$ rpki-client -vvf rpki.apnic.net/member_repository/A91DD5E1/165B7BF6BC6E11EAA5CB037DC4F9AE02/rC4NP0JyIX_vudMtzhozLelqOF4.mft File: rC4NP0JyIX_vudMtzhozLelqOF4.mft (raw, json) Hash identifier: tqSfSmVTbwllQxqrX46g4oPX7zeKkkyAiKU2e4CP0Kk= Subject key identifier: 57:D0:A2:3F:69:8D:0B:1F:63:0F:41:71:E4:26:90:F8:C2:15:9F:E9 Authority key identifier: AC:2E:0D:3F:42:72:21:7F:EF:B9:D3:2D:CE:1A:33:2D:E9:6A:38:5E Certificate issuer: /CN=A91DD5E1/serialNumber=AC2E0D3F4272217FEFB9D32DCE1A332DE96A385E Certificate serial: 08A2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rC4NP0JyIX_vudMtzhozLelqOF4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DD5E1/165B7BF6BC6E11EAA5CB037DC4F9AE02/rC4NP0JyIX_vudMtzhozLelqOF4.mft Manifest number: 089A Signing time: Fri 30 May 2025 20:47:19 +0000 Manifest this update: Fri 30 May 2025 20:47:18 +0000 Manifest next update: Fri 06 Jun 2025 20:47:18 +0000 Files and hashes: 1: rC4NP0JyIX_vudMtzhozLelqOF4.crl (hash: G77Ywdbe4KLTStajwzDi0kDH8+RY12l3ALznzt+pQhI=) 2: E034D1A6BC6F11EA8FE53280C4F9AE02.roa (hash: r0YFlYuIRf7Aj55A1t3w3hfTwFR/8iacpEclsozeKco=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DD5E1/165B7BF6BC6E11EAA5CB037DC4F9AE02/rC4NP0JyIX_vudMtzhozLelqOF4.crl rsync://rpki.apnic.net/member_repository/A91DD5E1/165B7BF6BC6E11EAA5CB037DC4F9AE02/rC4NP0JyIX_vudMtzhozLelqOF4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rC4NP0JyIX_vudMtzhozLelqOF4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 20:47:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2210 (0x8a2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DD5E1, serialNumber=AC2E0D3F4272217FEFB9D32DCE1A332DE96A385E Validity Not Before: May 30 20:47:18 2025 GMT Not After : Jun 6 20:47:18 2025 GMT Subject: CN=683a1956-c507 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:c3:a1:50:ab:ae:35:34:47:5b:33:11:ff:5c: 4c:3e:d2:68:83:38:cd:62:84:a5:2a:0e:2c:e4:e9: ab:30:cb:2f:7b:7a:37:89:bb:d5:02:03:3a:bb:17: 98:a7:eb:19:6d:01:03:7a:ca:a1:ef:ca:2e:a2:cc: d2:17:b8:6c:ab:a5:60:35:27:5f:f8:77:04:55:5d: 64:7d:d8:c6:03:75:52:50:d6:ca:0b:61:c9:06:e8: cf:e6:d0:3f:22:47:da:f1:14:ab:b5:f2:44:42:53: ca:5d:0f:50:99:16:7f:4c:3d:c9:e8:54:b8:40:1b: 4e:d6:60:0e:53:4f:6e:04:0a:f8:89:b3:04:e2:58: 08:a2:39:ba:e7:9f:63:d9:59:51:21:d7:2e:11:8a: 99:e7:f4:87:d7:8d:52:84:91:0b:53:21:42:70:cb: dc:b3:d0:53:67:b1:c4:2d:38:57:13:da:5b:76:f8: 1d:18:5d:58:67:00:17:b2:70:22:e2:f4:57:13:7e: 3b:d9:7d:d8:e5:bd:6d:83:da:0c:82:c0:88:b1:8f: 66:7c:32:7f:b6:63:f3:a9:9c:6a:79:ce:ee:42:cc: cf:97:5c:6b:8b:65:65:64:d5:5c:e5:96:66:37:d0: b1:98:82:8c:9e:81:1b:b4:bf:bf:4b:c1:1d:9b:85: 24:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 57:D0:A2:3F:69:8D:0B:1F:63:0F:41:71:E4:26:90:F8:C2:15:9F:E9 X509v3 Authority Key Identifier: keyid:AC:2E:0D:3F:42:72:21:7F:EF:B9:D3:2D:CE:1A:33:2D:E9:6A:38:5E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DD5E1/165B7BF6BC6E11EAA5CB037DC4F9AE02/rC4NP0JyIX_vudMtzhozLelqOF4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rC4NP0JyIX_vudMtzhozLelqOF4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DD5E1/165B7BF6BC6E11EAA5CB037DC4F9AE02/rC4NP0JyIX_vudMtzhozLelqOF4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a4:af:3a:d2:d7:4f:0e:a0:f3:a9:b8:42:ff:b9:2b:d1:fd:09: 29:b8:7a:36:25:92:92:07:81:d3:d8:c7:36:d4:9c:5b:c8:49: 92:2f:bb:88:54:11:1d:92:ae:a8:65:3e:37:59:0c:81:e1:48: 77:53:a7:a1:f9:97:e1:df:5b:66:65:8c:7c:83:fc:72:5b:29: bd:bd:2a:8f:c5:41:4f:c3:62:08:80:0c:bf:41:1d:82:d2:2c: 80:e7:60:14:fc:a7:d5:c9:49:1d:b2:c6:11:07:fd:49:3e:e0: d1:8c:c0:63:dd:2a:13:49:ed:94:d4:38:ef:2b:34:76:15:e8: 5f:01:a0:90:74:d1:26:cd:13:3c:91:ff:ac:01:27:4d:43:56: ca:46:93:15:3a:3d:f9:fe:58:a8:64:fd:59:b5:a7:6a:45:0b: cc:08:cd:84:ce:22:58:2f:8f:65:ae:f4:5a:64:83:45:f9:cc: bb:6e:2b:14:4d:ce:b7:cf:a2:83:7d:22:e6:e3:e4:9a:03:7a: 7a:c7:16:bd:0d:97:43:16:74:01:6f:8a:9a:53:e7:59:b3:c3: ce:c6:c4:87:38:62:ee:b7:b7:e4:69:94:2c:02:70:61:04:46: be:24:72:a9:6f:87:66:5f:a2:e0:83:12:32:07:05:b6:fa:f9: 88:d0:2a:2b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCKIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REQ1RTExMTAvBgNVBAUTKEFDMkUwRDNGNDI3MjIxN0ZFRkI5RDMyRENFMUEzMzJE RTk2QTM4NUUwHhcNMjUwNTMwMjA0NzE4WhcNMjUwNjA2MjA0NzE4WjAYMRYwFAYD VQQDEw02ODNhMTk1Ni1jNTA3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAscOhUKuuNTRHWzMR/1xMPtJogzjNYoSlKg4s5OmrMMsve3o3ibvVAgM6uxeY p+sZbQEDesqh78ouoszSF7hsq6VgNSdf+HcEVV1kfdjGA3VSUNbKC2HJBujP5tA/ Ikfa8RSrtfJEQlPKXQ9QmRZ/TD3J6FS4QBtO1mAOU09uBAr4ibME4lgIojm6559j 2VlRIdcuEYqZ5/SH141ShJELUyFCcMvcs9BTZ7HELThXE9pbdvgdGF1YZwAXsnAi 4vRXE3472X3Y5b1tg9oMgsCIsY9mfDJ/tmPzqZxqec7uQszPl1xri2VlZNVc5ZZm N9CxmIKMnoEbtL+/S8Edm4UkLwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFfQoj9p jQsfYw9BceQmkPjCFZ/pMB8GA1UdIwQYMBaAFKwuDT9CciF/77nTLc4aMy3pajhe MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERDVFMS8xNjVCN0JGNkJD NkUxMUVBQTVDQjAzN0RDNEY5QUUwMi9yQzROUDBKeUlYX3Z1ZE10emhvekxlbHFP RjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JDNE5QMEp5SVhfdnVkTXR6aG96TGVscU9GNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE RDVFMS8xNjVCN0JGNkJDNkUxMUVBQTVDQjAzN0RDNEY5QUUwMi9yQzROUDBKeUlY X3Z1ZE10emhvekxlbHFPRjQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCkrzrS108OoPOpuEL/uSvR/QkpuHo2JZKSB4HT2Mc21JxbyEmSL7uI VBEdkq6oZT43WQyB4Uh3U6eh+Zfh31tmZYx8g/xyWym9vSqPxUFPw2IIgAy/QR2C 0iyA52AU/KfVyUkdssYRB/1JPuDRjMBj3SoTSe2U1DjvKzR2FehfAaCQdNEmzRM8 kf+sASdNQ1bKRpMVOj35/lioZP1ZtadqRQvMCM2EziJYL49lrvRaZINF+cy7bisU Tc63z6KDfSLm4+SaA3p6xxa9DZdDFnQBb4qaU+dZs8POxsSHOGLut7fkaZQsAnBh BEa+JHKpb4dmX6LggxIyBwW2+vmI0Cor -----END CERTIFICATE-----Generated at Sat May 31 14:39:50 2025 by rpki-client