$ rpki-client -vvf rpki.apnic.net/member_repository/A91EA623/D3167F0A060C11ECAF675043C4F9AE02/0S_1veXU0upxiMsALH_wFtyZTXI.mft File: 0S_1veXU0upxiMsALH_wFtyZTXI.mft (raw, json) Hash identifier: QryQHpN6+Da960UgzKVG3RGljBVZaPbSTeQHN1zsiz0= Subject key identifier: F3:BC:D4:64:43:BC:CC:F4:3B:51:33:07:07:FC:4F:E1:94:C3:B9:14 Authority key identifier: D1:2F:F5:BD:E5:D4:D2:EA:71:88:CB:00:2C:7F:F0:16:DC:99:4D:72 Certificate issuer: /CN=A91EA623/serialNumber=D12FF5BDE5D4D2EA7188CB002C7FF016DC994D72 Certificate serial: 050A Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/0S_1veXU0upxiMsALH_wFtyZTXI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EA623/D3167F0A060C11ECAF675043C4F9AE02/0S_1veXU0upxiMsALH_wFtyZTXI.mft Manifest number: 050A Signing time: Mon 12 May 2025 23:26:05 +0000 Manifest this update: Mon 12 May 2025 23:26:05 +0000 Manifest next update: Mon 19 May 2025 23:26:05 +0000 Files and hashes: 1: 0S_1veXU0upxiMsALH_wFtyZTXI.crl (hash: uInZtewy2qFp0hUlpdGcGyobgeNqQZZz0iiR9IkDYJY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EA623/D3167F0A060C11ECAF675043C4F9AE02/0S_1veXU0upxiMsALH_wFtyZTXI.crl rsync://rpki.apnic.net/member_repository/A91EA623/D3167F0A060C11ECAF675043C4F9AE02/0S_1veXU0upxiMsALH_wFtyZTXI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/0S_1veXU0upxiMsALH_wFtyZTXI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 19 May 2025 23:26:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1290 (0x50a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EA623, serialNumber=D12FF5BDE5D4D2EA7188CB002C7FF016DC994D72 Validity Not Before: May 12 23:26:05 2025 GMT Not After : May 19 23:26:05 2025 GMT Subject: CN=6822838d-5759 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:fe:83:81:ef:be:44:f9:e7:1a:36:b9:53:b3: 28:0f:53:a9:41:a9:db:e8:2a:25:21:e5:95:b0:41: 44:90:36:03:18:01:8f:59:e4:0a:b4:82:17:6d:b3: e1:8b:b7:19:c1:83:1e:69:06:ce:20:1f:18:1b:7e: e1:24:fe:8a:0d:d2:a0:07:ca:8e:8e:b7:30:0f:7d: c8:f7:91:4c:e6:b9:93:15:08:5e:1c:c4:50:aa:74: 1b:34:6b:1f:5d:5f:ad:6b:a0:64:01:f7:28:1e:7b: 25:c6:24:c1:99:13:e0:9e:6a:f9:fc:44:aa:87:ce: 3a:f8:db:e7:e7:12:6e:9f:db:c0:5e:2b:49:cd:bc: de:80:e4:6a:de:16:f4:3f:7f:80:b9:76:8d:8d:08: ba:41:87:0c:7c:2f:74:05:02:8b:4d:4c:53:20:54: 17:80:bf:09:a7:cb:3d:a7:b7:33:6d:58:d7:20:93: 59:f8:81:58:6f:88:f7:eb:61:80:7c:1b:2f:de:9c: ad:c5:32:a4:7f:9b:61:bc:dc:fd:dd:57:47:ab:84: c8:ad:3e:61:c6:a0:6d:78:78:90:05:bf:75:28:26: 55:e2:d6:73:34:c7:23:50:ed:76:f0:93:aa:86:05: 6a:d3:49:dd:70:1c:20:f1:17:49:ad:77:4b:1c:32: 46:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F3:BC:D4:64:43:BC:CC:F4:3B:51:33:07:07:FC:4F:E1:94:C3:B9:14 X509v3 Authority Key Identifier: keyid:D1:2F:F5:BD:E5:D4:D2:EA:71:88:CB:00:2C:7F:F0:16:DC:99:4D:72 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EA623/D3167F0A060C11ECAF675043C4F9AE02/0S_1veXU0upxiMsALH_wFtyZTXI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/0S_1veXU0upxiMsALH_wFtyZTXI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EA623/D3167F0A060C11ECAF675043C4F9AE02/0S_1veXU0upxiMsALH_wFtyZTXI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 34:e3:09:16:98:73:97:34:22:01:b4:96:a0:42:72:c6:86:8e: 1a:54:99:4e:ae:65:11:3a:85:88:84:f5:b2:2b:3a:6d:02:3c: c3:45:12:6f:52:55:8f:01:35:39:64:0b:9d:a8:fc:dc:5e:8e: 74:97:ea:2b:02:9d:5c:0f:7b:2b:ab:b1:da:4b:86:ab:7e:a4: e4:66:4d:24:37:cb:13:1d:9d:07:97:82:fd:7e:a2:15:b1:f3: f3:e9:ce:f8:2f:5d:4a:ba:2c:9b:09:7c:6f:5d:9b:5b:2a:4a: c7:92:85:a0:66:ba:0a:34:55:e9:1e:0c:4e:85:f9:0d:b7:8b: 72:fe:c1:ff:46:f2:6c:74:e4:fe:93:5f:e0:0e:5c:1e:d7:9e: 0b:f8:a5:8a:28:a0:99:5e:07:b0:76:19:40:d9:f9:73:6b:17: 58:35:05:7e:4a:64:5b:2f:e8:d9:d7:83:1e:fd:df:85:f5:54: bd:f8:c0:14:47:34:78:7c:16:78:f0:69:f5:e6:35:a4:f9:43: 1c:78:82:65:97:3a:b2:e4:02:94:2a:9a:32:a6:11:11:89:f6: ec:38:ac:f9:36:e3:29:52:66:58:dd:d7:69:39:63:37:ac:ea: ed:0e:37:dd:ba:35:92:b3:8d:10:ac:b0:cf:1d:d0:47:d9:c2: a2:f3:38:b2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBQowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUE2MjMxMTAvBgNVBAUTKEQxMkZGNUJERTVENEQyRUE3MTg4Q0IwMDJDN0ZGMDE2 REM5OTRENzIwHhcNMjUwNTEyMjMyNjA1WhcNMjUwNTE5MjMyNjA1WjAYMRYwFAYD VQQDEw02ODIyODM4ZC01NzU5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1P6Dge++RPnnGja5U7MoD1OpQanb6ColIeWVsEFEkDYDGAGPWeQKtIIXbbPh i7cZwYMeaQbOIB8YG37hJP6KDdKgB8qOjrcwD33I95FM5rmTFQheHMRQqnQbNGsf XV+ta6BkAfcoHnslxiTBmRPgnmr5/ESqh846+Nvn5xJun9vAXitJzbzegORq3hb0 P3+AuXaNjQi6QYcMfC90BQKLTUxTIFQXgL8Jp8s9p7czbVjXIJNZ+IFYb4j362GA fBsv3pytxTKkf5thvNz93VdHq4TIrT5hxqBteHiQBb91KCZV4tZzNMcjUO128JOq hgVq00ndcBwg8RdJrXdLHDJGUQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPO81GRD vMz0O1EzBwf8T+GUw7kUMB8GA1UdIwQYMBaAFNEv9b3l1NLqcYjLACx/8BbcmU1y MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQTYyMy9EMzE2N0YwQTA2 MEMxMUVDQUY2NzUwNDNDNEY5QUUwMi8wU18xdmVYVTB1cHhpTXNBTEhfd0Z0eVpU WEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzBTXzF2ZVhVMHVweGlNc0FMSF93RnR5WlRYSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QTYyMy9EMzE2N0YwQTA2MEMxMUVDQUY2NzUwNDNDNEY5QUUwMi8wU18xdmVYVTB1 cHhpTXNBTEhfd0Z0eVpUWEkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA04wkWmHOXNCIBtJagQnLGho4aVJlOrmUROoWIhPWyKzptAjzDRRJv UlWPATU5ZAudqPzcXo50l+orAp1cD3srq7HaS4arfqTkZk0kN8sTHZ0Hl4L9fqIV sfPz6c74L11KuiybCXxvXZtbKkrHkoWgZroKNFXpHgxOhfkNt4ty/sH/RvJsdOT+ k1/gDlwe154L+KWKKKCZXgewdhlA2flzaxdYNQV+SmRbL+jZ14Me/d+F9VS9+MAU RzR4fBZ48Gn15jWk+UMceIJllzqy5AKUKpoyphERifbsOKz5NuMpUmZY3ddpOWM3 rOrtDjfdujWSs40QrLDPHdBH2cKi8ziy -----END CERTIFICATE-----Generated at Tue May 13 15:03:52 2025 by rpki-client