$ rpki-client -vvf rpki.apnic.net/member_repository/A91B31CE/6B05607A7CCD11EBAEC6A974C4F9AE02/S0fJxk08IyF6Fd2rh0fDncMBhPI.mft File: S0fJxk08IyF6Fd2rh0fDncMBhPI.mft (raw, json) Hash identifier: +JChCyQS/MGNBxaaM/wSuIvn23sUOzLMSG+iyL0BjDw= Subject key identifier: CD:A4:D0:35:5E:86:6C:23:9C:05:4A:80:08:F2:B7:16:9F:0D:91:7C Authority key identifier: 4B:47:C9:C6:4D:3C:23:21:7A:15:DD:AB:87:47:C3:9D:C3:01:84:F2 Certificate issuer: /CN=A91B31CE/serialNumber=4B47C9C64D3C23217A15DDAB8747C39DC30184F2 Certificate serial: 067E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/S0fJxk08IyF6Fd2rh0fDncMBhPI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B31CE/6B05607A7CCD11EBAEC6A974C4F9AE02/S0fJxk08IyF6Fd2rh0fDncMBhPI.mft Manifest number: 0675 Signing time: Sun 04 May 2025 22:03:26 +0000 Manifest this update: Sun 04 May 2025 22:03:25 +0000 Manifest next update: Sun 11 May 2025 22:03:25 +0000 Files and hashes: 1: S0fJxk08IyF6Fd2rh0fDncMBhPI.crl (hash: C0DQtK+PlcFDEBBS/EogzSgpexyKp8+SexlK65hzZPg=) 2: AA51390A822B11EE8B95E475C4F9AE02.roa (hash: iVoQ4DzarwOJUrSELiNWak+s+ohZp/LfOai+uGXnZZw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B31CE/6B05607A7CCD11EBAEC6A974C4F9AE02/S0fJxk08IyF6Fd2rh0fDncMBhPI.crl rsync://rpki.apnic.net/member_repository/A91B31CE/6B05607A7CCD11EBAEC6A974C4F9AE02/S0fJxk08IyF6Fd2rh0fDncMBhPI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/S0fJxk08IyF6Fd2rh0fDncMBhPI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 11 May 2025 22:03:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1662 (0x67e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B31CE, serialNumber=4B47C9C64D3C23217A15DDAB8747C39DC30184F2 Validity Not Before: May 4 22:03:25 2025 GMT Not After : May 11 22:03:25 2025 GMT Subject: CN=6817e42e-8e18 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:8d:43:93:d4:4e:e0:ba:81:9a:5e:f4:b8:f2: f7:01:ca:2c:6f:12:68:aa:0b:2d:d1:4c:67:0c:c9: 3b:6c:95:e2:d1:91:a5:4b:38:87:7f:bd:60:f7:b1: 55:f3:1b:70:e7:0c:2d:b6:33:45:55:aa:bd:a7:7e: d1:26:e3:04:97:ac:04:95:2c:34:54:fa:02:29:ee: a5:30:22:b2:42:82:38:15:1e:83:cd:f8:ed:1f:e0: 54:6a:1b:e2:1d:94:15:8e:25:03:43:a8:1c:f5:f1: 2c:5f:06:88:d4:9c:1f:08:00:70:b7:17:c7:21:9a: 48:05:b6:5f:78:a3:13:44:54:62:bf:36:44:24:93: 9d:7e:ee:12:b8:37:52:d6:50:8f:05:ab:b7:b5:4a: 28:04:f8:bc:16:90:2c:42:53:99:f8:bd:51:90:83: 75:14:85:b8:88:cd:a9:c8:20:b4:36:3f:e0:f8:43: 5a:0e:c2:d4:ce:bf:4c:50:e1:b6:db:34:c4:e0:25: 46:05:c3:22:96:0b:25:ec:64:fc:16:51:b8:57:1c: db:4d:75:9e:22:b7:d0:eb:6e:df:78:23:e1:e8:a6: 6b:df:e6:52:67:17:57:de:59:d5:97:a0:be:b7:66: 25:42:b2:00:19:42:c4:fc:9e:ab:f7:4a:8f:de:68: 5f:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CD:A4:D0:35:5E:86:6C:23:9C:05:4A:80:08:F2:B7:16:9F:0D:91:7C X509v3 Authority Key Identifier: keyid:4B:47:C9:C6:4D:3C:23:21:7A:15:DD:AB:87:47:C3:9D:C3:01:84:F2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B31CE/6B05607A7CCD11EBAEC6A974C4F9AE02/S0fJxk08IyF6Fd2rh0fDncMBhPI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/S0fJxk08IyF6Fd2rh0fDncMBhPI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B31CE/6B05607A7CCD11EBAEC6A974C4F9AE02/S0fJxk08IyF6Fd2rh0fDncMBhPI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 90:ad:41:ae:1a:0c:67:7d:98:b9:2d:35:6b:7a:2a:d7:2f:b3: 89:7f:30:7c:25:a9:6b:99:a0:ca:52:74:f2:da:33:8e:5d:f4: 40:7e:41:7a:64:41:55:e2:20:e0:8e:5f:9a:ca:c9:f6:65:3f: 8c:a1:4b:f9:77:62:ad:3a:f5:63:2e:47:7d:1b:e6:80:ae:84: 6e:e3:e8:ca:ac:e9:79:b6:3c:46:5e:cb:a9:3e:87:c5:fb:26: 33:93:41:b4:18:b4:4d:83:04:9c:22:83:df:42:b5:97:8d:36: 57:07:be:c1:e0:01:71:9b:f2:d6:0f:d8:fa:93:b6:1d:58:d7: e7:9e:5b:9f:50:e6:02:b6:15:b6:c2:6a:07:41:9c:6d:87:50: c5:68:8a:10:eb:9a:11:14:d2:63:66:62:61:0a:6c:39:9f:5d: 94:77:24:7c:58:c9:4c:cf:c7:dc:86:85:06:36:5b:61:a9:c7: c3:f1:8f:62:c6:64:d8:63:fa:88:fb:9d:59:27:e0:ec:27:8e: e3:85:fc:4f:0e:8b:8c:28:4f:6f:d4:10:dd:03:26:b5:64:0f: 98:41:10:38:3d:96:83:b6:8a:5e:dc:9d:6b:94:a0:d8:67:32: 69:78:b3:d6:a8:5b:73:6a:08:13:66:0b:d4:47:62:fc:2c:47: 5a:c9:1c:d8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBn4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjMxQ0UxMTAvBgNVBAUTKDRCNDdDOUM2NEQzQzIzMjE3QTE1RERBQjg3NDdDMzlE QzMwMTg0RjIwHhcNMjUwNTA0MjIwMzI1WhcNMjUwNTExMjIwMzI1WjAYMRYwFAYD VQQDEw02ODE3ZTQyZS04ZTE4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzY1Dk9RO4LqBml70uPL3AcosbxJoqgst0UxnDMk7bJXi0ZGlSziHf71g97FV 8xtw5wwttjNFVaq9p37RJuMEl6wElSw0VPoCKe6lMCKyQoI4FR6DzfjtH+BUahvi HZQVjiUDQ6gc9fEsXwaI1JwfCABwtxfHIZpIBbZfeKMTRFRivzZEJJOdfu4SuDdS 1lCPBau3tUooBPi8FpAsQlOZ+L1RkIN1FIW4iM2pyCC0Nj/g+ENaDsLUzr9MUOG2 2zTE4CVGBcMilgsl7GT8FlG4VxzbTXWeIrfQ627feCPh6KZr3+ZSZxdX3lnVl6C+ t2YlQrIAGULE/J6r90qP3mhfGwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFM2k0DVe hmwjnAVKgAjytxafDZF8MB8GA1UdIwQYMBaAFEtHycZNPCMhehXdq4dHw53DAYTy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMzFDRS82QjA1NjA3QTdD Q0QxMUVCQUVDNkE5NzRDNEY5QUUwMi9TMGZKeGswOEl5RjZGZDJyaDBmRG5jTUJo UEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1MwZkp4azA4SXlGNkZkMnJoMGZEbmNNQmhQSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC MzFDRS82QjA1NjA3QTdDQ0QxMUVCQUVDNkE5NzRDNEY5QUUwMi9TMGZKeGswOEl5 RjZGZDJyaDBmRG5jTUJoUEkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCQrUGuGgxnfZi5LTVreirXL7OJfzB8JalrmaDKUnTy2jOOXfRAfkF6 ZEFV4iDgjl+aysn2ZT+MoUv5d2KtOvVjLkd9G+aAroRu4+jKrOl5tjxGXsupPofF +yYzk0G0GLRNgwScIoPfQrWXjTZXB77B4AFxm/LWD9j6k7YdWNfnnlufUOYCthW2 wmoHQZxth1DFaIoQ65oRFNJjZmJhCmw5n12UdyR8WMlMz8fchoUGNlthqcfD8Y9i xmTYY/qI+51ZJ+DsJ47jhfxPDouMKE9v1BDdAya1ZA+YQRA4PZaDtope3J1rlKDY ZzJpeLPWqFtzaggTZgvUR2L8LEdayRzY -----END CERTIFICATE-----Generated at Mon May 5 12:45:27 2025 by rpki-client