$ rpki-client -vvf rpki.apnic.net/member_repository/A91557F2/233504A44FCC11EB9DBE7F5DC4F9AE02/-tm5N3fQzrort6a3jVB_d5CSHAY.mft File: -tm5N3fQzrort6a3jVB_d5CSHAY.mft (raw, json) Hash identifier: DfgumWjLLxFSFmQ8JQpts/orWEfHrvL3GFTzFu32Vts= Subject key identifier: 76:6A:A1:83:3A:FF:A2:1E:40:29:EA:91:FF:AF:D8:82:0B:5B:41:75 Authority key identifier: FA:D9:B9:37:77:D0:CE:BA:2B:B7:A6:B7:8D:50:7F:77:90:92:1C:06 Certificate issuer: /CN=A91557F2/serialNumber=FAD9B93777D0CEBA2BB7A6B78D507F7790921C06 Certificate serial: 06DA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-tm5N3fQzrort6a3jVB_d5CSHAY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91557F2/233504A44FCC11EB9DBE7F5DC4F9AE02/-tm5N3fQzrort6a3jVB_d5CSHAY.mft Manifest number: 0818 Signing time: Sun 04 May 2025 21:41:56 +0000 Manifest this update: Sun 04 May 2025 21:41:55 +0000 Manifest next update: Sun 11 May 2025 21:41:55 +0000 Files and hashes: 1: -tm5N3fQzrort6a3jVB_d5CSHAY.crl (hash: KegxQZtbezxX+v3rPdZ+UuTMiDC0QJbM6EHvLx7pYLM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91557F2/233504A44FCC11EB9DBE7F5DC4F9AE02/-tm5N3fQzrort6a3jVB_d5CSHAY.crl rsync://rpki.apnic.net/member_repository/A91557F2/233504A44FCC11EB9DBE7F5DC4F9AE02/-tm5N3fQzrort6a3jVB_d5CSHAY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-tm5N3fQzrort6a3jVB_d5CSHAY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 11 May 2025 21:41:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1754 (0x6da) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91557F2, serialNumber=FAD9B93777D0CEBA2BB7A6B78D507F7790921C06 Validity Not Before: May 4 21:41:55 2025 GMT Not After : May 11 21:41:55 2025 GMT Subject: CN=6817df24-d4f8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:2a:2c:dc:b0:1f:9e:63:4b:fc:c2:77:1e:d4: 8c:a9:16:d6:c7:7f:52:8e:2e:f5:62:92:0d:1e:f2: ed:04:17:86:ce:1f:06:51:79:65:3a:ab:fa:e3:05: 0e:20:3d:35:d2:34:7a:a4:c9:37:76:be:af:80:d8: 3a:dc:a7:cd:f7:9b:8c:06:48:a3:ef:85:0e:db:b3: 6d:10:95:84:f2:2d:db:12:06:4f:10:1d:cc:35:9f: 0a:9d:7f:2a:05:71:4d:f8:8d:1d:3c:2c:b6:a2:77: f5:f7:48:8b:6c:aa:53:80:38:5f:c4:5f:fb:6b:cb: f9:16:07:70:32:52:65:fa:5c:19:ca:82:a5:91:ec: 58:bc:dd:93:19:9d:7b:31:c1:8a:75:62:e6:bd:13: f7:97:ed:6d:6a:01:ff:82:77:57:59:86:ef:09:d9: 4c:ab:76:50:4c:30:56:5e:3a:b3:09:4f:dd:96:38: bb:17:8e:11:00:42:19:4b:5b:f6:af:d5:55:44:c2: c0:0b:98:7b:62:6c:55:f9:85:e1:f7:5b:18:e2:94: 71:d4:4c:b2:df:22:f6:bf:bd:70:21:ab:ab:41:f4: 42:27:57:0a:4a:24:eb:b9:2c:1a:d3:76:e8:93:26: 09:12:67:09:b7:bc:ff:c1:e9:84:45:45:d1:84:89: 28:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 76:6A:A1:83:3A:FF:A2:1E:40:29:EA:91:FF:AF:D8:82:0B:5B:41:75 X509v3 Authority Key Identifier: keyid:FA:D9:B9:37:77:D0:CE:BA:2B:B7:A6:B7:8D:50:7F:77:90:92:1C:06 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91557F2/233504A44FCC11EB9DBE7F5DC4F9AE02/-tm5N3fQzrort6a3jVB_d5CSHAY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-tm5N3fQzrort6a3jVB_d5CSHAY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91557F2/233504A44FCC11EB9DBE7F5DC4F9AE02/-tm5N3fQzrort6a3jVB_d5CSHAY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a2:fc:41:85:45:0b:a0:2c:49:08:73:7e:3d:45:64:08:e7:ee: 1c:aa:54:74:41:bf:29:88:8c:5c:7b:95:02:c4:7b:09:17:5b: 0d:6e:0a:6f:ff:66:f4:85:2c:b2:d5:22:29:ac:3e:29:76:82: 3d:9a:d4:2d:52:f1:7b:54:d3:43:c4:de:64:56:ae:68:17:95: 88:50:b1:e2:4d:a7:ac:ff:28:91:ac:e4:d3:34:d5:48:81:9c: 42:d1:ec:77:18:e4:46:98:dc:dd:fd:14:68:15:e1:67:32:65: 31:02:39:bb:7c:74:64:96:e2:96:a7:06:21:50:25:e7:28:74: 91:0b:38:fd:0f:d5:99:57:39:b5:6e:00:55:9a:d9:76:d8:b6: a4:05:91:42:4f:ef:98:b3:46:6a:0c:7a:51:65:ca:bf:f8:e2: 19:54:bf:70:77:ca:b5:cf:e1:95:ea:24:21:bb:1a:1b:0d:c5: ca:87:ea:c2:36:b3:03:0b:2c:dc:a3:ac:59:74:81:45:83:9c: c5:35:ac:e9:bf:7c:e9:46:0a:b4:c5:38:53:a4:cc:aa:b8:e7: de:c3:c0:1b:c3:d0:06:ef:0d:69:6f:20:bc:30:f2:de:49:e4: d0:5a:7e:a7:57:80:26:35:48:89:5d:d3:db:94:2d:dd:3c:05: 75:c9:39:6a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBtowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTU3RjIxMTAvBgNVBAUTKEZBRDlCOTM3NzdEMENFQkEyQkI3QTZCNzhENTA3Rjc3 OTA5MjFDMDYwHhcNMjUwNTA0MjE0MTU1WhcNMjUwNTExMjE0MTU1WjAYMRYwFAYD VQQDEw02ODE3ZGYyNC1kNGY4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsSos3LAfnmNL/MJ3HtSMqRbWx39Sji71YpINHvLtBBeGzh8GUXllOqv64wUO ID010jR6pMk3dr6vgNg63KfN95uMBkij74UO27NtEJWE8i3bEgZPEB3MNZ8KnX8q BXFN+I0dPCy2onf190iLbKpTgDhfxF/7a8v5FgdwMlJl+lwZyoKlkexYvN2TGZ17 McGKdWLmvRP3l+1tagH/gndXWYbvCdlMq3ZQTDBWXjqzCU/dlji7F44RAEIZS1v2 r9VVRMLAC5h7YmxV+YXh91sY4pRx1Eyy3yL2v71wIaurQfRCJ1cKSiTruSwa03bo kyYJEmcJt7z/wemERUXRhIkoJwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHZqoYM6 /6IeQCnqkf+v2IILW0F1MB8GA1UdIwQYMBaAFPrZuTd30M66K7emt41Qf3eQkhwG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NTdGMi8yMzM1MDRBNDRG Q0MxMUVCOURCRTdGNURDNEY5QUUwMi8tdG01TjNmUXpyb3J0NmEzalZCX2Q1Q1NI QVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy10bTVOM2ZRenJvcnQ2YTNqVkJfZDVDU0hBWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NTdGMi8yMzM1MDRBNDRGQ0MxMUVCOURCRTdGNURDNEY5QUUwMi8tdG01TjNmUXpy b3J0NmEzalZCX2Q1Q1NIQVkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCi/EGFRQugLEkIc349RWQI5+4cqlR0Qb8piIxce5UCxHsJF1sNbgpv /2b0hSyy1SIprD4pdoI9mtQtUvF7VNNDxN5kVq5oF5WIULHiTaes/yiRrOTTNNVI gZxC0ex3GORGmNzd/RRoFeFnMmUxAjm7fHRkluKWpwYhUCXnKHSRCzj9D9WZVzm1 bgBVmtl22LakBZFCT++Ys0ZqDHpRZcq/+OIZVL9wd8q1z+GV6iQhuxobDcXKh+rC NrMDCyzco6xZdIFFg5zFNazpv3zpRgq0xThTpMyquOfew8Abw9AG7w1pbyC8MPLe SeTQWn6nV4AmNUiJXdPblC3dPAV1yTlq -----END CERTIFICATE-----Generated at Mon May 5 15:48:18 2025 by rpki-client