$ rpki-client -vvf rpki.apnic.net/member_repository/A91590E3/DA18B1849A4911E79A9F3030C4F9AE02/u5dqWY5eywXjf6wApbeIjlf1HFI.mft File: u5dqWY5eywXjf6wApbeIjlf1HFI.mft (raw, json) Hash identifier: W/hpSUcDrOVRd2xH/obnRlCd/hf80n1UEigiFP0vMGw= Subject key identifier: B6:A8:50:2E:61:45:A3:13:10:0A:74:D8:72:84:EA:AD:2C:F9:1C:EC Authority key identifier: BB:97:6A:59:8E:5E:CB:05:E3:7F:AC:00:A5:B7:88:8E:57:F5:1C:52 Certificate issuer: /CN=A91590E3/serialNumber=BB976A598E5ECB05E37FAC00A5B7888E57F51C52 Certificate serial: 18E3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/u5dqWY5eywXjf6wApbeIjlf1HFI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91590E3/DA18B1849A4911E79A9F3030C4F9AE02/u5dqWY5eywXjf6wApbeIjlf1HFI.mft Manifest number: 18B3 Signing time: Wed 14 May 2025 16:35:06 +0000 Manifest this update: Wed 14 May 2025 16:35:05 +0000 Manifest next update: Wed 21 May 2025 16:35:05 +0000 Files and hashes: 1: u5dqWY5eywXjf6wApbeIjlf1HFI.crl (hash: S+6+OoESxf8RtdQPltdyJC+2ypNodqtf3O0LiYWGzZQ=) 2: 4A4CE204D49A11EEAB1AF055C4F9AE02.roa (hash: EzHzSCDlBlC4veKW1Q3W/qzMLdRqyApJm4hY8qe4PS0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91590E3/DA18B1849A4911E79A9F3030C4F9AE02/u5dqWY5eywXjf6wApbeIjlf1HFI.crl rsync://rpki.apnic.net/member_repository/A91590E3/DA18B1849A4911E79A9F3030C4F9AE02/u5dqWY5eywXjf6wApbeIjlf1HFI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/u5dqWY5eywXjf6wApbeIjlf1HFI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 21 May 2025 16:35:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6371 (0x18e3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91590E3, serialNumber=BB976A598E5ECB05E37FAC00A5B7888E57F51C52 Validity Not Before: May 14 16:35:05 2025 GMT Not After : May 21 16:35:05 2025 GMT Subject: CN=6824c63a-a522 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:b8:0d:66:75:ea:7d:ac:0c:fc:a8:07:c6:f2: 20:44:8b:f1:b4:a4:f7:14:f7:b8:71:75:0a:1f:06: 94:0b:78:5d:de:8e:06:3e:5f:77:03:57:1b:36:75: bd:c2:f7:0a:39:4c:61:b3:df:33:18:bc:75:a3:e2: 57:b5:c6:f2:c4:cf:e5:32:9c:91:58:66:90:07:80: 60:92:5d:26:27:7a:ba:40:2e:be:19:7c:33:06:8f: 47:00:6d:2f:b8:50:48:72:26:47:4c:26:9e:c4:7a: 94:58:f4:f5:61:a0:05:29:b3:c5:dc:52:7c:48:df: b5:9c:5c:ca:78:0b:86:12:d8:7f:ba:93:72:b1:69: f8:45:3f:88:33:bc:f9:ba:41:bc:17:58:1f:80:6f: 10:65:4e:5b:a9:d5:58:b9:5b:46:d2:e7:df:bd:78: 53:f4:66:56:90:f6:aa:ad:35:56:cd:92:27:64:22: d7:2c:42:88:94:00:1a:03:5d:a9:be:81:61:fe:88: b5:69:ba:eb:36:f8:3c:10:27:f2:a6:c8:75:4a:b5: b7:1d:fa:8a:8e:63:0d:f7:c8:af:0a:51:4e:7b:44: 13:b2:4f:b1:61:5d:ef:6c:78:9c:d5:2e:6d:a2:30: 89:77:4f:71:6e:52:3f:28:7a:d9:63:bb:74:42:11: f2:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B6:A8:50:2E:61:45:A3:13:10:0A:74:D8:72:84:EA:AD:2C:F9:1C:EC X509v3 Authority Key Identifier: keyid:BB:97:6A:59:8E:5E:CB:05:E3:7F:AC:00:A5:B7:88:8E:57:F5:1C:52 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91590E3/DA18B1849A4911E79A9F3030C4F9AE02/u5dqWY5eywXjf6wApbeIjlf1HFI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/u5dqWY5eywXjf6wApbeIjlf1HFI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91590E3/DA18B1849A4911E79A9F3030C4F9AE02/u5dqWY5eywXjf6wApbeIjlf1HFI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1b:bd:56:32:48:c7:33:8c:55:26:f3:c1:f2:a1:ea:85:bf:e6: 38:64:b9:b5:b7:bb:a0:2f:a7:b9:73:73:ab:54:a9:b0:e0:e8: ac:7c:95:30:ac:9a:3e:35:be:e4:0a:a9:a8:9d:e4:06:4a:67: 8d:50:e7:83:d2:ff:ff:d6:01:84:85:69:32:1b:32:60:e1:42: 26:01:fa:a0:78:da:08:09:82:67:35:3d:97:3a:11:f1:a1:89: c1:ba:a3:d9:cc:15:1c:15:25:19:57:93:57:70:1a:36:b4:e4: 4a:3c:5b:12:7b:85:72:7c:a2:d8:ac:fc:02:23:f6:e5:ef:ee: e4:88:73:7f:70:12:e9:bb:3e:fd:99:dc:37:5e:38:a0:b3:ae: 10:a5:29:b7:78:84:11:41:71:ff:b9:c5:54:c6:40:18:be:ec: dc:93:da:cb:05:08:7b:80:e8:57:b8:bf:6f:60:a8:c5:65:df: 13:09:f2:73:92:9a:44:f2:b9:f5:f1:dd:1a:79:60:8a:57:ec: 6c:13:19:92:e8:b1:89:8e:29:1a:79:50:fa:32:cf:4a:58:a2: e4:6b:71:94:df:5b:a9:51:38:37:7c:13:d3:da:1b:93:b1:03: 7e:33:ed:37:16:dc:bc:9f:42:1b:5a:46:8c:1a:04:a9:4e:6f: 66:a6:7b:7b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICGOMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTkwRTMxMTAvBgNVBAUTKEJCOTc2QTU5OEU1RUNCMDVFMzdGQUMwMEE1Qjc4ODhF NTdGNTFDNTIwHhcNMjUwNTE0MTYzNTA1WhcNMjUwNTIxMTYzNTA1WjAYMRYwFAYD VQQDEw02ODI0YzYzYS1hNTIyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0LgNZnXqfawM/KgHxvIgRIvxtKT3FPe4cXUKHwaUC3hd3o4GPl93A1cbNnW9 wvcKOUxhs98zGLx1o+JXtcbyxM/lMpyRWGaQB4Bgkl0mJ3q6QC6+GXwzBo9HAG0v uFBIciZHTCaexHqUWPT1YaAFKbPF3FJ8SN+1nFzKeAuGEth/upNysWn4RT+IM7z5 ukG8F1gfgG8QZU5bqdVYuVtG0uffvXhT9GZWkPaqrTVWzZInZCLXLEKIlAAaA12p voFh/oi1abrrNvg8ECfypsh1SrW3HfqKjmMN98ivClFOe0QTsk+xYV3vbHic1S5t ojCJd09xblI/KHrZY7t0QhHyJQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLaoUC5h RaMTEAp02HKE6q0s+RzsMB8GA1UdIwQYMBaAFLuXalmOXssF43+sAKW3iI5X9RxS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1OTBFMy9EQTE4QjE4NDlB NDkxMUU3OUE5RjMwMzBDNEY5QUUwMi91NWRxV1k1ZXl3WGpmNndBcGJlSWpsZjFI RkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3U1ZHFXWTVleXdYamY2d0FwYmVJamxmMUhGSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 OTBFMy9EQTE4QjE4NDlBNDkxMUU3OUE5RjMwMzBDNEY5QUUwMi91NWRxV1k1ZXl3 WGpmNndBcGJlSWpsZjFIRkkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAbvVYySMczjFUm88HyoeqFv+Y4ZLm1t7ugL6e5c3OrVKmw4OisfJUw rJo+Nb7kCqmoneQGSmeNUOeD0v//1gGEhWkyGzJg4UImAfqgeNoICYJnNT2XOhHx oYnBuqPZzBUcFSUZV5NXcBo2tORKPFsSe4VyfKLYrPwCI/bl7+7kiHN/cBLpuz79 mdw3Xjigs64QpSm3eIQRQXH/ucVUxkAYvuzck9rLBQh7gOhXuL9vYKjFZd8TCfJz kppE8rn18d0aeWCKV+xsExmS6LGJjikaeVD6Ms9KWKLka3GU31upUTg3fBPT2huT sQN+M+03Fty8n0IbWkaMGgSpTm9mpnt7 -----END CERTIFICATE-----Generated at Fri May 16 09:23:27 2025 by rpki-client