$ rpki-client -vvf rpki.apnic.net/member_repository/A91D51C1/D92E69AAC1EE11EBBFD57E2AC4F9AE02/l7tUs9I8N8PdPgFpypdNJ9up8FA.mft File: l7tUs9I8N8PdPgFpypdNJ9up8FA.mft (raw, json) Hash identifier: w3Ef7rtsM/UJ6Rqb/4SCBzGzE7qAiZLNgEc8wo6YA/4= Subject key identifier: 09:E2:1A:E1:7E:01:FB:A6:5D:70:B1:B9:79:33:45:3C:C1:39:2C:34 Authority key identifier: 97:BB:54:B3:D2:3C:37:C3:DD:3E:01:69:CA:97:4D:27:DB:A9:F0:50 Certificate issuer: /CN=A91D51C1/serialNumber=97BB54B3D23C37C3DD3E0169CA974D27DBA9F050 Certificate serial: 05CC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l7tUs9I8N8PdPgFpypdNJ9up8FA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D51C1/D92E69AAC1EE11EBBFD57E2AC4F9AE02/l7tUs9I8N8PdPgFpypdNJ9up8FA.mft Manifest number: 05C4 Signing time: Fri 30 May 2025 23:17:46 +0000 Manifest this update: Fri 30 May 2025 23:17:45 +0000 Manifest next update: Fri 06 Jun 2025 23:17:45 +0000 Files and hashes: 1: l7tUs9I8N8PdPgFpypdNJ9up8FA.crl (hash: 9JQiWUkyCxr0TIhI/yYeF+7LtdCXDlUCs0nwniQJcfs=) 2: 1E8ADFD0C1F211EBA984726AC4F9AE02.roa (hash: bWn5aFY6Kg9nqE6Xd5cFT5I+I/vhYdu828/JrK8jyYg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D51C1/D92E69AAC1EE11EBBFD57E2AC4F9AE02/l7tUs9I8N8PdPgFpypdNJ9up8FA.crl rsync://rpki.apnic.net/member_repository/A91D51C1/D92E69AAC1EE11EBBFD57E2AC4F9AE02/l7tUs9I8N8PdPgFpypdNJ9up8FA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l7tUs9I8N8PdPgFpypdNJ9up8FA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 23:17:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1484 (0x5cc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D51C1, serialNumber=97BB54B3D23C37C3DD3E0169CA974D27DBA9F050 Validity Not Before: May 30 23:17:45 2025 GMT Not After : Jun 6 23:17:45 2025 GMT Subject: CN=683a3c9a-6472 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:06:f9:d0:a1:c0:b2:bb:6d:5e:80:ad:14:e7: 90:4b:41:bf:ed:cb:a7:c6:6d:26:08:46:ad:4b:20: 60:9d:7b:b6:2e:71:be:90:b7:3a:7a:80:6a:1a:26: 50:a8:e3:72:c9:84:4e:34:a8:55:2e:0f:b3:d5:37: 16:49:08:38:7d:aa:34:09:8c:f4:eb:86:cc:be:21: a9:e1:9d:25:07:7c:a5:04:3e:41:0f:98:a5:36:b4: 27:e9:e4:7b:95:61:d9:c2:b7:b7:f2:bb:bc:ff:82: 74:30:e0:c2:21:91:e7:78:e3:bb:84:16:d7:1a:ad: ff:43:74:80:38:d7:25:a7:a3:ef:f8:12:6a:69:d8: 84:9b:d9:be:24:6b:d5:30:32:17:d2:94:d8:79:f9: 57:e9:4a:a1:39:3a:46:47:98:ba:76:1a:f5:33:45: 30:ef:13:24:f3:c2:f4:ac:49:3e:4a:5d:bf:39:4d: 1b:cd:69:8c:7d:aa:29:8c:b8:59:37:6b:7c:e5:74: 7e:24:d3:27:d8:7f:86:c4:d2:85:c1:93:bd:84:1f: 17:42:3f:0f:6d:32:4e:5c:cc:c5:27:e9:60:d7:e5: 8f:02:97:e8:7d:11:cd:76:de:c7:48:4c:1c:9e:37: 6a:83:83:74:cb:07:33:1b:6e:99:fd:bf:86:6c:e9: 97:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 09:E2:1A:E1:7E:01:FB:A6:5D:70:B1:B9:79:33:45:3C:C1:39:2C:34 X509v3 Authority Key Identifier: keyid:97:BB:54:B3:D2:3C:37:C3:DD:3E:01:69:CA:97:4D:27:DB:A9:F0:50 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D51C1/D92E69AAC1EE11EBBFD57E2AC4F9AE02/l7tUs9I8N8PdPgFpypdNJ9up8FA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l7tUs9I8N8PdPgFpypdNJ9up8FA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D51C1/D92E69AAC1EE11EBBFD57E2AC4F9AE02/l7tUs9I8N8PdPgFpypdNJ9up8FA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 06:12:03:5c:e0:ad:05:e2:7f:f8:e9:72:09:31:9c:7f:de:98: 06:ed:c6:2d:da:12:75:b0:5e:08:cc:7b:27:40:6f:0f:be:88: d5:63:c1:67:00:d8:0f:81:d2:bd:fc:c9:24:85:96:fa:1f:9f: 2b:bc:92:2c:98:fe:56:7e:de:77:5c:8c:0b:8f:68:dd:3d:a2: 25:2b:7d:44:b8:1b:58:98:24:f8:49:60:d4:51:3c:16:3e:da: ac:a9:84:3b:de:31:6c:56:c4:65:a1:fc:f9:c0:37:08:46:96: e8:f5:c1:46:58:af:31:16:46:39:a6:41:da:b5:0d:aa:1a:b3: d2:1e:d1:c9:29:e1:ee:17:2f:a6:c8:2d:5d:71:76:62:fc:d8: 84:0f:65:f5:94:79:78:c7:70:eb:4c:6b:d3:6a:f3:08:e8:1a: 40:27:09:97:b5:b8:87:6c:d1:a9:d1:2d:03:87:85:77:e7:ed: cf:4e:05:ff:16:6a:2e:b5:cf:85:38:87:cb:bd:9f:6d:5b:07: 74:fe:60:52:ce:b2:fb:d7:2f:70:c0:94:98:ae:2f:a2:57:78: d4:ed:22:e7:50:8d:66:4e:f3:6c:c8:b9:26:e8:95:c4:42:e7: 55:22:bd:b2:93:31:8e:5f:f9:de:f9:fd:ee:60:30:24:bc:b9: f8:10:75:8a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBcwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDUxQzExMTAvBgNVBAUTKDk3QkI1NEIzRDIzQzM3QzNERDNFMDE2OUNBOTc0RDI3 REJBOUYwNTAwHhcNMjUwNTMwMjMxNzQ1WhcNMjUwNjA2MjMxNzQ1WjAYMRYwFAYD VQQDEw02ODNhM2M5YS02NDcyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArAb50KHAsrttXoCtFOeQS0G/7cunxm0mCEatSyBgnXu2LnG+kLc6eoBqGiZQ qONyyYRONKhVLg+z1TcWSQg4fao0CYz064bMviGp4Z0lB3ylBD5BD5ilNrQn6eR7 lWHZwre38ru8/4J0MODCIZHneOO7hBbXGq3/Q3SAONclp6Pv+BJqadiEm9m+JGvV MDIX0pTYeflX6UqhOTpGR5i6dhr1M0Uw7xMk88L0rEk+Sl2/OU0bzWmMfaopjLhZ N2t85XR+JNMn2H+GxNKFwZO9hB8XQj8PbTJOXMzFJ+lg1+WPApfofRHNdt7HSEwc njdqg4N0ywczG26Z/b+GbOmXEwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAniGuF+ AfumXXCxuXkzRTzBOSw0MB8GA1UdIwQYMBaAFJe7VLPSPDfD3T4BacqXTSfbqfBQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENTFDMS9EOTJFNjlBQUMx RUUxMUVCQkZENTdFMkFDNEY5QUUwMi9sN3RVczlJOE44UGRQZ0ZweXBkTko5dXA4 RkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2w3dFVzOUk4TjhQZFBnRnB5cGROSjl1cDhGQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NTFDMS9EOTJFNjlBQUMxRUUxMUVCQkZENTdFMkFDNEY5QUUwMi9sN3RVczlJOE44 UGRQZ0ZweXBkTko5dXA4RkEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAGEgNc4K0F4n/46XIJMZx/3pgG7cYt2hJ1sF4IzHsnQG8PvojVY8Fn ANgPgdK9/MkkhZb6H58rvJIsmP5Wft53XIwLj2jdPaIlK31EuBtYmCT4SWDUUTwW PtqsqYQ73jFsVsRlofz5wDcIRpbo9cFGWK8xFkY5pkHatQ2qGrPSHtHJKeHuFy+m yC1dcXZi/NiED2X1lHl4x3DrTGvTavMI6BpAJwmXtbiHbNGp0S0Dh4V35+3PTgX/ Fmoutc+FOIfLvZ9tWwd0/mBSzrL71y9wwJSYri+iV3jU7SLnUI1mTvNsyLkm6JXE QudVIr2ykzGOX/ne+f3uYDAkvLn4EHWK -----END CERTIFICATE-----Generated at Sat May 31 14:59:32 2025 by rpki-client