$ rpki-client -vvf rpki.apnic.net/member_repository/A91840A8/70C2EB7AA19611EB8200CF09C4F9AE02/0UdMHaQ5s05IfCjCRynmh-CUfXM.mft File: 0UdMHaQ5s05IfCjCRynmh-CUfXM.mft (raw, json) Hash identifier: S1KGSAnxI9ctmLh+JUOBruRP/n9zVpj0ZRD3/vLV46k= Subject key identifier: F5:52:52:ED:02:84:1E:26:54:4C:9A:1D:7C:5B:BC:3F:BC:1A:5A:99 Authority key identifier: D1:47:4C:1D:A4:39:B3:4E:48:7C:28:C2:47:29:E6:87:E0:94:7D:73 Certificate issuer: /CN=A91840A8/serialNumber=D1474C1DA439B34E487C28C24729E687E0947D73 Certificate serial: 063A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0UdMHaQ5s05IfCjCRynmh-CUfXM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91840A8/70C2EB7AA19611EB8200CF09C4F9AE02/0UdMHaQ5s05IfCjCRynmh-CUfXM.mft Manifest number: 0621 Signing time: Sat 10 May 2025 22:28:36 +0000 Manifest this update: Sat 10 May 2025 22:28:35 +0000 Manifest next update: Sat 17 May 2025 22:28:35 +0000 Files and hashes: 1: 0UdMHaQ5s05IfCjCRynmh-CUfXM.crl (hash: 41vXVZ+zLOhjXJR98ehWKhSZNj/Ddb9m0Fhvcni32T8=) 2: AB4B141CA24211ED92C4107BC4F9AE02.roa (hash: gNOxN0jS6tigz/fNFU0Y3AnQczkJKZKVIShHQJ5nxmY=) 3: DD7CA58EA23F11EDBCDB6D73C4F9AE02.roa (hash: Bdwc8QswyKEgheRUIFpGKVEVqvl2AD4iR5m0y3NHcjU=) 4: E9FB74DCE57711ECBC483554C4F9AE02.roa (hash: z9ucsnrgZh6AB82HfRMNRNeuXi0RQH7hg4PLxBkGO2Y=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91840A8/70C2EB7AA19611EB8200CF09C4F9AE02/0UdMHaQ5s05IfCjCRynmh-CUfXM.crl rsync://rpki.apnic.net/member_repository/A91840A8/70C2EB7AA19611EB8200CF09C4F9AE02/0UdMHaQ5s05IfCjCRynmh-CUfXM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0UdMHaQ5s05IfCjCRynmh-CUfXM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 17 May 2025 22:28:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1594 (0x63a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91840A8, serialNumber=D1474C1DA439B34E487C28C24729E687E0947D73 Validity Not Before: May 10 22:28:35 2025 GMT Not After : May 17 22:28:35 2025 GMT Subject: CN=681fd313-b14a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:1c:68:70:61:69:75:df:58:bd:cc:37:0b:c9: fc:d5:10:b6:e1:48:0f:45:28:ec:ae:ad:5c:22:1d: 30:81:ad:72:31:ff:9b:fb:d7:1e:33:86:18:09:c9: 46:43:44:4c:76:c6:1b:43:d1:22:b0:19:6f:61:11: a0:b7:11:4d:76:e9:00:f8:ff:ea:11:95:9d:de:2f: 2a:6a:19:d8:35:50:11:4d:8d:0c:9d:fb:6b:e5:5c: 57:12:9e:2d:d2:b1:24:d0:7d:ea:66:37:b4:c2:05: 38:5f:23:9f:4a:15:83:57:19:40:31:fe:6a:9f:9f: c7:c8:b6:ba:d9:8c:40:a5:14:85:f8:72:88:d0:0a: e6:e8:c7:9a:3f:4a:a7:a8:54:4f:6f:de:05:8b:e7: d2:85:2f:72:6c:14:c2:ac:de:c5:d7:09:99:0c:8b: ee:36:b6:71:75:7f:45:97:d9:9b:62:10:53:47:80: be:2d:10:b2:02:7d:07:f6:c1:26:db:19:3a:45:e3: 2f:ab:dc:c9:05:41:e9:27:2a:f6:88:b7:1c:eb:f1: 72:ed:33:09:77:be:c2:4d:d6:07:14:bc:6b:63:6f: 6c:23:f4:91:71:ec:27:59:2f:1d:14:b3:8b:a9:16: f8:78:a7:8c:52:30:ea:95:bf:51:17:25:9a:25:5e: e7:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F5:52:52:ED:02:84:1E:26:54:4C:9A:1D:7C:5B:BC:3F:BC:1A:5A:99 X509v3 Authority Key Identifier: keyid:D1:47:4C:1D:A4:39:B3:4E:48:7C:28:C2:47:29:E6:87:E0:94:7D:73 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91840A8/70C2EB7AA19611EB8200CF09C4F9AE02/0UdMHaQ5s05IfCjCRynmh-CUfXM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0UdMHaQ5s05IfCjCRynmh-CUfXM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91840A8/70C2EB7AA19611EB8200CF09C4F9AE02/0UdMHaQ5s05IfCjCRynmh-CUfXM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 25:37:4f:d6:f6:b7:63:18:20:07:ac:8a:14:12:8c:8f:d6:bb: 3b:02:49:3d:ff:07:c2:dc:19:31:9e:d1:f7:93:f3:11:d4:51: 92:cb:eb:2c:aa:a2:7f:dc:0e:2c:46:f8:6c:b7:5c:9b:ae:b3: 02:59:0c:63:8d:fe:43:74:8a:b9:02:18:f0:be:3f:96:a3:0a: e4:bb:26:bf:cc:e1:ab:9a:58:db:61:b9:18:09:93:fb:d1:48: 0c:fe:8e:4e:3d:24:f4:ff:a7:64:e0:67:1a:66:6a:79:dc:6a: db:ad:f8:5c:9f:23:d1:eb:26:47:78:6c:26:e8:dc:85:b1:b0: 35:96:28:fb:23:47:c8:82:40:fc:74:5f:63:28:f6:f2:92:15: 61:75:db:fc:cf:76:d3:2b:be:aa:03:04:b2:84:eb:3c:91:28: 54:89:53:ab:7b:a6:e8:a2:a8:cf:0f:1a:38:b9:9b:7d:28:a3: d2:24:ba:02:e6:41:44:ed:a9:09:7b:b4:55:17:20:19:7c:47: 05:a2:58:09:0f:b0:73:d1:ec:9d:f2:3e:cd:9b:92:d9:3d:fb: fa:04:cd:7d:c4:40:15:f6:2a:8a:4e:0a:e8:96:8e:e6:9c:d8: 35:3b:68:db:10:7c:cd:db:b3:5f:12:b0:29:64:1f:0f:38:5a: 5f:38:79:74 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBjowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODQwQTgxMTAvBgNVBAUTKEQxNDc0QzFEQTQzOUIzNEU0ODdDMjhDMjQ3MjlFNjg3 RTA5NDdENzMwHhcNMjUwNTEwMjIyODM1WhcNMjUwNTE3MjIyODM1WjAYMRYwFAYD VQQDEw02ODFmZDMxMy1iMTRhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2RxocGFpdd9Yvcw3C8n81RC24UgPRSjsrq1cIh0wga1yMf+b+9ceM4YYCclG Q0RMdsYbQ9EisBlvYRGgtxFNdukA+P/qEZWd3i8qahnYNVARTY0Mnftr5VxXEp4t 0rEk0H3qZje0wgU4XyOfShWDVxlAMf5qn5/HyLa62YxApRSF+HKI0Arm6MeaP0qn qFRPb94Fi+fShS9ybBTCrN7F1wmZDIvuNrZxdX9Fl9mbYhBTR4C+LRCyAn0H9sEm 2xk6ReMvq9zJBUHpJyr2iLcc6/Fy7TMJd77CTdYHFLxrY29sI/SRcewnWS8dFLOL qRb4eKeMUjDqlb9RFyWaJV7nlwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPVSUu0C hB4mVEyaHXxbvD+8GlqZMB8GA1UdIwQYMBaAFNFHTB2kObNOSHwowkcp5ofglH1z MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NDBBOC83MEMyRUI3QUEx OTYxMUVCODIwMENGMDlDNEY5QUUwMi8wVWRNSGFRNXMwNUlmQ2pDUnlubWgtQ1Vm WE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzBVZE1IYVE1czA1SWZDakNSeW5taC1DVWZYTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NDBBOC83MEMyRUI3QUExOTYxMUVCODIwMENGMDlDNEY5QUUwMi8wVWRNSGFRNXMw NUlmQ2pDUnlubWgtQ1VmWE0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAlN0/W9rdjGCAHrIoUEoyP1rs7Akk9/wfC3BkxntH3k/MR1FGSy+ss qqJ/3A4sRvhst1ybrrMCWQxjjf5DdIq5Ahjwvj+Wowrkuya/zOGrmljbYbkYCZP7 0UgM/o5OPST0/6dk4GcaZmp53GrbrfhcnyPR6yZHeGwm6NyFsbA1lij7I0fIgkD8 dF9jKPbykhVhddv8z3bTK76qAwSyhOs8kShUiVOre6booqjPDxo4uZt9KKPSJLoC 5kFE7akJe7RVFyAZfEcFolgJD7Bz0eyd8j7Nm5LZPfv6BM19xEAV9iqKTgrolo7m nNg1O2jbEHzN27NfErApZB8POFpfOHl0 -----END CERTIFICATE-----Generated at Sun May 11 18:53:01 2025 by rpki-client