$ rpki-client -vvf rpki.apnic.net/member_repository/A91A7E29/56F1C532879011EC86D0441EC4F9AE02/1f9FyAWBJcJy3wRtwLjgb6owT88.mft File: 1f9FyAWBJcJy3wRtwLjgb6owT88.mft (raw, json) Hash identifier: OCL5ren0yawNwDbqsVku1f0iX3WLTcX/TLu8w4NXfhw= Subject key identifier: 9D:DF:51:AE:6D:FA:50:99:67:23:3E:04:21:98:EE:05:6A:4D:BF:B4 Authority key identifier: D5:FF:45:C8:05:81:25:C2:72:DF:04:6D:C0:B8:E0:6F:AA:30:4F:CF Certificate issuer: /CN=A91A7E29/serialNumber=D5FF45C8058125C272DF046DC0B8E06FAA304FCF Certificate serial: 03D6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1f9FyAWBJcJy3wRtwLjgb6owT88.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A7E29/56F1C532879011EC86D0441EC4F9AE02/1f9FyAWBJcJy3wRtwLjgb6owT88.mft Manifest number: 03CE Signing time: Tue 13 May 2025 00:26:16 +0000 Manifest this update: Tue 13 May 2025 00:26:15 +0000 Manifest next update: Tue 20 May 2025 00:26:15 +0000 Files and hashes: 1: 1f9FyAWBJcJy3wRtwLjgb6owT88.crl (hash: Q/RPRVUALhydVWEUD2FbFQzRNHzFLpCYqSysR2PMe0M=) 2: 99F51284A1E911EDAD7CE929C4F9AE02.roa (hash: DgFh0007lZzBIY6/Uazy8v7Lvih8jtP3rAyQ1LouyMA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A7E29/56F1C532879011EC86D0441EC4F9AE02/1f9FyAWBJcJy3wRtwLjgb6owT88.crl rsync://rpki.apnic.net/member_repository/A91A7E29/56F1C532879011EC86D0441EC4F9AE02/1f9FyAWBJcJy3wRtwLjgb6owT88.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1f9FyAWBJcJy3wRtwLjgb6owT88.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 19 May 2025 21:34:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 982 (0x3d6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A7E29, serialNumber=D5FF45C8058125C272DF046DC0B8E06FAA304FCF Validity Not Before: May 13 00:26:15 2025 GMT Not After : May 20 00:26:15 2025 GMT Subject: CN=682291a7-6af7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:ba:15:d0:c1:9b:2c:fb:1a:28:0e:94:7f:46: 90:e4:d7:7d:6e:d3:e3:0e:f3:ed:32:87:c0:98:67: 65:7a:2e:61:1f:a6:f1:e4:80:01:30:88:58:1e:70: 76:78:6a:eb:01:19:a9:01:10:6f:c3:f2:81:30:f1: 1a:e6:a4:95:a4:8b:b0:c6:c0:ce:aa:6d:c6:74:db: b7:b4:42:48:e1:e5:0f:ff:e3:e2:17:e5:05:89:ca: d2:98:e6:5b:83:47:74:2f:9c:20:d5:ec:18:05:78: bf:a4:70:17:80:d5:68:15:8d:45:6f:61:6e:e9:02: 20:ae:ca:ab:86:8d:18:38:0e:a9:02:67:49:1c:0f: f0:b1:b3:d4:b6:47:0a:bf:cd:d5:77:33:15:e7:47: ac:1d:c2:af:73:fd:eb:58:52:9f:a4:5f:5c:45:90: d5:3c:c2:e1:c1:34:77:02:bf:83:68:a2:76:50:5c: 16:40:20:d0:67:a0:a7:8f:65:18:f7:ed:df:7b:07: 3f:bd:72:ad:6f:75:a3:79:5d:5f:32:8b:d4:22:11: 1c:22:b0:2a:0f:24:ab:bc:ad:06:aa:c3:7a:b7:6f: a3:26:2d:e4:4d:6c:8d:15:58:75:ea:0a:3b:b9:a1: 22:30:e4:40:59:3e:7d:8c:31:2d:65:e0:08:09:96: d7:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9D:DF:51:AE:6D:FA:50:99:67:23:3E:04:21:98:EE:05:6A:4D:BF:B4 X509v3 Authority Key Identifier: keyid:D5:FF:45:C8:05:81:25:C2:72:DF:04:6D:C0:B8:E0:6F:AA:30:4F:CF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A7E29/56F1C532879011EC86D0441EC4F9AE02/1f9FyAWBJcJy3wRtwLjgb6owT88.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1f9FyAWBJcJy3wRtwLjgb6owT88.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A7E29/56F1C532879011EC86D0441EC4F9AE02/1f9FyAWBJcJy3wRtwLjgb6owT88.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption aa:cb:9d:d0:e8:42:6f:e2:23:68:0f:72:a3:b5:b5:e7:f5:b1: 26:e5:b6:68:dc:17:93:01:35:28:34:9f:a2:9b:61:a4:f8:99: 90:48:d6:dd:6d:22:77:b3:24:7a:e9:22:ac:60:ce:55:ab:ad: bd:76:34:a1:ca:53:57:41:3a:65:17:86:db:1d:f1:7e:78:59: 64:48:8e:10:96:d0:e1:e9:3d:00:0a:54:65:2e:42:d4:a7:96: 6e:c6:cc:b3:fd:e0:24:a2:4e:33:3f:62:8f:7a:3c:56:5e:1b: f5:08:50:2f:e1:2f:74:d1:a8:84:f5:04:30:d0:56:d1:fd:c9: 64:51:18:d9:aa:cb:62:7c:4d:8c:55:69:73:ce:b8:e3:4f:57: fa:f6:37:0b:13:66:f9:f4:b5:14:ef:f1:86:b6:97:5a:35:71: b8:4e:db:bb:24:73:f1:bc:e1:57:cb:52:f3:d8:43:1d:d8:1e: 4c:99:7d:4c:67:e3:05:ed:27:88:ac:d5:c0:d5:0d:87:0e:b9: 4b:d9:d4:b3:46:87:aa:4f:62:65:23:95:07:72:96:a4:6a:dc: ff:39:d7:5d:23:9d:3b:02:1b:7b:3a:d7:3f:ec:9e:46:41:a5: 93:fd:98:9c:02:b6:25:05:7b:f9:1b:c4:20:4b:b5:ad:c5:b2: 90:e8:a0:32 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA9YwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTdFMjkxMTAvBgNVBAUTKEQ1RkY0NUM4MDU4MTI1QzI3MkRGMDQ2REMwQjhFMDZG QUEzMDRGQ0YwHhcNMjUwNTEzMDAyNjE1WhcNMjUwNTIwMDAyNjE1WjAYMRYwFAYD VQQDEw02ODIyOTFhNy02YWY3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs7oV0MGbLPsaKA6Uf0aQ5Nd9btPjDvPtMofAmGdlei5hH6bx5IABMIhYHnB2 eGrrARmpARBvw/KBMPEa5qSVpIuwxsDOqm3GdNu3tEJI4eUP/+PiF+UFicrSmOZb g0d0L5wg1ewYBXi/pHAXgNVoFY1Fb2Fu6QIgrsqrho0YOA6pAmdJHA/wsbPUtkcK v83VdzMV50esHcKvc/3rWFKfpF9cRZDVPMLhwTR3Ar+DaKJ2UFwWQCDQZ6Cnj2UY 9+3fewc/vXKtb3WjeV1fMovUIhEcIrAqDySrvK0GqsN6t2+jJi3kTWyNFVh16go7 uaEiMORAWT59jDEtZeAICZbXDQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJ3fUa5t +lCZZyM+BCGY7gVqTb+0MB8GA1UdIwQYMBaAFNX/RcgFgSXCct8EbcC44G+qME/P MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBN0UyOS81NkYxQzUzMjg3 OTAxMUVDODZEMDQ0MUVDNEY5QUUwMi8xZjlGeUFXQkpjSnkzd1J0d0xqZ2I2b3dU ODguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFmOUZ5QVdCSmNKeTN3UnR3TGpnYjZvd1Q4OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB N0UyOS81NkYxQzUzMjg3OTAxMUVDODZEMDQ0MUVDNEY5QUUwMi8xZjlGeUFXQkpj Snkzd1J0d0xqZ2I2b3dUODgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCqy53Q6EJv4iNoD3KjtbXn9bEm5bZo3BeTATUoNJ+im2Gk+JmQSNbd bSJ3syR66SKsYM5Vq629djShylNXQTplF4bbHfF+eFlkSI4QltDh6T0AClRlLkLU p5Zuxsyz/eAkok4zP2KPejxWXhv1CFAv4S900aiE9QQw0FbR/clkURjZqstifE2M VWlzzrjjT1f69jcLE2b59LUU7/GGtpdaNXG4Ttu7JHPxvOFXy1Lz2EMd2B5MmX1M Z+MF7SeIrNXA1Q2HDrlL2dSzRoeqT2JlI5UHcpakatz/OdddI507Aht7Otc/7J5G QaWT/ZicArYlBXv5G8QgS7WtxbKQ6KAy -----END CERTIFICATE-----Generated at Tue May 13 02:44:06 2025 by rpki-client