$ rpki-client -vvf rpki.apnic.net/member_repository/A91941E9/DAD8FB80079011EBBB98C076C4F9AE02/Ba0-SqGWG6fsvgKTVyXCXNJr1rw.mft File: Ba0-SqGWG6fsvgKTVyXCXNJr1rw.mft (raw, json) Hash identifier: UXSvb7X/jZyRPE9khVXGUnjrt2xor+c/Xg9Bj3UdmDo= Subject key identifier: 39:E9:60:6C:BF:EF:0C:30:66:AC:16:77:C3:99:5D:44:CF:9A:C9:D3 Authority key identifier: 05:AD:3E:4A:A1:96:1B:A7:EC:BE:02:93:57:25:C2:5C:D2:6B:D6:BC Certificate issuer: /CN=A91941E9/serialNumber=05AD3E4AA1961BA7ECBE02935725C25CD26BD6BC Certificate serial: 07C2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ba0-SqGWG6fsvgKTVyXCXNJr1rw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91941E9/DAD8FB80079011EBBB98C076C4F9AE02/Ba0-SqGWG6fsvgKTVyXCXNJr1rw.mft Manifest number: 07AF Signing time: Fri 30 May 2025 21:32:07 +0000 Manifest this update: Fri 30 May 2025 21:32:07 +0000 Manifest next update: Fri 06 Jun 2025 21:32:07 +0000 Files and hashes: 1: Ba0-SqGWG6fsvgKTVyXCXNJr1rw.crl (hash: bnJZQSQE3rvKojafIYmF61aZT5BXRnd8wkEHKFH56cU=) 2: B0425744D7E211ECBD1D447FC4F9AE02.roa (hash: OdlMqUDNtGzAyirklP55vsYTOSuUBKJCfr9lvqlqHYg=) 3: 308C5012BE4C11ED9598AC4EC4F9AE02.roa (hash: P7lzuIcT4OJPq2KVjR4hbm4014N8PEGkbXpO5IhqpWQ=) 4: 067B1AAA70C611EF8080566DC4F9AE02.roa (hash: ap536R4mDpEQmVBUvi08sdQ4AGgP2k0XYVc0G1WQzN4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91941E9/DAD8FB80079011EBBB98C076C4F9AE02/Ba0-SqGWG6fsvgKTVyXCXNJr1rw.crl rsync://rpki.apnic.net/member_repository/A91941E9/DAD8FB80079011EBBB98C076C4F9AE02/Ba0-SqGWG6fsvgKTVyXCXNJr1rw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ba0-SqGWG6fsvgKTVyXCXNJr1rw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 21:32:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1986 (0x7c2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91941E9, serialNumber=05AD3E4AA1961BA7ECBE02935725C25CD26BD6BC Validity Not Before: May 30 21:32:07 2025 GMT Not After : Jun 6 21:32:07 2025 GMT Subject: CN=683a23d7-5a25 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:21:64:f8:83:ee:7b:d3:a7:c3:8b:6f:45:1d: ba:c9:89:fa:95:8c:1b:f2:3e:58:a7:c0:b3:94:73: c7:b4:a6:87:81:a0:7b:93:cd:e5:bb:a1:c1:ce:83: d7:e7:82:69:b7:86:c0:f4:ed:a1:0a:88:c9:41:d0: cc:77:0b:fa:fd:b9:09:66:1b:f7:c2:3b:d6:d5:65: 03:48:4e:82:5b:ea:0b:7e:53:24:32:7d:6e:1a:84: 45:bd:94:00:7b:84:3e:54:e8:e7:68:9d:37:14:53: 89:68:91:4a:ff:bf:29:28:10:c3:a5:80:ca:9f:58: 99:f8:f2:2e:21:6b:54:89:5f:f1:8f:a6:33:77:0d: ae:15:49:b9:cc:88:e0:96:69:ca:5a:85:57:a0:ce: 9e:3a:a4:db:b9:ff:97:23:8d:29:2d:e7:8d:a6:a0: 15:56:ab:8a:4c:70:ae:46:93:cd:a8:a3:f9:e3:8f: 7a:65:f8:57:8b:5a:ff:8e:f3:23:39:63:2d:da:8e: f9:83:b0:93:eb:ce:89:a3:97:26:d2:14:c7:78:4f: a7:1b:bf:be:75:2f:db:39:86:cf:7a:c7:e7:81:53: 6f:63:8a:76:f1:78:dc:66:c0:72:3e:3c:69:be:0a: 54:0d:58:d9:7a:53:06:c5:81:4d:5b:19:14:c9:c3: 02:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 39:E9:60:6C:BF:EF:0C:30:66:AC:16:77:C3:99:5D:44:CF:9A:C9:D3 X509v3 Authority Key Identifier: keyid:05:AD:3E:4A:A1:96:1B:A7:EC:BE:02:93:57:25:C2:5C:D2:6B:D6:BC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91941E9/DAD8FB80079011EBBB98C076C4F9AE02/Ba0-SqGWG6fsvgKTVyXCXNJr1rw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ba0-SqGWG6fsvgKTVyXCXNJr1rw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91941E9/DAD8FB80079011EBBB98C076C4F9AE02/Ba0-SqGWG6fsvgKTVyXCXNJr1rw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 15:ba:0b:16:c0:ff:7b:84:67:30:78:b0:52:dd:65:4c:b5:ab: 83:c3:da:66:b0:e5:a3:ad:32:5d:29:e2:1a:d9:d5:cc:16:c6: 1f:3b:ea:51:25:b5:09:7c:6c:cd:6e:7e:fa:e4:5d:cc:78:79: 8f:57:91:e2:bf:ce:1a:8a:ca:3f:2f:35:e1:da:e6:1b:2e:56: 5d:22:df:02:17:5a:c7:25:ba:e2:a8:7d:ea:21:a5:79:39:e7: 0d:fa:68:c7:66:87:55:09:5a:89:fc:0c:a1:06:26:d8:fd:1d: 3d:66:8b:5b:c0:72:cd:18:7b:c7:51:5c:ba:74:76:27:3f:1f: d6:70:0e:98:77:76:10:fc:5f:b1:83:e0:3a:5b:d9:8c:a4:8b: 82:ca:32:12:51:53:90:e4:e1:8d:58:f9:3b:6d:95:ef:3e:05: e2:0b:41:58:be:d8:b2:5d:42:cd:f2:2a:35:75:31:00:1e:69: d8:48:68:c3:25:57:eb:2e:97:c7:7e:5d:fe:4d:5d:10:04:d5: 44:37:a0:d3:e2:13:fa:b3:a7:c7:4a:87:dc:d8:96:33:11:0e: c7:62:ed:cf:6f:fc:b8:c9:87:af:ad:e6:3d:9f:85:fb:94:df: a3:62:10:ce:a8:0c:9d:b7:65:f9:99:b7:df:e2:b2:1d:94:df: 20:ab:08:37 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB8IwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTQxRTkxMTAvBgNVBAUTKDA1QUQzRTRBQTE5NjFCQTdFQ0JFMDI5MzU3MjVDMjVD RDI2QkQ2QkMwHhcNMjUwNTMwMjEzMjA3WhcNMjUwNjA2MjEzMjA3WjAYMRYwFAYD VQQDEw02ODNhMjNkNy01YTI1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmiFk+IPue9Onw4tvRR26yYn6lYwb8j5Yp8CzlHPHtKaHgaB7k83lu6HBzoPX 54Jpt4bA9O2hCojJQdDMdwv6/bkJZhv3wjvW1WUDSE6CW+oLflMkMn1uGoRFvZQA e4Q+VOjnaJ03FFOJaJFK/78pKBDDpYDKn1iZ+PIuIWtUiV/xj6Yzdw2uFUm5zIjg lmnKWoVXoM6eOqTbuf+XI40pLeeNpqAVVquKTHCuRpPNqKP54496ZfhXi1r/jvMj OWMt2o75g7CT686Jo5cm0hTHeE+nG7++dS/bOYbPesfngVNvY4p28XjcZsByPjxp vgpUDVjZelMGxYFNWxkUycMCUQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDnpYGy/ 7wwwZqwWd8OZXUTPmsnTMB8GA1UdIwQYMBaAFAWtPkqhlhun7L4Ck1clwlzSa9a8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NDFFOS9EQUQ4RkI4MDA3 OTAxMUVCQkI5OEMwNzZDNEY5QUUwMi9CYTAtU3FHV0c2ZnN2Z0tUVnlYQ1hOSnIx cncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0JhMC1TcUdXRzZmc3ZnS1RWeVhDWE5KcjFydy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NDFFOS9EQUQ4RkI4MDA3OTAxMUVCQkI5OEMwNzZDNEY5QUUwMi9CYTAtU3FHV0c2 ZnN2Z0tUVnlYQ1hOSnIxcncubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAVugsWwP97hGcweLBS3WVMtauDw9pmsOWjrTJdKeIa2dXMFsYfO+pR JbUJfGzNbn765F3MeHmPV5Hiv84aiso/LzXh2uYbLlZdIt8CF1rHJbriqH3qIaV5 OecN+mjHZodVCVqJ/AyhBibY/R09ZotbwHLNGHvHUVy6dHYnPx/WcA6Yd3YQ/F+x g+A6W9mMpIuCyjISUVOQ5OGNWPk7bZXvPgXiC0FYvtiyXULN8io1dTEAHmnYSGjD JVfrLpfHfl3+TV0QBNVEN6DT4hP6s6fHSofc2JYzEQ7HYu3Pb/y4yYevreY9n4X7 lN+jYhDOqAydt2X5mbff4rIdlN8gqwg3 -----END CERTIFICATE-----Generated at Sat May 31 17:53:10 2025 by rpki-client