$ rpki-client -vvf rpki.apnic.net/member_repository/A91606AF/A0958F305ECD11EB90876372C4F9AE02/0efCSnRBTL3c_NiORsXVzTs-rtc.mft File: 0efCSnRBTL3c_NiORsXVzTs-rtc.mft (raw, json) Hash identifier: WePpJmxN9B+HwyriT6usRkhBY7egu3EF9APuCDz6YDk= Subject key identifier: 22:F2:33:F1:1A:73:00:C3:9E:F6:52:38:3D:0F:6F:6D:80:B6:FB:F9 Authority key identifier: D1:E7:C2:4A:74:41:4C:BD:DC:FC:D8:8E:46:C5:D5:CD:3B:3E:AE:D7 Certificate issuer: /CN=A91606AF/serialNumber=D1E7C24A74414CBDDCFCD88E46C5D5CD3B3EAED7 Certificate serial: 06F5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0efCSnRBTL3c_NiORsXVzTs-rtc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91606AF/A0958F305ECD11EB90876372C4F9AE02/0efCSnRBTL3c_NiORsXVzTs-rtc.mft Manifest number: 06DC Signing time: Fri 30 May 2025 22:19:44 +0000 Manifest this update: Fri 30 May 2025 22:19:43 +0000 Manifest next update: Fri 06 Jun 2025 22:19:43 +0000 Files and hashes: 1: 0efCSnRBTL3c_NiORsXVzTs-rtc.crl (hash: Fk9SYIEIqqjqQB/9u8rHuSugRPkBsfuZ8Jcs/4Jf8Uk=) 2: 8C2D64121CB011EDA4740D7EC4F9AE02.roa (hash: +fRxqOXyB3e8V6DJsPZloFZurNNVr8ZfU/q63aOPSF0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91606AF/A0958F305ECD11EB90876372C4F9AE02/0efCSnRBTL3c_NiORsXVzTs-rtc.crl rsync://rpki.apnic.net/member_repository/A91606AF/A0958F305ECD11EB90876372C4F9AE02/0efCSnRBTL3c_NiORsXVzTs-rtc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0efCSnRBTL3c_NiORsXVzTs-rtc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 22:19:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1781 (0x6f5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91606AF, serialNumber=D1E7C24A74414CBDDCFCD88E46C5D5CD3B3EAED7 Validity Not Before: May 30 22:19:43 2025 GMT Not After : Jun 6 22:19:43 2025 GMT Subject: CN=683a2eff-034d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:df:f8:f5:5a:2a:71:6f:19:a1:12:42:26:21: 8d:03:61:d5:2d:ae:2b:c6:c5:25:31:e5:ca:a2:c7: 93:b8:55:82:94:cc:f6:ea:fa:fc:13:4e:e7:76:9d: 4e:80:2e:be:35:d7:3f:7a:b1:ca:c2:bc:7a:77:fd: f3:00:1c:c6:46:01:80:00:23:fb:a5:46:1e:cf:1b: 05:cb:d2:cc:86:dd:ea:95:d1:ae:b9:3f:2d:07:2c: 1c:12:4a:1f:2f:46:bc:11:5e:1f:7b:20:3a:4b:6b: 3d:86:b5:5a:1c:4d:70:b1:c2:41:3d:f7:84:15:63: 8b:5e:d7:3a:03:5a:d0:37:5f:16:c8:18:ed:e8:0c: be:12:7d:3d:55:ea:f1:ed:03:cc:ad:78:74:e4:28: 5b:c1:b8:ec:90:e7:fa:02:5b:23:6a:9e:e1:3f:de: 4d:6b:4e:1e:2b:14:9f:41:c0:40:e2:2e:3d:ce:bc: 3e:a5:bb:f6:56:28:a4:fd:a1:b0:dd:8f:b4:39:03: 8e:fd:1e:78:13:65:06:18:80:b8:1f:f7:bf:d0:0b: 2c:ce:5f:fa:ca:08:0a:b9:2f:f1:3e:a6:f2:e9:8b: b7:1c:42:a0:d1:72:21:6b:d9:c5:5a:e2:4c:b1:cf: 8b:07:65:ab:42:1c:7d:76:51:3b:13:98:eb:ea:d5: f4:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 22:F2:33:F1:1A:73:00:C3:9E:F6:52:38:3D:0F:6F:6D:80:B6:FB:F9 X509v3 Authority Key Identifier: keyid:D1:E7:C2:4A:74:41:4C:BD:DC:FC:D8:8E:46:C5:D5:CD:3B:3E:AE:D7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91606AF/A0958F305ECD11EB90876372C4F9AE02/0efCSnRBTL3c_NiORsXVzTs-rtc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0efCSnRBTL3c_NiORsXVzTs-rtc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91606AF/A0958F305ECD11EB90876372C4F9AE02/0efCSnRBTL3c_NiORsXVzTs-rtc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 77:c0:25:33:21:12:fd:bf:7e:87:4f:ff:96:37:6b:6a:1b:cc: f6:1f:d0:ca:32:d2:a4:ee:57:df:21:d4:f1:1e:7e:1e:6c:4d: 70:e1:35:00:69:c8:71:76:43:7a:b4:be:1c:0c:52:4d:85:5f: a0:33:fc:1d:34:73:ab:b2:2f:38:8a:80:0d:ab:a0:e1:c8:55: 87:a7:e4:bd:75:d9:57:0f:ea:8c:24:8c:f3:d5:35:bc:69:47: 9b:85:14:02:b1:0c:64:a6:d9:11:1d:fe:53:7d:aa:c4:c7:44: f8:cd:ed:00:84:2d:10:e7:36:35:e5:89:6a:51:06:f5:70:c4: 6a:ab:17:f5:47:83:b2:ae:b1:d5:0a:1c:6c:39:41:f9:3f:e1: 10:70:f5:61:54:98:0c:ef:ea:58:09:c2:48:06:91:5a:19:36: 3b:f5:16:60:77:bd:9a:11:a9:dd:9f:1b:54:03:8b:c0:ce:5e: dc:81:65:8f:68:44:e2:6c:f4:7e:d5:28:cd:3b:a8:43:6f:3b: 0c:a4:61:68:37:93:82:2a:0a:f3:ec:0f:df:3f:f9:92:72:09: b1:a4:19:78:ae:78:32:fd:82:c7:b0:65:93:fa:88:a0:e3:7b: 96:6a:a8:fa:ac:8a:42:89:8c:77:5b:b2:d2:34:d3:23:7a:ba: 18:95:0b:fd -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBvUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjA2QUYxMTAvBgNVBAUTKEQxRTdDMjRBNzQ0MTRDQkREQ0ZDRDg4RTQ2QzVENUNE M0IzRUFFRDcwHhcNMjUwNTMwMjIxOTQzWhcNMjUwNjA2MjIxOTQzWjAYMRYwFAYD VQQDEw02ODNhMmVmZi0wMzRkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA09/49VoqcW8ZoRJCJiGNA2HVLa4rxsUlMeXKoseTuFWClMz26vr8E07ndp1O gC6+Ndc/erHKwrx6d/3zABzGRgGAACP7pUYezxsFy9LMht3qldGuuT8tBywcEkof L0a8EV4feyA6S2s9hrVaHE1wscJBPfeEFWOLXtc6A1rQN18WyBjt6Ay+En09Verx 7QPMrXh05ChbwbjskOf6Alsjap7hP95Na04eKxSfQcBA4i49zrw+pbv2Viik/aGw 3Y+0OQOO/R54E2UGGIC4H/e/0Asszl/6yggKuS/xPqby6Yu3HEKg0XIha9nFWuJM sc+LB2WrQhx9dlE7E5jr6tX0nQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCLyM/Ea cwDDnvZSOD0Pb22Atvv5MB8GA1UdIwQYMBaAFNHnwkp0QUy93PzYjkbF1c07Pq7X MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MDZBRi9BMDk1OEYzMDVF Q0QxMUVCOTA4NzYzNzJDNEY5QUUwMi8wZWZDU25SQlRMM2NfTmlPUnNYVnpUcy1y dGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzBlZkNTblJCVEwzY19OaU9Sc1hWelRzLXJ0Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 MDZBRi9BMDk1OEYzMDVFQ0QxMUVCOTA4NzYzNzJDNEY5QUUwMi8wZWZDU25SQlRM M2NfTmlPUnNYVnpUcy1ydGMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB3wCUzIRL9v36HT/+WN2tqG8z2H9DKMtKk7lffIdTxHn4ebE1w4TUA achxdkN6tL4cDFJNhV+gM/wdNHOrsi84ioANq6DhyFWHp+S9ddlXD+qMJIzz1TW8 aUebhRQCsQxkptkRHf5TfarEx0T4ze0AhC0Q5zY15YlqUQb1cMRqqxf1R4OyrrHV ChxsOUH5P+EQcPVhVJgM7+pYCcJIBpFaGTY79RZgd72aEandnxtUA4vAzl7cgWWP aETibPR+1SjNO6hDbzsMpGFoN5OCKgrz7A/fP/mScgmxpBl4rngy/YLHsGWT+oig 43uWaqj6rIpCiYx3W7LSNNMjeroYlQv9 -----END CERTIFICATE-----Generated at Sat May 31 14:35:08 2025 by rpki-client