$ rpki-client -vvf rpki.apnic.net/member_repository/A91A31F5/A754D380D6EC11EFA2799C69C4F9AE02/SRNmdefiNOfS-IRZmOLGLbSIgso.mft File: SRNmdefiNOfS-IRZmOLGLbSIgso.mft (raw, json) Hash identifier: 64d5ZJoAbTG22w4+XFEr/d4lmlTMxQgBfHqQzZBP664= Subject key identifier: EA:E0:2B:17:CF:08:10:68:89:96:C7:D5:EC:EE:31:F5:7D:0E:89:CE Authority key identifier: 49:13:66:75:E7:E2:34:E7:D2:F8:84:59:98:E2:C6:2D:B4:88:82:CA Certificate issuer: /CN=A91A31F5/serialNumber=49136675E7E234E7D2F8845998E2C62DB48882CA Certificate serial: 3D Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/SRNmdefiNOfS-IRZmOLGLbSIgso.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A31F5/A754D380D6EC11EFA2799C69C4F9AE02/SRNmdefiNOfS-IRZmOLGLbSIgso.mft Manifest number: 3C Signing time: Tue 13 May 2025 06:44:20 +0000 Manifest this update: Tue 13 May 2025 06:44:20 +0000 Manifest next update: Tue 20 May 2025 06:44:20 +0000 Files and hashes: 1: SRNmdefiNOfS-IRZmOLGLbSIgso.crl (hash: Gh41WlHqAXAb61L/ANfKFs5hbeNDnVEGheUnSbEOspc=) 2: A8A5C28ED6ED11EFB4D7876BC4F9AE02.roa (hash: XLgRz6Ys+AWKVb/kmctJ9W9xNxym6vJibxlk+kHS4Ys=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A31F5/A754D380D6EC11EFA2799C69C4F9AE02/SRNmdefiNOfS-IRZmOLGLbSIgso.crl rsync://rpki.apnic.net/member_repository/A91A31F5/A754D380D6EC11EFA2799C69C4F9AE02/SRNmdefiNOfS-IRZmOLGLbSIgso.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/SRNmdefiNOfS-IRZmOLGLbSIgso.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 20 May 2025 06:44:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 61 (0x3d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A31F5, serialNumber=49136675E7E234E7D2F8845998E2C62DB48882CA Validity Not Before: May 13 06:44:20 2025 GMT Not After : May 20 06:44:20 2025 GMT Subject: CN=6822ea44-ddd6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:76:8c:47:d5:fe:91:4a:ee:af:bb:a1:3e:68: f9:02:b6:5e:77:d0:17:21:a1:6c:a4:73:c5:e0:27: 19:21:22:e6:bb:4c:b7:de:0e:60:c2:27:a3:53:01: 50:cf:75:f5:1a:57:46:35:62:3e:a4:6e:b2:b8:61: 12:56:70:a6:95:be:54:82:40:8b:17:84:d3:f3:8d: 13:72:43:28:d7:07:38:0c:2b:82:9b:f1:ec:92:e0: 3e:7e:1a:5b:43:7b:85:51:83:86:e1:37:22:90:34: 3f:98:ce:03:a5:fc:ed:99:59:b4:6d:34:92:a0:46: 0d:75:91:7f:bd:49:52:7f:fe:fb:68:73:9d:3a:01: 3d:91:c7:1e:9e:1f:0f:a0:b5:84:90:e8:2a:c7:18: f7:a8:df:9f:b0:21:e2:cb:51:94:ae:f3:35:f3:2a: 0c:f9:2d:b7:46:df:1d:35:ad:bf:f2:1e:09:43:2f: e4:86:2c:f9:23:cb:45:f8:05:8f:7e:33:a0:4d:25: 0c:9d:2d:3c:0d:0c:ae:16:46:35:3b:f1:43:22:2c: 0a:7d:2b:47:20:39:80:0a:50:cd:24:27:a7:75:c1: a4:bf:bd:07:11:f5:c0:32:d8:69:29:3c:86:12:fd: 46:65:58:23:24:48:53:ae:76:fe:60:5a:df:a0:bc: b8:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EA:E0:2B:17:CF:08:10:68:89:96:C7:D5:EC:EE:31:F5:7D:0E:89:CE X509v3 Authority Key Identifier: keyid:49:13:66:75:E7:E2:34:E7:D2:F8:84:59:98:E2:C6:2D:B4:88:82:CA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A31F5/A754D380D6EC11EFA2799C69C4F9AE02/SRNmdefiNOfS-IRZmOLGLbSIgso.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/SRNmdefiNOfS-IRZmOLGLbSIgso.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A31F5/A754D380D6EC11EFA2799C69C4F9AE02/SRNmdefiNOfS-IRZmOLGLbSIgso.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9a:42:00:f7:52:3a:bf:79:09:e5:62:53:e4:98:3f:45:09:1a: 8a:6c:6c:3f:2d:70:df:f6:a3:24:8b:60:2b:fc:0a:b6:ca:32: ba:19:f5:1e:73:32:03:70:0d:94:f8:9a:6b:49:22:5c:09:32: 36:7b:b8:b1:c7:20:0a:69:02:2c:ec:18:bb:68:d4:09:09:08: c2:b1:c3:72:fa:a5:c7:2e:53:cb:81:d4:94:6a:c1:19:2d:30: a6:99:a4:70:29:58:7b:76:fc:e0:c9:be:fe:a7:b8:db:ba:fc: 24:cf:10:b3:dd:27:a9:77:46:ea:ed:54:7b:de:5c:5a:f6:01: 43:e4:d2:67:92:82:22:ad:43:03:e2:89:41:a3:ed:55:67:99: fc:98:15:b4:f1:aa:c0:82:ac:d7:61:2b:f9:b2:48:68:d8:81: b9:70:1a:a7:c7:50:df:72:86:bb:46:e6:a3:51:95:c6:01:59: 8d:83:a2:f8:55:ba:b0:14:d8:03:fe:be:e7:25:2a:06:81:a7: ac:77:b8:7f:18:e1:1f:02:1f:4e:3e:40:ee:3d:75:db:a3:a1: 08:97:b3:68:34:97:fc:c7:62:f3:78:e7:9b:f1:df:68:2a:88: 03:58:26:95:b2:dd:af:37:93:22:7e:3a:fe:64:ab:4f:5b:c3: 75:3a:3e:ac -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBPTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFB MzFGNTExMC8GA1UEBRMoNDkxMzY2NzVFN0UyMzRFN0QyRjg4NDU5OThFMkM2MkRC NDg4ODJDQTAeFw0yNTA1MTMwNjQ0MjBaFw0yNTA1MjAwNjQ0MjBaMBgxFjAUBgNV BAMTDTY4MjJlYTQ0LWRkZDYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC1doxH1f6RSu6vu6E+aPkCtl530BchoWykc8XgJxkhIua7TLfeDmDCJ6NTAVDP dfUaV0Y1Yj6kbrK4YRJWcKaVvlSCQIsXhNPzjRNyQyjXBzgMK4Kb8eyS4D5+GltD e4VRg4bhNyKQND+YzgOl/O2ZWbRtNJKgRg11kX+9SVJ//vtoc506AT2Rxx6eHw+g tYSQ6CrHGPeo35+wIeLLUZSu8zXzKgz5LbdG3x01rb/yHglDL+SGLPkjy0X4BY9+ M6BNJQydLTwNDK4WRjU78UMiLAp9K0cgOYAKUM0kJ6d1waS/vQcR9cAy2GkpPIYS /UZlWCMkSFOudv5gWt+gvLgbAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU6uArF88I EGiJlsfV7O4x9X0Oic4wHwYDVR0jBBgwFoAUSRNmdefiNOfS+IRZmOLGLbSIgsow DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUEzMUY1L0E3NTREMzgwRDZF QzExRUZBMjc5OUM2OUM0RjlBRTAyL1NSTm1kZWZpTk9mUy1JUlptT0xHTGJTSWdz by5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvU1JObWRlZmlOT2ZTLUlSWm1PTEdMYlNJZ3NvLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUEz MUY1L0E3NTREMzgwRDZFQzExRUZBMjc5OUM2OUM0RjlBRTAyL1NSTm1kZWZpTk9m Uy1JUlptT0xHTGJTSWdzby5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAJpCAPdSOr95CeViU+SYP0UJGopsbD8tcN/2oySLYCv8CrbKMroZ9R5z MgNwDZT4mmtJIlwJMjZ7uLHHIAppAizsGLto1AkJCMKxw3L6pccuU8uB1JRqwRkt MKaZpHApWHt2/ODJvv6nuNu6/CTPELPdJ6l3RurtVHveXFr2AUPk0meSgiKtQwPi iUGj7VVnmfyYFbTxqsCCrNdhK/mySGjYgblwGqfHUN9yhrtG5qNRlcYBWY2DovhV urAU2AP+vuclKgaBp6x3uH8Y4R8CH04+QO49ddujoQiXs2g0l/zHYvN455vx32gq iANYJpWy3a83kyJ+Ov5kq09bw3U6Pqw= -----END CERTIFICATE-----Generated at Thu May 15 00:36:35 2025 by rpki-client