$ rpki-client -vvf rpki.apnic.net/member_repository/A91CE6C5/E8266020C6C011EC8AB7553FC4F9AE02/1Sj61Lh2q_twrziSIg8pPheRtrw.mft File: 1Sj61Lh2q_twrziSIg8pPheRtrw.mft (raw, json) Hash identifier: q55xajIe103SGthQuWMBO6+mLtasqniuAHUwbaO5F2s= Subject key identifier: B3:01:B9:B5:D3:4A:8E:73:6F:CA:C4:1A:72:3D:A6:19:F4:E4:FE:57 Authority key identifier: D5:28:FA:D4:B8:76:AB:FB:70:AF:38:92:22:0F:29:3E:17:91:B6:BC Certificate issuer: /CN=A91CE6C5/serialNumber=D528FAD4B876ABFB70AF3892220F293E1791B6BC Certificate serial: 033A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1Sj61Lh2q_twrziSIg8pPheRtrw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CE6C5/E8266020C6C011EC8AB7553FC4F9AE02/1Sj61Lh2q_twrziSIg8pPheRtrw.mft Manifest number: 032F Signing time: Sat 31 May 2025 01:19:08 +0000 Manifest this update: Sat 31 May 2025 01:19:08 +0000 Manifest next update: Sat 07 Jun 2025 01:19:08 +0000 Files and hashes: 1: 1Sj61Lh2q_twrziSIg8pPheRtrw.crl (hash: c1Wy3Qm6Xk9AUbOFPsaXQ04Zqu97U78wN2DnPbdQT2E=) 2: C0E56FB2D56B11EFB540FB53C4F9AE02.roa (hash: 4vLurmpeiFN7tjyB91fDIOCK/d511+2WLb9SGBrwU1k=) 3: A0841A68D0D511EC81001E73C4F9AE02.roa (hash: 28rk2f2SK8fYlNSOWgKUvbvWyh9sktvms5gVEW96hEM=) 4: F0E906D6046C11EFBDB55E14C4F9AE02.roa (hash: XvChKVsKHEK1ZO1syDy5U6icCS7rFP0XZCWXt+ycNCw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CE6C5/E8266020C6C011EC8AB7553FC4F9AE02/1Sj61Lh2q_twrziSIg8pPheRtrw.crl rsync://rpki.apnic.net/member_repository/A91CE6C5/E8266020C6C011EC8AB7553FC4F9AE02/1Sj61Lh2q_twrziSIg8pPheRtrw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1Sj61Lh2q_twrziSIg8pPheRtrw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 01:19:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 826 (0x33a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CE6C5, serialNumber=D528FAD4B876ABFB70AF3892220F293E1791B6BC Validity Not Before: May 31 01:19:08 2025 GMT Not After : Jun 7 01:19:08 2025 GMT Subject: CN=683a590c-c1de Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f4:a8:de:9f:30:cf:90:9a:fb:8a:72:11:eb:5a: 89:d6:e1:33:9b:cf:2b:80:62:d8:4a:60:97:60:97: ae:2e:33:c2:d6:6f:c5:40:35:1c:94:9c:7f:43:5f: 62:98:37:ac:a0:01:35:c3:25:9d:9e:46:d6:d3:ae: cf:4b:7d:99:b3:1d:cb:c3:ec:db:af:e8:97:fd:d8: 4e:f8:45:7b:15:4b:16:b3:ea:35:1b:23:8a:7a:7f: 5a:a8:cd:5a:6a:8a:af:98:b1:15:6a:8f:62:24:b0: 59:2a:14:8f:e0:54:a4:fb:0c:9a:f3:90:22:5d:23: ee:87:12:4c:d1:32:e9:a4:d4:c3:59:95:9a:54:a1: b7:8b:74:05:7b:c0:ec:d0:f6:28:f6:08:c9:f5:98: df:7d:b8:36:e0:2b:29:16:7e:cf:3f:2b:93:fd:b1: 57:3e:5c:99:c2:51:79:f7:11:12:6e:5a:53:04:2b: 40:77:a4:e9:5d:3f:fc:37:65:fc:a6:e2:85:15:7e: 7a:7d:27:29:cd:d8:ac:6e:07:f7:d6:4f:bd:7d:93: a6:75:14:cb:8a:f3:29:e7:50:00:1d:7b:d5:8d:db: f6:0f:cf:2b:e8:95:c2:2c:3f:c8:93:dc:f9:33:5c: fe:1e:d6:0f:c5:63:42:6b:52:4c:3d:55:08:90:17: 9b:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B3:01:B9:B5:D3:4A:8E:73:6F:CA:C4:1A:72:3D:A6:19:F4:E4:FE:57 X509v3 Authority Key Identifier: keyid:D5:28:FA:D4:B8:76:AB:FB:70:AF:38:92:22:0F:29:3E:17:91:B6:BC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CE6C5/E8266020C6C011EC8AB7553FC4F9AE02/1Sj61Lh2q_twrziSIg8pPheRtrw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1Sj61Lh2q_twrziSIg8pPheRtrw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CE6C5/E8266020C6C011EC8AB7553FC4F9AE02/1Sj61Lh2q_twrziSIg8pPheRtrw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 27:3c:81:a5:4b:1c:0a:eb:55:9e:75:72:77:67:1f:e7:51:b8: 6a:fb:55:85:47:7a:61:06:f6:eb:8b:94:38:1d:d9:2d:38:a7: f8:c1:07:35:d4:81:82:80:cc:3c:15:dc:5e:7f:70:59:e3:37: fd:7c:f0:35:16:6b:00:4e:fd:43:a5:ba:4a:89:f1:51:0a:44: 84:06:df:4c:18:ad:64:11:cf:b5:8b:c6:1d:29:4e:aa:3f:52: 63:82:01:43:e3:84:68:66:f8:90:db:46:f7:a0:95:ed:4b:7f: 3a:eb:0f:3b:32:42:c7:9f:91:5c:45:27:bc:f9:30:cf:9e:21: 0f:2c:48:fb:4e:8d:2f:0d:c8:95:c8:cf:84:7b:14:c2:20:67: a6:81:75:4f:ac:65:96:b4:e9:1f:16:fe:4f:71:6d:7b:34:ac: 6b:af:7c:e6:ef:db:df:ec:7e:5e:4b:ae:65:4c:f0:41:a9:5a: 16:5e:14:25:03:29:4f:e5:7f:6a:b1:20:f2:95:24:78:71:df: a3:42:dc:58:e7:23:c9:4e:35:17:33:68:ae:a4:2f:1a:c4:3b: 53:5b:ad:ba:fd:02:dd:1a:58:e9:e5:0f:03:3b:b3:4b:44:f3: 88:4c:e6:aa:3d:51:f9:1a:47:e1:0d:73:3b:bf:a1:8c:c2:d1: 59:58:d5:94 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAzowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0U2QzUxMTAvBgNVBAUTKEQ1MjhGQUQ0Qjg3NkFCRkI3MEFGMzg5MjIyMEYyOTNF MTc5MUI2QkMwHhcNMjUwNTMxMDExOTA4WhcNMjUwNjA3MDExOTA4WjAYMRYwFAYD VQQDEw02ODNhNTkwYy1jMWRlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA9KjenzDPkJr7inIR61qJ1uEzm88rgGLYSmCXYJeuLjPC1m/FQDUclJx/Q19i mDesoAE1wyWdnkbW067PS32Zsx3Lw+zbr+iX/dhO+EV7FUsWs+o1GyOKen9aqM1a aoqvmLEVao9iJLBZKhSP4FSk+wya85AiXSPuhxJM0TLppNTDWZWaVKG3i3QFe8Ds 0PYo9gjJ9Zjffbg24CspFn7PPyuT/bFXPlyZwlF59xESblpTBCtAd6TpXT/8N2X8 puKFFX56fScpzdisbgf31k+9fZOmdRTLivMp51AAHXvVjdv2D88r6JXCLD/Ik9z5 M1z+HtYPxWNCa1JMPVUIkBeb+wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLMBubXT So5zb8rEGnI9phn05P5XMB8GA1UdIwQYMBaAFNUo+tS4dqv7cK84kiIPKT4Xkba8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRTZDNS9FODI2NjAyMEM2 QzAxMUVDOEFCNzU1M0ZDNEY5QUUwMi8xU2o2MUxoMnFfdHdyemlTSWc4cFBoZVJ0 cncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFTajYxTGgycV90d3J6aVNJZzhwUGhlUnRydy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RTZDNS9FODI2NjAyMEM2QzAxMUVDOEFCNzU1M0ZDNEY5QUUwMi8xU2o2MUxoMnFf dHdyemlTSWc4cFBoZVJ0cncubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAnPIGlSxwK61WedXJ3Zx/nUbhq+1WFR3phBvbri5Q4HdktOKf4wQc1 1IGCgMw8Fdxef3BZ4zf9fPA1FmsATv1DpbpKifFRCkSEBt9MGK1kEc+1i8YdKU6q P1JjggFD44RoZviQ20b3oJXtS3866w87MkLHn5FcRSe8+TDPniEPLEj7To0vDciV yM+EexTCIGemgXVPrGWWtOkfFv5PcW17NKxrr3zm79vf7H5eS65lTPBBqVoWXhQl AylP5X9qsSDylSR4cd+jQtxY5yPJTjUXM2iupC8axDtTW626/QLdGljp5Q8DO7NL RPOITOaqPVH5GkfhDXM7v6GMwtFZWNWU -----END CERTIFICATE-----Generated at Sat May 31 17:30:14 2025 by rpki-client