$ rpki-client -vvf rpki.apnic.net/member_repository/A91CEDD3/D0663328705E11EDACAD885BC4F9AE02/97sXL8rsr7-evvJQihVCZDOuyd4.mft File: 97sXL8rsr7-evvJQihVCZDOuyd4.mft (raw, json) Hash identifier: kUJ8MBCZWDtojDi4+ie4ND1LTEZ5rLz4inbVwWcItLA= Subject key identifier: CB:CF:F0:EA:78:13:BD:4D:BB:C8:CC:57:AC:63:67:78:E8:E7:14:48 Authority key identifier: F7:BB:17:2F:CA:EC:AF:BF:9E:BE:F2:50:8A:15:42:64:33:AE:C9:DE Certificate issuer: /CN=A91CEDD3/serialNumber=F7BB172FCAECAFBF9EBEF2508A15426433AEC9DE Certificate serial: 01DE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/97sXL8rsr7-evvJQihVCZDOuyd4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CEDD3/D0663328705E11EDACAD885BC4F9AE02/97sXL8rsr7-evvJQihVCZDOuyd4.mft Manifest number: 01D8 Signing time: Sat 31 May 2025 02:32:46 +0000 Manifest this update: Sat 31 May 2025 02:32:46 +0000 Manifest next update: Sat 07 Jun 2025 02:32:46 +0000 Files and hashes: 1: 97sXL8rsr7-evvJQihVCZDOuyd4.crl (hash: 0D2XMAALm4LKYpQ5fsh+Aea61cVllETrFK8f/Va2Jq8=) 2: C714C5A6706211EDA9CCDB76C4F9AE02.roa (hash: AIFISpe4UUSb102JMnJULUVmkKzdqcMZuRuO6tOo8G0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CEDD3/D0663328705E11EDACAD885BC4F9AE02/97sXL8rsr7-evvJQihVCZDOuyd4.crl rsync://rpki.apnic.net/member_repository/A91CEDD3/D0663328705E11EDACAD885BC4F9AE02/97sXL8rsr7-evvJQihVCZDOuyd4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/97sXL8rsr7-evvJQihVCZDOuyd4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 02:32:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 478 (0x1de) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CEDD3, serialNumber=F7BB172FCAECAFBF9EBEF2508A15426433AEC9DE Validity Not Before: May 31 02:32:46 2025 GMT Not After : Jun 7 02:32:46 2025 GMT Subject: CN=683a6a4e-76a2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:1c:a3:0b:1c:4d:9c:21:bf:f0:f6:96:e6:95: e0:93:d7:c9:af:eb:18:a4:53:b8:4a:7d:75:4e:fa: 13:6b:78:d1:0e:d4:1d:68:0e:58:67:70:3f:55:cc: 47:27:04:82:c5:0e:d1:03:6b:f8:90:70:ac:3c:b6: d2:e6:c5:c1:33:95:86:bb:57:6d:cf:09:c4:c1:44: f7:c2:23:9d:7d:da:02:03:d9:b8:f8:c8:45:ac:fd: 5f:53:a6:3a:18:a1:1b:d2:d3:97:0a:94:4a:31:fa: a5:fc:f5:aa:fc:1e:66:22:4d:d5:74:77:9e:34:c2: 5b:1b:29:1d:83:e9:52:31:d5:2c:56:21:a8:38:ec: 01:6c:ae:97:6f:1b:d3:d6:28:3b:87:64:8f:d0:19: 92:eb:da:ab:a4:b2:1c:18:3a:08:91:14:73:ea:83: 00:f5:c4:d0:f9:af:db:1e:21:1e:7c:98:05:04:03: a6:e7:16:99:da:65:10:55:1b:ba:17:21:af:e5:8b: 2a:b4:cf:1d:41:82:9f:54:25:97:11:6e:c1:aa:a0: c7:ab:75:41:4c:cc:e7:d5:b3:00:d1:dd:58:13:9c: 67:57:84:be:d8:57:e7:cd:18:94:84:60:10:28:02: 05:c7:31:a8:fc:fc:e2:ed:2d:f8:70:22:67:a4:2c: 9f:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CB:CF:F0:EA:78:13:BD:4D:BB:C8:CC:57:AC:63:67:78:E8:E7:14:48 X509v3 Authority Key Identifier: keyid:F7:BB:17:2F:CA:EC:AF:BF:9E:BE:F2:50:8A:15:42:64:33:AE:C9:DE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CEDD3/D0663328705E11EDACAD885BC4F9AE02/97sXL8rsr7-evvJQihVCZDOuyd4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/97sXL8rsr7-evvJQihVCZDOuyd4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CEDD3/D0663328705E11EDACAD885BC4F9AE02/97sXL8rsr7-evvJQihVCZDOuyd4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5d:5c:33:f9:e6:b8:ad:68:0d:08:89:4a:8d:3a:31:32:c5:cf: 95:0b:80:1d:02:ae:29:5a:f5:6a:3b:4b:e4:07:8e:a9:84:0d: 47:c0:18:58:75:5a:44:26:46:57:05:57:ed:cd:a2:b3:c1:23: 02:98:90:30:b7:fe:21:8c:1b:2d:01:d1:7c:98:3c:a9:d3:ad: b5:40:a5:d6:1c:78:64:3f:c4:06:38:ee:7f:cb:b1:30:d8:d8: 13:32:f8:31:d3:ce:7f:6d:b4:a2:dc:01:3a:6e:90:43:1a:1a: 1d:77:f9:d0:d6:06:93:e4:e7:6c:b0:6c:4f:37:1f:65:6e:12: 5f:f7:7b:fb:eb:49:77:81:21:4a:32:07:60:08:8c:fb:2f:13: ec:d6:8b:f7:80:40:1e:15:bb:90:5c:eb:34:16:9c:c6:01:11: 9c:33:05:a0:e7:f6:8a:82:96:45:e2:bf:ee:29:34:3f:8f:91: 66:70:49:1b:0b:ef:29:a3:e9:0f:14:0b:70:b8:d9:f5:ee:e1: 04:fd:67:82:a5:80:38:68:0d:5a:b0:cd:a1:40:29:c1:57:d4: 2a:eb:44:79:84:de:47:11:be:2c:be:0a:1f:f8:a2:bf:42:9f: e5:36:33:37:a4:68:3a:1c:8f:cc:35:eb:cc:c5:8f:cc:8c:17: 5a:41:7b:4b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAd4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0VERDMxMTAvBgNVBAUTKEY3QkIxNzJGQ0FFQ0FGQkY5RUJFRjI1MDhBMTU0MjY0 MzNBRUM5REUwHhcNMjUwNTMxMDIzMjQ2WhcNMjUwNjA3MDIzMjQ2WjAYMRYwFAYD VQQDEw02ODNhNmE0ZS03NmEyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvRyjCxxNnCG/8PaW5pXgk9fJr+sYpFO4Sn11TvoTa3jRDtQdaA5YZ3A/VcxH JwSCxQ7RA2v4kHCsPLbS5sXBM5WGu1dtzwnEwUT3wiOdfdoCA9m4+MhFrP1fU6Y6 GKEb0tOXCpRKMfql/PWq/B5mIk3VdHeeNMJbGykdg+lSMdUsViGoOOwBbK6XbxvT 1ig7h2SP0BmS69qrpLIcGDoIkRRz6oMA9cTQ+a/bHiEefJgFBAOm5xaZ2mUQVRu6 FyGv5YsqtM8dQYKfVCWXEW7BqqDHq3VBTMzn1bMA0d1YE5xnV4S+2FfnzRiUhGAQ KAIFxzGo/Pzi7S34cCJnpCyf8QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMvP8Op4 E71Nu8jMV6xjZ3jo5xRIMB8GA1UdIwQYMBaAFPe7Fy/K7K+/nr7yUIoVQmQzrsne MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRUREMy9EMDY2MzMyODcw NUUxMUVEQUNBRDg4NUJDNEY5QUUwMi85N3NYTDhyc3I3LWV2dkpRaWhWQ1pET3V5 ZDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzk3c1hMOHJzcjctZXZ2SlFpaFZDWkRPdXlkNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RUREMy9EMDY2MzMyODcwNUUxMUVEQUNBRDg4NUJDNEY5QUUwMi85N3NYTDhyc3I3 LWV2dkpRaWhWQ1pET3V5ZDQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBdXDP55ritaA0IiUqNOjEyxc+VC4AdAq4pWvVqO0vkB46phA1HwBhY dVpEJkZXBVftzaKzwSMCmJAwt/4hjBstAdF8mDyp0621QKXWHHhkP8QGOO5/y7Ew 2NgTMvgx085/bbSi3AE6bpBDGhodd/nQ1gaT5OdssGxPNx9lbhJf93v760l3gSFK MgdgCIz7LxPs1ov3gEAeFbuQXOs0FpzGARGcMwWg5/aKgpZF4r/uKTQ/j5FmcEkb C+8po+kPFAtwuNn17uEE/WeCpYA4aA1asM2hQCnBV9Qq60R5hN5HEb4svgof+KK/ Qp/lNjM3pGg6HI/MNevMxY/MjBdaQXtL -----END CERTIFICATE-----Generated at Sat May 31 16:33:55 2025 by rpki-client