$ rpki-client -vvf rpki.apnic.net/member_repository/A91878B2/739BBA5A7D7B11EBA622275BC4F9AE02/rd7pCaMWdiFVP9ROAiTTigZ4eYc.mft File: rd7pCaMWdiFVP9ROAiTTigZ4eYc.mft (raw, json) Hash identifier: KkOF/OyFsnKxmkDx1wSLZam+IkuftsV635SvV4vD66E= Subject key identifier: BB:2B:A9:45:EB:DD:24:7E:49:3E:3A:87:6B:4B:EB:2C:79:18:2C:49 Authority key identifier: AD:DE:E9:09:A3:16:76:21:55:3F:D4:4E:02:24:D3:8A:06:78:79:87 Certificate issuer: /CN=A91878B2/serialNumber=ADDEE909A3167621553FD44E0224D38A06787987 Certificate serial: 0675 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rd7pCaMWdiFVP9ROAiTTigZ4eYc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91878B2/739BBA5A7D7B11EBA622275BC4F9AE02/rd7pCaMWdiFVP9ROAiTTigZ4eYc.mft Manifest number: 066B Signing time: Fri 30 May 2025 22:35:36 +0000 Manifest this update: Fri 30 May 2025 22:35:35 +0000 Manifest next update: Fri 06 Jun 2025 22:35:35 +0000 Files and hashes: 1: rd7pCaMWdiFVP9ROAiTTigZ4eYc.crl (hash: l8eS1oibjCoL4hFUTQEcYigLFsCYkLqg1dtui5899vs=) 2: 47249F9E7D7D11EBA5FADA5FC4F9AE02.roa (hash: Ck9VYv/1rcTBtaX5FrHIAevWzTx3mNc72bWTwUqMdEA=) 3: 467830CE7D7D11EBA5FADA5FC4F9AE02.roa (hash: mTOOiMtwoSIKIvU9I/HZJyVIkpOV2ubS6z5GxznmdY4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91878B2/739BBA5A7D7B11EBA622275BC4F9AE02/rd7pCaMWdiFVP9ROAiTTigZ4eYc.crl rsync://rpki.apnic.net/member_repository/A91878B2/739BBA5A7D7B11EBA622275BC4F9AE02/rd7pCaMWdiFVP9ROAiTTigZ4eYc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rd7pCaMWdiFVP9ROAiTTigZ4eYc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 22:35:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1653 (0x675) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91878B2, serialNumber=ADDEE909A3167621553FD44E0224D38A06787987 Validity Not Before: May 30 22:35:35 2025 GMT Not After : Jun 6 22:35:35 2025 GMT Subject: CN=683a32b7-db73 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:2b:71:4f:1e:a5:dc:c4:7b:a1:de:e0:c0:34: 75:2c:db:92:9e:41:77:16:39:2d:37:da:4f:b9:52: d0:73:da:e9:ac:e5:31:84:12:eb:dc:f7:84:61:37: 7b:3a:41:6e:f2:7d:11:6e:54:6c:a7:71:5c:a1:4b: 18:c5:79:36:55:d4:f1:c8:83:38:e2:dc:87:91:96: 5c:5d:d7:da:e4:9a:7a:16:e5:63:c4:0b:6a:64:e4: 68:4f:e6:11:5d:48:29:a1:9a:ac:cd:a5:dc:76:eb: ff:71:59:ec:78:8a:45:32:cb:90:5a:b3:a7:4c:00: 6e:3a:c0:0d:9e:15:fd:44:c5:32:b6:f6:4a:2b:5a: 27:36:cf:ab:26:a0:af:5b:d4:09:27:28:fc:d4:2d: 01:54:01:59:5e:38:80:2b:be:1c:11:02:00:e8:5f: b3:60:45:5d:1f:5f:6e:10:df:4f:fb:1d:91:83:2b: 0f:35:e5:d5:60:e7:c5:d1:15:b1:43:ae:af:9c:b6: 01:12:f1:54:53:2d:bb:a4:e2:3d:e0:69:59:33:68: f5:63:19:d3:af:b2:4b:92:62:9a:89:aa:b9:1f:e4: 91:6e:3e:97:0c:dc:b4:09:1e:29:64:ce:9b:3c:2d: db:39:55:db:38:2e:fb:d7:52:24:f2:65:97:b0:01: 1f:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BB:2B:A9:45:EB:DD:24:7E:49:3E:3A:87:6B:4B:EB:2C:79:18:2C:49 X509v3 Authority Key Identifier: keyid:AD:DE:E9:09:A3:16:76:21:55:3F:D4:4E:02:24:D3:8A:06:78:79:87 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91878B2/739BBA5A7D7B11EBA622275BC4F9AE02/rd7pCaMWdiFVP9ROAiTTigZ4eYc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rd7pCaMWdiFVP9ROAiTTigZ4eYc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91878B2/739BBA5A7D7B11EBA622275BC4F9AE02/rd7pCaMWdiFVP9ROAiTTigZ4eYc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4c:50:01:2b:41:e7:89:04:43:62:fb:c1:8b:5a:a5:99:6f:c1: 97:f4:99:1c:fa:3e:8e:5f:10:25:56:80:0a:a8:d0:16:a9:de: 82:16:11:40:a1:a2:db:f7:46:0b:1b:2f:08:ad:f7:79:c1:ff: fe:56:4e:dd:d9:0e:83:60:57:db:38:b9:09:e2:9a:5a:ba:ab: 87:7b:7b:db:50:73:7e:c2:2c:41:12:87:ea:6e:93:17:34:dd: 3d:40:57:42:bc:f8:d9:b8:b8:aa:51:bb:4f:31:78:ed:ec:30: ff:d5:d4:67:22:e7:8d:7e:19:8e:8b:e0:8e:ed:da:86:46:98: eb:08:35:6a:f6:43:31:f5:f7:1d:32:6f:c0:95:07:e3:af:d2: cd:8d:ed:58:1b:e9:16:65:69:bd:c9:93:98:61:39:95:29:12: ac:dc:37:6b:7c:9e:30:85:ca:50:88:77:35:bc:6f:ab:75:0c: ce:86:5c:5d:66:42:cd:7a:f1:d8:b9:e1:35:95:10:6e:e6:26: 5c:55:08:d4:1d:21:7f:08:72:38:50:00:2f:0a:59:16:ef:d9: a2:4e:e3:47:53:4e:a5:f9:12:66:96:c0:e8:e6:ca:5a:7d:a7: 14:3e:95:4b:61:7b:27:f6:29:b5:0b:f6:87:bb:5c:d0:5a:c7: 82:8d:c2:79 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBnUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODc4QjIxMTAvBgNVBAUTKEFEREVFOTA5QTMxNjc2MjE1NTNGRDQ0RTAyMjREMzhB MDY3ODc5ODcwHhcNMjUwNTMwMjIzNTM1WhcNMjUwNjA2MjIzNTM1WjAYMRYwFAYD VQQDEw02ODNhMzJiNy1kYjczMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5CtxTx6l3MR7od7gwDR1LNuSnkF3FjktN9pPuVLQc9rprOUxhBLr3PeEYTd7 OkFu8n0RblRsp3FcoUsYxXk2VdTxyIM44tyHkZZcXdfa5Jp6FuVjxAtqZORoT+YR XUgpoZqszaXcduv/cVnseIpFMsuQWrOnTABuOsANnhX9RMUytvZKK1onNs+rJqCv W9QJJyj81C0BVAFZXjiAK74cEQIA6F+zYEVdH19uEN9P+x2RgysPNeXVYOfF0RWx Q66vnLYBEvFUUy27pOI94GlZM2j1YxnTr7JLkmKaiaq5H+SRbj6XDNy0CR4pZM6b PC3bOVXbOC7711Ik8mWXsAEfiQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLsrqUXr 3SR+ST46h2tL6yx5GCxJMB8GA1UdIwQYMBaAFK3e6QmjFnYhVT/UTgIk04oGeHmH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NzhCMi83MzlCQkE1QTdE N0IxMUVCQTYyMjI3NUJDNEY5QUUwMi9yZDdwQ2FNV2RpRlZQOVJPQWlUVGlnWjRl WWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JkN3BDYU1XZGlGVlA5Uk9BaVRUaWdaNGVZYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NzhCMi83MzlCQkE1QTdEN0IxMUVCQTYyMjI3NUJDNEY5QUUwMi9yZDdwQ2FNV2Rp RlZQOVJPQWlUVGlnWjRlWWMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBMUAErQeeJBENi+8GLWqWZb8GX9Jkc+j6OXxAlVoAKqNAWqd6CFhFA oaLb90YLGy8Irfd5wf/+Vk7d2Q6DYFfbOLkJ4ppauquHe3vbUHN+wixBEofqbpMX NN09QFdCvPjZuLiqUbtPMXjt7DD/1dRnIueNfhmOi+CO7dqGRpjrCDVq9kMx9fcd Mm/AlQfjr9LNje1YG+kWZWm9yZOYYTmVKRKs3DdrfJ4whcpQiHc1vG+rdQzOhlxd ZkLNevHYueE1lRBu5iZcVQjUHSF/CHI4UAAvClkW79miTuNHU06l+RJmlsDo5spa facUPpVLYXsn9im1C/aHu1zQWseCjcJ5 -----END CERTIFICATE-----Generated at Sat May 31 16:36:55 2025 by rpki-client