 X509v3 Authority Key Identifier: keyid:FA:67:D5:30:A8:70:0A:A8:EB:7D:4F:6C:BE:96:47:BE:53:7F:5F:CE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CD056/D70264AAC9E611ECAC228D30C4F9AE02/-mfVMKhwCqjrfU9svpZHvlN_X84.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-mfVMKhwCqjrfU9svpZHvlN_X84.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CD056/D70264AAC9E611ECAC228D30C4F9AE02/-mfVMKhwCqjrfU9svpZHvlN_X84.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0a:37:9d:bf:f1:08:b1:f1:3e:b7:f8:01:a5:3a:34:03:df:9f: 2d:44:6b:8c:57:9f:71:90:55:a7:15:52:c0:b6:8f:46:78:c5: b8:44:54:fa:a2:75:7b:71:0a:b0:6e:ff:3d:7c:c7:81:98:90: ad:7f:c2:9d:d3:39:79:72:40:95:a5:01:52:a2:c2:2d:f5:2b: bb:6d:93:08:64:db:63:11:05:e2:c7:cb:ac:3c:8b:2c:ae:1f: 15:a6:91:4a:96:20:77:bd:1d:d6:5c:50:2e:be:6d:bd:5e:e5: 1f:5a:20:3f:4f:83:e0:d6:94:17:30:5e:74:98:d4:a5:03:80: 89:3d:aa:a0:25:8f:cc:9b:b5:b4:fe:f2:30:87:3d:33:0d:fe: 22:68:30:6b:a0:70:db:1f:91:25:c9:f7:21:41:68:bd:ef:3b: 35:47:6e:ca:93:47:e8:9d:92:86:e0:38:32:35:76:19:71:95: 5c:58:80:bb:89:6e:a2:ff:a8:48:23:1e:8e:6b:76:67:80:04: b5:22:94:4f:6a:66:62:7c:4f:3b:69:ab:9b:aa:4f:64:e6:5c: 29:ef:f8:57:fc:44:c5:5d:16:00:97:28:ca:f9:a2:12:5e:db: fd:8e:a5:74:15:14:75:17:0a:4f:0b:1f:99:fd:59:d0:4e:2a: c7:69:51:ea -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAygwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0QwNTYxMTAvBgNVBAUTKEZBNjdENTMwQTg3MDBBQThFQjdENEY2Q0JFOTY0N0JF NTM3RjVGQ0UwHhcNMjUwNTMxMDExOTUwWhcNMjUwNjA3MDExOTUwWjAYMRYwFAYD VQQDEw02ODNhNTkzNi0yMmUxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuwc32JDR8L0mmcDyqfGdyiql16VZbC/QBR2DhEAV0S4D1xKv97WNcPgmplzj Nxav31nqoK80kuQfJpRjrzdb/n8/uq/Wb28aYMyfCLfFzVj+r7nAE0myvzzSWTf5 eLB9hMlbqF+zow8xdC4coNs9g5bfsf8dp5Uu8Wlju8aAvzB417F4yp4RjcRYRZ8O ovg1XYwFNEXEdtP5Wkaq8SeBFDejzH8/YLkBOABfxKUUisqm9+5BDo6MscTR5y9y qRCsg59DncURVtgofXvXG91y06Tlc94iEbwXaRYtduCNucrYG24PGJf1CjLdEAP6 iDoCh4ifE/qXpvi4rvm1TX4JBwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCiewyFa y8PG+JWCl8Oxl+Za5+kJMB8GA1UdIwQYMBaAFPpn1TCocAqo631PbL6WR75Tf1/O MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRDA1Ni9ENzAyNjRBQUM5 RTYxMUVDQUMyMjhEMzBDNEY5QUUwMi8tbWZWTUtod0NxanJmVTlzdnBaSHZsTl9Y ODQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy1tZlZNS2h3Q3FqcmZVOXN2cFpIdmxOX1g4NC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RDA1Ni9ENzAyNjRBQUM5RTYxMUVDQUMyMjhEMzBDNEY5QUUwMi8tbWZWTUtod0Nx anJmVTlzdnBaSHZsTl9YODQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAKN52/8Qix8T63+AGlOjQD358tRGuMV59xkFWnFVLAto9GeMW4RFT6 onV7cQqwbv89fMeBmJCtf8Kd0zl5ckCVpQFSosIt9Su7bZMIZNtjEQXix8usPIss rh8VppFKliB3vR3WXFAuvm29XuUfWiA/T4Pg1pQXMF50mNSlA4CJPaqgJY/Mm7W0 /vIwhz0zDf4iaDBroHDbH5ElyfchQWi97zs1R27Kk0fonZKG4DgyNXYZcZVcWIC7 iW6i/6hIIx6Oa3ZngAS1IpRPamZifE87aaubqk9k5lwp7/hX/ETFXRYAlyjK+aIS Xtv9jqV0FRR1FwpPCx+Z/VnQTirHaVHq -----END CERTIFICATE-----Generated at Sat May 31 16:56:11 2025 by rpki-client