$ rpki-client -vvf rpki.apnic.net/member_repository/A91892EB/FD0081DEC56711EBAFEA602BC4F9AE02/C2zfP6zGgLeGkm3hOfHg9nREBlQ.mft File: C2zfP6zGgLeGkm3hOfHg9nREBlQ.mft (raw, json) Hash identifier: Et61wN5o4t0kKF5fBecmMylQXHlj+2dFL78Wy9gKi20= Subject key identifier: 1C:C7:E6:A8:83:0F:6F:FF:18:7D:92:D7:EE:4E:36:AD:0A:47:58:70 Authority key identifier: 0B:6C:DF:3F:AC:C6:80:B7:86:92:6D:E1:39:F1:E0:F6:74:44:06:54 Certificate issuer: /CN=A91892EB/serialNumber=0B6CDF3FACC680B786926DE139F1E0F674440654 Certificate serial: 05E1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C2zfP6zGgLeGkm3hOfHg9nREBlQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91892EB/FD0081DEC56711EBAFEA602BC4F9AE02/C2zfP6zGgLeGkm3hOfHg9nREBlQ.mft Manifest number: 05CA Signing time: Wed 04 Jun 2025 22:58:25 +0000 Manifest this update: Wed 04 Jun 2025 22:58:24 +0000 Manifest next update: Wed 11 Jun 2025 22:58:24 +0000 Files and hashes: 1: C2zfP6zGgLeGkm3hOfHg9nREBlQ.crl (hash: gmZ9IPpxIPwCreAgMX//XtFwgnC+DoU39n7ghOz4zEw=) 2: 387532CEE46D11EE8DBC2937C4F9AE02.roa (hash: ruwggHNoAUFm9Chx4UGeH2/Ms9/ktBjyMv9b4cEeu5E=) 3: F4DC3C2AC59211EBAA9C5B7BC4F9AE02.roa (hash: Ofg177dT9U9TbFcWrgETTbW4rQYxs3ewgMOUkLe9Rug=) 4: F5BE1E346FFD11EE83D3D154C4F9AE02.roa (hash: zkvJXsg6ZbaTEwK193SUdCnoyTyMt79mUaZuDwnshuE=) 5: D4413B92007C11EE99460918C4F9AE02.roa (hash: bEBpIBlAOueDVvlaTSK/ST40bTuOmwGNh/38eLyftkg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91892EB/FD0081DEC56711EBAFEA602BC4F9AE02/C2zfP6zGgLeGkm3hOfHg9nREBlQ.crl rsync://rpki.apnic.net/member_repository/A91892EB/FD0081DEC56711EBAFEA602BC4F9AE02/C2zfP6zGgLeGkm3hOfHg9nREBlQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C2zfP6zGgLeGkm3hOfHg9nREBlQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 11 Jun 2025 22:58:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1505 (0x5e1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91892EB, serialNumber=0B6CDF3FACC680B786926DE139F1E0F674440654 Validity Not Before: Jun 4 22:58:24 2025 GMT Not After : Jun 11 22:58:24 2025 GMT Subject: CN=6840cf91-04d6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:60:d7:ed:57:60:84:4a:45:ad:33:04:ff:19: 10:1b:54:78:7b:c4:18:9d:bb:05:ce:64:20:01:f7: f8:98:dc:28:74:6f:6f:f3:ef:ff:ec:e7:c6:28:73: 81:c4:e4:b2:e2:0f:79:5c:11:4d:1d:45:e8:74:d4: 84:02:e1:c0:6f:cc:f4:28:f7:13:5e:d2:4e:2c:36: 81:91:50:58:69:12:80:32:bb:28:27:08:34:c9:cf: 00:a4:ac:d8:ad:e6:f6:98:ce:a6:b1:78:89:d0:fe: a5:84:7b:4d:6a:9e:c3:a9:c3:5e:69:6e:9f:37:70: 09:9b:89:2c:36:f3:9d:d7:77:53:29:ce:e6:e3:e6: 31:44:da:3f:4f:19:0b:3a:6f:84:84:ca:a4:5d:7c: 6a:72:0f:d8:41:c3:ea:7e:6a:b9:b1:5a:ac:86:a9: 44:d1:b9:a8:60:52:43:47:1d:ca:d0:de:bc:fd:f9: d1:fe:f8:f1:0f:00:1e:04:f3:13:63:5d:33:c2:2e: 09:a9:ff:22:7c:38:6c:22:df:e2:e4:56:bf:90:ff: e7:f2:81:8d:9b:27:d3:33:39:8b:fd:92:e4:19:b2: 77:11:05:56:7c:4f:11:58:4f:99:74:2f:93:8b:fa: 4a:44:79:1d:42:26:6c:37:bd:96:0f:19:f4:8c:3f: 85:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1C:C7:E6:A8:83:0F:6F:FF:18:7D:92:D7:EE:4E:36:AD:0A:47:58:70 X509v3 Authority Key Identifier: keyid:0B:6C:DF:3F:AC:C6:80:B7:86:92:6D:E1:39:F1:E0:F6:74:44:06:54 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91892EB/FD0081DEC56711EBAFEA602BC4F9AE02/C2zfP6zGgLeGkm3hOfHg9nREBlQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C2zfP6zGgLeGkm3hOfHg9nREBlQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91892EB/FD0081DEC56711EBAFEA602BC4F9AE02/C2zfP6zGgLeGkm3hOfHg9nREBlQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 89:05:3c:09:39:9c:bb:da:e4:f1:13:e6:86:07:6c:f7:9e:0a: 78:5e:37:b7:bb:e0:65:8a:6f:de:37:15:08:b5:e2:14:ba:d7: 59:c2:d0:83:af:56:09:41:0f:8e:d2:ff:fd:7e:56:4e:2c:d7: 33:90:cf:5b:31:3f:93:8d:db:7b:75:65:36:a4:90:cc:b6:00: be:a8:02:56:0b:7d:88:8f:17:ba:a6:77:64:70:52:d3:b3:d2: bf:a8:fb:5d:0c:4f:f0:fc:2b:d2:43:9d:be:ec:5e:f4:e6:a4: 0b:42:5f:af:6d:82:ca:e2:b6:07:e6:3d:5e:ce:29:82:5c:36: a4:97:d0:db:f9:4b:57:02:44:f5:55:7a:4c:26:60:7e:85:53: bb:12:a9:80:9a:e8:35:dc:d5:5b:21:6f:2d:71:db:1d:55:1e: 55:c6:fd:db:b4:79:1e:1f:d8:62:12:9f:07:58:d6:0c:8c:3a: 8d:fa:a3:d6:f2:3a:57:85:79:bb:24:75:d1:22:fd:b3:95:1c: 6f:2e:f1:60:da:6a:ca:aa:28:ec:76:93:d3:86:29:78:23:bd: 54:f8:05:52:3a:59:76:99:ae:39:cf:15:a5:23:56:d3:9f:bf: 38:34:64:eb:db:3a:c3:d4:48:10:d1:8b:89:5b:ca:35:5c:a8: 27:89:90:1c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBeEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODkyRUIxMTAvBgNVBAUTKDBCNkNERjNGQUNDNjgwQjc4NjkyNkRFMTM5RjFFMEY2 NzQ0NDA2NTQwHhcNMjUwNjA0MjI1ODI0WhcNMjUwNjExMjI1ODI0WjAYMRYwFAYD VQQDEw02ODQwY2Y5MS0wNGQ2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsWDX7VdghEpFrTME/xkQG1R4e8QYnbsFzmQgAff4mNwodG9v8+//7OfGKHOB xOSy4g95XBFNHUXodNSEAuHAb8z0KPcTXtJOLDaBkVBYaRKAMrsoJwg0yc8ApKzY reb2mM6msXiJ0P6lhHtNap7DqcNeaW6fN3AJm4ksNvOd13dTKc7m4+YxRNo/TxkL Om+EhMqkXXxqcg/YQcPqfmq5sVqshqlE0bmoYFJDRx3K0N68/fnR/vjxDwAeBPMT Y10zwi4Jqf8ifDhsIt/i5Fa/kP/n8oGNmyfTMzmL/ZLkGbJ3EQVWfE8RWE+ZdC+T i/pKRHkdQiZsN72WDxn0jD+FTQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBzH5qiD D2//GH2S1+5ONq0KR1hwMB8GA1UdIwQYMBaAFAts3z+sxoC3hpJt4Tnx4PZ0RAZU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4OTJFQi9GRDAwODFERUM1 NjcxMUVCQUZFQTYwMkJDNEY5QUUwMi9DMnpmUDZ6R2dMZUdrbTNoT2ZIZzluUkVC bFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0MyemZQNnpHZ0xlR2ttM2hPZkhnOW5SRUJsUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 OTJFQi9GRDAwODFERUM1NjcxMUVCQUZFQTYwMkJDNEY5QUUwMi9DMnpmUDZ6R2dM ZUdrbTNoT2ZIZzluUkVCbFEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCJBTwJOZy72uTxE+aGB2z3ngp4Xje3u+Blim/eNxUIteIUutdZwtCD r1YJQQ+O0v/9flZOLNczkM9bMT+Tjdt7dWU2pJDMtgC+qAJWC32Ijxe6pndkcFLT s9K/qPtdDE/w/CvSQ52+7F705qQLQl+vbYLK4rYH5j1ezimCXDakl9Db+UtXAkT1 VXpMJmB+hVO7EqmAmug13NVbIW8tcdsdVR5Vxv3btHkeH9hiEp8HWNYMjDqN+qPW 8jpXhXm7JHXRIv2zlRxvLvFg2mrKqijsdpPThil4I71U+AVSOll2ma45zxWlI1bT n784NGTr2zrD1EgQ0YuJW8o1XKgniZAc -----END CERTIFICATE-----Generated at Thu Jun 5 19:18:14 2025 by rpki-client