$ rpki-client -vvf rpki.apnic.net/member_repository/A91422D7/5B9F71D2ED3011ECBF07F012C4F9AE02/rGoi8eThZQrPtSifXctdU5IPzzQ.mft File: rGoi8eThZQrPtSifXctdU5IPzzQ.mft (raw, json) Hash identifier: Cp/vhl5U/u+0vJvy5EXhsJpPfa54GTRLu9Frj/f5j40= Subject key identifier: A2:5C:7B:2D:48:BD:D4:29:1B:4A:9F:7B:49:D8:8C:F8:AA:0E:B0:A8 Authority key identifier: AC:6A:22:F1:E4:E1:65:0A:CF:B5:28:9F:5D:CB:5D:53:92:0F:CF:34 Certificate issuer: /CN=A91422D7/serialNumber=AC6A22F1E4E1650ACFB5289F5DCB5D53920FCF34 Certificate serial: F5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rGoi8eThZQrPtSifXctdU5IPzzQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91422D7/5B9F71D2ED3011ECBF07F012C4F9AE02/rGoi8eThZQrPtSifXctdU5IPzzQ.mft Manifest number: 03B8 Signing time: Tue 13 May 2025 01:12:35 +0000 Manifest this update: Tue 13 May 2025 01:12:35 +0000 Manifest next update: Tue 20 May 2025 01:12:35 +0000 Files and hashes: 1: rGoi8eThZQrPtSifXctdU5IPzzQ.crl (hash: 6sYYBjO0J6dyUWIJSvYB1mHf2vjGYavjta94iGGT4n0=) 2: CE5F74E2BE5811EEA8C02E2AC4F9AE02.roa (hash: tIDiP3hNqVNzA0IqRbP/SuZVvzepUKW2qtpK5KHsOYE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91422D7/5B9F71D2ED3011ECBF07F012C4F9AE02/rGoi8eThZQrPtSifXctdU5IPzzQ.crl rsync://rpki.apnic.net/member_repository/A91422D7/5B9F71D2ED3011ECBF07F012C4F9AE02/rGoi8eThZQrPtSifXctdU5IPzzQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rGoi8eThZQrPtSifXctdU5IPzzQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 20 May 2025 01:12:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 245 (0xf5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91422D7, serialNumber=AC6A22F1E4E1650ACFB5289F5DCB5D53920FCF34 Validity Not Before: May 13 01:12:35 2025 GMT Not After : May 20 01:12:35 2025 GMT Subject: CN=68229c83-a27b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:66:84:5f:90:90:93:c0:4e:f5:a7:46:b4:96: 62:c9:5e:7a:d4:24:7f:e8:03:0d:f2:b8:91:9a:c7: 32:d1:5b:5c:76:da:60:b9:51:cb:07:a4:33:b9:2a: 84:2a:98:9b:78:11:79:ba:34:8d:9b:d9:d6:d5:8d: dc:84:a3:8f:c6:d7:a1:ee:be:a7:6d:f4:13:52:40: e3:ed:66:49:a6:10:ac:73:74:8b:a9:6d:c1:4f:96: ce:ec:ed:06:2b:89:0e:4b:5b:af:47:be:25:70:ad: 3e:aa:1e:9a:bc:20:f7:b1:b2:7b:d2:3f:42:42:be: f1:5c:b3:4b:52:bc:2d:7a:89:0b:9c:62:b0:a9:ab: a6:7f:e9:a8:1d:74:1a:d4:36:5b:26:8c:a0:ac:c6: 57:2e:95:cb:d0:e2:92:62:20:91:16:2f:87:82:21: 0b:fb:6c:12:d8:92:f3:a9:8d:d1:b1:d6:0b:b7:41: 10:24:db:7e:27:26:15:55:8c:7c:91:3a:10:7c:91: a8:8d:ff:0c:cd:c2:94:4e:47:6f:77:d5:04:c8:a6: cc:f5:ac:36:e2:ea:65:6e:d7:34:68:ef:d8:d7:74: b6:ca:45:26:bc:b5:ba:e3:cb:42:b4:37:c0:87:ab: cf:91:d0:60:c3:bf:32:39:7e:a6:b4:88:9b:30:b5: 18:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A2:5C:7B:2D:48:BD:D4:29:1B:4A:9F:7B:49:D8:8C:F8:AA:0E:B0:A8 X509v3 Authority Key Identifier: keyid:AC:6A:22:F1:E4:E1:65:0A:CF:B5:28:9F:5D:CB:5D:53:92:0F:CF:34 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91422D7/5B9F71D2ED3011ECBF07F012C4F9AE02/rGoi8eThZQrPtSifXctdU5IPzzQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rGoi8eThZQrPtSifXctdU5IPzzQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91422D7/5B9F71D2ED3011ECBF07F012C4F9AE02/rGoi8eThZQrPtSifXctdU5IPzzQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 18:02:69:fe:a2:4e:d5:9e:27:ae:31:46:b4:bc:30:34:0f:e6: a3:69:80:99:d6:29:41:73:88:e8:71:0f:49:83:19:a2:a3:a1: e1:90:b4:90:e6:45:78:e3:4f:eb:a9:f7:b0:d2:92:2c:ae:0e: e9:77:f7:f3:c7:e9:9d:58:a0:79:8d:5f:06:09:9c:50:60:12: 6a:21:0e:9b:f6:31:62:11:13:cd:51:bc:34:a9:44:0d:38:97: 60:db:7e:b2:d7:9a:59:43:cd:47:bc:82:a9:d4:c6:cc:37:80: 07:9c:f3:78:8b:4d:55:1b:b5:ad:50:35:73:b6:49:db:29:27: 1c:74:23:e0:16:03:df:28:a5:d3:c0:fd:ec:a9:28:0b:8c:4b: f8:88:50:86:6c:bd:db:ed:bb:c6:98:d7:c8:4d:fd:cc:0e:0c: da:07:90:cd:d0:00:ca:43:4e:d8:8a:d1:8d:d0:93:8b:f5:dd: 5a:ff:fb:af:51:47:cd:71:1b:a0:ae:75:71:14:6b:9a:03:5d: c0:c9:81:6f:ae:b4:9d:99:e5:c4:3a:a3:8e:e5:93:45:77:ed: 77:0d:0f:26:6b:5d:8c:ff:4f:8c:d5:bc:83:d2:a7:5c:23:34: 10:b5:1c:75:8b:6d:18:55:2f:29:1f:2c:7e:14:9e:b1:c1:3f: 6e:a1:b9:31 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAPUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDIyRDcxMTAvBgNVBAUTKEFDNkEyMkYxRTRFMTY1MEFDRkI1Mjg5RjVEQ0I1RDUz OTIwRkNGMzQwHhcNMjUwNTEzMDExMjM1WhcNMjUwNTIwMDExMjM1WjAYMRYwFAYD VQQDEw02ODIyOWM4My1hMjdiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuGaEX5CQk8BO9adGtJZiyV561CR/6AMN8riRmscy0VtcdtpguVHLB6QzuSqE KpibeBF5ujSNm9nW1Y3chKOPxteh7r6nbfQTUkDj7WZJphCsc3SLqW3BT5bO7O0G K4kOS1uvR74lcK0+qh6avCD3sbJ70j9CQr7xXLNLUrwteokLnGKwqaumf+moHXQa 1DZbJoygrMZXLpXL0OKSYiCRFi+HgiEL+2wS2JLzqY3RsdYLt0EQJNt+JyYVVYx8 kToQfJGojf8MzcKUTkdvd9UEyKbM9aw24uplbtc0aO/Y13S2ykUmvLW648tCtDfA h6vPkdBgw78yOX6mtIibMLUYOQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKJcey1I vdQpG0qfe0nYjPiqDrCoMB8GA1UdIwQYMBaAFKxqIvHk4WUKz7Uon13LXVOSD880 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MjJENy81QjlGNzFEMkVE MzAxMUVDQkYwN0YwMTJDNEY5QUUwMi9yR29pOGVUaFpRclB0U2lmWGN0ZFU1SVB6 elEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JHb2k4ZVRoWlFyUHRTaWZYY3RkVTVJUHp6US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 MjJENy81QjlGNzFEMkVEMzAxMUVDQkYwN0YwMTJDNEY5QUUwMi9yR29pOGVUaFpR clB0U2lmWGN0ZFU1SVB6elEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAYAmn+ok7VnieuMUa0vDA0D+ajaYCZ1ilBc4jocQ9Jgxmio6HhkLSQ 5kV440/rqfew0pIsrg7pd/fzx+mdWKB5jV8GCZxQYBJqIQ6b9jFiERPNUbw0qUQN OJdg236y15pZQ81HvIKp1MbMN4AHnPN4i01VG7WtUDVztknbKSccdCPgFgPfKKXT wP3sqSgLjEv4iFCGbL3b7bvGmNfITf3MDgzaB5DN0ADKQ07YitGN0JOL9d1a//uv UUfNcRugrnVxFGuaA13AyYFvrrSdmeXEOqOO5ZNFd+13DQ8ma12M/0+M1byD0qdc IzQQtRx1i20YVS8pHyx+FJ6xwT9uobkx -----END CERTIFICATE-----Generated at Wed May 14 20:59:48 2025 by rpki-client