$ rpki-client -vvf rpki.apnic.net/member_repository/A91CD096/E5042C2ACA3211E9A739B753C4F9AE02/Ci5d8bLD15feoVNn-qncOITNGzM.mft File: Ci5d8bLD15feoVNn-qncOITNGzM.mft (raw, json) Hash identifier: ODlDZttqra2urPzBRivZJvFmtDi9AFnw14S76QDyll8= Subject key identifier: 06:9D:69:F6:9E:6F:32:78:5B:8A:9C:DC:4E:3A:FF:92:BC:81:8E:1F Authority key identifier: 0A:2E:5D:F1:B2:C3:D7:97:DE:A1:53:67:FA:A9:DC:38:84:CD:1B:33 Certificate issuer: /CN=A91CD096/serialNumber=0A2E5DF1B2C3D797DEA15367FAA9DC3884CD1B33 Certificate serial: 0D81 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ci5d8bLD15feoVNn-qncOITNGzM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CD096/E5042C2ACA3211E9A739B753C4F9AE02/Ci5d8bLD15feoVNn-qncOITNGzM.mft Manifest number: 0D75 Signing time: Fri 30 May 2025 18:08:00 +0000 Manifest this update: Fri 30 May 2025 18:07:59 +0000 Manifest next update: Fri 06 Jun 2025 18:07:59 +0000 Files and hashes: 1: Ci5d8bLD15feoVNn-qncOITNGzM.crl (hash: 6FBmWLon7MxauGfLFqz0/+joqE5ZJqPFPXQHzN7dKo0=) 2: 4EEE01FCE15611EF9560323EC4F9AE02.roa (hash: 9Nz/F+iPTsdfTjIzxhDauJBST5Z1hrA/MujlPAQ3LmU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CD096/E5042C2ACA3211E9A739B753C4F9AE02/Ci5d8bLD15feoVNn-qncOITNGzM.crl rsync://rpki.apnic.net/member_repository/A91CD096/E5042C2ACA3211E9A739B753C4F9AE02/Ci5d8bLD15feoVNn-qncOITNGzM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ci5d8bLD15feoVNn-qncOITNGzM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 18:07:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3457 (0xd81) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CD096, serialNumber=0A2E5DF1B2C3D797DEA15367FAA9DC3884CD1B33 Validity Not Before: May 30 18:07:59 2025 GMT Not After : Jun 6 18:07:59 2025 GMT Subject: CN=6839f3ff-a580 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:85:aa:ac:a8:23:e8:19:ec:43:be:cf:8a:f8: 6b:a1:c2:a0:8e:37:a4:b7:b0:c6:fc:61:b3:3b:c2: 87:a0:88:f5:fa:6a:31:1e:2d:6f:c7:21:61:c8:9a: bc:de:27:f1:3f:fe:df:a5:d6:2f:d8:c9:80:4d:d8: 43:27:98:d0:36:6c:fe:a7:4b:5e:53:02:6f:fc:dc: ed:bc:0e:44:be:64:83:2e:63:70:8a:d7:64:35:31: f0:e4:9c:91:6c:4c:cb:79:8c:be:c7:49:d8:39:46: 8a:96:5a:b8:d9:14:ac:55:84:29:b5:f8:c0:10:38: 9e:96:68:0b:72:6d:ce:1d:cb:cc:19:9a:29:4a:77: 8a:18:bc:9d:a5:62:ec:20:92:63:d9:71:25:3a:d7: bc:23:03:d5:a2:ef:17:c6:d0:e6:a7:14:29:d8:b4: 7a:10:5d:79:2e:66:cc:48:e3:7b:13:e3:c8:f1:ac: 0d:43:57:43:bb:d9:d4:41:ee:71:70:ee:bb:c7:5f: ad:1b:34:91:f5:35:dc:29:61:d5:45:97:84:27:74: ee:83:cd:5d:24:3f:9e:53:e3:71:ad:b8:fc:47:2f: ba:3a:5c:8b:13:bb:e8:63:71:b8:8f:bc:c6:52:50: 21:08:3c:f8:6a:cd:d6:9e:47:35:15:c3:1a:bc:ab: 1f:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 06:9D:69:F6:9E:6F:32:78:5B:8A:9C:DC:4E:3A:FF:92:BC:81:8E:1F X509v3 Authority Key Identifier: keyid:0A:2E:5D:F1:B2:C3:D7:97:DE:A1:53:67:FA:A9:DC:38:84:CD:1B:33 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CD096/E5042C2ACA3211E9A739B753C4F9AE02/Ci5d8bLD15feoVNn-qncOITNGzM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ci5d8bLD15feoVNn-qncOITNGzM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CD096/E5042C2ACA3211E9A739B753C4F9AE02/Ci5d8bLD15feoVNn-qncOITNGzM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 12:8a:d6:69:1e:ce:21:c8:1a:14:96:c1:bb:03:12:98:58:f5: 6e:c7:80:69:3f:96:30:a3:91:a9:c4:00:6f:18:fc:5a:04:b3: 92:9e:86:1a:20:b5:25:82:3b:19:5c:6f:14:49:25:61:fc:1d: 15:a4:2c:41:80:03:88:b9:1f:7b:63:37:d3:41:1c:28:1f:f3: 05:cd:56:2b:00:10:13:1f:61:58:be:88:6e:f8:33:40:88:51: 65:28:48:36:55:ca:0a:c3:b8:78:e9:bf:ed:ce:8e:00:3e:57: 84:8d:c5:28:d5:c5:f3:5b:1c:75:74:70:34:03:6f:d3:cc:cc: 12:85:cd:1f:ff:3a:5c:32:0e:16:ce:e2:96:f0:6c:e9:2a:8a: d2:36:66:04:81:b2:5e:c8:ce:b7:42:e7:d5:8f:08:67:34:d5: 0f:71:78:53:f2:38:6a:b0:2e:55:70:68:74:b8:bf:9c:c3:c3: ab:c9:27:61:d0:10:df:53:58:cc:fa:f2:fd:7f:8d:c7:64:75: 94:a3:89:65:ff:2b:3e:bb:34:0f:eb:f0:75:1d:38:15:b5:a6: f9:62:f5:58:8b:5d:a3:9a:4a:8b:06:f4:70:4c:28:0b:9a:38: 3e:4d:01:e7:e7:82:ae:69:18:9a:00:d1:5b:83:fa:49:82:75: 14:0b:14:fb -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDYEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0QwOTYxMTAvBgNVBAUTKDBBMkU1REYxQjJDM0Q3OTdERUExNTM2N0ZBQTlEQzM4 ODRDRDFCMzMwHhcNMjUwNTMwMTgwNzU5WhcNMjUwNjA2MTgwNzU5WjAYMRYwFAYD VQQDEw02ODM5ZjNmZi1hNTgwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqIWqrKgj6BnsQ77PivhrocKgjjekt7DG/GGzO8KHoIj1+moxHi1vxyFhyJq8 3ifxP/7fpdYv2MmATdhDJ5jQNmz+p0teUwJv/NztvA5EvmSDLmNwitdkNTHw5JyR bEzLeYy+x0nYOUaKllq42RSsVYQptfjAEDielmgLcm3OHcvMGZopSneKGLydpWLs IJJj2XElOte8IwPVou8XxtDmpxQp2LR6EF15LmbMSON7E+PI8awNQ1dDu9nUQe5x cO67x1+tGzSR9TXcKWHVRZeEJ3Tug81dJD+eU+Nxrbj8Ry+6OlyLE7voY3G4j7zG UlAhCDz4as3Wnkc1FcMavKsf5QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAadafae bzJ4W4qc3E46/5K8gY4fMB8GA1UdIwQYMBaAFAouXfGyw9eX3qFTZ/qp3DiEzRsz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRDA5Ni9FNTA0MkMyQUNB MzIxMUU5QTczOUI3NTNDNEY5QUUwMi9DaTVkOGJMRDE1ZmVvVk5uLXFuY09JVE5H ek0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NpNWQ4YkxEMTVmZW9WTm4tcW5jT0lUTkd6TS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RDA5Ni9FNTA0MkMyQUNBMzIxMUU5QTczOUI3NTNDNEY5QUUwMi9DaTVkOGJMRDE1 ZmVvVk5uLXFuY09JVE5Hek0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQASitZpHs4hyBoUlsG7AxKYWPVux4BpP5Ywo5GpxABvGPxaBLOSnoYa ILUlgjsZXG8USSVh/B0VpCxBgAOIuR97YzfTQRwoH/MFzVYrABATH2FYvohu+DNA iFFlKEg2VcoKw7h46b/tzo4APleEjcUo1cXzWxx1dHA0A2/TzMwShc0f/zpcMg4W zuKW8GzpKorSNmYEgbJeyM63QufVjwhnNNUPcXhT8jhqsC5VcGh0uL+cw8OrySdh 0BDfU1jM+vL9f43HZHWUo4ll/ys+uzQP6/B1HTgVtab5YvVYi12jmkqLBvRwTCgL mjg+TQHn54KuaRiaANFbg/pJgnUUCxT7 -----END CERTIFICATE-----Generated at Sat May 31 16:52:17 2025 by rpki-client