$ rpki-client -vvf rpki.apnic.net/member_repository/A91D4E53/A4A519EA4E6211EBA8ACAC5AC4F9AE02/NJ5ZfHF4gQSwZJ8HOrpy9l8oS5o.mft File: NJ5ZfHF4gQSwZJ8HOrpy9l8oS5o.mft (raw, json) Hash identifier: kaixeuelyUWJfNmC7za5wpC7Pe4kt+4sBHsCw2LRqds= Subject key identifier: C0:A1:D2:BB:D0:81:9C:69:47:43:E4:8C:9B:D4:A5:5B:A3:C8:22:AC Authority key identifier: 34:9E:59:7C:71:78:81:04:B0:64:9F:07:3A:BA:72:F6:5F:28:4B:9A Certificate issuer: /CN=A91D4E53/serialNumber=349E597C71788104B0649F073ABA72F65F284B9A Certificate serial: 06EE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NJ5ZfHF4gQSwZJ8HOrpy9l8oS5o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D4E53/A4A519EA4E6211EBA8ACAC5AC4F9AE02/NJ5ZfHF4gQSwZJ8HOrpy9l8oS5o.mft Manifest number: 06E6 Signing time: Fri 30 May 2025 22:11:15 +0000 Manifest this update: Fri 30 May 2025 22:11:14 +0000 Manifest next update: Fri 06 Jun 2025 22:11:14 +0000 Files and hashes: 1: NJ5ZfHF4gQSwZJ8HOrpy9l8oS5o.crl (hash: y1Y3TAgKbZGM4TfdWpsVyG5xooX6r19uoA1HGYJsGBQ=) 2: 349EFE924E6511EBBFE35D1AC4F9AE02.roa (hash: ErOTyz5l442f54R4SgwNJSi5aE/r3E7WeodId76rTk4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D4E53/A4A519EA4E6211EBA8ACAC5AC4F9AE02/NJ5ZfHF4gQSwZJ8HOrpy9l8oS5o.crl rsync://rpki.apnic.net/member_repository/A91D4E53/A4A519EA4E6211EBA8ACAC5AC4F9AE02/NJ5ZfHF4gQSwZJ8HOrpy9l8oS5o.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NJ5ZfHF4gQSwZJ8HOrpy9l8oS5o.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 22:11:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1774 (0x6ee) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D4E53, serialNumber=349E597C71788104B0649F073ABA72F65F284B9A Validity Not Before: May 30 22:11:14 2025 GMT Not After : Jun 6 22:11:14 2025 GMT Subject: CN=683a2d02-acef Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:05:d3:49:10:f6:ab:ef:f8:1a:dc:c7:22:2e: c1:e0:69:0e:50:87:6c:fa:d1:22:ae:58:5e:18:d7: 8f:06:97:2c:7c:7b:6c:65:d4:2c:d5:c5:19:95:53: a8:19:cc:b9:89:5e:5f:30:7a:fd:32:2c:f2:9f:53: 9a:f2:bf:ba:91:71:88:03:84:61:f8:d5:13:2c:b8: 00:62:02:dc:08:02:e0:11:dc:06:19:be:0f:76:d9: 35:84:d0:2c:28:20:27:94:c0:be:a4:46:ba:87:9e: 83:cc:c0:c9:65:4c:04:cb:87:48:31:34:6b:3d:86: a3:5e:fe:59:07:58:c6:50:76:8c:05:18:00:43:25: b7:d5:59:06:bb:52:41:1d:46:9c:49:00:11:80:b1: 1e:3f:8a:67:83:93:37:90:4d:6b:8a:fa:9c:46:12: 1f:0b:34:91:c5:bf:eb:fe:45:71:cc:57:c4:8b:e2: 01:1c:cf:a4:ab:a1:75:bb:fd:83:41:45:bb:d3:cd: 3d:41:1b:62:bc:5e:b5:ac:55:9d:60:88:30:c9:77: e0:ef:21:93:99:61:f4:32:27:c1:80:e3:15:3b:fa: 10:5f:08:ca:b0:72:35:5d:85:8a:61:73:f8:7e:6f: 7c:55:b6:f3:ba:57:35:15:70:73:d3:00:be:40:3a: 18:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C0:A1:D2:BB:D0:81:9C:69:47:43:E4:8C:9B:D4:A5:5B:A3:C8:22:AC X509v3 Authority Key Identifier: keyid:34:9E:59:7C:71:78:81:04:B0:64:9F:07:3A:BA:72:F6:5F:28:4B:9A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D4E53/A4A519EA4E6211EBA8ACAC5AC4F9AE02/NJ5ZfHF4gQSwZJ8HOrpy9l8oS5o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NJ5ZfHF4gQSwZJ8HOrpy9l8oS5o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D4E53/A4A519EA4E6211EBA8ACAC5AC4F9AE02/NJ5ZfHF4gQSwZJ8HOrpy9l8oS5o.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 03:21:c3:91:08:34:31:3e:c7:e0:9a:e3:ed:d8:82:b9:1c:62: 6f:4c:8c:df:90:d0:73:cb:9a:98:42:7f:fa:42:76:d3:53:2b: 9d:89:b2:7a:03:ab:f8:eb:2c:b3:66:3f:70:68:4f:e1:67:35: dd:c3:cf:ef:8a:59:f1:e5:9b:b4:12:a2:f4:74:fd:32:c3:2d: ce:6e:3c:c3:86:2a:bd:d5:95:26:5f:c4:e7:eb:89:0e:39:75: 0a:e1:07:b0:bb:8b:66:10:3e:2f:09:3d:8c:53:00:d6:09:f5: 9d:21:62:28:dd:48:20:18:ba:d5:31:3b:86:a5:11:0f:d8:0c: d5:a7:20:76:0b:16:30:40:08:4b:7a:1f:68:bc:9f:f6:9d:13: 12:a3:ef:91:49:47:ba:58:2a:6e:dc:32:ec:ed:8f:6c:22:46: f0:d9:9e:ce:eb:e5:8e:e8:65:47:75:56:4b:ff:d2:fe:ab:03: 9b:54:62:d2:0c:d0:25:66:bd:3d:60:56:c1:e7:04:5d:ed:f7: e4:9e:1c:76:04:45:4e:20:ab:08:df:39:03:cf:7f:4d:72:02: 65:fc:e4:d0:cc:17:7c:80:9c:09:71:a2:ee:eb:b1:8f:8c:73: 04:43:e9:a4:d9:74:3f:0b:8a:27:57:91:c7:74:8d:b6:b7:d2: 70:80:b6:b1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBu4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDRFNTMxMTAvBgNVBAUTKDM0OUU1OTdDNzE3ODgxMDRCMDY0OUYwNzNBQkE3MkY2 NUYyODRCOUEwHhcNMjUwNTMwMjIxMTE0WhcNMjUwNjA2MjIxMTE0WjAYMRYwFAYD VQQDEw02ODNhMmQwMi1hY2VmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAswXTSRD2q+/4GtzHIi7B4GkOUIds+tEirlheGNePBpcsfHtsZdQs1cUZlVOo Gcy5iV5fMHr9Mizyn1Oa8r+6kXGIA4Rh+NUTLLgAYgLcCALgEdwGGb4Pdtk1hNAs KCAnlMC+pEa6h56DzMDJZUwEy4dIMTRrPYajXv5ZB1jGUHaMBRgAQyW31VkGu1JB HUacSQARgLEeP4png5M3kE1rivqcRhIfCzSRxb/r/kVxzFfEi+IBHM+kq6F1u/2D QUW70809QRtivF61rFWdYIgwyXfg7yGTmWH0MifBgOMVO/oQXwjKsHI1XYWKYXP4 fm98Vbbzulc1FXBz0wC+QDoYzwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMCh0rvQ gZxpR0PkjJvUpVujyCKsMB8GA1UdIwQYMBaAFDSeWXxxeIEEsGSfBzq6cvZfKEua MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENEU1My9BNEE1MTlFQTRF NjIxMUVCQThBQ0FDNUFDNEY5QUUwMi9OSjVaZkhGNGdRU3daSjhIT3JweTlsOG9T NW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL05KNVpmSEY0Z1FTd1pKOEhPcnB5OWw4b1M1by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NEU1My9BNEE1MTlFQTRFNjIxMUVCQThBQ0FDNUFDNEY5QUUwMi9OSjVaZkhGNGdR U3daSjhIT3JweTlsOG9TNW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQADIcORCDQxPsfgmuPt2IK5HGJvTIzfkNBzy5qYQn/6QnbTUyudibJ6 A6v46yyzZj9waE/hZzXdw8/vilnx5Zu0EqL0dP0ywy3ObjzDhiq91ZUmX8Tn64kO OXUK4Qewu4tmED4vCT2MUwDWCfWdIWIo3UggGLrVMTuGpREP2AzVpyB2CxYwQAhL eh9ovJ/2nRMSo++RSUe6WCpu3DLs7Y9sIkbw2Z7O6+WO6GVHdVZL/9L+qwObVGLS DNAlZr09YFbB5wRd7ffknhx2BEVOIKsI3zkDz39NcgJl/OTQzBd8gJwJcaLu67GP jHMEQ+mk2XQ/C4onV5HHdI22t9JwgLax -----END CERTIFICATE-----Generated at Sat May 31 17:12:59 2025 by rpki-client