$ rpki-client -vvf rpki.apnic.net/member_repository/A91F5972/9BF6C44EF03111EB95F76748C4F9AE02/r3mHQ9q2R4aKtmZzr3oTbC6g6ls.mft File: r3mHQ9q2R4aKtmZzr3oTbC6g6ls.mft (raw, json) Hash identifier: xpr9ozGRALW+fPIPEVN8J3zGG8YEyQNQ+fbPz0m2BH8= Subject key identifier: D7:D8:4C:0B:19:7E:5D:DE:FA:CF:E5:80:6A:AE:B9:6E:3E:2D:74:40 Authority key identifier: AF:79:87:43:DA:B6:47:86:8A:B6:66:73:AF:7A:13:6C:2E:A0:EA:5B Certificate issuer: /CN=A91F5972/serialNumber=AF798743DAB647868AB66673AF7A136C2EA0EA5B Certificate serial: 054B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r3mHQ9q2R4aKtmZzr3oTbC6g6ls.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F5972/9BF6C44EF03111EB95F76748C4F9AE02/r3mHQ9q2R4aKtmZzr3oTbC6g6ls.mft Manifest number: 0545 Signing time: Sat 10 May 2025 23:03:05 +0000 Manifest this update: Sat 10 May 2025 23:03:04 +0000 Manifest next update: Sat 17 May 2025 23:03:04 +0000 Files and hashes: 1: r3mHQ9q2R4aKtmZzr3oTbC6g6ls.crl (hash: 7GbkHnLvrHr8//bXJkbW25JbtDcAPSBnxpsqqn4m+TU=) 2: B52EA19A6E0B11ECA6057963C4F9AE02.roa (hash: sRAPrM6e/yJbsGZwUamXGzz2TWejjmVOjZsdsTU0i6Y=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F5972/9BF6C44EF03111EB95F76748C4F9AE02/r3mHQ9q2R4aKtmZzr3oTbC6g6ls.crl rsync://rpki.apnic.net/member_repository/A91F5972/9BF6C44EF03111EB95F76748C4F9AE02/r3mHQ9q2R4aKtmZzr3oTbC6g6ls.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r3mHQ9q2R4aKtmZzr3oTbC6g6ls.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 17 May 2025 23:03:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1355 (0x54b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F5972, serialNumber=AF798743DAB647868AB66673AF7A136C2EA0EA5B Validity Not Before: May 10 23:03:04 2025 GMT Not After : May 17 23:03:04 2025 GMT Subject: CN=681fdb29-1058 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:65:79:5a:8b:68:2b:bd:f6:38:2a:ea:ec:73: bf:bc:dc:46:97:2a:74:1a:18:eb:dc:6b:a3:57:60: b5:4e:48:d1:9e:19:26:ab:7b:10:7a:cc:8a:79:dc: f9:e2:24:73:24:18:20:68:26:10:25:c6:58:1e:a3: 6a:a2:6e:59:11:11:de:bf:cc:ba:80:b6:d1:d3:2d: 80:df:47:c2:c9:77:31:ee:52:d6:5e:b5:02:7c:6a: 94:a0:a4:16:bb:ae:00:dd:d4:26:61:92:86:41:3a: 8f:6e:29:cd:d4:bf:82:bb:6d:03:e7:8f:0f:e0:d6: a9:da:d6:fe:2b:81:c0:24:ae:4f:d8:14:a3:50:ce: 7e:e6:55:ce:ba:e8:58:03:bd:76:70:86:c3:1a:c5: 0e:b2:ab:ae:11:e2:86:39:c9:aa:50:9f:bf:2f:ac: 59:9b:9a:b3:3d:69:81:75:6f:23:e1:bb:52:db:06: 7e:d9:93:59:93:bc:37:79:09:ed:e0:21:e2:8d:4d: 15:83:38:18:01:b5:df:cb:b6:b0:54:14:34:dd:31: 1d:6b:e5:e1:51:cf:bb:29:14:18:b5:8d:17:ef:f4: d8:da:ce:b9:00:30:ad:ed:9b:df:9c:f5:bb:19:b8: 62:f2:d0:bc:50:8f:37:a1:3b:72:43:69:f3:75:56: 6a:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D7:D8:4C:0B:19:7E:5D:DE:FA:CF:E5:80:6A:AE:B9:6E:3E:2D:74:40 X509v3 Authority Key Identifier: keyid:AF:79:87:43:DA:B6:47:86:8A:B6:66:73:AF:7A:13:6C:2E:A0:EA:5B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F5972/9BF6C44EF03111EB95F76748C4F9AE02/r3mHQ9q2R4aKtmZzr3oTbC6g6ls.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r3mHQ9q2R4aKtmZzr3oTbC6g6ls.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F5972/9BF6C44EF03111EB95F76748C4F9AE02/r3mHQ9q2R4aKtmZzr3oTbC6g6ls.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 60:ec:4f:30:16:3b:f6:33:45:c9:e6:71:66:4e:5e:5c:e2:aa: 26:f0:6c:14:8d:37:d2:e5:d1:0b:2b:b9:6d:ec:79:15:ab:b6: b8:7f:f2:cb:c8:89:c5:9b:8b:f7:40:8c:63:49:52:d8:a9:65: e6:a0:75:e7:d8:b2:aa:10:fe:da:50:e4:0f:62:72:6b:a2:f5: d7:d8:28:30:99:36:40:f2:14:92:a2:26:31:26:9a:58:11:2f: 21:a1:2b:87:85:38:88:c3:6f:e1:fe:14:17:44:19:cf:5b:b6: 99:d0:67:d2:60:e2:57:bc:cd:85:42:2c:ab:c6:7f:76:61:b6: 00:4f:c7:4c:1b:fe:a7:3c:96:34:6f:af:39:5b:8b:2d:c3:a5: ed:7e:c8:8c:6c:5e:83:24:5e:0d:ad:fc:29:02:7c:82:35:69: 30:9a:ec:97:93:c8:55:5c:61:b8:e9:8b:44:2a:86:08:55:9d: cf:ff:e3:57:b7:d7:5b:4f:11:36:62:03:a2:35:21:6a:2f:3b: 3a:96:db:45:e0:2c:72:cc:c4:a2:34:9a:1d:c2:84:5c:b8:c2: 3d:27:f2:93:09:d1:d5:da:92:7f:98:45:22:6e:25:e5:3b:3a: f1:61:84:db:ac:dc:6d:37:64:a8:59:ed:ee:62:a6:14:dc:e9: 4a:8b:4b:8d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBUswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjU5NzIxMTAvBgNVBAUTKEFGNzk4NzQzREFCNjQ3ODY4QUI2NjY3M0FGN0ExMzZD MkVBMEVBNUIwHhcNMjUwNTEwMjMwMzA0WhcNMjUwNTE3MjMwMzA0WjAYMRYwFAYD VQQDEw02ODFmZGIyOS0xMDU4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtGV5WotoK732OCrq7HO/vNxGlyp0Ghjr3GujV2C1TkjRnhkmq3sQesyKedz5 4iRzJBggaCYQJcZYHqNqom5ZERHev8y6gLbR0y2A30fCyXcx7lLWXrUCfGqUoKQW u64A3dQmYZKGQTqPbinN1L+Cu20D548P4Nap2tb+K4HAJK5P2BSjUM5+5lXOuuhY A712cIbDGsUOsquuEeKGOcmqUJ+/L6xZm5qzPWmBdW8j4btS2wZ+2ZNZk7w3eQnt 4CHijU0VgzgYAbXfy7awVBQ03TEda+XhUc+7KRQYtY0X7/TY2s65ADCt7ZvfnPW7 Gbhi8tC8UI83oTtyQ2nzdVZqJwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNfYTAsZ fl3e+s/lgGquuW4+LXRAMB8GA1UdIwQYMBaAFK95h0PatkeGirZmc696E2wuoOpb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNTk3Mi85QkY2QzQ0RUYw MzExMUVCOTVGNzY3NDhDNEY5QUUwMi9yM21IUTlxMlI0YUt0bVp6cjNvVGJDNmc2 bHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3IzbUhROXEyUjRhS3RtWnpyM29UYkM2ZzZscy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NTk3Mi85QkY2QzQ0RUYwMzExMUVCOTVGNzY3NDhDNEY5QUUwMi9yM21IUTlxMlI0 YUt0bVp6cjNvVGJDNmc2bHMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBg7E8wFjv2M0XJ5nFmTl5c4qom8GwUjTfS5dELK7lt7HkVq7a4f/LL yInFm4v3QIxjSVLYqWXmoHXn2LKqEP7aUOQPYnJrovXX2CgwmTZA8hSSoiYxJppY ES8hoSuHhTiIw2/h/hQXRBnPW7aZ0GfSYOJXvM2FQiyrxn92YbYAT8dMG/6nPJY0 b685W4stw6XtfsiMbF6DJF4NrfwpAnyCNWkwmuyXk8hVXGG46YtEKoYIVZ3P/+NX t9dbTxE2YgOiNSFqLzs6lttF4CxyzMSiNJodwoRcuMI9J/KTCdHV2pJ/mEUibiXl OzrxYYTbrNxtN2SoWe3uYqYU3OlKi0uN -----END CERTIFICATE-----Generated at Mon May 12 23:20:49 2025 by rpki-client