$ rpki-client -vvf rpki.apnic.net/member_repository/A91A78A7/104B19460CBD11EDAA77D12DC4F9AE02/RTN9xeSDnkmBkSneoqlGGwIc0ZA.mft File: RTN9xeSDnkmBkSneoqlGGwIc0ZA.mft (raw, json) Hash identifier: wX2J+fzoIkxHibo4G5QeXQK0iUc30n0lFA86alUSDcc= Subject key identifier: 29:69:FD:31:B3:7A:75:84:B2:3C:0A:BD:BE:00:9D:82:4E:8B:EF:32 Authority key identifier: 45:33:7D:C5:E4:83:9E:49:81:91:29:DE:A2:A9:46:1B:02:1C:D1:90 Certificate issuer: /CN=A91A78A7/serialNumber=45337DC5E4839E49819129DEA2A9461B021CD190 Certificate serial: 027C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RTN9xeSDnkmBkSneoqlGGwIc0ZA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A78A7/104B19460CBD11EDAA77D12DC4F9AE02/RTN9xeSDnkmBkSneoqlGGwIc0ZA.mft Manifest number: 0279 Signing time: Sat 31 May 2025 01:51:50 +0000 Manifest this update: Sat 31 May 2025 01:51:50 +0000 Manifest next update: Sat 07 Jun 2025 01:51:50 +0000 Files and hashes: 1: RTN9xeSDnkmBkSneoqlGGwIc0ZA.crl (hash: 95nRPcszdRVV/Q8bCd1rf7C9O9czcpKfD6jqa1bu1ls=) 2: D470449E0E4411ED9C0F5B45C4F9AE02.roa (hash: 9zqxhpOangW9769mdxLoJSN4Rv/Y8CMGWvMe+D0Ah7w=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A78A7/104B19460CBD11EDAA77D12DC4F9AE02/RTN9xeSDnkmBkSneoqlGGwIc0ZA.crl rsync://rpki.apnic.net/member_repository/A91A78A7/104B19460CBD11EDAA77D12DC4F9AE02/RTN9xeSDnkmBkSneoqlGGwIc0ZA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RTN9xeSDnkmBkSneoqlGGwIc0ZA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 01:51:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 636 (0x27c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A78A7, serialNumber=45337DC5E4839E49819129DEA2A9461B021CD190 Validity Not Before: May 31 01:51:50 2025 GMT Not After : Jun 7 01:51:50 2025 GMT Subject: CN=683a60b6-1cd8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:ac:41:83:88:f3:0c:ed:a2:88:bb:d7:1c:cf: fc:4d:8d:a9:98:6f:1b:ed:99:0b:f6:4c:36:95:8c: 15:f1:0b:8c:10:5e:a0:62:d0:76:8b:b2:79:65:88: 38:ab:1f:9c:a9:6e:23:ee:3c:d7:f4:39:9a:9f:bc: 7d:77:f4:18:52:b5:73:44:81:c0:af:76:5b:87:b1: a3:ae:71:20:ee:fa:13:db:55:28:f5:66:05:f6:f0: 8e:e8:74:4a:56:75:83:cc:30:bb:f6:ee:05:cd:cf: 53:bb:a9:a4:be:2b:fa:6f:dc:e8:97:3a:13:c1:c8: 6e:8a:9e:70:96:55:b5:0a:f4:bf:d8:00:13:f5:d8: d5:fe:4d:79:83:bb:e2:fc:d5:83:4c:0c:b2:fc:a8: 59:7e:61:b1:04:e4:08:b5:34:c9:d3:44:66:0d:40: 16:d6:2a:19:0d:3b:ec:20:8f:13:ae:0e:2d:51:1e: 23:db:80:56:08:60:6c:50:1b:41:78:16:90:9c:52: 1a:f6:35:5f:0d:1e:95:0e:f1:53:8a:a0:ec:bf:30: 6b:c3:c2:86:2c:e2:60:02:bd:69:2c:6a:e6:2d:09: c8:1f:a0:81:97:c3:7d:64:29:5c:c3:bf:42:28:02: 4d:e9:0a:b8:1f:9f:e9:44:31:c3:3c:5c:e8:2a:9e: 2b:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 29:69:FD:31:B3:7A:75:84:B2:3C:0A:BD:BE:00:9D:82:4E:8B:EF:32 X509v3 Authority Key Identifier: keyid:45:33:7D:C5:E4:83:9E:49:81:91:29:DE:A2:A9:46:1B:02:1C:D1:90 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A78A7/104B19460CBD11EDAA77D12DC4F9AE02/RTN9xeSDnkmBkSneoqlGGwIc0ZA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RTN9xeSDnkmBkSneoqlGGwIc0ZA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A78A7/104B19460CBD11EDAA77D12DC4F9AE02/RTN9xeSDnkmBkSneoqlGGwIc0ZA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ab:a1:d3:09:27:a2:79:f0:30:ce:53:1d:19:d1:ff:90:1e:2e: 79:55:ac:68:ca:cd:26:98:33:69:df:64:db:3e:91:d7:84:c7: 34:06:cc:82:7b:ae:dd:47:d6:1a:25:e1:4b:e8:82:fe:ed:fb: 04:3d:17:17:f9:02:39:51:3b:58:11:25:21:79:e8:7d:30:e3: 11:ed:27:30:71:97:7d:f4:7d:df:c9:79:d4:21:fe:e8:c6:60: ab:3b:9f:af:3a:5d:49:da:71:96:00:c4:c4:91:10:88:9f:da: 7c:ae:48:1f:30:4f:f3:c1:f4:b9:6f:07:cf:90:a3:e4:41:df: 0c:76:3e:f8:c3:51:9c:d7:76:8f:57:57:f3:5d:4e:19:92:23: 95:34:df:6a:bd:4f:39:01:3e:46:1b:f8:a8:44:a7:67:ae:34: a9:82:7e:95:69:72:e9:14:02:cf:25:64:47:46:77:08:ce:ff: e6:b6:12:af:e7:d3:33:0d:6b:7c:1e:94:d1:ec:6c:6c:66:28: e2:a7:c7:29:b7:ee:c1:c0:a4:39:83:c6:53:cb:3f:50:b2:02: 07:a7:5a:1d:12:f0:08:71:d6:34:d5:87:c3:67:ea:84:5a:7b: 8a:d7:63:f5:d8:47:33:3b:8e:a5:ed:73:38:a4:74:69:d2:ad: b7:35:e7:1e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAnwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTc4QTcxMTAvBgNVBAUTKDQ1MzM3REM1RTQ4MzlFNDk4MTkxMjlERUEyQTk0NjFC MDIxQ0QxOTAwHhcNMjUwNTMxMDE1MTUwWhcNMjUwNjA3MDE1MTUwWjAYMRYwFAYD VQQDEw02ODNhNjBiNi0xY2Q4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwKxBg4jzDO2iiLvXHM/8TY2pmG8b7ZkL9kw2lYwV8QuMEF6gYtB2i7J5ZYg4 qx+cqW4j7jzX9Dman7x9d/QYUrVzRIHAr3Zbh7GjrnEg7voT21Uo9WYF9vCO6HRK VnWDzDC79u4Fzc9Tu6mkviv6b9zolzoTwchuip5wllW1CvS/2AAT9djV/k15g7vi /NWDTAyy/KhZfmGxBOQItTTJ00RmDUAW1ioZDTvsII8Trg4tUR4j24BWCGBsUBtB eBaQnFIa9jVfDR6VDvFTiqDsvzBrw8KGLOJgAr1pLGrmLQnIH6CBl8N9ZClcw79C KAJN6Qq4H5/pRDHDPFzoKp4rRwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFClp/TGz enWEsjwKvb4AnYJOi+8yMB8GA1UdIwQYMBaAFEUzfcXkg55JgZEp3qKpRhsCHNGQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNzhBNy8xMDRCMTk0NjBD QkQxMUVEQUE3N0QxMkRDNEY5QUUwMi9SVE45eGVTRG5rbUJrU25lb3FsR0d3SWMw WkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1JUTjl4ZVNEbmttQmtTbmVvcWxHR3dJYzBaQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NzhBNy8xMDRCMTk0NjBDQkQxMUVEQUE3N0QxMkRDNEY5QUUwMi9SVE45eGVTRG5r bUJrU25lb3FsR0d3SWMwWkEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCrodMJJ6J58DDOUx0Z0f+QHi55Vaxoys0mmDNp32TbPpHXhMc0BsyC e67dR9YaJeFL6IL+7fsEPRcX+QI5UTtYESUheeh9MOMR7ScwcZd99H3fyXnUIf7o xmCrO5+vOl1J2nGWAMTEkRCIn9p8rkgfME/zwfS5bwfPkKPkQd8Mdj74w1Gc13aP V1fzXU4ZkiOVNN9qvU85AT5GG/ioRKdnrjSpgn6VaXLpFALPJWRHRncIzv/mthKv 59MzDWt8HpTR7GxsZijip8cpt+7BwKQ5g8ZTyz9QsgIHp1odEvAIcdY01YfDZ+qE WnuK12P12EczO46l7XM4pHRp0q23Nece -----END CERTIFICATE-----Generated at Sat May 31 17:45:00 2025 by rpki-client