$ rpki-client -vvf rpki.apnic.net/member_repository/A91B97DB/4E410ACE0F6F11EAAB0ADB64C4F9AE02/rT2HA4ULEnHo8xrgPjzJrEZg2UI.mft File: rT2HA4ULEnHo8xrgPjzJrEZg2UI.mft (raw, json) Hash identifier: gorcCaGw+n/cKPmDFy8Olds/AdN08NfYvTEfMEPhUKU= Subject key identifier: D3:31:27:5D:71:FD:88:3A:8B:87:EE:7D:EC:46:E6:84:F5:A6:35:BB Authority key identifier: AD:3D:87:03:85:0B:12:71:E8:F3:1A:E0:3E:3C:C9:AC:46:60:D9:42 Certificate issuer: /CN=A91B97DB/serialNumber=AD3D8703850B1271E8F31AE03E3CC9AC4660D942 Certificate serial: 0C0A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rT2HA4ULEnHo8xrgPjzJrEZg2UI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B97DB/4E410ACE0F6F11EAAB0ADB64C4F9AE02/rT2HA4ULEnHo8xrgPjzJrEZg2UI.mft Manifest number: 0C01 Signing time: Sun 04 May 2025 18:33:50 +0000 Manifest this update: Sun 04 May 2025 18:33:50 +0000 Manifest next update: Sun 11 May 2025 18:33:50 +0000 Files and hashes: 1: rT2HA4ULEnHo8xrgPjzJrEZg2UI.crl (hash: kQ6x4K8oqJTwOoqOch6rIHjSXIdvfN1ATArBt7iWZGs=) 2: 5A0FAE220F7011EAB8E21167C4F9AE02.roa (hash: TQZLfyrNNm4rH/joKuV/c0LtGb3rqWKsaid6lV6en3Y=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B97DB/4E410ACE0F6F11EAAB0ADB64C4F9AE02/rT2HA4ULEnHo8xrgPjzJrEZg2UI.crl rsync://rpki.apnic.net/member_repository/A91B97DB/4E410ACE0F6F11EAAB0ADB64C4F9AE02/rT2HA4ULEnHo8xrgPjzJrEZg2UI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rT2HA4ULEnHo8xrgPjzJrEZg2UI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 11 May 2025 18:33:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3082 (0xc0a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B97DB, serialNumber=AD3D8703850B1271E8F31AE03E3CC9AC4660D942 Validity Not Before: May 4 18:33:50 2025 GMT Not After : May 11 18:33:50 2025 GMT Subject: CN=6817b30e-f28d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:42:1e:dc:7e:04:05:ea:14:1a:e3:92:1b:e1: 72:1b:2d:32:9b:2d:96:29:dd:09:8b:69:ad:bc:2e: 39:27:f3:a3:b1:df:2d:31:52:18:ef:1f:c7:82:e5: 82:d6:08:fd:60:34:6a:1e:1e:cd:1f:d5:c5:88:41: d1:03:b5:3d:1c:66:9f:0a:d8:cb:fb:6d:0d:96:37: 2d:53:e3:41:fc:6a:58:f6:ab:4b:0b:cd:db:46:38: 12:71:5e:75:83:aa:4d:5d:3b:29:80:c4:dd:21:c9: 94:58:4d:3f:27:da:67:7b:84:3b:17:4e:59:12:a7: ec:ea:5a:9e:9b:78:2a:3f:9c:1e:51:54:0f:0a:4e: 75:5e:5f:b5:da:42:15:d6:61:e6:8b:ae:39:61:e5: e0:0f:d5:1e:c1:bb:13:4b:21:07:c8:60:ea:d9:83: d4:12:62:a5:c9:f6:7d:89:d6:a8:ed:8f:bb:f6:26: 3b:09:c0:4b:f2:2d:5d:41:92:a1:78:f8:e6:b9:ee: 45:84:0b:e8:d8:39:3a:6c:3e:d1:2e:75:22:8e:22: 3b:08:0b:0d:4c:a1:9d:77:4a:0b:fb:88:aa:6e:7a: e0:c1:1e:19:66:d6:cd:85:8c:52:80:9a:3a:c0:aa: 99:7a:fc:84:fa:40:95:1a:8a:be:3b:fd:e6:aa:62: 66:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D3:31:27:5D:71:FD:88:3A:8B:87:EE:7D:EC:46:E6:84:F5:A6:35:BB X509v3 Authority Key Identifier: keyid:AD:3D:87:03:85:0B:12:71:E8:F3:1A:E0:3E:3C:C9:AC:46:60:D9:42 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B97DB/4E410ACE0F6F11EAAB0ADB64C4F9AE02/rT2HA4ULEnHo8xrgPjzJrEZg2UI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rT2HA4ULEnHo8xrgPjzJrEZg2UI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B97DB/4E410ACE0F6F11EAAB0ADB64C4F9AE02/rT2HA4ULEnHo8xrgPjzJrEZg2UI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 33:55:6c:e7:dd:25:7c:a2:30:6d:94:48:b4:cd:98:df:e1:40: b0:ec:0e:75:da:c2:6d:34:0b:8f:f5:23:07:dd:47:94:8f:16: a9:d1:63:31:61:8c:45:73:99:f4:39:cb:a6:34:cc:4b:29:ef: 55:d4:c8:fd:4d:cf:03:b8:2a:da:92:2c:1f:dd:d7:59:4c:1f: bd:cd:cc:05:c0:c4:49:f5:bd:14:4e:6c:dc:de:59:7a:a7:cf: 4a:87:b4:9c:c4:c3:aa:2b:81:de:86:cc:11:56:82:9b:34:63: 68:c9:46:02:d8:9e:a2:b9:fd:2c:70:32:7e:fa:98:28:4a:62: 1b:06:a8:e2:6e:82:2c:71:87:ed:34:d9:61:6f:82:fb:65:a9: 06:67:42:47:8f:1d:e3:dc:6a:12:78:5a:53:44:8a:20:95:bb: 95:61:93:22:f1:99:32:0c:3c:ee:be:1c:57:12:9e:b1:d4:9b: c6:39:4d:09:6c:be:f6:49:52:70:d6:8b:c1:67:f8:a1:40:fa: 13:c9:84:92:cd:60:40:3a:aa:9c:67:28:00:15:ba:fe:c6:40: a1:1b:65:5c:63:e9:cc:fd:c3:be:cc:b5:ab:c7:a9:b9:4f:50: e0:43:19:44:b3:75:81:ba:21:42:9a:1e:fd:f9:a5:d9:55:97: 4c:75:39:40 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDAowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Qjk3REIxMTAvBgNVBAUTKEFEM0Q4NzAzODUwQjEyNzFFOEYzMUFFMDNFM0NDOUFD NDY2MEQ5NDIwHhcNMjUwNTA0MTgzMzUwWhcNMjUwNTExMTgzMzUwWjAYMRYwFAYD VQQDEw02ODE3YjMwZS1mMjhkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx0Ie3H4EBeoUGuOSG+FyGy0ymy2WKd0Ji2mtvC45J/Ojsd8tMVIY7x/HguWC 1gj9YDRqHh7NH9XFiEHRA7U9HGafCtjL+20NljctU+NB/GpY9qtLC83bRjgScV51 g6pNXTspgMTdIcmUWE0/J9pne4Q7F05ZEqfs6lqem3gqP5weUVQPCk51Xl+12kIV 1mHmi645YeXgD9UewbsTSyEHyGDq2YPUEmKlyfZ9idao7Y+79iY7CcBL8i1dQZKh ePjmue5FhAvo2Dk6bD7RLnUijiI7CAsNTKGdd0oL+4iqbnrgwR4ZZtbNhYxSgJo6 wKqZevyE+kCVGoq+O/3mqmJmKQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNMxJ11x /Yg6i4fufexG5oT1pjW7MB8GA1UdIwQYMBaAFK09hwOFCxJx6PMa4D48yaxGYNlC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCOTdEQi80RTQxMEFDRTBG NkYxMUVBQUIwQURCNjRDNEY5QUUwMi9yVDJIQTRVTEVuSG84eHJnUGp6SnJFWmcy VUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JUMkhBNFVMRW5Ibzh4cmdQanpKckVaZzJVSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC OTdEQi80RTQxMEFDRTBGNkYxMUVBQUIwQURCNjRDNEY5QUUwMi9yVDJIQTRVTEVu SG84eHJnUGp6SnJFWmcyVUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAzVWzn3SV8ojBtlEi0zZjf4UCw7A512sJtNAuP9SMH3UeUjxap0WMx YYxFc5n0OcumNMxLKe9V1Mj9Tc8DuCrakiwf3ddZTB+9zcwFwMRJ9b0UTmzc3ll6 p89Kh7ScxMOqK4HehswRVoKbNGNoyUYC2J6iuf0scDJ++pgoSmIbBqjiboIscYft NNlhb4L7ZakGZ0JHjx3j3GoSeFpTRIoglbuVYZMi8ZkyDDzuvhxXEp6x1JvGOU0J bL72SVJw1ovBZ/ihQPoTyYSSzWBAOqqcZygAFbr+xkChG2VcY+nM/cO+zLWrx6m5 T1DgQxlEs3WBuiFCmh79+aXZVZdMdTlA -----END CERTIFICATE-----Generated at Mon May 5 02:55:45 2025 by rpki-client