$ rpki-client -vvf rpki.apnic.net/member_repository/A91A546E/0CD41DA8B76A11EA814F5084C4F9AE02/bFpYn5JM6b7R_Yn1r_YwySdXRCA.mft File: bFpYn5JM6b7R_Yn1r_YwySdXRCA.mft (raw, json) Hash identifier: bbPr5/GL+FObITrkbOtcJjJ/PIrZcbhlxEYoPJ5m/ko= Subject key identifier: C3:92:40:B5:CC:6A:90:A7:41:8D:CF:24:C7:28:CB:B0:59:A0:3C:31 Authority key identifier: 6C:5A:58:9F:92:4C:E9:BE:D1:FD:89:F5:AF:F6:30:C9:27:57:44:20 Certificate issuer: /CN=A91A546E/serialNumber=6C5A589F924CE9BED1FD89F5AFF630C927574420 Certificate serial: 0917 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bFpYn5JM6b7R_Yn1r_YwySdXRCA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A546E/0CD41DA8B76A11EA814F5084C4F9AE02/bFpYn5JM6b7R_Yn1r_YwySdXRCA.mft Manifest number: 08E2 Signing time: Fri 30 May 2025 20:44:08 +0000 Manifest this update: Fri 30 May 2025 20:44:07 +0000 Manifest next update: Fri 06 Jun 2025 20:44:07 +0000 Files and hashes: 1: bFpYn5JM6b7R_Yn1r_YwySdXRCA.crl (hash: Bbjcwc02lWWj0pRbRc1wveIPe1KpphDvB14d/RK0Lfk=) 2: 46948AC87B8511EDB9E3E055C4F9AE02.roa (hash: ZxtXXsjPmgBn3QuaEolbOSfh14MSz6fJKNljAALoKTY=) 3: A69F92BE090911F084AAF925C4F9AE02.roa (hash: JAD+Foc1J+GOz5pKNPlHnr3Zrw5SjVxBWNoZZgDQ44M=) 4: 88252000B55C11ECA9565039C4F9AE02.roa (hash: ROM2aBA2uOLvGraWZ2OMfhtRxZ5DusfnSKSNI9N61E8=) 5: CCBF0CF6B55911EC9256FE19C4F9AE02.roa (hash: J9pnyjCXshJdQFSggqWmHXW0nySYEfDGHTCaX/EZOYk=) 6: CC3B5938B55911EC9256FE19C4F9AE02.roa (hash: Ejx3yVkwMIGPx4PH4VpagQp/pASvV9ahz0Vqhx7EKZo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A546E/0CD41DA8B76A11EA814F5084C4F9AE02/bFpYn5JM6b7R_Yn1r_YwySdXRCA.crl rsync://rpki.apnic.net/member_repository/A91A546E/0CD41DA8B76A11EA814F5084C4F9AE02/bFpYn5JM6b7R_Yn1r_YwySdXRCA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bFpYn5JM6b7R_Yn1r_YwySdXRCA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 20:44:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2327 (0x917) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A546E, serialNumber=6C5A589F924CE9BED1FD89F5AFF630C927574420 Validity Not Before: May 30 20:44:07 2025 GMT Not After : Jun 6 20:44:07 2025 GMT Subject: CN=683a1897-a089 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f7:07:95:74:ea:58:6d:a8:95:f5:c9:1e:9e:ca: 1d:55:83:af:5b:88:da:57:94:5a:64:b6:a2:fd:95: 6a:a1:54:12:2f:ac:ba:65:57:13:2e:fd:a3:8a:c8: ff:67:41:a4:a9:91:81:e6:76:12:76:01:15:30:5e: ac:e3:54:35:18:89:a5:7d:5b:49:5e:41:d6:ec:82: 5a:63:e9:89:28:33:31:76:d9:d0:68:8d:ee:ab:12: 31:3f:47:cf:c5:a4:c5:91:15:5d:e4:8e:5d:7a:1e: 44:55:dd:43:4e:01:0d:7d:c6:70:f2:31:43:c8:a0: 1a:ca:ea:e9:f9:22:2d:9d:00:78:21:8f:1a:93:ae: 8d:28:fa:38:6e:7a:7b:75:8b:6e:26:0e:67:0a:1f: b5:52:d4:3b:6a:b6:8e:bc:81:0b:e8:a1:ec:fa:cb: 24:89:54:bc:ec:f3:d8:eb:07:26:d7:a2:84:f4:c5: fd:93:41:38:7e:80:a3:cf:08:7a:c5:20:27:1b:a9: 1b:67:61:5d:db:31:81:7d:21:3c:bc:08:75:4b:46: 61:2f:89:9f:dc:bb:90:d7:e4:bc:f0:db:55:dc:93: 2e:33:c1:9e:32:f9:80:2c:ee:a8:2d:ca:5e:bc:98: 3d:9c:be:58:4d:40:17:41:77:a5:98:fa:0e:dc:9d: a4:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C3:92:40:B5:CC:6A:90:A7:41:8D:CF:24:C7:28:CB:B0:59:A0:3C:31 X509v3 Authority Key Identifier: keyid:6C:5A:58:9F:92:4C:E9:BE:D1:FD:89:F5:AF:F6:30:C9:27:57:44:20 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A546E/0CD41DA8B76A11EA814F5084C4F9AE02/bFpYn5JM6b7R_Yn1r_YwySdXRCA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bFpYn5JM6b7R_Yn1r_YwySdXRCA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A546E/0CD41DA8B76A11EA814F5084C4F9AE02/bFpYn5JM6b7R_Yn1r_YwySdXRCA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b7:62:d3:a2:94:c8:58:96:bb:59:d2:45:85:fe:55:94:8a:80: 6e:51:6e:58:b1:2c:b9:77:f2:31:5d:b7:15:36:bd:e7:c8:50: 5c:ff:18:7e:3b:15:70:17:6a:30:5e:12:f8:83:03:08:8d:52: b9:ff:03:ee:de:4b:3f:56:02:e0:f8:6c:20:5c:0d:57:33:cb: db:3e:e6:0d:5e:d9:d5:fb:2b:02:70:79:51:02:50:c2:80:e7: 8c:e4:6d:99:9a:0c:06:70:e3:b7:26:95:3e:33:10:3a:df:da: 53:a5:95:17:33:3f:aa:51:79:4b:d5:f6:07:e4:30:6e:c3:32: 3d:0a:32:19:3d:03:76:2a:0a:b5:43:ac:d9:6a:a0:fc:89:80: 3b:d1:1c:6f:d2:72:6b:71:aa:1f:38:96:3e:aa:3a:ff:93:8b: 08:4f:c8:0e:aa:ba:5a:a5:a5:86:8d:c4:68:f9:f8:27:f5:fc: a7:22:38:8b:23:c1:8e:5f:8b:b2:d0:02:bd:ad:d2:d9:ae:dc: ca:7d:c3:2a:ab:51:ae:45:09:c9:ac:7c:f8:c8:35:76:cd:2e: 92:d2:42:9b:56:14:0e:91:d7:38:0f:5b:b5:f0:03:b9:bf:17: da:96:c5:f6:b6:07:bb:26:12:f0:97:cc:9a:0f:ca:07:46:83: 79:42:1b:7f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCRcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU0NkUxMTAvBgNVBAUTKDZDNUE1ODlGOTI0Q0U5QkVEMUZEODlGNUFGRjYzMEM5 Mjc1NzQ0MjAwHhcNMjUwNTMwMjA0NDA3WhcNMjUwNjA2MjA0NDA3WjAYMRYwFAYD VQQDEw02ODNhMTg5Ny1hMDg5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA9weVdOpYbaiV9ckensodVYOvW4jaV5RaZLai/ZVqoVQSL6y6ZVcTLv2jisj/ Z0GkqZGB5nYSdgEVMF6s41Q1GImlfVtJXkHW7IJaY+mJKDMxdtnQaI3uqxIxP0fP xaTFkRVd5I5deh5EVd1DTgENfcZw8jFDyKAayurp+SItnQB4IY8ak66NKPo4bnp7 dYtuJg5nCh+1UtQ7araOvIEL6KHs+sskiVS87PPY6wcm16KE9MX9k0E4foCjzwh6 xSAnG6kbZ2Fd2zGBfSE8vAh1S0ZhL4mf3LuQ1+S88NtV3JMuM8GeMvmALO6oLcpe vJg9nL5YTUAXQXelmPoO3J2klwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMOSQLXM apCnQY3PJMcoy7BZoDwxMB8GA1UdIwQYMBaAFGxaWJ+STOm+0f2J9a/2MMknV0Qg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTQ2RS8wQ0Q0MURBOEI3 NkExMUVBODE0RjUwODRDNEY5QUUwMi9iRnBZbjVKTTZiN1JfWW4xcl9Zd3lTZFhS Q0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JGcFluNUpNNmI3Ul9ZbjFyX1l3eVNkWFJDQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NTQ2RS8wQ0Q0MURBOEI3NkExMUVBODE0RjUwODRDNEY5QUUwMi9iRnBZbjVKTTZi N1JfWW4xcl9Zd3lTZFhSQ0EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC3YtOilMhYlrtZ0kWF/lWUioBuUW5YsSy5d/IxXbcVNr3nyFBc/xh+ OxVwF2owXhL4gwMIjVK5/wPu3ks/VgLg+GwgXA1XM8vbPuYNXtnV+ysCcHlRAlDC gOeM5G2ZmgwGcOO3JpU+MxA639pTpZUXMz+qUXlL1fYH5DBuwzI9CjIZPQN2Kgq1 Q6zZaqD8iYA70Rxv0nJrcaofOJY+qjr/k4sIT8gOqrpapaWGjcRo+fgn9fynIjiL I8GOX4uy0AK9rdLZrtzKfcMqq1GuRQnJrHz4yDV2zS6S0kKbVhQOkdc4D1u18AO5 vxfalsX2tge7JhLwl8yaD8oHRoN5Qht/ -----END CERTIFICATE-----Generated at Sat May 31 17:07:40 2025 by rpki-client