$ rpki-client -vvf rpki.apnic.net/member_repository/A9191436/A30B5A4AC78C11E8A76CD914C4F9AE02/rTu2A7FO-ybXFWgvsEE1Hsj502c.mft File: rTu2A7FO-ybXFWgvsEE1Hsj502c.mft (raw, json) Hash identifier: W8oVSkUfAZpqMGQa/1oznST65jFQwJi5XgkZOSmoOfs= Subject key identifier: 35:28:58:FE:EA:77:D9:F8:E5:A2:A7:CE:1B:39:26:69:62:20:A8:26 Authority key identifier: AD:3B:B6:03:B1:4E:FB:26:D7:15:68:2F:B0:41:35:1E:C8:F9:D3:67 Certificate issuer: /CN=A9191436/serialNumber=AD3BB603B14EFB26D715682FB041351EC8F9D367 Certificate serial: 12C8 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/rTu2A7FO-ybXFWgvsEE1Hsj502c.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9191436/A30B5A4AC78C11E8A76CD914C4F9AE02/rTu2A7FO-ybXFWgvsEE1Hsj502c.mft Manifest number: 12A8 Signing time: Mon 02 Jun 2025 17:16:42 +0000 Manifest this update: Mon 02 Jun 2025 17:16:41 +0000 Manifest next update: Mon 09 Jun 2025 17:16:41 +0000 Files and hashes: 1: rTu2A7FO-ybXFWgvsEE1Hsj502c.crl (hash: EqTSnEHzzQrq/7yXvbWl0fXMbzSZ/nzlGSyjdBabbrA=) 2: C31D6D082BA611EF82D8BF21C4F9AE02.roa (hash: cuFQqVlbEJ/udXRPZ56LOiAFU4p5XZPUOiRAjCCaxGQ=) 3: E4AFD636233211EE8737EE2AC4F9AE02.roa (hash: mehZcMjFb7HT3F1ePo3UBF+1EGoPOvu0R4233be/rFs=) 4: 4426B244F6A011EC8E197883C4F9AE02.roa (hash: tPqGcusMyqiuDoF3oCEh1MkgveCq5i4UTPc8YjbijQA=) 5: 403398AA233111EEAF768F66C4F9AE02.roa (hash: LFrmkrzanddJe0x2nUkwJLw/OhE7SJ+J+T3fYrc0q4I=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9191436/A30B5A4AC78C11E8A76CD914C4F9AE02/rTu2A7FO-ybXFWgvsEE1Hsj502c.crl rsync://rpki.apnic.net/member_repository/A9191436/A30B5A4AC78C11E8A76CD914C4F9AE02/rTu2A7FO-ybXFWgvsEE1Hsj502c.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/rTu2A7FO-ybXFWgvsEE1Hsj502c.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 05:53:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4808 (0x12c8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9191436, serialNumber=AD3BB603B14EFB26D715682FB041351EC8F9D367 Validity Not Before: Jun 2 17:16:41 2025 GMT Not After : Jun 9 17:16:41 2025 GMT Subject: CN=683ddc7a-b14a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:d5:a7:7d:e6:d1:bf:ef:42:4d:5b:94:1f:c4: 51:6d:44:79:0c:c3:e1:f4:2b:c4:66:2f:a9:73:78: 7a:97:1d:92:f6:41:21:8e:4b:94:db:ab:0b:c6:4a: e8:c8:35:69:10:2e:f4:34:94:b0:eb:4f:65:e9:51: 3e:e5:03:ac:32:e7:60:b4:91:b9:6e:51:fa:e9:59: 30:2a:e7:60:4b:2e:ed:5d:83:a5:2e:3b:a4:36:36: fe:ab:13:c4:8f:af:3c:61:18:38:f0:12:cf:e6:37: 52:1f:e0:9a:80:d5:43:60:2e:15:d1:75:57:42:92: 04:a7:fb:5a:fd:e1:db:55:5d:40:ac:b9:b8:87:ce: 2e:8e:57:c7:f8:6a:16:65:97:05:ef:a4:36:91:45: 4f:0a:76:f9:d3:7c:b5:96:2a:6c:d3:9b:48:d7:9e: 71:12:d1:3f:d0:37:81:aa:ed:b0:22:cf:a9:8b:74: ff:34:0d:9f:a1:18:c6:31:32:04:cf:c1:5e:a4:90: 0b:20:16:c0:cb:6e:fa:5e:34:52:8a:3f:46:bc:d7: 1f:5a:49:16:8f:5e:7e:47:97:b0:38:f2:ff:cf:04: 35:8e:66:a1:9b:55:67:5b:64:64:61:ce:4f:f9:1a: d8:49:2b:59:91:2a:ae:23:e9:71:69:30:79:f2:45: 1f:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 35:28:58:FE:EA:77:D9:F8:E5:A2:A7:CE:1B:39:26:69:62:20:A8:26 X509v3 Authority Key Identifier: keyid:AD:3B:B6:03:B1:4E:FB:26:D7:15:68:2F:B0:41:35:1E:C8:F9:D3:67 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9191436/A30B5A4AC78C11E8A76CD914C4F9AE02/rTu2A7FO-ybXFWgvsEE1Hsj502c.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/rTu2A7FO-ybXFWgvsEE1Hsj502c.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9191436/A30B5A4AC78C11E8A76CD914C4F9AE02/rTu2A7FO-ybXFWgvsEE1Hsj502c.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2a:30:98:36:16:f5:31:94:66:a7:23:26:0b:a6:7c:21:c3:d7: 75:bc:0a:94:5b:53:de:62:ba:4c:ad:c0:d8:38:12:b8:62:66: 4b:99:83:66:55:d3:60:ac:dd:84:9f:23:8e:d8:29:0f:b8:06: 56:77:27:f7:7a:57:8d:a9:c5:59:2f:94:55:18:ca:c9:ae:7e: 54:14:e6:e7:f7:82:f8:81:32:fe:02:fa:ef:9f:24:a7:78:19: 83:58:2b:bb:28:38:c2:ac:91:56:a4:8f:d6:62:d2:11:a3:e0: 8c:31:37:93:37:bd:56:d0:99:40:fb:04:ef:b2:0c:ed:6b:09: 8f:18:a1:d4:be:81:ac:5e:d5:9b:79:30:09:e6:a3:17:dc:1e: cb:5f:a6:2e:d8:8e:07:0e:f0:e5:75:09:dd:dc:d1:4e:fa:ce: 7c:a9:1e:16:92:27:fa:2f:8b:6c:58:50:3b:7c:c8:3f:0c:70: 56:e0:05:b2:82:76:37:4a:22:68:7a:93:14:37:e1:75:36:88: 55:d1:79:67:92:8e:e0:26:58:a3:62:a8:13:bb:12:66:20:50: bc:d4:c0:24:96:6b:13:94:ff:9e:94:49:11:a0:52:0e:12:55: a9:ea:03:17:6a:7a:0b:c6:02:63:e4:97:6c:ae:11:bd:be:d8: 96:a4:58:07 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEsgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTE0MzYxMTAvBgNVBAUTKEFEM0JCNjAzQjE0RUZCMjZENzE1NjgyRkIwNDEzNTFF QzhGOUQzNjcwHhcNMjUwNjAyMTcxNjQxWhcNMjUwNjA5MTcxNjQxWjAYMRYwFAYD VQQDEw02ODNkZGM3YS1iMTRhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw9WnfebRv+9CTVuUH8RRbUR5DMPh9CvEZi+pc3h6lx2S9kEhjkuU26sLxkro yDVpEC70NJSw609l6VE+5QOsMudgtJG5blH66VkwKudgSy7tXYOlLjukNjb+qxPE j688YRg48BLP5jdSH+CagNVDYC4V0XVXQpIEp/ta/eHbVV1ArLm4h84ujlfH+GoW ZZcF76Q2kUVPCnb503y1lips05tI155xEtE/0DeBqu2wIs+pi3T/NA2foRjGMTIE z8FepJALIBbAy276XjRSij9GvNcfWkkWj15+R5ewOPL/zwQ1jmahm1VnW2RkYc5P +RrYSStZkSquI+lxaTB58kUfUQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDUoWP7q d9n45aKnzhs5JmliIKgmMB8GA1UdIwQYMBaAFK07tgOxTvsm1xVoL7BBNR7I+dNn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5MTQzNi9BMzBCNUE0QUM3 OEMxMUU4QTc2Q0Q5MTRDNEY5QUUwMi9yVHUyQTdGTy15YlhGV2d2c0VFMUhzajUw MmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3JUdTJBN0ZPLXliWEZXZ3ZzRUUxSHNqNTAyYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 MTQzNi9BMzBCNUE0QUM3OEMxMUU4QTc2Q0Q5MTRDNEY5QUUwMi9yVHUyQTdGTy15 YlhGV2d2c0VFMUhzajUwMmMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAqMJg2FvUxlGanIyYLpnwhw9d1vAqUW1PeYrpMrcDYOBK4YmZLmYNm VdNgrN2EnyOO2CkPuAZWdyf3eleNqcVZL5RVGMrJrn5UFObn94L4gTL+AvrvnySn eBmDWCu7KDjCrJFWpI/WYtIRo+CMMTeTN71W0JlA+wTvsgztawmPGKHUvoGsXtWb eTAJ5qMX3B7LX6Yu2I4HDvDldQnd3NFO+s58qR4Wkif6L4tsWFA7fMg/DHBW4AWy gnY3SiJoepMUN+F1NohV0Xlnko7gJlijYqgTuxJmIFC81MAklmsTlP+elEkRoFIO ElWp6gMXanoLxgJj5JdsrhG9vtiWpFgH -----END CERTIFICATE-----Generated at Mon Jun 2 20:10:13 2025 by rpki-client