$ rpki-client -vvf rpki.apnic.net/member_repository/A91FB434/E2C6267642D311E8BBDC0941C4F9AE02/1bScAI9ih18VJth200lAoJsOnW0.mft File: 1bScAI9ih18VJth200lAoJsOnW0.mft (raw, json) Hash identifier: qU7hd+Z71DUnt4jxe7HbCjdD9nyKHZRdtBL2udC/sr4= Subject key identifier: 7D:8B:C6:64:F1:88:99:E8:D9:62:F3:BD:BE:E4:C3:D9:1A:4F:00:2D Authority key identifier: D5:B4:9C:00:8F:62:87:5F:15:26:D8:76:D3:49:40:A0:9B:0E:9D:6D Certificate issuer: /CN=A91FB434/serialNumber=D5B49C008F62875F1526D876D34940A09B0E9D6D Certificate serial: 1542 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1bScAI9ih18VJth200lAoJsOnW0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FB434/E2C6267642D311E8BBDC0941C4F9AE02/1bScAI9ih18VJth200lAoJsOnW0.mft Manifest number: 1530 Signing time: Sat 10 May 2025 16:42:41 +0000 Manifest this update: Sat 10 May 2025 16:42:40 +0000 Manifest next update: Sat 17 May 2025 16:42:40 +0000 Files and hashes: 1: 1bScAI9ih18VJth200lAoJsOnW0.crl (hash: azGlZmb0CWp/lkupXoS7CtiMsgrtS5bwCN2WsYwEWZw=) 2: EC796D6C42D411E88EC29742C4F9AE02.roa (hash: fttFYbQ36BNhaDw4KkKJxxNjWTmLtF2Lj6rIn6jBjOw=) 3: EB843B92329A11EE89CD8544C4F9AE02.roa (hash: 1pX1xgZiUndMELmZkTsenLOVPD7ayPzn9r1F8xRSN8U=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FB434/E2C6267642D311E8BBDC0941C4F9AE02/1bScAI9ih18VJth200lAoJsOnW0.crl rsync://rpki.apnic.net/member_repository/A91FB434/E2C6267642D311E8BBDC0941C4F9AE02/1bScAI9ih18VJth200lAoJsOnW0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1bScAI9ih18VJth200lAoJsOnW0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 17 May 2025 16:42:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5442 (0x1542) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FB434, serialNumber=D5B49C008F62875F1526D876D34940A09B0E9D6D Validity Not Before: May 10 16:42:40 2025 GMT Not After : May 17 16:42:40 2025 GMT Subject: CN=681f8201-f75b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:ec:8f:bf:21:a4:f6:78:01:4d:5c:75:a1:23: 2b:81:d6:13:df:a6:ae:2c:aa:49:e4:d5:0c:d3:15: ba:28:cc:fe:d6:30:75:d7:f1:18:5f:f6:37:62:d7: 6c:80:e7:51:17:f8:a0:90:c8:dd:f6:cb:c5:ce:25: f9:78:08:0e:52:9f:df:53:85:81:7c:fe:08:1a:c7: 49:6a:33:80:d2:ba:90:71:04:fb:08:1f:f0:81:76: 57:89:b1:af:08:cc:83:f9:e5:f7:09:8c:17:8f:97: e1:06:3f:78:5a:87:74:8e:b6:b5:39:bc:66:9f:46: fa:08:c2:04:68:92:ca:d3:66:fe:33:09:00:fc:75: 6c:64:15:ec:aa:46:22:f9:4f:57:2b:54:9e:e0:68: 58:56:69:48:b5:42:35:7f:ad:83:c3:d2:ce:dd:4d: 40:bc:42:8f:5a:68:64:19:2b:b9:1e:1c:db:2a:b4: b6:87:a0:98:5e:ed:ad:50:d6:db:b4:c7:31:83:eb: 83:fb:0a:65:2a:4b:68:1d:af:a1:6e:97:2c:16:ff: 05:bf:0e:bb:1a:41:88:0e:0b:54:0e:38:08:44:38: f5:9a:5f:0c:b4:62:85:09:b6:04:85:e0:d4:c4:9c: bc:52:84:d6:70:36:69:7d:0a:a6:8c:d1:0b:5e:53: 11:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7D:8B:C6:64:F1:88:99:E8:D9:62:F3:BD:BE:E4:C3:D9:1A:4F:00:2D X509v3 Authority Key Identifier: keyid:D5:B4:9C:00:8F:62:87:5F:15:26:D8:76:D3:49:40:A0:9B:0E:9D:6D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FB434/E2C6267642D311E8BBDC0941C4F9AE02/1bScAI9ih18VJth200lAoJsOnW0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1bScAI9ih18VJth200lAoJsOnW0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FB434/E2C6267642D311E8BBDC0941C4F9AE02/1bScAI9ih18VJth200lAoJsOnW0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2c:6a:eb:e5:e9:be:9f:d0:c0:6f:af:96:ff:bd:67:1f:14:21: bb:fd:9c:0b:65:3d:4c:68:e2:03:19:39:ed:e8:50:10:8c:88: 60:9d:80:27:28:14:30:93:69:b6:30:8a:c9:eb:60:c0:61:91: cd:53:ec:14:b6:7f:63:1c:f0:d7:88:f2:90:d9:f1:50:c5:78: 95:28:d0:2d:09:17:f7:06:9d:68:d6:d0:4c:b4:11:ba:1a:db: 21:2d:bf:3f:0c:5d:bc:b5:6c:4e:55:a3:61:73:e4:88:ce:9a: b8:0a:95:7c:6c:67:84:84:ff:2c:e0:a8:57:1b:ec:11:2d:c5: 59:2e:54:23:76:a8:de:b6:5c:d3:bc:84:da:1d:62:15:8a:7c: 9b:ee:56:e3:44:ef:dc:64:cc:7c:6f:1a:04:f6:49:9b:bc:fc: 0d:bc:2d:d5:30:9b:b9:78:f8:30:f0:97:64:e1:07:7d:2e:4a: 1f:d3:c8:a3:5f:a4:fa:0a:b2:83:7a:d9:6e:74:6b:f4:ee:a1: 49:b7:b0:ba:63:13:1a:0f:6f:57:d6:0d:6d:d0:b8:e7:57:99: 11:02:a8:05:14:09:8d:c5:23:dd:67:2b:d2:41:d0:29:6d:03: f2:01:c9:6d:99:6d:2f:01:95:e6:e0:13:27:c9:7d:cb:50:d7: a8:98:9c:32 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICFUIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkI0MzQxMTAvBgNVBAUTKEQ1QjQ5QzAwOEY2Mjg3NUYxNTI2RDg3NkQzNDk0MEEw OUIwRTlENkQwHhcNMjUwNTEwMTY0MjQwWhcNMjUwNTE3MTY0MjQwWjAYMRYwFAYD VQQDEw02ODFmODIwMS1mNzViMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3eyPvyGk9ngBTVx1oSMrgdYT36auLKpJ5NUM0xW6KMz+1jB11/EYX/Y3Ytds gOdRF/igkMjd9svFziX5eAgOUp/fU4WBfP4IGsdJajOA0rqQcQT7CB/wgXZXibGv CMyD+eX3CYwXj5fhBj94Wod0jra1Obxmn0b6CMIEaJLK02b+MwkA/HVsZBXsqkYi +U9XK1Se4GhYVmlItUI1f62Dw9LO3U1AvEKPWmhkGSu5HhzbKrS2h6CYXu2tUNbb tMcxg+uD+wplKktoHa+hbpcsFv8Fvw67GkGIDgtUDjgIRDj1ml8MtGKFCbYEheDU xJy8UoTWcDZpfQqmjNELXlMRLwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFH2LxmTx iJno2WLzvb7kw9kaTwAtMB8GA1UdIwQYMBaAFNW0nACPYodfFSbYdtNJQKCbDp1t MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQjQzNC9FMkM2MjY3NjQy RDMxMUU4QkJEQzA5NDFDNEY5QUUwMi8xYlNjQUk5aWgxOFZKdGgyMDBsQW9Kc09u VzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFiU2NBSTlpaDE4Vkp0aDIwMGxBb0pzT25XMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG QjQzNC9FMkM2MjY3NjQyRDMxMUU4QkJEQzA5NDFDNEY5QUUwMi8xYlNjQUk5aWgx OFZKdGgyMDBsQW9Kc09uVzAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAsauvl6b6f0MBvr5b/vWcfFCG7/ZwLZT1MaOIDGTnt6FAQjIhgnYAn KBQwk2m2MIrJ62DAYZHNU+wUtn9jHPDXiPKQ2fFQxXiVKNAtCRf3Bp1o1tBMtBG6 GtshLb8/DF28tWxOVaNhc+SIzpq4CpV8bGeEhP8s4KhXG+wRLcVZLlQjdqjetlzT vITaHWIVinyb7lbjRO/cZMx8bxoE9kmbvPwNvC3VMJu5ePgw8Jdk4Qd9Lkof08ij X6T6CrKDetludGv07qFJt7C6YxMaD29X1g1t0LjnV5kRAqgFFAmNxSPdZyvSQdAp bQPyAcltmW0vAZXm4BMnyX3LUNeomJwy -----END CERTIFICATE-----Generated at Sun May 11 19:07:28 2025 by rpki-client