$ rpki-client -vvf rpki.apnic.net/member_repository/A91E11D6/77DEFD32063911ED818C4016C4F9AE02/woYQciwbyJvjK01LiizCHeZxfMg.mft File: woYQciwbyJvjK01LiizCHeZxfMg.mft (raw, json) Hash identifier: j0PxOi5x6qi5s/nTqt+vyDQleArDM3UN+5DqVBjtefs= Subject key identifier: 1A:8C:59:63:91:36:FF:ED:50:0E:75:E5:6D:A0:E6:5B:96:46:9A:4E Authority key identifier: C2:86:10:72:2C:1B:C8:9B:E3:2B:4D:4B:8A:2C:C2:1D:E6:71:7C:C8 Certificate issuer: /CN=A91E11D6/serialNumber=C28610722C1BC89BE32B4D4B8A2CC21DE6717CC8 Certificate serial: 0296 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/woYQciwbyJvjK01LiizCHeZxfMg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E11D6/77DEFD32063911ED818C4016C4F9AE02/woYQciwbyJvjK01LiizCHeZxfMg.mft Manifest number: 0290 Signing time: Sat 31 May 2025 01:47:14 +0000 Manifest this update: Sat 31 May 2025 01:47:13 +0000 Manifest next update: Sat 07 Jun 2025 01:47:13 +0000 Files and hashes: 1: woYQciwbyJvjK01LiizCHeZxfMg.crl (hash: cPHdijjn/T7PwcaDNNxAmcGZ/uRh7h8I9/EcR2hxCmE=) 2: ACBFA1221CD111EFB2BDF412C4F9AE02.roa (hash: ifFLN+8twN04B6jY6cx/b65AiJj/Z2yB7h3ev34IjTI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E11D6/77DEFD32063911ED818C4016C4F9AE02/woYQciwbyJvjK01LiizCHeZxfMg.crl rsync://rpki.apnic.net/member_repository/A91E11D6/77DEFD32063911ED818C4016C4F9AE02/woYQciwbyJvjK01LiizCHeZxfMg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/woYQciwbyJvjK01LiizCHeZxfMg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 01:47:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 662 (0x296) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E11D6, serialNumber=C28610722C1BC89BE32B4D4B8A2CC21DE6717CC8 Validity Not Before: May 31 01:47:13 2025 GMT Not After : Jun 7 01:47:13 2025 GMT Subject: CN=683a5fa1-8007 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:29:95:15:d5:8a:0a:5c:5e:c4:5d:51:5e:7d: 76:ac:51:71:d4:0e:55:a9:79:89:97:33:2d:4e:72: 20:53:d4:ea:cd:4d:f3:00:28:a5:93:99:95:69:e7: 28:3e:ce:3c:9e:bb:3b:cc:33:33:74:eb:ce:d3:46: 64:14:72:cd:95:3f:eb:fd:08:09:b3:99:77:ec:dc: c0:b8:e1:40:e9:24:fa:b5:4b:c5:73:64:2d:1c:54: f7:2f:21:f7:91:fa:cd:42:51:ad:23:06:8d:17:03: c5:49:d2:e8:2b:d9:c9:49:32:1b:e8:8e:9e:cb:76: 1b:29:cc:9f:84:67:79:c8:6b:c5:e7:66:50:87:7c: 7c:43:85:99:52:c5:31:a3:e0:ee:92:e3:05:27:bd: 3a:db:38:6f:f1:86:c5:bf:b9:ff:f9:fc:85:e9:d6: 44:86:95:ba:28:0a:dd:56:53:be:21:77:0c:06:07: 36:b8:66:e1:8a:16:a6:9c:a5:99:fe:b8:24:9c:47: 90:c0:28:c1:03:48:52:4d:c8:29:0a:55:5d:cb:56: 35:59:57:c8:cc:5a:b2:69:03:77:e8:a9:f6:25:45: 6c:eb:c6:b4:50:aa:91:58:7a:75:8b:72:47:19:57: dd:14:72:a9:47:35:1e:f0:4d:dc:b8:ae:43:d6:3f: 9d:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1A:8C:59:63:91:36:FF:ED:50:0E:75:E5:6D:A0:E6:5B:96:46:9A:4E X509v3 Authority Key Identifier: keyid:C2:86:10:72:2C:1B:C8:9B:E3:2B:4D:4B:8A:2C:C2:1D:E6:71:7C:C8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E11D6/77DEFD32063911ED818C4016C4F9AE02/woYQciwbyJvjK01LiizCHeZxfMg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/woYQciwbyJvjK01LiizCHeZxfMg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E11D6/77DEFD32063911ED818C4016C4F9AE02/woYQciwbyJvjK01LiizCHeZxfMg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption bb:4d:b2:21:3e:49:ed:37:d0:39:53:01:1b:88:db:15:02:f1: 6d:60:4c:ef:70:e6:dd:b1:b9:c6:7a:ae:0c:13:c3:ce:2a:6e: e3:be:60:11:9a:f2:88:b3:45:30:a3:9c:d8:97:f5:0c:d0:52: e1:4a:81:cb:df:e5:65:08:7c:3f:fe:8d:db:ab:b2:95:e9:bb: 5b:9c:17:eb:d0:f4:eb:aa:17:69:99:05:b6:fc:f1:dd:86:f6: a6:c2:af:fb:64:59:3b:9a:17:ad:93:0b:af:3b:df:c6:d7:f2: 5b:11:91:4c:8f:15:3c:22:3f:72:aa:e3:a5:90:80:7e:52:57: e0:67:60:8c:35:1e:08:71:2d:59:11:4e:73:d3:96:75:f9:01: 7a:fb:94:40:c8:43:9b:26:8a:52:37:a1:28:c2:c8:c4:52:db: 01:00:7a:f6:3d:b9:e7:0e:cd:ce:22:b8:55:3a:c7:9e:1f:4b: a6:b6:6e:c3:71:d6:7a:af:14:76:eb:17:6c:bd:10:cf:1e:29: dd:ba:c5:8b:67:7e:0c:3c:61:33:f4:8f:d1:f1:7e:04:92:bc: a9:80:cd:7f:db:5c:f2:6e:f4:9b:66:67:19:f8:89:b1:e9:49: c1:c9:5e:06:7b:2e:41:03:da:d5:6c:4d:05:0d:31:2a:dc:4f: de:7b:8e:4e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICApYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTExRDYxMTAvBgNVBAUTKEMyODYxMDcyMkMxQkM4OUJFMzJCNEQ0QjhBMkNDMjFE RTY3MTdDQzgwHhcNMjUwNTMxMDE0NzEzWhcNMjUwNjA3MDE0NzEzWjAYMRYwFAYD VQQDEw02ODNhNWZhMS04MDA3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtimVFdWKClxexF1RXn12rFFx1A5VqXmJlzMtTnIgU9TqzU3zACilk5mVaeco Ps48nrs7zDMzdOvO00ZkFHLNlT/r/QgJs5l37NzAuOFA6ST6tUvFc2QtHFT3LyH3 kfrNQlGtIwaNFwPFSdLoK9nJSTIb6I6ey3YbKcyfhGd5yGvF52ZQh3x8Q4WZUsUx o+DukuMFJ7062zhv8YbFv7n/+fyF6dZEhpW6KArdVlO+IXcMBgc2uGbhihamnKWZ /rgknEeQwCjBA0hSTcgpClVdy1Y1WVfIzFqyaQN36Kn2JUVs68a0UKqRWHp1i3JH GVfdFHKpRzUe8E3cuK5D1j+d4wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBqMWWOR Nv/tUA515W2g5luWRppOMB8GA1UdIwQYMBaAFMKGEHIsG8ib4ytNS4oswh3mcXzI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMTFENi83N0RFRkQzMjA2 MzkxMUVEODE4QzQwMTZDNEY5QUUwMi93b1lRY2l3YnlKdmpLMDFMaWl6Q0hlWnhm TWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3dvWVFjaXdieUp2akswMUxpaXpDSGVaeGZNZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MTFENi83N0RFRkQzMjA2MzkxMUVEODE4QzQwMTZDNEY5QUUwMi93b1lRY2l3YnlK dmpLMDFMaWl6Q0hlWnhmTWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC7TbIhPkntN9A5UwEbiNsVAvFtYEzvcObdsbnGeq4ME8POKm7jvmAR mvKIs0Uwo5zYl/UM0FLhSoHL3+VlCHw//o3bq7KV6btbnBfr0PTrqhdpmQW2/PHd hvamwq/7ZFk7mhetkwuvO9/G1/JbEZFMjxU8Ij9yquOlkIB+UlfgZ2CMNR4IcS1Z EU5z05Z1+QF6+5RAyEObJopSN6EowsjEUtsBAHr2PbnnDs3OIrhVOseeH0umtm7D cdZ6rxR26xdsvRDPHindusWLZ34MPGEz9I/R8X4EkrypgM1/21zybvSbZmcZ+Imx 6UnByV4Gey5BA9rVbE0FDTEq3E/ee45O -----END CERTIFICATE-----Generated at Sat May 31 17:48:45 2025 by rpki-client