$ rpki-client -vvf rpki.apnic.net/member_repository/A91E5490/321F591E146211EC9868C246C4F9AE02/-W-uKIpkMK3M-V4OqJ8IW7boKdQ.mft File: -W-uKIpkMK3M-V4OqJ8IW7boKdQ.mft (raw, json) Hash identifier: z6+4yJhdrn+unENKTm8wNKG6OtxevYb24+9thQ8fcVk= Subject key identifier: 03:57:14:23:C0:50:66:25:6D:81:8E:94:C7:50:EE:06:24:39:56:4F Authority key identifier: F9:6F:AE:28:8A:64:30:AD:CC:F9:5E:0E:A8:9F:08:5B:B6:E8:29:D4 Certificate issuer: /CN=A91E5490/serialNumber=F96FAE288A6430ADCCF95E0EA89F085BB6E829D4 Certificate serial: 04FA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-W-uKIpkMK3M-V4OqJ8IW7boKdQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E5490/321F591E146211EC9868C246C4F9AE02/-W-uKIpkMK3M-V4OqJ8IW7boKdQ.mft Manifest number: 04F0 Signing time: Wed 14 May 2025 23:46:32 +0000 Manifest this update: Wed 14 May 2025 23:46:32 +0000 Manifest next update: Wed 21 May 2025 23:46:32 +0000 Files and hashes: 1: -W-uKIpkMK3M-V4OqJ8IW7boKdQ.crl (hash: IfnkJBpOh6WBOEpniTxRYq0w6cnnAIG02d6Anna5c3Q=) 2: 8608449A356511EC9715F015C4F9AE02.roa (hash: clmx/oQr73cJ/dvXJjULbQlKZ0MXrmzLfgGRONsfwYo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E5490/321F591E146211EC9868C246C4F9AE02/-W-uKIpkMK3M-V4OqJ8IW7boKdQ.crl rsync://rpki.apnic.net/member_repository/A91E5490/321F591E146211EC9868C246C4F9AE02/-W-uKIpkMK3M-V4OqJ8IW7boKdQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-W-uKIpkMK3M-V4OqJ8IW7boKdQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 21 May 2025 23:46:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1274 (0x4fa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5490, serialNumber=F96FAE288A6430ADCCF95E0EA89F085BB6E829D4 Validity Not Before: May 14 23:46:32 2025 GMT Not After : May 21 23:46:32 2025 GMT Subject: CN=68252b58-6c0e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:43:21:c5:b3:8f:d3:ac:93:b0:86:38:fb:39: bc:e8:cb:05:e5:a6:30:3f:0d:7b:9f:0c:ec:d5:00: a3:e1:e2:7b:48:d7:3f:e3:6e:54:32:0f:36:f9:99: 83:b5:5b:bd:36:05:68:7e:ae:8a:8b:a3:0b:a7:07: c5:71:2a:26:91:82:00:c8:19:ae:a6:aa:d4:a8:1f: f9:9b:14:66:7a:f0:5f:49:51:7c:79:27:be:a1:7e: 2e:49:10:22:62:8e:15:40:a8:74:5b:55:25:73:51: 2c:f8:3c:18:07:c7:70:54:3d:09:42:71:17:c5:c0: 9a:6f:aa:e7:49:70:11:23:8c:e2:0a:60:28:4e:5d: 23:69:3a:f4:f2:d6:53:9d:a5:7f:91:fd:3b:10:a9: b2:7d:a5:15:33:6f:47:50:a4:41:0a:1c:c2:c5:dd: 80:9e:2b:da:47:aa:b0:cc:d9:e4:bb:86:e3:2c:af: 8e:75:63:74:52:4a:37:93:1b:cd:59:3a:2a:45:4c: 59:3f:e7:da:3f:b5:2b:7a:f1:01:f6:d4:a3:7e:a8: c8:49:2d:7c:40:ae:d7:05:0a:9b:01:a9:e7:d3:6a: 68:9f:4c:1c:37:10:e0:e5:ef:61:88:fe:90:a2:ef: ee:66:f2:49:01:dc:24:45:44:f0:14:3a:dd:95:78: 9a:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 03:57:14:23:C0:50:66:25:6D:81:8E:94:C7:50:EE:06:24:39:56:4F X509v3 Authority Key Identifier: keyid:F9:6F:AE:28:8A:64:30:AD:CC:F9:5E:0E:A8:9F:08:5B:B6:E8:29:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E5490/321F591E146211EC9868C246C4F9AE02/-W-uKIpkMK3M-V4OqJ8IW7boKdQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-W-uKIpkMK3M-V4OqJ8IW7boKdQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E5490/321F591E146211EC9868C246C4F9AE02/-W-uKIpkMK3M-V4OqJ8IW7boKdQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 09:ac:33:d0:cb:35:30:51:84:ee:ab:9d:e8:1a:50:75:b1:ea: bd:af:09:78:95:fe:f0:e9:c8:79:33:99:f2:b4:59:b5:19:e6: 0d:db:68:8e:a8:e5:0b:fd:9c:0a:9e:b6:e4:aa:8e:a1:a1:5f: fa:6b:98:a4:b3:05:43:c4:f3:50:d1:39:f1:a9:1c:54:6a:f0: 52:5c:0d:85:6f:10:8d:1e:5f:12:91:43:8e:c4:34:8e:4a:14: d2:66:f0:5b:b6:52:b3:5c:18:6a:03:43:13:88:e9:bb:5f:38: 93:2d:b2:9e:22:01:82:1d:bd:e2:29:4d:32:4c:f0:5d:f3:a4: ce:da:ac:6c:a0:0a:07:71:b9:77:08:31:45:86:ab:c8:11:81: 95:27:57:09:60:24:46:67:46:a0:1c:0b:1b:ae:02:c7:82:f9: 6e:0a:5e:c2:a7:05:59:5c:17:2f:e3:51:6d:d9:48:0e:73:38: 71:65:14:2c:b1:14:9e:80:96:c5:c3:43:01:04:11:5d:e5:c1: 32:85:6b:ca:7e:c6:85:01:83:8e:18:dd:01:0f:2d:53:1b:cf: 4c:af:fb:c9:08:24:bd:c4:3c:8d:96:de:8a:07:59:0a:73:69: 8d:c1:e9:6c:c5:ff:6c:cb:80:ad:03:8b:54:bd:aa:05:e1:b2: a7:b3:7c:37 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBPowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTU0OTAxMTAvBgNVBAUTKEY5NkZBRTI4OEE2NDMwQURDQ0Y5NUUwRUE4OUYwODVC QjZFODI5RDQwHhcNMjUwNTE0MjM0NjMyWhcNMjUwNTIxMjM0NjMyWjAYMRYwFAYD VQQDEw02ODI1MmI1OC02YzBlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5EMhxbOP06yTsIY4+zm86MsF5aYwPw17nwzs1QCj4eJ7SNc/425UMg82+ZmD tVu9NgVofq6Ki6MLpwfFcSomkYIAyBmupqrUqB/5mxRmevBfSVF8eSe+oX4uSRAi Yo4VQKh0W1Ulc1Es+DwYB8dwVD0JQnEXxcCab6rnSXARI4ziCmAoTl0jaTr08tZT naV/kf07EKmyfaUVM29HUKRBChzCxd2AnivaR6qwzNnku4bjLK+OdWN0Uko3kxvN WToqRUxZP+faP7UrevEB9tSjfqjISS18QK7XBQqbAann02pon0wcNxDg5e9hiP6Q ou/uZvJJAdwkRUTwFDrdlXiagQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFANXFCPA UGYlbYGOlMdQ7gYkOVZPMB8GA1UdIwQYMBaAFPlvriiKZDCtzPleDqifCFu26CnU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNTQ5MC8zMjFGNTkxRTE0 NjIxMUVDOTg2OEMyNDZDNEY5QUUwMi8tVy11S0lwa01LM00tVjRPcUo4SVc3Ym9L ZFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy1XLXVLSXBrTUszTS1WNE9xSjhJVzdib0tkUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NTQ5MC8zMjFGNTkxRTE0NjIxMUVDOTg2OEMyNDZDNEY5QUUwMi8tVy11S0lwa01L M00tVjRPcUo4SVc3Ym9LZFEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAJrDPQyzUwUYTuq53oGlB1seq9rwl4lf7w6ch5M5nytFm1GeYN22iO qOUL/ZwKnrbkqo6hoV/6a5ikswVDxPNQ0TnxqRxUavBSXA2FbxCNHl8SkUOOxDSO ShTSZvBbtlKzXBhqA0MTiOm7XziTLbKeIgGCHb3iKU0yTPBd86TO2qxsoAoHcbl3 CDFFhqvIEYGVJ1cJYCRGZ0agHAsbrgLHgvluCl7CpwVZXBcv41Ft2UgOczhxZRQs sRSegJbFw0MBBBFd5cEyhWvKfsaFAYOOGN0BDy1TG89Mr/vJCCS9xDyNlt6KB1kK c2mNwelsxf9sy4CtA4tUvaoF4bKns3w3 -----END CERTIFICATE-----Generated at Thu May 15 13:31:01 2025 by rpki-client