$ rpki-client -vvf rpki.apnic.net/member_repository/A91DD5E1/165B7BF6BC6E11EAA5CB037DC4F9AE02/rC4NP0JyIX_vudMtzhozLelqOF4.mft File: rC4NP0JyIX_vudMtzhozLelqOF4.mft (raw, json) Hash identifier: BUoUECkJ/A1+6vViJbyf+0YOjTid9RaW3zYiJnDsDbA= Subject key identifier: 2C:0F:F3:1B:6F:37:5A:54:AE:48:12:65:65:75:87:F3:5B:AA:71:38 Authority key identifier: AC:2E:0D:3F:42:72:21:7F:EF:B9:D3:2D:CE:1A:33:2D:E9:6A:38:5E Certificate issuer: /CN=A91DD5E1/serialNumber=AC2E0D3F4272217FEFB9D32DCE1A332DE96A385E Certificate serial: 0895 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rC4NP0JyIX_vudMtzhozLelqOF4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DD5E1/165B7BF6BC6E11EAA5CB037DC4F9AE02/rC4NP0JyIX_vudMtzhozLelqOF4.mft Manifest number: 088D Signing time: Sun 04 May 2025 20:21:43 +0000 Manifest this update: Sun 04 May 2025 20:21:42 +0000 Manifest next update: Sun 11 May 2025 20:21:42 +0000 Files and hashes: 1: rC4NP0JyIX_vudMtzhozLelqOF4.crl (hash: yzn3RJWPmGAuqGYPiyXdgPzY/HQP4cYKJ94K86oHXxY=) 2: E034D1A6BC6F11EA8FE53280C4F9AE02.roa (hash: r0YFlYuIRf7Aj55A1t3w3hfTwFR/8iacpEclsozeKco=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DD5E1/165B7BF6BC6E11EAA5CB037DC4F9AE02/rC4NP0JyIX_vudMtzhozLelqOF4.crl rsync://rpki.apnic.net/member_repository/A91DD5E1/165B7BF6BC6E11EAA5CB037DC4F9AE02/rC4NP0JyIX_vudMtzhozLelqOF4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rC4NP0JyIX_vudMtzhozLelqOF4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 11 May 2025 20:21:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2197 (0x895) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DD5E1, serialNumber=AC2E0D3F4272217FEFB9D32DCE1A332DE96A385E Validity Not Before: May 4 20:21:42 2025 GMT Not After : May 11 20:21:42 2025 GMT Subject: CN=6817cc56-559a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:0b:7b:14:62:11:65:b3:7b:b8:35:30:42:6c: 8e:28:36:96:c9:93:0f:21:f0:cc:3b:0a:28:62:54: d0:12:15:1b:ee:13:e7:10:7a:21:16:3e:d4:76:36: 66:b9:df:d5:6c:1e:34:f6:3a:cf:68:b6:2b:ca:22: 9d:d3:d4:79:30:df:07:44:fb:90:2c:3e:04:ec:91: a1:8c:49:19:ba:1f:c9:8e:d5:bc:bf:44:90:1a:bd: cf:bc:0d:87:f0:25:7d:71:2a:6c:d6:49:33:89:91: 31:01:19:78:41:f9:a5:9a:5c:d5:d9:70:e5:30:c5: c4:48:b5:b7:82:68:da:54:7a:d2:67:4d:81:25:95: 8f:3f:f2:e2:d5:42:68:04:71:ef:3a:1e:4d:55:ea: cb:7f:56:b2:12:38:e9:74:a0:b9:e0:c4:57:73:38: 89:74:f3:24:a2:6d:08:db:4c:84:3d:6e:50:71:8c: 27:74:ba:5a:ba:59:c1:5a:f2:ad:64:13:25:b3:fe: 0c:52:c9:c3:98:b9:1b:5a:72:de:c3:67:6e:70:25: b8:2c:28:3c:75:63:27:a7:5c:61:4c:00:74:53:92: 19:9f:4b:39:35:0f:1a:90:b2:a2:c6:27:32:27:3d: 09:57:48:08:07:63:fc:0a:50:6a:f0:c5:48:7e:b6: 79:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2C:0F:F3:1B:6F:37:5A:54:AE:48:12:65:65:75:87:F3:5B:AA:71:38 X509v3 Authority Key Identifier: keyid:AC:2E:0D:3F:42:72:21:7F:EF:B9:D3:2D:CE:1A:33:2D:E9:6A:38:5E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DD5E1/165B7BF6BC6E11EAA5CB037DC4F9AE02/rC4NP0JyIX_vudMtzhozLelqOF4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rC4NP0JyIX_vudMtzhozLelqOF4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DD5E1/165B7BF6BC6E11EAA5CB037DC4F9AE02/rC4NP0JyIX_vudMtzhozLelqOF4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 71:1c:01:09:ea:fc:95:95:5c:76:2e:73:2e:9d:7d:8e:14:d5: 4f:0e:af:9f:43:2e:76:e1:ee:ea:00:09:e1:cd:d1:09:79:e5: 36:74:bb:66:e2:56:91:5a:51:a6:af:35:03:0b:bb:d3:2a:0d: 1c:22:18:cb:1c:d7:ec:af:7c:1e:23:f7:6a:28:e6:1e:87:2a: be:25:01:8b:17:47:08:57:ee:3d:8a:ff:23:09:be:ee:19:f5: 76:d6:b4:86:4f:f2:98:dd:ba:a0:97:ce:e0:99:92:14:37:b8: ba:9c:80:ac:a6:8d:cf:f9:a1:98:8a:e5:8d:88:58:34:d3:4f: 9b:84:f5:8f:e2:5f:d1:42:f3:b4:9a:3f:f2:77:e4:9a:e2:48: 93:17:f3:59:bf:6d:44:0c:58:2f:65:e0:eb:7b:6a:d7:85:13: 62:fe:56:08:e6:b2:97:b5:9f:80:fc:84:4f:d1:c3:f1:06:f4: 5f:05:6f:cf:d5:cf:05:16:87:9c:74:61:ad:e7:68:c5:b5:5c: 39:12:9a:29:68:0b:bf:93:93:be:a5:08:a6:ad:91:f8:1f:a9: 50:3e:05:9d:f1:68:2c:b7:52:c1:30:14:87:40:c3:63:4c:d6: b1:50:61:13:51:61:b3:39:fa:65:dd:e6:35:0e:a4:2d:b9:ce: cc:58:b7:da -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCJUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REQ1RTExMTAvBgNVBAUTKEFDMkUwRDNGNDI3MjIxN0ZFRkI5RDMyRENFMUEzMzJE RTk2QTM4NUUwHhcNMjUwNTA0MjAyMTQyWhcNMjUwNTExMjAyMTQyWjAYMRYwFAYD VQQDEw02ODE3Y2M1Ni01NTlhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApQt7FGIRZbN7uDUwQmyOKDaWyZMPIfDMOwooYlTQEhUb7hPnEHohFj7UdjZm ud/VbB409jrPaLYryiKd09R5MN8HRPuQLD4E7JGhjEkZuh/JjtW8v0SQGr3PvA2H 8CV9cSps1kkziZExARl4QfmlmlzV2XDlMMXESLW3gmjaVHrSZ02BJZWPP/Li1UJo BHHvOh5NVerLf1ayEjjpdKC54MRXcziJdPMkom0I20yEPW5QcYwndLpaulnBWvKt ZBMls/4MUsnDmLkbWnLew2ducCW4LCg8dWMnp1xhTAB0U5IZn0s5NQ8akLKixicy Jz0JV0gIB2P8ClBq8MVIfrZ5ZwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCwP8xtv N1pUrkgSZWV1h/NbqnE4MB8GA1UdIwQYMBaAFKwuDT9CciF/77nTLc4aMy3pajhe MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERDVFMS8xNjVCN0JGNkJD NkUxMUVBQTVDQjAzN0RDNEY5QUUwMi9yQzROUDBKeUlYX3Z1ZE10emhvekxlbHFP RjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JDNE5QMEp5SVhfdnVkTXR6aG96TGVscU9GNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE RDVFMS8xNjVCN0JGNkJDNkUxMUVBQTVDQjAzN0RDNEY5QUUwMi9yQzROUDBKeUlY X3Z1ZE10emhvekxlbHFPRjQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBxHAEJ6vyVlVx2LnMunX2OFNVPDq+fQy524e7qAAnhzdEJeeU2dLtm 4laRWlGmrzUDC7vTKg0cIhjLHNfsr3weI/dqKOYehyq+JQGLF0cIV+49iv8jCb7u GfV21rSGT/KY3bqgl87gmZIUN7i6nICspo3P+aGYiuWNiFg000+bhPWP4l/RQvO0 mj/yd+Sa4kiTF/NZv21EDFgvZeDre2rXhRNi/lYI5rKXtZ+A/IRP0cPxBvRfBW/P 1c8FFoecdGGt52jFtVw5EpopaAu/k5O+pQimrZH4H6lQPgWd8Wgst1LBMBSHQMNj TNaxUGETUWGzOfpl3eY1DqQtuc7MWLfa -----END CERTIFICATE-----Generated at Tue May 6 13:08:42 2025 by rpki-client