$ rpki-client -vvf rpki.apnic.net/member_repository/A91B42CA/D34DB97E1DA011E283A1619208B02CD2/57DhU8QU0ThUitp16M0FzWk2cgY.mft File: 57DhU8QU0ThUitp16M0FzWk2cgY.mft (raw, json) Hash identifier: U1gf5gxnmuWgK4R87eBW8P8TuzxK/EX4r49Mic7lfow= Subject key identifier: 82:5F:C7:BD:EA:92:AC:0F:65:DB:87:04:EE:01:AE:9A:3C:E7:48:FF Authority key identifier: E7:B0:E1:53:C4:14:D1:38:54:8A:DA:75:E8:CD:05:CD:69:36:72:06 Certificate issuer: /CN=A91B42CA/serialNumber=E7B0E153C414D138548ADA75E8CD05CD69367206 Certificate serial: 3477 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/57DhU8QU0ThUitp16M0FzWk2cgY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B42CA/D34DB97E1DA011E283A1619208B02CD2/57DhU8QU0ThUitp16M0FzWk2cgY.mft Manifest number: 5254 Signing time: Wed 30 Apr 2025 15:04:28 +0000 Manifest this update: Wed 30 Apr 2025 15:04:27 +0000 Manifest next update: Wed 07 May 2025 15:04:27 +0000 Files and hashes: 1: 57DhU8QU0ThUitp16M0FzWk2cgY.crl (hash: b+BELWW60U/gVtYrsiz3csrpYfooJO/ivN8Kzn3zpmU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B42CA/D34DB97E1DA011E283A1619208B02CD2/57DhU8QU0ThUitp16M0FzWk2cgY.crl rsync://rpki.apnic.net/member_repository/A91B42CA/D34DB97E1DA011E283A1619208B02CD2/57DhU8QU0ThUitp16M0FzWk2cgY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/57DhU8QU0ThUitp16M0FzWk2cgY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 07 May 2025 15:04:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13431 (0x3477) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B42CA, serialNumber=E7B0E153C414D138548ADA75E8CD05CD69367206 Validity Not Before: Apr 30 15:04:27 2025 GMT Not After : May 7 15:04:27 2025 GMT Subject: CN=68123bfc-00c2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:48:fb:0e:bd:e1:c6:37:7b:40:93:1f:a8:2f: 7a:19:19:0e:2d:b2:77:a4:2b:de:87:3c:dc:81:53: 9c:2d:f3:38:6c:eb:66:8c:1e:47:ce:97:d5:07:30: 15:b4:81:22:11:96:c6:33:33:ba:b5:3c:f2:30:30: df:ac:51:34:fd:4f:71:6f:38:be:e1:da:db:83:39: af:99:73:8d:63:38:f0:47:17:17:12:52:57:d1:29: e4:bf:51:19:39:7d:68:bb:07:6a:ff:72:a8:1b:f6: 0c:a4:28:ed:40:6d:f2:2a:e1:d4:fc:8d:6f:9e:8e: df:ba:68:b5:ed:3f:3d:f0:64:ea:bc:a7:87:2e:6b: 9e:9f:45:be:55:3e:c3:f5:13:07:fa:d3:b1:bc:cf: 89:d5:b6:13:71:f0:69:01:9f:87:f5:a9:ce:62:37: 2f:0d:2a:df:cd:1b:b5:f7:e6:37:ab:f5:80:be:bf: 82:6b:3e:64:30:ca:31:40:6d:c1:f4:3e:cf:28:1c: b6:51:8c:9e:8b:7c:e9:93:97:ef:5e:94:70:b7:db: f9:bf:d6:29:60:55:e8:3b:98:f6:25:d6:06:9d:03: 5d:6f:63:71:ad:de:1e:e6:f0:98:35:d2:17:63:de: 31:f2:eb:b7:94:98:85:65:3f:c2:e1:b1:fc:d7:0a: 84:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 82:5F:C7:BD:EA:92:AC:0F:65:DB:87:04:EE:01:AE:9A:3C:E7:48:FF X509v3 Authority Key Identifier: keyid:E7:B0:E1:53:C4:14:D1:38:54:8A:DA:75:E8:CD:05:CD:69:36:72:06 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B42CA/D34DB97E1DA011E283A1619208B02CD2/57DhU8QU0ThUitp16M0FzWk2cgY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/57DhU8QU0ThUitp16M0FzWk2cgY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B42CA/D34DB97E1DA011E283A1619208B02CD2/57DhU8QU0ThUitp16M0FzWk2cgY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption bb:9b:fb:0b:4e:db:d2:bc:ca:e6:73:09:81:c1:18:6a:d8:68: a6:48:94:74:47:c0:bb:0b:bb:09:21:8f:03:c7:df:ec:36:a2: 04:42:e7:4b:b7:d7:f4:96:61:ce:fa:6a:94:0a:cb:7b:aa:30: ed:52:db:f2:90:d7:f0:df:f6:01:9b:2c:3d:be:61:2f:ab:91: 48:8c:93:c9:24:d6:8f:24:dc:9e:5f:17:dd:21:ec:2e:b1:79: fe:dd:b0:07:8d:28:32:a1:d1:05:7f:d5:20:ba:27:18:87:02: 11:4c:53:40:3b:ac:30:b6:f8:43:fa:21:bb:a4:e8:dd:1e:52: db:64:02:98:d4:84:43:5f:ef:c2:d5:31:d2:a8:0f:3c:3e:ac: 0d:95:b2:53:26:1f:46:63:04:a6:f9:69:8e:50:85:6a:75:c8: f1:f5:21:7a:3a:ae:5b:3e:59:97:4e:cf:c8:54:b0:c9:31:bf: ff:98:75:ce:66:7e:b7:9b:22:b0:26:6e:e9:4d:1b:00:dc:5b: 22:ed:68:ab:b6:fe:85:0e:6e:a5:23:d9:a9:54:c5:c1:3c:ca: bc:6e:6e:4d:7a:b3:f7:cc:27:87:f4:04:34:53:45:4e:a4:3a: 29:c5:e6:1d:12:61:d0:23:eb:4c:67:0f:1d:c0:a2:e8:26:04: 1f:e6:55:b2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNHcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjQyQ0ExMTAvBgNVBAUTKEU3QjBFMTUzQzQxNEQxMzg1NDhBREE3NUU4Q0QwNUNE NjkzNjcyMDYwHhcNMjUwNDMwMTUwNDI3WhcNMjUwNTA3MTUwNDI3WjAYMRYwFAYD VQQDEw02ODEyM2JmYy0wMGMyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwUj7Dr3hxjd7QJMfqC96GRkOLbJ3pCvehzzcgVOcLfM4bOtmjB5HzpfVBzAV tIEiEZbGMzO6tTzyMDDfrFE0/U9xbzi+4drbgzmvmXONYzjwRxcXElJX0Snkv1EZ OX1ouwdq/3KoG/YMpCjtQG3yKuHU/I1vno7fumi17T898GTqvKeHLmuen0W+VT7D 9RMH+tOxvM+J1bYTcfBpAZ+H9anOYjcvDSrfzRu19+Y3q/WAvr+Caz5kMMoxQG3B 9D7PKBy2UYyei3zpk5fvXpRwt9v5v9YpYFXoO5j2JdYGnQNdb2Nxrd4e5vCYNdIX Y94x8uu3lJiFZT/C4bH81wqECQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIJfx73q kqwPZduHBO4Brpo850j/MB8GA1UdIwQYMBaAFOew4VPEFNE4VIradejNBc1pNnIG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNDJDQS9EMzREQjk3RTFE QTAxMUUyODNBMTYxOTIwOEIwMkNEMi81N0RoVThRVTBUaFVpdHAxNk0wRnpXazJj Z1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzU3RGhVOFFVMFRoVWl0cDE2TTBGeldrMmNnWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NDJDQS9EMzREQjk3RTFEQTAxMUUyODNBMTYxOTIwOEIwMkNEMi81N0RoVThRVTBU aFVpdHAxNk0wRnpXazJjZ1kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC7m/sLTtvSvMrmcwmBwRhq2GimSJR0R8C7C7sJIY8Dx9/sNqIEQudL t9f0lmHO+mqUCst7qjDtUtvykNfw3/YBmyw9vmEvq5FIjJPJJNaPJNyeXxfdIewu sXn+3bAHjSgyodEFf9UguicYhwIRTFNAO6wwtvhD+iG7pOjdHlLbZAKY1IRDX+/C 1THSqA88PqwNlbJTJh9GYwSm+WmOUIVqdcjx9SF6Oq5bPlmXTs/IVLDJMb//mHXO Zn63myKwJm7pTRsA3Fsi7Wirtv6FDm6lI9mpVMXBPMq8bm5NerP3zCeH9AQ0U0VO pDopxeYdEmHQI+tMZw8dwKLoJgQf5lWy -----END CERTIFICATE-----Generated at Thu May 1 19:47:42 2025 by rpki-client