$ rpki-client -vvf rpki.apnic.net/member_repository/A91238D6/28990530BE5411E58DCC4357C4F9AE02/cUuijdg1p9QZcB-tNyo0t8Zs-qA.mft File: cUuijdg1p9QZcB-tNyo0t8Zs-qA.mft (raw, json) Hash identifier: /9/lKGs8Z7TpjuMq8hnjs0GlGg/hwLZQBGqF7kyrYL8= Subject key identifier: B8:CA:E8:19:06:92:04:C4:AD:EB:B4:9E:57:7A:D9:83:66:4B:4B:88 Authority key identifier: 71:4B:A2:8D:D8:35:A7:D4:19:70:1F:AD:37:2A:34:B7:C6:6C:FA:A0 Certificate issuer: /CN=A91238D6/serialNumber=714BA28DD835A7D419701FAD372A34B7C66CFAA0 Certificate serial: 2269 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cUuijdg1p9QZcB-tNyo0t8Zs-qA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91238D6/28990530BE5411E58DCC4357C4F9AE02/cUuijdg1p9QZcB-tNyo0t8Zs-qA.mft Manifest number: 2237 Signing time: Sat 31 May 2025 15:50:33 +0000 Manifest this update: Sat 31 May 2025 15:50:32 +0000 Manifest next update: Sat 07 Jun 2025 15:50:32 +0000 Files and hashes: 1: cUuijdg1p9QZcB-tNyo0t8Zs-qA.crl (hash: 3tTihKtSnLNCTSqQ6DTX/EiV+JBjNINE5EHilAX5rmo=) 2: BB62FBD82AEC11EA972CB627C4F9AE02.roa (hash: KdmEZEpKoLyIMn6+XZO0IZiKVzRjxKxZXmexqgggUFU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91238D6/28990530BE5411E58DCC4357C4F9AE02/cUuijdg1p9QZcB-tNyo0t8Zs-qA.crl rsync://rpki.apnic.net/member_repository/A91238D6/28990530BE5411E58DCC4357C4F9AE02/cUuijdg1p9QZcB-tNyo0t8Zs-qA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cUuijdg1p9QZcB-tNyo0t8Zs-qA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 15:50:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8809 (0x2269) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91238D6, serialNumber=714BA28DD835A7D419701FAD372A34B7C66CFAA0 Validity Not Before: May 31 15:50:32 2025 GMT Not After : Jun 7 15:50:32 2025 GMT Subject: CN=683b2548-6891 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:9d:38:92:23:f2:b7:17:d8:f5:c3:30:68:70: 43:a7:37:31:52:56:ab:23:ea:4b:12:02:2d:e0:d9: 31:5d:25:52:e6:4f:90:89:38:a0:a3:e4:c0:0d:8a: d3:28:88:70:d4:75:90:a2:ff:6b:93:26:e7:a1:01: c6:0f:46:9e:83:a7:27:5e:5b:7e:23:8d:a2:40:60: 6f:64:01:cc:13:e2:57:c6:dc:0d:4f:ab:ea:8a:72: bf:3d:b8:53:ab:1f:c5:fc:b7:8d:51:3b:30:dd:2f: fe:21:5a:cf:b7:ab:80:b0:bf:4a:eb:bb:5e:84:26: 2d:d1:b8:20:7b:85:d9:fb:00:3d:f1:fa:cc:c4:69: 09:9d:7d:50:87:38:a2:a5:7a:57:45:4e:c3:79:cf: 6d:52:c5:8e:f3:77:56:7b:a1:66:2b:9b:98:45:d7: 91:14:58:4a:79:53:e8:8a:bd:1f:b7:64:e5:d7:c1: 67:e0:db:86:60:3a:1f:02:f3:b0:01:e9:f4:f5:9d: ff:87:19:b5:45:a0:f5:a1:9d:6f:b3:5d:c0:d6:3a: 34:ae:9f:0f:7f:eb:64:d3:c3:f2:8b:a1:1f:07:33: f1:be:51:bd:3c:23:e7:f4:5c:69:3f:30:d8:99:7a: bc:9d:87:82:dd:78:c0:05:47:db:2d:ab:29:b9:6b: bd:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B8:CA:E8:19:06:92:04:C4:AD:EB:B4:9E:57:7A:D9:83:66:4B:4B:88 X509v3 Authority Key Identifier: keyid:71:4B:A2:8D:D8:35:A7:D4:19:70:1F:AD:37:2A:34:B7:C6:6C:FA:A0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91238D6/28990530BE5411E58DCC4357C4F9AE02/cUuijdg1p9QZcB-tNyo0t8Zs-qA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cUuijdg1p9QZcB-tNyo0t8Zs-qA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91238D6/28990530BE5411E58DCC4357C4F9AE02/cUuijdg1p9QZcB-tNyo0t8Zs-qA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 26:b3:cc:1d:91:54:a6:06:2a:ca:7d:fe:46:40:da:48:88:07: 09:5b:e5:f5:a9:79:62:c5:08:43:a6:c7:c5:17:bb:83:81:20: 3f:6a:82:b8:35:6d:ac:ab:22:5b:88:2f:68:83:7f:44:d3:c2: e3:b7:c1:64:72:4c:b0:43:23:2e:7f:41:30:cb:90:39:f3:29: 1d:21:09:16:3a:6f:2d:ac:ed:44:94:0f:56:c4:b9:36:77:c1: 82:89:78:b2:ad:02:ab:e1:fc:4d:5c:df:d0:46:f4:c1:0f:b9: 61:8c:0c:39:f1:fa:48:95:d2:de:f8:42:31:fe:02:ce:0c:18: e1:54:62:83:3a:94:91:b5:9d:fa:69:87:90:9a:6e:29:6a:0a: 43:3b:4d:95:30:f3:45:72:cf:a6:5d:a0:cb:0b:74:03:05:fe: 74:69:b9:c2:12:13:a8:78:99:98:92:bc:db:0b:d8:97:45:50: a3:e8:4a:45:1b:a2:ac:31:12:7a:60:cb:2c:c6:9e:48:7b:0f: 3b:4c:34:e1:66:46:19:7a:0b:f7:4d:32:09:85:31:db:e5:db: e5:29:b0:a9:c8:38:b7:00:47:8b:38:b9:52:ac:23:c2:45:f4: b3:41:f2:25:5a:21:04:dc:89:56:1e:c1:19:c5:7b:6e:d0:70: f0:ab:99:87 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICImkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjM4RDYxMTAvBgNVBAUTKDcxNEJBMjhERDgzNUE3RDQxOTcwMUZBRDM3MkEzNEI3 QzY2Q0ZBQTAwHhcNMjUwNTMxMTU1MDMyWhcNMjUwNjA3MTU1MDMyWjAYMRYwFAYD VQQDEw02ODNiMjU0OC02ODkxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqZ04kiPytxfY9cMwaHBDpzcxUlarI+pLEgIt4NkxXSVS5k+QiTigo+TADYrT KIhw1HWQov9rkybnoQHGD0aeg6cnXlt+I42iQGBvZAHME+JXxtwNT6vqinK/PbhT qx/F/LeNUTsw3S/+IVrPt6uAsL9K67tehCYt0bgge4XZ+wA98frMxGkJnX1Qhzii pXpXRU7Dec9tUsWO83dWe6FmK5uYRdeRFFhKeVPoir0ft2Tl18Fn4NuGYDofAvOw Aen09Z3/hxm1RaD1oZ1vs13A1jo0rp8Pf+tk08Pyi6EfBzPxvlG9PCPn9FxpPzDY mXq8nYeC3XjABUfbLaspuWu9TwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLjK6BkG kgTEreu0nld62YNmS0uIMB8GA1UdIwQYMBaAFHFLoo3YNafUGXAfrTcqNLfGbPqg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMzhENi8yODk5MDUzMEJF NTQxMUU1OERDQzQzNTdDNEY5QUUwMi9jVXVpamRnMXA5UVpjQi10TnlvMHQ4WnMt cUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NVdWlqZGcxcDlRWmNCLXROeW8wdDhacy1xQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy MzhENi8yODk5MDUzMEJFNTQxMUU1OERDQzQzNTdDNEY5QUUwMi9jVXVpamRnMXA5 UVpjQi10TnlvMHQ4WnMtcUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAms8wdkVSmBirKff5GQNpIiAcJW+X1qXlixQhDpsfFF7uDgSA/aoK4 NW2sqyJbiC9og39E08Ljt8FkckywQyMuf0Ewy5A58ykdIQkWOm8trO1ElA9WxLk2 d8GCiXiyrQKr4fxNXN/QRvTBD7lhjAw58fpIldLe+EIx/gLODBjhVGKDOpSRtZ36 aYeQmm4pagpDO02VMPNFcs+mXaDLC3QDBf50abnCEhOoeJmYkrzbC9iXRVCj6EpF G6KsMRJ6YMssxp5Iew87TDThZkYZegv3TTIJhTHb5dvlKbCpyDi3AEeLOLlSrCPC RfSzQfIlWiEE3IlWHsEZxXtu0HDwq5mH -----END CERTIFICATE-----Generated at Sat May 31 17:54:47 2025 by rpki-client