$ rpki-client -vvf rpki.apnic.net/member_repository/A91B08F7/4714380AD59411E78E7C9143C4F9AE02/md4sN9GmK6i5e1oc_SzSlAsNTQ0.mft File: md4sN9GmK6i5e1oc_SzSlAsNTQ0.mft (raw, json) Hash identifier: 6QcTSHMuEywk41uWkESrTLmQM4iWbRqu+w4pXIV0srY= Subject key identifier: 27:AC:FD:F8:1C:22:15:F7:0B:B6:58:71:19:70:59:F7:7A:5E:6A:39 Authority key identifier: 99:DE:2C:37:D1:A6:2B:A8:B9:7B:5A:1C:FD:2C:D2:94:0B:0D:4D:0D Certificate issuer: /CN=A91B08F7/serialNumber=99DE2C37D1A62BA8B97B5A1CFD2CD2940B0D4D0D Certificate serial: 1763 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/md4sN9GmK6i5e1oc_SzSlAsNTQ0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B08F7/4714380AD59411E78E7C9143C4F9AE02/md4sN9GmK6i5e1oc_SzSlAsNTQ0.mft Manifest number: 1B5C Signing time: Wed 14 May 2025 16:40:52 +0000 Manifest this update: Wed 14 May 2025 16:40:52 +0000 Manifest next update: Wed 21 May 2025 16:40:52 +0000 Files and hashes: 1: md4sN9GmK6i5e1oc_SzSlAsNTQ0.crl (hash: w2Z0AIsLAQAU27ltwfSUUsEBgQfoZQkGeLHdJqF5Bjw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B08F7/4714380AD59411E78E7C9143C4F9AE02/md4sN9GmK6i5e1oc_SzSlAsNTQ0.crl rsync://rpki.apnic.net/member_repository/A91B08F7/4714380AD59411E78E7C9143C4F9AE02/md4sN9GmK6i5e1oc_SzSlAsNTQ0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/md4sN9GmK6i5e1oc_SzSlAsNTQ0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 21 May 2025 16:40:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5987 (0x1763) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B08F7, serialNumber=99DE2C37D1A62BA8B97B5A1CFD2CD2940B0D4D0D Validity Not Before: May 14 16:40:52 2025 GMT Not After : May 21 16:40:52 2025 GMT Subject: CN=6824c794-4aaf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:e6:d2:df:66:66:e8:8a:4e:1d:95:75:e4:2b: 2a:26:df:2c:cd:93:c8:f7:83:8b:03:c1:2f:82:f0: e7:46:ff:96:84:62:dc:75:6c:52:d1:01:14:51:fe: 56:3e:1f:ac:6c:05:a5:31:f3:06:57:29:bc:0b:4f: 02:0e:08:24:00:3d:80:ac:7d:6b:47:0c:99:e4:13: e6:10:62:13:2a:76:b7:c9:9a:75:a4:95:49:a6:55: 92:91:3f:dd:8d:90:94:f5:8b:f0:d1:b3:2c:fb:8d: 8a:50:c2:b0:bd:ca:a6:fb:3a:d9:7f:a5:e3:3c:cf: ad:c3:b7:32:d0:9b:9e:38:86:53:d9:20:7d:a8:dc: 3f:79:c3:ac:13:be:53:89:f5:79:53:0f:8b:6a:47: 57:a5:55:6d:ba:a5:d7:33:eb:86:6c:b9:a0:66:f0: 88:d0:df:54:4a:5d:e5:bf:fe:b9:10:76:84:1b:8e: 71:22:2d:66:34:19:6d:3c:f0:ac:8b:9c:e4:b8:b0: 75:c3:54:27:09:ec:48:68:4b:7b:c8:47:51:a0:9d: 4c:6c:45:da:02:e4:b2:9d:48:a5:1b:de:f8:3a:0a: f9:37:d6:38:fc:6a:6b:a4:5d:ed:13:3f:12:c8:0e: 4e:5f:3e:0d:38:43:d2:13:ad:c9:ec:1a:cf:6d:f0: 4b:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 27:AC:FD:F8:1C:22:15:F7:0B:B6:58:71:19:70:59:F7:7A:5E:6A:39 X509v3 Authority Key Identifier: keyid:99:DE:2C:37:D1:A6:2B:A8:B9:7B:5A:1C:FD:2C:D2:94:0B:0D:4D:0D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B08F7/4714380AD59411E78E7C9143C4F9AE02/md4sN9GmK6i5e1oc_SzSlAsNTQ0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/md4sN9GmK6i5e1oc_SzSlAsNTQ0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B08F7/4714380AD59411E78E7C9143C4F9AE02/md4sN9GmK6i5e1oc_SzSlAsNTQ0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 66:43:7c:20:d4:e1:09:a9:88:4a:e7:8f:21:28:8d:ef:f4:a7: 7e:1e:d8:77:e9:66:e0:7b:09:44:b7:b3:da:0d:6f:27:8c:17: e5:dc:dd:f4:43:2e:a8:ac:30:33:91:c9:0a:29:14:bd:9f:e1: b6:ed:fa:0f:29:5b:89:5f:00:40:51:77:16:ec:cd:13:02:2e: 9b:e6:a6:04:8f:28:52:cc:52:b4:88:42:36:b8:4f:86:d6:47: b0:b1:8e:51:c8:59:21:77:b0:1e:6e:2e:be:74:bc:18:f9:6c: 2a:b4:63:71:a3:e8:c5:9d:9d:2b:bb:ca:08:31:9d:51:31:ef: 20:71:17:65:04:8b:f2:84:71:bb:a4:ef:a8:ff:91:c6:df:ff: 40:fa:21:0d:f3:2e:09:73:b6:78:09:b7:8d:d1:eb:b5:e5:1d: 3b:61:74:59:87:c5:84:6f:bd:54:c1:94:3c:cf:ec:0b:b8:ac: 9e:67:47:ba:2f:6f:cf:53:a3:47:2a:09:2c:40:86:c4:c0:92: 94:d4:2f:45:9d:d9:73:17:87:d9:71:51:cc:b4:25:d7:cd:2d: 19:95:18:65:db:a4:01:d7:54:d1:9c:a1:37:b1:59:b4:57:69: 9e:c4:e1:69:32:23:76:f2:64:7b:d5:a4:00:34:fc:43:46:57: cf:69:69:10 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICF2MwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjA4RjcxMTAvBgNVBAUTKDk5REUyQzM3RDFBNjJCQThCOTdCNUExQ0ZEMkNEMjk0 MEIwRDREMEQwHhcNMjUwNTE0MTY0MDUyWhcNMjUwNTIxMTY0MDUyWjAYMRYwFAYD VQQDEw02ODI0Yzc5NC00YWFmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4ubS32Zm6IpOHZV15CsqJt8szZPI94OLA8EvgvDnRv+WhGLcdWxS0QEUUf5W Ph+sbAWlMfMGVym8C08CDggkAD2ArH1rRwyZ5BPmEGITKna3yZp1pJVJplWSkT/d jZCU9Yvw0bMs+42KUMKwvcqm+zrZf6XjPM+tw7cy0JueOIZT2SB9qNw/ecOsE75T ifV5Uw+LakdXpVVtuqXXM+uGbLmgZvCI0N9USl3lv/65EHaEG45xIi1mNBltPPCs i5zkuLB1w1QnCexIaEt7yEdRoJ1MbEXaAuSynUilG974Ogr5N9Y4/GprpF3tEz8S yA5OXz4NOEPSE63J7BrPbfBLQwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCes/fgc IhX3C7ZYcRlwWfd6Xmo5MB8GA1UdIwQYMBaAFJneLDfRpiuouXtaHP0s0pQLDU0N MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMDhGNy80NzE0MzgwQUQ1 OTQxMUU3OEU3QzkxNDNDNEY5QUUwMi9tZDRzTjlHbUs2aTVlMW9jX1N6U2xBc05U UTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL21kNHNOOUdtSzZpNWUxb2NfU3pTbEFzTlRRMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC MDhGNy80NzE0MzgwQUQ1OTQxMUU3OEU3QzkxNDNDNEY5QUUwMi9tZDRzTjlHbUs2 aTVlMW9jX1N6U2xBc05UUTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBmQ3wg1OEJqYhK548hKI3v9Kd+Hth36WbgewlEt7PaDW8njBfl3N30 Qy6orDAzkckKKRS9n+G27foPKVuJXwBAUXcW7M0TAi6b5qYEjyhSzFK0iEI2uE+G 1kewsY5RyFkhd7Aebi6+dLwY+WwqtGNxo+jFnZ0ru8oIMZ1RMe8gcRdlBIvyhHG7 pO+o/5HG3/9A+iEN8y4Jc7Z4CbeN0eu15R07YXRZh8WEb71UwZQ8z+wLuKyeZ0e6 L2/PU6NHKgksQIbEwJKU1C9FndlzF4fZcVHMtCXXzS0ZlRhl26QB11TRnKE3sVm0 V2mexOFpMiN28mR71aQANPxDRlfPaWkQ -----END CERTIFICATE-----Generated at Wed May 14 19:54:30 2025 by rpki-client