$ rpki-client -vvf rpki.apnic.net/member_repository/A91167F7/BFD3EB1A541611EBA4D56863C4F9AE02/RMCz5V6PTVgxhgXnITScArKJwv0.mft File: RMCz5V6PTVgxhgXnITScArKJwv0.mft (raw, json) Hash identifier: tjmmp4f7ysIdxRp+QxNdXViDKuI7fdNKdQfZPvXiZwc= Subject key identifier: 40:B5:02:6A:A7:2F:41:2A:DC:90:A1:15:F1:1B:EE:BA:23:F4:A5:47 Authority key identifier: 44:C0:B3:E5:5E:8F:4D:58:31:86:05:E7:21:34:9C:02:B2:89:C2:FD Certificate issuer: /CN=A91167F7/serialNumber=44C0B3E55E8F4D58318605E721349C02B289C2FD Certificate serial: 06DA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RMCz5V6PTVgxhgXnITScArKJwv0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91167F7/BFD3EB1A541611EBA4D56863C4F9AE02/RMCz5V6PTVgxhgXnITScArKJwv0.mft Manifest number: 06D5 Signing time: Fri 30 May 2025 22:13:25 +0000 Manifest this update: Fri 30 May 2025 22:13:25 +0000 Manifest next update: Fri 06 Jun 2025 22:13:25 +0000 Files and hashes: 1: RMCz5V6PTVgxhgXnITScArKJwv0.crl (hash: KzTeuK7VFLONLs9HWwqlgEAVRRNUL4hauzcMmINLY+Q=) 2: 980A0D7254B511EBAC30E864C4F9AE02.roa (hash: PrgqmGPVCZutr73KuPF9z7k4L5rKkcCQ9HWUA608bqU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91167F7/BFD3EB1A541611EBA4D56863C4F9AE02/RMCz5V6PTVgxhgXnITScArKJwv0.crl rsync://rpki.apnic.net/member_repository/A91167F7/BFD3EB1A541611EBA4D56863C4F9AE02/RMCz5V6PTVgxhgXnITScArKJwv0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RMCz5V6PTVgxhgXnITScArKJwv0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 22:13:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1754 (0x6da) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91167F7, serialNumber=44C0B3E55E8F4D58318605E721349C02B289C2FD Validity Not Before: May 30 22:13:25 2025 GMT Not After : Jun 6 22:13:25 2025 GMT Subject: CN=683a2d85-5caf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:49:71:a5:06:42:36:3c:05:1e:b2:0f:fe:6a: 22:8a:6b:6c:84:6f:32:87:f0:11:51:ed:5a:86:cf: 37:9c:b3:b8:55:da:7e:02:18:19:11:c0:2c:1b:2c: 24:ef:59:9e:bb:88:06:ec:30:85:4e:58:02:99:23: 5c:c3:a0:25:12:52:0b:08:b2:9c:89:be:cf:d3:d5: bd:bd:d2:d5:28:a8:56:8a:8b:d1:c2:59:e4:02:94: 74:a7:33:16:36:18:95:6b:a4:78:f7:be:2f:64:a7: d4:d3:f5:d7:d4:e3:14:27:23:39:22:95:db:6a:07: 6c:94:80:bb:34:5d:2d:c2:e2:44:63:d5:e9:f9:3e: d9:16:c3:bb:b6:0e:9c:d6:77:05:ee:49:ac:bf:d1: b5:90:df:f7:b8:9a:24:20:69:1a:99:eb:fc:1a:30: 16:e1:87:5f:8f:ac:31:83:7a:81:2b:81:29:56:36: bd:91:ec:6e:f7:8b:dc:34:3e:4f:1a:89:00:27:41: 15:60:8b:9a:f3:d4:2a:da:5a:68:6d:c6:cd:ac:7b: f6:7a:4b:7d:e0:e0:68:fb:6d:21:81:38:d8:30:20: 54:2e:43:f1:44:8d:6a:5f:04:4c:7b:aa:02:db:e1: a6:31:42:ed:46:c1:c3:17:b5:e1:3f:69:85:e6:5c: 24:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 40:B5:02:6A:A7:2F:41:2A:DC:90:A1:15:F1:1B:EE:BA:23:F4:A5:47 X509v3 Authority Key Identifier: keyid:44:C0:B3:E5:5E:8F:4D:58:31:86:05:E7:21:34:9C:02:B2:89:C2:FD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91167F7/BFD3EB1A541611EBA4D56863C4F9AE02/RMCz5V6PTVgxhgXnITScArKJwv0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RMCz5V6PTVgxhgXnITScArKJwv0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91167F7/BFD3EB1A541611EBA4D56863C4F9AE02/RMCz5V6PTVgxhgXnITScArKJwv0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 02:13:32:5e:45:53:d6:42:1f:03:9f:10:63:61:10:3b:34:d2: 93:ef:0e:2e:bd:d5:08:23:37:61:f2:4b:8c:6d:a0:c0:48:a7: 71:e2:a0:33:89:d1:b0:97:75:ef:8c:5e:43:0b:fd:3c:8c:29: ee:5f:d6:4b:ae:32:2b:5b:32:95:9c:6a:ab:ee:58:bd:86:fc: ea:f2:83:12:a0:28:f7:57:36:93:e1:41:62:41:41:93:7e:18: a8:72:51:e4:3a:df:57:33:ae:68:2f:2d:15:55:f4:99:a2:d6: 0c:89:5a:0b:62:af:35:2a:39:84:af:10:54:a1:0d:a6:79:1a: c6:4a:dd:63:b7:af:40:22:31:04:d9:de:b1:8d:93:9f:6f:81: 65:75:60:29:c6:9c:ec:70:62:ae:08:92:97:5e:03:fd:b9:e6: ae:7f:d1:51:ce:2b:af:66:1a:4d:dd:e4:c7:e9:61:24:8b:db: 70:8b:95:73:2d:5c:90:b2:93:8e:96:bc:1b:a0:80:4c:21:5a: 7c:ac:b8:6c:a2:1c:95:13:c6:c2:a8:38:1d:40:7f:4f:b9:6d: 70:38:e8:93:77:cd:27:ea:56:a7:6d:b4:99:22:a4:b3:8f:6c: 71:c6:4a:8a:d6:87:06:50:a7:0c:e7:cd:3d:36:3b:9d:62:81: 4f:2e:f4:a2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBtowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTY3RjcxMTAvBgNVBAUTKDQ0QzBCM0U1NUU4RjRENTgzMTg2MDVFNzIxMzQ5QzAy QjI4OUMyRkQwHhcNMjUwNTMwMjIxMzI1WhcNMjUwNjA2MjIxMzI1WjAYMRYwFAYD VQQDEw02ODNhMmQ4NS01Y2FmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv0lxpQZCNjwFHrIP/moiimtshG8yh/ARUe1ahs83nLO4Vdp+AhgZEcAsGywk 71meu4gG7DCFTlgCmSNcw6AlElILCLKcib7P09W9vdLVKKhWiovRwlnkApR0pzMW NhiVa6R4974vZKfU0/XX1OMUJyM5IpXbagdslIC7NF0twuJEY9Xp+T7ZFsO7tg6c 1ncF7kmsv9G1kN/3uJokIGkamev8GjAW4Ydfj6wxg3qBK4EpVja9kexu94vcND5P GokAJ0EVYIua89Qq2lpobcbNrHv2ekt94OBo+20hgTjYMCBULkPxRI1qXwRMe6oC 2+GmMULtRsHDF7XhP2mF5lwkRQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEC1Amqn L0Eq3JChFfEb7roj9KVHMB8GA1UdIwQYMBaAFETAs+Vej01YMYYF5yE0nAKyicL9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExNjdGNy9CRkQzRUIxQTU0 MTYxMUVCQTRENTY4NjNDNEY5QUUwMi9STUN6NVY2UFRWZ3hoZ1huSVRTY0FyS0p3 djAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1JNQ3o1VjZQVFZneGhnWG5JVFNjQXJLSnd2MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx NjdGNy9CRkQzRUIxQTU0MTYxMUVCQTRENTY4NjNDNEY5QUUwMi9STUN6NVY2UFRW Z3hoZ1huSVRTY0FyS0p3djAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQACEzJeRVPWQh8DnxBjYRA7NNKT7w4uvdUIIzdh8kuMbaDASKdx4qAz idGwl3XvjF5DC/08jCnuX9ZLrjIrWzKVnGqr7li9hvzq8oMSoCj3VzaT4UFiQUGT fhioclHkOt9XM65oLy0VVfSZotYMiVoLYq81KjmErxBUoQ2meRrGSt1jt69AIjEE 2d6xjZOfb4FldWApxpzscGKuCJKXXgP9ueauf9FRziuvZhpN3eTH6WEki9twi5Vz LVyQspOOlrwboIBMIVp8rLhsohyVE8bCqDgdQH9PuW1wOOiTd80n6lanbbSZIqSz j2xxxkqK1ocGUKcM5809NjudYoFPLvSi -----END CERTIFICATE-----Generated at Sat May 31 16:33:01 2025 by rpki-client