$ rpki-client -vvf rpki.apnic.net/member_repository/A91ACFEB/CB2C33E6936E11EAA5E56B7EC4F9AE02/U4XhOhtYRftEzutr7Y3rTomvOCk.mft File: U4XhOhtYRftEzutr7Y3rTomvOCk.mft (raw, json) Hash identifier: X7b2pehytSeZS7s6TCPCkRe7Me8zfsY/mrLjCav5Jac= Subject key identifier: 67:B4:81:E3:9F:57:F2:4D:84:2C:31:28:C2:45:88:02:E6:EB:49:0A Authority key identifier: 53:85:E1:3A:1B:58:45:FB:44:CE:EB:6B:ED:8D:EB:4E:89:AF:38:29 Certificate issuer: /CN=A91ACFEB/serialNumber=5385E13A1B5845FB44CEEB6BED8DEB4E89AF3829 Certificate serial: 0971 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U4XhOhtYRftEzutr7Y3rTomvOCk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91ACFEB/CB2C33E6936E11EAA5E56B7EC4F9AE02/U4XhOhtYRftEzutr7Y3rTomvOCk.mft Manifest number: 0961 Signing time: Sat 10 May 2025 19:55:14 +0000 Manifest this update: Sat 10 May 2025 19:55:14 +0000 Manifest next update: Sat 17 May 2025 19:55:14 +0000 Files and hashes: 1: U4XhOhtYRftEzutr7Y3rTomvOCk.crl (hash: bYWA6gqsmItH3ILKbbNMrX+RrxkxewiA+NUQFzkKApQ=) 2: 3636BCD2937011EA8A795583C4F9AE02.roa (hash: Xd/9pByFb2cbZ9xoUnmDVjNmjmus87X0lFOERhfsZNI=) 3: 35831FCE937011EA8A795583C4F9AE02.roa (hash: N79J5/addSjvuTRJUjHpGEDoonJ5OZtfdl2v8Aonsr8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91ACFEB/CB2C33E6936E11EAA5E56B7EC4F9AE02/U4XhOhtYRftEzutr7Y3rTomvOCk.crl rsync://rpki.apnic.net/member_repository/A91ACFEB/CB2C33E6936E11EAA5E56B7EC4F9AE02/U4XhOhtYRftEzutr7Y3rTomvOCk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U4XhOhtYRftEzutr7Y3rTomvOCk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 17 May 2025 19:55:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2417 (0x971) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91ACFEB, serialNumber=5385E13A1B5845FB44CEEB6BED8DEB4E89AF3829 Validity Not Before: May 10 19:55:14 2025 GMT Not After : May 17 19:55:14 2025 GMT Subject: CN=681faf22-5648 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:14:3e:8e:26:fd:8c:97:27:7e:28:56:8d:0d: 74:1a:3d:94:35:ad:a8:5a:4e:7e:57:f1:38:b5:bf: b1:78:60:2f:75:ff:f9:b4:d2:64:b5:6e:26:52:fa: a9:14:bf:ec:91:d1:c6:75:81:d8:76:5a:07:93:13: e9:7d:d2:36:da:99:91:bd:cb:19:23:f3:c2:1b:05: f9:f7:31:29:c4:04:28:bc:7a:69:31:42:6d:02:e8: 52:fc:c6:0a:38:6c:e3:f2:5d:68:40:26:29:b0:0b: b8:04:f3:38:92:1e:c4:fe:0f:71:de:96:c4:19:43: 01:79:cd:58:0c:1c:4e:89:87:2a:b4:63:d0:1e:f5: 39:17:b5:f8:1c:13:f9:bb:08:fd:42:7a:a2:93:96: 34:31:90:c7:7c:1d:f8:b8:ae:a1:f8:06:a1:f4:bd: f6:24:32:c4:ba:3e:27:d9:85:a6:9d:c5:ff:fe:52: 79:1e:df:a6:c5:d8:8d:62:dd:0a:52:23:e6:c9:b5: 51:43:1f:3a:5e:4a:d9:67:e2:87:49:dc:51:94:73: a2:ab:79:84:b2:1d:82:f1:cf:94:e0:06:0f:34:df: 33:ac:ca:a1:10:da:20:6c:42:88:02:74:8d:91:61: 21:78:46:8a:ea:cb:12:67:ad:77:94:96:3b:e9:b8: ec:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:B4:81:E3:9F:57:F2:4D:84:2C:31:28:C2:45:88:02:E6:EB:49:0A X509v3 Authority Key Identifier: keyid:53:85:E1:3A:1B:58:45:FB:44:CE:EB:6B:ED:8D:EB:4E:89:AF:38:29 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91ACFEB/CB2C33E6936E11EAA5E56B7EC4F9AE02/U4XhOhtYRftEzutr7Y3rTomvOCk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U4XhOhtYRftEzutr7Y3rTomvOCk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91ACFEB/CB2C33E6936E11EAA5E56B7EC4F9AE02/U4XhOhtYRftEzutr7Y3rTomvOCk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 61:9e:de:c5:57:6b:da:8b:65:ac:0c:51:74:07:82:0c:c2:7b: bc:8b:e1:b7:74:ae:96:24:65:87:79:bc:04:89:ec:cd:01:25: 31:03:34:e0:95:10:7c:a2:b2:82:9b:24:33:2e:25:a3:93:d3: b9:12:43:66:10:48:fc:61:44:cb:39:9a:9a:8d:e6:5c:9c:6b: b2:ee:96:e9:5d:13:eb:93:5a:c0:a6:a5:9c:3a:fb:eb:0b:28: 56:af:a2:09:9b:54:ae:ec:f8:c7:fe:aa:da:87:73:fb:da:f2: 1c:d5:37:ed:19:46:d9:20:c5:5a:7c:69:33:6b:6d:d5:97:56: e2:83:1f:d2:85:29:85:8f:1e:6f:ae:5c:b2:b3:31:dc:24:00: fe:dc:81:74:67:44:6e:14:e2:3d:3c:df:3e:7f:e8:a2:3f:d0: 8b:85:88:32:6c:e9:ae:98:15:98:42:71:92:e6:dc:b4:77:b2: a7:60:71:0f:a0:37:05:09:9c:3a:45:ad:27:94:9e:b8:3a:d9: 2f:5c:47:d1:fd:f6:ea:91:ae:35:ec:62:03:26:ca:2c:be:a6: e7:26:11:ec:8e:15:e8:e5:a0:7c:9a:fa:c3:92:87:64:18:75: c6:48:91:7b:d1:a9:16:f1:8f:2d:77:29:db:c4:16:e8:29:62: e8:02:e7:e4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCXEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUNGRUIxMTAvBgNVBAUTKDUzODVFMTNBMUI1ODQ1RkI0NENFRUI2QkVEOERFQjRF ODlBRjM4MjkwHhcNMjUwNTEwMTk1NTE0WhcNMjUwNTE3MTk1NTE0WjAYMRYwFAYD VQQDEw02ODFmYWYyMi01NjQ4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvBQ+jib9jJcnfihWjQ10Gj2UNa2oWk5+V/E4tb+xeGAvdf/5tNJktW4mUvqp FL/skdHGdYHYdloHkxPpfdI22pmRvcsZI/PCGwX59zEpxAQovHppMUJtAuhS/MYK OGzj8l1oQCYpsAu4BPM4kh7E/g9x3pbEGUMBec1YDBxOiYcqtGPQHvU5F7X4HBP5 uwj9Qnqik5Y0MZDHfB34uK6h+Aah9L32JDLEuj4n2YWmncX//lJ5Ht+mxdiNYt0K UiPmybVRQx86XkrZZ+KHSdxRlHOiq3mEsh2C8c+U4AYPNN8zrMqhENogbEKIAnSN kWEheEaK6ssSZ613lJY76bjsSQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGe0geOf V/JNhCwxKMJFiALm60kKMB8GA1UdIwQYMBaAFFOF4TobWEX7RM7ra+2N606Jrzgp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQ0ZFQi9DQjJDMzNFNjkz NkUxMUVBQTVFNTZCN0VDNEY5QUUwMi9VNFhoT2h0WVJmdEV6dXRyN1kzclRvbXZP Q2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1U0WGhPaHRZUmZ0RXp1dHI3WTNyVG9tdk9Day5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB Q0ZFQi9DQjJDMzNFNjkzNkUxMUVBQTVFNTZCN0VDNEY5QUUwMi9VNFhoT2h0WVJm dEV6dXRyN1kzclRvbXZPQ2subWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBhnt7FV2vai2WsDFF0B4IMwnu8i+G3dK6WJGWHebwEiezNASUxAzTg lRB8orKCmyQzLiWjk9O5EkNmEEj8YUTLOZqajeZcnGuy7pbpXRPrk1rApqWcOvvr CyhWr6IJm1Su7PjH/qrah3P72vIc1TftGUbZIMVafGkza23Vl1bigx/ShSmFjx5v rlyyszHcJAD+3IF0Z0RuFOI9PN8+f+iiP9CLhYgybOmumBWYQnGS5ty0d7KnYHEP oDcFCZw6Ra0nlJ64OtkvXEfR/fbqka417GIDJsosvqbnJhHsjhXo5aB8mvrDkodk GHXGSJF70akW8Y8tdynbxBboKWLoAufk -----END CERTIFICATE-----Generated at Mon May 12 04:35:13 2025 by rpki-client