$ rpki-client -vvf rpki.apnic.net/member_repository/A91B42CA/D34DB97E1DA011E283A1619208B02CD2/57DhU8QU0ThUitp16M0FzWk2cgY.mft File: 57DhU8QU0ThUitp16M0FzWk2cgY.mft (raw, json) Hash identifier: mEcy6yFiJwSgVDIXEm9H30qDxkIBQ+JAm3Urz2+Fm9U= Subject key identifier: F4:1D:AF:02:A1:08:8A:34:FB:76:2C:85:F8:DC:D9:AF:47:96:B4:7B Authority key identifier: E7:B0:E1:53:C4:14:D1:38:54:8A:DA:75:E8:CD:05:CD:69:36:72:06 Certificate issuer: /CN=A91B42CA/serialNumber=E7B0E153C414D138548ADA75E8CD05CD69367206 Certificate serial: 347D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/57DhU8QU0ThUitp16M0FzWk2cgY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B42CA/D34DB97E1DA011E283A1619208B02CD2/57DhU8QU0ThUitp16M0FzWk2cgY.mft Manifest number: 5266 Signing time: Mon 12 May 2025 15:03:09 +0000 Manifest this update: Mon 12 May 2025 15:03:09 +0000 Manifest next update: Mon 19 May 2025 15:03:09 +0000 Files and hashes: 1: 57DhU8QU0ThUitp16M0FzWk2cgY.crl (hash: jYePMr85vRBgVuXNUzcw506b0AVMZPKN9YOu4UMkp6Q=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B42CA/D34DB97E1DA011E283A1619208B02CD2/57DhU8QU0ThUitp16M0FzWk2cgY.crl rsync://rpki.apnic.net/member_repository/A91B42CA/D34DB97E1DA011E283A1619208B02CD2/57DhU8QU0ThUitp16M0FzWk2cgY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/57DhU8QU0ThUitp16M0FzWk2cgY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 19 May 2025 15:03:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13437 (0x347d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B42CA, serialNumber=E7B0E153C414D138548ADA75E8CD05CD69367206 Validity Not Before: May 12 15:03:09 2025 GMT Not After : May 19 15:03:09 2025 GMT Subject: CN=68220dad-e266 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:7c:b9:2b:05:4e:76:d5:5e:d8:a3:de:75:67: 93:15:ed:97:b2:ee:15:e9:fb:d4:bd:33:26:3d:9c: 58:24:b0:b6:a5:f4:45:4a:15:e2:43:cd:5f:af:b7: e0:39:39:af:13:7b:94:89:45:90:6c:6a:71:63:b1: e7:7e:7b:0c:18:cd:7e:1a:86:96:a7:fb:2f:49:10: bd:e3:2a:80:ea:83:98:0b:c4:74:06:85:13:6c:95: 9b:f9:b0:37:e5:64:5c:22:5c:28:7a:cd:f8:22:e0: aa:ad:9c:12:b7:11:f9:63:cf:fc:5d:44:bd:71:0b: d9:b3:bb:4a:ff:b5:78:ea:2a:e0:2b:ef:a6:13:a6: fa:25:7d:65:0f:fe:40:8c:de:01:4c:8a:a0:30:4f: 68:a1:45:a6:cc:18:64:14:37:fd:37:ff:92:0f:34: c8:2d:24:ad:d6:5d:28:a3:b7:73:f1:25:bb:f4:76: be:5b:1f:48:c5:53:da:d5:b5:a2:4f:40:e6:17:72: 35:dd:c8:09:29:55:c7:21:5e:b5:56:91:92:f0:18: 0f:10:a8:01:c5:55:30:0a:17:8c:83:28:f7:e4:d4: 67:8a:3e:97:09:13:78:46:70:16:c0:a0:8b:60:a9: 01:f6:f4:cc:15:c1:dd:8a:0a:14:a9:e8:d3:02:77: f9:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F4:1D:AF:02:A1:08:8A:34:FB:76:2C:85:F8:DC:D9:AF:47:96:B4:7B X509v3 Authority Key Identifier: keyid:E7:B0:E1:53:C4:14:D1:38:54:8A:DA:75:E8:CD:05:CD:69:36:72:06 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B42CA/D34DB97E1DA011E283A1619208B02CD2/57DhU8QU0ThUitp16M0FzWk2cgY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/57DhU8QU0ThUitp16M0FzWk2cgY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B42CA/D34DB97E1DA011E283A1619208B02CD2/57DhU8QU0ThUitp16M0FzWk2cgY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1d:7d:49:8c:41:b5:62:2a:94:4e:5e:8e:b7:62:36:e9:d0:75: ea:b1:72:5c:68:6d:25:db:b0:76:7a:39:84:33:fe:3d:34:05: e9:95:a3:d8:8b:fc:3a:7b:1b:c5:2f:56:0d:e2:7b:a6:6e:2c: eb:e7:6b:96:94:f8:49:e7:62:1e:2e:41:1f:cf:5e:25:d1:4f: 71:63:aa:35:d5:ab:68:a1:4b:7d:41:31:3f:b3:60:b4:39:30: 14:97:b1:36:9f:b1:33:4a:a2:2e:a4:fe:9e:03:89:a2:c4:14: 5c:07:ff:94:6c:f7:1c:b0:d3:31:65:36:ed:64:ae:bf:e0:5e: 7d:b1:e7:72:c9:87:bf:ea:99:74:36:7a:ff:27:25:66:9d:1c: 1b:eb:5d:29:f6:c1:e4:21:80:6d:79:6e:d6:c3:c6:e2:2a:01: 16:9d:76:63:4f:9e:fb:1f:a1:aa:b0:d0:8b:31:5a:99:cf:6b: d7:a3:dd:b4:4d:30:7c:86:51:a6:85:b8:fa:ce:b6:9e:f7:55: 15:b4:92:53:dc:9c:81:28:68:99:cf:45:70:d3:11:9a:75:35: 7d:f2:04:e9:5e:31:6e:cc:5d:1e:94:38:13:79:88:8b:c3:5c: a8:d4:a6:b9:65:c1:4b:79:94:09:d3:2b:f3:30:37:56:ab:6f: 44:b4:7e:50 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNH0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjQyQ0ExMTAvBgNVBAUTKEU3QjBFMTUzQzQxNEQxMzg1NDhBREE3NUU4Q0QwNUNE NjkzNjcyMDYwHhcNMjUwNTEyMTUwMzA5WhcNMjUwNTE5MTUwMzA5WjAYMRYwFAYD VQQDEw02ODIyMGRhZC1lMjY2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3ny5KwVOdtVe2KPedWeTFe2Xsu4V6fvUvTMmPZxYJLC2pfRFShXiQ81fr7fg OTmvE3uUiUWQbGpxY7HnfnsMGM1+GoaWp/svSRC94yqA6oOYC8R0BoUTbJWb+bA3 5WRcIlwoes34IuCqrZwStxH5Y8/8XUS9cQvZs7tK/7V46irgK++mE6b6JX1lD/5A jN4BTIqgME9ooUWmzBhkFDf9N/+SDzTILSSt1l0oo7dz8SW79Ha+Wx9IxVPa1bWi T0DmF3I13cgJKVXHIV61VpGS8BgPEKgBxVUwCheMgyj35NRnij6XCRN4RnAWwKCL YKkB9vTMFcHdigoUqejTAnf5AwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPQdrwKh CIo0+3Yshfjc2a9HlrR7MB8GA1UdIwQYMBaAFOew4VPEFNE4VIradejNBc1pNnIG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNDJDQS9EMzREQjk3RTFE QTAxMUUyODNBMTYxOTIwOEIwMkNEMi81N0RoVThRVTBUaFVpdHAxNk0wRnpXazJj Z1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzU3RGhVOFFVMFRoVWl0cDE2TTBGeldrMmNnWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NDJDQS9EMzREQjk3RTFEQTAxMUUyODNBMTYxOTIwOEIwMkNEMi81N0RoVThRVTBU aFVpdHAxNk0wRnpXazJjZ1kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAdfUmMQbViKpROXo63Yjbp0HXqsXJcaG0l27B2ejmEM/49NAXplaPY i/w6exvFL1YN4numbizr52uWlPhJ52IeLkEfz14l0U9xY6o11atooUt9QTE/s2C0 OTAUl7E2n7EzSqIupP6eA4mixBRcB/+UbPccsNMxZTbtZK6/4F59sedyyYe/6pl0 Nnr/JyVmnRwb610p9sHkIYBteW7Ww8biKgEWnXZjT577H6GqsNCLMVqZz2vXo920 TTB8hlGmhbj6zrae91UVtJJT3JyBKGiZz0Vw0xGadTV98gTpXjFuzF0elDgTeYiL w1yo1Ka5ZcFLeZQJ0yvzMDdWq29EtH5Q -----END CERTIFICATE-----Generated at Tue May 13 19:27:32 2025 by rpki-client