$ rpki-client -vvf rpki.apnic.net/member_repository/A91CD7A4/3CC71996118711EEB39FE243C4F9AE02/tSlwZVVtKyKTSTXnUgcivVMz2k8.mft File: tSlwZVVtKyKTSTXnUgcivVMz2k8.mft (raw, json) Hash identifier: OAopr1CxyJ6lXX1LtNOTQOmDMXe27109+GNUIrnE0eE= Subject key identifier: 74:A2:0B:91:89:2E:CE:1A:1C:82:1A:53:41:DD:F3:74:31:71:84:2A Authority key identifier: B5:29:70:65:55:6D:2B:22:93:49:35:E7:52:07:22:BD:53:33:DA:4F Certificate issuer: /CN=A91CD7A4/serialNumber=B5297065556D2B22934935E7520722BD5333DA4F Certificate serial: 0175 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tSlwZVVtKyKTSTXnUgcivVMz2k8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CD7A4/3CC71996118711EEB39FE243C4F9AE02/tSlwZVVtKyKTSTXnUgcivVMz2k8.mft Manifest number: 016F Signing time: Sat 31 May 2025 03:32:51 +0000 Manifest this update: Sat 31 May 2025 03:32:50 +0000 Manifest next update: Sat 07 Jun 2025 03:32:50 +0000 Files and hashes: 1: tSlwZVVtKyKTSTXnUgcivVMz2k8.crl (hash: zYOgS+f4mUNHuCB337Sr/we80d/tIQJTRlalG3pgwDY=) 2: 275245323AB511F0AE5E5919C4F9AE02.roa (hash: IHKKhIw85fk9s47CrpZDKzzYoR/RN4XUlJphLrYmJyk=) 3: AD47BEC4320611EE845F4A5AC4F9AE02.roa (hash: P7EwycxEH4BjaRzRhYFgj1fovDv1DxA8C+5endacXNQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CD7A4/3CC71996118711EEB39FE243C4F9AE02/tSlwZVVtKyKTSTXnUgcivVMz2k8.crl rsync://rpki.apnic.net/member_repository/A91CD7A4/3CC71996118711EEB39FE243C4F9AE02/tSlwZVVtKyKTSTXnUgcivVMz2k8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tSlwZVVtKyKTSTXnUgcivVMz2k8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 03:32:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 373 (0x175) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CD7A4, serialNumber=B5297065556D2B22934935E7520722BD5333DA4F Validity Not Before: May 31 03:32:50 2025 GMT Not After : Jun 7 03:32:50 2025 GMT Subject: CN=683a7862-3e92 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:16:00:b4:23:24:35:ee:8f:d6:ec:f1:23:b3: 11:4b:0e:58:48:e6:ad:b1:4b:4b:4f:d7:a2:27:3f: 78:0a:75:62:57:23:9d:23:97:14:be:e4:5d:b7:f9: 0b:19:14:3c:3a:bb:25:c6:59:f1:0b:34:47:7a:29: 9e:c9:fb:ae:92:5d:6f:19:1b:6e:4e:55:a0:07:08: 29:2b:7a:3e:54:1f:81:58:3f:dc:3a:e4:3f:e3:fb: 14:31:80:da:39:93:1a:d3:25:5b:b8:c9:2b:fb:d9: 31:fb:86:97:cb:86:e5:68:eb:e2:ea:59:2d:b9:f6: f7:83:66:48:9d:9f:25:5b:c1:66:0a:08:ac:fc:16: d1:14:78:1d:20:52:42:ce:0d:f9:af:80:4d:75:43: 60:6c:cf:97:3b:4b:e4:b8:83:19:8a:2b:ca:a7:27: 01:c6:9d:c4:e7:d3:82:0d:d8:b6:81:ea:73:c1:55: ff:89:7f:7c:ea:c6:82:22:28:81:08:a6:6c:7d:fa: 5a:9e:9f:91:3b:f1:ab:aa:95:ad:0d:d3:da:42:0d: c8:f5:0e:a3:86:6a:74:e0:f2:64:94:60:b4:5e:38: 6d:84:f0:46:26:79:6d:3d:43:db:e9:55:95:73:6e: 1d:75:17:15:22:e6:01:6b:d5:0d:85:43:46:63:30: ab:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 74:A2:0B:91:89:2E:CE:1A:1C:82:1A:53:41:DD:F3:74:31:71:84:2A X509v3 Authority Key Identifier: keyid:B5:29:70:65:55:6D:2B:22:93:49:35:E7:52:07:22:BD:53:33:DA:4F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CD7A4/3CC71996118711EEB39FE243C4F9AE02/tSlwZVVtKyKTSTXnUgcivVMz2k8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tSlwZVVtKyKTSTXnUgcivVMz2k8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CD7A4/3CC71996118711EEB39FE243C4F9AE02/tSlwZVVtKyKTSTXnUgcivVMz2k8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1b:94:d1:94:26:05:e9:e5:c3:a5:a5:f2:1f:2f:05:38:1d:f9: 1d:d6:e7:57:39:6d:84:64:81:93:17:18:23:67:c2:66:d0:47: 52:5e:f1:90:d3:41:21:39:2d:4b:d2:66:0b:5a:cb:69:17:92: 04:aa:c9:3e:98:8f:b9:59:79:b8:6c:97:aa:95:17:2f:22:9b: 52:c5:31:24:b6:f3:a9:5f:de:c9:ce:6d:84:8d:3c:08:8b:26: aa:ff:97:fc:6a:34:2d:93:63:8f:27:c1:e2:e2:7b:17:66:c4: 14:0b:81:88:c2:c3:e4:7d:fc:14:5b:8c:88:b5:48:00:bc:3e: e6:2e:a0:5d:ac:82:c6:5f:c8:56:74:65:33:61:7c:17:fe:83: c6:dd:43:88:65:59:59:51:e9:db:52:19:30:be:83:f2:a6:5e: c8:0a:c6:38:b4:98:49:30:f3:19:a8:4c:cc:c5:88:5e:00:f2: 69:17:c8:94:dc:af:be:e2:b3:dd:ba:9c:09:8c:3a:0c:95:91: e9:2d:08:4b:8a:cf:f8:f2:9a:54:68:55:13:63:95:77:fb:2b: 76:1d:68:8a:11:dd:37:87:fe:62:bc:54:82:1f:ad:79:a4:9c: a5:fc:6e:3c:79:d7:4a:4c:ef:66:14:ad:d1:3d:7e:44:8f:2b: 7b:2d:81:5e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAXUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0Q3QTQxMTAvBgNVBAUTKEI1Mjk3MDY1NTU2RDJCMjI5MzQ5MzVFNzUyMDcyMkJE NTMzM0RBNEYwHhcNMjUwNTMxMDMzMjUwWhcNMjUwNjA3MDMzMjUwWjAYMRYwFAYD VQQDEw02ODNhNzg2Mi0zZTkyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvRYAtCMkNe6P1uzxI7MRSw5YSOatsUtLT9eiJz94CnViVyOdI5cUvuRdt/kL GRQ8OrslxlnxCzRHeimeyfuukl1vGRtuTlWgBwgpK3o+VB+BWD/cOuQ/4/sUMYDa OZMa0yVbuMkr+9kx+4aXy4blaOvi6lktufb3g2ZInZ8lW8FmCgis/BbRFHgdIFJC zg35r4BNdUNgbM+XO0vkuIMZiivKpycBxp3E59OCDdi2gepzwVX/iX986saCIiiB CKZsffpanp+RO/GrqpWtDdPaQg3I9Q6jhmp04PJklGC0XjhthPBGJnltPUPb6VWV c24ddRcVIuYBa9UNhUNGYzCrHwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHSiC5GJ Ls4aHIIaU0Hd83QxcYQqMB8GA1UdIwQYMBaAFLUpcGVVbSsik0k151IHIr1TM9pP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRDdBNC8zQ0M3MTk5NjEx ODcxMUVFQjM5RkUyNDNDNEY5QUUwMi90U2x3WlZWdEt5S1RTVFhuVWdjaXZWTXoy azguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RTbHdaVlZ0S3lLVFNUWG5VZ2NpdlZNejJrOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RDdBNC8zQ0M3MTk5NjExODcxMUVFQjM5RkUyNDNDNEY5QUUwMi90U2x3WlZWdEt5 S1RTVFhuVWdjaXZWTXoyazgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAblNGUJgXp5cOlpfIfLwU4Hfkd1udXOW2EZIGTFxgjZ8Jm0EdSXvGQ 00EhOS1L0mYLWstpF5IEqsk+mI+5WXm4bJeqlRcvIptSxTEktvOpX97Jzm2EjTwI iyaq/5f8ajQtk2OPJ8Hi4nsXZsQUC4GIwsPkffwUW4yItUgAvD7mLqBdrILGX8hW dGUzYXwX/oPG3UOIZVlZUenbUhkwvoPypl7ICsY4tJhJMPMZqEzMxYheAPJpF8iU 3K++4rPdupwJjDoMlZHpLQhLis/48ppUaFUTY5V3+yt2HWiKEd03h/5ivFSCH615 pJyl/G48eddKTO9mFK3RPX5Ejyt7LYFe -----END CERTIFICATE-----Generated at Sat May 31 15:33:54 2025 by rpki-client