$ rpki-client -vvf rpki.apnic.net/member_repository/A91298DA/34F3612E268111EA903D7058C4F9AE02/_KoIYibfAq-DlPqyLR-5bgt9Zd0.mft File: _KoIYibfAq-DlPqyLR-5bgt9Zd0.mft (raw, json) Hash identifier: gj+6HKPzmmrKurts2Uun7PT5tyD9+C/v4CbA6j1ZriA= Subject key identifier: E2:B5:AE:A1:56:0C:D9:08:CA:5E:77:4A:CD:FE:11:E3:D2:5C:A7:44 Authority key identifier: FC:AA:08:62:26:DF:02:AF:83:94:FA:B2:2D:1F:B9:6E:0B:7D:65:DD Certificate issuer: /CN=A91298DA/serialNumber=FCAA086226DF02AF8394FAB22D1FB96E0B7D65DD Certificate serial: 0BE7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_KoIYibfAq-DlPqyLR-5bgt9Zd0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91298DA/34F3612E268111EA903D7058C4F9AE02/_KoIYibfAq-DlPqyLR-5bgt9Zd0.mft Manifest number: 0BBF Signing time: Fri 30 May 2025 19:14:16 +0000 Manifest this update: Fri 30 May 2025 19:14:16 +0000 Manifest next update: Fri 06 Jun 2025 19:14:16 +0000 Files and hashes: 1: _KoIYibfAq-DlPqyLR-5bgt9Zd0.crl (hash: foh7FAhWSk5gxmFeHLZVIJ60CED1gfvJCGFvr+NL+jc=) 2: E2D5171C2F3211ED958A415DC4F9AE02.roa (hash: x2iHWFegIFwfUv7eETVYAeYmpK9xBEA15+t682RT6r8=) 3: 7EA6AA5AD3CF11EF83B35E4BC4F9AE02.roa (hash: HEe7VNuX7EdIFoXhV7ZXJbH5Hpg/0XZZaoQHMFD0pfY=) 4: 1667FF9C5DF611EF919BDB31C4F9AE02.roa (hash: bYDuNI3W6+4EZSV4cW7DNvBB9NpXjXY4h4lfRb3nwhQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91298DA/34F3612E268111EA903D7058C4F9AE02/_KoIYibfAq-DlPqyLR-5bgt9Zd0.crl rsync://rpki.apnic.net/member_repository/A91298DA/34F3612E268111EA903D7058C4F9AE02/_KoIYibfAq-DlPqyLR-5bgt9Zd0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_KoIYibfAq-DlPqyLR-5bgt9Zd0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 19:14:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3047 (0xbe7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91298DA, serialNumber=FCAA086226DF02AF8394FAB22D1FB96E0B7D65DD Validity Not Before: May 30 19:14:16 2025 GMT Not After : Jun 6 19:14:16 2025 GMT Subject: CN=683a0388-fc0b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:b4:f0:82:47:9a:04:8b:c3:fb:82:2f:76:cb: 8a:18:d8:76:6f:30:07:c4:e7:33:f7:d8:75:df:c1: 70:0f:4b:7d:3a:a8:3a:8d:20:54:2d:c3:53:e0:9d: 9d:f4:2f:0e:14:38:71:1a:3e:db:58:49:dd:57:f7: 87:05:17:6b:09:b4:f0:1c:0a:1b:a5:03:52:64:cf: 51:e6:63:6a:9b:b2:23:28:20:c0:32:1c:25:2e:b2: 99:18:8b:2f:ec:1b:bf:6d:4d:df:4d:30:ac:c7:07: 76:67:13:26:bc:a2:53:c9:36:d9:c6:60:aa:11:bd: d2:91:de:5c:c2:23:d0:54:1c:8f:c4:85:18:84:e5: 51:0a:a4:0a:f2:46:2c:9c:33:1e:fa:94:88:a2:20: 78:b2:dd:96:32:52:de:8f:f8:7c:90:c2:8d:bd:2a: 69:5e:e4:48:e9:fd:5c:91:84:8b:de:20:45:12:88: f8:5c:85:97:cd:8a:a9:17:f7:b0:61:20:a5:99:6d: 35:94:8e:e9:e3:a8:8f:01:ca:1b:6c:aa:f3:48:aa: c8:62:7c:fd:fc:2e:39:bf:a3:8c:48:1f:89:de:0e: 96:f9:b5:9b:c7:86:f0:6d:16:6c:82:5c:f3:f9:44: b4:dd:50:b3:02:bc:75:1e:bf:86:bf:a8:03:e7:21: 81:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E2:B5:AE:A1:56:0C:D9:08:CA:5E:77:4A:CD:FE:11:E3:D2:5C:A7:44 X509v3 Authority Key Identifier: keyid:FC:AA:08:62:26:DF:02:AF:83:94:FA:B2:2D:1F:B9:6E:0B:7D:65:DD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91298DA/34F3612E268111EA903D7058C4F9AE02/_KoIYibfAq-DlPqyLR-5bgt9Zd0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_KoIYibfAq-DlPqyLR-5bgt9Zd0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91298DA/34F3612E268111EA903D7058C4F9AE02/_KoIYibfAq-DlPqyLR-5bgt9Zd0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8b:9f:54:2d:17:89:4c:55:86:9b:db:42:8d:71:7d:87:23:67: 80:c3:c9:fc:55:b4:ee:49:e1:4d:99:a3:48:4e:86:81:b5:23: 46:53:f8:e1:e9:40:c9:ec:e5:93:5f:9d:59:ff:53:f9:4f:f7: a3:5b:08:db:42:0f:de:99:a6:2a:f7:b5:81:04:02:32:77:c0: 81:e1:fa:77:4a:df:0d:ee:eb:7d:ca:70:7e:d7:39:e4:15:95: bf:a1:dc:30:92:ce:e3:42:6d:26:4f:e9:44:86:74:ef:be:1e: 04:e9:8c:5a:97:d2:c0:70:4c:01:f7:b1:b1:21:b2:06:85:4f: 1b:d2:e1:2c:2d:b8:c3:9b:f2:e3:82:f1:8e:ba:31:c6:c0:dd: 83:b3:f4:41:ec:84:5d:c9:8f:86:dd:0d:f8:5f:e5:ed:98:75: 4f:8d:be:9b:83:ef:83:2a:3c:b5:90:7e:f0:bd:80:7b:18:27: 21:a6:72:e1:91:de:6c:30:3c:65:12:f3:77:96:dd:cc:2b:23: b0:21:9b:67:77:13:a0:c8:dd:2c:0c:69:9e:69:68:64:fa:24: bf:8a:1f:6a:2a:af:56:06:bc:91:51:4e:68:17:31:d1:59:df: 1b:92:a0:bc:e0:74:3a:a2:a9:ec:7c:c7:eb:2f:f2:06:1c:28: ff:f7:12:4d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC+cwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mjk4REExMTAvBgNVBAUTKEZDQUEwODYyMjZERjAyQUY4Mzk0RkFCMjJEMUZCOTZF MEI3RDY1REQwHhcNMjUwNTMwMTkxNDE2WhcNMjUwNjA2MTkxNDE2WjAYMRYwFAYD VQQDEw02ODNhMDM4OC1mYzBiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3LTwgkeaBIvD+4IvdsuKGNh2bzAHxOcz99h138FwD0t9Oqg6jSBULcNT4J2d 9C8OFDhxGj7bWEndV/eHBRdrCbTwHAobpQNSZM9R5mNqm7IjKCDAMhwlLrKZGIsv 7Bu/bU3fTTCsxwd2ZxMmvKJTyTbZxmCqEb3Skd5cwiPQVByPxIUYhOVRCqQK8kYs nDMe+pSIoiB4st2WMlLej/h8kMKNvSppXuRI6f1ckYSL3iBFEoj4XIWXzYqpF/ew YSClmW01lI7p46iPAcobbKrzSKrIYnz9/C45v6OMSB+J3g6W+bWbx4bwbRZsglzz +US03VCzArx1Hr+Gv6gD5yGBmwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOK1rqFW DNkIyl53Ss3+EePSXKdEMB8GA1UdIwQYMBaAFPyqCGIm3wKvg5T6si0fuW4LfWXd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyOThEQS8zNEYzNjEyRTI2 ODExMUVBOTAzRDcwNThDNEY5QUUwMi9fS29JWWliZkFxLURsUHF5TFItNWJndDla ZDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL19Lb0lZaWJmQXEtRGxQcXlMUi01Ymd0OVpkMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy OThEQS8zNEYzNjEyRTI2ODExMUVBOTAzRDcwNThDNEY5QUUwMi9fS29JWWliZkFx LURsUHF5TFItNWJndDlaZDAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCLn1QtF4lMVYab20KNcX2HI2eAw8n8VbTuSeFNmaNIToaBtSNGU/jh 6UDJ7OWTX51Z/1P5T/ejWwjbQg/emaYq97WBBAIyd8CB4fp3St8N7ut9ynB+1znk FZW/odwwks7jQm0mT+lEhnTvvh4E6Yxal9LAcEwB97GxIbIGhU8b0uEsLbjDm/Lj gvGOujHGwN2Ds/RB7IRdyY+G3Q34X+XtmHVPjb6bg++DKjy1kH7wvYB7GCchpnLh kd5sMDxlEvN3lt3MKyOwIZtndxOgyN0sDGmeaWhk+iS/ih9qKq9WBryRUU5oFzHR Wd8bkqC84HQ6oqnsfMfrL/IGHCj/9xJN -----END CERTIFICATE-----Generated at Sat May 31 17:00:16 2025 by rpki-client