$ rpki-client -vvf rpki.apnic.net/member_repository/A91F2B54/727375B4D4F511EC8E13FE4EC4F9AE02/IrN0ThSJpKURK82Mvxepj_HbZnU.mft File: IrN0ThSJpKURK82Mvxepj_HbZnU.mft (raw, json) Hash identifier: yRgmfpZyyHSlkx357fYVcmXAPxK/CHJnGy3w50Uae9w= Subject key identifier: 59:EE:A4:D9:3B:4D:CA:94:60:EE:15:0A:D0:74:1C:E9:5C:98:B3:00 Authority key identifier: 22:B3:74:4E:14:89:A4:A5:11:2B:CD:8C:BF:17:A9:8F:F1:DB:66:75 Certificate issuer: /CN=A91F2B54/serialNumber=22B3744E1489A4A5112BCD8CBF17A98FF1DB6675 Certificate serial: 0312 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IrN0ThSJpKURK82Mvxepj_HbZnU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F2B54/727375B4D4F511EC8E13FE4EC4F9AE02/IrN0ThSJpKURK82Mvxepj_HbZnU.mft Manifest number: 030B Signing time: Sat 31 May 2025 01:25:26 +0000 Manifest this update: Sat 31 May 2025 01:25:26 +0000 Manifest next update: Sat 07 Jun 2025 01:25:26 +0000 Files and hashes: 1: IrN0ThSJpKURK82Mvxepj_HbZnU.crl (hash: bYOzNQ0oA5hMG1CikPRBtwt74XiO8UXa7Qi1DxBm5XU=) 2: F2C91F5678BE11EFBB3FC76DC4F9AE02.roa (hash: du3inK9qkjwR/A2n6vO6SMQjDynHJ0y0PAziJifzAng=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F2B54/727375B4D4F511EC8E13FE4EC4F9AE02/IrN0ThSJpKURK82Mvxepj_HbZnU.crl rsync://rpki.apnic.net/member_repository/A91F2B54/727375B4D4F511EC8E13FE4EC4F9AE02/IrN0ThSJpKURK82Mvxepj_HbZnU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IrN0ThSJpKURK82Mvxepj_HbZnU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 01:25:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 786 (0x312) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F2B54, serialNumber=22B3744E1489A4A5112BCD8CBF17A98FF1DB6675 Validity Not Before: May 31 01:25:26 2025 GMT Not After : Jun 7 01:25:26 2025 GMT Subject: CN=683a5a86-08cb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:93:a8:05:1c:96:a5:67:08:e7:b2:97:3b:e8: 4b:21:af:24:e1:ae:86:be:35:54:b9:f4:d9:cf:8a: 55:60:bd:7e:b7:e2:05:86:e3:8d:ec:c6:f8:38:7d: e7:7a:28:5c:d3:3e:ca:eb:cf:67:46:85:44:3e:60: e1:74:b8:2d:f0:5d:74:8c:b4:40:13:0b:12:0f:0e: e1:fd:4f:33:df:63:a0:52:2a:91:e9:22:a9:41:2c: c2:ad:17:78:50:f6:cc:c2:81:bc:73:c6:d6:f1:24: 4d:b3:f6:68:77:f3:1f:e1:f8:88:d6:91:c1:23:1f: 18:b2:19:a4:fb:99:6c:71:41:63:01:76:0a:81:a5: 97:09:02:5f:7d:e5:73:bc:6f:65:99:dc:bc:0a:f9: b7:73:f8:76:fe:f9:7a:24:fb:be:85:fd:25:4b:e7: 14:a6:88:fc:b9:64:d0:30:9b:d4:e5:a6:93:a5:66: 91:5c:64:56:9d:35:7e:35:bb:23:96:ba:9a:5e:53: 2a:e7:75:32:5c:3c:63:16:d1:84:e7:2e:78:42:57: c2:62:76:6b:f8:67:0e:a7:12:1a:50:c1:51:b4:b0: 31:68:66:13:50:f5:a8:26:2c:51:b5:04:b9:ad:5f: e2:b2:56:0b:5d:0b:ab:a5:4a:88:1a:1d:97:35:5e: 90:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 59:EE:A4:D9:3B:4D:CA:94:60:EE:15:0A:D0:74:1C:E9:5C:98:B3:00 X509v3 Authority Key Identifier: keyid:22:B3:74:4E:14:89:A4:A5:11:2B:CD:8C:BF:17:A9:8F:F1:DB:66:75 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F2B54/727375B4D4F511EC8E13FE4EC4F9AE02/IrN0ThSJpKURK82Mvxepj_HbZnU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IrN0ThSJpKURK82Mvxepj_HbZnU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F2B54/727375B4D4F511EC8E13FE4EC4F9AE02/IrN0ThSJpKURK82Mvxepj_HbZnU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 67:de:94:41:80:6e:be:b2:15:3e:52:08:2d:eb:2a:60:e8:98: ca:c1:74:9e:34:6b:e8:d7:62:0e:35:c9:6e:8d:49:03:ea:dd: f2:61:8a:34:e4:b3:9d:01:a0:01:97:0c:a3:94:52:25:0d:fe: f6:ff:3c:47:29:eb:d8:fe:af:f6:37:0e:61:43:39:61:24:83: b5:dc:ed:9c:1e:dd:2a:44:c8:ef:f2:5a:ee:b0:c1:34:5c:57: 1d:02:d0:81:3b:99:d7:26:93:ca:a8:2e:88:98:f6:be:c2:d8: 94:5e:ce:5d:d8:91:53:a7:02:41:fc:79:2e:b7:d1:9e:77:aa: 4d:49:12:51:f8:00:2c:89:84:11:e8:6e:fa:9b:61:f3:76:b9: 5c:bc:84:08:ea:2f:7f:0b:33:0b:d6:5f:05:60:b4:8b:83:8e: 34:d1:2b:70:0b:b0:d2:62:c5:50:ac:9a:57:9b:3d:d6:c7:f6: 81:2a:8a:ed:9a:15:1a:42:25:1a:85:4c:f6:27:7e:62:b9:49: 08:e5:84:cf:50:ef:ad:f3:a3:11:62:8e:20:77:be:7d:bd:1c: 24:c7:cd:db:b2:fd:12:29:0c:0c:4a:1f:91:e3:2e:81:73:74: 9f:c7:51:78:a9:2e:8b:27:96:a7:5e:b3:ff:df:f4:0f:93:b4: 41:c5:60:62 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAxIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjJCNTQxMTAvBgNVBAUTKDIyQjM3NDRFMTQ4OUE0QTUxMTJCQ0Q4Q0JGMTdBOThG RjFEQjY2NzUwHhcNMjUwNTMxMDEyNTI2WhcNMjUwNjA3MDEyNTI2WjAYMRYwFAYD VQQDEw02ODNhNWE4Ni0wOGNiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyZOoBRyWpWcI57KXO+hLIa8k4a6GvjVUufTZz4pVYL1+t+IFhuON7Mb4OH3n eihc0z7K689nRoVEPmDhdLgt8F10jLRAEwsSDw7h/U8z32OgUiqR6SKpQSzCrRd4 UPbMwoG8c8bW8SRNs/Zod/Mf4fiI1pHBIx8Yshmk+5lscUFjAXYKgaWXCQJffeVz vG9lmdy8Cvm3c/h2/vl6JPu+hf0lS+cUpoj8uWTQMJvU5aaTpWaRXGRWnTV+Nbsj lrqaXlMq53UyXDxjFtGE5y54QlfCYnZr+GcOpxIaUMFRtLAxaGYTUPWoJixRtQS5 rV/islYLXQurpUqIGh2XNV6Q9wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFnupNk7 TcqUYO4VCtB0HOlcmLMAMB8GA1UdIwQYMBaAFCKzdE4UiaSlESvNjL8XqY/x22Z1 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMkI1NC83MjczNzVCNEQ0 RjUxMUVDOEUxM0ZFNEVDNEY5QUUwMi9Jck4wVGhTSnBLVVJLODJNdnhlcGpfSGJa blUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lyTjBUaFNKcEtVUks4Mk12eGVwal9IYlpuVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG MkI1NC83MjczNzVCNEQ0RjUxMUVDOEUxM0ZFNEVDNEY5QUUwMi9Jck4wVGhTSnBL VVJLODJNdnhlcGpfSGJablUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBn3pRBgG6+shU+Uggt6ypg6JjKwXSeNGvo12IONclujUkD6t3yYYo0 5LOdAaABlwyjlFIlDf72/zxHKevY/q/2Nw5hQzlhJIO13O2cHt0qRMjv8lrusME0 XFcdAtCBO5nXJpPKqC6ImPa+wtiUXs5d2JFTpwJB/Hkut9Ged6pNSRJR+AAsiYQR 6G76m2HzdrlcvIQI6i9/CzML1l8FYLSLg4400StwC7DSYsVQrJpXmz3Wx/aBKort mhUaQiUahUz2J35iuUkI5YTPUO+t86MRYo4gd759vRwkx83bsv0SKQwMSh+R4y6B c3Sfx1F4qS6LJ5anXrP/3/QPk7RBxWBi -----END CERTIFICATE-----Generated at Sat May 31 17:04:58 2025 by rpki-client