$ rpki-client -vvf rpki.apnic.net/member_repository/A91D5A49/F9131DA658A611EDA2BB2060C4F9AE02/utY-wFoDGPl_MVby4gWcYZPOOAo.mft File: utY-wFoDGPl_MVby4gWcYZPOOAo.mft (raw, json) Hash identifier: ZyD52fOxSF3IYUaTb271dyFc88VocISQ6T2kX8IKXFw= Subject key identifier: BF:01:78:D4:E3:02:CF:1D:68:68:93:CE:89:EC:E9:9B:43:B1:7D:8C Authority key identifier: BA:D6:3E:C0:5A:03:18:F9:7F:31:56:F2:E2:05:9C:61:93:CE:38:0A Certificate issuer: /CN=A91D5A49/serialNumber=BAD63EC05A0318F97F3156F2E2059C6193CE380A Certificate serial: 01D8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/utY-wFoDGPl_MVby4gWcYZPOOAo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D5A49/F9131DA658A611EDA2BB2060C4F9AE02/utY-wFoDGPl_MVby4gWcYZPOOAo.mft Manifest number: 01D8 Signing time: Tue 13 May 2025 02:00:47 +0000 Manifest this update: Tue 13 May 2025 02:00:47 +0000 Manifest next update: Tue 20 May 2025 02:00:47 +0000 Files and hashes: 1: utY-wFoDGPl_MVby4gWcYZPOOAo.crl (hash: 47acIuZxTyk0bMs73SZvKjv6ouscPgU4LlT59c8g6BI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D5A49/F9131DA658A611EDA2BB2060C4F9AE02/utY-wFoDGPl_MVby4gWcYZPOOAo.crl rsync://rpki.apnic.net/member_repository/A91D5A49/F9131DA658A611EDA2BB2060C4F9AE02/utY-wFoDGPl_MVby4gWcYZPOOAo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/utY-wFoDGPl_MVby4gWcYZPOOAo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 20 May 2025 02:00:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 472 (0x1d8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D5A49, serialNumber=BAD63EC05A0318F97F3156F2E2059C6193CE380A Validity Not Before: May 13 02:00:47 2025 GMT Not After : May 20 02:00:47 2025 GMT Subject: CN=6822a7cf-ae29 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:85:a2:30:3f:c0:1a:d9:d3:06:fa:0a:ec:92: 47:cb:bd:38:5a:60:a7:11:ba:35:6b:31:ff:83:a2: 39:05:c6:17:33:e8:4e:44:be:fb:fc:5a:22:3b:3d: b2:ca:ed:a0:24:51:63:4c:5b:9d:c7:09:51:53:f5: 68:19:b7:94:ad:ba:bd:db:15:57:cc:15:4d:59:76: 32:53:11:c5:0c:d5:b2:21:39:d3:4c:32:2d:a3:9d: 46:fb:17:4a:ee:ef:ad:81:08:ae:53:44:9a:f0:94: 6f:60:96:29:09:1b:e7:0e:61:96:d9:c1:eb:b6:d2: b0:56:0d:62:cc:61:a6:ef:a6:04:81:8d:bb:3a:00: c0:83:d1:02:5c:18:e9:5a:7a:91:dc:8e:ae:75:40: ad:c6:06:cc:64:2f:a0:4a:00:b9:aa:43:3a:ea:b0: 67:dc:43:9a:04:2a:6a:2c:5c:31:de:c3:9e:5a:05: 2f:35:0d:2f:21:b8:3d:e6:23:3e:d3:c3:4f:d6:6d: dd:be:7b:ea:99:bb:85:0c:3a:a3:ea:a1:bf:3f:2f: 98:bc:77:25:59:72:76:4b:c5:3a:8d:5c:11:c9:b1: 5f:0c:a1:ef:af:f0:0d:85:4a:31:65:99:86:47:bf: 8c:28:d8:bb:cf:be:c3:9d:f3:0f:74:45:c6:0d:91: 92:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BF:01:78:D4:E3:02:CF:1D:68:68:93:CE:89:EC:E9:9B:43:B1:7D:8C X509v3 Authority Key Identifier: keyid:BA:D6:3E:C0:5A:03:18:F9:7F:31:56:F2:E2:05:9C:61:93:CE:38:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D5A49/F9131DA658A611EDA2BB2060C4F9AE02/utY-wFoDGPl_MVby4gWcYZPOOAo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/utY-wFoDGPl_MVby4gWcYZPOOAo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D5A49/F9131DA658A611EDA2BB2060C4F9AE02/utY-wFoDGPl_MVby4gWcYZPOOAo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3f:f0:7f:9a:4d:1c:d6:8f:3d:cc:05:fe:93:b5:f0:cb:04:57: db:22:ab:9c:85:8c:0d:30:17:41:b4:d0:0a:04:63:57:1f:0b: 10:26:a0:d6:10:23:34:29:74:90:16:04:f9:81:94:b8:e2:4d: 23:4b:d3:04:23:f9:a8:95:b9:28:40:a3:9a:0b:50:8f:73:39: 2f:3b:47:7c:a6:3d:d2:b8:4e:22:e0:7c:31:13:44:52:4d:ec: 26:0a:2c:55:1b:d4:bd:64:f8:66:92:a0:cf:f0:85:d5:59:13: 89:37:14:4f:94:14:98:86:a6:11:a7:ea:eb:83:5d:62:30:3f: 8e:c9:90:85:05:fd:5d:6a:dd:df:1c:36:55:63:c9:21:59:6b: 86:04:da:92:31:d3:a0:38:6b:06:f8:3d:59:e5:74:42:c1:25: 82:94:6a:4a:81:a7:ad:c4:c4:55:1d:cb:ec:2b:eb:4d:84:cb: 7f:38:2e:79:07:3d:70:4c:2f:8d:29:43:a4:a1:2d:18:8d:13: 49:dc:10:86:fe:13:2a:27:2d:18:f3:e2:77:e4:d0:e3:0f:d5: d2:36:97:8d:eb:eb:54:cb:5e:c6:7b:6d:13:74:28:97:1a:bc: b9:33:f3:e2:cd:f6:21:88:d1:5e:01:95:6c:2d:b3:95:db:ab: de:60:22:5a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAdgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDVBNDkxMTAvBgNVBAUTKEJBRDYzRUMwNUEwMzE4Rjk3RjMxNTZGMkUyMDU5QzYx OTNDRTM4MEEwHhcNMjUwNTEzMDIwMDQ3WhcNMjUwNTIwMDIwMDQ3WjAYMRYwFAYD VQQDEw02ODIyYTdjZi1hZTI5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyYWiMD/AGtnTBvoK7JJHy704WmCnEbo1azH/g6I5BcYXM+hORL77/FoiOz2y yu2gJFFjTFudxwlRU/VoGbeUrbq92xVXzBVNWXYyUxHFDNWyITnTTDIto51G+xdK 7u+tgQiuU0Sa8JRvYJYpCRvnDmGW2cHrttKwVg1izGGm76YEgY27OgDAg9ECXBjp WnqR3I6udUCtxgbMZC+gSgC5qkM66rBn3EOaBCpqLFwx3sOeWgUvNQ0vIbg95iM+ 08NP1m3dvnvqmbuFDDqj6qG/Py+YvHclWXJ2S8U6jVwRybFfDKHvr/ANhUoxZZmG R7+MKNi7z77DnfMPdEXGDZGSbQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFL8BeNTj As8daGiTzons6ZtDsX2MMB8GA1UdIwQYMBaAFLrWPsBaAxj5fzFW8uIFnGGTzjgK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENUE0OS9GOTEzMURBNjU4 QTYxMUVEQTJCQjIwNjBDNEY5QUUwMi91dFktd0ZvREdQbF9NVmJ5NGdXY1laUE9P QW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3V0WS13Rm9ER1BsX01WYnk0Z1djWVpQT09Bby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NUE0OS9GOTEzMURBNjU4QTYxMUVEQTJCQjIwNjBDNEY5QUUwMi91dFktd0ZvREdQ bF9NVmJ5NGdXY1laUE9PQW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA/8H+aTRzWjz3MBf6TtfDLBFfbIquchYwNMBdBtNAKBGNXHwsQJqDW ECM0KXSQFgT5gZS44k0jS9MEI/molbkoQKOaC1CPczkvO0d8pj3SuE4i4HwxE0RS TewmCixVG9S9ZPhmkqDP8IXVWROJNxRPlBSYhqYRp+rrg11iMD+OyZCFBf1dat3f HDZVY8khWWuGBNqSMdOgOGsG+D1Z5XRCwSWClGpKgaetxMRVHcvsK+tNhMt/OC55 Bz1wTC+NKUOkoS0YjRNJ3BCG/hMqJy0Y8+J35NDjD9XSNpeN6+tUy17Ge20TdCiX Gry5M/PizfYhiNFeAZVsLbOV26veYCJa -----END CERTIFICATE-----Generated at Wed May 14 20:54:18 2025 by rpki-client