$ rpki-client -vvf rpki.apnic.net/member_repository/A91A5A57/6E74831056EC11EF8A0CB24FC4F9AE02/2cXYKr0w_dIPqcrz0e2GfbB2lWs.mft File: 2cXYKr0w_dIPqcrz0e2GfbB2lWs.mft (raw, json) Hash identifier: HuLbELyg6uUL3pCfK6WysawPScBd+D3V2whDoTvdSj0= Subject key identifier: 6D:45:12:60:70:95:7E:FE:92:3D:D3:8F:D5:1E:24:43:80:8C:48:73 Authority key identifier: D9:C5:D8:2A:BD:30:FD:D2:0F:A9:CA:F3:D1:ED:86:7D:B0:76:95:6B Certificate issuer: /CN=A91A5A57/serialNumber=D9C5D82ABD30FDD20FA9CAF3D1ED867DB076956B Certificate serial: 99 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2cXYKr0w_dIPqcrz0e2GfbB2lWs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A5A57/6E74831056EC11EF8A0CB24FC4F9AE02/2cXYKr0w_dIPqcrz0e2GfbB2lWs.mft Manifest number: 98 Signing time: Sun 01 Jun 2025 05:59:41 +0000 Manifest this update: Sun 01 Jun 2025 05:59:41 +0000 Manifest next update: Sun 08 Jun 2025 05:59:41 +0000 Files and hashes: 1: 2cXYKr0w_dIPqcrz0e2GfbB2lWs.crl (hash: aCsX6xFd3Ixcvje6wLsq7yGbIqk/7HzkXvNi7T+TmT8=) 2: F6382C7A56EC11EF85879C50C4F9AE02.roa (hash: FxzQ/fIjW3ehlt8HpKRH7n5BfwlAuKegJIAFiGlOhTE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A5A57/6E74831056EC11EF8A0CB24FC4F9AE02/2cXYKr0w_dIPqcrz0e2GfbB2lWs.crl rsync://rpki.apnic.net/member_repository/A91A5A57/6E74831056EC11EF8A0CB24FC4F9AE02/2cXYKr0w_dIPqcrz0e2GfbB2lWs.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2cXYKr0w_dIPqcrz0e2GfbB2lWs.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Jun 2025 05:59:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 153 (0x99) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A5A57, serialNumber=D9C5D82ABD30FDD20FA9CAF3D1ED867DB076956B Validity Not Before: Jun 1 05:59:41 2025 GMT Not After : Jun 8 05:59:41 2025 GMT Subject: CN=683bec4d-63b5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:1a:86:29:76:7c:fc:e3:17:33:4d:a1:12:4a: b1:f2:58:ce:f7:57:cc:7a:f4:a2:c7:8c:78:f8:ef: 5b:34:f7:1b:da:2b:30:e5:3f:6f:49:40:2d:d5:95: 38:76:4b:0d:df:73:e7:8f:fe:a3:54:77:09:a9:81: 32:a9:af:4d:69:e7:0b:2e:9f:5e:d5:b6:76:9c:d7: b9:4d:ee:f4:45:2c:f7:76:8c:8b:f5:13:6e:f3:3f: b3:7f:35:4e:e6:e6:ad:de:82:cf:f1:46:05:d1:d2: a7:2b:63:95:32:ed:08:aa:d6:12:b7:97:10:61:42: 51:64:b6:89:ee:1c:80:91:ee:f3:47:8f:52:0b:95: 36:a3:e4:89:86:69:18:ae:a4:7b:0a:b2:ff:a5:87: eb:7e:5b:48:df:93:4f:d1:8b:b0:0d:ba:d6:c8:18: 19:1e:4b:2b:8e:47:d9:70:da:82:c2:fc:f7:61:71: 9a:c8:cc:c7:4b:68:d0:bb:da:f3:82:07:cc:1b:59: 01:8b:3a:e7:21:cc:67:63:7b:a9:f4:3c:63:33:da: 48:d2:fb:5a:62:e5:2e:38:ad:47:ae:6b:83:a8:04: a3:12:58:c0:26:ec:42:c8:1c:24:c7:60:6d:c3:d0: 3e:72:1b:69:e2:d5:99:e8:05:1e:67:16:88:dd:e6: d5:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6D:45:12:60:70:95:7E:FE:92:3D:D3:8F:D5:1E:24:43:80:8C:48:73 X509v3 Authority Key Identifier: keyid:D9:C5:D8:2A:BD:30:FD:D2:0F:A9:CA:F3:D1:ED:86:7D:B0:76:95:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A5A57/6E74831056EC11EF8A0CB24FC4F9AE02/2cXYKr0w_dIPqcrz0e2GfbB2lWs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2cXYKr0w_dIPqcrz0e2GfbB2lWs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A5A57/6E74831056EC11EF8A0CB24FC4F9AE02/2cXYKr0w_dIPqcrz0e2GfbB2lWs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 44:e8:6a:bf:19:0e:da:de:9a:86:3f:8d:27:ef:e5:4b:56:60: dc:b9:3f:1e:a5:db:57:d4:14:9c:a9:94:13:3b:f2:bf:d1:60: c5:e8:e8:2d:ff:02:94:49:c6:28:f0:bd:6b:71:75:05:54:8f: 68:e6:44:e4:1c:8f:52:79:38:02:b9:2a:32:a1:e9:7b:f5:7d: 86:e7:d0:2e:b9:20:78:d3:fa:76:cc:ac:97:14:b9:5d:f8:dc: 5e:6d:45:d1:d3:f6:74:b2:c9:cb:0c:30:3b:dd:b2:db:a3:b7: be:c0:9e:31:17:a0:c1:d0:bb:da:19:40:5f:78:bc:6a:58:22: d6:80:1d:b3:57:ff:6c:6d:77:6f:b2:0f:ee:50:d3:c8:22:2f: 21:5a:a6:79:f3:88:8a:91:6b:bd:85:b9:e9:a2:fe:7e:43:76: e0:76:32:ae:e3:ca:36:7d:18:1b:df:95:d7:a1:1f:94:f0:89: 71:fa:f8:0d:d7:7f:93:6c:77:c6:a2:03:4d:14:5e:85:00:34: 89:79:e8:2c:94:ca:ae:53:0c:5a:48:a8:e1:03:d3:f9:1c:c0: 80:48:4c:6a:6f:16:e5:c1:45:ad:87:c3:e0:fd:e7:c3:66:59: 9b:dd:05:0f:2a:06:3b:f6:44:a9:ed:2a:36:b9:6a:2d:ff:bc: df:45:99:a9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAJkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTVBNTcxMTAvBgNVBAUTKEQ5QzVEODJBQkQzMEZERDIwRkE5Q0FGM0QxRUQ4NjdE QjA3Njk1NkIwHhcNMjUwNjAxMDU1OTQxWhcNMjUwNjA4MDU1OTQxWjAYMRYwFAYD VQQDEw02ODNiZWM0ZC02M2I1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6hqGKXZ8/OMXM02hEkqx8ljO91fMevSix4x4+O9bNPcb2isw5T9vSUAt1ZU4 dksN33Pnj/6jVHcJqYEyqa9NaecLLp9e1bZ2nNe5Te70RSz3doyL9RNu8z+zfzVO 5uat3oLP8UYF0dKnK2OVMu0IqtYSt5cQYUJRZLaJ7hyAke7zR49SC5U2o+SJhmkY rqR7CrL/pYfrfltI35NP0YuwDbrWyBgZHksrjkfZcNqCwvz3YXGayMzHS2jQu9rz ggfMG1kBizrnIcxnY3up9DxjM9pI0vtaYuUuOK1HrmuDqASjEljAJuxCyBwkx2Bt w9A+chtp4tWZ6AUeZxaI3ebVjQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFG1FEmBw lX7+kj3Tj9UeJEOAjEhzMB8GA1UdIwQYMBaAFNnF2Cq9MP3SD6nK89Hthn2wdpVr MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNUE1Ny82RTc0ODMxMDU2 RUMxMUVGOEEwQ0IyNEZDNEY5QUUwMi8yY1hZS3Iwd19kSVBxY3J6MGUyR2ZiQjJs V3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzJjWFlLcjB3X2RJUHFjcnowZTJHZmJCMmxXcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NUE1Ny82RTc0ODMxMDU2RUMxMUVGOEEwQ0IyNEZDNEY5QUUwMi8yY1hZS3Iwd19k SVBxY3J6MGUyR2ZiQjJsV3MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBE6Gq/GQ7a3pqGP40n7+VLVmDcuT8epdtX1BScqZQTO/K/0WDF6Ogt /wKUScYo8L1rcXUFVI9o5kTkHI9SeTgCuSoyoel79X2G59AuuSB40/p2zKyXFLld +NxebUXR0/Z0ssnLDDA73bLbo7e+wJ4xF6DB0LvaGUBfeLxqWCLWgB2zV/9sbXdv sg/uUNPIIi8hWqZ584iKkWu9hbnpov5+Q3bgdjKu48o2fRgb35XXoR+U8Ilx+vgN 13+TbHfGogNNFF6FADSJeegslMquUwxaSKjhA9P5HMCASExqbxblwUWth8Pg/efD Zlmb3QUPKgY79kSp7So2uWot/7zfRZmp -----END CERTIFICATE-----Generated at Mon Jun 2 20:47:07 2025 by rpki-client