$ rpki-client -vvf rpki.apnic.net/member_repository/A91A5D8A/BA2F1B9ACAEE11EBA2FBD056C4F9AE02/eFfRGlHcrpwuCIahDOBvVfW4QwA.mft File: eFfRGlHcrpwuCIahDOBvVfW4QwA.mft (raw, json) Hash identifier: fnGHkqDNqULhbAqw4+OLgbqbcEMPAOG18UraFecErPU= Subject key identifier: DE:B3:9B:34:13:CE:D8:7F:82:8C:53:F7:3D:87:C0:1D:45:E1:59:DF Authority key identifier: 78:57:D1:1A:51:DC:AE:9C:2E:08:86:A1:0C:E0:6F:55:F5:B8:43:00 Certificate issuer: /CN=A91A5D8A/serialNumber=7857D11A51DCAE9C2E0886A10CE06F55F5B84300 Certificate serial: 05B4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/eFfRGlHcrpwuCIahDOBvVfW4QwA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A5D8A/BA2F1B9ACAEE11EBA2FBD056C4F9AE02/eFfRGlHcrpwuCIahDOBvVfW4QwA.mft Manifest number: 05AB Signing time: Fri 30 May 2025 23:22:42 +0000 Manifest this update: Fri 30 May 2025 23:22:42 +0000 Manifest next update: Fri 06 Jun 2025 23:22:42 +0000 Files and hashes: 1: eFfRGlHcrpwuCIahDOBvVfW4QwA.crl (hash: gKFkauZEsxoJVVg9xWo617f8+JOYpCVzKaNS8Yc5GDE=) 2: 8183B0FACAF111EBA40AF15BC4F9AE02.roa (hash: 2FiQQsbz3nt2u/cekKkmnmxwVKcgAmIxkizQKnpeMp0=) 3: 18981398329B11EDB9F09862C4F9AE02.roa (hash: dJlRsSYRiHAfXA1Nnt7jiiGzcupZLCHRX4H/d6aCfuU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A5D8A/BA2F1B9ACAEE11EBA2FBD056C4F9AE02/eFfRGlHcrpwuCIahDOBvVfW4QwA.crl rsync://rpki.apnic.net/member_repository/A91A5D8A/BA2F1B9ACAEE11EBA2FBD056C4F9AE02/eFfRGlHcrpwuCIahDOBvVfW4QwA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/eFfRGlHcrpwuCIahDOBvVfW4QwA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 23:22:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1460 (0x5b4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A5D8A, serialNumber=7857D11A51DCAE9C2E0886A10CE06F55F5B84300 Validity Not Before: May 30 23:22:42 2025 GMT Not After : Jun 6 23:22:42 2025 GMT Subject: CN=683a3dc2-5b4f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:6d:75:b4:21:67:15:69:13:8c:48:8c:f0:90: fc:cd:71:f9:0b:2c:68:73:05:ce:fa:6b:e9:0b:fa: f7:4a:4e:2c:6e:29:3a:52:08:34:d0:32:d6:d3:ec: ba:51:66:b6:78:52:13:42:7c:f9:07:a9:dd:19:4f: 05:e3:74:ff:0a:f9:fc:44:16:dc:6b:f9:f9:61:29: 89:7d:ae:5f:29:12:09:41:c5:14:ab:b1:36:b3:f0: d7:f0:19:b7:26:a5:7b:e9:5d:7c:0d:f6:06:1a:01: 8f:da:95:06:43:5f:52:00:29:58:44:93:6d:4e:40: be:98:4f:ec:38:f4:65:95:97:7a:cb:a7:eb:49:2a: 33:fe:21:cb:11:05:cc:74:81:82:50:cc:29:d4:5e: f7:a8:34:f6:73:a2:4f:13:f2:1e:39:85:01:9e:a1: a5:14:48:26:ad:92:70:8d:29:1a:05:79:0a:18:13: 90:9c:a0:a0:39:82:16:22:a4:b1:6b:d1:88:6b:6d: 8b:f8:78:22:e8:31:47:56:2a:6b:38:66:e9:7c:7e: d7:b6:91:45:4e:54:c5:a8:f4:da:f9:9b:e1:cd:7d: 18:a0:14:c8:ef:48:6f:07:b0:25:a1:cc:bc:06:b8: fb:e1:ed:79:87:33:d4:dc:ba:f3:b1:e9:e0:29:f4: f9:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DE:B3:9B:34:13:CE:D8:7F:82:8C:53:F7:3D:87:C0:1D:45:E1:59:DF X509v3 Authority Key Identifier: keyid:78:57:D1:1A:51:DC:AE:9C:2E:08:86:A1:0C:E0:6F:55:F5:B8:43:00 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A5D8A/BA2F1B9ACAEE11EBA2FBD056C4F9AE02/eFfRGlHcrpwuCIahDOBvVfW4QwA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/eFfRGlHcrpwuCIahDOBvVfW4QwA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A5D8A/BA2F1B9ACAEE11EBA2FBD056C4F9AE02/eFfRGlHcrpwuCIahDOBvVfW4QwA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 96:12:1a:82:a9:dd:a6:55:76:5d:f4:8d:1c:2c:65:47:6b:c3: e1:c7:5d:cf:6c:48:c9:85:5a:49:3e:0a:74:5f:a3:ff:99:ad: 9c:9e:39:0d:9e:d8:4a:5e:e4:eb:3e:a7:f5:29:33:a4:23:51: 33:b3:7d:04:91:f9:93:57:34:de:06:67:82:f7:02:77:62:31: 55:92:da:d5:b6:6e:65:e3:ad:14:11:db:d4:52:8f:26:be:eb: b8:85:83:60:54:3b:81:9a:3b:3f:55:b3:45:c7:e8:1a:79:17: 0c:70:df:f8:22:8a:9f:9d:19:9f:66:b1:93:c5:32:c7:df:0c: ed:d1:0d:36:0b:65:4c:61:45:d3:c4:78:8e:e4:dc:78:aa:76: fa:0d:0a:4b:12:67:8a:bf:19:b3:88:77:08:d9:4b:71:85:08: 28:3e:af:e5:fc:9c:6f:9a:8c:3b:ef:ed:9a:c8:3d:96:16:b8: 2b:8a:fd:7b:a6:51:47:3c:a0:c5:a8:59:62:26:c2:11:4b:ec: c3:70:1e:76:d4:1f:f8:a1:6d:7e:dc:11:4c:7a:9f:e1:51:bc: 86:5b:b2:12:e2:0a:cf:57:ab:73:48:03:99:41:d0:81:d1:54: a9:52:38:52:55:b4:8d:05:6c:f5:e8:9d:7d:9e:ab:84:96:6f: ad:f3:bf:ba -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBbQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTVEOEExMTAvBgNVBAUTKDc4NTdEMTFBNTFEQ0FFOUMyRTA4ODZBMTBDRTA2RjU1 RjVCODQzMDAwHhcNMjUwNTMwMjMyMjQyWhcNMjUwNjA2MjMyMjQyWjAYMRYwFAYD VQQDEw02ODNhM2RjMi01YjRmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArm11tCFnFWkTjEiM8JD8zXH5CyxocwXO+mvpC/r3Sk4sbik6Ugg00DLW0+y6 UWa2eFITQnz5B6ndGU8F43T/Cvn8RBbca/n5YSmJfa5fKRIJQcUUq7E2s/DX8Bm3 JqV76V18DfYGGgGP2pUGQ19SAClYRJNtTkC+mE/sOPRllZd6y6frSSoz/iHLEQXM dIGCUMwp1F73qDT2c6JPE/IeOYUBnqGlFEgmrZJwjSkaBXkKGBOQnKCgOYIWIqSx a9GIa22L+Hgi6DFHViprOGbpfH7XtpFFTlTFqPTa+ZvhzX0YoBTI70hvB7Alocy8 Brj74e15hzPU3LrzsengKfT53QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFN6zmzQT zth/goxT9z2HwB1F4VnfMB8GA1UdIwQYMBaAFHhX0RpR3K6cLgiGoQzgb1X1uEMA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNUQ4QS9CQTJGMUI5QUNB RUUxMUVCQTJGQkQwNTZDNEY5QUUwMi9lRmZSR2xIY3Jwd3VDSWFoRE9CdlZmVzRR d0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2VGZlJHbEhjcnB3dUNJYWhET0J2VmZXNFF3QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NUQ4QS9CQTJGMUI5QUNBRUUxMUVCQTJGQkQwNTZDNEY5QUUwMi9lRmZSR2xIY3Jw d3VDSWFoRE9CdlZmVzRRd0EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCWEhqCqd2mVXZd9I0cLGVHa8Phx13PbEjJhVpJPgp0X6P/ma2cnjkN nthKXuTrPqf1KTOkI1Ezs30EkfmTVzTeBmeC9wJ3YjFVktrVtm5l460UEdvUUo8m vuu4hYNgVDuBmjs/VbNFx+gaeRcMcN/4IoqfnRmfZrGTxTLH3wzt0Q02C2VMYUXT xHiO5Nx4qnb6DQpLEmeKvxmziHcI2UtxhQgoPq/l/Jxvmow77+2ayD2WFrgriv17 plFHPKDFqFliJsIRS+zDcB521B/4oW1+3BFMep/hUbyGW7IS4grPV6tzSAOZQdCB 0VSpUjhSVbSNBWz16J19nquElm+t87+6 -----END CERTIFICATE-----Generated at Sat May 31 17:24:42 2025 by rpki-client