$ rpki-client -vvf rpki.apnic.net/member_repository/A91A5A82/BB98A45E090811F0A493E922C4F9AE02/Wr7NjqrTfqV665OfLAsUKXSEH4o.mft File: Wr7NjqrTfqV665OfLAsUKXSEH4o.mft (raw, json) Hash identifier: mU9kpa1kxXM8QgoArsbiXxiI5apkUmOwoeRiDXp7Xqg= Subject key identifier: 9C:A3:20:A6:5A:18:23:08:0D:C6:EE:99:AF:23:90:9C:3F:9A:78:E9 Authority key identifier: 5A:BE:CD:8E:AA:D3:7E:A5:7A:EB:93:9F:2C:0B:14:29:74:84:1F:8A Certificate issuer: /CN=A91A5A82/serialNumber=5ABECD8EAAD37EA57AEB939F2C0B142974841F8A Certificate serial: 1D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Wr7NjqrTfqV665OfLAsUKXSEH4o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A5A82/BB98A45E090811F0A493E922C4F9AE02/Wr7NjqrTfqV665OfLAsUKXSEH4o.mft Manifest number: 1C Signing time: Thu 15 May 2025 07:14:20 +0000 Manifest this update: Thu 15 May 2025 07:14:19 +0000 Manifest next update: Thu 22 May 2025 07:14:19 +0000 Files and hashes: 1: Wr7NjqrTfqV665OfLAsUKXSEH4o.crl (hash: bZuSHbelcgCsvuIdWKR/uXiW7O+STJ5I7NkK2mUwnJY=) 2: D0B32912090911F0A5348F26C4F9AE02.roa (hash: uW1VF7Kvr3qqb0xY8fd0nDeotf3CK4ccwfdt9+YehUk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A5A82/BB98A45E090811F0A493E922C4F9AE02/Wr7NjqrTfqV665OfLAsUKXSEH4o.crl rsync://rpki.apnic.net/member_repository/A91A5A82/BB98A45E090811F0A493E922C4F9AE02/Wr7NjqrTfqV665OfLAsUKXSEH4o.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Wr7NjqrTfqV665OfLAsUKXSEH4o.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 22 May 2025 07:14:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 29 (0x1d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A5A82, serialNumber=5ABECD8EAAD37EA57AEB939F2C0B142974841F8A Validity Not Before: May 15 07:14:19 2025 GMT Not After : May 22 07:14:19 2025 GMT Subject: CN=6825944c-d65a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:78:95:e3:aa:fe:c9:1a:f9:4f:5a:9a:68:29: 56:1f:20:ab:a9:0d:14:78:e3:73:0e:4b:e9:cb:9d: 94:ad:51:39:03:91:ac:16:8f:e9:06:63:0f:a8:ff: 66:de:2c:4c:df:c2:d7:2d:1e:26:cb:e0:46:05:51: d5:20:99:17:72:84:70:e0:61:45:a9:0d:a2:c5:5c: 0d:de:0a:46:d3:bc:1d:6b:1c:dd:25:c7:bb:70:86: ae:13:c9:8d:6b:68:93:bc:22:31:97:98:f2:63:90: df:5a:d1:97:ed:17:cf:fb:6a:e7:9f:83:dd:7d:88: a8:9b:8b:83:97:a0:5f:86:4c:f1:a0:86:6f:14:ba: 33:58:a6:7e:25:9f:30:a6:55:db:33:70:5a:a6:79: 71:fe:72:c5:d9:38:22:43:5c:9f:44:73:4c:3f:82: ab:3b:76:10:23:31:0c:52:ae:f0:49:12:a1:41:94: bb:64:cf:df:2e:18:b5:c8:9b:a1:66:39:38:5e:3d: a6:dc:05:85:b4:19:43:9b:89:8e:f9:f0:59:41:df: 4d:6b:35:15:a4:8a:d1:4d:1d:67:b9:97:92:b4:56: c6:35:c7:a0:d8:37:d8:8c:cf:3c:97:c6:bc:cb:d5: 1e:06:a8:2d:f8:40:24:d2:34:a1:c6:c5:bc:a8:d1: fe:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9C:A3:20:A6:5A:18:23:08:0D:C6:EE:99:AF:23:90:9C:3F:9A:78:E9 X509v3 Authority Key Identifier: keyid:5A:BE:CD:8E:AA:D3:7E:A5:7A:EB:93:9F:2C:0B:14:29:74:84:1F:8A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A5A82/BB98A45E090811F0A493E922C4F9AE02/Wr7NjqrTfqV665OfLAsUKXSEH4o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Wr7NjqrTfqV665OfLAsUKXSEH4o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A5A82/BB98A45E090811F0A493E922C4F9AE02/Wr7NjqrTfqV665OfLAsUKXSEH4o.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 85:c3:1e:14:38:d5:2b:40:d7:1c:5e:3b:ff:6a:98:e2:69:ce: 2f:ef:03:4d:13:5c:f9:a1:51:a7:07:57:93:c9:d7:c9:b4:e7: 62:d9:6f:5d:c0:25:e2:57:f5:4a:93:fe:cf:4d:d6:ed:86:6a: 02:8a:3e:ed:22:bc:cf:d9:5a:77:e6:3d:44:f9:76:c8:38:4f: e8:4e:05:25:2c:65:0f:65:82:73:22:cc:5a:63:63:8b:5d:d1: db:8d:b6:b6:07:4a:b1:af:38:03:96:59:fa:af:a1:3f:e1:66: bc:31:ff:a0:bd:0f:f0:f4:c5:d5:98:f7:39:8b:5b:52:1e:bd: 16:fe:2e:53:a7:7c:22:9b:76:54:ea:c9:7b:0c:27:3f:18:0a: 33:95:9d:6c:f3:e6:60:a1:43:17:56:0f:a3:d8:63:23:f2:db: 60:bb:b4:3e:00:25:3d:a7:f5:61:9a:51:73:b0:6b:eb:65:7d: 53:b9:17:5e:d7:40:0b:d4:87:bb:8a:13:d5:90:55:a4:fd:f2: 57:a6:d9:92:d4:f1:ff:80:12:a2:35:27:e5:67:f7:05:12:38: 71:75:6a:92:0f:23:29:a5:75:92:64:9f:1a:74:6b:9e:1f:65: 57:06:d1:6a:6e:5f:af:fe:e5:e1:58:d1:15:82:06:b7:78:19: 71:ab:72:2e -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBHTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFB NUE4MjExMC8GA1UEBRMoNUFCRUNEOEVBQUQzN0VBNTdBRUI5MzlGMkMwQjE0Mjk3 NDg0MUY4QTAeFw0yNTA1MTUwNzE0MTlaFw0yNTA1MjIwNzE0MTlaMBgxFjAUBgNV BAMTDTY4MjU5NDRjLWQ2NWEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDSeJXjqv7JGvlPWppoKVYfIKupDRR443MOS+nLnZStUTkDkawWj+kGYw+o/2be LEzfwtctHibL4EYFUdUgmRdyhHDgYUWpDaLFXA3eCkbTvB1rHN0lx7twhq4TyY1r aJO8IjGXmPJjkN9a0ZftF8/7auefg919iKibi4OXoF+GTPGghm8UujNYpn4lnzCm VdszcFqmeXH+csXZOCJDXJ9Ec0w/gqs7dhAjMQxSrvBJEqFBlLtkz98uGLXIm6Fm OThePabcBYW0GUObiY758FlB301rNRWkitFNHWe5l5K0VsY1x6DYN9iMzzyXxrzL 1R4GqC34QCTSNKHGxbyo0f47AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUnKMgploY IwgNxu6ZryOQnD+aeOkwHwYDVR0jBBgwFoAUWr7NjqrTfqV665OfLAsUKXSEH4ow DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUE1QTgyL0JCOThBNDVFMDkw ODExRjBBNDkzRTkyMkM0RjlBRTAyL1dyN05qcXJUZnFWNjY1T2ZMQXNVS1hTRUg0 by5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvV3I3TmpxclRmcVY2NjVPZkxBc1VLWFNFSDRvLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUE1 QTgyL0JCOThBNDVFMDkwODExRjBBNDkzRTkyMkM0RjlBRTAyL1dyN05qcXJUZnFW NjY1T2ZMQXNVS1hTRUg0by5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAIXDHhQ41StA1xxeO/9qmOJpzi/vA00TXPmhUacHV5PJ18m052LZb13A JeJX9UqT/s9N1u2GagKKPu0ivM/ZWnfmPUT5dsg4T+hOBSUsZQ9lgnMizFpjY4td 0duNtrYHSrGvOAOWWfqvoT/hZrwx/6C9D/D0xdWY9zmLW1IevRb+LlOnfCKbdlTq yXsMJz8YCjOVnWzz5mChQxdWD6PYYyPy22C7tD4AJT2n9WGaUXOwa+tlfVO5F17X QAvUh7uKE9WQVaT98lem2ZLU8f+AEqI1J+Vn9wUSOHF1apIPIymldZJknxp0a54f ZVcG0WpuX6/+5eFY0RWCBrd4GXGrci4= -----END CERTIFICATE-----Generated at Sat May 17 02:11:28 2025 by rpki-client