$ rpki-client -vvf rpki.apnic.net/member_repository/A91C5D53/05FFC00EAC8411EF8214972BC4F9AE02/1icW92HxiNVvoRf53JS-QUEEpoE.mft File: 1icW92HxiNVvoRf53JS-QUEEpoE.mft (raw, json) Hash identifier: RdkM4tVd9VNB32yaOVke9p+qWhtvQOq5hkoNUYVXWdI= Subject key identifier: 79:AB:CC:24:74:30:AE:4F:B9:41:D2:F9:A7:A2:5B:96:4D:18:1C:5F Authority key identifier: D6:27:16:F7:61:F1:88:D5:6F:A1:17:F9:DC:94:BE:41:41:04:A6:81 Certificate issuer: /CN=A91C5D53/serialNumber=D62716F761F188D56FA117F9DC94BE414104A681 Certificate serial: 59 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1icW92HxiNVvoRf53JS-QUEEpoE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C5D53/05FFC00EAC8411EF8214972BC4F9AE02/1icW92HxiNVvoRf53JS-QUEEpoE.mft Manifest number: 58 Signing time: Tue 13 May 2025 06:23:52 +0000 Manifest this update: Tue 13 May 2025 06:23:52 +0000 Manifest next update: Tue 20 May 2025 06:23:52 +0000 Files and hashes: 1: 1icW92HxiNVvoRf53JS-QUEEpoE.crl (hash: TUAoVSZODoT/0OdN8D+BzxDVEcRsEGmiw9kalyF5r8I=) 2: BB5954CE241111F094390A32C4F9AE02.roa (hash: amE47EhnSit+US/UtKoH9NH2bYhuMwqLRibNnGMwK/Q=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C5D53/05FFC00EAC8411EF8214972BC4F9AE02/1icW92HxiNVvoRf53JS-QUEEpoE.crl rsync://rpki.apnic.net/member_repository/A91C5D53/05FFC00EAC8411EF8214972BC4F9AE02/1icW92HxiNVvoRf53JS-QUEEpoE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1icW92HxiNVvoRf53JS-QUEEpoE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 20 May 2025 06:23:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 89 (0x59) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C5D53, serialNumber=D62716F761F188D56FA117F9DC94BE414104A681 Validity Not Before: May 13 06:23:52 2025 GMT Not After : May 20 06:23:52 2025 GMT Subject: CN=6822e578-5cdb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:16:43:03:86:4f:50:67:9f:03:20:fb:e2:b5: f5:75:45:79:b4:1d:88:fc:c1:2d:2b:fd:9c:14:59: 1f:a5:82:99:b6:2d:7e:f8:99:1e:8c:48:13:6d:22: bc:59:a2:02:11:2b:9b:ff:47:7d:b4:7f:c4:2d:fa: 91:6f:32:2d:4f:c4:8c:39:66:81:99:82:d9:bc:f8: 81:1c:8e:04:45:66:ac:57:dd:fd:36:7b:48:18:f4: 8b:ec:09:7c:32:ce:e6:e6:99:45:ca:73:5d:55:23: f0:16:7c:f4:46:22:f4:d2:65:83:8e:15:0d:f6:e6: f3:c5:f7:46:bc:1f:f9:45:52:5d:cf:37:f2:c2:48: 00:01:d4:6a:e3:53:f8:fd:88:62:30:fb:2b:58:75: 42:29:13:85:f2:70:c9:f5:47:d7:a2:03:54:8f:13: 61:15:cc:87:26:ba:49:a2:bd:2d:6e:68:d0:a9:da: b0:6b:78:de:3c:e4:2e:50:a4:b8:d8:16:af:1a:2e: 08:b0:c1:db:db:ed:76:6d:71:2c:b3:b6:ff:02:13: ba:16:72:fb:e7:29:c7:f0:5f:2b:99:4c:83:17:e1: 50:82:a6:b5:12:bc:51:f4:ed:71:ed:2f:89:2f:b2: 31:87:53:52:72:4d:9f:17:37:4e:86:13:0b:54:b8: 41:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 79:AB:CC:24:74:30:AE:4F:B9:41:D2:F9:A7:A2:5B:96:4D:18:1C:5F X509v3 Authority Key Identifier: keyid:D6:27:16:F7:61:F1:88:D5:6F:A1:17:F9:DC:94:BE:41:41:04:A6:81 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C5D53/05FFC00EAC8411EF8214972BC4F9AE02/1icW92HxiNVvoRf53JS-QUEEpoE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1icW92HxiNVvoRf53JS-QUEEpoE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C5D53/05FFC00EAC8411EF8214972BC4F9AE02/1icW92HxiNVvoRf53JS-QUEEpoE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 15:6c:90:76:20:99:bc:81:20:3b:8a:7b:3a:52:61:1d:43:be: f8:50:bc:de:fe:ee:94:bf:8b:b0:23:54:a3:9c:f7:dc:fa:46: e4:46:c5:c5:53:85:0a:b7:1c:45:a2:24:ac:43:85:2f:24:a2: 04:f8:0c:bb:7d:d3:c2:c3:80:8d:f1:87:b9:48:94:4e:10:4b: 5b:a1:1d:59:69:11:7e:a9:2f:97:3d:48:30:55:f1:2b:6d:bb: 73:43:e5:35:b7:ed:e1:7f:3e:b3:de:26:a1:3e:11:f7:d1:67: 5f:66:be:27:fb:5f:3c:b0:26:d8:63:dc:cb:50:35:79:12:7e: 7a:f7:fe:ad:37:55:77:db:7a:28:4e:df:ef:e0:2a:df:a6:36: e6:2a:33:c8:c8:e9:a0:49:50:fa:3d:7f:8b:e6:30:f4:3b:28: 96:dd:f3:9a:2a:98:d4:78:f4:04:53:39:19:23:a1:ba:7a:8e: 99:1e:84:97:36:20:bf:22:21:21:93:ad:c7:c5:91:2c:03:d9: e5:66:8a:64:93:05:4e:3f:fc:03:08:14:b9:2b:1a:87:99:a1: e7:19:ed:c0:5d:89:a9:6b:50:dd:6b:44:19:1f:b4:ab:9d:8d: 1b:d0:99:97:c3:11:87:0e:96:62:28:85:cc:ca:94:8a:30:6d: 66:13:38:af -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBWTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFD NUQ1MzExMC8GA1UEBRMoRDYyNzE2Rjc2MUYxODhENTZGQTExN0Y5REM5NEJFNDE0 MTA0QTY4MTAeFw0yNTA1MTMwNjIzNTJaFw0yNTA1MjAwNjIzNTJaMBgxFjAUBgNV BAMTDTY4MjJlNTc4LTVjZGIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDGFkMDhk9QZ58DIPvitfV1RXm0HYj8wS0r/ZwUWR+lgpm2LX74mR6MSBNtIrxZ ogIRK5v/R320f8Qt+pFvMi1PxIw5ZoGZgtm8+IEcjgRFZqxX3f02e0gY9IvsCXwy zubmmUXKc11VI/AWfPRGIvTSZYOOFQ325vPF90a8H/lFUl3PN/LCSAAB1GrjU/j9 iGIw+ytYdUIpE4XycMn1R9eiA1SPE2EVzIcmukmivS1uaNCp2rBreN485C5QpLjY Fq8aLgiwwdvb7XZtcSyztv8CE7oWcvvnKcfwXyuZTIMX4VCCprUSvFH07XHtL4kv sjGHU1JyTZ8XN06GEwtUuEGnAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUeavMJHQw rk+5QdL5p6Jblk0YHF8wHwYDVR0jBBgwFoAU1icW92HxiNVvoRf53JS+QUEEpoEw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUM1RDUzLzA1RkZDMDBFQUM4 NDExRUY4MjE0OTcyQkM0RjlBRTAyLzFpY1c5Mkh4aU5Wdm9SZjUzSlMtUVVFRXBv RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvMWljVzkySHhpTlZ2b1JmNTNKUy1RVUVFcG9FLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUM1 RDUzLzA1RkZDMDBFQUM4NDExRUY4MjE0OTcyQkM0RjlBRTAyLzFpY1c5Mkh4aU5W dm9SZjUzSlMtUVVFRXBvRS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBABVskHYgmbyBIDuKezpSYR1DvvhQvN7+7pS/i7AjVKOc99z6RuRGxcVT hQq3HEWiJKxDhS8kogT4DLt908LDgI3xh7lIlE4QS1uhHVlpEX6pL5c9SDBV8Stt u3ND5TW37eF/PrPeJqE+EffRZ19mvif7XzywJthj3MtQNXkSfnr3/q03VXfbeihO 3+/gKt+mNuYqM8jI6aBJUPo9f4vmMPQ7KJbd85oqmNR49ARTORkjobp6jpkehJc2 IL8iISGTrcfFkSwD2eVmimSTBU4//AMIFLkrGoeZoecZ7cBdialrUN1rRBkftKud jRvQmZfDEYcOlmIohczKlIowbWYTOK8= -----END CERTIFICATE-----Generated at Tue May 13 19:04:33 2025 by rpki-client