$ rpki-client -vvf rpki.apnic.net/member_repository/A916FACB/F5598D08924011ECBED4DA2CC4F9AE02/2RBlAbU10PfK1XyOenR8oGnQTVk.mft File: 2RBlAbU10PfK1XyOenR8oGnQTVk.mft (raw, json) Hash identifier: 1H6zRW62NhALXsNISFhzWheHJwOJVqDcgQyu22KCtAY= Subject key identifier: 20:3E:68:35:F7:34:22:61:23:8F:23:CC:FE:44:7D:17:10:6B:C9:42 Authority key identifier: D9:10:65:01:B5:35:D0:F7:CA:D5:7C:8E:7A:74:7C:A0:69:D0:4D:59 Certificate issuer: /CN=A916FACB/serialNumber=D9106501B535D0F7CAD57C8E7A747CA069D04D59 Certificate serial: 03B6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2RBlAbU10PfK1XyOenR8oGnQTVk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916FACB/F5598D08924011ECBED4DA2CC4F9AE02/2RBlAbU10PfK1XyOenR8oGnQTVk.mft Manifest number: 03B2 Signing time: Sat 31 May 2025 00:53:36 +0000 Manifest this update: Sat 31 May 2025 00:53:36 +0000 Manifest next update: Sat 07 Jun 2025 00:53:36 +0000 Files and hashes: 1: 2RBlAbU10PfK1XyOenR8oGnQTVk.crl (hash: bDFxVIPijoulYc56ekW8TYyNIJZ7YbkPg+z4b4BlNjo=) 2: 97D35382924311EC927C972FC4F9AE02.roa (hash: F5cT4m4LGvhZopgIl7MS1o33/eaQaKX2bSwBB1GnJYA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916FACB/F5598D08924011ECBED4DA2CC4F9AE02/2RBlAbU10PfK1XyOenR8oGnQTVk.crl rsync://rpki.apnic.net/member_repository/A916FACB/F5598D08924011ECBED4DA2CC4F9AE02/2RBlAbU10PfK1XyOenR8oGnQTVk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2RBlAbU10PfK1XyOenR8oGnQTVk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 00:53:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 950 (0x3b6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916FACB, serialNumber=D9106501B535D0F7CAD57C8E7A747CA069D04D59 Validity Not Before: May 31 00:53:36 2025 GMT Not After : Jun 7 00:53:36 2025 GMT Subject: CN=683a5310-b6b5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:b7:d3:e2:12:43:58:44:e0:fb:1e:4c:38:da: a7:60:7c:ce:a9:12:1a:ad:7a:de:43:98:ff:27:b7: 61:91:06:44:62:0c:c7:03:b6:8b:47:e0:e3:af:55: db:b8:5e:c7:c2:27:87:28:0e:be:3f:15:9c:9c:c4: 8b:fb:71:60:07:5d:69:96:32:5f:a8:98:01:ee:15: a3:74:a3:28:f8:cb:85:e2:e8:60:53:91:04:36:25: aa:d4:3f:4f:56:7b:ab:37:03:39:2f:cf:bf:b2:e6: b9:92:6e:f8:1d:34:64:58:2a:b1:43:a6:09:a5:91: 3d:8b:ff:c9:3b:a1:eb:b6:56:a5:e3:d2:11:bd:8a: 8e:54:cf:05:74:c1:cd:21:ab:4c:87:5f:8a:92:d8: 2e:25:1d:0e:d3:25:90:35:1c:00:99:1c:2c:08:bb: 40:07:f7:fa:6e:83:c1:25:1c:7e:42:b7:2c:e9:a3: 53:2a:ee:60:8e:a5:d0:a8:56:a6:59:82:e9:6f:ce: c4:5c:f6:1a:a3:c6:47:c3:5a:1c:85:3d:91:00:d6: ed:d1:cb:e3:94:40:8a:18:70:0c:b5:af:d8:8f:5b: 59:4e:48:2b:aa:66:c7:fc:10:60:7d:fa:6d:0f:1f: 4e:84:fd:ee:dc:92:7c:5b:9f:db:a2:a6:c3:31:5d: b4:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 20:3E:68:35:F7:34:22:61:23:8F:23:CC:FE:44:7D:17:10:6B:C9:42 X509v3 Authority Key Identifier: keyid:D9:10:65:01:B5:35:D0:F7:CA:D5:7C:8E:7A:74:7C:A0:69:D0:4D:59 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916FACB/F5598D08924011ECBED4DA2CC4F9AE02/2RBlAbU10PfK1XyOenR8oGnQTVk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2RBlAbU10PfK1XyOenR8oGnQTVk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916FACB/F5598D08924011ECBED4DA2CC4F9AE02/2RBlAbU10PfK1XyOenR8oGnQTVk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4a:da:8a:8a:a6:a5:10:19:90:ce:77:ed:83:87:fb:33:4b:89: 2b:7f:ec:f1:46:3a:bd:c4:1c:85:a2:a7:ec:7d:20:d5:2d:7f: d2:9a:f3:89:52:1d:7b:08:28:94:bc:f5:8a:4e:06:a7:13:51: 4e:fa:63:09:72:70:9e:37:a4:7e:d8:f6:f0:58:2a:35:92:ec: 92:42:c2:90:5b:8d:7f:1e:1d:e9:04:1d:31:fa:fe:ae:f9:5f: 14:d9:0f:98:dd:c6:49:61:f2:ad:5c:68:4a:5e:2a:bb:ce:a7: 4a:3c:85:bc:ba:e8:af:04:ea:4b:7e:6a:49:de:a8:38:e4:d7: 21:e1:93:92:21:ca:35:ad:72:16:66:00:35:37:82:fe:86:f4: 34:fa:16:12:d7:28:7e:83:77:aa:9b:4a:4b:5c:b7:66:d9:4c: c7:3d:c4:fc:ee:c2:9e:14:69:13:63:28:63:41:35:1b:27:c6: f9:7b:d9:5e:d5:ce:fd:f2:6b:d3:69:6e:f0:7d:d6:3c:a8:9d: 6d:02:4f:1c:73:2f:8c:7a:a4:74:fe:f8:eb:13:43:ea:53:4d: cf:df:51:2d:0f:6d:26:6c:6b:1d:fe:0c:c0:e4:f9:ac:d1:a5: 2c:df:7e:34:91:47:e2:de:e4:a9:2e:8f:81:2b:a8:d6:d0:c9: c3:c1:a2:40 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA7YwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkZBQ0IxMTAvBgNVBAUTKEQ5MTA2NTAxQjUzNUQwRjdDQUQ1N0M4RTdBNzQ3Q0Ew NjlEMDRENTkwHhcNMjUwNTMxMDA1MzM2WhcNMjUwNjA3MDA1MzM2WjAYMRYwFAYD VQQDEw02ODNhNTMxMC1iNmI1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAybfT4hJDWETg+x5MONqnYHzOqRIarXreQ5j/J7dhkQZEYgzHA7aLR+Djr1Xb uF7HwieHKA6+PxWcnMSL+3FgB11pljJfqJgB7hWjdKMo+MuF4uhgU5EENiWq1D9P VnurNwM5L8+/sua5km74HTRkWCqxQ6YJpZE9i//JO6Hrtlal49IRvYqOVM8FdMHN IatMh1+KktguJR0O0yWQNRwAmRwsCLtAB/f6boPBJRx+Qrcs6aNTKu5gjqXQqFam WYLpb87EXPYao8ZHw1ochT2RANbt0cvjlECKGHAMta/Yj1tZTkgrqmbH/BBgffpt Dx9OhP3u3JJ8W5/boqbDMV203wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCA+aDX3 NCJhI48jzP5EfRcQa8lCMB8GA1UdIwQYMBaAFNkQZQG1NdD3ytV8jnp0fKBp0E1Z MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2RkFDQi9GNTU5OEQwODky NDAxMUVDQkVENERBMkNDNEY5QUUwMi8yUkJsQWJVMTBQZksxWHlPZW5SOG9HblFU VmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJSQmxBYlUxMFBmSzFYeU9lblI4b0duUVRWay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 RkFDQi9GNTU5OEQwODkyNDAxMUVDQkVENERBMkNDNEY5QUUwMi8yUkJsQWJVMTBQ ZksxWHlPZW5SOG9HblFUVmsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBK2oqKpqUQGZDOd+2Dh/szS4krf+zxRjq9xByFoqfsfSDVLX/SmvOJ Uh17CCiUvPWKTganE1FO+mMJcnCeN6R+2PbwWCo1kuySQsKQW41/Hh3pBB0x+v6u +V8U2Q+Y3cZJYfKtXGhKXiq7zqdKPIW8uuivBOpLfmpJ3qg45Nch4ZOSIco1rXIW ZgA1N4L+hvQ0+hYS1yh+g3eqm0pLXLdm2UzHPcT87sKeFGkTYyhjQTUbJ8b5e9le 1c798mvTaW7wfdY8qJ1tAk8ccy+MeqR0/vjrE0PqU03P31EtD20mbGsd/gzA5Pms 0aUs3340kUfi3uSpLo+BK6jW0MnDwaJA -----END CERTIFICATE-----Generated at Sat May 31 17:03:29 2025 by rpki-client