$ rpki-client -vvf rpki.apnic.net/member_repository/A91627F9/288DF14AE9C411EF9920930AC4F9AE02/83VHbzI13D1SUXHivpIRY45JCEc.mft File: 83VHbzI13D1SUXHivpIRY45JCEc.mft (raw, json) Hash identifier: jyRcepcew5/LUB9ZZKaYUN5UrS7qqU8mpfdfK2qff1Q= Subject key identifier: CF:BB:B6:64:55:D4:55:0B:12:F9:EB:36:2B:AE:8D:51:FA:AC:0F:3F Authority key identifier: F3:75:47:6F:32:35:DC:3D:52:51:71:E2:BE:92:11:63:8E:49:08:47 Certificate issuer: /CN=A91627F9/serialNumber=F375476F3235DC3D525171E2BE9211638E490847 Certificate serial: 39 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/83VHbzI13D1SUXHivpIRY45JCEc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91627F9/288DF14AE9C411EF9920930AC4F9AE02/83VHbzI13D1SUXHivpIRY45JCEc.mft Manifest number: 36 Signing time: Tue 13 May 2025 06:52:13 +0000 Manifest this update: Tue 13 May 2025 06:52:12 +0000 Manifest next update: Tue 20 May 2025 06:52:12 +0000 Files and hashes: 1: 83VHbzI13D1SUXHivpIRY45JCEc.crl (hash: p92b0khhO9YVMnf0Mi4vUBSKcpzwythX/fWs3oDkbFw=) 2: BA8DB662085911F082EDFD31C4F9AE02.roa (hash: rPwsbk1iK8m/wIOTQ5ToBttJBfvQLb/F94KXTbHXYq0=) 3: 99E2D388E9C411EFAFABDD0BC4F9AE02.roa (hash: J1402rtf9QBVmnV/qIlsF0PgfqX7oUx84mIB0uPW1NA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91627F9/288DF14AE9C411EF9920930AC4F9AE02/83VHbzI13D1SUXHivpIRY45JCEc.crl rsync://rpki.apnic.net/member_repository/A91627F9/288DF14AE9C411EF9920930AC4F9AE02/83VHbzI13D1SUXHivpIRY45JCEc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/83VHbzI13D1SUXHivpIRY45JCEc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 20 May 2025 06:52:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 57 (0x39) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91627F9, serialNumber=F375476F3235DC3D525171E2BE9211638E490847 Validity Not Before: May 13 06:52:12 2025 GMT Not After : May 20 06:52:12 2025 GMT Subject: CN=6822ec1d-72c8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:63:2a:d3:35:53:f4:3e:64:10:5c:fd:79:1d: ff:20:5a:8f:fb:90:2c:78:c2:54:6e:5f:f2:39:8c: 7f:f3:7e:c6:9a:c7:04:93:02:2d:c6:73:72:bc:c8: 60:d6:34:cb:f6:c1:1e:bb:4c:8c:06:b3:c1:bb:50: 17:6c:7f:e8:8c:b1:66:c9:f1:b0:c9:7e:e9:9a:54: 03:5d:50:16:79:8a:57:14:76:32:8e:d3:96:d6:a1: 79:20:3b:4b:3e:26:22:86:8c:2c:3d:02:63:c3:3a: 54:81:97:c7:b7:12:95:a0:b0:b1:d2:6c:17:8d:79: d7:14:d1:20:45:55:0a:df:4c:cc:87:6c:5c:53:30: 3f:7f:9f:17:67:dc:4f:95:d3:41:21:f5:12:23:eb: 69:24:d9:c7:b8:a3:4c:bd:ed:17:55:4a:dd:06:9c: 15:a0:58:ba:b4:d9:f9:7e:e8:a8:e9:0b:7d:f4:de: ce:7e:5d:05:cf:fa:c3:ab:96:41:87:2a:f8:30:34: 35:1c:ba:17:e3:44:c1:42:89:23:88:5a:83:90:92: 30:81:bf:f7:fa:5a:82:0c:34:49:1c:ac:02:e8:89: 2a:1e:d3:93:52:18:f1:7a:5d:1a:55:48:e6:50:c3: 07:eb:00:3d:7c:49:d1:dd:25:f0:37:cc:5b:24:e8: ee:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CF:BB:B6:64:55:D4:55:0B:12:F9:EB:36:2B:AE:8D:51:FA:AC:0F:3F X509v3 Authority Key Identifier: keyid:F3:75:47:6F:32:35:DC:3D:52:51:71:E2:BE:92:11:63:8E:49:08:47 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91627F9/288DF14AE9C411EF9920930AC4F9AE02/83VHbzI13D1SUXHivpIRY45JCEc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/83VHbzI13D1SUXHivpIRY45JCEc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91627F9/288DF14AE9C411EF9920930AC4F9AE02/83VHbzI13D1SUXHivpIRY45JCEc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 76:22:36:1f:f5:2c:d3:4b:a8:6c:eb:39:48:61:06:0d:e2:4d: 88:dd:ea:f0:87:2e:77:de:d9:56:cc:4b:0a:72:1c:d1:0b:4a: 2d:f6:d0:23:d4:84:22:31:d1:41:77:af:ec:9d:a5:74:8d:0e: 92:3e:2d:67:3d:24:3a:9f:10:de:9f:b8:5b:d4:f0:99:ed:ad: d8:af:f2:3c:9c:ea:22:14:39:40:29:68:e8:35:fd:eb:57:3a: b4:d5:3d:08:96:0c:2f:0c:60:b6:22:c0:57:de:a3:1a:1f:ee: 73:7b:40:48:a1:7e:05:1a:9c:91:6f:29:c0:20:e4:c8:ad:1b: d8:c6:7b:a4:0a:38:d0:6f:3f:19:d3:cb:24:a5:d9:e7:d3:0c: ed:b3:b4:05:b8:bb:83:ed:08:76:80:42:8e:bc:a0:ee:8d:42: 33:fe:80:65:b4:2b:1f:6c:16:31:aa:24:84:58:0b:d1:60:48: a1:17:12:59:32:cc:96:d2:2c:69:ff:fc:66:51:60:02:fd:b4: 67:cb:49:0d:de:56:a4:8a:93:0d:70:06:27:ec:e5:bc:93:a0: 1d:48:b7:ba:55:ba:a2:57:58:e9:61:dd:a2:c6:fe:69:ac:38: f6:a9:0b:90:92:e3:62:c3:8b:4f:1e:0f:9e:a8:34:b8:a9:01: 56:ce:ed:69 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBOTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE2 MjdGOTExMC8GA1UEBRMoRjM3NTQ3NkYzMjM1REMzRDUyNTE3MUUyQkU5MjExNjM4 RTQ5MDg0NzAeFw0yNTA1MTMwNjUyMTJaFw0yNTA1MjAwNjUyMTJaMBgxFjAUBgNV BAMTDTY4MjJlYzFkLTcyYzgwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCVYyrTNVP0PmQQXP15Hf8gWo/7kCx4wlRuX/I5jH/zfsaaxwSTAi3Gc3K8yGDW NMv2wR67TIwGs8G7UBdsf+iMsWbJ8bDJfumaVANdUBZ5ilcUdjKO05bWoXkgO0s+ JiKGjCw9AmPDOlSBl8e3EpWgsLHSbBeNedcU0SBFVQrfTMyHbFxTMD9/nxdn3E+V 00Eh9RIj62kk2ce4o0y97RdVSt0GnBWgWLq02fl+6KjpC3303s5+XQXP+sOrlkGH KvgwNDUcuhfjRMFCiSOIWoOQkjCBv/f6WoIMNEkcrALoiSoe05NSGPF6XRpVSOZQ wwfrAD18SdHdJfA3zFsk6O47AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUz7u2ZFXU VQsS+es2K66NUfqsDz8wHwYDVR0jBBgwFoAU83VHbzI13D1SUXHivpIRY45JCEcw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTYyN0Y5LzI4OERGMTRBRTlD NDExRUY5OTIwOTMwQUM0RjlBRTAyLzgzVkhiekkxM0QxU1VYSGl2cElSWTQ1SkNF Yy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvODNWSGJ6STEzRDFTVVhIaXZwSVJZNDVKQ0VjLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTYy N0Y5LzI4OERGMTRBRTlDNDExRUY5OTIwOTMwQUM0RjlBRTAyLzgzVkhiekkxM0Qx U1VYSGl2cElSWTQ1SkNFYy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAHYiNh/1LNNLqGzrOUhhBg3iTYjd6vCHLnfe2VbMSwpyHNELSi320CPU hCIx0UF3r+ydpXSNDpI+LWc9JDqfEN6fuFvU8Jntrdiv8jyc6iIUOUApaOg1/etX OrTVPQiWDC8MYLYiwFfeoxof7nN7QEihfgUanJFvKcAg5MitG9jGe6QKONBvPxnT yySl2efTDO2ztAW4u4PtCHaAQo68oO6NQjP+gGW0Kx9sFjGqJIRYC9FgSKEXElky zJbSLGn//GZRYAL9tGfLSQ3eVqSKkw1wBifs5byToB1It7pVuqJXWOlh3aLG/mms OPapC5CS42LDi08eD56oNLipAVbO7Wk= -----END CERTIFICATE-----Generated at Tue May 13 11:25:38 2025 by rpki-client