$ rpki-client -vvf rpki.apnic.net/member_repository/A91FE9B1/5BB9E00AB9DB11EB9CF3B86EC4F9AE02/70llBmvaJCursGhbwuat2fdWM_0.mft File: 70llBmvaJCursGhbwuat2fdWM_0.mft (raw, json) Hash identifier: FOjsu3DuLixA7SRbybAFlBQLIS2+5WfUBULRxjWVoBM= Subject key identifier: 06:8B:49:A0:E8:F5:9D:1B:53:50:2F:85:85:92:60:5A:F0:00:84:C6 Authority key identifier: EF:49:65:06:6B:DA:24:2B:AB:B0:68:5B:C2:E6:AD:D9:F7:56:33:FD Certificate issuer: /CN=A91FE9B1/serialNumber=EF4965066BDA242BABB0685BC2E6ADD9F75633FD Certificate serial: 05D2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/70llBmvaJCursGhbwuat2fdWM_0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FE9B1/5BB9E00AB9DB11EB9CF3B86EC4F9AE02/70llBmvaJCursGhbwuat2fdWM_0.mft Manifest number: 05CD Signing time: Sat 10 May 2025 22:38:28 +0000 Manifest this update: Sat 10 May 2025 22:38:27 +0000 Manifest next update: Sat 17 May 2025 22:38:27 +0000 Files and hashes: 1: 70llBmvaJCursGhbwuat2fdWM_0.crl (hash: ltBPyCfE8PjR0yFuLLnIKdvpnbHig5MAeQ35kc9/LtU=) 2: 02157718B9DF11EBA8BE9876C4F9AE02.roa (hash: mRSjwQDsA2Ity8Ke/pKlCSea6N3rjwOrxrJxPkM3a1M=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FE9B1/5BB9E00AB9DB11EB9CF3B86EC4F9AE02/70llBmvaJCursGhbwuat2fdWM_0.crl rsync://rpki.apnic.net/member_repository/A91FE9B1/5BB9E00AB9DB11EB9CF3B86EC4F9AE02/70llBmvaJCursGhbwuat2fdWM_0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/70llBmvaJCursGhbwuat2fdWM_0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 17 May 2025 22:38:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1490 (0x5d2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FE9B1, serialNumber=EF4965066BDA242BABB0685BC2E6ADD9F75633FD Validity Not Before: May 10 22:38:27 2025 GMT Not After : May 17 22:38:27 2025 GMT Subject: CN=681fd564-8c10 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:ed:54:38:c9:eb:27:d9:22:d5:61:9a:b3:58: 06:5e:58:56:f4:5d:3c:f6:1d:36:3f:54:6c:6d:e6: 14:74:ae:e0:05:06:0c:8d:55:01:aa:50:aa:91:31: 6c:1e:cf:25:69:4d:43:a4:80:b9:bb:e7:c3:d0:03: 6d:79:d0:a1:4b:6c:b3:ad:55:13:dd:fa:46:ba:2e: 80:b0:73:96:c1:7a:d5:c3:77:61:59:ed:b6:79:b9: 1d:78:03:63:b3:77:59:d5:60:1e:3c:b6:0d:32:8d: a5:84:8b:bb:d9:f3:77:9a:09:41:da:55:d3:3c:93: 00:d6:02:17:c5:c1:81:ac:d8:eb:6c:c2:44:53:ff: 25:d9:4e:0f:4d:34:3d:13:e9:21:bf:2e:a9:5c:de: 0f:5b:f1:ed:30:d8:40:a8:55:11:08:f9:2b:bb:c5: 6a:ba:2c:8d:4d:1f:2e:e3:c1:82:02:68:0e:38:18: ff:87:1c:90:75:9b:be:82:d3:67:74:fb:4a:e7:59: 90:1e:ac:42:5c:67:bd:3c:58:55:17:6a:07:b3:3a: 23:8e:83:46:b1:85:9d:99:4f:0d:b5:65:7e:c1:17: 4e:46:69:b4:22:ba:72:85:69:6d:b1:4f:40:70:3b: 5e:77:c4:9b:61:ac:e4:04:06:fe:3c:ca:9c:a1:54: fd:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 06:8B:49:A0:E8:F5:9D:1B:53:50:2F:85:85:92:60:5A:F0:00:84:C6 X509v3 Authority Key Identifier: keyid:EF:49:65:06:6B:DA:24:2B:AB:B0:68:5B:C2:E6:AD:D9:F7:56:33:FD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FE9B1/5BB9E00AB9DB11EB9CF3B86EC4F9AE02/70llBmvaJCursGhbwuat2fdWM_0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/70llBmvaJCursGhbwuat2fdWM_0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FE9B1/5BB9E00AB9DB11EB9CF3B86EC4F9AE02/70llBmvaJCursGhbwuat2fdWM_0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c3:a6:21:48:81:40:57:7e:66:eb:29:28:20:63:44:e6:12:5c: 09:b4:fa:f0:d1:53:f1:1c:63:9a:2a:7e:fe:5a:70:66:99:7f: 43:9f:f8:c1:ae:08:e5:6c:b2:78:ba:98:ca:47:30:59:86:38: 2f:ef:7a:16:c3:01:ef:74:42:71:8f:dd:af:5b:34:39:8d:a5: ec:6c:6e:b3:85:fb:c0:3c:33:eb:2c:92:58:19:11:74:1b:f4: 12:e9:e3:a1:cf:d8:76:db:52:25:8a:3a:03:da:e9:5c:96:74: 52:bd:ba:6b:74:fb:bb:64:93:61:0e:01:fe:2f:13:c2:74:fd: 16:61:03:5a:ec:3d:63:ca:c6:2f:81:3e:18:19:31:08:6f:29: 09:0c:cc:b2:79:d8:42:fe:06:a5:e4:16:20:9a:7d:ea:a3:b6: de:3e:71:80:5e:33:cf:b1:80:1a:91:68:4a:e6:6d:d6:c3:98: 08:83:a8:8b:2a:17:4f:c0:96:00:b0:c7:80:5a:16:ab:65:4d: 2b:35:95:75:53:bf:82:6b:19:18:4d:f1:80:84:17:21:75:3d: df:03:de:87:11:ae:ef:37:57:f6:5d:06:97:2e:72:7e:18:3f: 68:f0:3b:5b:47:66:47:00:8a:ac:7a:c8:8e:b7:25:cb:e1:21: 75:b2:2a:31 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBdIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkU5QjExMTAvBgNVBAUTKEVGNDk2NTA2NkJEQTI0MkJBQkIwNjg1QkMyRTZBREQ5 Rjc1NjMzRkQwHhcNMjUwNTEwMjIzODI3WhcNMjUwNTE3MjIzODI3WjAYMRYwFAYD VQQDEw02ODFmZDU2NC04YzEwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5+1UOMnrJ9ki1WGas1gGXlhW9F089h02P1RsbeYUdK7gBQYMjVUBqlCqkTFs Hs8laU1DpIC5u+fD0ANtedChS2yzrVUT3fpGui6AsHOWwXrVw3dhWe22ebkdeANj s3dZ1WAePLYNMo2lhIu72fN3mglB2lXTPJMA1gIXxcGBrNjrbMJEU/8l2U4PTTQ9 E+khvy6pXN4PW/HtMNhAqFURCPkru8VquiyNTR8u48GCAmgOOBj/hxyQdZu+gtNn dPtK51mQHqxCXGe9PFhVF2oHszojjoNGsYWdmU8NtWV+wRdORmm0IrpyhWltsU9A cDted8SbYazkBAb+PMqcoVT9KQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAaLSaDo 9Z0bU1AvhYWSYFrwAITGMB8GA1UdIwQYMBaAFO9JZQZr2iQrq7BoW8Lmrdn3VjP9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGRTlCMS81QkI5RTAwQUI5 REIxMUVCOUNGM0I4NkVDNEY5QUUwMi83MGxsQm12YUpDdXJzR2hid3VhdDJmZFdN XzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzcwbGxCbXZhSkN1cnNHaGJ3dWF0MmZkV01fMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG RTlCMS81QkI5RTAwQUI5REIxMUVCOUNGM0I4NkVDNEY5QUUwMi83MGxsQm12YUpD dXJzR2hid3VhdDJmZFdNXzAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDDpiFIgUBXfmbrKSggY0TmElwJtPrw0VPxHGOaKn7+WnBmmX9Dn/jB rgjlbLJ4upjKRzBZhjgv73oWwwHvdEJxj92vWzQ5jaXsbG6zhfvAPDPrLJJYGRF0 G/QS6eOhz9h221IlijoD2ulclnRSvbprdPu7ZJNhDgH+LxPCdP0WYQNa7D1jysYv gT4YGTEIbykJDMyyedhC/gal5BYgmn3qo7bePnGAXjPPsYAakWhK5m3Ww5gIg6iL KhdPwJYAsMeAWharZU0rNZV1U7+CaxkYTfGAhBchdT3fA96HEa7vN1f2XQaXLnJ+ GD9o8DtbR2ZHAIqsesiOtyXL4SF1siox -----END CERTIFICATE-----Generated at Sun May 11 07:38:32 2025 by rpki-client