$ rpki-client -vvf rpki.apnic.net/member_repository/A91807BB/0AE482907CB311EF96C9F250C4F9AE02/RPnE2kfmNx_Ryfn45WTRgDoPMoc.mft File: RPnE2kfmNx_Ryfn45WTRgDoPMoc.mft (raw, json) Hash identifier: b+P9GhWPCqAlq//fWeuuZ5mbvz1VFg0eq1SzwQaQBxw= Subject key identifier: BB:31:B3:92:99:15:0A:40:1A:8D:A7:F2:B1:2C:89:FE:97:2D:D9:9A Authority key identifier: 44:F9:C4:DA:47:E6:37:1F:D1:C9:F9:F8:E5:64:D1:80:3A:0F:32:87 Certificate issuer: /CN=A91807BB/serialNumber=44F9C4DA47E6371FD1C9F9F8E564D1803A0F3287 Certificate serial: 7E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RPnE2kfmNx_Ryfn45WTRgDoPMoc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91807BB/0AE482907CB311EF96C9F250C4F9AE02/RPnE2kfmNx_Ryfn45WTRgDoPMoc.mft Manifest number: 7E Signing time: Sat 31 May 2025 06:14:19 +0000 Manifest this update: Sat 31 May 2025 06:14:18 +0000 Manifest next update: Sat 07 Jun 2025 06:14:18 +0000 Files and hashes: 1: RPnE2kfmNx_Ryfn45WTRgDoPMoc.crl (hash: SOkBVqvBNVGadvsoIfcNew2O1U3QY9clMH24Oy2OC6Y=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91807BB/0AE482907CB311EF96C9F250C4F9AE02/RPnE2kfmNx_Ryfn45WTRgDoPMoc.crl rsync://rpki.apnic.net/member_repository/A91807BB/0AE482907CB311EF96C9F250C4F9AE02/RPnE2kfmNx_Ryfn45WTRgDoPMoc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RPnE2kfmNx_Ryfn45WTRgDoPMoc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 06:14:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 126 (0x7e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91807BB, serialNumber=44F9C4DA47E6371FD1C9F9F8E564D1803A0F3287 Validity Not Before: May 31 06:14:18 2025 GMT Not After : Jun 7 06:14:18 2025 GMT Subject: CN=683a9e3b-2786 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:e9:b0:15:5f:f2:2e:03:de:cc:08:65:5c:c6: c0:ad:56:f0:2c:16:49:d7:ec:c8:df:98:56:5a:bb: 3c:09:1b:cd:e6:4d:60:3f:94:e6:eb:2d:bd:d2:b7: 99:44:63:ef:ca:37:38:07:9c:9b:f2:5c:f6:56:97: 9a:5e:d2:98:db:39:9c:99:f8:22:e2:c7:e7:ef:e5: f8:ed:a9:13:05:dc:14:7a:89:67:7e:78:23:47:3b: 86:40:46:d5:8a:0b:7b:2e:ef:1f:d2:9f:46:9d:f7: 99:3f:61:6c:93:bb:62:bb:ff:07:e3:ef:c8:7b:97: 77:64:24:67:17:ce:23:f1:cd:af:2b:91:ad:0d:a5: a7:9a:c5:08:37:df:2f:f1:9b:32:43:04:46:8b:89: 2f:38:6e:f3:b0:60:f6:cb:5a:11:0f:66:9c:3d:9c: de:87:e8:17:89:07:0c:9e:47:03:c8:bc:f0:c4:3a: 26:c8:44:ee:3e:d7:f0:64:d1:9b:34:75:ab:74:fb: e4:10:2a:48:dd:c5:5f:e0:e6:e8:4f:4b:13:df:2c: 8d:49:28:bb:ad:01:ce:07:1d:91:87:32:5c:1e:cb: 0e:af:07:ca:08:a3:a1:bc:2d:e9:56:04:fd:58:8c: a1:ba:cd:fa:76:98:3a:98:94:ad:2e:60:3f:1b:59: 74:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BB:31:B3:92:99:15:0A:40:1A:8D:A7:F2:B1:2C:89:FE:97:2D:D9:9A X509v3 Authority Key Identifier: keyid:44:F9:C4:DA:47:E6:37:1F:D1:C9:F9:F8:E5:64:D1:80:3A:0F:32:87 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91807BB/0AE482907CB311EF96C9F250C4F9AE02/RPnE2kfmNx_Ryfn45WTRgDoPMoc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RPnE2kfmNx_Ryfn45WTRgDoPMoc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91807BB/0AE482907CB311EF96C9F250C4F9AE02/RPnE2kfmNx_Ryfn45WTRgDoPMoc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 14:08:96:bf:8f:5c:6f:b3:58:15:37:68:f2:45:84:57:3a:a8: dc:7a:02:de:b0:84:66:65:be:fb:36:64:7a:6f:96:a5:44:ca: 0b:1f:90:cc:48:87:60:4f:e3:d9:ba:05:23:59:eb:e3:ed:87: d0:f5:5c:6d:04:b0:4e:87:1c:0a:5c:4d:1d:63:79:0b:9b:46: 3e:4a:66:ca:aa:6a:cc:e7:f2:1d:95:f6:45:48:06:d0:9b:d7: c0:22:3a:23:ce:bb:79:45:b4:75:13:6f:26:4d:3a:cd:90:b5: df:a6:04:12:79:19:12:65:66:0a:56:5b:7d:76:fa:bb:47:60: e1:61:ce:13:46:5c:74:f5:d9:9e:e3:f2:f0:c6:70:46:c9:d7: 3d:4b:0e:6c:d6:db:4b:87:6b:f3:86:d5:00:d8:54:84:39:68: 37:8f:b4:09:54:45:3a:29:65:50:fd:4b:4f:a9:05:ee:0f:c8: 01:40:65:11:62:c6:ba:dd:69:57:25:51:7e:06:05:2a:ab:48: 4b:c8:9c:29:fd:e8:67:3a:a2:20:8e:69:1c:33:60:6c:2c:0c: a6:c2:ce:42:83:e8:5d:3d:d9:67:fc:76:20:da:17:ff:87:0f: 45:46:48:8d:16:b8:83:f5:9e:bb:34:6a:5c:df:c5:97:06:3a: d0:d8:cb:4f -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBfjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE4 MDdCQjExMC8GA1UEBRMoNDRGOUM0REE0N0U2MzcxRkQxQzlGOUY4RTU2NEQxODAz QTBGMzI4NzAeFw0yNTA1MzEwNjE0MThaFw0yNTA2MDcwNjE0MThaMBgxFjAUBgNV BAMTDTY4M2E5ZTNiLTI3ODYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC96bAVX/IuA97MCGVcxsCtVvAsFknX7MjfmFZauzwJG83mTWA/lObrLb3St5lE Y+/KNzgHnJvyXPZWl5pe0pjbOZyZ+CLix+fv5fjtqRMF3BR6iWd+eCNHO4ZARtWK C3su7x/Sn0ad95k/YWyTu2K7/wfj78h7l3dkJGcXziPxza8rka0NpaeaxQg33y/x mzJDBEaLiS84bvOwYPbLWhEPZpw9nN6H6BeJBwyeRwPIvPDEOibIRO4+1/Bk0Zs0 dat0++QQKkjdxV/g5uhPSxPfLI1JKLutAc4HHZGHMlweyw6vB8oIo6G8LelWBP1Y jKG6zfp2mDqYlK0uYD8bWXTjAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUuzGzkpkV CkAajafysSyJ/pct2ZowHwYDVR0jBBgwFoAURPnE2kfmNx/Ryfn45WTRgDoPMocw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTgwN0JCLzBBRTQ4MjkwN0NC MzExRUY5NkM5RjI1MEM0RjlBRTAyL1JQbkUya2ZtTnhfUnlmbjQ1V1RSZ0RvUE1v Yy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvUlBuRTJrZm1OeF9SeWZuNDVXVFJnRG9QTW9jLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTgw N0JCLzBBRTQ4MjkwN0NCMzExRUY5NkM5RjI1MEM0RjlBRTAyL1JQbkUya2ZtTnhf UnlmbjQ1V1RSZ0RvUE1vYy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBABQIlr+PXG+zWBU3aPJFhFc6qNx6At6whGZlvvs2ZHpvlqVEygsfkMxI h2BP49m6BSNZ6+Pth9D1XG0EsE6HHApcTR1jeQubRj5KZsqqaszn8h2V9kVIBtCb 18AiOiPOu3lFtHUTbyZNOs2Qtd+mBBJ5GRJlZgpWW312+rtHYOFhzhNGXHT12Z7j 8vDGcEbJ1z1LDmzW20uHa/OG1QDYVIQ5aDePtAlURTopZVD9S0+pBe4PyAFAZRFi xrrdaVclUX4GBSqrSEvInCn96Gc6oiCOaRwzYGwsDKbCzkKD6F092Wf8diDaF/+H D0VGSI0WuIP1nrs0alzfxZcGOtDYy08= -----END CERTIFICATE-----Generated at Sat May 31 16:39:48 2025 by rpki-client