$ rpki-client -vvf rpki.apnic.net/member_repository/A91D1234/B0FF30FED02511ECA012553FC4F9AE02/08Yi55Dx3vFpKLvlVBgXJ8-MiPg.mft File: 08Yi55Dx3vFpKLvlVBgXJ8-MiPg.mft (raw, json) Hash identifier: OcKhQWQ3oPg6XmP5Z0tA4b74pIknESGy9BOPGO0Zi74= Subject key identifier: A5:5B:07:21:A4:AC:7F:05:93:B8:23:8F:64:B5:62:56:4A:9B:43:FF Authority key identifier: D3:C6:22:E7:90:F1:DE:F1:69:28:BB:E5:54:18:17:27:CF:8C:88:F8 Certificate issuer: /CN=A91D1234/serialNumber=D3C622E790F1DEF16928BBE554181727CF8C88F8 Certificate serial: 0318 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/08Yi55Dx3vFpKLvlVBgXJ8-MiPg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D1234/B0FF30FED02511ECA012553FC4F9AE02/08Yi55Dx3vFpKLvlVBgXJ8-MiPg.mft Manifest number: 0314 Signing time: Sat 31 May 2025 01:47:13 +0000 Manifest this update: Sat 31 May 2025 01:47:13 +0000 Manifest next update: Sat 07 Jun 2025 01:47:13 +0000 Files and hashes: 1: 08Yi55Dx3vFpKLvlVBgXJ8-MiPg.crl (hash: bjQh+ilosu1jgCponcvsPoE8yKIgHAKNnND5OuG+kwM=) 2: 84A0C6B4D02811ECB2472344C4F9AE02.roa (hash: 2T9vsc4C1WKjq9QaM+1XQHhjEU7ftzmE6rg4euSNxbQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D1234/B0FF30FED02511ECA012553FC4F9AE02/08Yi55Dx3vFpKLvlVBgXJ8-MiPg.crl rsync://rpki.apnic.net/member_repository/A91D1234/B0FF30FED02511ECA012553FC4F9AE02/08Yi55Dx3vFpKLvlVBgXJ8-MiPg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/08Yi55Dx3vFpKLvlVBgXJ8-MiPg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 01:47:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 792 (0x318) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D1234, serialNumber=D3C622E790F1DEF16928BBE554181727CF8C88F8 Validity Not Before: May 31 01:47:13 2025 GMT Not After : Jun 7 01:47:13 2025 GMT Subject: CN=683a5fa1-84c0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:e4:f0:1d:50:eb:88:36:cf:6a:48:6f:d2:53: 61:12:f4:6d:6f:bb:c4:aa:61:2c:09:2e:d4:ff:0f: b3:5c:d4:2a:bd:45:4e:cb:b3:00:3e:89:e5:f2:14: 13:6c:17:c4:fe:bb:bb:88:a4:4c:9c:f6:84:fd:2e: 05:58:7f:b5:cf:d5:5b:04:04:58:24:a1:6d:b6:54: 6e:e8:79:b7:90:04:bd:ed:8e:9a:5d:14:bf:5b:15: 26:a9:64:93:db:9d:99:42:76:6f:27:2b:1e:61:d8: d7:6c:a5:0d:b0:4c:b3:e7:e2:1e:4d:95:11:c6:40: 21:6b:b7:f3:42:ee:fd:ef:b3:a6:fd:dc:0a:4b:33: fa:b2:8c:b5:a9:1e:3f:f3:06:33:1e:28:1d:b1:b6: e9:18:36:b7:1e:cf:46:84:a2:f1:19:3a:6f:11:c0: a6:9e:17:5b:03:fb:5e:08:ce:36:38:62:a8:b2:33: 03:5c:b3:c5:51:18:77:9a:ac:e1:fa:ef:d8:66:d5: 78:5e:cd:f3:ee:ad:ec:61:27:8a:78:27:13:a2:8c: 99:38:d2:d8:8e:fd:e8:0c:d2:be:40:ba:aa:2f:23: ab:0d:e9:bf:0b:49:6b:e5:2c:8c:28:b4:5e:0a:cf: 8f:f0:73:7f:a7:84:3c:d9:af:81:67:54:34:11:13: 53:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A5:5B:07:21:A4:AC:7F:05:93:B8:23:8F:64:B5:62:56:4A:9B:43:FF X509v3 Authority Key Identifier: keyid:D3:C6:22:E7:90:F1:DE:F1:69:28:BB:E5:54:18:17:27:CF:8C:88:F8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D1234/B0FF30FED02511ECA012553FC4F9AE02/08Yi55Dx3vFpKLvlVBgXJ8-MiPg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/08Yi55Dx3vFpKLvlVBgXJ8-MiPg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D1234/B0FF30FED02511ECA012553FC4F9AE02/08Yi55Dx3vFpKLvlVBgXJ8-MiPg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 36:7e:ac:96:70:fd:9c:04:9c:24:f7:ac:2c:e9:c6:49:cc:0d: 3f:1f:e4:8b:c3:92:9b:5b:7a:2f:86:41:04:b7:c0:29:99:c1: 40:a2:c9:2f:24:09:8e:6b:32:5c:66:0e:63:26:09:41:ed:7e: c1:29:2c:66:34:46:7d:e1:28:26:d5:2b:b9:9d:89:3c:66:51: 99:5b:92:d5:c7:70:dc:ed:16:e9:64:f5:01:b5:62:91:b7:a6: 1e:18:fb:dd:ff:f7:2f:0c:c7:e9:1d:8f:70:fb:b4:be:f4:8c: e9:af:ff:d7:9c:a1:bc:02:d1:44:66:46:ed:1a:61:80:39:07: 9c:6f:ee:8b:46:32:ed:91:41:5b:5d:58:3d:ad:d0:57:90:c2: 2a:84:f8:cf:08:c9:5d:c8:1d:26:03:ff:0e:b1:ee:37:09:61: 00:70:a8:24:22:c0:c4:14:67:c6:4f:1e:f0:09:fb:79:1b:8a: 32:03:71:52:67:77:ab:ea:2e:9a:1b:38:56:f8:a2:8a:6c:42: d3:cb:94:87:8f:73:38:8c:7e:a0:42:3f:96:13:f8:69:89:5d: 8e:95:f9:86:c3:66:c3:44:c5:22:8a:99:d8:19:c1:07:0c:82: 60:c0:8f:a4:34:b3:26:9f:c8:6e:a3:f4:d6:a9:89:0b:e3:d6: 77:46:d7:9a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAxgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDEyMzQxMTAvBgNVBAUTKEQzQzYyMkU3OTBGMURFRjE2OTI4QkJFNTU0MTgxNzI3 Q0Y4Qzg4RjgwHhcNMjUwNTMxMDE0NzEzWhcNMjUwNjA3MDE0NzEzWjAYMRYwFAYD VQQDEw02ODNhNWZhMS04NGMwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyuTwHVDriDbPakhv0lNhEvRtb7vEqmEsCS7U/w+zXNQqvUVOy7MAPonl8hQT bBfE/ru7iKRMnPaE/S4FWH+1z9VbBARYJKFttlRu6Hm3kAS97Y6aXRS/WxUmqWST 252ZQnZvJyseYdjXbKUNsEyz5+IeTZURxkAha7fzQu7977Om/dwKSzP6soy1qR4/ 8wYzHigdsbbpGDa3Hs9GhKLxGTpvEcCmnhdbA/teCM42OGKosjMDXLPFURh3mqzh +u/YZtV4Xs3z7q3sYSeKeCcTooyZONLYjv3oDNK+QLqqLyOrDem/C0lr5SyMKLRe Cs+P8HN/p4Q82a+BZ1Q0ERNT8QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKVbByGk rH8Fk7gjj2S1YlZKm0P/MB8GA1UdIwQYMBaAFNPGIueQ8d7xaSi75VQYFyfPjIj4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMTIzNC9CMEZGMzBGRUQw MjUxMUVDQTAxMjU1M0ZDNEY5QUUwMi8wOFlpNTVEeDN2RnBLTHZsVkJnWEo4LU1p UGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzA4WWk1NUR4M3ZGcEtMdmxWQmdYSjgtTWlQZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MTIzNC9CMEZGMzBGRUQwMjUxMUVDQTAxMjU1M0ZDNEY5QUUwMi8wOFlpNTVEeDN2 RnBLTHZsVkJnWEo4LU1pUGcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA2fqyWcP2cBJwk96ws6cZJzA0/H+SLw5KbW3ovhkEEt8ApmcFAoskv JAmOazJcZg5jJglB7X7BKSxmNEZ94Sgm1Su5nYk8ZlGZW5LVx3Dc7RbpZPUBtWKR t6YeGPvd//cvDMfpHY9w+7S+9Izpr//XnKG8AtFEZkbtGmGAOQecb+6LRjLtkUFb XVg9rdBXkMIqhPjPCMldyB0mA/8Ose43CWEAcKgkIsDEFGfGTx7wCft5G4oyA3FS Z3er6i6aGzhW+KKKbELTy5SHj3M4jH6gQj+WE/hpiV2OlfmGw2bDRMUiipnYGcEH DIJgwI+kNLMmn8huo/TWqYkL49Z3Rtea -----END CERTIFICATE-----Generated at Sat May 31 16:33:04 2025 by rpki-client