$ rpki-client -vvf rpki.apnic.net/member_repository/A91777A6/C8A799D2244711EDB1655053C4F9AE02/2kdUAUEh0yaH2X05LZBgSagU_MM.mft File: 2kdUAUEh0yaH2X05LZBgSagU_MM.mft (raw, json) Hash identifier: UkL2AsI3ooyawFMtmS4P9/y3Asyx5bbHJ7LGMtEGpZQ= Subject key identifier: B2:1E:40:39:49:01:C4:87:37:51:7F:B8:E1:40:F6:F9:2A:8E:21:E7 Authority key identifier: DA:47:54:01:41:21:D3:26:87:D9:7D:39:2D:90:60:49:A8:14:FC:C3 Certificate issuer: /CN=A91777A6/serialNumber=DA4754014121D32687D97D392D906049A814FCC3 Certificate serial: 0247 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2kdUAUEh0yaH2X05LZBgSagU_MM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91777A6/C8A799D2244711EDB1655053C4F9AE02/2kdUAUEh0yaH2X05LZBgSagU_MM.mft Manifest number: 0243 Signing time: Sat 07 Jun 2025 01:54:28 +0000 Manifest this update: Sat 07 Jun 2025 01:54:28 +0000 Manifest next update: Sat 14 Jun 2025 01:54:28 +0000 Files and hashes: 1: 2kdUAUEh0yaH2X05LZBgSagU_MM.crl (hash: qZXQaslUqpKdKdEaNQKUV1K2R/p9sIQrsKTyS2V41sA=) 2: 930770F4244C11ED95AA5569C4F9AE02.roa (hash: DDdOGJKEKYKXbDa5vtjLSsnRV8BgpNNS0rM4LZRyfrY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91777A6/C8A799D2244711EDB1655053C4F9AE02/2kdUAUEh0yaH2X05LZBgSagU_MM.crl rsync://rpki.apnic.net/member_repository/A91777A6/C8A799D2244711EDB1655053C4F9AE02/2kdUAUEh0yaH2X05LZBgSagU_MM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2kdUAUEh0yaH2X05LZBgSagU_MM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 14 Jun 2025 01:54:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 583 (0x247) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91777A6, serialNumber=DA4754014121D32687D97D392D906049A814FCC3 Validity Not Before: Jun 7 01:54:28 2025 GMT Not After : Jun 14 01:54:28 2025 GMT Subject: CN=68439bd4-1f4c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:e4:55:e7:43:f4:3e:86:d8:eb:c6:a1:5d:3a: c4:2a:95:bd:5e:c3:6e:23:ee:99:a6:a0:f8:d9:c6: 7d:0f:b7:ca:fe:6f:a9:8b:dd:1c:01:56:dc:ad:a1: 92:a5:80:1d:92:0c:86:f4:af:b9:61:09:d1:23:96: ce:03:75:b5:34:26:95:f5:c2:61:e5:40:b7:a9:5d: b0:8b:4a:7c:ac:86:9a:64:5c:52:56:63:59:94:71: 1e:9a:4f:6f:88:ed:86:72:28:1d:62:1d:2a:b7:b8: 77:8f:8d:22:7e:c3:93:ea:d6:2c:12:e8:c8:4f:d2: e0:f2:58:cf:cc:ea:0f:85:b0:d3:32:84:83:a1:c6: 78:2e:9c:0d:6b:55:e1:83:26:d6:0f:af:e8:77:f4: d9:d7:45:27:96:80:f1:7c:56:96:c9:ad:20:f6:6c: 06:c5:30:67:be:ae:99:37:18:c6:5d:27:34:ee:ee: 3d:c7:45:c3:2f:b2:d3:3f:62:2d:d8:03:74:92:6b: 47:3b:0a:84:27:1e:db:4a:ea:96:f9:5f:84:04:c3: e4:52:54:d9:2e:a9:9d:bf:c1:d7:54:7b:77:41:d7: a2:68:45:f5:9a:e5:bd:65:29:9f:46:06:7b:93:6d: 6c:59:6e:ea:bf:2e:34:1c:0e:35:9d:2a:35:b1:6b: 76:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B2:1E:40:39:49:01:C4:87:37:51:7F:B8:E1:40:F6:F9:2A:8E:21:E7 X509v3 Authority Key Identifier: keyid:DA:47:54:01:41:21:D3:26:87:D9:7D:39:2D:90:60:49:A8:14:FC:C3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91777A6/C8A799D2244711EDB1655053C4F9AE02/2kdUAUEh0yaH2X05LZBgSagU_MM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2kdUAUEh0yaH2X05LZBgSagU_MM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91777A6/C8A799D2244711EDB1655053C4F9AE02/2kdUAUEh0yaH2X05LZBgSagU_MM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 54:a6:29:52:40:3c:f2:9b:39:c5:98:ff:af:01:22:d4:37:f0: b5:2e:97:b7:7b:a2:18:a0:88:88:52:c1:c7:a9:be:f5:56:ae: e1:fe:8c:5f:2a:82:23:27:a6:bd:97:41:25:9f:94:ea:56:76: 0c:2e:af:ae:cc:9a:9a:d5:c5:82:9b:c7:2a:70:34:e3:1e:81: 99:b2:8f:2d:13:c2:2a:be:4a:d1:00:d3:0b:5e:64:00:24:87: b8:c9:2b:7e:8c:88:6c:c6:6d:d0:b0:0d:45:93:c4:66:67:c0: b2:9e:82:11:a6:61:35:fa:d0:d3:22:0f:08:ce:10:e8:5f:c1: 27:6d:19:a1:ef:cf:fd:ae:d0:72:b0:7d:86:84:64:aa:87:aa: ed:94:46:56:90:fb:3a:84:67:c2:6b:32:8e:b1:e8:e1:91:33: 85:f2:05:e7:b6:2d:0f:9d:d4:fb:52:eb:0a:83:55:c1:2d:f3: b7:fc:b9:ea:de:ba:94:fe:53:ed:11:87:2e:78:02:74:58:51: 5d:95:f7:19:3d:00:1c:55:ae:d9:e7:54:cd:e8:a8:3c:a7:e2: 5a:75:fd:6e:a7:48:5f:48:f5:a0:1d:ff:4a:b4:d4:af:da:35: 5d:5a:3d:19:8a:e2:ed:97:bc:4a:38:ce:f2:4e:5f:e1:77:fe: 45:70:bc:20 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAkcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Nzc3QTYxMTAvBgNVBAUTKERBNDc1NDAxNDEyMUQzMjY4N0Q5N0QzOTJEOTA2MDQ5 QTgxNEZDQzMwHhcNMjUwNjA3MDE1NDI4WhcNMjUwNjE0MDE1NDI4WjAYMRYwFAYD VQQDEw02ODQzOWJkNC0xZjRjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0ORV50P0PobY68ahXTrEKpW9XsNuI+6ZpqD42cZ9D7fK/m+pi90cAVbcraGS pYAdkgyG9K+5YQnRI5bOA3W1NCaV9cJh5UC3qV2wi0p8rIaaZFxSVmNZlHEemk9v iO2GcigdYh0qt7h3j40ifsOT6tYsEujIT9Lg8ljPzOoPhbDTMoSDocZ4LpwNa1Xh gybWD6/od/TZ10UnloDxfFaWya0g9mwGxTBnvq6ZNxjGXSc07u49x0XDL7LTP2It 2AN0kmtHOwqEJx7bSuqW+V+EBMPkUlTZLqmdv8HXVHt3QdeiaEX1muW9ZSmfRgZ7 k21sWW7qvy40HA41nSo1sWt2mQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLIeQDlJ AcSHN1F/uOFA9vkqjiHnMB8GA1UdIwQYMBaAFNpHVAFBIdMmh9l9OS2QYEmoFPzD MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NzdBNi9DOEE3OTlEMjI0 NDcxMUVEQjE2NTUwNTNDNEY5QUUwMi8ya2RVQVVFaDB5YUgyWDA1TFpCZ1NhZ1Vf TU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJrZFVBVUVoMHlhSDJYMDVMWkJnU2FnVV9NTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 NzdBNi9DOEE3OTlEMjI0NDcxMUVEQjE2NTUwNTNDNEY5QUUwMi8ya2RVQVVFaDB5 YUgyWDA1TFpCZ1NhZ1VfTU0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBUpilSQDzymznFmP+vASLUN/C1Lpe3e6IYoIiIUsHHqb71Vq7h/oxf KoIjJ6a9l0Eln5TqVnYMLq+uzJqa1cWCm8cqcDTjHoGZso8tE8IqvkrRANMLXmQA JIe4ySt+jIhsxm3QsA1Fk8RmZ8CynoIRpmE1+tDTIg8IzhDoX8EnbRmh78/9rtBy sH2GhGSqh6rtlEZWkPs6hGfCazKOsejhkTOF8gXnti0PndT7UusKg1XBLfO3/Lnq 3rqU/lPtEYcueAJ0WFFdlfcZPQAcVa7Z51TN6Kg8p+Jadf1up0hfSPWgHf9KtNSv 2jVdWj0ZiuLtl7xKOM7yTl/hd/5FcLwg -----END CERTIFICATE-----Generated at Sun Jun 8 07:37:26 2025 by rpki-client