$ rpki-client -vvf rpki.apnic.net/member_repository/A91836D8/32DAB29207AF11F09606E534C4F9AE02/1RCJONILodf7ySo7qZ8tafyPSog.mft File: 1RCJONILodf7ySo7qZ8tafyPSog.mft (raw, json) Hash identifier: TRQKM3lV7kic/K/GSC3o50xOKQVdHYZhwfyZgmhLRIs= Subject key identifier: B2:19:56:B7:DD:5D:26:F1:BA:29:AA:A5:56:B9:15:8B:90:0D:CE:20 Authority key identifier: D5:10:89:38:D2:0B:A1:D7:FB:C9:2A:3B:A9:9F:2D:69:FC:8F:4A:88 Certificate issuer: /CN=A91836D8/serialNumber=D5108938D20BA1D7FBC92A3BA99F2D69FC8F4A88 Certificate serial: 1F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1RCJONILodf7ySo7qZ8tafyPSog.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91836D8/32DAB29207AF11F09606E534C4F9AE02/1RCJONILodf7ySo7qZ8tafyPSog.mft Manifest number: 1D Signing time: Sun 11 May 2025 06:39:48 +0000 Manifest this update: Sun 11 May 2025 06:39:47 +0000 Manifest next update: Sun 18 May 2025 06:39:47 +0000 Files and hashes: 1: 1RCJONILodf7ySo7qZ8tafyPSog.crl (hash: CfY5P1TO3CTF1sCYk9SfmxcGFQx/I73ctdPg2xxyY58=) 2: 2A0F594C07B911F0B93D3034C4F9AE02.roa (hash: r5ruoCtRcYnEcHexWC9aJqjiLOW/BTPK5UGFj2P9wTI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91836D8/32DAB29207AF11F09606E534C4F9AE02/1RCJONILodf7ySo7qZ8tafyPSog.crl rsync://rpki.apnic.net/member_repository/A91836D8/32DAB29207AF11F09606E534C4F9AE02/1RCJONILodf7ySo7qZ8tafyPSog.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1RCJONILodf7ySo7qZ8tafyPSog.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 18 May 2025 06:39:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 31 (0x1f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91836D8, serialNumber=D5108938D20BA1D7FBC92A3BA99F2D69FC8F4A88 Validity Not Before: May 11 06:39:47 2025 GMT Not After : May 18 06:39:47 2025 GMT Subject: CN=68204634-77db Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:fd:4a:4a:35:96:71:5a:26:10:f9:6b:a2:ec: 90:5a:ee:78:ac:14:0d:b4:c8:0c:60:39:0a:1a:36: f3:7a:df:79:0c:00:45:40:ce:be:41:55:73:98:6d: 1e:72:3e:62:4b:b6:42:88:fc:98:2d:c0:74:3b:0b: e9:f5:77:a6:4f:c3:e3:3f:af:d2:31:f4:74:3d:f5: 07:66:af:69:78:6e:b5:36:62:2f:e8:6a:90:b6:6a: 30:c2:e0:a5:b1:55:93:1b:ce:5b:08:14:c9:ea:dc: 02:7e:82:c5:3b:df:67:49:4f:02:60:38:99:46:66: 63:ce:c0:ed:7b:5e:7d:6e:50:6f:6f:b0:6d:15:0e: c1:9f:3d:62:3d:fe:66:0c:de:da:f4:d5:58:7f:9d: a9:ce:a3:f0:0f:46:9b:0f:8f:94:0d:20:9c:fd:ad: 4b:0a:df:7f:d4:a8:77:d3:45:f0:7f:92:47:5e:e2: 6f:41:ab:3a:0e:c8:08:ce:a5:57:e6:d1:28:40:6c: 25:b3:8d:d1:b5:e4:dc:38:f4:76:a2:48:58:57:e7: b7:07:3c:83:3c:96:87:54:43:03:49:b6:c4:9f:02: 79:c1:25:19:89:13:23:ce:b4:85:f0:6d:39:bc:ab: 88:d4:5e:9c:d0:94:8c:a8:6d:3f:f2:ef:5e:f6:80: 14:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B2:19:56:B7:DD:5D:26:F1:BA:29:AA:A5:56:B9:15:8B:90:0D:CE:20 X509v3 Authority Key Identifier: keyid:D5:10:89:38:D2:0B:A1:D7:FB:C9:2A:3B:A9:9F:2D:69:FC:8F:4A:88 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91836D8/32DAB29207AF11F09606E534C4F9AE02/1RCJONILodf7ySo7qZ8tafyPSog.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1RCJONILodf7ySo7qZ8tafyPSog.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91836D8/32DAB29207AF11F09606E534C4F9AE02/1RCJONILodf7ySo7qZ8tafyPSog.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9a:02:b4:a3:1c:5c:39:30:ff:0d:45:3f:4a:f7:34:33:2b:a9: fa:b9:b1:7b:6f:ee:c2:a4:da:b8:f6:8b:0e:29:79:e5:4e:b7: 9c:16:ff:2e:e1:95:73:03:be:73:3b:41:cc:41:1f:8c:46:59: 35:77:18:e1:ef:da:b0:be:01:92:ea:bc:38:ce:25:f3:6d:d3: 12:c5:2f:53:ec:ca:c5:1d:63:a1:e1:51:fe:37:3a:be:1d:95: f5:31:ea:b3:2c:9e:42:52:6d:47:09:a7:f3:ec:d0:53:1b:a4: a7:13:4c:74:b9:40:76:60:b3:f3:c2:4b:e6:c5:06:18:84:ed: 4f:8d:f5:05:a7:e5:09:65:cc:d0:26:86:bf:96:3e:9c:58:58: a2:4f:5a:06:70:61:e0:27:af:80:26:26:23:76:1f:02:66:f4: e6:f8:d4:35:39:28:30:12:ef:89:25:2e:df:fa:9e:2d:19:27: 48:7a:b7:60:2c:d8:b6:5e:96:f6:12:97:7e:74:dd:4e:da:35: ce:1d:48:e5:6a:5a:d7:40:e5:49:8d:b1:e6:a1:e3:98:ab:13: ec:ef:ba:91:bb:e2:6c:a9:43:48:7a:77:2a:54:e7:57:d6:1d: 63:29:c8:ef:cc:5d:a6:50:d0:5a:37:96:06:16:5c:9c:11:ae: ec:33:4d:6d -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBHzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE4 MzZEODExMC8GA1UEBRMoRDUxMDg5MzhEMjBCQTFEN0ZCQzkyQTNCQTk5RjJENjlG QzhGNEE4ODAeFw0yNTA1MTEwNjM5NDdaFw0yNTA1MTgwNjM5NDdaMBgxFjAUBgNV BAMTDTY4MjA0NjM0LTc3ZGIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC//UpKNZZxWiYQ+Wui7JBa7nisFA20yAxgOQoaNvN633kMAEVAzr5BVXOYbR5y PmJLtkKI/JgtwHQ7C+n1d6ZPw+M/r9Ix9HQ99Qdmr2l4brU2Yi/oapC2ajDC4KWx VZMbzlsIFMnq3AJ+gsU732dJTwJgOJlGZmPOwO17Xn1uUG9vsG0VDsGfPWI9/mYM 3tr01Vh/nanOo/APRpsPj5QNIJz9rUsK33/UqHfTRfB/kkde4m9BqzoOyAjOpVfm 0ShAbCWzjdG15Nw49HaiSFhX57cHPIM8lodUQwNJtsSfAnnBJRmJEyPOtIXwbTm8 q4jUXpzQlIyobT/y7172gBQlAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUshlWt91d JvG6KaqlVrkVi5ANziAwHwYDVR0jBBgwFoAU1RCJONILodf7ySo7qZ8tafyPSogw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTgzNkQ4LzMyREFCMjkyMDdB RjExRjA5NjA2RTUzNEM0RjlBRTAyLzFSQ0pPTklMb2RmN3lTbzdxWjh0YWZ5UFNv Zy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvMVJDSk9OSUxvZGY3eVNvN3FaOHRhZnlQU29nLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTgz NkQ4LzMyREFCMjkyMDdBRjExRjA5NjA2RTUzNEM0RjlBRTAyLzFSQ0pPTklMb2Rm N3lTbzdxWjh0YWZ5UFNvZy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAJoCtKMcXDkw/w1FP0r3NDMrqfq5sXtv7sKk2rj2iw4peeVOt5wW/y7h lXMDvnM7QcxBH4xGWTV3GOHv2rC+AZLqvDjOJfNt0xLFL1PsysUdY6HhUf43Or4d lfUx6rMsnkJSbUcJp/Ps0FMbpKcTTHS5QHZgs/PCS+bFBhiE7U+N9QWn5QllzNAm hr+WPpxYWKJPWgZwYeAnr4AmJiN2HwJm9Ob41DU5KDAS74klLt/6ni0ZJ0h6t2As 2LZelvYSl3503U7aNc4dSOVqWtdA5UmNseah45irE+zvupG74mypQ0h6dypU51fW HWMpyO/MXaZQ0Fo3lgYWXJwRruwzTW0= -----END CERTIFICATE-----Generated at Mon May 12 23:56:08 2025 by rpki-client