$ rpki-client -vvf rpki.apnic.net/member_repository/A91C8DD5/D5A1A1C612A711E7ADB4DE4DC4F9AE02/1sP4E3joVAB4unmUQu7b7HgOD3s.mft File: 1sP4E3joVAB4unmUQu7b7HgOD3s.mft (raw, json) Hash identifier: wHTuAnguu3tC71fIkpnbaToOB+OjBKWah6NlwaaDtYE= Subject key identifier: D0:27:37:BC:FD:DD:82:58:BF:0B:5A:15:50:29:90:A6:E8:2B:08:7C Authority key identifier: D6:C3:F8:13:78:E8:54:00:78:BA:79:94:42:EE:DB:EC:78:0E:0F:7B Certificate issuer: /CN=A91C8DD5/serialNumber=D6C3F81378E8540078BA799442EEDBEC780E0F7B Certificate serial: 1B43 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1sP4E3joVAB4unmUQu7b7HgOD3s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C8DD5/D5A1A1C612A711E7ADB4DE4DC4F9AE02/1sP4E3joVAB4unmUQu7b7HgOD3s.mft Manifest number: 1B39 Signing time: Sat 10 May 2025 16:12:36 +0000 Manifest this update: Sat 10 May 2025 16:12:35 +0000 Manifest next update: Sat 17 May 2025 16:12:35 +0000 Files and hashes: 1: 1sP4E3joVAB4unmUQu7b7HgOD3s.crl (hash: TywpROcT+d8ollU6e5QS0QAepNGBSirabcOlmthN06Y=) 2: 020A31F812B011E7A7C42661C4F9AE02.roa (hash: XaEt+47rBdBuIr1qA7i6V/F+AJaSo/IaiolwteWY5gM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C8DD5/D5A1A1C612A711E7ADB4DE4DC4F9AE02/1sP4E3joVAB4unmUQu7b7HgOD3s.crl rsync://rpki.apnic.net/member_repository/A91C8DD5/D5A1A1C612A711E7ADB4DE4DC4F9AE02/1sP4E3joVAB4unmUQu7b7HgOD3s.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1sP4E3joVAB4unmUQu7b7HgOD3s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 17 May 2025 16:12:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6979 (0x1b43) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C8DD5, serialNumber=D6C3F81378E8540078BA799442EEDBEC780E0F7B Validity Not Before: May 10 16:12:35 2025 GMT Not After : May 17 16:12:35 2025 GMT Subject: CN=681f7af3-a5bb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:39:bb:64:ff:3b:ef:db:7a:c7:33:90:cb:41: 41:93:dc:5c:11:25:da:9b:2b:71:08:43:f7:42:82: 9f:fb:d7:9a:13:8c:93:5e:6f:1e:92:95:1f:73:b6: e5:a9:94:40:24:58:7c:a4:ca:54:f6:2c:03:b5:c6: 0e:cf:6c:e0:b6:ca:38:44:78:1b:80:38:39:c2:00: 83:21:5e:fb:dc:3b:93:91:78:9d:2c:dd:44:43:cd: e4:94:30:9b:bd:cd:6d:67:f2:f7:6f:04:1c:c4:60: a2:f8:0f:69:5b:c5:10:39:11:db:b6:ab:49:ee:63: 98:09:79:a6:1b:3c:ad:43:b3:fb:e3:f8:32:46:6b: 90:32:dd:85:8c:10:be:fa:8e:f7:7c:75:84:b7:5d: 90:38:d6:02:e7:62:c1:54:a2:ef:db:f7:b5:35:8e: 3d:f4:b3:5b:51:81:c9:96:79:24:dd:d4:29:27:ec: 7b:20:b2:c8:57:04:fa:b2:d0:fd:03:05:1f:d0:18: 65:d3:ad:c5:69:fb:37:4e:e0:5b:51:89:74:a6:36: 2e:3a:55:16:5a:57:45:82:5f:46:01:ba:b5:ca:3e: 32:c4:9d:68:4c:19:8a:84:2b:91:ae:9d:f2:98:b7: 91:73:91:80:d8:c5:95:cc:bf:bf:ff:7b:68:c6:44: fa:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D0:27:37:BC:FD:DD:82:58:BF:0B:5A:15:50:29:90:A6:E8:2B:08:7C X509v3 Authority Key Identifier: keyid:D6:C3:F8:13:78:E8:54:00:78:BA:79:94:42:EE:DB:EC:78:0E:0F:7B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C8DD5/D5A1A1C612A711E7ADB4DE4DC4F9AE02/1sP4E3joVAB4unmUQu7b7HgOD3s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1sP4E3joVAB4unmUQu7b7HgOD3s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C8DD5/D5A1A1C612A711E7ADB4DE4DC4F9AE02/1sP4E3joVAB4unmUQu7b7HgOD3s.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 93:58:a7:e4:21:00:85:06:05:e6:94:c5:47:73:e1:c8:26:5e: 84:8b:01:90:7e:9a:ad:a1:e5:62:8b:da:48:22:76:3b:cf:30: a1:6e:19:16:02:03:9a:b8:80:3f:eb:22:3d:e0:c1:b5:54:51: bf:6f:25:fd:cd:71:ca:29:de:fb:75:3c:c7:35:49:b1:3e:c2: fa:da:9e:3f:7f:13:6d:c6:e2:33:70:68:53:b4:c4:0f:39:00: 87:55:ac:78:a1:25:2a:d6:de:7a:6f:6c:cc:88:8f:59:4d:f2: 13:77:74:0b:f6:6e:04:75:c5:f6:85:61:0c:16:60:17:97:4c: f0:3a:02:93:1e:9e:1a:5d:bf:f0:f1:dd:3c:9a:21:83:2c:1b: f9:40:d7:28:8b:b7:a2:9c:ce:6b:b3:a5:a6:13:30:63:91:db: 38:4d:12:34:ba:87:63:15:01:9e:46:ae:e5:ee:4d:14:d1:32: 2d:a1:43:a4:01:92:b7:0d:4a:42:17:9d:88:43:b9:d0:3c:2e: a8:59:86:6a:5f:ce:d0:4b:f4:f9:7c:28:44:4e:b7:c0:42:b1: b7:e2:f2:ae:1f:67:ec:af:a0:e6:78:4f:a9:cc:f4:c8:86:9f: d0:18:de:f5:7c:84:d0:28:71:50:73:0b:e3:2b:bc:ad:56:65: cc:7d:d8:9c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICG0MwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzhERDUxMTAvBgNVBAUTKEQ2QzNGODEzNzhFODU0MDA3OEJBNzk5NDQyRUVEQkVD NzgwRTBGN0IwHhcNMjUwNTEwMTYxMjM1WhcNMjUwNTE3MTYxMjM1WjAYMRYwFAYD VQQDEw02ODFmN2FmMy1hNWJiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtDm7ZP8779t6xzOQy0FBk9xcESXamytxCEP3QoKf+9eaE4yTXm8ekpUfc7bl qZRAJFh8pMpU9iwDtcYOz2zgtso4RHgbgDg5wgCDIV773DuTkXidLN1EQ83klDCb vc1tZ/L3bwQcxGCi+A9pW8UQORHbtqtJ7mOYCXmmGzytQ7P74/gyRmuQMt2FjBC+ +o73fHWEt12QONYC52LBVKLv2/e1NY499LNbUYHJlnkk3dQpJ+x7ILLIVwT6stD9 AwUf0Bhl063Fafs3TuBbUYl0pjYuOlUWWldFgl9GAbq1yj4yxJ1oTBmKhCuRrp3y mLeRc5GA2MWVzL+//3toxkT6DQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNAnN7z9 3YJYvwtaFVApkKboKwh8MB8GA1UdIwQYMBaAFNbD+BN46FQAeLp5lELu2+x4Dg97 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDOERENS9ENUExQTFDNjEy QTcxMUU3QURCNERFNERDNEY5QUUwMi8xc1A0RTNqb1ZBQjR1bm1VUXU3YjdIZ09E M3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFzUDRFM2pvVkFCNHVubVVRdTdiN0hnT0Qzcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD OERENS9ENUExQTFDNjEyQTcxMUU3QURCNERFNERDNEY5QUUwMi8xc1A0RTNqb1ZB QjR1bm1VUXU3YjdIZ09EM3MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCTWKfkIQCFBgXmlMVHc+HIJl6EiwGQfpqtoeVii9pIInY7zzChbhkW AgOauIA/6yI94MG1VFG/byX9zXHKKd77dTzHNUmxPsL62p4/fxNtxuIzcGhTtMQP OQCHVax4oSUq1t56b2zMiI9ZTfITd3QL9m4EdcX2hWEMFmAXl0zwOgKTHp4aXb/w 8d08miGDLBv5QNcoi7einM5rs6WmEzBjkds4TRI0uodjFQGeRq7l7k0U0TItoUOk AZK3DUpCF52IQ7nQPC6oWYZqX87QS/T5fChETrfAQrG34vKuH2fsr6DmeE+pzPTI hp/QGN71fITQKHFQcwvjK7ytVmXMfdic -----END CERTIFICATE-----Generated at Mon May 12 15:04:21 2025 by rpki-client