$ rpki-client -vvf rpki.apnic.net/member_repository/A91394E7/F4CFD1DAAC7311EF87FC554CC4F9AE02/iR7Yuqwsc70TrcqhoWqvANIkqHc.mft File: iR7Yuqwsc70TrcqhoWqvANIkqHc.mft (raw, json) Hash identifier: 0swSgWJV20E4uh7kaeJbzhuQB7emMzjbYml5xvX24zQ= Subject key identifier: 90:DD:4C:19:A5:A1:B9:49:D3:09:09:58:D7:17:C4:78:B7:9A:AC:73 Authority key identifier: 89:1E:D8:BA:AC:2C:73:BD:13:AD:CA:A1:A1:6A:AF:00:D2:24:A8:77 Certificate issuer: /CN=A91394E7/serialNumber=891ED8BAAC2C73BD13ADCAA1A16AAF00D224A877 Certificate serial: 5E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iR7Yuqwsc70TrcqhoWqvANIkqHc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91394E7/F4CFD1DAAC7311EF87FC554CC4F9AE02/iR7Yuqwsc70TrcqhoWqvANIkqHc.mft Manifest number: 5B Signing time: Sun 11 May 2025 05:56:57 +0000 Manifest this update: Sun 11 May 2025 05:56:56 +0000 Manifest next update: Sun 18 May 2025 05:56:56 +0000 Files and hashes: 1: iR7Yuqwsc70TrcqhoWqvANIkqHc.crl (hash: X7wUWLWNqgTAl+WpIb4Hx7Ez5+vDYAD+/ARzAkLpXzg=) 2: F7078BC4B73511EF8537DE81C4F9AE02.roa (hash: CcfcyuDgdAXzM0C7pRrcqcGTmtCQX9kXzhcOgKQTSNM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91394E7/F4CFD1DAAC7311EF87FC554CC4F9AE02/iR7Yuqwsc70TrcqhoWqvANIkqHc.crl rsync://rpki.apnic.net/member_repository/A91394E7/F4CFD1DAAC7311EF87FC554CC4F9AE02/iR7Yuqwsc70TrcqhoWqvANIkqHc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iR7Yuqwsc70TrcqhoWqvANIkqHc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 18 May 2025 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 94 (0x5e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91394E7, serialNumber=891ED8BAAC2C73BD13ADCAA1A16AAF00D224A877 Validity Not Before: May 11 05:56:56 2025 GMT Not After : May 18 05:56:56 2025 GMT Subject: CN=68203c29-28d6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:3d:0b:94:87:c5:9c:2e:29:af:77:8b:04:4d: 8f:22:47:20:8e:d9:8d:43:c3:92:b7:ce:0b:2a:ca: c8:b0:b3:8f:7e:3e:15:01:18:1c:43:7e:c0:3f:1e: 32:e0:47:3f:eb:ce:c4:f6:5b:72:a9:60:ff:61:e5: d3:ab:01:0c:23:f9:c2:aa:eb:a4:1e:a4:cf:c1:77: 77:ab:d2:44:87:2f:66:70:02:ff:d6:c5:bd:0a:b3: ce:a0:b1:89:7b:d8:5b:0a:9b:e0:db:34:74:08:cd: ee:0e:fd:62:cb:49:09:e3:d3:08:ac:a1:64:de:d6: 82:22:56:bd:2b:bd:46:fd:b6:c9:07:d3:f2:e4:76: c3:51:0d:b5:b3:63:32:51:32:69:ae:2a:7f:4f:4f: 4b:92:60:0f:54:3c:d2:8d:17:d7:4a:a2:19:f1:c7: 03:8d:ff:bd:29:08:e2:ea:0f:05:51:9f:c6:d5:c9: be:62:d2:85:65:52:71:ea:28:58:27:1c:b3:5d:52: ce:46:44:57:ef:7a:2a:cc:27:6c:7b:b4:82:9d:3f: f0:84:37:d5:71:c8:8a:25:92:67:eb:7e:0c:43:4a: 7d:74:59:13:97:ff:96:ea:ee:3c:f0:89:31:73:b3: ab:fb:0d:54:08:49:a1:e5:d9:ad:98:18:65:d2:09: 17:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 90:DD:4C:19:A5:A1:B9:49:D3:09:09:58:D7:17:C4:78:B7:9A:AC:73 X509v3 Authority Key Identifier: keyid:89:1E:D8:BA:AC:2C:73:BD:13:AD:CA:A1:A1:6A:AF:00:D2:24:A8:77 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91394E7/F4CFD1DAAC7311EF87FC554CC4F9AE02/iR7Yuqwsc70TrcqhoWqvANIkqHc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iR7Yuqwsc70TrcqhoWqvANIkqHc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91394E7/F4CFD1DAAC7311EF87FC554CC4F9AE02/iR7Yuqwsc70TrcqhoWqvANIkqHc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b2:ad:3e:0e:f7:d5:f4:f3:7d:aa:4f:c6:16:6e:5a:07:51:47: 37:29:a6:5d:0d:00:ec:d7:48:9e:42:1d:ce:99:60:2a:04:45: 81:1d:d5:99:61:d2:76:78:b7:cd:89:87:34:d8:bc:cc:98:ce: a4:70:9f:ff:66:28:71:84:02:17:93:be:a6:12:7c:ea:59:a8: 32:ce:b3:55:20:25:55:e2:e6:71:ab:6f:0a:6b:03:60:45:1b: 0b:05:95:f8:a8:dd:54:4f:95:28:28:35:20:1e:a8:c3:2a:97: a2:2e:4f:de:8f:9d:a4:99:b2:6b:b9:70:b7:68:b8:dc:8e:f0: 25:1e:e9:07:02:f2:5c:47:3b:5a:3d:c4:37:2d:2a:15:e3:77: 13:6a:40:88:25:cd:da:17:e9:8e:60:68:27:25:35:b0:8f:87: 58:df:b6:45:55:d1:05:07:e2:95:86:a4:92:52:9b:a8:f4:83: bf:72:a9:9a:80:48:06:15:e5:89:c0:07:29:3f:07:8d:b2:d5: 11:97:23:59:f1:d1:4d:42:88:fd:82:80:65:51:2d:3b:c1:05: 94:70:3d:29:e2:88:39:dd:a5:36:62:e9:3d:5a:da:69:22:93: e0:25:06:89:bb:71:83:91:20:a1:f7:b3:f1:0b:30:a4:67:27: d4:c7:01:20 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBXjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEz OTRFNzExMC8GA1UEBRMoODkxRUQ4QkFBQzJDNzNCRDEzQURDQUExQTE2QUFGMDBE MjI0QTg3NzAeFw0yNTA1MTEwNTU2NTZaFw0yNTA1MTgwNTU2NTZaMBgxFjAUBgNV BAMTDTY4MjAzYzI5LTI4ZDYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDhPQuUh8WcLimvd4sETY8iRyCO2Y1Dw5K3zgsqysiws49+PhUBGBxDfsA/HjLg Rz/rzsT2W3KpYP9h5dOrAQwj+cKq66QepM/Bd3er0kSHL2ZwAv/Wxb0Ks86gsYl7 2FsKm+DbNHQIze4O/WLLSQnj0wisoWTe1oIiVr0rvUb9tskH0/LkdsNRDbWzYzJR MmmuKn9PT0uSYA9UPNKNF9dKohnxxwON/70pCOLqDwVRn8bVyb5i0oVlUnHqKFgn HLNdUs5GRFfveirMJ2x7tIKdP/CEN9VxyIolkmfrfgxDSn10WROX/5bq7jzwiTFz s6v7DVQISaHl2a2YGGXSCRdrAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUkN1MGaWh uUnTCQlY1xfEeLearHMwHwYDVR0jBBgwFoAUiR7Yuqwsc70TrcqhoWqvANIkqHcw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTM5NEU3L0Y0Q0ZEMURBQUM3 MzExRUY4N0ZDNTU0Q0M0RjlBRTAyL2lSN1l1cXdzYzcwVHJjcWhvV3F2QU5Ja3FI Yy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvaVI3WXVxd3NjNzBUcmNxaG9XcXZBTklrcUhjLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTM5 NEU3L0Y0Q0ZEMURBQUM3MzExRUY4N0ZDNTU0Q0M0RjlBRTAyL2lSN1l1cXdzYzcw VHJjcWhvV3F2QU5Ja3FIYy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBALKtPg731fTzfapPxhZuWgdRRzcppl0NAOzXSJ5CHc6ZYCoERYEd1Zlh 0nZ4t82JhzTYvMyYzqRwn/9mKHGEAheTvqYSfOpZqDLOs1UgJVXi5nGrbwprA2BF GwsFlfio3VRPlSgoNSAeqMMql6IuT96PnaSZsmu5cLdouNyO8CUe6QcC8lxHO1o9 xDctKhXjdxNqQIglzdoX6Y5gaCclNbCPh1jftkVV0QUH4pWGpJJSm6j0g79yqZqA SAYV5YnAByk/B42y1RGXI1nx0U1CiP2CgGVRLTvBBZRwPSniiDndpTZi6T1a2mki k+AlBom7cYORIKH3s/ELMKRnJ9THASA= -----END CERTIFICATE-----Generated at Sun May 11 10:51:00 2025 by rpki-client