$ rpki-client -vvf rpki.apnic.net/member_repository/A91D5320/78CCFE4E2DC811EE9370D348C4F9AE02/sZGuIGgUb5xzm-ps1Z55LE-Je3Y.mft File: sZGuIGgUb5xzm-ps1Z55LE-Je3Y.mft (raw, json) Hash identifier: RKvyB5aX7YF2ZirzpN4Z6T0T4KBs4OZuokxPuswuiFg= Subject key identifier: 0C:F5:A0:3F:0B:C4:EF:1C:E9:E4:68:C8:EB:20:84:DC:52:23:96:02 Authority key identifier: B1:91:AE:20:68:14:6F:9C:73:9B:EA:6C:D5:9E:79:2C:4F:89:7B:76 Certificate issuer: /CN=A91D5320/serialNumber=B191AE2068146F9C739BEA6CD59E792C4F897B76 Certificate serial: 015B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sZGuIGgUb5xzm-ps1Z55LE-Je3Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D5320/78CCFE4E2DC811EE9370D348C4F9AE02/sZGuIGgUb5xzm-ps1Z55LE-Je3Y.mft Manifest number: 0156 Signing time: Sun 11 May 2025 03:03:49 +0000 Manifest this update: Sun 11 May 2025 03:03:49 +0000 Manifest next update: Sun 18 May 2025 03:03:49 +0000 Files and hashes: 1: sZGuIGgUb5xzm-ps1Z55LE-Je3Y.crl (hash: pIZ96Zf9yBjBHvHrw6yfLviT7HTWtezyNVQGSw8vE50=) 2: E7B472CE2DC811EEBADF8E61C4F9AE02.roa (hash: 54qHC7QVMBwoC0O3cMcEci4Yy+Xl8hxRZfIa8v1MHj8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D5320/78CCFE4E2DC811EE9370D348C4F9AE02/sZGuIGgUb5xzm-ps1Z55LE-Je3Y.crl rsync://rpki.apnic.net/member_repository/A91D5320/78CCFE4E2DC811EE9370D348C4F9AE02/sZGuIGgUb5xzm-ps1Z55LE-Je3Y.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sZGuIGgUb5xzm-ps1Z55LE-Je3Y.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 18 May 2025 03:03:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 347 (0x15b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D5320, serialNumber=B191AE2068146F9C739BEA6CD59E792C4F897B76 Validity Not Before: May 11 03:03:49 2025 GMT Not After : May 18 03:03:49 2025 GMT Subject: CN=68201395-4443 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:e8:37:e3:0f:1e:c6:7d:45:cd:90:79:ac:9c: 51:18:0c:59:7c:9f:b8:fc:9f:90:6b:fb:18:1b:8c: e4:4b:76:6f:da:5d:f1:47:e7:62:d4:bc:ba:3d:a5: 76:c0:25:81:9e:f5:4f:c1:44:1e:c6:b8:24:e9:a3: 1c:34:d9:fe:b7:7f:21:17:f9:89:b8:b8:79:db:fd: a3:18:20:a9:15:94:6a:17:9b:ea:bc:fc:9f:d4:b5: db:4b:2e:2d:7b:fe:21:11:0d:dc:26:6b:8b:e2:b0: f7:83:70:3b:ce:6e:eb:63:36:09:a0:de:1a:dc:cd: c5:81:7f:fe:41:51:bf:81:ab:5b:d0:70:6b:64:7d: 8c:f7:55:fa:7f:21:21:87:ad:d3:da:47:32:f5:27: 94:77:94:01:87:0a:1c:28:89:2f:2b:3c:b1:b1:d9: 0e:92:e3:79:31:a3:35:3e:cb:22:29:cc:d4:52:b4: 4a:83:ae:4a:8b:43:a8:d2:94:ec:e3:b1:77:bd:72: 96:94:1e:f8:98:ae:12:af:68:29:2e:91:a0:6b:d7: 07:a7:03:4a:d8:15:cd:2c:71:2e:8f:26:3d:aa:4b: 04:f3:a4:21:f0:d9:a0:e1:b3:52:74:91:ea:dd:56: a7:71:56:6f:d8:0e:d2:8e:cd:ee:b7:35:0d:c2:a5: 9a:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0C:F5:A0:3F:0B:C4:EF:1C:E9:E4:68:C8:EB:20:84:DC:52:23:96:02 X509v3 Authority Key Identifier: keyid:B1:91:AE:20:68:14:6F:9C:73:9B:EA:6C:D5:9E:79:2C:4F:89:7B:76 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D5320/78CCFE4E2DC811EE9370D348C4F9AE02/sZGuIGgUb5xzm-ps1Z55LE-Je3Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sZGuIGgUb5xzm-ps1Z55LE-Je3Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D5320/78CCFE4E2DC811EE9370D348C4F9AE02/sZGuIGgUb5xzm-ps1Z55LE-Je3Y.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 40:10:84:fc:02:45:37:19:24:c4:b7:07:36:16:51:08:9d:83: 4e:74:bc:a0:46:4e:3a:98:ac:85:aa:29:7b:11:90:b6:14:31: 11:0e:ed:79:f4:da:84:75:40:86:85:de:4d:d7:8f:a8:10:46: 25:dc:af:0a:61:dd:9a:5e:ff:b3:f1:8e:78:a7:d1:65:7c:22: 49:73:c9:46:d5:d9:ec:39:b6:80:81:c7:b2:0b:dd:24:a7:a7: 8c:59:c0:33:58:54:70:a5:ba:63:f1:b9:3b:4e:5f:f1:4c:5e: 2f:f7:41:09:c2:1f:0b:9c:72:77:63:e1:8c:b0:2f:7e:a1:d5: d6:e7:ca:f3:b2:dc:26:5e:cd:f2:4c:af:ea:a1:86:7d:54:0f: 30:d2:5f:22:dc:87:24:24:d1:a2:b0:2b:53:91:2a:93:2c:6d: ab:9c:30:e1:c6:4a:69:f6:6f:e0:03:94:ed:af:97:a6:be:9f: 61:02:2a:94:0f:f8:61:ab:62:25:ba:53:ea:f3:5b:f6:9d:55: c2:f7:1d:92:57:92:9f:ef:c1:7e:4d:84:d0:b3:39:7f:a2:83: 6e:43:3f:2d:a9:93:60:ff:19:e7:5f:ac:0c:30:8c:1f:a6:9d: d4:d1:b8:b9:8e:9c:c0:64:19:84:af:03:36:c1:50:a8:52:ae: 9f:b3:e2:11 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAVswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDUzMjAxMTAvBgNVBAUTKEIxOTFBRTIwNjgxNDZGOUM3MzlCRUE2Q0Q1OUU3OTJD NEY4OTdCNzYwHhcNMjUwNTExMDMwMzQ5WhcNMjUwNTE4MDMwMzQ5WjAYMRYwFAYD VQQDEw02ODIwMTM5NS00NDQzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnOg34w8exn1FzZB5rJxRGAxZfJ+4/J+Qa/sYG4zkS3Zv2l3xR+di1Ly6PaV2 wCWBnvVPwUQexrgk6aMcNNn+t38hF/mJuLh52/2jGCCpFZRqF5vqvPyf1LXbSy4t e/4hEQ3cJmuL4rD3g3A7zm7rYzYJoN4a3M3FgX/+QVG/gatb0HBrZH2M91X6fyEh h63T2kcy9SeUd5QBhwocKIkvKzyxsdkOkuN5MaM1PssiKczUUrRKg65Ki0Oo0pTs 47F3vXKWlB74mK4Sr2gpLpGga9cHpwNK2BXNLHEujyY9qksE86Qh8Nmg4bNSdJHq 3VancVZv2A7Sjs3utzUNwqWafQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAz1oD8L xO8c6eRoyOsghNxSI5YCMB8GA1UdIwQYMBaAFLGRriBoFG+cc5vqbNWeeSxPiXt2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENTMyMC83OENDRkU0RTJE QzgxMUVFOTM3MEQzNDhDNEY5QUUwMi9zWkd1SUdnVWI1eHptLXBzMVo1NUxFLUpl M1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3NaR3VJR2dVYjV4em0tcHMxWjU1TEUtSmUzWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NTMyMC83OENDRkU0RTJEQzgxMUVFOTM3MEQzNDhDNEY5QUUwMi9zWkd1SUdnVWI1 eHptLXBzMVo1NUxFLUplM1kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBAEIT8AkU3GSTEtwc2FlEInYNOdLygRk46mKyFqil7EZC2FDERDu15 9NqEdUCGhd5N14+oEEYl3K8KYd2aXv+z8Y54p9FlfCJJc8lG1dnsObaAgceyC90k p6eMWcAzWFRwpbpj8bk7Tl/xTF4v90EJwh8LnHJ3Y+GMsC9+odXW58rzstwmXs3y TK/qoYZ9VA8w0l8i3IckJNGisCtTkSqTLG2rnDDhxkpp9m/gA5Ttr5emvp9hAiqU D/hhq2IlulPq81v2nVXC9x2SV5Kf78F+TYTQszl/ooNuQz8tqZNg/xnnX6wMMIwf pp3U0bi5jpzAZBmErwM2wVCoUq6fs+IR -----END CERTIFICATE-----Generated at Mon May 12 18:23:42 2025 by rpki-client