$ rpki-client -vvf rpki.apnic.net/member_repository/A918E20E/23AAD98E1FC811EA84594F5EC4F9AE02/r2oY2zoHHvGMylvos1Qz31RPD7I.mft File: r2oY2zoHHvGMylvos1Qz31RPD7I.mft (raw, json) Hash identifier: P9JCdPAM/sfHr7YDgSqadVzUco1vlOk22Isl1H5n1cU= Subject key identifier: B9:4F:8B:CD:D3:62:89:89:A9:C2:CD:EC:A5:8A:BE:DE:EA:30:3F:2B Authority key identifier: AF:6A:18:DB:3A:07:1E:F1:8C:CA:5B:E8:B3:54:33:DF:54:4F:0F:B2 Certificate issuer: /CN=A918E20E/serialNumber=AF6A18DB3A071EF18CCA5BE8B35433DF544F0FB2 Certificate serial: 0BBC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r2oY2zoHHvGMylvos1Qz31RPD7I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918E20E/23AAD98E1FC811EA84594F5EC4F9AE02/r2oY2zoHHvGMylvos1Qz31RPD7I.mft Manifest number: 0BB6 Signing time: Fri 30 May 2025 19:07:16 +0000 Manifest this update: Fri 30 May 2025 19:07:16 +0000 Manifest next update: Fri 06 Jun 2025 19:07:16 +0000 Files and hashes: 1: r2oY2zoHHvGMylvos1Qz31RPD7I.crl (hash: ryOU0dxI5TKPGXAJkRxqkFJQM11jfiA8BvR9lpVZlUo=) 2: BFA3B5F81FC911EA8CF04E61C4F9AE02.roa (hash: tRDPOuysTM3j6RUChVc/lZ1Ir+BGvYj0vPYVhGcTQNo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918E20E/23AAD98E1FC811EA84594F5EC4F9AE02/r2oY2zoHHvGMylvos1Qz31RPD7I.crl rsync://rpki.apnic.net/member_repository/A918E20E/23AAD98E1FC811EA84594F5EC4F9AE02/r2oY2zoHHvGMylvos1Qz31RPD7I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r2oY2zoHHvGMylvos1Qz31RPD7I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 19:07:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3004 (0xbbc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918E20E, serialNumber=AF6A18DB3A071EF18CCA5BE8B35433DF544F0FB2 Validity Not Before: May 30 19:07:16 2025 GMT Not After : Jun 6 19:07:16 2025 GMT Subject: CN=683a01e4-2574 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:92:31:87:71:d7:22:70:d9:65:24:c1:20:7e: 92:03:d3:76:84:8b:bb:f7:70:d2:1d:90:1b:3e:68: f4:af:1e:b1:61:56:0f:88:6c:5c:3f:60:0a:f9:ea: 54:0c:41:39:51:6e:dd:4f:3a:f1:0f:aa:09:a7:67: 30:ea:0a:10:56:09:98:4d:01:ae:c1:9d:27:02:74: b2:27:8e:40:da:5c:a4:05:4c:3b:e6:46:7a:ce:94: dd:7f:24:4a:92:80:ac:46:10:22:5a:b0:02:ab:bb: 19:2e:de:8c:7f:a1:87:12:4e:b9:ce:47:dc:7a:ce: f2:05:70:de:68:00:0c:6a:ae:a1:59:ac:22:b0:23: d1:f3:39:30:19:71:71:f5:09:f9:85:6a:43:ac:a9: 3f:02:7d:34:34:63:77:e2:23:03:ba:1e:57:14:ad: 10:18:6c:90:b9:cc:9a:c9:2a:4b:87:fb:5d:7c:f2: 64:22:53:62:44:17:1a:57:ff:02:b3:35:ae:9a:a1: b1:bc:ff:31:59:92:bf:88:d9:75:21:ee:d7:eb:be: b6:88:f8:6b:08:66:86:74:35:3e:ce:22:de:49:e2: 49:05:56:9e:9d:9e:d3:37:3a:39:51:4f:0a:cf:e8: b6:1a:68:8c:70:9f:b0:78:29:c9:8d:8b:4b:26:09: 2c:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B9:4F:8B:CD:D3:62:89:89:A9:C2:CD:EC:A5:8A:BE:DE:EA:30:3F:2B X509v3 Authority Key Identifier: keyid:AF:6A:18:DB:3A:07:1E:F1:8C:CA:5B:E8:B3:54:33:DF:54:4F:0F:B2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918E20E/23AAD98E1FC811EA84594F5EC4F9AE02/r2oY2zoHHvGMylvos1Qz31RPD7I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r2oY2zoHHvGMylvos1Qz31RPD7I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918E20E/23AAD98E1FC811EA84594F5EC4F9AE02/r2oY2zoHHvGMylvos1Qz31RPD7I.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 79:f8:fe:4c:12:85:d1:e6:b6:80:88:b6:ad:0f:fd:7a:56:a8: 5f:0d:10:7b:4d:17:69:a9:d8:79:5e:21:51:9e:22:a2:c8:4c: 73:a3:5d:55:56:ea:07:6a:54:d6:b6:1b:1d:dd:43:a0:7c:1f: 93:42:e5:78:bd:34:ac:2a:32:ea:ad:6a:37:4d:67:63:e4:5c: 1e:11:bc:c5:fe:fe:c3:82:c1:61:87:15:37:b3:51:79:46:ca: 3e:dd:df:6b:70:fa:eb:8c:b6:c5:13:37:32:d5:9b:ca:7c:0d: 9e:56:39:b4:b5:2c:ff:5f:5c:1e:c0:a0:35:78:b9:46:22:cb: e7:96:ef:cd:ec:00:8b:f1:12:bb:f2:92:80:20:6f:b3:91:c8: b8:6f:06:60:ee:81:2b:3b:51:38:12:b5:35:63:1d:86:52:59: c9:98:92:ef:69:fe:0f:fb:2a:84:c8:88:5d:e3:99:cf:d9:87: d4:9e:ce:33:dd:99:75:0c:c1:0e:aa:fc:18:12:c7:b3:3b:32: 74:ba:6e:c2:c2:da:b3:81:7e:4c:c5:10:44:32:00:c0:af:31: d6:7b:9f:ca:98:73:97:6c:d2:ac:37:5f:8b:25:d5:41:22:75: 79:f5:9a:ac:3d:82:1b:a8:72:d1:b8:fa:ab:f8:fa:1c:07:51: 5f:b4:59:7a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC7wwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEUyMEUxMTAvBgNVBAUTKEFGNkExOERCM0EwNzFFRjE4Q0NBNUJFOEIzNTQzM0RG NTQ0RjBGQjIwHhcNMjUwNTMwMTkwNzE2WhcNMjUwNjA2MTkwNzE2WjAYMRYwFAYD VQQDEw02ODNhMDFlNC0yNTc0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwZIxh3HXInDZZSTBIH6SA9N2hIu793DSHZAbPmj0rx6xYVYPiGxcP2AK+epU DEE5UW7dTzrxD6oJp2cw6goQVgmYTQGuwZ0nAnSyJ45A2lykBUw75kZ6zpTdfyRK koCsRhAiWrACq7sZLt6Mf6GHEk65zkfces7yBXDeaAAMaq6hWawisCPR8zkwGXFx 9Qn5hWpDrKk/An00NGN34iMDuh5XFK0QGGyQucyaySpLh/tdfPJkIlNiRBcaV/8C szWumqGxvP8xWZK/iNl1Ie7X6762iPhrCGaGdDU+ziLeSeJJBVaenZ7TNzo5UU8K z+i2GmiMcJ+weCnJjYtLJgksFwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLlPi83T YomJqcLN7KWKvt7qMD8rMB8GA1UdIwQYMBaAFK9qGNs6Bx7xjMpb6LNUM99UTw+y MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RTIwRS8yM0FBRDk4RTFG QzgxMUVBODQ1OTRGNUVDNEY5QUUwMi9yMm9ZMnpvSEh2R015bHZvczFRejMxUlBE N0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3Iyb1kyem9ISHZHTXlsdm9zMVF6MzFSUEQ3SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 RTIwRS8yM0FBRDk4RTFGQzgxMUVBODQ1OTRGNUVDNEY5QUUwMi9yMm9ZMnpvSEh2 R015bHZvczFRejMxUlBEN0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB5+P5MEoXR5raAiLatD/16VqhfDRB7TRdpqdh5XiFRniKiyExzo11V VuoHalTWthsd3UOgfB+TQuV4vTSsKjLqrWo3TWdj5FweEbzF/v7DgsFhhxU3s1F5 Rso+3d9rcPrrjLbFEzcy1ZvKfA2eVjm0tSz/X1wewKA1eLlGIsvnlu/N7ACL8RK7 8pKAIG+zkci4bwZg7oErO1E4ErU1Yx2GUlnJmJLvaf4P+yqEyIhd45nP2YfUns4z 3Zl1DMEOqvwYEsezOzJ0um7CwtqzgX5MxRBEMgDArzHWe5/KmHOXbNKsN1+LJdVB InV59ZqsPYIbqHLRuPqr+PocB1FftFl6 -----END CERTIFICATE-----Generated at Sat May 31 17:36:06 2025 by rpki-client