$ rpki-client -vvf rpki.apnic.net/member_repository/A91FBC89/9E7262BEEFCE11EF893FF70EC4F9AE02/sXSj1LqbR24rMeR8cqKY0ETZh4U.mft File: sXSj1LqbR24rMeR8cqKY0ETZh4U.mft (raw, json) Hash identifier: dr+qfoYSZSvKv7ScWEmb0l2J1hYRfoBFQYANm6Tb1Pk= Subject key identifier: 22:A5:E1:E8:CD:3B:DC:9F:C0:54:F9:55:BF:DA:51:7E:65:15:3C:34 Authority key identifier: B1:74:A3:D4:BA:9B:47:6E:2B:31:E4:7C:72:A2:98:D0:44:D9:87:85 Certificate issuer: /CN=A91FBC89/serialNumber=B174A3D4BA9B476E2B31E47C72A298D044D98785 Certificate serial: 37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sXSj1LqbR24rMeR8cqKY0ETZh4U.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FBC89/9E7262BEEFCE11EF893FF70EC4F9AE02/sXSj1LqbR24rMeR8cqKY0ETZh4U.mft Manifest number: 33 Signing time: Sun 11 May 2025 06:28:00 +0000 Manifest this update: Sun 11 May 2025 06:27:59 +0000 Manifest next update: Sun 18 May 2025 06:27:59 +0000 Files and hashes: 1: sXSj1LqbR24rMeR8cqKY0ETZh4U.crl (hash: IUI6fK3P2J0NlZw9iQVdZVIp3UJOxGruokBBu1pap/E=) 2: BCC26F6EF07F11EFB25D2369C4F9AE02.roa (hash: AqnZuSs/50ixsQ8+UDuWtRAVxmvXUcEXRK8qwpmaDLs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FBC89/9E7262BEEFCE11EF893FF70EC4F9AE02/sXSj1LqbR24rMeR8cqKY0ETZh4U.crl rsync://rpki.apnic.net/member_repository/A91FBC89/9E7262BEEFCE11EF893FF70EC4F9AE02/sXSj1LqbR24rMeR8cqKY0ETZh4U.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sXSj1LqbR24rMeR8cqKY0ETZh4U.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 18 May 2025 06:27:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 55 (0x37) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FBC89, serialNumber=B174A3D4BA9B476E2B31E47C72A298D044D98785 Validity Not Before: May 11 06:27:59 2025 GMT Not After : May 18 06:27:59 2025 GMT Subject: CN=68204370-75bd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:ae:d6:00:b2:c1:ae:29:b8:a2:3f:fb:a3:5a: 1e:92:b8:c2:1b:3e:ec:30:06:56:50:64:aa:29:d1: 35:9f:a8:c1:28:f6:3a:ab:5b:2a:52:80:be:0d:70: af:b9:42:60:a3:ee:b9:9d:df:7a:36:4e:ba:a5:71: a9:35:4c:f6:7d:88:b9:70:e7:7a:72:4c:54:98:89: 52:96:01:e7:22:55:12:79:13:7c:a5:34:a5:0d:b5: 56:71:61:e6:71:e4:d4:3e:c0:14:6d:cd:8d:39:c5: 64:b6:71:00:0c:70:c2:2c:84:83:bb:73:ed:4c:6c: e8:a8:59:d5:29:16:21:3c:fa:8a:1f:52:67:20:26: c8:61:d1:b8:e1:83:65:53:f5:d6:a7:52:9c:1b:8c: 6e:e4:89:c5:5e:92:08:00:d8:95:c2:67:17:9e:ec: e8:7d:fc:1b:e5:9f:9b:7c:e5:49:3d:95:ea:31:02: 9f:e1:9d:81:05:31:df:5d:5b:af:98:64:f2:5c:93: e7:0d:a7:01:46:b8:7d:c9:1b:72:38:18:20:a1:3c: f2:9a:eb:03:c3:3d:cd:75:e7:ff:1c:98:b3:4e:9c: 25:d6:9a:2e:44:2a:87:8e:74:0c:db:4c:5e:ac:b5: f4:b1:75:c0:a4:0a:51:c9:17:20:91:68:7e:fe:1b: e9:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 22:A5:E1:E8:CD:3B:DC:9F:C0:54:F9:55:BF:DA:51:7E:65:15:3C:34 X509v3 Authority Key Identifier: keyid:B1:74:A3:D4:BA:9B:47:6E:2B:31:E4:7C:72:A2:98:D0:44:D9:87:85 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FBC89/9E7262BEEFCE11EF893FF70EC4F9AE02/sXSj1LqbR24rMeR8cqKY0ETZh4U.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sXSj1LqbR24rMeR8cqKY0ETZh4U.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FBC89/9E7262BEEFCE11EF893FF70EC4F9AE02/sXSj1LqbR24rMeR8cqKY0ETZh4U.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4d:c0:ba:1a:9e:dd:d6:8f:9e:e2:d8:62:4f:fd:dd:39:09:d7: 68:45:65:c7:b4:20:db:dc:23:f9:c4:cd:10:c3:97:8f:be:5d: 3d:99:0c:fd:10:f3:a3:5a:64:d2:54:5c:70:f3:17:dd:0b:ca: 6b:0e:b2:10:77:7c:14:a5:2b:a9:b5:7b:87:45:b5:6b:a2:f8: 07:e3:1c:6b:ae:de:b6:7f:a6:ea:aa:d1:78:8b:e5:5a:e7:17: d8:6f:94:f4:9b:4d:dd:bf:e5:a7:de:81:41:4a:2e:69:5d:91: 00:a6:e4:04:b3:d6:d5:9b:a6:f2:81:ee:3d:99:c7:c7:e0:c1: 48:a3:9b:e6:0f:a1:c4:d9:55:03:8d:d9:84:3e:a7:12:1a:ea: 16:b3:3f:0a:3d:ce:20:e3:01:34:87:48:e2:f6:81:5e:1a:be: 46:ad:01:94:ed:ce:35:21:44:ca:5b:29:c0:8a:ce:e4:f6:f4: 18:b8:2f:26:5c:68:29:75:46:a4:fe:40:df:6b:45:e5:08:d8: 27:67:c5:55:63:de:19:59:0e:b9:1c:94:9d:60:fd:12:17:ac: 31:8f:9e:f3:5b:d6:a5:a0:1e:d6:39:9f:c8:fd:53:c6:5a:fd: e3:e5:a3:1c:ad:c1:bd:d8:fc:34:45:46:cf:78:6a:9a:52:ed: 90:c1:47:98 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBNzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFG QkM4OTExMC8GA1UEBRMoQjE3NEEzRDRCQTlCNDc2RTJCMzFFNDdDNzJBMjk4RDA0 NEQ5ODc4NTAeFw0yNTA1MTEwNjI3NTlaFw0yNTA1MTgwNjI3NTlaMBgxFjAUBgNV BAMTDTY4MjA0MzcwLTc1YmQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCnrtYAssGuKbiiP/ujWh6SuMIbPuwwBlZQZKop0TWfqMEo9jqrWypSgL4NcK+5 QmCj7rmd33o2Trqlcak1TPZ9iLlw53pyTFSYiVKWAeciVRJ5E3ylNKUNtVZxYeZx 5NQ+wBRtzY05xWS2cQAMcMIshIO7c+1MbOioWdUpFiE8+oofUmcgJshh0bjhg2VT 9danUpwbjG7kicVekggA2JXCZxee7Oh9/Bvln5t85Uk9leoxAp/hnYEFMd9dW6+Y ZPJck+cNpwFGuH3JG3I4GCChPPKa6wPDPc115/8cmLNOnCXWmi5EKoeOdAzbTF6s tfSxdcCkClHJFyCRaH7+G+nZAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUIqXh6M07 3J/AVPlVv9pRfmUVPDQwHwYDVR0jBBgwFoAUsXSj1LqbR24rMeR8cqKY0ETZh4Uw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUZCQzg5LzlFNzI2MkJFRUZD RTExRUY4OTNGRjcwRUM0RjlBRTAyL3NYU2oxTHFiUjI0ck1lUjhjcUtZMEVUWmg0 VS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvc1hTajFMcWJSMjRyTWVSOGNxS1kwRVRaaDRVLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUZC Qzg5LzlFNzI2MkJFRUZDRTExRUY4OTNGRjcwRUM0RjlBRTAyL3NYU2oxTHFiUjI0 ck1lUjhjcUtZMEVUWmg0VS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAE3Auhqe3daPnuLYYk/93TkJ12hFZce0INvcI/nEzRDDl4++XT2ZDP0Q 86NaZNJUXHDzF90LymsOshB3fBSlK6m1e4dFtWui+AfjHGuu3rZ/puqq0XiL5Vrn F9hvlPSbTd2/5afegUFKLmldkQCm5ASz1tWbpvKB7j2Zx8fgwUijm+YPocTZVQON 2YQ+pxIa6hazPwo9ziDjATSHSOL2gV4avkatAZTtzjUhRMpbKcCKzuT29Bi4LyZc aCl1RqT+QN9rReUI2CdnxVVj3hlZDrkclJ1g/RIXrDGPnvNb1qWgHtY5n8j9U8Za /ePloxytwb3Y/DRFRs94appS7ZDBR5g= -----END CERTIFICATE-----Generated at Mon May 12 18:21:05 2025 by rpki-client