$ rpki-client -vvf rpki.apnic.net/member_repository/A91A210A/A538ADB83A8211E9A4C2812CC4F9AE02/xGIlbhG2PuqR1z02Q867tRojUK8.mft File: xGIlbhG2PuqR1z02Q867tRojUK8.mft (raw, json) Hash identifier: 2R/Vd8yWuJMtilsPnrFu5o5INGbJg8lUuAUNGS9H1Fc= Subject key identifier: 58:7D:BC:E0:E6:A6:65:8C:0C:FF:C1:46:EE:94:F3:81:71:E9:87:C8 Authority key identifier: C4:62:25:6E:11:B6:3E:EA:91:D7:3D:36:43:CE:BB:B5:1A:23:50:AF Certificate issuer: /CN=A91A210A/serialNumber=C462256E11B63EEA91D73D3643CEBBB51A2350AF Certificate serial: 1059 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xGIlbhG2PuqR1z02Q867tRojUK8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A210A/A538ADB83A8211E9A4C2812CC4F9AE02/xGIlbhG2PuqR1z02Q867tRojUK8.mft Manifest number: 104D Signing time: Fri 30 May 2025 17:34:35 +0000 Manifest this update: Fri 30 May 2025 17:34:35 +0000 Manifest next update: Fri 06 Jun 2025 17:34:35 +0000 Files and hashes: 1: xGIlbhG2PuqR1z02Q867tRojUK8.crl (hash: RQvKEyQUtcy6e1D9LXd96Yd4SvRDp6JG1DS+xCMESbc=) 2: 797BF786FB2C11EFA405F334C4F9AE02.roa (hash: zI34h0FmFtZZLolHCnykLI2wVD3iOXp1eKhUZqTjA48=) 3: 691023063A8311E99AF5572DC4F9AE02.roa (hash: Uy8f9hnHu5ZNhfoO9b7+eo6ci2jsbvNnSUlZAZd6nGo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A210A/A538ADB83A8211E9A4C2812CC4F9AE02/xGIlbhG2PuqR1z02Q867tRojUK8.crl rsync://rpki.apnic.net/member_repository/A91A210A/A538ADB83A8211E9A4C2812CC4F9AE02/xGIlbhG2PuqR1z02Q867tRojUK8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xGIlbhG2PuqR1z02Q867tRojUK8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 17:34:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4185 (0x1059) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A210A, serialNumber=C462256E11B63EEA91D73D3643CEBBB51A2350AF Validity Not Before: May 30 17:34:35 2025 GMT Not After : Jun 6 17:34:35 2025 GMT Subject: CN=6839ec2b-2c6e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f6:fe:a1:e9:f0:6b:4e:1d:c0:09:9e:9c:47:32: 13:27:8d:09:ab:c3:a8:31:0c:69:12:20:b8:27:a2: 99:ee:14:93:86:11:6f:cb:f4:0a:d4:ab:77:9c:03: ff:08:1c:c6:86:1e:e8:f7:cc:b0:0e:59:b0:b6:b5: 62:a4:fe:a0:d3:6e:20:56:8f:95:87:56:0d:9b:77: fa:d0:93:52:27:24:85:f0:6a:a1:65:40:58:93:cd: 82:58:f5:3c:ff:63:3a:20:29:d7:b7:64:d4:2e:96: dd:ed:b7:70:4e:c6:04:f9:16:47:e3:cf:c1:fb:37: 81:4e:3f:1e:d0:c3:37:10:9b:09:07:d7:27:9a:e8: dc:c2:f6:cd:4d:9e:da:69:f3:eb:bf:2d:87:76:96: 7a:41:18:71:2a:d0:07:43:21:51:00:1b:14:f3:c8: 09:e4:4c:56:ff:68:fc:bf:ea:5b:0b:f3:0b:c8:4b: 9f:e2:20:c1:d5:13:5a:4f:ab:78:65:65:37:78:18: 78:5b:f3:69:45:16:c3:85:64:3a:6a:42:f9:de:c6: 9e:a1:f0:27:39:53:47:9e:f8:33:eb:04:b8:c6:ab: 92:24:00:08:86:f5:d6:81:83:59:62:19:19:1f:41: cd:99:3d:ad:41:f6:af:3b:4e:3d:01:50:e4:68:31: 03:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 58:7D:BC:E0:E6:A6:65:8C:0C:FF:C1:46:EE:94:F3:81:71:E9:87:C8 X509v3 Authority Key Identifier: keyid:C4:62:25:6E:11:B6:3E:EA:91:D7:3D:36:43:CE:BB:B5:1A:23:50:AF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A210A/A538ADB83A8211E9A4C2812CC4F9AE02/xGIlbhG2PuqR1z02Q867tRojUK8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xGIlbhG2PuqR1z02Q867tRojUK8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A210A/A538ADB83A8211E9A4C2812CC4F9AE02/xGIlbhG2PuqR1z02Q867tRojUK8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8f:a7:8a:ae:30:04:53:2c:2c:20:65:67:1f:fc:87:ac:bd:0b: 9d:82:ff:eb:50:e9:01:a3:f8:0c:b6:db:1c:25:94:40:41:d6: 43:cc:11:d0:08:90:d9:ca:4e:4b:87:32:a6:0a:a8:9f:53:ee: 6c:fb:15:86:04:17:0b:c1:27:2a:d4:64:41:65:9d:3a:64:88: 94:25:eb:79:91:b2:93:5d:a7:01:2b:51:61:ff:7a:f5:81:aa: 38:0e:9e:ae:60:32:fd:17:0b:aa:bf:d7:f2:d3:f9:62:b0:b4: 14:02:72:24:8f:c5:e5:00:f2:6b:56:66:48:03:3f:6f:b4:9d: 41:b9:01:49:aa:40:7e:a2:5f:f4:3f:a5:5c:e5:c5:98:e7:62: 51:ef:6b:72:3a:f1:a9:22:8b:1b:be:f8:c3:1c:44:35:05:86: d7:c8:fa:9a:15:a3:8c:35:ba:33:89:e6:8b:68:55:6d:0c:46: 81:6e:c6:20:a2:e9:82:ad:6f:3b:62:8a:58:1f:9a:e1:46:d5: 7a:fd:d2:c4:50:cc:34:8a:a0:b4:b5:7d:82:35:66:8d:8e:5a: 97:6b:c8:24:b0:c9:7d:6c:ac:87:08:10:f0:59:f7:eb:e2:52: b5:b3:b4:dd:fb:58:0e:9f:4b:27:ee:9f:eb:48:89:5e:b9:f4: 68:ce:0d:ce -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEFkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTIxMEExMTAvBgNVBAUTKEM0NjIyNTZFMTFCNjNFRUE5MUQ3M0QzNjQzQ0VCQkI1 MUEyMzUwQUYwHhcNMjUwNTMwMTczNDM1WhcNMjUwNjA2MTczNDM1WjAYMRYwFAYD VQQDEw02ODM5ZWMyYi0yYzZlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA9v6h6fBrTh3ACZ6cRzITJ40Jq8OoMQxpEiC4J6KZ7hSThhFvy/QK1Kt3nAP/ CBzGhh7o98ywDlmwtrVipP6g024gVo+Vh1YNm3f60JNSJySF8GqhZUBYk82CWPU8 /2M6ICnXt2TULpbd7bdwTsYE+RZH48/B+zeBTj8e0MM3EJsJB9cnmujcwvbNTZ7a afPrvy2HdpZ6QRhxKtAHQyFRABsU88gJ5ExW/2j8v+pbC/MLyEuf4iDB1RNaT6t4 ZWU3eBh4W/NpRRbDhWQ6akL53saeofAnOVNHnvgz6wS4xquSJAAIhvXWgYNZYhkZ H0HNmT2tQfavO049AVDkaDEDXQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFh9vODm pmWMDP/BRu6U84Fx6YfIMB8GA1UdIwQYMBaAFMRiJW4Rtj7qkdc9NkPOu7UaI1Cv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMjEwQS9BNTM4QURCODNB ODIxMUU5QTRDMjgxMkNDNEY5QUUwMi94R0lsYmhHMlB1cVIxejAyUTg2N3RSb2pV SzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hHSWxiaEcyUHVxUjF6MDJRODY3dFJvalVLOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MjEwQS9BNTM4QURCODNBODIxMUU5QTRDMjgxMkNDNEY5QUUwMi94R0lsYmhHMlB1 cVIxejAyUTg2N3RSb2pVSzgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCPp4quMARTLCwgZWcf/IesvQudgv/rUOkBo/gMttscJZRAQdZDzBHQ CJDZyk5LhzKmCqifU+5s+xWGBBcLwScq1GRBZZ06ZIiUJet5kbKTXacBK1Fh/3r1 gao4Dp6uYDL9Fwuqv9fy0/lisLQUAnIkj8XlAPJrVmZIAz9vtJ1BuQFJqkB+ol/0 P6Vc5cWY52JR72tyOvGpIosbvvjDHEQ1BYbXyPqaFaOMNbozieaLaFVtDEaBbsYg oumCrW87YopYH5rhRtV6/dLEUMw0iqC0tX2CNWaNjlqXa8gksMl9bKyHCBDwWffr 4lK1s7Td+1gOn0sn7p/rSIleufRozg3O -----END CERTIFICATE-----Generated at Sat May 31 17:48:43 2025 by rpki-client