$ rpki-client -vvf rpki.apnic.net/member_repository/A91F17B1/66E4E4F6FB4011EBBAB0DA3BC4F9AE02/_lDDhdnrGeLvoU-jWtpb3qW0VtM.mft File: _lDDhdnrGeLvoU-jWtpb3qW0VtM.mft (raw, json) Hash identifier: 3zBImV7GUSNrDdcmuVFM3SwhMRwmixmxtN/MCHYUy6g= Subject key identifier: 45:04:89:28:B6:1D:4A:84:E1:2F:67:FC:78:1C:CF:A4:59:3C:16:3D Authority key identifier: FE:50:C3:85:D9:EB:19:E2:EF:A1:4F:A3:5A:DA:5B:DE:A5:B4:56:D3 Certificate issuer: /CN=A91F17B1/serialNumber=FE50C385D9EB19E2EFA14FA35ADA5BDEA5B456D3 Certificate serial: 0583 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_lDDhdnrGeLvoU-jWtpb3qW0VtM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F17B1/66E4E4F6FB4011EBBAB0DA3BC4F9AE02/_lDDhdnrGeLvoU-jWtpb3qW0VtM.mft Manifest number: 055A Signing time: Sat 10 May 2025 23:08:29 +0000 Manifest this update: Sat 10 May 2025 23:08:28 +0000 Manifest next update: Sat 17 May 2025 23:08:28 +0000 Files and hashes: 1: _lDDhdnrGeLvoU-jWtpb3qW0VtM.crl (hash: 58txstf/xXb96oA5b3l+wP58ioaH4yuDI4xxJ8wthVA=) 2: 65DFCD4A884D11EE8423C486C4F9AE02.roa (hash: XB3vXSrIjKmm7/h+1aGsOWgWiHrKFGWrKMxR+7JMgKw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F17B1/66E4E4F6FB4011EBBAB0DA3BC4F9AE02/_lDDhdnrGeLvoU-jWtpb3qW0VtM.crl rsync://rpki.apnic.net/member_repository/A91F17B1/66E4E4F6FB4011EBBAB0DA3BC4F9AE02/_lDDhdnrGeLvoU-jWtpb3qW0VtM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_lDDhdnrGeLvoU-jWtpb3qW0VtM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 17 May 2025 23:08:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1411 (0x583) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F17B1, serialNumber=FE50C385D9EB19E2EFA14FA35ADA5BDEA5B456D3 Validity Not Before: May 10 23:08:28 2025 GMT Not After : May 17 23:08:28 2025 GMT Subject: CN=681fdc6d-c112 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:0e:cb:53:ff:4d:e0:3d:67:95:d7:d0:ea:fb: be:46:62:cf:1b:1e:64:1c:51:00:a3:cd:c7:8a:96: 0b:e0:1a:03:55:d0:4b:20:9b:4b:a1:e0:c2:73:70: 09:92:95:ab:50:26:8d:b5:49:f8:7b:1b:ad:87:ab: e1:05:0b:aa:0c:c1:59:9b:e2:b8:a4:34:cd:9e:13: 90:f6:40:0c:89:4b:1e:13:3f:71:86:a4:1d:f8:46: 74:6c:52:30:5b:93:34:28:4e:15:b6:d7:93:41:e6: 42:eb:f7:65:f0:83:bd:6a:c7:3a:4d:bf:60:47:69: 7a:99:2a:9b:91:6c:96:49:f2:08:8f:7f:71:7c:8d: 7a:af:6c:2b:2c:9f:d6:9b:ac:0a:5e:ba:19:35:65: 3f:c6:24:d8:6f:de:df:5f:34:a5:2e:6d:9e:d9:d1: 27:d0:68:74:8d:a0:d3:6c:82:3a:e4:27:e4:88:f7: 90:02:40:00:a0:0a:23:52:db:a7:28:b4:0c:93:87: bc:3e:1c:a7:97:e4:9d:f6:2d:db:88:90:66:5d:74: 19:fa:bc:7f:b8:ee:21:9f:3e:be:ba:63:73:c4:eb: 64:f0:bf:3c:57:ee:3f:dc:34:04:3e:1e:43:f9:3a: d0:9c:c9:39:f6:e8:66:57:5e:07:6e:9a:a8:5f:c0: db:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 45:04:89:28:B6:1D:4A:84:E1:2F:67:FC:78:1C:CF:A4:59:3C:16:3D X509v3 Authority Key Identifier: keyid:FE:50:C3:85:D9:EB:19:E2:EF:A1:4F:A3:5A:DA:5B:DE:A5:B4:56:D3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F17B1/66E4E4F6FB4011EBBAB0DA3BC4F9AE02/_lDDhdnrGeLvoU-jWtpb3qW0VtM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_lDDhdnrGeLvoU-jWtpb3qW0VtM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F17B1/66E4E4F6FB4011EBBAB0DA3BC4F9AE02/_lDDhdnrGeLvoU-jWtpb3qW0VtM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6e:9d:46:42:22:d3:1c:8d:96:4c:69:ef:47:7e:54:5c:46:77: bc:30:79:80:69:83:65:f7:e0:37:3b:dd:1c:08:35:09:4a:17: 97:89:c9:ca:d1:76:d2:4f:17:6f:20:1e:4e:7e:5a:e2:92:1f: 75:3b:83:74:ec:97:e7:8a:ef:68:d6:b7:ec:a7:29:83:0d:04: f6:2f:1d:42:ad:c8:f3:b8:76:1a:00:8f:3e:8a:8d:64:3a:9e: c6:2d:35:c8:3b:e4:cf:a4:fb:0c:9a:13:43:2b:7b:f2:04:90: e6:94:e8:bc:e2:34:7c:48:f0:75:63:b3:cb:3f:03:71:5c:1b: e6:3b:73:6f:5a:c7:b3:a6:a0:6b:78:fb:ea:04:f3:99:42:ad: 38:2e:69:6d:75:7b:a1:93:eb:66:2a:9e:d6:9a:38:99:08:c4: f6:4e:09:0b:e7:12:5d:5f:d9:68:01:6a:a4:5d:e3:e4:7c:28: 1c:fa:04:6b:0f:51:71:06:c7:6e:a8:06:4e:3e:4f:86:91:51: 8a:58:a4:42:26:e0:54:67:e9:2c:1a:3f:fc:50:2e:72:42:ba: ba:c8:dc:f2:5d:68:f5:44:0a:29:f7:51:be:5f:00:ba:07:86: 46:08:e9:2d:96:4d:33:8a:e7:40:b7:f8:c9:39:2c:8a:9b:9f: cf:ea:fb:bd -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBYMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjE3QjExMTAvBgNVBAUTKEZFNTBDMzg1RDlFQjE5RTJFRkExNEZBMzVBREE1QkRF QTVCNDU2RDMwHhcNMjUwNTEwMjMwODI4WhcNMjUwNTE3MjMwODI4WjAYMRYwFAYD VQQDEw02ODFmZGM2ZC1jMTEyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0g7LU/9N4D1nldfQ6vu+RmLPGx5kHFEAo83HipYL4BoDVdBLIJtLoeDCc3AJ kpWrUCaNtUn4exuth6vhBQuqDMFZm+K4pDTNnhOQ9kAMiUseEz9xhqQd+EZ0bFIw W5M0KE4VtteTQeZC6/dl8IO9asc6Tb9gR2l6mSqbkWyWSfIIj39xfI16r2wrLJ/W m6wKXroZNWU/xiTYb97fXzSlLm2e2dEn0Gh0jaDTbII65CfkiPeQAkAAoAojUtun KLQMk4e8Phynl+Sd9i3biJBmXXQZ+rx/uO4hnz6+umNzxOtk8L88V+4/3DQEPh5D +TrQnMk59uhmV14HbpqoX8Db5QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEUEiSi2 HUqE4S9n/Hgcz6RZPBY9MB8GA1UdIwQYMBaAFP5Qw4XZ6xni76FPo1raW96ltFbT MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMTdCMS82NkU0RTRGNkZC NDAxMUVCQkFCMERBM0JDNEY5QUUwMi9fbEREaGRuckdlTHZvVS1qV3RwYjNxVzBW dE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL19sRERoZG5yR2VMdm9VLWpXdHBiM3FXMFZ0TS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG MTdCMS82NkU0RTRGNkZCNDAxMUVCQkFCMERBM0JDNEY5QUUwMi9fbEREaGRuckdl THZvVS1qV3RwYjNxVzBWdE0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBunUZCItMcjZZMae9HflRcRne8MHmAaYNl9+A3O90cCDUJSheXicnK 0XbSTxdvIB5Oflrikh91O4N07Jfniu9o1rfspymDDQT2Lx1CrcjzuHYaAI8+io1k Op7GLTXIO+TPpPsMmhNDK3vyBJDmlOi84jR8SPB1Y7PLPwNxXBvmO3NvWsezpqBr ePvqBPOZQq04LmltdXuhk+tmKp7WmjiZCMT2TgkL5xJdX9loAWqkXePkfCgc+gRr D1FxBsduqAZOPk+GkVGKWKRCJuBUZ+ksGj/8UC5yQrq6yNzyXWj1RAop91G+XwC6 B4ZGCOktlk0ziudAt/jJOSyKm5/P6vu9 -----END CERTIFICATE-----Generated at Mon May 12 23:20:46 2025 by rpki-client