$ rpki-client -vvf rpki.apnic.net/member_repository/A91820CE/B73069C66BE911EBB7D5560DC4F9AE02/csG8nD23m0PzVvI_lWiEjJz7jdU.mft File: csG8nD23m0PzVvI_lWiEjJz7jdU.mft (raw, json) Hash identifier: d1lPiwlj98y41pxcj1J47JijgG6DZ3ohLWIlMA42NiM= Subject key identifier: 83:7B:66:31:56:0E:9F:22:CF:C7:B4:81:C9:21:BF:69:F5:4D:AB:53 Authority key identifier: 72:C1:BC:9C:3D:B7:9B:43:F3:56:F2:3F:95:68:84:8C:9C:FB:8D:D5 Certificate issuer: /CN=A91820CE/serialNumber=72C1BC9C3DB79B43F356F23F9568848C9CFB8DD5 Certificate serial: 06A3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/csG8nD23m0PzVvI_lWiEjJz7jdU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91820CE/B73069C66BE911EBB7D5560DC4F9AE02/csG8nD23m0PzVvI_lWiEjJz7jdU.mft Manifest number: 069D Signing time: Fri 30 May 2025 22:25:08 +0000 Manifest this update: Fri 30 May 2025 22:25:08 +0000 Manifest next update: Fri 06 Jun 2025 22:25:08 +0000 Files and hashes: 1: csG8nD23m0PzVvI_lWiEjJz7jdU.crl (hash: y9sApmDneUhjnHsa15LGgKCs1Si7F2NQ/l0O9G+CDMs=) 2: EB292D8A6BF811EB8E899650C4F9AE02.roa (hash: QHZWlLh2PyAY4WTgaNICz7qTAAizZpA7yqBBQ8slHlk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91820CE/B73069C66BE911EBB7D5560DC4F9AE02/csG8nD23m0PzVvI_lWiEjJz7jdU.crl rsync://rpki.apnic.net/member_repository/A91820CE/B73069C66BE911EBB7D5560DC4F9AE02/csG8nD23m0PzVvI_lWiEjJz7jdU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/csG8nD23m0PzVvI_lWiEjJz7jdU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 22:25:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1699 (0x6a3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91820CE, serialNumber=72C1BC9C3DB79B43F356F23F9568848C9CFB8DD5 Validity Not Before: May 30 22:25:08 2025 GMT Not After : Jun 6 22:25:08 2025 GMT Subject: CN=683a3044-ac3b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:ea:7e:ca:c3:94:f7:2a:15:e4:ad:99:25:3f: bc:48:8e:52:a7:0e:1b:7a:37:61:33:f1:c6:14:33: e2:cc:37:a2:ce:20:25:26:47:b7:ca:dd:e5:f7:86: 91:53:b9:25:64:29:84:8a:66:cf:38:ae:7c:3e:a7: 69:af:05:b5:17:63:29:ca:d7:0d:91:da:42:9c:c3: 25:c4:0d:e6:9e:3d:ef:4e:87:6f:ab:3a:de:1f:e1: 14:6b:20:10:d2:ef:e2:fd:0a:3d:14:3f:6f:0f:b0: 14:9a:07:ea:3e:b0:55:ac:84:34:6f:cc:88:a3:46: df:1c:0e:64:f4:c9:22:33:d2:67:e6:fa:f0:0b:a8: ee:18:14:5a:b8:51:85:51:ce:6f:8b:56:7a:9b:d6: 52:f1:9b:f3:ad:5f:50:fb:b4:0f:51:6a:9b:f0:ad: fe:89:1b:c1:ae:5e:53:db:64:77:3b:fc:0c:50:9a: 17:0e:f1:68:9a:2f:96:12:52:79:b6:10:8d:8d:78: 3a:f0:6b:14:f1:cd:27:31:45:ad:c8:f6:e8:22:50: 1e:d6:54:e8:b4:29:df:60:02:8e:dc:e0:e6:f2:9e: c1:c8:ec:be:2e:41:c9:15:ce:04:d1:b4:b1:d8:9e: 94:7a:44:67:35:ec:90:43:47:40:e7:4a:df:de:bc: 4d:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 83:7B:66:31:56:0E:9F:22:CF:C7:B4:81:C9:21:BF:69:F5:4D:AB:53 X509v3 Authority Key Identifier: keyid:72:C1:BC:9C:3D:B7:9B:43:F3:56:F2:3F:95:68:84:8C:9C:FB:8D:D5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91820CE/B73069C66BE911EBB7D5560DC4F9AE02/csG8nD23m0PzVvI_lWiEjJz7jdU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/csG8nD23m0PzVvI_lWiEjJz7jdU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91820CE/B73069C66BE911EBB7D5560DC4F9AE02/csG8nD23m0PzVvI_lWiEjJz7jdU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 80:ab:d6:68:bd:7d:fa:25:96:66:b7:ed:8c:cb:02:70:1b:9b: 4d:e2:39:18:44:a4:ad:a3:06:96:b1:60:a0:75:e3:15:00:6d: 03:32:d5:3a:8d:42:fb:c9:78:ae:0e:fa:c0:55:c8:03:50:c1: 5a:d6:75:ed:8a:3d:e4:0a:37:b4:92:44:e2:39:f7:a7:db:fc: e0:fd:b4:af:7a:20:dc:8d:9a:66:9c:4e:94:90:d6:61:7c:1b: 1b:4a:eb:1d:2b:0f:09:08:14:cc:26:a3:81:f9:16:10:a9:87: 30:ca:ce:32:34:ed:47:dd:15:e5:bd:02:a6:4d:db:f5:c5:e2: fb:49:5a:a7:82:c7:8f:4e:e7:f7:68:84:62:58:0c:fa:fe:66: b4:20:2d:ec:58:75:e0:a8:60:bb:ad:5f:08:91:25:db:74:4c: 26:31:4b:48:7a:5f:8d:0d:29:79:b4:08:3b:1a:81:7d:fe:95: 62:c8:a2:ed:c9:56:6f:cd:e0:62:f2:2b:c9:4d:00:86:cb:35: a4:d0:41:e5:d9:6b:60:b3:72:8a:a6:39:ff:41:57:a6:77:b4: c0:5e:3e:d0:9a:56:a3:c7:bb:75:40:76:0c:ad:86:35:3f:b8: 90:6d:ed:2f:c0:6e:28:8e:e6:c1:46:bc:ad:8f:e3:1c:0b:77: d9:f5:f9:b2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBqMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODIwQ0UxMTAvBgNVBAUTKDcyQzFCQzlDM0RCNzlCNDNGMzU2RjIzRjk1Njg4NDhD OUNGQjhERDUwHhcNMjUwNTMwMjIyNTA4WhcNMjUwNjA2MjIyNTA4WjAYMRYwFAYD VQQDEw02ODNhMzA0NC1hYzNiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2ep+ysOU9yoV5K2ZJT+8SI5Spw4bejdhM/HGFDPizDeiziAlJke3yt3l94aR U7klZCmEimbPOK58PqdprwW1F2MpytcNkdpCnMMlxA3mnj3vTodvqzreH+EUayAQ 0u/i/Qo9FD9vD7AUmgfqPrBVrIQ0b8yIo0bfHA5k9MkiM9Jn5vrwC6juGBRauFGF Uc5vi1Z6m9ZS8ZvzrV9Q+7QPUWqb8K3+iRvBrl5T22R3O/wMUJoXDvFomi+WElJ5 thCNjXg68GsU8c0nMUWtyPboIlAe1lTotCnfYAKO3ODm8p7ByOy+LkHJFc4E0bSx 2J6UekRnNeyQQ0dA50rf3rxNWQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIN7ZjFW Dp8iz8e0gckhv2n1TatTMB8GA1UdIwQYMBaAFHLBvJw9t5tD81byP5VohIyc+43V MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4MjBDRS9CNzMwNjlDNjZC RTkxMUVCQjdENTU2MERDNEY5QUUwMi9jc0c4bkQyM20wUHpWdklfbFdpRWpKejdq ZFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NzRzhuRDIzbTBQelZ2SV9sV2lFakp6N2pkVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 MjBDRS9CNzMwNjlDNjZCRTkxMUVCQjdENTU2MERDNEY5QUUwMi9jc0c4bkQyM20w UHpWdklfbFdpRWpKejdqZFUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCAq9ZovX36JZZmt+2MywJwG5tN4jkYRKStowaWsWCgdeMVAG0DMtU6 jUL7yXiuDvrAVcgDUMFa1nXtij3kCje0kkTiOfen2/zg/bSveiDcjZpmnE6UkNZh fBsbSusdKw8JCBTMJqOB+RYQqYcwys4yNO1H3RXlvQKmTdv1xeL7SVqngsePTuf3 aIRiWAz6/ma0IC3sWHXgqGC7rV8IkSXbdEwmMUtIel+NDSl5tAg7GoF9/pViyKLt yVZvzeBi8ivJTQCGyzWk0EHl2Wtgs3KKpjn/QVemd7TAXj7Qmlajx7t1QHYMrYY1 P7iQbe0vwG4ojubBRrytj+McC3fZ9fmy -----END CERTIFICATE-----Generated at Sat May 31 17:07:38 2025 by rpki-client