$ rpki-client -vvf rpki.apnic.net/member_repository/A91A8A52/FB7E4BDE70B511ED93F0DD16C4F9AE02/cS61otcGnxjunGXzsBMnGtvx9UA.mft File: cS61otcGnxjunGXzsBMnGtvx9UA.mft (raw, json) Hash identifier: cwtm+S0XFoLxK0j4sfHyzS0y8HL4y30yWn4TSiEwWHQ= Subject key identifier: 3E:89:21:F4:2E:8E:CA:F0:3F:FB:62:63:CC:E7:71:38:86:61:23:69 Authority key identifier: 71:2E:B5:A2:D7:06:9F:18:EE:9C:65:F3:B0:13:27:1A:DB:F1:F5:40 Certificate issuer: /CN=A91A8A52/serialNumber=712EB5A2D7069F18EE9C65F3B013271ADBF1F540 Certificate serial: 01DF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cS61otcGnxjunGXzsBMnGtvx9UA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A8A52/FB7E4BDE70B511ED93F0DD16C4F9AE02/cS61otcGnxjunGXzsBMnGtvx9UA.mft Manifest number: 01D3 Signing time: Tue 13 May 2025 02:11:19 +0000 Manifest this update: Tue 13 May 2025 02:11:19 +0000 Manifest next update: Tue 20 May 2025 02:11:19 +0000 Files and hashes: 1: cS61otcGnxjunGXzsBMnGtvx9UA.crl (hash: /DyznaD+sbMrhqOoWz2K6OZPSfUe88RtjsUPXi8/vmI=) 2: 655B85F0225B11EFADDE6F63C4F9AE02.roa (hash: n2zLDtDaPNL3Ye6qBkwU/zpDC2mfhiqQ0N3aGF+8gOs=) 3: 8F14EDAA70B911EDB6E1F81BC4F9AE02.roa (hash: KwJcRfcCHNm1/1H4hZVLWjzBmRVSuYEae2GuTglAJm0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A8A52/FB7E4BDE70B511ED93F0DD16C4F9AE02/cS61otcGnxjunGXzsBMnGtvx9UA.crl rsync://rpki.apnic.net/member_repository/A91A8A52/FB7E4BDE70B511ED93F0DD16C4F9AE02/cS61otcGnxjunGXzsBMnGtvx9UA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cS61otcGnxjunGXzsBMnGtvx9UA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 20 May 2025 02:11:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 479 (0x1df) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A8A52, serialNumber=712EB5A2D7069F18EE9C65F3B013271ADBF1F540 Validity Not Before: May 13 02:11:19 2025 GMT Not After : May 20 02:11:19 2025 GMT Subject: CN=6822aa47-d28c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:e3:06:d1:3e:13:85:a0:58:6e:e2:8c:35:e1: 85:e8:86:7d:4e:b3:9a:6f:d4:f1:68:db:c2:15:3b: e3:97:9b:c1:b5:4b:39:a5:6e:a1:ff:5e:bf:d9:1e: 02:97:ca:7c:8f:f4:e7:04:09:5c:ed:44:47:d8:7b: bc:37:3b:e3:f1:d5:a7:97:8d:60:db:a2:d4:99:37: 3f:6e:85:74:1f:49:45:43:1c:20:93:74:11:48:de: 23:a5:8f:59:62:c5:3e:16:c0:ee:da:9b:50:16:76: eb:c5:57:eb:de:fc:94:f5:31:df:f1:3b:89:26:e1: 66:6d:4b:d9:9f:66:0e:b0:69:60:7e:ca:86:3a:26: ea:ed:e9:ee:33:f1:f2:ea:ce:f8:86:2c:97:a0:66: 81:e3:bc:38:6e:9a:7e:89:d3:46:31:97:63:2d:e6: 6a:2c:e5:00:40:78:61:78:86:96:bc:c0:5b:85:e2: 03:ee:44:08:95:35:7a:94:0a:f1:d2:bc:2c:11:35: 41:5c:e8:a8:25:b1:ef:b8:8a:7e:cc:7a:ab:2d:2b: 0e:2f:26:c6:b1:c3:3c:48:2a:c7:23:4a:ce:ae:bb: d5:f9:d2:c4:dd:93:0a:37:30:91:9f:b1:34:6a:ce: 21:63:45:3f:5e:ab:93:f9:f1:95:e3:5b:d5:ed:b3: c1:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3E:89:21:F4:2E:8E:CA:F0:3F:FB:62:63:CC:E7:71:38:86:61:23:69 X509v3 Authority Key Identifier: keyid:71:2E:B5:A2:D7:06:9F:18:EE:9C:65:F3:B0:13:27:1A:DB:F1:F5:40 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A8A52/FB7E4BDE70B511ED93F0DD16C4F9AE02/cS61otcGnxjunGXzsBMnGtvx9UA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cS61otcGnxjunGXzsBMnGtvx9UA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A8A52/FB7E4BDE70B511ED93F0DD16C4F9AE02/cS61otcGnxjunGXzsBMnGtvx9UA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 17:0a:d9:71:60:18:b6:52:27:3f:94:c4:9b:e2:25:48:3a:ab: 75:9e:20:ac:4b:c5:04:21:b1:b6:ec:f9:31:62:ee:10:91:bb: c1:47:78:49:2c:2b:dc:93:a4:80:5a:a7:09:c0:c9:25:d1:9d: c3:ba:51:de:93:55:b7:be:44:c1:8a:85:8a:07:15:99:e3:0d: 23:17:86:5a:5c:07:7f:eb:b1:f5:3c:84:77:87:70:51:9b:52: a6:01:65:b1:5c:3a:13:98:d4:0a:0e:09:7c:d3:a1:f2:14:91: 57:01:43:e5:d2:00:65:e5:c8:9d:23:77:1a:e9:d9:4a:50:56: 91:b8:30:ba:13:db:cc:29:1b:21:be:52:90:6f:17:b6:2b:cb: a9:a0:e9:c0:75:a7:f2:01:55:d6:8a:20:72:65:c8:2b:fc:34: 91:11:1a:4e:f7:3f:6b:c1:fe:04:ab:59:f9:dc:7c:cc:2e:bd: d2:36:da:55:f0:0f:39:5b:fd:5a:0b:42:77:e3:83:2a:ae:44: 58:9c:bb:86:64:a6:b1:31:0f:9d:b0:ba:84:21:1d:11:d4:1f: e3:93:73:6b:7b:05:50:98:ca:10:82:bb:b5:e3:64:23:6d:8b: ee:74:b7:38:b6:68:90:ef:1f:e0:0a:74:f2:bf:2a:6e:fa:73: 38:3b:a3:c8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAd8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QThBNTIxMTAvBgNVBAUTKDcxMkVCNUEyRDcwNjlGMThFRTlDNjVGM0IwMTMyNzFB REJGMUY1NDAwHhcNMjUwNTEzMDIxMTE5WhcNMjUwNTIwMDIxMTE5WjAYMRYwFAYD VQQDEw02ODIyYWE0Ny1kMjhjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyeMG0T4ThaBYbuKMNeGF6IZ9TrOab9TxaNvCFTvjl5vBtUs5pW6h/16/2R4C l8p8j/TnBAlc7URH2Hu8Nzvj8dWnl41g26LUmTc/boV0H0lFQxwgk3QRSN4jpY9Z YsU+FsDu2ptQFnbrxVfr3vyU9THf8TuJJuFmbUvZn2YOsGlgfsqGOibq7enuM/Hy 6s74hiyXoGaB47w4bpp+idNGMZdjLeZqLOUAQHhheIaWvMBbheID7kQIlTV6lArx 0rwsETVBXOioJbHvuIp+zHqrLSsOLybGscM8SCrHI0rOrrvV+dLE3ZMKNzCRn7E0 as4hY0U/XquT+fGV41vV7bPBNwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFD6JIfQu jsrwP/tiY8zncTiGYSNpMB8GA1UdIwQYMBaAFHEutaLXBp8Y7pxl87ATJxrb8fVA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBOEE1Mi9GQjdFNEJERTcw QjUxMUVEOTNGMEREMTZDNEY5QUUwMi9jUzYxb3RjR254anVuR1h6c0JNbkd0dng5 VUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NTNjFvdGNHbnhqdW5HWHpzQk1uR3R2eDlVQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB OEE1Mi9GQjdFNEJERTcwQjUxMUVEOTNGMEREMTZDNEY5QUUwMi9jUzYxb3RjR254 anVuR1h6c0JNbkd0dng5VUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAXCtlxYBi2Uic/lMSb4iVIOqt1niCsS8UEIbG27PkxYu4QkbvBR3hJ LCvck6SAWqcJwMkl0Z3DulHek1W3vkTBioWKBxWZ4w0jF4ZaXAd/67H1PIR3h3BR m1KmAWWxXDoTmNQKDgl806HyFJFXAUPl0gBl5cidI3ca6dlKUFaRuDC6E9vMKRsh vlKQbxe2K8upoOnAdafyAVXWiiByZcgr/DSRERpO9z9rwf4Eq1n53HzMLr3SNtpV 8A85W/1aC0J344MqrkRYnLuGZKaxMQ+dsLqEIR0R1B/jk3NrewVQmMoQgru142Qj bYvudLc4tmiQ7x/gCnTyvypu+nM4O6PI -----END CERTIFICATE-----Generated at Wed May 14 09:35:50 2025 by rpki-client