$ rpki-client -vvf rpki.apnic.net/member_repository/A91CE533/E8FD4FA4799F11E7B879101DC4F9AE02/CaPsxJ-Dp5iuE58dy8U27m9nzn4.mft File: CaPsxJ-Dp5iuE58dy8U27m9nzn4.mft (raw, json) Hash identifier: gO7GT2v6xRNFbuKwLjepFW+yQnWKqh76/C3s/KY/P9E= Subject key identifier: 56:9E:17:65:D9:60:DA:BF:D3:B4:83:C6:74:BD:FE:B9:98:5F:9D:DE Authority key identifier: 09:A3:EC:C4:9F:83:A7:98:AE:13:9F:1D:CB:C5:36:EE:6F:67:CE:7E Certificate issuer: /CN=A91CE533/serialNumber=09A3ECC49F83A798AE139F1DCBC536EE6F67CE7E Certificate serial: 193F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CaPsxJ-Dp5iuE58dy8U27m9nzn4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CE533/E8FD4FA4799F11E7B879101DC4F9AE02/CaPsxJ-Dp5iuE58dy8U27m9nzn4.mft Manifest number: 1933 Signing time: Sun 04 May 2025 16:20:18 +0000 Manifest this update: Sun 04 May 2025 16:20:18 +0000 Manifest next update: Sun 11 May 2025 16:20:18 +0000 Files and hashes: 1: CaPsxJ-Dp5iuE58dy8U27m9nzn4.crl (hash: zN2VLtosBzndI8yCb96wci7deE+FV+wc8/szfP7y06A=) 2: 290732FC79A211E79F34D81FC4F9AE02.roa (hash: SR7eVnerj/ud7fW+5gtERIt5ClN7aXRbGYLPuzi6Nlc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CE533/E8FD4FA4799F11E7B879101DC4F9AE02/CaPsxJ-Dp5iuE58dy8U27m9nzn4.crl rsync://rpki.apnic.net/member_repository/A91CE533/E8FD4FA4799F11E7B879101DC4F9AE02/CaPsxJ-Dp5iuE58dy8U27m9nzn4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CaPsxJ-Dp5iuE58dy8U27m9nzn4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 11 May 2025 16:20:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6463 (0x193f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CE533, serialNumber=09A3ECC49F83A798AE139F1DCBC536EE6F67CE7E Validity Not Before: May 4 16:20:18 2025 GMT Not After : May 11 16:20:18 2025 GMT Subject: CN=681793c2-111a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:9d:40:c3:78:41:08:11:62:fc:3b:e8:d2:65: 7b:ca:65:22:1a:66:e7:77:99:6f:b0:67:99:b3:ce: 0d:5a:56:9d:30:97:1a:0a:26:e7:4d:01:95:c5:b8: 5f:9a:a3:14:17:57:77:e6:1f:a7:18:ed:b8:b3:68: 23:71:43:fd:20:3a:b5:29:bf:2c:0d:2d:ab:07:4d: 8c:a2:d8:d9:89:21:68:4e:45:2a:b6:58:ed:94:0c: e9:c6:b6:83:5a:fc:f0:47:e8:6f:72:d2:bb:5c:e6: 30:52:8d:f9:d6:bd:6e:c5:3b:27:46:65:d1:98:9c: ff:43:06:af:b9:b5:cd:20:67:00:9f:2b:2d:81:65: bc:e1:79:eb:1e:04:c1:5b:17:86:4d:e8:33:e7:8f: 4b:c8:bf:2a:cd:4a:a0:ec:8d:c6:fe:7e:10:60:bd: 37:f3:0c:19:25:ea:7b:17:71:a1:c6:a0:f1:62:52: b8:cf:b3:12:11:64:07:d6:a8:c1:9d:87:24:e2:e0: ba:44:95:f2:49:ed:ba:bf:d8:69:f1:d8:23:73:68: d1:d6:cd:f0:8f:c3:10:ac:f0:0a:ba:5e:d4:f4:80: fc:78:5b:07:5a:a9:e2:05:35:18:e1:c8:7f:86:7d: ee:80:20:03:c9:f7:16:7a:81:30:ca:0d:69:6f:09: 4c:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 56:9E:17:65:D9:60:DA:BF:D3:B4:83:C6:74:BD:FE:B9:98:5F:9D:DE X509v3 Authority Key Identifier: keyid:09:A3:EC:C4:9F:83:A7:98:AE:13:9F:1D:CB:C5:36:EE:6F:67:CE:7E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CE533/E8FD4FA4799F11E7B879101DC4F9AE02/CaPsxJ-Dp5iuE58dy8U27m9nzn4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CaPsxJ-Dp5iuE58dy8U27m9nzn4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CE533/E8FD4FA4799F11E7B879101DC4F9AE02/CaPsxJ-Dp5iuE58dy8U27m9nzn4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 10:2b:b9:0e:fe:3f:a7:a2:e7:83:f8:e2:cb:0a:e8:e1:56:18: 01:e7:24:2c:e2:e2:1c:91:00:42:61:8c:6f:09:1d:a1:b1:e8: 80:ce:b2:2e:77:8c:0a:d1:47:13:88:61:ef:19:e8:b7:7f:84: 5e:ec:6b:7c:68:11:92:31:d4:2c:da:c4:28:d3:c1:9c:5e:b6: 4f:e4:0e:e4:3a:8d:3b:e3:0a:21:4d:f2:b3:68:56:3d:8b:06: e5:0e:69:66:bf:44:96:44:5f:df:eb:52:43:09:76:96:8b:68: 19:4d:46:8b:c6:c9:c7:7e:d1:1f:ab:5e:05:25:3b:5f:56:d7: 5b:72:12:df:fc:03:40:5a:9b:22:8a:a9:d1:31:fa:e9:f1:bb: 69:28:03:ce:3c:bc:2e:bf:c3:98:7a:8b:07:0b:e6:4e:6e:0e: 7f:fe:25:38:4c:82:80:97:ec:55:93:4d:c0:ce:55:fd:ab:eb: ef:32:8c:ac:79:3a:77:87:4f:ad:2f:f0:06:7e:6d:25:20:14: d9:e6:a3:f9:96:ba:3e:8a:e2:a5:ec:71:3a:81:e5:32:96:1a: 16:86:67:03:03:01:d6:dd:d1:1b:be:66:b9:cc:5e:14:72:1b: 19:23:4f:7f:86:e7:e5:c6:de:92:42:fd:03:ed:75:12:44:52: 69:8d:2a:d9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICGT8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0U1MzMxMTAvBgNVBAUTKDA5QTNFQ0M0OUY4M0E3OThBRTEzOUYxRENCQzUzNkVF NkY2N0NFN0UwHhcNMjUwNTA0MTYyMDE4WhcNMjUwNTExMTYyMDE4WjAYMRYwFAYD VQQDEw02ODE3OTNjMi0xMTFhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtJ1Aw3hBCBFi/Dvo0mV7ymUiGmbnd5lvsGeZs84NWladMJcaCibnTQGVxbhf mqMUF1d35h+nGO24s2gjcUP9IDq1Kb8sDS2rB02MotjZiSFoTkUqtljtlAzpxraD WvzwR+hvctK7XOYwUo351r1uxTsnRmXRmJz/QwavubXNIGcAnystgWW84XnrHgTB WxeGTegz549LyL8qzUqg7I3G/n4QYL038wwZJep7F3GhxqDxYlK4z7MSEWQH1qjB nYck4uC6RJXySe26v9hp8dgjc2jR1s3wj8MQrPAKul7U9ID8eFsHWqniBTUY4ch/ hn3ugCADyfcWeoEwyg1pbwlMYwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFaeF2XZ YNq/07SDxnS9/rmYX53eMB8GA1UdIwQYMBaAFAmj7MSfg6eYrhOfHcvFNu5vZ85+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRTUzMy9FOEZENEZBNDc5 OUYxMUU3Qjg3OTEwMURDNEY5QUUwMi9DYVBzeEotRHA1aXVFNThkeThVMjdtOW56 bjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NhUHN4Si1EcDVpdUU1OGR5OFUyN205bnpuNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RTUzMy9FOEZENEZBNDc5OUYxMUU3Qjg3OTEwMURDNEY5QUUwMi9DYVBzeEotRHA1 aXVFNThkeThVMjdtOW56bjQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAQK7kO/j+noueD+OLLCujhVhgB5yQs4uIckQBCYYxvCR2hseiAzrIu d4wK0UcTiGHvGei3f4Re7Gt8aBGSMdQs2sQo08GcXrZP5A7kOo074wohTfKzaFY9 iwblDmlmv0SWRF/f61JDCXaWi2gZTUaLxsnHftEfq14FJTtfVtdbchLf/ANAWpsi iqnRMfrp8btpKAPOPLwuv8OYeosHC+ZObg5//iU4TIKAl+xVk03AzlX9q+vvMoys eTp3h0+tL/AGfm0lIBTZ5qP5lro+iuKl7HE6geUylhoWhmcDAwHW3dEbvma5zF4U chsZI09/huflxt6SQv0D7XUSRFJpjSrZ -----END CERTIFICATE-----Generated at Mon May 5 15:03:14 2025 by rpki-client