$ rpki-client -vvf rpki.apnic.net/member_repository/A91A57F8/34509400B97511ED8040DE22C4F9AE02/n2T-UJklN_sLQOUvnPrDEMonGRg.mft File: n2T-UJklN_sLQOUvnPrDEMonGRg.mft (raw, json) Hash identifier: aVSMgp2tGfj8+p6w64ETA1lW38Y/Gbj96HUWS0vTORA= Subject key identifier: 72:09:25:66:E7:25:B5:53:5B:37:07:C5:28:0A:CC:78:6C:B2:B2:F4 Authority key identifier: 9F:64:FE:50:99:25:37:FB:0B:40:E5:2F:9C:FA:C3:10:CA:27:19:18 Certificate issuer: /CN=A91A57F8/serialNumber=9F64FE50992537FB0B40E52F9CFAC310CA271918 Certificate serial: 01DB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/n2T-UJklN_sLQOUvnPrDEMonGRg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A57F8/34509400B97511ED8040DE22C4F9AE02/n2T-UJklN_sLQOUvnPrDEMonGRg.mft Manifest number: 01CE Signing time: Sat 31 May 2025 02:58:33 +0000 Manifest this update: Sat 31 May 2025 02:58:33 +0000 Manifest next update: Sat 07 Jun 2025 02:58:33 +0000 Files and hashes: 1: n2T-UJklN_sLQOUvnPrDEMonGRg.crl (hash: u5ussO84LLlA6w3bezuyCo0V7PHo5VMEh1l6X8LTRMg=) 2: A508D320BBC711ED8DF23C40C4F9AE02.roa (hash: gmdIOgts2gqY1ppnefV+yq0uoAlH32RZLcAhOdl6QRA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A57F8/34509400B97511ED8040DE22C4F9AE02/n2T-UJklN_sLQOUvnPrDEMonGRg.crl rsync://rpki.apnic.net/member_repository/A91A57F8/34509400B97511ED8040DE22C4F9AE02/n2T-UJklN_sLQOUvnPrDEMonGRg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/n2T-UJklN_sLQOUvnPrDEMonGRg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 02:58:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 475 (0x1db) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A57F8, serialNumber=9F64FE50992537FB0B40E52F9CFAC310CA271918 Validity Not Before: May 31 02:58:33 2025 GMT Not After : Jun 7 02:58:33 2025 GMT Subject: CN=683a7059-f3ce Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:d6:eb:44:a7:ee:03:f3:78:c4:d5:3a:2b:3f: 19:b1:d3:be:97:87:6e:cb:e5:33:90:9a:3a:ef:c1: 9b:51:94:a5:4e:a3:a7:9a:15:54:47:a4:43:2e:79: d0:4f:0b:33:25:6e:a4:a0:6e:4d:6f:5a:f6:e2:b4: 38:d2:92:3e:fd:14:77:fe:9d:5b:b4:07:f3:14:f7: 8d:4a:d9:0e:d9:a9:b8:a8:ae:d1:e4:31:af:e2:72: 52:da:16:fb:62:7d:ef:e3:eb:01:d6:78:ba:f8:21: 82:a5:53:fd:09:50:0f:59:32:d2:64:b6:7d:be:dc: 03:e2:81:2f:40:ab:fe:d0:08:09:b8:d4:6a:16:ce: fb:77:fe:ac:20:81:6c:8b:c8:d9:35:a4:75:d4:ac: 0b:ed:f3:3a:ad:f0:6c:79:f6:db:df:54:94:a2:4b: a9:82:3c:bd:62:71:58:e6:b9:d4:35:26:63:ab:e2: 40:b3:2a:da:5b:c3:5e:57:aa:eb:05:a6:43:b9:c6: 87:d8:03:d7:f1:98:bb:70:64:16:c6:49:90:ed:a5: 56:83:28:5b:f6:55:82:6e:ab:6e:84:b8:18:97:c6: 6c:3b:58:d1:d1:35:a9:9d:ed:2c:14:53:11:e2:06: 8e:52:a9:0c:37:64:cd:1b:e4:a2:6e:b7:91:8e:08: 43:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 72:09:25:66:E7:25:B5:53:5B:37:07:C5:28:0A:CC:78:6C:B2:B2:F4 X509v3 Authority Key Identifier: keyid:9F:64:FE:50:99:25:37:FB:0B:40:E5:2F:9C:FA:C3:10:CA:27:19:18 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A57F8/34509400B97511ED8040DE22C4F9AE02/n2T-UJklN_sLQOUvnPrDEMonGRg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/n2T-UJklN_sLQOUvnPrDEMonGRg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A57F8/34509400B97511ED8040DE22C4F9AE02/n2T-UJklN_sLQOUvnPrDEMonGRg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 86:b2:27:36:91:2d:44:e4:8a:65:68:b2:f5:50:e4:9e:16:5b: 37:56:07:f5:ba:56:17:ae:2d:8c:0d:4b:45:1a:77:ae:39:34: e8:7c:40:08:58:a2:71:e2:47:4e:d4:f6:2c:83:a7:cf:63:f0: c6:c3:60:9e:79:3b:e8:f2:a0:43:4a:e5:1c:ed:9c:77:c1:35: fa:3a:17:74:5d:5b:2c:26:84:be:e5:a2:ed:aa:a0:9b:81:1c: 84:d8:ae:2c:93:77:ce:01:5d:1e:6d:0a:87:59:80:d2:da:5a: 04:6f:22:e1:99:16:e5:e4:ea:d4:aa:71:03:4f:4a:e5:fc:e5: 05:f7:12:fd:a1:d8:c1:d8:a2:8e:db:20:a3:aa:22:e3:4a:a0: 6e:6b:4c:a9:04:86:73:00:1c:e3:64:19:fe:f3:66:62:6a:ea: d1:a6:4a:ab:aa:1c:c3:d8:a6:93:fe:61:72:c9:53:07:b3:73: 14:79:66:5a:42:2e:8f:f1:30:64:0e:86:eb:5e:2c:1e:74:15: c3:40:9c:b6:ad:fb:70:4a:29:fb:e9:3e:f2:fa:91:cd:db:d3: bd:30:18:fa:30:3d:c0:c2:b2:cd:80:e8:49:b4:05:51:c8:eb: 8e:8c:e7:91:5c:ec:51:49:6e:af:3b:db:cb:16:93:33:dd:54: 64:0b:80:4a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAdswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU3RjgxMTAvBgNVBAUTKDlGNjRGRTUwOTkyNTM3RkIwQjQwRTUyRjlDRkFDMzEw Q0EyNzE5MTgwHhcNMjUwNTMxMDI1ODMzWhcNMjUwNjA3MDI1ODMzWjAYMRYwFAYD VQQDEw02ODNhNzA1OS1mM2NlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuNbrRKfuA/N4xNU6Kz8ZsdO+l4duy+UzkJo678GbUZSlTqOnmhVUR6RDLnnQ TwszJW6koG5Nb1r24rQ40pI+/RR3/p1btAfzFPeNStkO2am4qK7R5DGv4nJS2hb7 Yn3v4+sB1ni6+CGCpVP9CVAPWTLSZLZ9vtwD4oEvQKv+0AgJuNRqFs77d/6sIIFs i8jZNaR11KwL7fM6rfBsefbb31SUokupgjy9YnFY5rnUNSZjq+JAsyraW8NeV6rr BaZDucaH2APX8Zi7cGQWxkmQ7aVWgyhb9lWCbqtuhLgYl8ZsO1jR0TWpne0sFFMR 4gaOUqkMN2TNG+SibreRjghDWQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHIJJWbn JbVTWzcHxSgKzHhssrL0MB8GA1UdIwQYMBaAFJ9k/lCZJTf7C0DlL5z6wxDKJxkY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTdGOC8zNDUwOTQwMEI5 NzUxMUVEODA0MERFMjJDNEY5QUUwMi9uMlQtVUprbE5fc0xRT1V2blByREVNb25H UmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL24yVC1VSmtsTl9zTFFPVXZuUHJERU1vbkdSZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NTdGOC8zNDUwOTQwMEI5NzUxMUVEODA0MERFMjJDNEY5QUUwMi9uMlQtVUprbE5f c0xRT1V2blByREVNb25HUmcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCGsic2kS1E5IplaLL1UOSeFls3Vgf1ulYXri2MDUtFGneuOTTofEAI WKJx4kdO1PYsg6fPY/DGw2CeeTvo8qBDSuUc7Zx3wTX6Ohd0XVssJoS+5aLtqqCb gRyE2K4sk3fOAV0ebQqHWYDS2loEbyLhmRbl5OrUqnEDT0rl/OUF9xL9odjB2KKO 2yCjqiLjSqBua0ypBIZzABzjZBn+82ZiaurRpkqrqhzD2KaT/mFyyVMHs3MUeWZa Qi6P8TBkDobrXiwedBXDQJy2rftwSin76T7y+pHN29O9MBj6MD3AwrLNgOhJtAVR yOuOjOeRXOxRSW6vO9vLFpMz3VRkC4BK -----END CERTIFICATE-----Generated at Sat May 31 17:22:04 2025 by rpki-client