$ rpki-client -vvf rpki.apnic.net/member_repository/A91E1511/8D34323C13F811EFA384CE23C4F9AE02/29u3f7gUXp1EhgdPtz74TVSOpiI.mft File: 29u3f7gUXp1EhgdPtz74TVSOpiI.mft (raw, json) Hash identifier: u9D7L1m1iWcXDcV53XDxqllEtVaxIjA9R1zqD/Ft0oc= Subject key identifier: 10:87:FF:83:B0:8D:F8:C9:7C:C5:0B:A1:CC:E1:0F:4A:94:D5:F3:09 Authority key identifier: DB:DB:B7:7F:B8:14:5E:9D:44:86:07:4F:B7:3E:F8:4D:54:8E:A6:22 Certificate issuer: /CN=A91E1511/serialNumber=DBDBB77FB8145E9D4486074FB73EF84D548EA622 Certificate serial: C3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/29u3f7gUXp1EhgdPtz74TVSOpiI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E1511/8D34323C13F811EFA384CE23C4F9AE02/29u3f7gUXp1EhgdPtz74TVSOpiI.mft Manifest number: C2 Signing time: Sat 31 May 2025 05:24:14 +0000 Manifest this update: Sat 31 May 2025 05:24:14 +0000 Manifest next update: Sat 07 Jun 2025 05:24:14 +0000 Files and hashes: 1: 29u3f7gUXp1EhgdPtz74TVSOpiI.crl (hash: xOOiqlgd3A9bwzsfQvY13m1dQjGz8eGHkm7kCiS5DGI=) 2: 5741EB0A159311EFA0CC790BC4F9AE02.roa (hash: jE4GzHd14AerZws/zq+eZy5XQS34aDVO012G4f0K8Tw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E1511/8D34323C13F811EFA384CE23C4F9AE02/29u3f7gUXp1EhgdPtz74TVSOpiI.crl rsync://rpki.apnic.net/member_repository/A91E1511/8D34323C13F811EFA384CE23C4F9AE02/29u3f7gUXp1EhgdPtz74TVSOpiI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/29u3f7gUXp1EhgdPtz74TVSOpiI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 05:24:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 195 (0xc3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E1511, serialNumber=DBDBB77FB8145E9D4486074FB73EF84D548EA622 Validity Not Before: May 31 05:24:14 2025 GMT Not After : Jun 7 05:24:14 2025 GMT Subject: CN=683a927e-9bf5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:2b:db:14:3b:ae:a9:fd:bc:79:1e:ae:5d:9b: 76:b4:b7:e1:9f:ff:b3:a5:81:af:7d:31:00:7c:8f: df:0e:5d:68:98:c4:2b:65:8e:94:90:b5:c3:96:ed: 1d:85:4a:b1:b0:30:49:d7:c3:5d:87:0e:fc:97:04: 56:01:63:55:4a:cd:3d:3f:f4:20:34:0a:3c:7e:13: 56:c6:e7:30:6d:7c:38:0e:63:9e:74:8d:14:cc:2b: d4:00:34:b1:0e:1f:5f:37:12:3f:66:21:88:b6:9e: 1b:25:5e:2f:ad:00:1f:d2:56:a1:80:03:7e:4a:ca: f7:0c:50:a6:f5:99:32:d8:bb:64:a6:01:2b:de:e5: 5f:a9:06:bb:d8:48:59:19:ba:74:c4:b5:cd:04:27: 4c:8c:9b:ab:3a:b6:48:b1:d3:f2:4d:c3:a3:95:6d: a0:08:9c:0c:6c:a4:5a:9e:c0:10:ad:57:17:92:a6: e2:6b:fe:f4:83:f6:f4:36:91:d3:9c:ca:c2:34:cf: 53:78:82:ed:59:66:bc:01:a3:07:fe:b8:f8:f5:41: e4:43:53:77:1d:26:72:27:88:7e:e8:b4:10:11:71: 09:c7:1d:59:cd:2b:31:ec:fa:5d:d6:8e:77:65:2f: 4f:29:ea:85:a1:07:36:52:2b:c0:02:59:3c:ba:48: b1:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 10:87:FF:83:B0:8D:F8:C9:7C:C5:0B:A1:CC:E1:0F:4A:94:D5:F3:09 X509v3 Authority Key Identifier: keyid:DB:DB:B7:7F:B8:14:5E:9D:44:86:07:4F:B7:3E:F8:4D:54:8E:A6:22 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E1511/8D34323C13F811EFA384CE23C4F9AE02/29u3f7gUXp1EhgdPtz74TVSOpiI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/29u3f7gUXp1EhgdPtz74TVSOpiI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E1511/8D34323C13F811EFA384CE23C4F9AE02/29u3f7gUXp1EhgdPtz74TVSOpiI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5e:bd:c4:7e:9e:8f:e3:c4:18:22:73:92:37:5f:91:4a:39:d6: 15:f7:38:56:9b:6e:ec:39:88:f8:c4:3f:f7:41:0e:4b:f3:c4: fd:4e:51:a0:73:f9:cb:98:e3:78:a1:92:1a:0c:8a:00:38:87: e5:66:d4:42:b3:3a:5d:4e:1a:3f:1d:97:06:84:2e:46:06:65: c8:6f:70:ad:9e:29:64:90:f3:34:8f:7f:72:37:e5:85:3a:59: 8b:d1:e3:4e:7d:d2:c9:ee:17:ba:97:8c:09:ed:02:6d:97:c8: 6c:36:fc:65:39:3d:4d:1b:5b:2e:fe:bb:b3:9d:27:d6:59:03: b3:f4:fd:30:64:f4:c2:cc:7b:e8:71:41:9b:79:1b:21:1a:03: af:fb:f2:42:30:d8:b3:be:62:6e:a1:8a:31:a4:b3:50:2f:cb: 5b:aa:d6:90:38:79:ef:a7:17:62:af:52:3f:de:42:8f:c7:fe: a2:67:d3:1c:b2:c5:21:8d:6f:47:ac:19:d7:0d:5d:7b:4a:d8: 1e:83:46:95:c4:e5:be:db:f5:a0:f5:c0:c5:45:82:99:3f:3a: 3e:25:00:ce:8b:70:b9:6f:b2:71:2d:e4:5d:f7:8a:c1:6a:3a: 69:1b:cf:9d:b3:dc:d0:5b:37:d5:b0:ff:f6:a5:b1:dd:1c:82: 6c:a6:4a:e6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAMMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTE1MTExMTAvBgNVBAUTKERCREJCNzdGQjgxNDVFOUQ0NDg2MDc0RkI3M0VGODRE NTQ4RUE2MjIwHhcNMjUwNTMxMDUyNDE0WhcNMjUwNjA3MDUyNDE0WjAYMRYwFAYD VQQDEw02ODNhOTI3ZS05YmY1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvyvbFDuuqf28eR6uXZt2tLfhn/+zpYGvfTEAfI/fDl1omMQrZY6UkLXDlu0d hUqxsDBJ18Ndhw78lwRWAWNVSs09P/QgNAo8fhNWxucwbXw4DmOedI0UzCvUADSx Dh9fNxI/ZiGItp4bJV4vrQAf0lahgAN+Ssr3DFCm9Zky2LtkpgEr3uVfqQa72EhZ Gbp0xLXNBCdMjJurOrZIsdPyTcOjlW2gCJwMbKRansAQrVcXkqbia/70g/b0NpHT nMrCNM9TeILtWWa8AaMH/rj49UHkQ1N3HSZyJ4h+6LQQEXEJxx1ZzSsx7Ppd1o53 ZS9PKeqFoQc2UivAAlk8ukixtQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBCH/4Ow jfjJfMULoczhD0qU1fMJMB8GA1UdIwQYMBaAFNvbt3+4FF6dRIYHT7c++E1UjqYi MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMTUxMS84RDM0MzIzQzEz RjgxMUVGQTM4NENFMjNDNEY5QUUwMi8yOXUzZjdnVVhwMUVoZ2RQdHo3NFRWU09w aUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzI5dTNmN2dVWHAxRWhnZFB0ejc0VFZTT3BpSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MTUxMS84RDM0MzIzQzEzRjgxMUVGQTM4NENFMjNDNEY5QUUwMi8yOXUzZjdnVVhw MUVoZ2RQdHo3NFRWU09waUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBevcR+no/jxBgic5I3X5FKOdYV9zhWm27sOYj4xD/3QQ5L88T9TlGg c/nLmON4oZIaDIoAOIflZtRCszpdTho/HZcGhC5GBmXIb3CtnilkkPM0j39yN+WF OlmL0eNOfdLJ7he6l4wJ7QJtl8hsNvxlOT1NG1su/ruznSfWWQOz9P0wZPTCzHvo cUGbeRshGgOv+/JCMNizvmJuoYoxpLNQL8tbqtaQOHnvpxdir1I/3kKPx/6iZ9Mc ssUhjW9HrBnXDV17Stgeg0aVxOW+2/Wg9cDFRYKZPzo+JQDOi3C5b7JxLeRd94rB ajppG8+ds9zQWzfVsP/2pbHdHIJspkrm -----END CERTIFICATE-----Generated at Sat May 31 16:43:49 2025 by rpki-client