$ rpki-client -vvf rpki.apnic.net/member_repository/A91AB055/4ABBC01CF55511EEACF1234BC4F9AE02/mZsvZTnCPq60aeZ1OfstyTPZgEA.mft File: mZsvZTnCPq60aeZ1OfstyTPZgEA.mft (raw, json) Hash identifier: EVUcefLHbNIrc3ax9PtQPnMExZnQ0yP/TvO2FBM9dWU= Subject key identifier: E6:06:4E:F0:44:27:76:A9:5F:A1:49:23:80:FF:12:2A:ED:8C:CB:40 Authority key identifier: 99:9B:2F:65:39:C2:3E:AE:B4:69:E6:75:39:FB:2D:C9:33:D9:80:40 Certificate issuer: /CN=A91AB055/serialNumber=999B2F6539C23EAEB469E67539FB2DC933D98040 Certificate serial: CF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mZsvZTnCPq60aeZ1OfstyTPZgEA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AB055/4ABBC01CF55511EEACF1234BC4F9AE02/mZsvZTnCPq60aeZ1OfstyTPZgEA.mft Manifest number: CD Signing time: Tue 13 May 2025 04:53:45 +0000 Manifest this update: Tue 13 May 2025 04:53:44 +0000 Manifest next update: Tue 20 May 2025 04:53:44 +0000 Files and hashes: 1: mZsvZTnCPq60aeZ1OfstyTPZgEA.crl (hash: nICwAyhYdfCmOuioCrUp6hoYP0SOKQwVmN1MCOggqxw=) 2: 83CA613CF55611EE8CE6274DC4F9AE02.roa (hash: BonjniXMbmI4yDYc3ynOZLv8pgVSOdRZa/c5jpsq0Ug=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AB055/4ABBC01CF55511EEACF1234BC4F9AE02/mZsvZTnCPq60aeZ1OfstyTPZgEA.crl rsync://rpki.apnic.net/member_repository/A91AB055/4ABBC01CF55511EEACF1234BC4F9AE02/mZsvZTnCPq60aeZ1OfstyTPZgEA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mZsvZTnCPq60aeZ1OfstyTPZgEA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 20 May 2025 04:53:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 207 (0xcf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AB055, serialNumber=999B2F6539C23EAEB469E67539FB2DC933D98040 Validity Not Before: May 13 04:53:44 2025 GMT Not After : May 20 04:53:44 2025 GMT Subject: CN=6822d058-b6d3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:43:fb:79:82:3c:5f:b2:a6:09:dc:f2:9c:8f: 53:13:b4:fe:32:de:fc:02:db:73:bd:aa:c2:58:35: b5:e9:a8:ae:fd:db:0c:7d:fb:72:5b:63:67:ee:24: 39:42:16:55:72:3f:c5:c2:53:4d:70:d7:69:bb:9a: 8a:e6:84:f6:dc:b2:40:89:9b:e0:55:4b:e6:09:e0: 33:4c:b9:3e:15:93:b9:01:bf:73:2e:06:d8:b8:ff: 60:13:1b:5a:a9:5e:03:33:a1:44:ff:d6:7a:cf:85: 5e:e3:bc:52:88:07:21:98:ac:0d:48:e8:b7:23:04: 09:38:9b:ec:95:e6:3b:29:1d:41:03:2a:8b:e3:24: 01:9c:b7:bf:11:e8:0f:68:c1:fb:df:82:02:bd:3b: e7:d3:8e:1f:08:c1:03:d1:49:5c:61:4c:8e:86:90: 78:0f:79:5c:ca:39:e3:a4:ca:56:77:80:0f:8d:ef: bd:62:84:74:82:58:60:b9:1d:44:d5:22:5c:39:c9: 82:fd:4b:37:5f:76:bd:06:4e:2e:a8:c0:f6:58:c6: 79:23:63:ce:b1:f7:c6:c7:65:33:18:36:a1:86:f4: a7:6c:67:99:07:ba:be:65:8f:44:0c:3b:04:54:48: ec:3d:7d:9a:91:db:6b:b3:ca:47:41:3b:68:e3:bd: 26:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E6:06:4E:F0:44:27:76:A9:5F:A1:49:23:80:FF:12:2A:ED:8C:CB:40 X509v3 Authority Key Identifier: keyid:99:9B:2F:65:39:C2:3E:AE:B4:69:E6:75:39:FB:2D:C9:33:D9:80:40 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AB055/4ABBC01CF55511EEACF1234BC4F9AE02/mZsvZTnCPq60aeZ1OfstyTPZgEA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mZsvZTnCPq60aeZ1OfstyTPZgEA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AB055/4ABBC01CF55511EEACF1234BC4F9AE02/mZsvZTnCPq60aeZ1OfstyTPZgEA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5a:72:7b:25:aa:bc:c4:e4:d0:f8:56:27:49:f3:f7:c7:6e:aa: 38:30:ba:9a:6a:6b:69:44:77:9a:5d:36:be:4c:ee:16:ad:ec: 74:94:a3:ac:07:0a:4a:60:97:bd:40:f3:36:8c:ef:2c:29:bb: 5b:a5:f2:80:a1:a7:a2:76:f2:6e:91:03:56:8b:58:83:7f:28: 0f:04:57:50:b2:bd:c3:7a:93:a0:e1:94:aa:fe:03:f4:a9:46: cd:58:20:8f:43:5f:a7:b5:41:76:ee:6f:4b:e2:63:f4:c2:42: 74:76:04:c8:1e:2b:90:1d:99:53:a9:7a:81:32:76:0a:d6:98: c6:d1:8f:b2:bb:21:45:ee:b7:55:be:67:26:85:0e:94:18:24: ea:43:14:9d:81:05:dd:9d:78:62:7c:b5:32:d5:8b:13:1c:06: 35:3d:a8:40:19:55:45:a0:f0:91:43:05:c2:91:2a:08:9a:68: 71:e9:09:f8:fc:2d:af:a2:69:76:1a:c1:f5:89:e0:22:e4:d8: b5:e4:06:44:c9:16:70:c9:1c:8e:35:90:7b:c1:66:98:e7:03: c2:78:c0:ed:5f:21:01:1b:dc:96:46:66:ff:ab:79:5a:21:3d: 87:49:a7:a5:77:4e:95:d5:da:e5:4d:2a:16:9e:2a:c3:62:c0: 8b:24:20:e3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAM8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUIwNTUxMTAvBgNVBAUTKDk5OUIyRjY1MzlDMjNFQUVCNDY5RTY3NTM5RkIyREM5 MzNEOTgwNDAwHhcNMjUwNTEzMDQ1MzQ0WhcNMjUwNTIwMDQ1MzQ0WjAYMRYwFAYD VQQDEw02ODIyZDA1OC1iNmQzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt0P7eYI8X7KmCdzynI9TE7T+Mt78AttzvarCWDW16aiu/dsMfftyW2Nn7iQ5 QhZVcj/FwlNNcNdpu5qK5oT23LJAiZvgVUvmCeAzTLk+FZO5Ab9zLgbYuP9gExta qV4DM6FE/9Z6z4Ve47xSiAchmKwNSOi3IwQJOJvsleY7KR1BAyqL4yQBnLe/EegP aMH734ICvTvn044fCMED0UlcYUyOhpB4D3lcyjnjpMpWd4APje+9YoR0glhguR1E 1SJcOcmC/Us3X3a9Bk4uqMD2WMZ5I2POsffGx2UzGDahhvSnbGeZB7q+ZY9EDDsE VEjsPX2akdtrs8pHQTto470m/wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOYGTvBE J3apX6FJI4D/EirtjMtAMB8GA1UdIwQYMBaAFJmbL2U5wj6utGnmdTn7Lckz2YBA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQjA1NS80QUJCQzAxQ0Y1 NTUxMUVFQUNGMTIzNEJDNEY5QUUwMi9tWnN2WlRuQ1BxNjBhZVoxT2ZzdHlUUFpn RUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL21ac3ZaVG5DUHE2MGFlWjFPZnN0eVRQWmdFQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB QjA1NS80QUJCQzAxQ0Y1NTUxMUVFQUNGMTIzNEJDNEY5QUUwMi9tWnN2WlRuQ1Bx NjBhZVoxT2ZzdHlUUFpnRUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBacnslqrzE5ND4VidJ8/fHbqo4MLqaamtpRHeaXTa+TO4Wrex0lKOs BwpKYJe9QPM2jO8sKbtbpfKAoaeidvJukQNWi1iDfygPBFdQsr3DepOg4ZSq/gP0 qUbNWCCPQ1+ntUF27m9L4mP0wkJ0dgTIHiuQHZlTqXqBMnYK1pjG0Y+yuyFF7rdV vmcmhQ6UGCTqQxSdgQXdnXhifLUy1YsTHAY1PahAGVVFoPCRQwXCkSoImmhx6Qn4 /C2voml2GsH1ieAi5Ni15AZEyRZwyRyONZB7wWaY5wPCeMDtXyEBG9yWRmb/q3la IT2HSaeld06V1drlTSoWnirDYsCLJCDj -----END CERTIFICATE-----Generated at Tue May 13 11:29:45 2025 by rpki-client