$ rpki-client -vvf rpki.apnic.net/member_repository/A91FB434/E2C6267642D311E8BBDC0941C4F9AE02/1bScAI9ih18VJth200lAoJsOnW0.mft File: 1bScAI9ih18VJth200lAoJsOnW0.mft (raw, json) Hash identifier: ehk4Ij0druM2Llf0Vng62qprIEw/q1p8/TXGpqK2NQ0= Subject key identifier: 27:09:22:1E:CF:C0:73:51:AB:E3:7B:BA:51:78:C4:12:50:02:24:6E Authority key identifier: D5:B4:9C:00:8F:62:87:5F:15:26:D8:76:D3:49:40:A0:9B:0E:9D:6D Certificate issuer: /CN=A91FB434/serialNumber=D5B49C008F62875F1526D876D34940A09B0E9D6D Certificate serial: 154C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1bScAI9ih18VJth200lAoJsOnW0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FB434/E2C6267642D311E8BBDC0941C4F9AE02/1bScAI9ih18VJth200lAoJsOnW0.mft Manifest number: 153A Signing time: Fri 30 May 2025 16:58:49 +0000 Manifest this update: Fri 30 May 2025 16:58:49 +0000 Manifest next update: Fri 06 Jun 2025 16:58:49 +0000 Files and hashes: 1: 1bScAI9ih18VJth200lAoJsOnW0.crl (hash: +A79k8x3QUAS9laIW3cLtf78e1dp+Hcs9bYX/oMWhhw=) 2: EC796D6C42D411E88EC29742C4F9AE02.roa (hash: fttFYbQ36BNhaDw4KkKJxxNjWTmLtF2Lj6rIn6jBjOw=) 3: EB843B92329A11EE89CD8544C4F9AE02.roa (hash: 1pX1xgZiUndMELmZkTsenLOVPD7ayPzn9r1F8xRSN8U=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FB434/E2C6267642D311E8BBDC0941C4F9AE02/1bScAI9ih18VJth200lAoJsOnW0.crl rsync://rpki.apnic.net/member_repository/A91FB434/E2C6267642D311E8BBDC0941C4F9AE02/1bScAI9ih18VJth200lAoJsOnW0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1bScAI9ih18VJth200lAoJsOnW0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 16:58:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5452 (0x154c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FB434, serialNumber=D5B49C008F62875F1526D876D34940A09B0E9D6D Validity Not Before: May 30 16:58:49 2025 GMT Not After : Jun 6 16:58:49 2025 GMT Subject: CN=6839e3c9-34c6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:3c:ec:c2:ed:0d:c5:af:8c:58:a8:e3:bc:6b: 42:65:2c:65:74:49:a6:6a:26:a5:56:7d:03:20:bd: 4f:c7:56:d5:bc:dc:e5:c7:52:d0:29:a8:c6:ee:c2: 9a:f5:bc:86:48:8e:a9:ad:67:ef:62:cc:e1:82:50: ba:82:68:77:7c:60:84:d0:f9:c0:87:01:b0:93:39: 8b:01:ec:d3:eb:dd:c5:b6:c5:7b:a2:49:14:cc:4c: fd:9f:66:f2:e1:32:88:64:1f:73:5e:71:9a:1b:36: fa:83:97:6a:d2:c9:4a:00:98:d8:3c:0f:1b:3b:34: d7:35:0b:79:96:9e:64:d4:ad:71:16:73:3b:9d:4b: e3:7d:bc:2d:14:db:9a:6e:f6:98:94:9a:93:ea:3c: 3c:d4:20:26:f9:f8:81:59:59:fc:2b:dc:62:2e:82: be:d8:e9:67:a5:fd:cf:c5:e6:c8:76:1a:a6:2b:1a: a2:fe:86:c1:b6:86:30:14:08:ca:69:9d:51:7b:a2: a2:dd:f2:0d:7a:77:46:ae:b2:6d:13:7c:25:f8:96: 12:67:49:59:1c:72:6e:64:89:1a:2d:a0:b6:5b:3a: 3e:7e:7b:0b:fb:5b:2d:8d:a9:41:61:c3:60:04:3e: d4:8c:91:fe:4e:7d:38:8b:d2:98:f5:6a:74:cc:18: e8:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 27:09:22:1E:CF:C0:73:51:AB:E3:7B:BA:51:78:C4:12:50:02:24:6E X509v3 Authority Key Identifier: keyid:D5:B4:9C:00:8F:62:87:5F:15:26:D8:76:D3:49:40:A0:9B:0E:9D:6D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FB434/E2C6267642D311E8BBDC0941C4F9AE02/1bScAI9ih18VJth200lAoJsOnW0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1bScAI9ih18VJth200lAoJsOnW0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FB434/E2C6267642D311E8BBDC0941C4F9AE02/1bScAI9ih18VJth200lAoJsOnW0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 88:f5:d4:b2:e8:55:9d:54:ea:f5:ea:f4:9c:8f:6e:8f:9b:f1: 5c:2c:34:e1:a7:4c:91:4a:c2:aa:ba:85:df:7f:3d:e5:46:dc: b3:14:58:07:88:ab:1f:62:cc:0c:cf:c5:57:8a:b8:9c:af:1c: a9:30:b5:b6:0e:33:5d:26:42:58:82:03:2f:15:cf:e1:e1:fb: ab:2e:99:48:8f:6b:e5:ba:67:67:5a:28:de:b5:10:e0:c9:fe: 4f:2a:d5:8e:cf:3f:32:0e:31:80:cf:00:52:e3:ea:83:85:0e: bb:96:aa:ba:01:83:65:ea:6a:dd:8b:46:4b:f0:f5:d0:15:ab: 5f:d1:d5:3f:9f:04:e1:d0:27:d6:7b:f8:a8:3b:c9:83:75:11: f1:0e:0a:cb:f0:ee:6a:63:ec:5a:8f:64:4a:91:17:2d:0b:63: d2:a7:76:b1:b2:3f:c7:10:01:2d:aa:34:1a:d6:92:9d:a9:55: 61:19:a9:0f:27:bc:c9:d2:fc:93:24:5f:51:fd:42:21:53:f5: f7:23:d7:66:9d:70:2a:b0:4b:6a:1a:48:e1:d6:ab:3e:8b:59: dc:a2:79:fc:4f:77:45:e9:15:4a:1e:d4:5c:c1:01:40:dc:ff: f3:de:c0:56:2f:65:de:93:02:f0:75:dc:84:13:3c:f8:2c:32: 27:ec:9f:c5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICFUwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkI0MzQxMTAvBgNVBAUTKEQ1QjQ5QzAwOEY2Mjg3NUYxNTI2RDg3NkQzNDk0MEEw OUIwRTlENkQwHhcNMjUwNTMwMTY1ODQ5WhcNMjUwNjA2MTY1ODQ5WjAYMRYwFAYD VQQDEw02ODM5ZTNjOS0zNGM2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqzzswu0Nxa+MWKjjvGtCZSxldEmmaialVn0DIL1Px1bVvNzlx1LQKajG7sKa 9byGSI6prWfvYszhglC6gmh3fGCE0PnAhwGwkzmLAezT693FtsV7okkUzEz9n2by 4TKIZB9zXnGaGzb6g5dq0slKAJjYPA8bOzTXNQt5lp5k1K1xFnM7nUvjfbwtFNua bvaYlJqT6jw81CAm+fiBWVn8K9xiLoK+2Olnpf3PxebIdhqmKxqi/obBtoYwFAjK aZ1Re6Ki3fINendGrrJtE3wl+JYSZ0lZHHJuZIkaLaC2Wzo+fnsL+1stjalBYcNg BD7UjJH+Tn04i9KY9Wp0zBjoowIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCcJIh7P wHNRq+N7ulF4xBJQAiRuMB8GA1UdIwQYMBaAFNW0nACPYodfFSbYdtNJQKCbDp1t MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQjQzNC9FMkM2MjY3NjQy RDMxMUU4QkJEQzA5NDFDNEY5QUUwMi8xYlNjQUk5aWgxOFZKdGgyMDBsQW9Kc09u VzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFiU2NBSTlpaDE4Vkp0aDIwMGxBb0pzT25XMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG QjQzNC9FMkM2MjY3NjQyRDMxMUU4QkJEQzA5NDFDNEY5QUUwMi8xYlNjQUk5aWgx OFZKdGgyMDBsQW9Kc09uVzAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCI9dSy6FWdVOr16vScj26Pm/FcLDThp0yRSsKquoXffz3lRtyzFFgH iKsfYswMz8VXiricrxypMLW2DjNdJkJYggMvFc/h4furLplIj2vlumdnWijetRDg yf5PKtWOzz8yDjGAzwBS4+qDhQ67lqq6AYNl6mrdi0ZL8PXQFatf0dU/nwTh0CfW e/ioO8mDdRHxDgrL8O5qY+xaj2RKkRctC2PSp3axsj/HEAEtqjQa1pKdqVVhGakP J7zJ0vyTJF9R/UIhU/X3I9dmnXAqsEtqGkjh1qs+i1nconn8T3dF6RVKHtRcwQFA 3P/z3sBWL2XekwLwddyEEzz4LDIn7J/F -----END CERTIFICATE-----Generated at Sat May 31 16:44:48 2025 by rpki-client