$ rpki-client -vvf rpki.apnic.net/member_repository/A91DA590/9510E86AC07B11EC987B847FC4F9AE02/IAAAWsWhdEBL07_CmUMyPpYGJbk.mft File: IAAAWsWhdEBL07_CmUMyPpYGJbk.mft (raw, json) Hash identifier: pAuZsfmKudcmXcViAO0vs+Bl/n1MH3+AiRQ2WL/1YeA= Subject key identifier: 37:56:D2:D6:4C:99:0B:DC:F3:2E:5A:3C:8E:B5:03:6F:B7:E5:AC:9B Authority key identifier: 20:00:00:5A:C5:A1:74:40:4B:D3:BF:C2:99:43:32:3E:96:06:25:B9 Certificate issuer: /CN=A91DA590/serialNumber=2000005AC5A174404BD3BFC29943323E960625B9 Certificate serial: 0347 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IAAAWsWhdEBL07_CmUMyPpYGJbk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DA590/9510E86AC07B11EC987B847FC4F9AE02/IAAAWsWhdEBL07_CmUMyPpYGJbk.mft Manifest number: 0340 Signing time: Sat 31 May 2025 01:14:48 +0000 Manifest this update: Sat 31 May 2025 01:14:48 +0000 Manifest next update: Sat 07 Jun 2025 01:14:48 +0000 Files and hashes: 1: IAAAWsWhdEBL07_CmUMyPpYGJbk.crl (hash: 73FqM0mK+OYfaEGayz8ITPpkNnI4bq4138tHBe1A6Fc=) 2: 09E46A74C07F11ECB0707F18C4F9AE02.roa (hash: fKQvUorpCo1+t6j4CpNdFsIqffZ/KOuD0j+HaDJA0Es=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DA590/9510E86AC07B11EC987B847FC4F9AE02/IAAAWsWhdEBL07_CmUMyPpYGJbk.crl rsync://rpki.apnic.net/member_repository/A91DA590/9510E86AC07B11EC987B847FC4F9AE02/IAAAWsWhdEBL07_CmUMyPpYGJbk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IAAAWsWhdEBL07_CmUMyPpYGJbk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 01:14:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 839 (0x347) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DA590, serialNumber=2000005AC5A174404BD3BFC29943323E960625B9 Validity Not Before: May 31 01:14:48 2025 GMT Not After : Jun 7 01:14:48 2025 GMT Subject: CN=683a5808-335c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:4c:fb:4d:0e:3c:9a:39:63:83:b6:fd:4d:58: 6c:c6:e9:b4:27:f2:9e:c3:75:9d:89:6c:b9:a5:fe: 33:dc:b3:eb:62:7c:f6:87:85:f9:4c:b5:f8:4b:8d: 84:c2:22:35:da:71:ad:d0:7b:23:67:e3:a9:09:c2: 3f:1f:e4:24:d3:40:e6:d9:5d:2f:9b:19:d8:cb:2a: b0:d1:df:8e:17:c4:26:da:6c:da:62:c7:e6:62:a1: 37:1d:dd:36:b2:64:3f:30:4a:48:d4:b0:76:ba:13: ae:06:33:3a:24:0f:04:3e:9b:49:71:c5:8a:01:0a: b7:b8:60:77:e1:54:a0:dc:9d:a0:bb:93:e7:e6:cd: 77:73:e3:d4:b3:d0:94:94:52:a8:ce:3a:1b:d6:ad: 15:64:95:70:0c:8f:5d:bd:46:4b:5c:5a:fb:6a:c3: 83:51:09:f6:73:6d:97:24:a9:56:a0:53:3a:c5:88: bc:59:f1:59:01:81:2a:42:61:b5:84:92:8b:ef:d1: 61:44:ee:03:4f:fe:5f:e0:94:ef:6b:e3:f2:67:29: c8:4d:25:d4:a3:e7:33:44:54:7d:fb:c8:9c:e1:15: 19:10:19:15:99:18:40:49:67:d1:27:36:82:d5:b7: c9:89:d1:5f:41:ec:f6:ff:c3:1d:25:bb:bd:d8:4e: b7:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 37:56:D2:D6:4C:99:0B:DC:F3:2E:5A:3C:8E:B5:03:6F:B7:E5:AC:9B X509v3 Authority Key Identifier: keyid:20:00:00:5A:C5:A1:74:40:4B:D3:BF:C2:99:43:32:3E:96:06:25:B9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DA590/9510E86AC07B11EC987B847FC4F9AE02/IAAAWsWhdEBL07_CmUMyPpYGJbk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IAAAWsWhdEBL07_CmUMyPpYGJbk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DA590/9510E86AC07B11EC987B847FC4F9AE02/IAAAWsWhdEBL07_CmUMyPpYGJbk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 78:0c:d5:f5:f0:6e:16:10:33:ce:06:c2:31:25:a3:01:a5:2f: 24:7b:e5:4f:7b:da:61:16:df:5a:10:d7:6b:f5:41:e2:02:46: e5:5a:34:86:94:8e:c4:50:f6:b8:bf:28:ec:b0:61:62:20:52: aa:71:70:67:a3:43:64:b1:14:d2:8e:0d:08:96:89:eb:ad:0c: 84:6a:f3:52:a9:ca:84:6b:4e:43:d8:82:59:f7:58:d1:53:04: 74:67:89:a0:28:5d:16:83:75:81:33:fc:39:cc:14:c5:f8:d8: b1:af:c0:b3:77:eb:b0:a9:0a:73:fb:c8:85:e3:0f:45:49:88: 4b:e8:48:8d:55:b9:9b:ba:e9:2a:85:2f:df:da:dc:43:96:49: 9a:91:a2:8e:dd:c8:07:fc:a0:3b:0d:fc:eb:bb:14:90:1d:f3: 36:c5:b3:b0:e3:4f:52:55:f0:9d:21:46:7f:72:2a:56:16:c4: 5f:f9:e4:59:f6:7c:54:fb:a8:39:f9:ff:37:37:f8:78:a3:7e: 06:91:97:8f:b7:b8:97:eb:50:32:51:b1:af:e6:f0:02:3b:3f: f7:b1:26:e1:83:0d:03:8f:d9:34:72:80:f0:c6:d0:41:6a:6f: cb:94:30:0b:87:45:bd:10:a3:34:e4:7a:88:15:c5:72:c4:9a: 39:14:b6:c4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA0cwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REE1OTAxMTAvBgNVBAUTKDIwMDAwMDVBQzVBMTc0NDA0QkQzQkZDMjk5NDMzMjNF OTYwNjI1QjkwHhcNMjUwNTMxMDExNDQ4WhcNMjUwNjA3MDExNDQ4WjAYMRYwFAYD VQQDEw02ODNhNTgwOC0zMzVjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwkz7TQ48mjljg7b9TVhsxum0J/Kew3WdiWy5pf4z3LPrYnz2h4X5TLX4S42E wiI12nGt0HsjZ+OpCcI/H+Qk00Dm2V0vmxnYyyqw0d+OF8Qm2mzaYsfmYqE3Hd02 smQ/MEpI1LB2uhOuBjM6JA8EPptJccWKAQq3uGB34VSg3J2gu5Pn5s13c+PUs9CU lFKozjob1q0VZJVwDI9dvUZLXFr7asODUQn2c22XJKlWoFM6xYi8WfFZAYEqQmG1 hJKL79FhRO4DT/5f4JTva+PyZynITSXUo+czRFR9+8ic4RUZEBkVmRhASWfRJzaC 1bfJidFfQez2/8MdJbu92E63kQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDdW0tZM mQvc8y5aPI61A2+35aybMB8GA1UdIwQYMBaAFCAAAFrFoXRAS9O/wplDMj6WBiW5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQTU5MC85NTEwRTg2QUMw N0IxMUVDOTg3Qjg0N0ZDNEY5QUUwMi9JQUFBV3NXaGRFQkwwN19DbVVNeVBwWUdK YmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lBQUFXc1doZEVCTDA3X0NtVU15UHBZR0piay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QTU5MC85NTEwRTg2QUMwN0IxMUVDOTg3Qjg0N0ZDNEY5QUUwMi9JQUFBV3NXaGRF QkwwN19DbVVNeVBwWUdKYmsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB4DNX18G4WEDPOBsIxJaMBpS8ke+VPe9phFt9aENdr9UHiAkblWjSG lI7EUPa4vyjssGFiIFKqcXBno0NksRTSjg0IlonrrQyEavNSqcqEa05D2IJZ91jR UwR0Z4mgKF0Wg3WBM/w5zBTF+Nixr8Czd+uwqQpz+8iF4w9FSYhL6EiNVbmbuukq hS/f2txDlkmakaKO3cgH/KA7DfzruxSQHfM2xbOw409SVfCdIUZ/cipWFsRf+eRZ 9nxU+6g5+f83N/h4o34GkZePt7iX61AyUbGv5vACOz/3sSbhgw0Dj9k0coDwxtBB am/LlDALh0W9EKM05HqIFcVyxJo5FLbE -----END CERTIFICATE-----Generated at Sat May 31 17:03:31 2025 by rpki-client