$ rpki-client -vvf rpki.apnic.net/member_repository/A91E1498/B3C8A97CDFB511EEB7AD8F2EC4F9AE02/rc1aTbWZxxrtk9CWqxTK-ggV5hc.mft File: rc1aTbWZxxrtk9CWqxTK-ggV5hc.mft (raw, json) Hash identifier: Auz0mwEHTD5eHAA2gqlnN17Bqi8Cav+d1/Pf6yj9X6M= Subject key identifier: 65:B5:55:79:81:2C:61:10:92:06:A2:19:2F:99:F9:8C:79:00:7E:CD Authority key identifier: AD:CD:5A:4D:B5:99:C7:1A:ED:93:D0:96:AB:14:CA:FA:08:15:E6:17 Certificate issuer: /CN=A91E1498/serialNumber=ADCD5A4DB599C71AED93D096AB14CAFA0815E617 Certificate serial: F4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rc1aTbWZxxrtk9CWqxTK-ggV5hc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E1498/B3C8A97CDFB511EEB7AD8F2EC4F9AE02/rc1aTbWZxxrtk9CWqxTK-ggV5hc.mft Manifest number: EF Signing time: Tue 03 Jun 2025 05:07:14 +0000 Manifest this update: Tue 03 Jun 2025 05:07:14 +0000 Manifest next update: Tue 10 Jun 2025 05:07:14 +0000 Files and hashes: 1: rc1aTbWZxxrtk9CWqxTK-ggV5hc.crl (hash: QbmTOGntB9gQQ1OfxYq+OzUa9EYCU4s2ef+BH3Y7VrM=) 2: 6C523164E03F11EE87838439C4F9AE02.roa (hash: SK6ZvVianDlVw+18irRafax8Eg6g34dqTzqJORJNKeQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E1498/B3C8A97CDFB511EEB7AD8F2EC4F9AE02/rc1aTbWZxxrtk9CWqxTK-ggV5hc.crl rsync://rpki.apnic.net/member_repository/A91E1498/B3C8A97CDFB511EEB7AD8F2EC4F9AE02/rc1aTbWZxxrtk9CWqxTK-ggV5hc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rc1aTbWZxxrtk9CWqxTK-ggV5hc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 10 Jun 2025 05:07:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 244 (0xf4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E1498, serialNumber=ADCD5A4DB599C71AED93D096AB14CAFA0815E617 Validity Not Before: Jun 3 05:07:14 2025 GMT Not After : Jun 10 05:07:14 2025 GMT Subject: CN=683e8302-cf67 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:de:bd:ab:db:ab:1a:c1:30:60:b9:8e:f4:ee: f0:90:f1:af:f6:d8:2b:5d:9a:28:fc:f2:9d:ca:92: 80:16:52:5b:c1:15:35:0a:c8:5e:d1:c0:13:be:50: ba:99:77:90:e1:86:a0:f3:5f:c7:2d:f5:92:da:8e: c4:b4:4f:09:15:00:e4:59:9b:db:f5:6d:e8:04:b8: 46:dc:46:20:5c:fb:b3:29:43:90:57:0d:61:e4:99: e0:a2:96:fe:a9:0e:c3:3b:ea:f9:ef:b5:22:d1:c0: f1:e3:33:63:d1:8b:1b:bb:aa:96:ba:cc:a1:3f:24: ee:ae:4a:a4:55:13:78:5e:d6:2f:40:91:61:e6:2b: 64:a6:a5:e3:68:c4:a6:a1:6c:10:b1:69:84:c3:9a: ee:87:20:03:f0:e0:12:82:37:c0:d1:b9:61:34:9d: 29:c4:ac:ec:4a:ef:3b:31:7e:e1:a8:10:29:6a:ef: ce:ed:b5:66:50:c3:a1:d2:c3:b6:1a:3f:71:7a:b3: 1d:65:88:f9:74:e3:28:8f:45:68:b1:31:0c:7b:f2: 6c:07:55:d4:cd:95:c2:8e:8d:e3:57:5d:5e:39:09: bd:15:f5:5a:f9:30:c4:a2:1a:43:f4:92:db:7c:7e: 79:fe:7d:37:60:cb:49:1b:3d:4b:ff:f5:0e:ed:e2: 39:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 65:B5:55:79:81:2C:61:10:92:06:A2:19:2F:99:F9:8C:79:00:7E:CD X509v3 Authority Key Identifier: keyid:AD:CD:5A:4D:B5:99:C7:1A:ED:93:D0:96:AB:14:CA:FA:08:15:E6:17 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E1498/B3C8A97CDFB511EEB7AD8F2EC4F9AE02/rc1aTbWZxxrtk9CWqxTK-ggV5hc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rc1aTbWZxxrtk9CWqxTK-ggV5hc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E1498/B3C8A97CDFB511EEB7AD8F2EC4F9AE02/rc1aTbWZxxrtk9CWqxTK-ggV5hc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8d:1d:87:7d:61:3a:37:bb:af:78:53:48:c2:90:9f:14:db:7d: aa:2c:85:2b:4b:35:51:b3:b6:ec:2e:bc:5c:9f:ca:b8:36:30: 03:40:a0:36:53:a4:2f:41:4b:1a:b4:9a:48:c2:5f:a6:c5:22: df:d7:cf:e7:3a:97:19:c8:6d:68:15:d9:f7:0e:2c:59:f4:7e: e3:68:cf:ae:57:72:f8:04:7d:81:88:70:6d:30:6f:23:c5:0e: 87:a9:8c:a0:13:f6:fd:f1:a6:ad:3e:f6:f4:86:33:61:81:b5: 07:e4:ac:f7:1e:39:33:88:21:04:52:79:e3:43:a1:68:0e:d7: fa:2a:10:86:34:44:7d:9e:75:2a:b8:e3:08:03:ad:f0:da:88: 44:6c:4d:7e:e0:23:25:91:12:c0:51:6d:74:dc:14:17:ab:39: ef:1f:62:cb:50:46:8d:31:1d:53:a9:23:7d:b6:67:38:74:f5: 5e:ec:01:d2:b6:92:22:8f:34:d7:25:ab:62:e9:33:b7:b3:09: e6:19:a0:44:ed:9f:a4:23:45:97:fa:b5:cd:a2:ac:c6:30:6e: da:c7:bd:f2:41:db:f9:03:87:a3:1e:57:14:d1:f5:fa:b7:2c: 8d:fc:70:44:3d:2b:47:b2:d7:60:1b:91:0c:cd:8e:3c:54:46: da:a9:f3:0e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAPQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTE0OTgxMTAvBgNVBAUTKEFEQ0Q1QTREQjU5OUM3MUFFRDkzRDA5NkFCMTRDQUZB MDgxNUU2MTcwHhcNMjUwNjAzMDUwNzE0WhcNMjUwNjEwMDUwNzE0WjAYMRYwFAYD VQQDEw02ODNlODMwMi1jZjY3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0969q9urGsEwYLmO9O7wkPGv9tgrXZoo/PKdypKAFlJbwRU1Cshe0cATvlC6 mXeQ4Yag81/HLfWS2o7EtE8JFQDkWZvb9W3oBLhG3EYgXPuzKUOQVw1h5Jngopb+ qQ7DO+r577Ui0cDx4zNj0Ysbu6qWusyhPyTurkqkVRN4XtYvQJFh5itkpqXjaMSm oWwQsWmEw5ruhyAD8OASgjfA0blhNJ0pxKzsSu87MX7hqBApau/O7bVmUMOh0sO2 Gj9xerMdZYj5dOMoj0VosTEMe/JsB1XUzZXCjo3jV11eOQm9FfVa+TDEohpD9JLb fH55/n03YMtJGz1L//UO7eI5CQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGW1VXmB LGEQkgaiGS+Z+Yx5AH7NMB8GA1UdIwQYMBaAFK3NWk21mcca7ZPQlqsUyvoIFeYX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMTQ5OC9CM0M4QTk3Q0RG QjUxMUVFQjdBRDhGMkVDNEY5QUUwMi9yYzFhVGJXWnh4cnRrOUNXcXhUSy1nZ1Y1 aGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JjMWFUYldaeHhydGs5Q1dxeFRLLWdnVjVoYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MTQ5OC9CM0M4QTk3Q0RGQjUxMUVFQjdBRDhGMkVDNEY5QUUwMi9yYzFhVGJXWnh4 cnRrOUNXcXhUSy1nZ1Y1aGMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCNHYd9YTo3u694U0jCkJ8U232qLIUrSzVRs7bsLrxcn8q4NjADQKA2 U6QvQUsatJpIwl+mxSLf18/nOpcZyG1oFdn3DixZ9H7jaM+uV3L4BH2BiHBtMG8j xQ6HqYygE/b98aatPvb0hjNhgbUH5Kz3HjkziCEEUnnjQ6FoDtf6KhCGNER9nnUq uOMIA63w2ohEbE1+4CMlkRLAUW103BQXqznvH2LLUEaNMR1TqSN9tmc4dPVe7AHS tpIijzTXJati6TO3swnmGaBE7Z+kI0WX+rXNoqzGMG7ax73yQdv5A4ejHlcU0fX6 tyyN/HBEPStHstdgG5EMzY48VEbaqfMO -----END CERTIFICATE-----Generated at Tue Jun 3 23:09:12 2025 by rpki-client