$ rpki-client -vvf rpki.apnic.net/member_repository/A91E12AD/38DAA06C4B2111EAB7A00558C4F9AE02/s40rj01btqU-m0GSYQSBpdiBZUY.mft File: s40rj01btqU-m0GSYQSBpdiBZUY.mft (raw, json) Hash identifier: RvCWSzke3SRs+yEZJ6Aqwqks9ufHxpHGfQen1x0wVrg= Subject key identifier: 48:50:2F:C9:8F:03:B8:8F:4B:09:C5:89:AA:C6:C4:CB:46:95:14:10 Authority key identifier: B3:8D:2B:8F:4D:5B:B6:A5:3E:9B:41:92:61:04:81:A5:D8:81:65:46 Certificate issuer: /CN=A91E12AD/serialNumber=B38D2B8F4D5BB6A53E9B4192610481A5D8816546 Certificate serial: 0ADF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/s40rj01btqU-m0GSYQSBpdiBZUY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E12AD/38DAA06C4B2111EAB7A00558C4F9AE02/s40rj01btqU-m0GSYQSBpdiBZUY.mft Manifest number: 0AD8 Signing time: Fri 30 May 2025 19:37:15 +0000 Manifest this update: Fri 30 May 2025 19:37:15 +0000 Manifest next update: Fri 06 Jun 2025 19:37:15 +0000 Files and hashes: 1: s40rj01btqU-m0GSYQSBpdiBZUY.crl (hash: 9TYpie0uJzX4tt/3IjF5L35XL3pqhxuTk2PYTdVkdqQ=) 2: 1E1E9122565411EBA14ED510C4F9AE02.roa (hash: j/OpYEtDuYk8PfhysOsvn+uhuepZ3xGdAVnmL79tUAw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E12AD/38DAA06C4B2111EAB7A00558C4F9AE02/s40rj01btqU-m0GSYQSBpdiBZUY.crl rsync://rpki.apnic.net/member_repository/A91E12AD/38DAA06C4B2111EAB7A00558C4F9AE02/s40rj01btqU-m0GSYQSBpdiBZUY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/s40rj01btqU-m0GSYQSBpdiBZUY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 19:37:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2783 (0xadf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E12AD, serialNumber=B38D2B8F4D5BB6A53E9B4192610481A5D8816546 Validity Not Before: May 30 19:37:15 2025 GMT Not After : Jun 6 19:37:15 2025 GMT Subject: CN=683a08eb-2172 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:5a:50:c9:38:b9:bf:cf:01:43:38:3f:10:29: da:38:96:29:80:a4:57:be:8b:3d:1b:91:df:fa:56: f3:eb:84:d8:d3:91:1e:bd:55:18:70:eb:74:9b:bb: ff:6a:44:30:f9:57:d0:10:f3:dd:cc:d7:61:e6:c9: 41:9c:3d:78:fd:e6:e5:3d:2f:e4:71:7c:b7:b0:6a: 09:43:0a:c8:47:ef:c2:36:72:31:a7:62:fc:9b:71: e8:a0:18:30:87:e9:62:fe:29:ed:9f:c7:1a:6b:7c: 19:ef:9a:fe:0b:88:f0:62:2d:a0:77:15:0c:82:51: 70:87:04:71:0f:db:b1:56:36:f9:42:19:14:f7:67: 58:d3:9e:11:44:4f:e3:8c:72:d4:ea:81:14:64:e6: ec:f7:0e:ee:f5:f0:e3:3c:46:47:74:7e:66:c5:4a: 60:f6:67:d6:11:a2:33:80:0e:a0:93:c7:90:39:81: 52:15:e9:2e:47:e5:a0:8f:23:46:0c:ce:f7:d1:0e: 30:ca:ac:27:1a:9a:4c:12:88:96:34:06:07:d8:6f: d9:4c:eb:ba:f3:ee:a8:e4:0c:39:cc:d1:22:53:1a: 62:7b:69:8a:37:65:45:af:98:67:e5:08:3a:8c:6b: 9b:97:4c:0d:99:ff:a0:6d:bd:4c:14:9d:e3:a1:e3: 8d:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 48:50:2F:C9:8F:03:B8:8F:4B:09:C5:89:AA:C6:C4:CB:46:95:14:10 X509v3 Authority Key Identifier: keyid:B3:8D:2B:8F:4D:5B:B6:A5:3E:9B:41:92:61:04:81:A5:D8:81:65:46 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E12AD/38DAA06C4B2111EAB7A00558C4F9AE02/s40rj01btqU-m0GSYQSBpdiBZUY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/s40rj01btqU-m0GSYQSBpdiBZUY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E12AD/38DAA06C4B2111EAB7A00558C4F9AE02/s40rj01btqU-m0GSYQSBpdiBZUY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 96:b9:2b:b9:62:20:3e:af:6e:a9:10:5a:83:c5:2f:bb:fe:51: 0d:6f:0e:f4:2d:5c:7a:36:7a:a1:36:70:a2:74:2d:5b:2d:c5: c3:29:e4:62:e1:0f:d4:db:14:42:ed:22:3d:f6:c2:5b:c2:47: b4:f4:29:83:81:b8:fd:fb:da:d2:7f:bc:90:c7:9f:c3:0e:90: 9d:5c:7d:80:de:5f:47:78:f1:82:ba:ca:f3:d5:27:d3:62:f6: 5f:a6:0a:9e:bb:fb:5d:1f:8c:34:41:76:61:0e:ca:ab:75:d0: 49:38:9e:c0:2e:0c:d0:5a:88:f7:4c:b7:6e:02:a0:75:c1:70: 79:ab:92:84:ce:ab:03:c9:2e:49:97:40:45:dc:cb:ac:56:a1: b1:2b:9e:25:39:bc:92:cd:39:a7:d5:6a:9c:c6:20:e4:26:35: 9f:da:53:0d:a0:40:7a:6d:56:69:75:b6:af:32:e0:00:6a:2c: 8a:3d:ef:00:3d:9f:35:81:5e:39:24:fd:d4:cb:7f:d2:21:70: 46:03:81:00:61:ae:d1:4e:a1:9e:c1:94:87:8f:94:54:71:a2: 4c:8c:1c:84:94:c2:bc:25:ba:bf:57:50:90:07:9c:7e:02:d7: e4:45:00:d4:1c:9f:21:80:6d:1e:6c:2a:00:d4:96:e1:63:c1: 89:19:ea:b2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCt8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTEyQUQxMTAvBgNVBAUTKEIzOEQyQjhGNEQ1QkI2QTUzRTlCNDE5MjYxMDQ4MUE1 RDg4MTY1NDYwHhcNMjUwNTMwMTkzNzE1WhcNMjUwNjA2MTkzNzE1WjAYMRYwFAYD VQQDEw02ODNhMDhlYi0yMTcyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArVpQyTi5v88BQzg/ECnaOJYpgKRXvos9G5Hf+lbz64TY05EevVUYcOt0m7v/ akQw+VfQEPPdzNdh5slBnD14/eblPS/kcXy3sGoJQwrIR+/CNnIxp2L8m3HooBgw h+li/intn8caa3wZ75r+C4jwYi2gdxUMglFwhwRxD9uxVjb5QhkU92dY054RRE/j jHLU6oEUZObs9w7u9fDjPEZHdH5mxUpg9mfWEaIzgA6gk8eQOYFSFekuR+WgjyNG DM730Q4wyqwnGppMEoiWNAYH2G/ZTOu68+6o5Aw5zNEiUxpie2mKN2VFr5hn5Qg6 jGubl0wNmf+gbb1MFJ3joeON/QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEhQL8mP A7iPSwnFiarGxMtGlRQQMB8GA1UdIwQYMBaAFLONK49NW7alPptBkmEEgaXYgWVG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMTJBRC8zOERBQTA2QzRC MjExMUVBQjdBMDA1NThDNEY5QUUwMi9zNDByajAxYnRxVS1tMEdTWVFTQnBkaUJa VVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3M0MHJqMDFidHFVLW0wR1NZUVNCcGRpQlpVWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MTJBRC8zOERBQTA2QzRCMjExMUVBQjdBMDA1NThDNEY5QUUwMi9zNDByajAxYnRx VS1tMEdTWVFTQnBkaUJaVVkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCWuSu5YiA+r26pEFqDxS+7/lENbw70LVx6NnqhNnCidC1bLcXDKeRi 4Q/U2xRC7SI99sJbwke09CmDgbj9+9rSf7yQx5/DDpCdXH2A3l9HePGCusrz1SfT YvZfpgqeu/tdH4w0QXZhDsqrddBJOJ7ALgzQWoj3TLduAqB1wXB5q5KEzqsDyS5J l0BF3MusVqGxK54lObySzTmn1WqcxiDkJjWf2lMNoEB6bVZpdbavMuAAaiyKPe8A PZ81gV45JP3Uy3/SIXBGA4EAYa7RTqGewZSHj5RUcaJMjByElMK8Jbq/V1CQB5x+ AtfkRQDUHJ8hgG0ebCoA1JbhY8GJGeqy -----END CERTIFICATE-----Generated at Sat May 31 17:02:15 2025 by rpki-client