$ rpki-client -vvf rpki.apnic.net/member_repository/A91A3FFF/82AD377A4DAB11EC9214F521C4F9AE02/2j9P_11GRonTiYj1-yL2VVCz7_g.mft File: 2j9P_11GRonTiYj1-yL2VVCz7_g.mft (raw, json) Hash identifier: FfWJdzzcCwpizohau8JkBb871GOHfVVmGV2plWS3YXQ= Subject key identifier: 2E:92:7F:26:24:0C:52:17:17:BF:E2:C6:5D:F2:CE:A4:A2:23:3D:0F Authority key identifier: DA:3F:4F:FF:5D:46:46:89:D3:89:88:F5:FB:22:F6:55:50:B3:EF:F8 Certificate issuer: /CN=A91A3FFF/serialNumber=DA3F4FFF5D464689D38988F5FB22F65550B3EFF8 Certificate serial: 0472 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2j9P_11GRonTiYj1-yL2VVCz7_g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A3FFF/82AD377A4DAB11EC9214F521C4F9AE02/2j9P_11GRonTiYj1-yL2VVCz7_g.mft Manifest number: 0466 Signing time: Sun 01 Jun 2025 00:21:57 +0000 Manifest this update: Sun 01 Jun 2025 00:21:56 +0000 Manifest next update: Sun 08 Jun 2025 00:21:56 +0000 Files and hashes: 1: 2j9P_11GRonTiYj1-yL2VVCz7_g.crl (hash: +QCpN24coTRKLLZpGVpRwM0eXRjdmeAEs/MblwdQ7Hs=) 2: 952AA4424DAF11EC86ED5273C4F9AE02.roa (hash: 70pXo7TPZehC7uJ0XdtVRKfDG1GkFpY/5x3mmDYZSxI=) 3: AC63C4A4A62E11ECBDD6843FC4F9AE02.roa (hash: w67HRNi/yFu6FrtkXk67zQVeYi9FWWK0Yn59oMaToP8=) 4: 75426BC6A8C511EC8F560C42C4F9AE02.roa (hash: c26DXYzcpQgya2lb6mPXdMatF2eIuHc37QpxkKWbfsc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A3FFF/82AD377A4DAB11EC9214F521C4F9AE02/2j9P_11GRonTiYj1-yL2VVCz7_g.crl rsync://rpki.apnic.net/member_repository/A91A3FFF/82AD377A4DAB11EC9214F521C4F9AE02/2j9P_11GRonTiYj1-yL2VVCz7_g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2j9P_11GRonTiYj1-yL2VVCz7_g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Jun 2025 00:21:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1138 (0x472) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A3FFF, serialNumber=DA3F4FFF5D464689D38988F5FB22F65550B3EFF8 Validity Not Before: Jun 1 00:21:56 2025 GMT Not After : Jun 8 00:21:56 2025 GMT Subject: CN=683b9d25-6508 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:7d:09:d2:35:81:4c:77:4d:f7:ea:da:71:53: 9c:4c:a5:c9:f1:7f:14:6d:83:ca:db:19:bd:bd:03: 7b:a2:36:70:5a:48:32:cb:d4:d6:bf:e5:13:c3:8a: 80:55:11:06:85:4b:18:78:e4:ed:5f:f3:4c:7a:e5: 3a:7a:55:6f:2f:2b:ef:18:b4:d7:2b:e6:86:cf:29: 11:72:c0:f0:48:4c:77:12:cd:5f:ef:17:92:78:13: 89:38:87:79:13:6e:6d:94:1a:8a:6b:6e:f3:eb:c6: e5:bb:8c:6c:c6:ff:dd:0f:6a:8f:c4:de:93:80:bb: 7c:3d:5b:29:46:a8:d0:39:3f:f5:f6:d1:19:bd:0d: bb:ab:e6:f7:02:4f:48:93:ae:34:9c:9d:bf:20:ae: 19:c6:79:d0:54:c9:04:db:0d:ad:1a:47:86:43:5c: af:e9:18:45:dc:55:f3:94:1f:8e:e1:f5:3f:36:9c: 31:a0:db:09:a5:56:43:30:f9:5a:62:50:bd:4a:74: da:1d:e1:8c:90:0c:0c:ef:04:38:88:3a:82:af:59: b3:76:e1:2a:ea:08:1c:18:73:90:62:f9:4e:a1:e9: af:0f:1b:c3:3c:10:1a:0b:c4:82:b5:6f:39:ed:05: 0d:41:30:30:6e:ed:c4:6e:93:2d:e9:ab:20:0f:45: 38:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2E:92:7F:26:24:0C:52:17:17:BF:E2:C6:5D:F2:CE:A4:A2:23:3D:0F X509v3 Authority Key Identifier: keyid:DA:3F:4F:FF:5D:46:46:89:D3:89:88:F5:FB:22:F6:55:50:B3:EF:F8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A3FFF/82AD377A4DAB11EC9214F521C4F9AE02/2j9P_11GRonTiYj1-yL2VVCz7_g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2j9P_11GRonTiYj1-yL2VVCz7_g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A3FFF/82AD377A4DAB11EC9214F521C4F9AE02/2j9P_11GRonTiYj1-yL2VVCz7_g.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3e:40:8f:cc:01:ba:de:76:50:bf:bc:97:97:fb:38:63:f0:53: c5:83:96:7b:b9:72:ea:0a:a6:ae:44:87:b8:93:37:2e:50:45: 97:d4:38:c2:ab:2f:dc:52:35:7f:87:ac:ed:28:99:06:41:e0: 1f:b9:07:38:8b:ea:08:1c:a2:c7:1c:61:b5:5c:d6:16:56:88: a0:3c:fb:bb:25:4b:33:06:05:ad:53:02:2d:4c:eb:5d:ca:52: 20:39:8a:92:bf:9b:ec:49:58:80:fe:a8:85:f6:99:f8:ba:3c: 29:49:ea:a0:dd:ff:17:e6:7e:2c:b4:32:86:96:20:12:6d:9c: 9d:9e:16:a9:1e:b7:f8:2e:f1:d0:d6:81:c2:88:a3:8c:c6:44: 50:ad:48:82:2b:ea:fe:c7:05:58:f4:37:ad:8f:49:27:95:01: 75:0a:e2:39:b3:28:5e:86:3e:6f:e6:f8:eb:ac:99:9d:77:ce: f9:da:fc:68:c3:b0:ab:8a:59:69:99:d1:3f:f0:16:79:84:32: a4:e9:9a:ac:6b:fe:52:54:b6:a7:f0:91:a8:5e:e2:bc:eb:41: f1:6b:54:d4:89:df:69:3f:6d:8e:09:84:a5:55:2b:26:5d:ab: b2:5d:d9:95:6a:c4:03:ee:24:36:60:e1:c9:ed:c4:1c:bd:ea: d3:69:85:e5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBHIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTNGRkYxMTAvBgNVBAUTKERBM0Y0RkZGNUQ0NjQ2ODlEMzg5ODhGNUZCMjJGNjU1 NTBCM0VGRjgwHhcNMjUwNjAxMDAyMTU2WhcNMjUwNjA4MDAyMTU2WjAYMRYwFAYD VQQDEw02ODNiOWQyNS02NTA4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAz30J0jWBTHdN9+racVOcTKXJ8X8UbYPK2xm9vQN7ojZwWkgyy9TWv+UTw4qA VREGhUsYeOTtX/NMeuU6elVvLyvvGLTXK+aGzykRcsDwSEx3Es1f7xeSeBOJOId5 E25tlBqKa27z68blu4xsxv/dD2qPxN6TgLt8PVspRqjQOT/19tEZvQ27q+b3Ak9I k640nJ2/IK4ZxnnQVMkE2w2tGkeGQ1yv6RhF3FXzlB+O4fU/NpwxoNsJpVZDMPla YlC9SnTaHeGMkAwM7wQ4iDqCr1mzduEq6ggcGHOQYvlOoemvDxvDPBAaC8SCtW85 7QUNQTAwbu3EbpMt6asgD0U40QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFC6SfyYk DFIXF7/ixl3yzqSiIz0PMB8GA1UdIwQYMBaAFNo/T/9dRkaJ04mI9fsi9lVQs+/4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBM0ZGRi84MkFEMzc3QTRE QUIxMUVDOTIxNEY1MjFDNEY5QUUwMi8yajlQXzExR1JvblRpWWoxLXlMMlZWQ3o3 X2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJqOVBfMTFHUm9uVGlZajEteUwyVlZDejdfZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB M0ZGRi84MkFEMzc3QTREQUIxMUVDOTIxNEY1MjFDNEY5QUUwMi8yajlQXzExR1Jv blRpWWoxLXlMMlZWQ3o3X2cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA+QI/MAbredlC/vJeX+zhj8FPFg5Z7uXLqCqauRIe4kzcuUEWX1DjC qy/cUjV/h6ztKJkGQeAfuQc4i+oIHKLHHGG1XNYWVoigPPu7JUszBgWtUwItTOtd ylIgOYqSv5vsSViA/qiF9pn4ujwpSeqg3f8X5n4stDKGliASbZydnhapHrf4LvHQ 1oHCiKOMxkRQrUiCK+r+xwVY9Detj0knlQF1CuI5syhehj5v5vjrrJmdd8752vxo w7CrillpmdE/8BZ5hDKk6Zqsa/5SVLan8JGoXuK860Hxa1TUid9pP22OCYSlVSsm XauyXdmVasQD7iQ2YOHJ7cQcverTaYXl -----END CERTIFICATE-----Generated at Mon Jun 2 06:35:21 2025 by rpki-client