$ rpki-client -vvf rpki.apnic.net/member_repository/A91E01B2/6DE9F410B66311EC8D54A449C4F9AE02/x-V5CwXg1NIJ20PcaA-3iCeYFKk.mft File: x-V5CwXg1NIJ20PcaA-3iCeYFKk.mft (raw, json) Hash identifier: 1IfTCyHi8KQPgLQeZq49TUlZn/domVm3b472LfiyMv4= Subject key identifier: 92:49:79:9C:42:AE:4C:DB:27:6E:80:B7:FB:C2:06:40:9F:5B:97:3F Authority key identifier: C7:E5:79:0B:05:E0:D4:D2:09:DB:43:DC:68:0F:B7:88:27:98:14:A9 Certificate issuer: /CN=A91E01B2/serialNumber=C7E5790B05E0D4D209DB43DC680FB788279814A9 Certificate serial: 0362 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/x-V5CwXg1NIJ20PcaA-3iCeYFKk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E01B2/6DE9F410B66311EC8D54A449C4F9AE02/x-V5CwXg1NIJ20PcaA-3iCeYFKk.mft Manifest number: 0358 Signing time: Sat 31 May 2025 01:10:43 +0000 Manifest this update: Sat 31 May 2025 01:10:42 +0000 Manifest next update: Sat 07 Jun 2025 01:10:42 +0000 Files and hashes: 1: x-V5CwXg1NIJ20PcaA-3iCeYFKk.crl (hash: OlQmb2qqZ4JS22wYoq6yxrCI/t8fngLM08SY5qRPIxc=) 2: A8E34E9CB66611ECAF76DA4CC4F9AE02.roa (hash: 3ltUc1MRVqJi3SEeMGw79iaqCBtkg84cqJVUr/o1VYA=) 3: A9906244B66611ECAF76DA4CC4F9AE02.roa (hash: Amk0fNoLVyq/V0Aumz+LOy4QbvlRWTIXw8dCA9q0zmk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E01B2/6DE9F410B66311EC8D54A449C4F9AE02/x-V5CwXg1NIJ20PcaA-3iCeYFKk.crl rsync://rpki.apnic.net/member_repository/A91E01B2/6DE9F410B66311EC8D54A449C4F9AE02/x-V5CwXg1NIJ20PcaA-3iCeYFKk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/x-V5CwXg1NIJ20PcaA-3iCeYFKk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 01:10:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 866 (0x362) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E01B2, serialNumber=C7E5790B05E0D4D209DB43DC680FB788279814A9 Validity Not Before: May 31 01:10:42 2025 GMT Not After : Jun 7 01:10:42 2025 GMT Subject: CN=683a5713-f81d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:79:01:d3:c6:b6:68:54:cd:af:4e:ae:b2:1d: 61:9b:30:36:a6:2f:33:5a:f8:fa:28:28:44:ae:c6: 4e:bf:48:5e:ab:51:0e:f6:27:19:40:cd:8e:0e:31: 58:bb:7c:fb:4e:49:ce:f0:37:d2:12:a1:0c:5c:3a: a3:4f:8c:dc:b2:cd:09:76:ec:79:11:5d:93:d0:55: 76:e7:04:82:78:99:79:1d:37:fa:08:be:e8:74:e3: d5:aa:0b:e7:9a:0d:78:15:38:cf:26:2e:57:b4:00: f7:f9:7f:5e:56:4a:a9:e8:9f:93:16:04:e8:ad:2a: b6:28:87:4a:b6:14:66:c5:cb:2a:37:e4:92:d3:86: c8:c4:6c:84:12:01:ad:85:62:30:c9:08:ec:63:b0: 98:52:e5:74:01:e3:40:d7:0d:fd:f7:83:ff:8b:67: d0:59:aa:25:64:57:11:9b:e2:82:e8:aa:68:a6:eb: 1b:fc:e8:a9:dc:bf:3b:6e:38:a0:a9:1f:30:21:3a: 6f:09:78:e0:86:80:39:4d:fb:c0:ee:5a:d2:9b:54: df:a2:70:bf:3f:40:d6:98:9d:a0:2b:0f:ee:9f:01: 90:fa:49:c8:52:ff:72:c5:8d:d7:5c:52:33:55:19: b7:23:2e:d8:ec:9e:05:1b:0d:77:4b:ea:3f:5f:dd: 1b:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 92:49:79:9C:42:AE:4C:DB:27:6E:80:B7:FB:C2:06:40:9F:5B:97:3F X509v3 Authority Key Identifier: keyid:C7:E5:79:0B:05:E0:D4:D2:09:DB:43:DC:68:0F:B7:88:27:98:14:A9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E01B2/6DE9F410B66311EC8D54A449C4F9AE02/x-V5CwXg1NIJ20PcaA-3iCeYFKk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/x-V5CwXg1NIJ20PcaA-3iCeYFKk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E01B2/6DE9F410B66311EC8D54A449C4F9AE02/x-V5CwXg1NIJ20PcaA-3iCeYFKk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2b:1c:57:d0:04:b9:2a:0e:ec:00:4f:97:28:16:5e:0c:14:af: 80:cb:3c:9d:c4:90:30:db:79:12:51:a9:bf:17:49:46:7e:b5: a1:2f:ee:6c:9d:17:a2:41:7a:07:99:14:c6:77:d8:98:5e:6e: 51:f3:e1:d2:91:81:02:e3:0a:a3:d7:4e:7f:93:f3:cc:94:a6: c0:ca:29:ff:d1:87:4d:71:3d:ae:ba:9a:5b:7d:b1:58:75:81: 59:0a:33:88:c9:c6:b4:eb:32:b7:25:04:82:5a:4c:60:ed:46: 9e:09:1f:19:42:0e:b6:d7:0b:7b:a9:79:eb:d2:b1:13:bb:91: 58:ac:1a:69:ab:06:f5:19:96:64:de:44:c9:ed:22:18:a4:e9: 45:51:c7:f7:af:72:a8:39:25:76:fd:d3:a4:93:9b:99:fa:d1: 68:05:cc:47:c8:45:b5:20:23:ea:87:75:f9:9c:9c:0e:f4:2b: 73:b1:7e:c0:df:ba:2b:22:e8:be:58:8a:55:da:92:4a:1f:9d: f1:5f:3c:ed:1f:7d:65:51:ad:d0:bb:62:84:9f:79:84:e8:b0: a2:a6:19:5f:b0:6c:0b:8b:fb:2a:fc:80:60:a3:e7:5c:52:42: e0:7d:e5:8c:5a:d7:da:b8:f3:6d:4d:eb:e1:ff:0e:e7:85:e7: 29:ba:c5:d3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA2IwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTAxQjIxMTAvBgNVBAUTKEM3RTU3OTBCMDVFMEQ0RDIwOURCNDNEQzY4MEZCNzg4 Mjc5ODE0QTkwHhcNMjUwNTMxMDExMDQyWhcNMjUwNjA3MDExMDQyWjAYMRYwFAYD VQQDEw02ODNhNTcxMy1mODFkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3nkB08a2aFTNr06ush1hmzA2pi8zWvj6KChErsZOv0heq1EO9icZQM2ODjFY u3z7TknO8DfSEqEMXDqjT4zcss0Jdux5EV2T0FV25wSCeJl5HTf6CL7odOPVqgvn mg14FTjPJi5XtAD3+X9eVkqp6J+TFgTorSq2KIdKthRmxcsqN+SS04bIxGyEEgGt hWIwyQjsY7CYUuV0AeNA1w3994P/i2fQWaolZFcRm+KC6Kpopusb/Oip3L87bjig qR8wITpvCXjghoA5TfvA7lrSm1TfonC/P0DWmJ2gKw/unwGQ+knIUv9yxY3XXFIz VRm3Iy7Y7J4FGw13S+o/X90bTQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJJJeZxC rkzbJ26At/vCBkCfW5c/MB8GA1UdIwQYMBaAFMfleQsF4NTSCdtD3GgPt4gnmBSp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMDFCMi82REU5RjQxMEI2 NjMxMUVDOEQ1NEE0NDlDNEY5QUUwMi94LVY1Q3dYZzFOSUoyMFBjYUEtM2lDZVlG S2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3gtVjVDd1hnMU5JSjIwUGNhQS0zaUNlWUZLay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MDFCMi82REU5RjQxMEI2NjMxMUVDOEQ1NEE0NDlDNEY5QUUwMi94LVY1Q3dYZzFO SUoyMFBjYUEtM2lDZVlGS2subWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQArHFfQBLkqDuwAT5coFl4MFK+AyzydxJAw23kSUam/F0lGfrWhL+5s nReiQXoHmRTGd9iYXm5R8+HSkYEC4wqj105/k/PMlKbAyin/0YdNcT2uuppbfbFY dYFZCjOIyca06zK3JQSCWkxg7UaeCR8ZQg621wt7qXnr0rETu5FYrBppqwb1GZZk 3kTJ7SIYpOlFUcf3r3KoOSV2/dOkk5uZ+tFoBcxHyEW1ICPqh3X5nJwO9CtzsX7A 37orIui+WIpV2pJKH53xXzztH31lUa3Qu2KEn3mE6LCiphlfsGwLi/sq/IBgo+dc UkLgfeWMWtfauPNtTevh/w7nhecpusXT -----END CERTIFICATE-----Generated at Sat May 31 16:53:48 2025 by rpki-client