$ rpki-client -vvf rpki.apnic.net/member_repository/A91A5030/CE6A3F10FD2A11E4B74FEA42C4F9AE02/h2m5UvnIAGdXkp8GmXzeWx5EjxQ.mft File: h2m5UvnIAGdXkp8GmXzeWx5EjxQ.mft (raw, json) Hash identifier: VbXgSOORuHHwXwf2ewXLInIYgUTgmBjRilcdwk+z4vE= Subject key identifier: C8:B3:98:49:15:64:8A:C6:6A:87:0C:8F:9B:78:A2:24:20:1E:1F:DE Authority key identifier: 87:69:B9:52:F9:C8:00:67:57:92:9F:06:99:7C:DE:5B:1E:44:8F:14 Certificate issuer: /CN=A91A5030/serialNumber=8769B952F9C8006757929F06997CDE5B1E448F14 Certificate serial: 2602 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h2m5UvnIAGdXkp8GmXzeWx5EjxQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A5030/CE6A3F10FD2A11E4B74FEA42C4F9AE02/h2m5UvnIAGdXkp8GmXzeWx5EjxQ.mft Manifest number: 25EF Signing time: Sat 10 May 2025 15:39:20 +0000 Manifest this update: Sat 10 May 2025 15:39:19 +0000 Manifest next update: Sat 17 May 2025 15:39:19 +0000 Files and hashes: 1: h2m5UvnIAGdXkp8GmXzeWx5EjxQ.crl (hash: 1Uzg91i43y0V8VcaDOs3QALIEM/6f3C4iKZHxyuzQSw=) 2: 764601EE6A7A11EFAF10EC37C4F9AE02.roa (hash: wlnyKHrlK/WWGM/sWHlA6+OjLcmqJ1sU/DSuQx9lYJQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A5030/CE6A3F10FD2A11E4B74FEA42C4F9AE02/h2m5UvnIAGdXkp8GmXzeWx5EjxQ.crl rsync://rpki.apnic.net/member_repository/A91A5030/CE6A3F10FD2A11E4B74FEA42C4F9AE02/h2m5UvnIAGdXkp8GmXzeWx5EjxQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h2m5UvnIAGdXkp8GmXzeWx5EjxQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 17 May 2025 15:39:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9730 (0x2602) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A5030, serialNumber=8769B952F9C8006757929F06997CDE5B1E448F14 Validity Not Before: May 10 15:39:19 2025 GMT Not After : May 17 15:39:19 2025 GMT Subject: CN=681f7327-dd85 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:be:cd:ed:35:e3:7f:58:fb:0a:bc:57:2c:57: c2:9a:1c:97:bb:b6:d3:4c:37:0b:9b:21:1a:4a:7a: 0a:35:97:1c:f9:1c:f0:13:a4:a9:75:3c:3f:23:e5: 12:16:c9:3f:2f:67:51:6d:94:02:a4:37:13:f2:90: 21:48:ce:5f:1a:53:0b:66:bc:9c:68:fd:05:48:6c: 67:0e:77:ce:97:55:98:70:16:5c:c7:c9:2a:e0:2e: cf:f8:8e:46:2d:4a:f7:13:7d:05:cc:77:5a:6f:27: 0f:a4:da:80:dd:5f:ca:8a:ea:0e:e8:07:2b:88:44: 77:7a:d8:99:dc:ca:4c:9a:1c:f4:bc:e4:e5:bc:43: 67:6f:6a:6f:65:62:5a:80:3a:38:fd:6b:af:28:39: c7:ff:ca:91:ce:81:4d:f5:4f:96:5d:f1:c2:25:13: aa:bf:0d:aa:41:dd:22:59:43:51:f7:2f:cc:e8:5e: ec:4c:e4:5e:61:0b:0b:bd:e1:6f:35:e6:c8:52:58: 29:9b:79:a8:07:96:8e:21:57:77:0a:8b:eb:df:ad: 19:59:e1:9a:1e:07:f5:17:31:18:eb:e3:83:b1:f8: 76:dc:20:fa:86:65:08:0b:9b:27:bf:fc:a7:90:8e: ba:41:27:a4:ed:95:ff:44:a2:b0:21:d4:c4:9a:ac: 2f:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C8:B3:98:49:15:64:8A:C6:6A:87:0C:8F:9B:78:A2:24:20:1E:1F:DE X509v3 Authority Key Identifier: keyid:87:69:B9:52:F9:C8:00:67:57:92:9F:06:99:7C:DE:5B:1E:44:8F:14 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A5030/CE6A3F10FD2A11E4B74FEA42C4F9AE02/h2m5UvnIAGdXkp8GmXzeWx5EjxQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h2m5UvnIAGdXkp8GmXzeWx5EjxQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A5030/CE6A3F10FD2A11E4B74FEA42C4F9AE02/h2m5UvnIAGdXkp8GmXzeWx5EjxQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 04:62:a2:73:f3:a4:09:e2:c8:9e:1f:af:8b:d7:b5:b2:e0:7d: ff:2a:96:79:6b:8e:8e:f5:9a:97:f1:20:69:9d:3e:44:a9:fc: a9:6f:59:5a:4e:80:6f:94:3f:1f:cc:ce:15:d8:47:54:dd:4b: d4:10:9b:fe:d7:f3:e7:e3:d0:29:e5:4e:3d:bf:d7:b0:5c:6e: 8a:11:57:4c:7e:90:1a:22:47:eb:04:12:0c:66:11:f3:9a:8f: 60:a6:68:db:9f:ef:1e:17:b4:5e:b9:c1:28:89:ff:b0:29:88: c9:f4:e2:5f:29:0d:69:92:eb:73:18:f1:06:76:e5:92:f2:fe: f4:64:5b:62:8a:62:54:9c:13:e9:09:58:1b:15:8a:03:1f:33: 69:f5:01:58:58:30:79:5d:35:3d:f5:45:0b:57:b3:0e:13:f5: a1:69:0f:be:66:21:4c:09:f4:cc:4c:df:2b:cc:7e:af:3c:2b: 25:83:2b:02:c2:ce:c1:2a:ec:89:b6:80:61:03:c7:2a:04:f3: 78:7a:96:06:79:58:43:64:3e:b8:6d:c3:46:67:89:7e:67:8c: 44:9a:bd:70:96:a5:1c:10:0b:15:4f:46:5b:b0:23:a6:af:f9: 33:58:39:18:e0:37:c6:d4:29:4d:ce:98:65:6a:9c:a6:60:5a: 9a:36:c5:af -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICJgIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTUwMzAxMTAvBgNVBAUTKDg3NjlCOTUyRjlDODAwNjc1NzkyOUYwNjk5N0NERTVC MUU0NDhGMTQwHhcNMjUwNTEwMTUzOTE5WhcNMjUwNTE3MTUzOTE5WjAYMRYwFAYD VQQDEw02ODFmNzMyNy1kZDg1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu77N7TXjf1j7CrxXLFfCmhyXu7bTTDcLmyEaSnoKNZcc+RzwE6SpdTw/I+US Fsk/L2dRbZQCpDcT8pAhSM5fGlMLZrycaP0FSGxnDnfOl1WYcBZcx8kq4C7P+I5G LUr3E30FzHdabycPpNqA3V/KiuoO6AcriER3etiZ3MpMmhz0vOTlvENnb2pvZWJa gDo4/WuvKDnH/8qRzoFN9U+WXfHCJROqvw2qQd0iWUNR9y/M6F7sTOReYQsLveFv NebIUlgpm3moB5aOIVd3Covr360ZWeGaHgf1FzEY6+ODsfh23CD6hmUIC5snv/yn kI66QSek7ZX/RKKwIdTEmqwvIQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMizmEkV ZIrGaocMj5t4oiQgHh/eMB8GA1UdIwQYMBaAFIdpuVL5yABnV5KfBpl83lseRI8U MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTAzMC9DRTZBM0YxMEZE MkExMUU0Qjc0RkVBNDJDNEY5QUUwMi9oMm01VXZuSUFHZFhrcDhHbVh6ZVd4NUVq eFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2gybTVVdm5JQUdkWGtwOEdtWHplV3g1RWp4US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NTAzMC9DRTZBM0YxMEZEMkExMUU0Qjc0RkVBNDJDNEY5QUUwMi9oMm01VXZuSUFH ZFhrcDhHbVh6ZVd4NUVqeFEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAEYqJz86QJ4sieH6+L17Wy4H3/KpZ5a46O9ZqX8SBpnT5Eqfypb1la ToBvlD8fzM4V2EdU3UvUEJv+1/Pn49Ap5U49v9ewXG6KEVdMfpAaIkfrBBIMZhHz mo9gpmjbn+8eF7ReucEoif+wKYjJ9OJfKQ1pkutzGPEGduWS8v70ZFtiimJUnBPp CVgbFYoDHzNp9QFYWDB5XTU99UULV7MOE/WhaQ++ZiFMCfTMTN8rzH6vPCslgysC ws7BKuyJtoBhA8cqBPN4epYGeVhDZD64bcNGZ4l+Z4xEmr1wlqUcEAsVT0ZbsCOm r/kzWDkY4DfG1ClNzphlapymYFqaNsWv -----END CERTIFICATE-----Generated at Mon May 12 04:13:20 2025 by rpki-client