$ rpki-client -vvf rpki.apnic.net/member_repository/A916C2B9/306699CAC2A211EE91D9535CC4F9AE02/cBB77LhKxM5elcxh0RCmcj-QycM.mft File: cBB77LhKxM5elcxh0RCmcj-QycM.mft (raw, json) Hash identifier: VsjAM7xzGDpL+DxCj1VX2Xh4W68lV3gec8vWYi/1wRs= Subject key identifier: 31:DE:10:1F:22:C4:BD:8C:18:F8:14:3E:03:D6:ED:8F:98:5C:25:88 Authority key identifier: 70:10:7B:EC:B8:4A:C4:CE:5E:95:CC:61:D1:10:A6:72:3F:90:C9:C3 Certificate issuer: /CN=A916C2B9/serialNumber=70107BECB84AC4CE5E95CC61D110A6723F90C9C3 Certificate serial: FC Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/cBB77LhKxM5elcxh0RCmcj-QycM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916C2B9/306699CAC2A211EE91D9535CC4F9AE02/cBB77LhKxM5elcxh0RCmcj-QycM.mft Manifest number: FA Signing time: Tue 03 Jun 2025 04:55:26 +0000 Manifest this update: Tue 03 Jun 2025 04:55:25 +0000 Manifest next update: Tue 10 Jun 2025 04:55:25 +0000 Files and hashes: 1: cBB77LhKxM5elcxh0RCmcj-QycM.crl (hash: G1s5kXv+ynj4W6OavxhzhSOunWkP7EyDOwSMXPdRINk=) 2: 4FB5C8F4C43D11EE973ADE48C4F9AE02.roa (hash: 1zjPjAAMi/TzSsloil5toyL9PUAMXEmH20tRK4X3XV8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916C2B9/306699CAC2A211EE91D9535CC4F9AE02/cBB77LhKxM5elcxh0RCmcj-QycM.crl rsync://rpki.apnic.net/member_repository/A916C2B9/306699CAC2A211EE91D9535CC4F9AE02/cBB77LhKxM5elcxh0RCmcj-QycM.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/cBB77LhKxM5elcxh0RCmcj-QycM.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 10 Jun 2025 04:55:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 252 (0xfc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916C2B9, serialNumber=70107BECB84AC4CE5E95CC61D110A6723F90C9C3 Validity Not Before: Jun 3 04:55:25 2025 GMT Not After : Jun 10 04:55:25 2025 GMT Subject: CN=683e803e-8a8a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:d7:34:52:43:70:ec:7d:52:83:00:48:77:e1: 48:7c:28:ce:e2:5c:ea:69:4a:2c:67:9d:14:55:38: d1:d8:56:77:68:e9:6f:9f:94:88:c1:34:ff:91:57: 7d:0e:d0:4b:e8:e3:03:aa:0d:5a:05:9f:4d:09:19: 2d:2b:e5:02:e2:ba:bd:c9:cf:0b:fb:e8:a0:12:88: be:81:98:1f:ab:89:d8:18:71:4f:a3:16:bc:8b:e5: c2:3a:b8:98:cf:af:ec:61:80:1d:b7:45:25:20:ea: 9b:ed:29:bd:98:af:82:3a:d1:fe:59:87:47:d3:6c: 05:f6:08:33:86:38:fc:f8:03:99:0a:bb:82:7e:f1: 75:51:32:2f:9e:7e:c7:d6:b0:79:06:0d:b0:ed:bb: 65:f0:1e:4d:3b:cc:54:e0:8c:30:83:68:53:42:45: f9:d1:4d:9a:2d:38:18:df:b9:7f:b0:ec:0a:8f:4f: ee:69:6d:3d:fc:4f:eb:fb:60:e6:54:ac:59:58:bb: 85:4e:2f:cc:d4:c1:1b:d9:7e:f5:7f:8e:b6:a8:00: e9:bd:2c:12:c8:eb:37:a7:c1:66:dc:9c:8e:13:31: 96:6e:68:86:d0:a7:17:c1:29:13:d9:df:ed:e6:49: 59:70:a7:10:d4:25:dc:76:ba:e5:8a:01:18:43:7e: 7c:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 31:DE:10:1F:22:C4:BD:8C:18:F8:14:3E:03:D6:ED:8F:98:5C:25:88 X509v3 Authority Key Identifier: keyid:70:10:7B:EC:B8:4A:C4:CE:5E:95:CC:61:D1:10:A6:72:3F:90:C9:C3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916C2B9/306699CAC2A211EE91D9535CC4F9AE02/cBB77LhKxM5elcxh0RCmcj-QycM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/cBB77LhKxM5elcxh0RCmcj-QycM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916C2B9/306699CAC2A211EE91D9535CC4F9AE02/cBB77LhKxM5elcxh0RCmcj-QycM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ac:b9:af:61:2c:e0:42:9f:4b:61:c0:14:fa:e9:e7:ed:c5:5b: 09:df:6a:30:7a:c9:34:df:84:aa:6c:b7:b1:0c:78:d1:54:8c: 03:6c:cf:b3:9f:2f:06:0d:7f:2e:24:1e:e4:1e:25:1b:f6:41: 2e:c2:a6:18:0e:6d:09:ad:1d:1f:96:86:ba:27:ef:56:cb:ba: 4e:54:6b:d5:cd:d1:b0:d9:c1:6c:2b:05:fb:58:ee:5b:c9:43: c9:97:7d:34:29:1e:25:60:a9:b9:5f:7d:35:cf:54:40:4a:f1: 0c:57:cd:12:21:2d:ad:30:c6:c5:e6:87:37:e8:12:cd:64:6f: f1:d3:5a:08:8e:73:11:97:30:e6:2e:41:6a:da:29:70:2e:1c: 61:db:a2:d4:8b:01:3b:12:b4:49:1a:7e:2e:af:a3:d1:02:aa: 04:b6:fd:3d:2f:51:55:97:de:d3:df:f0:29:88:2e:ef:11:ea: cc:76:c8:70:33:fc:9f:95:e2:e4:cf:c3:b2:99:b4:17:07:51: bb:55:58:61:e3:76:31:45:2a:d1:12:b7:7f:f9:19:59:fc:9e: 03:d2:06:49:b8:bb:c3:66:77:a3:a3:8d:54:1d:d7:9e:0c:9a: b9:34:d8:71:bb:12:a1:47:07:99:5b:2d:aa:89:99:61:fb:c4: 31:15:15:bc -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAPwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkMyQjkxMTAvBgNVBAUTKDcwMTA3QkVDQjg0QUM0Q0U1RTk1Q0M2MUQxMTBBNjcy M0Y5MEM5QzMwHhcNMjUwNjAzMDQ1NTI1WhcNMjUwNjEwMDQ1NTI1WjAYMRYwFAYD VQQDEw02ODNlODAzZS04YThhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArNc0UkNw7H1SgwBId+FIfCjO4lzqaUosZ50UVTjR2FZ3aOlvn5SIwTT/kVd9 DtBL6OMDqg1aBZ9NCRktK+UC4rq9yc8L++igEoi+gZgfq4nYGHFPoxa8i+XCOriY z6/sYYAdt0UlIOqb7Sm9mK+COtH+WYdH02wF9ggzhjj8+AOZCruCfvF1UTIvnn7H 1rB5Bg2w7btl8B5NO8xU4Iwwg2hTQkX50U2aLTgY37l/sOwKj0/uaW09/E/r+2Dm VKxZWLuFTi/M1MEb2X71f462qADpvSwSyOs3p8Fm3JyOEzGWbmiG0KcXwSkT2d/t 5klZcKcQ1CXcdrrligEYQ3584QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDHeEB8i xL2MGPgUPgPW7Y+YXCWIMB8GA1UdIwQYMBaAFHAQe+y4SsTOXpXMYdEQpnI/kMnD MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QzJCOS8zMDY2OTlDQUMy QTIxMUVFOTFEOTUzNUNDNEY5QUUwMi9jQkI3N0xoS3hNNWVsY3hoMFJDbWNqLVF5 Y00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2NCQjc3TGhLeE01ZWxjeGgwUkNtY2otUXljTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 QzJCOS8zMDY2OTlDQUMyQTIxMUVFOTFEOTUzNUNDNEY5QUUwMi9jQkI3N0xoS3hN NWVsY3hoMFJDbWNqLVF5Y00ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCsua9hLOBCn0thwBT66eftxVsJ32owesk034SqbLexDHjRVIwDbM+z ny8GDX8uJB7kHiUb9kEuwqYYDm0JrR0floa6J+9Wy7pOVGvVzdGw2cFsKwX7WO5b yUPJl300KR4lYKm5X301z1RASvEMV80SIS2tMMbF5oc36BLNZG/x01oIjnMRlzDm LkFq2ilwLhxh26LUiwE7ErRJGn4ur6PRAqoEtv09L1FVl97T3/ApiC7vEerMdshw M/yfleLkz8OymbQXB1G7VVhh43YxRSrRErd/+RlZ/J4D0gZJuLvDZnejo41UHdee DJq5NNhxuxKhRweZWy2qiZlh+8QxFRW8 -----END CERTIFICATE-----Generated at Tue Jun 3 23:51:46 2025 by rpki-client