$ rpki-client -vvf rpki.apnic.net/member_repository/A91D51C1/D92E69AAC1EE11EBBFD57E2AC4F9AE02/l7tUs9I8N8PdPgFpypdNJ9up8FA.mft File: l7tUs9I8N8PdPgFpypdNJ9up8FA.mft (raw, json) Hash identifier: 7ujaumdjsqvI78dR3+bQckBAfhEeTocC9QMSZoIjkIo= Subject key identifier: 94:F1:C0:19:56:32:5C:D0:FD:3F:E0:AD:2F:33:10:42:01:58:EB:54 Authority key identifier: 97:BB:54:B3:D2:3C:37:C3:DD:3E:01:69:CA:97:4D:27:DB:A9:F0:50 Certificate issuer: /CN=A91D51C1/serialNumber=97BB54B3D23C37C3DD3E0169CA974D27DBA9F050 Certificate serial: 05C2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l7tUs9I8N8PdPgFpypdNJ9up8FA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D51C1/D92E69AAC1EE11EBBFD57E2AC4F9AE02/l7tUs9I8N8PdPgFpypdNJ9up8FA.mft Manifest number: 05BA Signing time: Thu 08 May 2025 22:56:29 +0000 Manifest this update: Thu 08 May 2025 22:56:28 +0000 Manifest next update: Thu 15 May 2025 22:56:28 +0000 Files and hashes: 1: l7tUs9I8N8PdPgFpypdNJ9up8FA.crl (hash: xdIsNc1sc/+f+75JQXUxvLBfoV99EwYTwUiB54MPNmY=) 2: 1E8ADFD0C1F211EBA984726AC4F9AE02.roa (hash: bWn5aFY6Kg9nqE6Xd5cFT5I+I/vhYdu828/JrK8jyYg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D51C1/D92E69AAC1EE11EBBFD57E2AC4F9AE02/l7tUs9I8N8PdPgFpypdNJ9up8FA.crl rsync://rpki.apnic.net/member_repository/A91D51C1/D92E69AAC1EE11EBBFD57E2AC4F9AE02/l7tUs9I8N8PdPgFpypdNJ9up8FA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l7tUs9I8N8PdPgFpypdNJ9up8FA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 15 May 2025 22:56:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1474 (0x5c2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D51C1, serialNumber=97BB54B3D23C37C3DD3E0169CA974D27DBA9F050 Validity Not Before: May 8 22:56:28 2025 GMT Not After : May 15 22:56:28 2025 GMT Subject: CN=681d369d-8f2c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:3b:05:83:4d:f7:b1:cc:8b:83:80:c4:c6:e1: 23:a9:99:c3:d1:a7:c4:41:17:5a:d0:1f:51:59:7e: 38:b9:24:e3:d4:28:b5:de:3c:94:c3:c6:4c:2f:92: 64:40:df:fd:7a:ab:16:9f:e7:c8:e9:7c:2c:2d:63: cb:4e:d4:3e:8c:0e:98:43:64:6a:01:eb:79:ee:2f: 3e:11:83:ec:9b:17:0f:43:10:11:80:c6:0b:9b:17: 3b:8f:fe:b7:2d:38:31:f3:0d:35:45:0c:18:7c:8d: ad:37:4f:ca:f9:35:a2:e8:af:67:c6:79:5b:31:07: d5:1d:2f:fc:95:8b:36:e8:fc:87:87:53:a8:20:c3: 40:30:b4:43:23:3f:ed:78:f2:8f:27:46:dc:fe:4f: 70:ab:40:60:48:85:a1:9a:3d:f6:c9:56:51:6a:79: e2:de:57:f3:c5:1b:60:63:c1:58:0d:6a:9d:a0:0d: 80:dd:bb:17:07:97:e4:b8:3c:a5:ed:fe:ee:44:b8: 5d:3f:35:c7:59:cb:3d:ac:99:2b:bf:91:01:17:d4: 49:af:74:96:bd:e4:f5:2b:c8:5b:15:60:7f:f3:a5: 71:f9:8a:a0:a8:77:75:a4:6d:80:19:86:24:6d:b5: b8:25:ab:8a:93:a9:c5:60:c0:01:a8:82:90:ca:01: c0:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 94:F1:C0:19:56:32:5C:D0:FD:3F:E0:AD:2F:33:10:42:01:58:EB:54 X509v3 Authority Key Identifier: keyid:97:BB:54:B3:D2:3C:37:C3:DD:3E:01:69:CA:97:4D:27:DB:A9:F0:50 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D51C1/D92E69AAC1EE11EBBFD57E2AC4F9AE02/l7tUs9I8N8PdPgFpypdNJ9up8FA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l7tUs9I8N8PdPgFpypdNJ9up8FA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D51C1/D92E69AAC1EE11EBBFD57E2AC4F9AE02/l7tUs9I8N8PdPgFpypdNJ9up8FA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 85:bb:ee:2b:bd:98:64:3f:93:1d:18:b8:68:0c:3a:57:62:10: 11:ac:77:ba:51:49:b0:64:f2:6a:96:32:e8:98:ce:5d:2d:02: fe:8a:cf:c4:c2:99:51:dc:8a:83:d3:af:24:8f:23:95:18:a4: d6:f6:72:df:ca:39:82:12:37:c0:e4:de:d6:cc:1d:3b:a2:29: 05:bc:0b:f1:e0:b9:84:07:aa:14:93:60:9a:a4:9d:26:86:92: 31:93:86:62:6e:9e:cd:08:30:9b:6a:69:72:a9:61:2a:af:79: d2:61:31:e7:c9:1c:7f:d7:cc:45:3b:65:79:40:77:f0:9c:c9: c3:25:de:56:91:6b:43:d8:a5:62:c4:9f:41:b5:da:d0:58:d2: d3:59:2d:3f:ea:d0:a7:7a:81:7a:74:55:90:2f:6e:1d:86:fa: 08:7f:5d:4a:11:4b:81:46:77:29:ae:41:5b:b8:9d:72:7d:47: a4:45:15:fc:97:af:c1:29:11:9c:9a:9e:5e:a3:54:85:4d:b3: 6f:2e:bb:67:7e:11:0e:d2:3f:21:a8:aa:f0:10:d4:e4:44:89: a0:e5:3e:55:7f:13:3b:4c:ea:d3:57:14:81:9d:64:43:e7:13: fe:0b:6a:aa:30:40:3c:1f:ac:d3:89:97:75:d4:c1:e8:bc:30: 68:22:64:4a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBcIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDUxQzExMTAvBgNVBAUTKDk3QkI1NEIzRDIzQzM3QzNERDNFMDE2OUNBOTc0RDI3 REJBOUYwNTAwHhcNMjUwNTA4MjI1NjI4WhcNMjUwNTE1MjI1NjI4WjAYMRYwFAYD VQQDEw02ODFkMzY5ZC04ZjJjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0TsFg033scyLg4DExuEjqZnD0afEQRda0B9RWX44uSTj1Ci13jyUw8ZML5Jk QN/9eqsWn+fI6XwsLWPLTtQ+jA6YQ2RqAet57i8+EYPsmxcPQxARgMYLmxc7j/63 LTgx8w01RQwYfI2tN0/K+TWi6K9nxnlbMQfVHS/8lYs26PyHh1OoIMNAMLRDIz/t ePKPJ0bc/k9wq0BgSIWhmj32yVZRanni3lfzxRtgY8FYDWqdoA2A3bsXB5fkuDyl 7f7uRLhdPzXHWcs9rJkrv5EBF9RJr3SWveT1K8hbFWB/86Vx+YqgqHd1pG2AGYYk bbW4JauKk6nFYMABqIKQygHAkwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJTxwBlW MlzQ/T/grS8zEEIBWOtUMB8GA1UdIwQYMBaAFJe7VLPSPDfD3T4BacqXTSfbqfBQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENTFDMS9EOTJFNjlBQUMx RUUxMUVCQkZENTdFMkFDNEY5QUUwMi9sN3RVczlJOE44UGRQZ0ZweXBkTko5dXA4 RkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2w3dFVzOUk4TjhQZFBnRnB5cGROSjl1cDhGQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NTFDMS9EOTJFNjlBQUMxRUUxMUVCQkZENTdFMkFDNEY5QUUwMi9sN3RVczlJOE44 UGRQZ0ZweXBkTko5dXA4RkEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCFu+4rvZhkP5MdGLhoDDpXYhARrHe6UUmwZPJqljLomM5dLQL+is/E wplR3IqD068kjyOVGKTW9nLfyjmCEjfA5N7WzB07oikFvAvx4LmEB6oUk2CapJ0m hpIxk4Zibp7NCDCbamlyqWEqr3nSYTHnyRx/18xFO2V5QHfwnMnDJd5WkWtD2KVi xJ9BtdrQWNLTWS0/6tCneoF6dFWQL24dhvoIf11KEUuBRncprkFbuJ1yfUekRRX8 l6/BKRGcmp5eo1SFTbNvLrtnfhEO0j8hqKrwENTkRImg5T5VfxM7TOrTVxSBnWRD 5xP+C2qqMEA8H6zTiZd11MHovDBoImRK -----END CERTIFICATE-----Generated at Sat May 10 19:43:12 2025 by rpki-client