$ rpki-client -vvf rpki.apnic.net/member_repository/A91889B6/39AA0A021D9611E2A6548E7E08B02CD2/2wMnFEPnXW0ZUFDtyLYT7V_72Dg.mft File: 2wMnFEPnXW0ZUFDtyLYT7V_72Dg.mft (raw, json) Hash identifier: yzPCU6fzwHkI6WA5nK91+SZH87uCulgbioL4XH8D1o8= Subject key identifier: D7:C8:F1:DE:C0:1F:15:4F:B4:87:77:37:7B:CD:9B:37:1C:39:96:77 Authority key identifier: DB:03:27:14:43:E7:5D:6D:19:50:50:ED:C8:B6:13:ED:5F:FB:D8:38 Certificate issuer: /CN=A91889B6/serialNumber=DB03271443E75D6D195050EDC8B613ED5FFBD838 Certificate serial: 348D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2wMnFEPnXW0ZUFDtyLYT7V_72Dg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91889B6/39AA0A021D9611E2A6548E7E08B02CD2/2wMnFEPnXW0ZUFDtyLYT7V_72Dg.mft Manifest number: 348A Signing time: Sat 31 May 2025 14:48:52 +0000 Manifest this update: Sat 31 May 2025 14:48:51 +0000 Manifest next update: Sat 07 Jun 2025 14:48:51 +0000 Files and hashes: 1: 2wMnFEPnXW0ZUFDtyLYT7V_72Dg.crl (hash: WA0sqyjssfMKcMtMlAOmMiOPc4gTQ/L8HKsqgw6fujs=) 2: 10E0F1884D0C11EE81002274C4F9AE02.roa (hash: OUXfbXIv2KGUcMt1yzZeYDgmZBLfK/Afrx3klkuMb44=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91889B6/39AA0A021D9611E2A6548E7E08B02CD2/2wMnFEPnXW0ZUFDtyLYT7V_72Dg.crl rsync://rpki.apnic.net/member_repository/A91889B6/39AA0A021D9611E2A6548E7E08B02CD2/2wMnFEPnXW0ZUFDtyLYT7V_72Dg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2wMnFEPnXW0ZUFDtyLYT7V_72Dg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 14:48:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13453 (0x348d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91889B6, serialNumber=DB03271443E75D6D195050EDC8B613ED5FFBD838 Validity Not Before: May 31 14:48:51 2025 GMT Not After : Jun 7 14:48:51 2025 GMT Subject: CN=683b16d3-60ad Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:fd:78:5a:fd:21:b5:05:57:fe:0a:a2:80:18: 07:8a:fb:df:96:d3:93:13:58:3d:97:63:8f:e7:1a: 3c:81:33:99:4a:65:a0:fa:b2:5a:dd:0c:21:16:74: b8:7a:1c:a9:53:e5:ad:21:7b:f1:a1:27:3a:cd:2b: cf:25:c2:d9:7e:86:61:23:69:67:01:cb:da:65:64: 69:5e:52:4b:bb:b7:9b:80:e4:f6:c1:c1:fa:da:70: 5b:62:84:13:3d:e1:33:f5:f5:74:25:38:53:3f:f7: a8:e6:01:a2:15:c9:e4:e4:85:6f:30:1f:79:40:e3: 75:1a:85:c8:4a:60:9f:09:24:d6:2a:63:8c:98:93: 6a:cd:08:74:1c:20:5b:47:3b:b9:7a:ef:bd:1b:96: 2a:4c:bc:fe:7d:48:04:48:83:9a:3c:3a:56:d1:1f: 9f:1f:5c:ad:22:2c:00:ae:af:83:9e:6c:49:da:d4: 18:43:27:44:7f:20:ad:91:94:7d:27:d5:49:5f:df: 0f:2c:9f:57:fe:47:15:6d:0c:93:df:5a:58:3a:71: 16:09:b0:4b:90:40:a4:af:f8:1e:ed:19:82:f5:b7: e8:d3:ec:75:5a:01:a2:df:55:e9:08:89:16:fc:dd: 50:83:16:02:61:98:54:f8:b7:9e:cc:b1:e6:bc:43: 4c:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D7:C8:F1:DE:C0:1F:15:4F:B4:87:77:37:7B:CD:9B:37:1C:39:96:77 X509v3 Authority Key Identifier: keyid:DB:03:27:14:43:E7:5D:6D:19:50:50:ED:C8:B6:13:ED:5F:FB:D8:38 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91889B6/39AA0A021D9611E2A6548E7E08B02CD2/2wMnFEPnXW0ZUFDtyLYT7V_72Dg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2wMnFEPnXW0ZUFDtyLYT7V_72Dg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91889B6/39AA0A021D9611E2A6548E7E08B02CD2/2wMnFEPnXW0ZUFDtyLYT7V_72Dg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 74:b5:92:9b:fe:24:c1:6e:29:0c:82:ad:d3:c3:11:f3:ab:49: 0e:73:e7:6b:11:81:5a:c0:6f:f4:3d:2c:a6:d0:d8:40:bf:57: 39:be:de:67:c8:3d:8d:49:8a:c4:19:21:6a:82:25:17:d8:30: be:6f:a6:c0:9b:20:dc:b6:38:65:a1:65:fc:91:86:7f:50:d5: 6d:01:aa:a6:c1:b0:f9:0d:f0:91:e8:3a:0c:99:36:ff:31:98: 52:d4:b3:d1:ed:ca:36:06:ef:18:75:b9:ac:17:51:fc:b3:2b: fd:ea:5b:f4:fc:f8:23:59:46:51:13:a0:3e:58:e2:22:53:2a: 69:1e:17:74:46:ec:bd:95:9d:29:88:97:74:07:27:e2:b9:b0: a7:65:9c:a9:80:55:ac:e4:20:54:99:1d:f7:ee:d9:92:02:84: 77:38:4c:ff:8f:19:fd:55:c1:c6:94:19:1b:62:2e:23:95:be: f5:ee:c7:68:57:b8:21:14:1d:66:c9:b4:87:7d:1e:7d:62:a3: 43:e2:ac:37:4e:4e:1f:13:3e:68:fa:67:25:f3:48:10:d9:d9: b3:48:96:9b:80:fd:30:e6:3a:59:b3:40:ce:b6:b0:f8:8f:34: 09:c3:b2:ab:ba:97:07:b9:a8:75:00:ea:e6:a9:36:fc:99:7d: 24:bc:78:3e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNI0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODg5QjYxMTAvBgNVBAUTKERCMDMyNzE0NDNFNzVENkQxOTUwNTBFREM4QjYxM0VE NUZGQkQ4MzgwHhcNMjUwNTMxMTQ0ODUxWhcNMjUwNjA3MTQ0ODUxWjAYMRYwFAYD VQQDEw02ODNiMTZkMy02MGFkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuf14Wv0htQVX/gqigBgHivvfltOTE1g9l2OP5xo8gTOZSmWg+rJa3QwhFnS4 ehypU+WtIXvxoSc6zSvPJcLZfoZhI2lnAcvaZWRpXlJLu7ebgOT2wcH62nBbYoQT PeEz9fV0JThTP/eo5gGiFcnk5IVvMB95QON1GoXISmCfCSTWKmOMmJNqzQh0HCBb Rzu5eu+9G5YqTLz+fUgESIOaPDpW0R+fH1ytIiwArq+DnmxJ2tQYQydEfyCtkZR9 J9VJX98PLJ9X/kcVbQyT31pYOnEWCbBLkECkr/ge7RmC9bfo0+x1WgGi31XpCIkW /N1QgxYCYZhU+LeezLHmvENMcQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNfI8d7A HxVPtId3N3vNmzccOZZ3MB8GA1UdIwQYMBaAFNsDJxRD511tGVBQ7ci2E+1f+9g4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4ODlCNi8zOUFBMEEwMjFE OTYxMUUyQTY1NDhFN0UwOEIwMkNEMi8yd01uRkVQblhXMFpVRkR0eUxZVDdWXzcy RGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJ3TW5GRVBuWFcwWlVGRHR5TFlUN1ZfNzJEZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 ODlCNi8zOUFBMEEwMjFEOTYxMUUyQTY1NDhFN0UwOEIwMkNEMi8yd01uRkVQblhX MFpVRkR0eUxZVDdWXzcyRGcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB0tZKb/iTBbikMgq3TwxHzq0kOc+drEYFawG/0PSym0NhAv1c5vt5n yD2NSYrEGSFqgiUX2DC+b6bAmyDctjhloWX8kYZ/UNVtAaqmwbD5DfCR6DoMmTb/ MZhS1LPR7co2Bu8YdbmsF1H8syv96lv0/PgjWUZRE6A+WOIiUyppHhd0Ruy9lZ0p iJd0ByfiubCnZZypgFWs5CBUmR337tmSAoR3OEz/jxn9VcHGlBkbYi4jlb717sdo V7ghFB1mybSHfR59YqND4qw3Tk4fEz5o+mcl80gQ2dmzSJabgP0w5jpZs0DOtrD4 jzQJw7KrupcHuah1AOrmqTb8mX0kvHg+ -----END CERTIFICATE-----Generated at Sat May 31 17:08:57 2025 by rpki-client