$ rpki-client -vvf rpki.apnic.net/member_repository/A91854B7/E180CE7A851E11EB8419B327C4F9AE02/-IuXQE-dwQ9aqwL3TsSQ-YrQ07A.mft File: -IuXQE-dwQ9aqwL3TsSQ-YrQ07A.mft (raw, json) Hash identifier: KfVDEVdbaHkYKiYDd1gvADUYCo3PBT5qoKHjIi9EKR8= Subject key identifier: FC:7B:99:A7:09:EB:F3:16:F3:C5:DF:BC:8C:D7:3A:B1:5B:EC:A0:F5 Authority key identifier: F8:8B:97:40:4F:9D:C1:0F:5A:AB:02:F7:4E:C4:90:F9:8A:D0:D3:B0 Certificate issuer: /CN=A91854B7/serialNumber=F88B97404F9DC10F5AAB02F74EC490F98AD0D3B0 Certificate serial: 066B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-IuXQE-dwQ9aqwL3TsSQ-YrQ07A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91854B7/E180CE7A851E11EB8419B327C4F9AE02/-IuXQE-dwQ9aqwL3TsSQ-YrQ07A.mft Manifest number: 065A Signing time: Fri 30 May 2025 22:41:22 +0000 Manifest this update: Fri 30 May 2025 22:41:21 +0000 Manifest next update: Fri 06 Jun 2025 22:41:21 +0000 Files and hashes: 1: -IuXQE-dwQ9aqwL3TsSQ-YrQ07A.crl (hash: DVPmjiTmzE2vbagQxtlQN+uQzBz1q5WHBuMdzyduuWY=) 2: 3EACF95EEBB511ECA410BF6DC4F9AE02.roa (hash: xFmg051Irl3QGxSaxPh5/PYgXOOm8roreRqol3Gv8es=) 3: 57D28CCA853E11EB9D9E2D39C4F9AE02.roa (hash: goZ7BQs8FCZwkLeH44QNaXxFhzltbICpUZt+GahLEkQ=) 4: 5892BB44853E11EB9D9E2D39C4F9AE02.roa (hash: pCDQvhpjTdtiJ3zqTDHJUEvIuviY7SsjRZSRovU8uCc=) 5: 1D526B2E5DB311EEA8990E1BC4F9AE02.roa (hash: SXTVWJ2PMrAIqDEbXazZSPAGB7rgkYD55HYA8ZjO4Yw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91854B7/E180CE7A851E11EB8419B327C4F9AE02/-IuXQE-dwQ9aqwL3TsSQ-YrQ07A.crl rsync://rpki.apnic.net/member_repository/A91854B7/E180CE7A851E11EB8419B327C4F9AE02/-IuXQE-dwQ9aqwL3TsSQ-YrQ07A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-IuXQE-dwQ9aqwL3TsSQ-YrQ07A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 22:41:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1643 (0x66b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91854B7, serialNumber=F88B97404F9DC10F5AAB02F74EC490F98AD0D3B0 Validity Not Before: May 30 22:41:21 2025 GMT Not After : Jun 6 22:41:21 2025 GMT Subject: CN=683a3412-109a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:db:0f:97:b1:11:ab:13:e6:f6:25:1d:85:97: 47:b3:53:4f:7c:42:6d:ab:c5:83:56:e2:44:c7:51: 93:4f:be:c4:ab:8c:3b:c5:9e:6e:c3:49:fd:bf:c5: f1:d4:12:af:8c:8c:e2:81:23:33:5a:17:61:30:cd: 8c:59:98:1d:95:e9:fb:70:14:62:d9:3c:ee:8f:e5: 3e:b7:21:76:61:27:fa:62:cc:13:04:b4:63:a9:f1: a2:a2:89:73:cd:a2:16:8e:98:f7:18:53:e7:bf:f7: e2:85:e8:34:67:75:e4:b4:aa:2b:66:fa:14:77:04: aa:a3:03:a1:b5:09:e4:5c:42:18:ed:67:23:13:81: 1d:b5:a8:eb:f4:45:cc:21:03:4d:2d:c3:a6:91:aa: ec:3f:c9:fe:1c:ae:4f:23:9a:72:e0:ac:6d:5e:70: 30:de:32:e6:db:25:7f:94:cf:6a:1f:2a:fe:b1:62: e5:b1:da:96:38:b3:1b:09:c2:8c:d8:de:c5:4d:52: c1:c5:bd:10:c8:21:01:30:dd:c6:d4:c3:80:1d:db: f2:12:f8:ed:1d:94:20:01:21:00:37:99:fa:e2:ff: a6:22:2c:34:14:54:64:bf:d4:b6:93:7c:c4:d4:07: ac:75:68:57:bc:35:d6:25:38:f5:f8:d6:c3:a8:d0: 26:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FC:7B:99:A7:09:EB:F3:16:F3:C5:DF:BC:8C:D7:3A:B1:5B:EC:A0:F5 X509v3 Authority Key Identifier: keyid:F8:8B:97:40:4F:9D:C1:0F:5A:AB:02:F7:4E:C4:90:F9:8A:D0:D3:B0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91854B7/E180CE7A851E11EB8419B327C4F9AE02/-IuXQE-dwQ9aqwL3TsSQ-YrQ07A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-IuXQE-dwQ9aqwL3TsSQ-YrQ07A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91854B7/E180CE7A851E11EB8419B327C4F9AE02/-IuXQE-dwQ9aqwL3TsSQ-YrQ07A.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 82:f1:00:eb:bd:32:67:d9:eb:f7:99:a7:5c:a7:7d:fb:4b:89: cd:76:0b:a4:4a:c1:24:55:c1:0c:d9:6c:6a:18:a5:aa:6d:17: 6f:09:26:d5:49:0e:75:ec:97:7b:11:f3:89:95:1b:e2:4b:b8: 74:91:a5:ac:27:cf:80:ab:b2:e0:9a:15:e3:b5:f2:e5:03:b8: 32:b6:80:f9:de:04:1d:3a:35:16:13:40:d2:80:d2:e2:93:d4: d0:9a:64:4e:3b:1a:3b:ab:d0:3e:91:5d:37:40:77:77:30:34: 28:37:93:4e:5b:3d:ab:c3:f3:64:5c:b1:5b:44:bd:b5:82:5e: 3b:41:44:36:fd:3d:fa:c3:8c:30:38:f2:7f:04:34:c6:d1:0d: 9d:d9:90:0d:6c:d2:60:a6:00:d8:c5:37:51:55:fe:b5:6d:5a: 4e:09:ca:00:94:b6:77:35:b3:38:cf:c3:fb:59:f2:ad:6b:a5: 5a:b7:2b:b1:f8:de:67:df:46:91:d7:37:22:30:87:3b:d3:5d: bb:45:c6:2a:b6:19:dc:09:d8:6b:39:60:89:3d:25:72:bb:14: 85:0d:2d:e5:ce:24:35:85:0c:f2:0a:66:6d:0c:4e:78:31:32: 09:4f:49:8e:93:ca:f9:80:f5:67:45:63:f4:35:40:d2:e7:5a: 28:34:fc:47 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBmswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODU0QjcxMTAvBgNVBAUTKEY4OEI5NzQwNEY5REMxMEY1QUFCMDJGNzRFQzQ5MEY5 OEFEMEQzQjAwHhcNMjUwNTMwMjI0MTIxWhcNMjUwNjA2MjI0MTIxWjAYMRYwFAYD VQQDEw02ODNhMzQxMi0xMDlhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2tsPl7ERqxPm9iUdhZdHs1NPfEJtq8WDVuJEx1GTT77Eq4w7xZ5uw0n9v8Xx 1BKvjIzigSMzWhdhMM2MWZgdlen7cBRi2Tzuj+U+tyF2YSf6YswTBLRjqfGioolz zaIWjpj3GFPnv/fiheg0Z3XktKorZvoUdwSqowOhtQnkXEIY7WcjE4Edtajr9EXM IQNNLcOmkarsP8n+HK5PI5py4KxtXnAw3jLm2yV/lM9qHyr+sWLlsdqWOLMbCcKM 2N7FTVLBxb0QyCEBMN3G1MOAHdvyEvjtHZQgASEAN5n64v+mIiw0FFRkv9S2k3zE 1AesdWhXvDXWJTj1+NbDqNAmGwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPx7macJ 6/MW88XfvIzXOrFb7KD1MB8GA1UdIwQYMBaAFPiLl0BPncEPWqsC907EkPmK0NOw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NTRCNy9FMTgwQ0U3QTg1 MUUxMUVCODQxOUIzMjdDNEY5QUUwMi8tSXVYUUUtZHdROWFxd0wzVHNTUS1ZclEw N0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy1JdVhRRS1kd1E5YXF3TDNUc1NRLVlyUTA3QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NTRCNy9FMTgwQ0U3QTg1MUUxMUVCODQxOUIzMjdDNEY5QUUwMi8tSXVYUUUtZHdR OWFxd0wzVHNTUS1ZclEwN0EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCC8QDrvTJn2ev3madcp337S4nNdgukSsEkVcEM2WxqGKWqbRdvCSbV SQ517Jd7EfOJlRviS7h0kaWsJ8+Aq7LgmhXjtfLlA7gytoD53gQdOjUWE0DSgNLi k9TQmmROOxo7q9A+kV03QHd3MDQoN5NOWz2rw/NkXLFbRL21gl47QUQ2/T36w4ww OPJ/BDTG0Q2d2ZANbNJgpgDYxTdRVf61bVpOCcoAlLZ3NbM4z8P7WfKta6Vatyux +N5n30aR1zciMIc70127RcYqthncCdhrOWCJPSVyuxSFDS3lziQ1hQzyCmZtDE54 MTIJT0mOk8r5gPVnRWP0NUDS51ooNPxH -----END CERTIFICATE-----Generated at Sat May 31 17:42:38 2025 by rpki-client