$ rpki-client -vvf rpki.apnic.net/member_repository/A91324D4/1A6E751CA71F11EB848AF030C4F9AE02/v3Tn5hTUsi5Lf-QLa-zv0XBaz8E.mft File: v3Tn5hTUsi5Lf-QLa-zv0XBaz8E.mft (raw, json) Hash identifier: 0j1mWYw32iFwc81q3cIpf6dbWCj7+1nYmzzOMUtmChk= Subject key identifier: AB:95:9A:50:6B:37:11:D8:59:10:C0:57:28:7E:65:56:D1:2E:29:90 Authority key identifier: BF:74:E7:E6:14:D4:B2:2E:4B:7F:E4:0B:6B:EC:EF:D1:70:5A:CF:C1 Certificate issuer: /CN=A91324D4/serialNumber=BF74E7E614D4B22E4B7FE40B6BECEFD1705ACFC1 Certificate serial: 0625 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/v3Tn5hTUsi5Lf-QLa-zv0XBaz8E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91324D4/1A6E751CA71F11EB848AF030C4F9AE02/v3Tn5hTUsi5Lf-QLa-zv0XBaz8E.mft Manifest number: 0609 Signing time: Thu 24 Apr 2025 22:43:01 +0000 Manifest this update: Thu 24 Apr 2025 22:43:01 +0000 Manifest next update: Thu 01 May 2025 22:43:01 +0000 Files and hashes: 1: v3Tn5hTUsi5Lf-QLa-zv0XBaz8E.crl (hash: vvXjHUqZPujwjitWWUEVQj7Ppvj/ZTYTpK+pBQ5BKAs=) 2: DD643EBCE00C11ED8C71C709C4F9AE02.roa (hash: tNDEmIxy5H25Y3zlO9rXFUC8hfA45BbpRsPK4rM8u7s=) 3: 8A88CCDC667911EE9D7DA167C4F9AE02.roa (hash: 9S57tdyd45wHLsInsTnI/GZly1K4hEDfcQJTNYuSOFQ=) 4: 236C6906A73F11EBA1751E33C4F9AE02.roa (hash: JyPetDHabfuANEcar/HU38MZvBtPYhC6A1gULHuakq8=) 5: 78345D00E01211ED8766DC5CC4F9AE02.roa (hash: CGANdjpj39CJWyCZVGb4EKEpCCBaXu9btf2XqDDOLY4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91324D4/1A6E751CA71F11EB848AF030C4F9AE02/v3Tn5hTUsi5Lf-QLa-zv0XBaz8E.crl rsync://rpki.apnic.net/member_repository/A91324D4/1A6E751CA71F11EB848AF030C4F9AE02/v3Tn5hTUsi5Lf-QLa-zv0XBaz8E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/v3Tn5hTUsi5Lf-QLa-zv0XBaz8E.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 22:43:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1573 (0x625) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91324D4, serialNumber=BF74E7E614D4B22E4B7FE40B6BECEFD1705ACFC1 Validity Not Before: Apr 24 22:43:01 2025 GMT Not After : May 1 22:43:01 2025 GMT Subject: CN=680abe75-607b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:4c:03:3f:ca:c1:da:43:d2:f9:a6:56:94:41: f0:a0:e4:54:e0:42:96:b8:c8:f3:f6:76:98:dd:ca: c2:ee:6d:3b:70:bf:e0:09:a4:76:8e:61:d8:ee:42: d3:0d:39:39:36:4e:63:96:49:96:cb:01:8a:1b:7a: 26:d9:df:aa:4b:d5:93:67:a8:6b:d2:c8:ff:27:fc: ee:91:06:0e:de:d8:30:30:0d:4b:fe:38:14:9d:da: 39:95:4f:f7:b0:d3:5c:f1:6b:76:87:36:64:c5:43: c6:e5:c8:f7:6e:c5:77:55:8b:b7:a9:06:71:37:5e: 63:16:1b:62:fc:8f:2d:cf:47:4f:08:1b:b8:14:c0: 04:3e:7b:b8:a5:21:31:25:bb:0d:f5:5f:60:45:d9: 0c:65:cd:a2:6d:86:03:6f:fa:f6:09:50:ca:c0:86: fa:20:68:62:a5:6a:b3:68:8a:ec:dc:61:0d:07:67: eb:df:2e:c1:07:25:67:ff:28:ec:bd:97:6e:e9:19: ac:f9:7d:7c:16:a8:de:a7:ba:21:17:c3:6c:ad:b7: 08:9e:6f:f5:e5:92:92:57:1a:94:dd:90:fb:c8:2d: ce:f8:d4:76:3f:3e:e6:ba:16:b2:a7:ec:39:76:c7: d4:92:34:79:85:52:a6:71:c4:49:f4:d7:84:f9:ad: f0:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AB:95:9A:50:6B:37:11:D8:59:10:C0:57:28:7E:65:56:D1:2E:29:90 X509v3 Authority Key Identifier: keyid:BF:74:E7:E6:14:D4:B2:2E:4B:7F:E4:0B:6B:EC:EF:D1:70:5A:CF:C1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91324D4/1A6E751CA71F11EB848AF030C4F9AE02/v3Tn5hTUsi5Lf-QLa-zv0XBaz8E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/v3Tn5hTUsi5Lf-QLa-zv0XBaz8E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91324D4/1A6E751CA71F11EB848AF030C4F9AE02/v3Tn5hTUsi5Lf-QLa-zv0XBaz8E.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4b:7a:f4:a3:37:eb:af:7b:de:16:e7:16:73:32:6a:5a:2a:7d: 53:8a:2f:d5:ce:92:17:d0:cb:24:96:19:3f:d9:ed:5d:ab:9c: f4:ac:0d:7d:14:54:f6:e1:d8:08:01:30:e3:b9:81:05:65:75: fb:57:91:6e:06:3b:d2:d2:29:b6:c0:e3:82:1f:36:87:ba:11: a0:e2:68:64:ca:fd:89:e8:58:ba:88:f4:9d:a4:e5:5e:0b:75: 88:ac:49:96:36:3b:0a:a7:ec:dd:23:8c:26:42:e3:6b:95:8a: bd:e2:83:d9:2f:b3:a8:7c:39:a6:fa:84:c5:18:ce:6d:a4:1c: 29:cf:d5:be:a7:b8:2c:bb:0f:bb:57:c2:64:49:7e:01:e0:ea: 56:54:7d:71:c7:f0:09:3e:28:3c:45:d1:b1:a5:90:03:cf:b5: 44:53:0b:6d:ac:f5:08:63:21:7c:22:e9:63:4f:24:09:86:69: c2:48:80:94:7e:2f:e2:81:0c:03:38:04:8b:9b:ac:7a:07:74: df:d4:1e:09:2b:a2:64:fb:8a:16:9a:79:8b:e7:66:37:c1:78: e7:a6:4f:ef:fc:5e:4a:04:1d:ca:02:16:22:fb:ea:81:d2:e3: d7:13:04:f8:78:32:78:50:a0:0c:d7:53:19:2e:f8:cb:85:fe: 26:f3:9b:ae -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBiUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzI0RDQxMTAvBgNVBAUTKEJGNzRFN0U2MTRENEIyMkU0QjdGRTQwQjZCRUNFRkQx NzA1QUNGQzEwHhcNMjUwNDI0MjI0MzAxWhcNMjUwNTAxMjI0MzAxWjAYMRYwFAYD VQQDEw02ODBhYmU3NS02MDdiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzkwDP8rB2kPS+aZWlEHwoORU4EKWuMjz9naY3crC7m07cL/gCaR2jmHY7kLT DTk5Nk5jlkmWywGKG3om2d+qS9WTZ6hr0sj/J/zukQYO3tgwMA1L/jgUndo5lU/3 sNNc8Wt2hzZkxUPG5cj3bsV3VYu3qQZxN15jFhti/I8tz0dPCBu4FMAEPnu4pSEx JbsN9V9gRdkMZc2ibYYDb/r2CVDKwIb6IGhipWqzaIrs3GENB2fr3y7BByVn/yjs vZdu6Rms+X18Fqjep7ohF8NsrbcInm/15ZKSVxqU3ZD7yC3O+NR2Pz7muhayp+w5 dsfUkjR5hVKmccRJ9NeE+a3wFwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKuVmlBr NxHYWRDAVyh+ZVbRLimQMB8GA1UdIwQYMBaAFL905+YU1LIuS3/kC2vs79FwWs/B MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMjRENC8xQTZFNzUxQ0E3 MUYxMUVCODQ4QUYwMzBDNEY5QUUwMi92M1RuNWhUVXNpNUxmLVFMYS16djBYQmF6 OEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3YzVG41aFRVc2k1TGYtUUxhLXp2MFhCYXo4RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz MjRENC8xQTZFNzUxQ0E3MUYxMUVCODQ4QUYwMzBDNEY5QUUwMi92M1RuNWhUVXNp NUxmLVFMYS16djBYQmF6OEUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBLevSjN+uve94W5xZzMmpaKn1Tii/VzpIX0Msklhk/2e1dq5z0rA19 FFT24dgIATDjuYEFZXX7V5FuBjvS0im2wOOCHzaHuhGg4mhkyv2J6Fi6iPSdpOVe C3WIrEmWNjsKp+zdI4wmQuNrlYq94oPZL7OofDmm+oTFGM5tpBwpz9W+p7gsuw+7 V8JkSX4B4OpWVH1xx/AJPig8RdGxpZADz7VEUwttrPUIYyF8IuljTyQJhmnCSICU fi/igQwDOASLm6x6B3Tf1B4JK6Jk+4oWmnmL52Y3wXjnpk/v/F5KBB3KAhYi++qB 0uPXEwT4eDJ4UKAM11MZLvjLhf4m85uu -----END CERTIFICATE-----Generated at Sat Apr 26 13:41:51 2025 by rpki-client