$ rpki-client -vvf rpki.apnic.net/member_repository/A91CE6C5/E8266020C6C011EC8AB7553FC4F9AE02/1Sj61Lh2q_twrziSIg8pPheRtrw.mft File: 1Sj61Lh2q_twrziSIg8pPheRtrw.mft (raw, json) Hash identifier: 37daMAHFPRaJeixNoqFkJ3O+GIjHt69zQP44eDyozLI= Subject key identifier: C7:28:F5:B4:6C:C1:DF:50:7B:7E:8F:F2:80:1D:9D:45:09:61:B4:55 Authority key identifier: D5:28:FA:D4:B8:76:AB:FB:70:AF:38:92:22:0F:29:3E:17:91:B6:BC Certificate issuer: /CN=A91CE6C5/serialNumber=D528FAD4B876ABFB70AF3892220F293E1791B6BC Certificate serial: 0333 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1Sj61Lh2q_twrziSIg8pPheRtrw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CE6C5/E8266020C6C011EC8AB7553FC4F9AE02/1Sj61Lh2q_twrziSIg8pPheRtrw.mft Manifest number: 0328 Signing time: Thu 15 May 2025 01:09:57 +0000 Manifest this update: Thu 15 May 2025 01:09:56 +0000 Manifest next update: Thu 22 May 2025 01:09:56 +0000 Files and hashes: 1: 1Sj61Lh2q_twrziSIg8pPheRtrw.crl (hash: BXR158vG/SBM7qkYeBwhqlNs3bPVb2NnW7WKAECGBRg=) 2: C0E56FB2D56B11EFB540FB53C4F9AE02.roa (hash: 4vLurmpeiFN7tjyB91fDIOCK/d511+2WLb9SGBrwU1k=) 3: A0841A68D0D511EC81001E73C4F9AE02.roa (hash: 28rk2f2SK8fYlNSOWgKUvbvWyh9sktvms5gVEW96hEM=) 4: F0E906D6046C11EFBDB55E14C4F9AE02.roa (hash: XvChKVsKHEK1ZO1syDy5U6icCS7rFP0XZCWXt+ycNCw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CE6C5/E8266020C6C011EC8AB7553FC4F9AE02/1Sj61Lh2q_twrziSIg8pPheRtrw.crl rsync://rpki.apnic.net/member_repository/A91CE6C5/E8266020C6C011EC8AB7553FC4F9AE02/1Sj61Lh2q_twrziSIg8pPheRtrw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1Sj61Lh2q_twrziSIg8pPheRtrw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 22 May 2025 01:09:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 819 (0x333) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CE6C5, serialNumber=D528FAD4B876ABFB70AF3892220F293E1791B6BC Validity Not Before: May 15 01:09:56 2025 GMT Not After : May 22 01:09:56 2025 GMT Subject: CN=68253ee4-2acc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:fc:dc:d4:18:46:c7:fb:db:b1:c5:35:f1:48: 61:92:bb:1e:8d:44:18:fe:b2:44:4b:8d:c2:b8:7b: e0:69:63:9e:7b:a8:8f:58:a9:80:0c:52:2b:b4:40: ae:9a:4c:29:82:a0:51:c7:27:11:26:93:d0:02:8f: 91:85:49:af:5a:d2:34:d2:30:28:d0:f6:fd:54:6d: 26:a6:0f:af:e7:8d:a7:bb:97:70:26:09:96:ab:29: cd:aa:40:34:61:3f:a7:ea:20:6c:07:ca:78:d8:e1: a0:ee:b9:8f:6f:15:5d:a4:62:7a:4d:5e:ec:f0:0a: 32:60:f2:5e:69:1c:75:ad:97:76:5a:17:46:68:85: 64:c4:c8:47:db:5a:e4:93:ca:11:86:37:c9:44:bd: 19:7d:ce:4b:05:1a:81:cd:51:1e:ba:dd:69:78:d5: 60:14:15:41:90:c0:aa:41:83:86:80:41:3d:94:da: af:7f:40:2a:4e:26:9d:22:05:c4:88:6c:39:23:22: 6c:93:5f:2d:ad:a9:1f:b8:0a:76:84:fd:43:f0:73: 76:1e:07:ea:30:62:56:1d:3e:33:7a:31:9c:dc:5a: 4a:63:73:75:f1:78:79:b0:ea:bc:74:7c:4e:f5:af: 60:59:58:3d:df:75:8d:0e:25:f1:23:af:11:57:be: 12:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C7:28:F5:B4:6C:C1:DF:50:7B:7E:8F:F2:80:1D:9D:45:09:61:B4:55 X509v3 Authority Key Identifier: keyid:D5:28:FA:D4:B8:76:AB:FB:70:AF:38:92:22:0F:29:3E:17:91:B6:BC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CE6C5/E8266020C6C011EC8AB7553FC4F9AE02/1Sj61Lh2q_twrziSIg8pPheRtrw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1Sj61Lh2q_twrziSIg8pPheRtrw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CE6C5/E8266020C6C011EC8AB7553FC4F9AE02/1Sj61Lh2q_twrziSIg8pPheRtrw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9f:0a:d2:49:43:ba:70:ae:f8:c0:08:d6:fc:b5:f1:d2:2b:08: 77:b2:0c:32:d9:a3:2a:95:f4:80:e1:e6:9b:2a:0a:23:f4:78: b0:00:1d:0a:5c:d2:e3:71:1d:35:c0:79:2a:c7:8e:b9:d6:98: 73:8f:60:8c:ec:68:0b:48:66:21:08:e3:86:c2:b2:33:1e:5d: 58:ac:97:25:41:6a:5e:8b:7b:4d:64:30:d7:48:70:59:1c:9e: 37:0e:8f:a2:35:c5:7c:c4:d8:fe:3b:2e:f3:0e:c4:e0:61:24: 9e:97:88:50:f6:be:24:13:1f:21:b2:46:b2:b6:dc:2f:52:4a: 96:79:3f:ff:12:73:1f:2e:97:a4:95:b2:8d:73:8d:2f:bc:fb: 13:23:ba:0b:ba:88:7a:78:84:87:b3:ea:f7:76:a0:d5:57:26: 67:42:f8:2f:08:47:be:d4:c1:8f:de:cc:62:b7:db:55:fa:fc: da:fc:c6:66:1d:d0:c6:cc:2e:31:20:04:96:3e:c8:e2:a9:fe: e5:c1:25:f0:76:63:30:41:4a:7b:61:83:97:8e:c0:27:53:55: 9d:e8:66:29:dd:9d:41:cc:91:5a:87:ae:fa:28:73:14:21:e3: 23:75:79:e4:60:28:dd:b6:77:e3:4a:70:84:d7:83:da:c5:f7: 8f:55:06:d5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAzMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0U2QzUxMTAvBgNVBAUTKEQ1MjhGQUQ0Qjg3NkFCRkI3MEFGMzg5MjIyMEYyOTNF MTc5MUI2QkMwHhcNMjUwNTE1MDEwOTU2WhcNMjUwNTIyMDEwOTU2WjAYMRYwFAYD VQQDEw02ODI1M2VlNC0yYWNjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArPzc1BhGx/vbscU18UhhkrsejUQY/rJES43CuHvgaWOee6iPWKmADFIrtECu mkwpgqBRxycRJpPQAo+RhUmvWtI00jAo0Pb9VG0mpg+v542nu5dwJgmWqynNqkA0 YT+n6iBsB8p42OGg7rmPbxVdpGJ6TV7s8AoyYPJeaRx1rZd2WhdGaIVkxMhH21rk k8oRhjfJRL0Zfc5LBRqBzVEeut1peNVgFBVBkMCqQYOGgEE9lNqvf0AqTiadIgXE iGw5IyJsk18trakfuAp2hP1D8HN2HgfqMGJWHT4zejGc3FpKY3N18Xh5sOq8dHxO 9a9gWVg933WNDiXxI68RV74S5QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMco9bRs wd9Qe36P8oAdnUUJYbRVMB8GA1UdIwQYMBaAFNUo+tS4dqv7cK84kiIPKT4Xkba8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRTZDNS9FODI2NjAyMEM2 QzAxMUVDOEFCNzU1M0ZDNEY5QUUwMi8xU2o2MUxoMnFfdHdyemlTSWc4cFBoZVJ0 cncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFTajYxTGgycV90d3J6aVNJZzhwUGhlUnRydy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RTZDNS9FODI2NjAyMEM2QzAxMUVDOEFCNzU1M0ZDNEY5QUUwMi8xU2o2MUxoMnFf dHdyemlTSWc4cFBoZVJ0cncubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCfCtJJQ7pwrvjACNb8tfHSKwh3sgwy2aMqlfSA4eabKgoj9HiwAB0K XNLjcR01wHkqx4651phzj2CM7GgLSGYhCOOGwrIzHl1YrJclQWpei3tNZDDXSHBZ HJ43Do+iNcV8xNj+Oy7zDsTgYSSel4hQ9r4kEx8hskayttwvUkqWeT//EnMfLpek lbKNc40vvPsTI7oLuoh6eISHs+r3dqDVVyZnQvgvCEe+1MGP3sxit9tV+vza/MZm HdDGzC4xIASWPsjiqf7lwSXwdmMwQUp7YYOXjsAnU1Wd6GYp3Z1BzJFah676KHMU IeMjdXnkYCjdtnfjSnCE14PaxfePVQbV -----END CERTIFICATE-----Generated at Thu May 15 18:12:21 2025 by rpki-client