$ rpki-client -vvf rpki.apnic.net/member_repository/A91AA28B/1E0264AADBC811E9BEA91051C4F9AE02/b8Lt8MURUqO-wRSaG9su2yk8nZU.mft File: b8Lt8MURUqO-wRSaG9su2yk8nZU.mft (raw, json) Hash identifier: pMomXOtyjyctF3Y27XJzieXQ5PwqsipIsgRdDhiA850= Subject key identifier: B3:AC:27:45:25:C0:94:35:19:43:6E:7F:52:C8:6E:70:1C:A1:84:BD Authority key identifier: 6F:C2:ED:F0:C5:11:52:A3:BE:C1:14:9A:1B:DB:2E:DB:29:3C:9D:95 Certificate issuer: /CN=A91AA28B/serialNumber=6FC2EDF0C51152A3BEC1149A1BDB2EDB293C9D95 Certificate serial: 0D5D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b8Lt8MURUqO-wRSaG9su2yk8nZU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AA28B/1E0264AADBC811E9BEA91051C4F9AE02/b8Lt8MURUqO-wRSaG9su2yk8nZU.mft Manifest number: 0D32 Signing time: Fri 30 May 2025 18:15:24 +0000 Manifest this update: Fri 30 May 2025 18:15:23 +0000 Manifest next update: Fri 06 Jun 2025 18:15:23 +0000 Files and hashes: 1: b8Lt8MURUqO-wRSaG9su2yk8nZU.crl (hash: a7jUKePJeBN7L8hVTmK6+ja/V8bZ7j0RjHtAsl7s5zU=) 2: 4DD0C31C0E2011F0A0825648C4F9AE02.roa (hash: 8r7MWVk5x8o1qlWsJdhw0htq1GLcuT7GZDff98YKUWg=) 3: 11815E36135311EE94A8A114C4F9AE02.roa (hash: 4RiRLEUaqFnMyzAxg+jhTtVSLZnRrw+D1OLV5ZjDtiE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AA28B/1E0264AADBC811E9BEA91051C4F9AE02/b8Lt8MURUqO-wRSaG9su2yk8nZU.crl rsync://rpki.apnic.net/member_repository/A91AA28B/1E0264AADBC811E9BEA91051C4F9AE02/b8Lt8MURUqO-wRSaG9su2yk8nZU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b8Lt8MURUqO-wRSaG9su2yk8nZU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 18:15:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3421 (0xd5d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AA28B, serialNumber=6FC2EDF0C51152A3BEC1149A1BDB2EDB293C9D95 Validity Not Before: May 30 18:15:23 2025 GMT Not After : Jun 6 18:15:23 2025 GMT Subject: CN=6839f5bc-0918 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ee:ba:0b:82:f4:57:00:0a:09:df:70:7f:9b:41: 53:53:42:f1:61:0f:8c:24:e8:6e:00:dd:3e:2e:33: 25:80:90:0f:29:75:8b:bd:a1:e4:19:e0:6a:43:28: f0:70:85:5b:c7:f8:fd:a6:43:cb:18:1c:3d:a4:9b: ee:7d:17:13:5c:41:52:7f:8c:1d:ff:ec:19:08:5b: b3:20:64:85:d3:f5:94:81:3f:19:cf:42:fe:96:86: 1c:0a:a1:81:f8:d0:9f:4a:93:b4:3e:ba:44:13:3e: 00:47:4f:74:e4:0a:26:49:ba:2a:03:f1:85:a0:5f: 15:33:64:92:7e:94:f7:59:51:8c:eb:22:2c:c5:3e: c8:28:7f:11:2c:f8:19:47:ea:9d:4d:31:a6:a4:34: 87:f8:e1:28:d0:38:4d:b5:36:b1:b3:b7:c6:d1:4b: 09:20:5a:b3:ec:31:d9:9e:97:5b:12:27:94:8e:56: aa:28:88:9e:48:76:90:f0:88:78:11:22:d7:16:88: f7:7a:47:09:76:fc:a7:34:0d:6a:98:fd:c9:a1:67: c0:cb:99:ee:67:b1:be:46:1b:91:3d:7a:40:73:c9: f6:7f:fd:7a:d9:a0:56:02:f0:1e:1b:16:7e:08:a2: 8e:41:9c:ac:15:60:14:8d:9a:6e:cf:b0:9f:4a:a0: 37:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B3:AC:27:45:25:C0:94:35:19:43:6E:7F:52:C8:6E:70:1C:A1:84:BD X509v3 Authority Key Identifier: keyid:6F:C2:ED:F0:C5:11:52:A3:BE:C1:14:9A:1B:DB:2E:DB:29:3C:9D:95 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AA28B/1E0264AADBC811E9BEA91051C4F9AE02/b8Lt8MURUqO-wRSaG9su2yk8nZU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b8Lt8MURUqO-wRSaG9su2yk8nZU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AA28B/1E0264AADBC811E9BEA91051C4F9AE02/b8Lt8MURUqO-wRSaG9su2yk8nZU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 37:0f:52:07:c6:53:7d:dd:a9:d7:ad:66:eb:74:e7:07:de:e2: c1:8d:4b:0d:5b:91:7b:6f:b1:91:24:9e:1d:87:d5:30:a5:9e: ae:4a:11:66:df:b2:1e:20:1e:f4:97:b4:17:5d:82:c0:22:33: 40:d5:e8:df:16:33:2c:11:8c:c9:8d:a2:52:78:70:ae:d7:35: f9:80:ed:b0:bd:01:d1:91:f5:34:64:88:98:47:db:e0:cf:1f: 1b:40:22:82:08:c4:9c:26:ca:88:8a:a7:12:1c:c9:c0:ef:48: b5:ce:2b:1d:88:fa:f8:2b:2b:0f:14:45:f2:78:74:1f:27:04: b3:ce:2f:58:fd:df:82:68:09:17:67:7d:52:53:7e:da:ad:7b: 11:ff:a1:48:c2:80:31:1f:50:c4:6a:82:d0:09:a7:49:a6:d2: 31:b0:4b:fa:9b:f6:2a:57:d5:2c:c0:31:30:2b:18:e7:8b:f0: 18:8d:cc:12:a8:a7:81:d0:de:55:85:3d:43:14:99:22:ba:9e: d8:58:cd:1f:33:5b:5b:79:76:5b:cf:31:8e:13:7f:46:20:54: a6:7d:59:f7:da:76:26:81:42:c8:40:fd:e7:20:88:25:37:24: 27:9c:20:3e:84:54:71:8e:cf:48:68:ec:b6:30:d5:5c:ee:d5: 89:43:3a:c6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDV0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUEyOEIxMTAvBgNVBAUTKDZGQzJFREYwQzUxMTUyQTNCRUMxMTQ5QTFCREIyRURC MjkzQzlEOTUwHhcNMjUwNTMwMTgxNTIzWhcNMjUwNjA2MTgxNTIzWjAYMRYwFAYD VQQDEw02ODM5ZjViYy0wOTE4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7roLgvRXAAoJ33B/m0FTU0LxYQ+MJOhuAN0+LjMlgJAPKXWLvaHkGeBqQyjw cIVbx/j9pkPLGBw9pJvufRcTXEFSf4wd/+wZCFuzIGSF0/WUgT8Zz0L+loYcCqGB +NCfSpO0PrpEEz4AR0905AomSboqA/GFoF8VM2SSfpT3WVGM6yIsxT7IKH8RLPgZ R+qdTTGmpDSH+OEo0DhNtTaxs7fG0UsJIFqz7DHZnpdbEieUjlaqKIieSHaQ8Ih4 ESLXFoj3ekcJdvynNA1qmP3JoWfAy5nuZ7G+RhuRPXpAc8n2f/162aBWAvAeGxZ+ CKKOQZysFWAUjZpuz7CfSqA31wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLOsJ0Ul wJQ1GUNuf1LIbnAcoYS9MB8GA1UdIwQYMBaAFG/C7fDFEVKjvsEUmhvbLtspPJ2V MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQTI4Qi8xRTAyNjRBQURC QzgxMUU5QkVBOTEwNTFDNEY5QUUwMi9iOEx0OE1VUlVxTy13UlNhRzlzdTJ5azhu WlUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2I4THQ4TVVSVXFPLXdSU2FHOXN1MnlrOG5aVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB QTI4Qi8xRTAyNjRBQURCQzgxMUU5QkVBOTEwNTFDNEY5QUUwMi9iOEx0OE1VUlVx Ty13UlNhRzlzdTJ5azhuWlUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA3D1IHxlN93anXrWbrdOcH3uLBjUsNW5F7b7GRJJ4dh9UwpZ6uShFm 37IeIB70l7QXXYLAIjNA1ejfFjMsEYzJjaJSeHCu1zX5gO2wvQHRkfU0ZIiYR9vg zx8bQCKCCMScJsqIiqcSHMnA70i1zisdiPr4KysPFEXyeHQfJwSzzi9Y/d+CaAkX Z31SU37arXsR/6FIwoAxH1DEaoLQCadJptIxsEv6m/YqV9UswDEwKxjni/AYjcwS qKeB0N5VhT1DFJkiup7YWM0fM1tbeXZbzzGOE39GIFSmfVn32nYmgULIQP3nIIgl NyQnnCA+hFRxjs9IaOy2MNVc7tWJQzrG -----END CERTIFICATE-----Generated at Sat May 31 17:30:14 2025 by rpki-client