$ rpki-client -vvf rpki.apnic.net/member_repository/A91F11EE/E98A46523E8711EFAA24AA43C4F9AE02/-sKy5UFEW1tHxZ2uHeLd6IeauLs.mft File: -sKy5UFEW1tHxZ2uHeLd6IeauLs.mft (raw, json) Hash identifier: Z6EjP/BqsKDFlTtvJJHF0JfBLXHCD3SV3MCvUCvUlkk= Subject key identifier: 74:9E:95:C7:2C:46:38:D2:AE:1E:AC:87:C0:23:BC:70:86:FF:C7:30 Authority key identifier: FA:C2:B2:E5:41:44:5B:5B:47:C5:9D:AE:1D:E2:DD:E8:87:9A:B8:BB Certificate issuer: /CN=A91F11EE/serialNumber=FAC2B2E541445B5B47C59DAE1DE2DDE8879AB8BB Certificate serial: AC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-sKy5UFEW1tHxZ2uHeLd6IeauLs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F11EE/E98A46523E8711EFAA24AA43C4F9AE02/-sKy5UFEW1tHxZ2uHeLd6IeauLs.mft Manifest number: A6 Signing time: Thu 15 May 2025 05:31:48 +0000 Manifest this update: Thu 15 May 2025 05:31:48 +0000 Manifest next update: Thu 22 May 2025 05:31:48 +0000 Files and hashes: 1: -sKy5UFEW1tHxZ2uHeLd6IeauLs.crl (hash: c5nHv3ZXlaqCTPdYukd+a8N0nu2QLCCuWNpP6RSwpZ8=) 2: 8B0201183E8911EFB2DCA846C4F9AE02.roa (hash: 8zOiXd3kRlQoiz32Gjahx1aoeuvy3cZGr/aU3t8eEp8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F11EE/E98A46523E8711EFAA24AA43C4F9AE02/-sKy5UFEW1tHxZ2uHeLd6IeauLs.crl rsync://rpki.apnic.net/member_repository/A91F11EE/E98A46523E8711EFAA24AA43C4F9AE02/-sKy5UFEW1tHxZ2uHeLd6IeauLs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-sKy5UFEW1tHxZ2uHeLd6IeauLs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 22 May 2025 05:31:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 172 (0xac) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F11EE, serialNumber=FAC2B2E541445B5B47C59DAE1DE2DDE8879AB8BB Validity Not Before: May 15 05:31:48 2025 GMT Not After : May 22 05:31:48 2025 GMT Subject: CN=68257c44-8f1e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:cc:cc:eb:01:19:ce:9f:07:d5:0a:da:91:d7: 28:c2:af:75:f4:c4:29:39:dc:38:2c:e6:ae:66:91: e4:17:a2:b7:0e:8c:e6:f5:be:1b:0d:70:cf:55:75: a9:ca:3c:df:bd:e9:01:25:f0:66:c2:3d:3f:3f:61: 52:91:c0:a6:4c:ba:02:c1:bb:04:07:8d:8a:37:e6: 66:df:8d:b3:fd:33:90:8d:f8:31:da:34:47:48:fd: 40:36:34:a9:f4:b5:10:e3:ee:50:3a:2f:d6:4d:fb: b6:6d:eb:11:a4:fa:31:a2:6c:62:14:f3:6e:d3:d6: 15:4a:41:8c:fe:25:fa:19:c9:64:71:2c:16:f2:49: 5a:19:c5:d2:ae:e9:ad:ed:cf:d8:08:bb:89:c1:96: 58:7b:77:d1:76:52:38:42:eb:b7:3e:5b:c7:11:d6: 12:ff:57:c9:c7:da:c7:78:08:fc:92:33:8d:a3:db: 6c:0a:0d:31:fa:3e:ef:a9:19:f3:b8:8f:97:5d:17: 5f:a5:cd:58:e1:0f:4a:ce:ee:99:3b:3d:bc:1d:39: ba:3e:dc:a4:06:bc:00:52:40:86:c5:53:6d:b2:0f: 76:5b:84:6b:16:29:77:cd:f2:75:80:20:35:c2:91: cf:4b:46:fd:ef:04:4c:0c:65:49:f0:21:33:95:91: f8:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 74:9E:95:C7:2C:46:38:D2:AE:1E:AC:87:C0:23:BC:70:86:FF:C7:30 X509v3 Authority Key Identifier: keyid:FA:C2:B2:E5:41:44:5B:5B:47:C5:9D:AE:1D:E2:DD:E8:87:9A:B8:BB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F11EE/E98A46523E8711EFAA24AA43C4F9AE02/-sKy5UFEW1tHxZ2uHeLd6IeauLs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-sKy5UFEW1tHxZ2uHeLd6IeauLs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F11EE/E98A46523E8711EFAA24AA43C4F9AE02/-sKy5UFEW1tHxZ2uHeLd6IeauLs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 84:e2:c0:04:85:a8:96:48:1f:ea:6b:02:5f:d5:8c:d5:40:ac: 7d:9a:03:9d:69:65:a8:f7:56:0e:0d:54:b2:c7:8b:23:89:01: e0:ed:8a:56:e5:cf:98:b5:da:7b:a2:32:ee:9d:6a:d1:10:f2: 9c:0f:38:8c:92:35:80:e8:43:e1:c4:52:b7:9d:46:f6:a3:45: 9b:0a:ea:df:7d:b9:34:df:9f:8d:ef:44:2e:fa:3c:c2:51:d1: 45:d9:8e:ff:05:db:a0:1e:f7:2f:03:7a:80:5e:08:45:8c:24: 39:4e:69:7c:90:09:49:82:e2:52:eb:7b:05:36:36:ab:75:10: fa:11:de:26:ca:b8:06:f7:31:5f:d8:1d:59:66:4d:9d:83:2c: 66:c8:b0:ef:dc:bb:06:df:d6:30:71:a8:7d:fb:e1:96:5d:87: ca:af:53:74:fe:00:03:06:86:69:60:ef:a4:96:c1:be:51:8b: 72:7c:c7:1e:23:30:3e:1d:3d:7e:59:ca:56:71:66:af:df:ae: c2:86:d8:06:1a:71:c9:2e:9d:1a:d8:a4:d9:93:38:2e:85:55: 68:b6:66:b3:03:7d:0a:24:48:64:41:52:df:af:ba:af:19:66: 23:d3:38:1d:c6:2e:81:b5:fc:85:96:9e:8e:61:f4:92:f6:82: dd:f3:8f:5c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAKwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjExRUUxMTAvBgNVBAUTKEZBQzJCMkU1NDE0NDVCNUI0N0M1OURBRTFERTJEREU4 ODc5QUI4QkIwHhcNMjUwNTE1MDUzMTQ4WhcNMjUwNTIyMDUzMTQ4WjAYMRYwFAYD VQQDEw02ODI1N2M0NC04ZjFlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsszM6wEZzp8H1Qrakdcowq919MQpOdw4LOauZpHkF6K3Dozm9b4bDXDPVXWp yjzfvekBJfBmwj0/P2FSkcCmTLoCwbsEB42KN+Zm342z/TOQjfgx2jRHSP1ANjSp 9LUQ4+5QOi/WTfu2besRpPoxomxiFPNu09YVSkGM/iX6GclkcSwW8klaGcXSrumt 7c/YCLuJwZZYe3fRdlI4Quu3PlvHEdYS/1fJx9rHeAj8kjONo9tsCg0x+j7vqRnz uI+XXRdfpc1Y4Q9Kzu6ZOz28HTm6PtykBrwAUkCGxVNtsg92W4RrFil3zfJ1gCA1 wpHPS0b97wRMDGVJ8CEzlZH4OwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHSelccs RjjSrh6sh8AjvHCG/8cwMB8GA1UdIwQYMBaAFPrCsuVBRFtbR8Wdrh3i3eiHmri7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMTFFRS9FOThBNDY1MjNF ODcxMUVGQUEyNEFBNDNDNEY5QUUwMi8tc0t5NVVGRVcxdEh4WjJ1SGVMZDZJZWF1 THMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy1zS3k1VUZFVzF0SHhaMnVIZUxkNkllYXVMcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG MTFFRS9FOThBNDY1MjNFODcxMUVGQUEyNEFBNDNDNEY5QUUwMi8tc0t5NVVGRVcx dEh4WjJ1SGVMZDZJZWF1THMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCE4sAEhaiWSB/qawJf1YzVQKx9mgOdaWWo91YODVSyx4sjiQHg7YpW 5c+Ytdp7ojLunWrREPKcDziMkjWA6EPhxFK3nUb2o0WbCurffbk035+N70Qu+jzC UdFF2Y7/BdugHvcvA3qAXghFjCQ5Tml8kAlJguJS63sFNjardRD6Ed4myrgG9zFf 2B1ZZk2dgyxmyLDv3LsG39Ywcah9++GWXYfKr1N0/gADBoZpYO+klsG+UYtyfMce IzA+HT1+WcpWcWav367ChtgGGnHJLp0a2KTZkzguhVVotmazA30KJEhkQVLfr7qv GWYj0zgdxi6BtfyFlp6OYfSS9oLd849c -----END CERTIFICATE-----Generated at Sat May 17 05:50:54 2025 by rpki-client