$ rpki-client -vvf rpki.apnic.net/member_repository/A91B829A/1F23E058057F11EAA5516B3FC4F9AE02/iV5rynpcNtnzBEctDScTpILJ2yU.mft File: iV5rynpcNtnzBEctDScTpILJ2yU.mft (raw, json) Hash identifier: hC7+/URSQM7X2/uyMaU4iFOzn3C356Vad9NNgopOWro= Subject key identifier: 47:72:DF:3F:A9:8C:C8:EA:C8:31:4B:C3:D5:E5:DE:3D:0A:D8:9B:A2 Authority key identifier: 89:5E:6B:CA:7A:5C:36:D9:F3:04:47:2D:0D:27:13:A4:82:C9:DB:25 Certificate issuer: /CN=A91B829A/serialNumber=895E6BCA7A5C36D9F304472D0D2713A482C9DB25 Certificate serial: 0C45 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iV5rynpcNtnzBEctDScTpILJ2yU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B829A/1F23E058057F11EAA5516B3FC4F9AE02/iV5rynpcNtnzBEctDScTpILJ2yU.mft Manifest number: 0C3B Signing time: Mon 12 May 2025 18:19:47 +0000 Manifest this update: Mon 12 May 2025 18:19:47 +0000 Manifest next update: Mon 19 May 2025 18:19:47 +0000 Files and hashes: 1: iV5rynpcNtnzBEctDScTpILJ2yU.crl (hash: arUXi0cMnT3dfvekw+WJ//1KSdLuRee3dkKXUarQ3mI=) 2: 37759456617811ECBB095A62C4F9AE02.roa (hash: v3SUpuH8xWSras56GKvRnCYqonsTS7bWwXVAuKOWPmw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B829A/1F23E058057F11EAA5516B3FC4F9AE02/iV5rynpcNtnzBEctDScTpILJ2yU.crl rsync://rpki.apnic.net/member_repository/A91B829A/1F23E058057F11EAA5516B3FC4F9AE02/iV5rynpcNtnzBEctDScTpILJ2yU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iV5rynpcNtnzBEctDScTpILJ2yU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 19 May 2025 18:19:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3141 (0xc45) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B829A, serialNumber=895E6BCA7A5C36D9F304472D0D2713A482C9DB25 Validity Not Before: May 12 18:19:47 2025 GMT Not After : May 19 18:19:47 2025 GMT Subject: CN=68223bc3-89d0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:d1:d1:66:81:ad:54:fb:9b:f0:0a:55:b9:7d: fb:cf:15:54:14:37:99:8f:91:78:83:26:96:41:96: 2c:1b:dd:0f:6f:b9:61:bd:c7:01:9e:d8:ad:6d:3e: 15:58:cd:12:3d:db:3e:91:eb:2a:9a:70:b8:04:77: 02:63:9e:6c:4f:e8:06:08:66:97:91:46:67:e2:5d: ae:72:b6:44:f7:b3:93:79:68:9c:8a:7b:29:68:5c: de:3c:43:e9:37:4b:ff:47:b0:7d:d9:d9:de:e7:23: e4:01:ba:63:82:a0:e0:19:7b:7c:b6:09:fe:ac:da: d1:71:38:69:73:75:0b:f2:57:c3:58:43:e6:46:10: fb:de:43:a9:76:cf:cc:7f:33:44:ab:8c:47:26:e0: 05:85:8c:c5:b8:9c:d0:65:75:8f:03:7e:84:c8:11: d5:9f:5d:6e:1b:c7:cd:51:be:34:de:3f:af:d7:b1: ae:71:f5:9e:d1:4a:3a:5e:74:e4:2f:b1:31:31:94: a7:c0:84:58:75:a1:78:3e:23:bd:38:04:6c:e5:a4: b2:c8:68:48:16:ba:7b:cc:10:ac:32:6e:49:79:e2: c9:f9:c6:4c:64:34:15:12:10:84:85:86:6f:f8:db: 05:79:07:20:8b:e3:ea:4f:68:9d:7f:59:b2:48:fe: ed:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 47:72:DF:3F:A9:8C:C8:EA:C8:31:4B:C3:D5:E5:DE:3D:0A:D8:9B:A2 X509v3 Authority Key Identifier: keyid:89:5E:6B:CA:7A:5C:36:D9:F3:04:47:2D:0D:27:13:A4:82:C9:DB:25 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B829A/1F23E058057F11EAA5516B3FC4F9AE02/iV5rynpcNtnzBEctDScTpILJ2yU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iV5rynpcNtnzBEctDScTpILJ2yU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B829A/1F23E058057F11EAA5516B3FC4F9AE02/iV5rynpcNtnzBEctDScTpILJ2yU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 74:4c:61:1c:1b:fb:48:1e:5b:e3:f8:a9:1b:fa:16:39:a1:d6: 83:26:f4:ab:fe:fe:43:91:5e:bc:77:1a:86:c1:7d:f1:62:e0: 1a:b7:e2:fc:0d:be:80:8b:07:f1:8f:36:fd:14:32:6b:34:6a: f8:05:ca:01:3a:cf:9e:00:7f:87:35:a2:6a:ea:18:df:f6:4c: 11:b1:28:b5:15:6d:44:f4:f4:38:25:6c:0a:06:c6:ae:b6:d9: 86:28:62:d5:be:4c:3b:53:ba:2d:f9:53:95:db:2b:88:2c:03: c5:11:02:2f:27:8a:02:98:6b:05:b5:c3:c9:87:1e:61:b7:14: 12:49:04:4e:7d:56:98:86:1e:30:b7:02:d4:2d:59:2d:b5:a0: 3b:7e:84:4e:6e:fd:68:65:31:23:43:3c:70:c6:41:04:21:7b: 7c:7f:b6:61:39:6c:5c:dc:5c:9c:ba:15:30:be:97:58:eb:40: c3:2c:a9:b1:31:2f:97:18:e0:c3:92:ff:59:ce:a9:46:0e:03: c8:16:d4:a5:bb:94:9a:44:06:38:20:6a:b0:6c:33:59:22:32: 51:7d:d0:e1:27:ec:ef:26:67:3f:b7:bc:78:40:26:4a:2d:57: 9b:6f:a0:9a:da:ae:b9:3a:d2:38:c8:4d:da:7b:9a:a6:71:86: bb:23:b5:01 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDEUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjgyOUExMTAvBgNVBAUTKDg5NUU2QkNBN0E1QzM2RDlGMzA0NDcyRDBEMjcxM0E0 ODJDOURCMjUwHhcNMjUwNTEyMTgxOTQ3WhcNMjUwNTE5MTgxOTQ3WjAYMRYwFAYD VQQDEw02ODIyM2JjMy04OWQwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA19HRZoGtVPub8ApVuX37zxVUFDeZj5F4gyaWQZYsG90Pb7lhvccBntitbT4V WM0SPds+kesqmnC4BHcCY55sT+gGCGaXkUZn4l2ucrZE97OTeWicinspaFzePEPp N0v/R7B92dne5yPkAbpjgqDgGXt8tgn+rNrRcThpc3UL8lfDWEPmRhD73kOpds/M fzNEq4xHJuAFhYzFuJzQZXWPA36EyBHVn11uG8fNUb403j+v17GucfWe0Uo6XnTk L7ExMZSnwIRYdaF4PiO9OARs5aSyyGhIFrp7zBCsMm5JeeLJ+cZMZDQVEhCEhYZv +NsFeQcgi+PqT2idf1mySP7tCwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEdy3z+p jMjqyDFLw9Xl3j0K2JuiMB8GA1UdIwQYMBaAFIlea8p6XDbZ8wRHLQ0nE6SCydsl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCODI5QS8xRjIzRTA1ODA1 N0YxMUVBQTU1MTZCM0ZDNEY5QUUwMi9pVjVyeW5wY050bnpCRWN0RFNjVHBJTEoy eVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lWNXJ5bnBjTnRuekJFY3REU2NUcElMSjJ5VS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC ODI5QS8xRjIzRTA1ODA1N0YxMUVBQTU1MTZCM0ZDNEY5QUUwMi9pVjVyeW5wY050 bnpCRWN0RFNjVHBJTEoyeVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB0TGEcG/tIHlvj+Kkb+hY5odaDJvSr/v5DkV68dxqGwX3xYuAat+L8 Db6Aiwfxjzb9FDJrNGr4BcoBOs+eAH+HNaJq6hjf9kwRsSi1FW1E9PQ4JWwKBsau ttmGKGLVvkw7U7ot+VOV2yuILAPFEQIvJ4oCmGsFtcPJhx5htxQSSQROfVaYhh4w twLULVkttaA7foRObv1oZTEjQzxwxkEEIXt8f7ZhOWxc3FycuhUwvpdY60DDLKmx MS+XGODDkv9ZzqlGDgPIFtSlu5SaRAY4IGqwbDNZIjJRfdDhJ+zvJmc/t7x4QCZK LVebb6Ca2q65OtI4yE3ae5qmcYa7I7UB -----END CERTIFICATE-----Generated at Wed May 14 13:10:56 2025 by rpki-client