$ rpki-client -vvf rpki.apnic.net/member_repository/A91FDAD4/C85E837A439911ED839D720EC4F9AE02/rehZrZQNGhc_pkzXBYZ9SH5nNog.mft File: rehZrZQNGhc_pkzXBYZ9SH5nNog.mft (raw, json) Hash identifier: x1v3Jso/WG12Bu8U3jvQDp2wG4503gFXBhqstY83un8= Subject key identifier: DB:3A:C5:99:6E:C2:E2:4D:29:47:B2:E1:C1:DC:80:BB:D2:2E:59:FC Authority key identifier: AD:E8:59:AD:94:0D:1A:17:3F:A6:4C:D7:05:86:7D:48:7E:67:36:88 Certificate issuer: /CN=A91FDAD4/serialNumber=ADE859AD940D1A173FA64CD705867D487E673688 Certificate serial: 01F1 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/rehZrZQNGhc_pkzXBYZ9SH5nNog.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FDAD4/C85E837A439911ED839D720EC4F9AE02/rehZrZQNGhc_pkzXBYZ9SH5nNog.mft Manifest number: 01EC Signing time: Tue 13 May 2025 00:18:03 +0000 Manifest this update: Tue 13 May 2025 00:18:02 +0000 Manifest next update: Tue 20 May 2025 00:18:02 +0000 Files and hashes: 1: rehZrZQNGhc_pkzXBYZ9SH5nNog.crl (hash: 4TF6a2dQmD+A3TlhuLnkrl25SmQEB6AAdteZMTGg7pc=) 2: A99BC9D64CAC11EDA3BF485AC4F9AE02.roa (hash: M0LQ0bOgsXho1IONj8CXX3n4kpo/nKJprHxKVrxONpQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FDAD4/C85E837A439911ED839D720EC4F9AE02/rehZrZQNGhc_pkzXBYZ9SH5nNog.crl rsync://rpki.apnic.net/member_repository/A91FDAD4/C85E837A439911ED839D720EC4F9AE02/rehZrZQNGhc_pkzXBYZ9SH5nNog.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/rehZrZQNGhc_pkzXBYZ9SH5nNog.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 20 May 2025 00:18:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 497 (0x1f1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FDAD4, serialNumber=ADE859AD940D1A173FA64CD705867D487E673688 Validity Not Before: May 13 00:18:02 2025 GMT Not After : May 20 00:18:02 2025 GMT Subject: CN=68228fba-d5bc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:18:5a:33:74:0c:ca:f8:81:68:82:fc:0e:bf: 20:25:f1:48:8c:01:74:a6:61:cd:76:77:63:80:00: 0d:e7:b2:0d:f0:c5:51:7d:0e:67:a4:98:de:e8:ea: 44:9f:c5:32:dc:ed:2a:26:c5:da:9f:76:27:42:11: 36:ea:49:bf:1e:f9:02:d3:c3:7c:5d:5e:e1:a2:0b: c3:9b:a1:79:50:8d:b9:47:a1:84:7f:86:83:4a:cf: ea:a6:b8:00:1d:3c:df:79:51:53:dc:f7:81:43:a4: 64:bf:e1:ae:da:29:53:88:52:b3:37:03:2f:c9:3c: 64:bb:54:58:ad:7d:47:57:e2:ff:ba:a9:80:45:10: 5b:34:b7:cb:19:d4:e9:a2:c4:43:46:58:50:8f:76: a3:52:1c:3b:09:b1:2a:95:0e:68:d5:f8:16:6a:1e: 2b:83:a0:5c:0d:9d:98:6b:4b:6f:40:f6:ae:34:9d: 89:c8:37:b7:44:51:74:31:55:6b:7d:21:24:b1:5b: 30:e4:d7:ab:4f:e6:5e:71:4f:57:29:66:cc:94:8f: bf:5e:6b:13:31:b2:f3:55:62:e3:79:b5:33:de:af: 77:64:71:7d:59:9b:10:be:46:0f:70:ad:8a:24:ef: c4:33:14:f3:59:fd:f6:a6:62:c5:e7:a8:3d:9d:3f: 87:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DB:3A:C5:99:6E:C2:E2:4D:29:47:B2:E1:C1:DC:80:BB:D2:2E:59:FC X509v3 Authority Key Identifier: keyid:AD:E8:59:AD:94:0D:1A:17:3F:A6:4C:D7:05:86:7D:48:7E:67:36:88 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FDAD4/C85E837A439911ED839D720EC4F9AE02/rehZrZQNGhc_pkzXBYZ9SH5nNog.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/rehZrZQNGhc_pkzXBYZ9SH5nNog.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FDAD4/C85E837A439911ED839D720EC4F9AE02/rehZrZQNGhc_pkzXBYZ9SH5nNog.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 45:83:aa:5a:1d:5f:fd:a1:31:4f:7e:7c:07:cd:84:25:57:54: c7:1d:94:c9:eb:27:c6:12:5f:89:93:35:04:35:ae:e5:4b:52: cb:2b:5c:78:06:e6:6b:a9:ec:eb:18:0f:26:4f:2f:82:71:0d: 12:f3:45:50:24:c8:3b:65:21:9d:52:eb:31:3a:41:ff:69:b4: 12:f0:00:7e:52:32:09:ba:d2:a7:1b:74:c1:8d:90:07:47:65: 0a:2d:39:54:b6:19:df:c9:f3:c9:20:ab:f0:8c:78:01:d0:60: 04:98:66:21:4a:ed:85:fb:61:01:5f:dc:e4:47:d3:a6:37:6d: 4b:8f:ec:63:0d:21:ff:a0:12:35:db:d1:5c:d6:20:9d:87:91: 60:82:e1:8a:c5:43:ed:ac:7a:e3:40:fb:2b:f8:c8:cc:b2:71: d4:df:25:96:62:1b:7e:11:c6:1a:d1:ea:8b:d3:50:03:3e:6e: 49:74:2c:0f:dc:b9:23:0e:ce:1b:bf:72:cb:55:a2:28:ba:db: 68:5a:ce:95:7c:8d:e7:53:c5:85:48:01:d9:65:50:9f:3a:9d: 2a:8d:2d:12:9c:17:f9:06:f0:73:7b:0a:69:49:95:0a:7a:a9: dc:7e:b1:8b:93:b1:09:e4:a8:0e:56:19:06:8e:89:ef:42:6d: 4c:e6:a5:00 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAfEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkRBRDQxMTAvBgNVBAUTKEFERTg1OUFEOTQwRDFBMTczRkE2NENENzA1ODY3RDQ4 N0U2NzM2ODgwHhcNMjUwNTEzMDAxODAyWhcNMjUwNTIwMDAxODAyWjAYMRYwFAYD VQQDEw02ODIyOGZiYS1kNWJjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0BhaM3QMyviBaIL8Dr8gJfFIjAF0pmHNdndjgAAN57IN8MVRfQ5npJje6OpE n8Uy3O0qJsXan3YnQhE26km/HvkC08N8XV7hogvDm6F5UI25R6GEf4aDSs/qprgA HTzfeVFT3PeBQ6Rkv+Gu2ilTiFKzNwMvyTxku1RYrX1HV+L/uqmARRBbNLfLGdTp osRDRlhQj3ajUhw7CbEqlQ5o1fgWah4rg6BcDZ2Ya0tvQPauNJ2JyDe3RFF0MVVr fSEksVsw5NerT+ZecU9XKWbMlI+/XmsTMbLzVWLjebUz3q93ZHF9WZsQvkYPcK2K JO/EMxTzWf32pmLF56g9nT+HpwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNs6xZlu wuJNKUey4cHcgLvSLln8MB8GA1UdIwQYMBaAFK3oWa2UDRoXP6ZM1wWGfUh+ZzaI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGREFENC9DODVFODM3QTQz OTkxMUVEODM5RDcyMEVDNEY5QUUwMi9yZWhaclpRTkdoY19wa3pYQllaOVNINW5O b2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL3JlaFpyWlFOR2hjX3BrelhCWVo5U0g1bk5vZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG REFENC9DODVFODM3QTQzOTkxMUVEODM5RDcyMEVDNEY5QUUwMi9yZWhaclpRTkdo Y19wa3pYQllaOVNINW5Ob2cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBFg6paHV/9oTFPfnwHzYQlV1THHZTJ6yfGEl+JkzUENa7lS1LLK1x4 BuZrqezrGA8mTy+CcQ0S80VQJMg7ZSGdUusxOkH/abQS8AB+UjIJutKnG3TBjZAH R2UKLTlUthnfyfPJIKvwjHgB0GAEmGYhSu2F+2EBX9zkR9OmN21Lj+xjDSH/oBI1 29Fc1iCdh5FgguGKxUPtrHrjQPsr+MjMsnHU3yWWYht+EcYa0eqL01ADPm5JdCwP 3LkjDs4bv3LLVaIouttoWs6VfI3nU8WFSAHZZVCfOp0qjS0SnBf5BvBzewppSZUK eqncfrGLk7EJ5KgOVhkGjonvQm1M5qUA -----END CERTIFICATE-----Generated at Tue May 13 05:53:35 2025 by rpki-client