$ rpki-client -vvf rpki.apnic.net/member_repository/A91A83B4/E79ED49083F711ECA47A6265C4F9AE02/rrg5zL-tW9mKeg2pBTvCcm8mkE8.mft File: rrg5zL-tW9mKeg2pBTvCcm8mkE8.mft (raw, json) Hash identifier: TM8TFfWoI05osYwUY1jWhmjFsmM3btVS9CdO6e8+woo= Subject key identifier: 18:4B:2E:2A:ED:DB:ED:DA:FE:AF:04:BA:23:57:A0:C1:19:D4:9E:36 Authority key identifier: AE:B8:39:CC:BF:AD:5B:D9:8A:7A:0D:A9:05:3B:C2:72:6F:26:90:4F Certificate issuer: /CN=A91A83B4/serialNumber=AEB839CCBFAD5BD98A7A0DA9053BC2726F26904F Certificate serial: 03E9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rrg5zL-tW9mKeg2pBTvCcm8mkE8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A83B4/E79ED49083F711ECA47A6265C4F9AE02/rrg5zL-tW9mKeg2pBTvCcm8mkE8.mft Manifest number: 03DE Signing time: Tue 13 May 2025 00:24:43 +0000 Manifest this update: Tue 13 May 2025 00:24:42 +0000 Manifest next update: Tue 20 May 2025 00:24:42 +0000 Files and hashes: 1: rrg5zL-tW9mKeg2pBTvCcm8mkE8.crl (hash: tB7vv1CAX6zWF0R/OgX0PVsvBmwKQvEhL9dBzS9zB7s=) 2: A98BD3DE91F211ECA28ADD36C4F9AE02.roa (hash: aC9p2yyQTb3Yh1HdZsc4PLjnJ/5VSg4x8HrvxdVV15Y=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A83B4/E79ED49083F711ECA47A6265C4F9AE02/rrg5zL-tW9mKeg2pBTvCcm8mkE8.crl rsync://rpki.apnic.net/member_repository/A91A83B4/E79ED49083F711ECA47A6265C4F9AE02/rrg5zL-tW9mKeg2pBTvCcm8mkE8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rrg5zL-tW9mKeg2pBTvCcm8mkE8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 19 May 2025 21:34:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1001 (0x3e9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A83B4, serialNumber=AEB839CCBFAD5BD98A7A0DA9053BC2726F26904F Validity Not Before: May 13 00:24:42 2025 GMT Not After : May 20 00:24:42 2025 GMT Subject: CN=6822914a-e4db Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:b1:28:d9:54:9f:d0:ac:ac:93:70:63:33:f2: 68:57:24:50:ec:ce:74:0c:03:5b:b6:b0:33:2d:c4: da:31:8f:dd:dd:8a:a2:bf:36:9a:3d:d8:5e:9c:42: fa:bb:2e:91:e7:f9:c9:d4:39:8b:9a:b3:9b:f5:75: 6e:42:12:3a:ea:42:73:b4:6d:fe:4c:61:80:fe:5f: eb:5e:ce:6f:2f:91:26:b9:6b:ea:c1:54:be:d8:7d: 9b:03:09:cd:39:3d:65:c9:d0:0d:0e:55:9d:ba:63: ca:c6:7e:04:77:fe:e8:b2:3f:97:b8:c6:d8:c6:8d: 38:b9:00:af:da:16:fa:7c:2b:d9:27:e9:b3:3c:97: f1:4b:7e:0f:53:2a:2c:dd:80:17:64:14:80:82:74: 8b:0e:09:34:25:8b:6f:74:85:4a:2d:cc:61:3d:88: 6e:0b:d1:3a:07:5e:a0:12:56:54:6a:96:d0:f4:ef: 6b:63:db:27:84:e7:59:07:1f:56:33:82:1f:75:cb: f2:76:b4:ea:7c:c9:fc:cd:97:19:b9:ea:4c:f5:c4: 12:53:78:c9:d2:c5:42:95:74:73:8c:51:86:31:3a: 8b:96:10:16:40:ad:a7:8c:ba:fe:73:94:8b:ba:1d: 7c:a5:1b:9f:4d:3e:5b:9a:e5:c6:3f:84:b6:db:2f: 9f:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 18:4B:2E:2A:ED:DB:ED:DA:FE:AF:04:BA:23:57:A0:C1:19:D4:9E:36 X509v3 Authority Key Identifier: keyid:AE:B8:39:CC:BF:AD:5B:D9:8A:7A:0D:A9:05:3B:C2:72:6F:26:90:4F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A83B4/E79ED49083F711ECA47A6265C4F9AE02/rrg5zL-tW9mKeg2pBTvCcm8mkE8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rrg5zL-tW9mKeg2pBTvCcm8mkE8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A83B4/E79ED49083F711ECA47A6265C4F9AE02/rrg5zL-tW9mKeg2pBTvCcm8mkE8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 35:94:bf:a7:b0:a9:41:08:d4:dc:15:b1:1f:31:8b:44:c6:7a: f7:f0:60:8a:fd:a3:97:9a:75:81:84:5b:e4:89:54:c0:c9:61: 0e:48:95:69:34:2a:d3:04:b1:43:4d:16:25:47:17:65:98:37: 4a:b8:85:10:7a:f7:7b:22:a2:e2:ef:59:e1:96:24:30:17:bb: 9f:9d:21:9b:ad:d1:17:d7:16:68:e3:9a:d7:fe:5f:4b:77:21: 3e:55:70:f2:78:3a:ca:ce:70:8a:b6:85:b6:f4:fa:92:0d:eb: 5a:80:e2:6b:81:53:ec:19:2f:f2:ab:9a:89:f6:1b:5c:99:62: 95:ca:b8:96:de:e5:23:ac:79:e9:fd:6d:b7:90:59:e1:95:56: d1:5a:c8:d5:52:c9:4f:69:59:67:36:cb:94:78:18:eb:69:e2: e2:b3:5a:ae:8b:85:17:d9:7b:67:b2:6a:1f:1d:8d:a9:d5:5c: 56:ed:11:d9:3c:0f:c3:ff:ae:02:2a:1e:77:f5:fd:d7:10:97: c2:22:e9:72:da:01:c7:40:cb:a7:b4:5b:08:c1:d5:36:25:07: 20:cb:74:08:63:7d:0d:94:16:57:ce:82:96:d3:57:1a:ea:6d: 10:73:d4:45:d6:96:e2:45:82:f8:11:27:e2:12:79:1c:87:bb: 65:c7:ed:df -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA+kwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTgzQjQxMTAvBgNVBAUTKEFFQjgzOUNDQkZBRDVCRDk4QTdBMERBOTA1M0JDMjcy NkYyNjkwNEYwHhcNMjUwNTEzMDAyNDQyWhcNMjUwNTIwMDAyNDQyWjAYMRYwFAYD VQQDEw02ODIyOTE0YS1lNGRiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA37Eo2VSf0Kysk3BjM/JoVyRQ7M50DANbtrAzLcTaMY/d3YqivzaaPdhenEL6 uy6R5/nJ1DmLmrOb9XVuQhI66kJztG3+TGGA/l/rXs5vL5EmuWvqwVS+2H2bAwnN OT1lydANDlWdumPKxn4Ed/7osj+XuMbYxo04uQCv2hb6fCvZJ+mzPJfxS34PUyos 3YAXZBSAgnSLDgk0JYtvdIVKLcxhPYhuC9E6B16gElZUapbQ9O9rY9snhOdZBx9W M4IfdcvydrTqfMn8zZcZuepM9cQSU3jJ0sVClXRzjFGGMTqLlhAWQK2njLr+c5SL uh18pRufTT5bmuXGP4S22y+f2QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBhLLirt 2+3a/q8EuiNXoMEZ1J42MB8GA1UdIwQYMBaAFK64Ocy/rVvZinoNqQU7wnJvJpBP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBODNCNC9FNzlFRDQ5MDgz RjcxMUVDQTQ3QTYyNjVDNEY5QUUwMi9ycmc1ekwtdFc5bUtlZzJwQlR2Q2NtOG1r RTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JyZzV6TC10VzltS2VnMnBCVHZDY204bWtFOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB ODNCNC9FNzlFRDQ5MDgzRjcxMUVDQTQ3QTYyNjVDNEY5QUUwMi9ycmc1ekwtdFc5 bUtlZzJwQlR2Q2NtOG1rRTgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA1lL+nsKlBCNTcFbEfMYtExnr38GCK/aOXmnWBhFvkiVTAyWEOSJVp NCrTBLFDTRYlRxdlmDdKuIUQevd7IqLi71nhliQwF7ufnSGbrdEX1xZo45rX/l9L dyE+VXDyeDrKznCKtoW29PqSDetagOJrgVPsGS/yq5qJ9htcmWKVyriW3uUjrHnp /W23kFnhlVbRWsjVUslPaVlnNsuUeBjraeLis1qui4UX2XtnsmofHY2p1VxW7RHZ PA/D/64CKh539f3XEJfCIuly2gHHQMuntFsIwdU2JQcgy3QIY30NlBZXzoKW01ca 6m0Qc9RF1pbiRYL4ESfiEnkch7tlx+3f -----END CERTIFICATE-----Generated at Tue May 13 02:23:31 2025 by rpki-client