$ rpki-client -vvf rpki.apnic.net/member_repository/A91AC4DB/3C07E2D6347311EB9794E226C4F9AE02/2cuKblTiS1D0r_v6oFlb_YECQ-4.mft File: 2cuKblTiS1D0r_v6oFlb_YECQ-4.mft (raw, json) Hash identifier: 690yaX68/GCLD7Dm+E9TDOCJMU92eF99JrwP0K3PgRk= Subject key identifier: 4B:A2:4A:CF:6C:4A:8A:D1:45:AA:F2:7C:A6:EA:64:C3:5E:48:44:58 Authority key identifier: D9:CB:8A:6E:54:E2:4B:50:F4:AF:FB:FA:A0:59:5B:FD:81:02:43:EE Certificate issuer: /CN=A91AC4DB/serialNumber=D9CB8A6E54E24B50F4AFFBFAA0595BFD810243EE Certificate serial: 072D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2cuKblTiS1D0r_v6oFlb_YECQ-4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AC4DB/3C07E2D6347311EB9794E226C4F9AE02/2cuKblTiS1D0r_v6oFlb_YECQ-4.mft Manifest number: 0728 Signing time: Fri 30 May 2025 22:01:16 +0000 Manifest this update: Fri 30 May 2025 22:01:15 +0000 Manifest next update: Fri 06 Jun 2025 22:01:15 +0000 Files and hashes: 1: 2cuKblTiS1D0r_v6oFlb_YECQ-4.crl (hash: nA6k7c0vf78P0ANeB98I8F2e2M4sDC4It3/6SPaCHLA=) 2: 4157856E347511EB84CD472CC4F9AE02.roa (hash: btH4SgDDR4khinDDe+n8XlFXLtg61OADsgnktzAiOJQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AC4DB/3C07E2D6347311EB9794E226C4F9AE02/2cuKblTiS1D0r_v6oFlb_YECQ-4.crl rsync://rpki.apnic.net/member_repository/A91AC4DB/3C07E2D6347311EB9794E226C4F9AE02/2cuKblTiS1D0r_v6oFlb_YECQ-4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2cuKblTiS1D0r_v6oFlb_YECQ-4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 22:01:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1837 (0x72d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AC4DB, serialNumber=D9CB8A6E54E24B50F4AFFBFAA0595BFD810243EE Validity Not Before: May 30 22:01:15 2025 GMT Not After : Jun 6 22:01:15 2025 GMT Subject: CN=683a2aac-87d8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:6e:36:25:b7:28:de:15:b5:d2:81:44:fa:a5: a9:ab:22:2d:aa:6d:de:fa:97:ab:29:ab:f4:99:24: d2:20:fa:47:d8:7e:61:41:dc:90:ae:8e:06:9c:ee: e8:57:29:55:21:d1:c6:d3:e3:90:19:21:aa:77:16: a1:8d:28:8e:3a:99:7e:e1:d1:ed:d8:52:e0:46:db: d2:b5:81:18:2f:3c:5e:63:75:9a:fd:74:ed:2c:3d: e2:74:aa:19:f0:13:4f:5c:d8:d4:e4:1e:fa:9c:b6: d6:fc:e7:2d:cb:75:4d:9f:64:c2:c7:2e:dd:af:1f: 21:30:25:c0:ef:d3:08:ee:23:33:f4:da:65:06:be: 05:35:04:8a:df:3c:a4:9b:60:d0:37:77:b6:93:78: c6:df:6b:87:b8:47:77:b8:78:1f:86:d7:87:3f:e2: 4f:ab:40:56:42:c7:35:f8:92:3d:b1:0e:9d:ad:43: f6:05:88:9c:0f:3d:a0:ce:c4:b5:1c:eb:1c:f0:8b: 7a:1a:1d:54:82:b8:37:7a:8a:68:1c:16:b8:ae:39: 6d:3d:fc:a3:da:13:ba:4b:2b:29:87:df:bb:f2:d8: 42:98:1d:6e:d3:04:d1:ac:b0:5d:50:5c:b8:98:b3: 57:2c:eb:ec:83:6a:33:b4:6b:66:29:d4:f7:cb:10: 84:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4B:A2:4A:CF:6C:4A:8A:D1:45:AA:F2:7C:A6:EA:64:C3:5E:48:44:58 X509v3 Authority Key Identifier: keyid:D9:CB:8A:6E:54:E2:4B:50:F4:AF:FB:FA:A0:59:5B:FD:81:02:43:EE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AC4DB/3C07E2D6347311EB9794E226C4F9AE02/2cuKblTiS1D0r_v6oFlb_YECQ-4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2cuKblTiS1D0r_v6oFlb_YECQ-4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AC4DB/3C07E2D6347311EB9794E226C4F9AE02/2cuKblTiS1D0r_v6oFlb_YECQ-4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 51:c0:82:dd:8d:e8:d6:06:13:70:52:76:dd:cb:04:c6:a4:36: 9a:43:04:74:9f:0e:e5:ed:8c:55:38:83:17:af:dd:a0:d2:75: 2a:ee:ae:85:08:a8:7f:d2:3e:17:3d:7d:34:ff:6f:b5:e0:92: fc:e3:a0:c6:c1:9a:dc:e5:a7:89:e8:c4:bb:49:57:26:6c:17: a8:37:14:fe:aa:50:51:82:ff:82:e0:d4:fe:94:08:d0:47:43: c5:7f:1b:79:ae:ea:57:f8:22:8b:7d:fe:f3:12:e4:68:fd:3a: b6:12:1d:82:9e:5f:37:34:4f:92:1b:e7:bf:69:4f:77:96:86: dc:f8:52:66:9e:5d:dc:dd:4a:0d:df:c8:05:60:2e:3f:35:e4: 90:b3:7b:de:e7:ac:45:5a:33:7f:da:f0:a2:30:6c:bf:6b:1a: bc:3f:a7:c1:e9:e8:51:14:84:30:60:0d:ba:0d:3d:fa:f3:9e: fe:aa:e1:c7:b5:8b:8b:a9:5c:7d:5b:97:35:e4:56:17:63:3a: d1:44:32:e0:fb:19:e3:5d:8c:46:6f:10:5f:71:80:82:2c:8e: 45:41:e5:ce:35:6c:cc:2a:64:ff:f8:95:7e:a1:b7:91:da:f1: 44:7e:db:75:f2:0a:c4:19:9d:8a:c9:ca:e8:4e:a7:e3:f6:a5: a6:17:3c:08 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBy0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUM0REIxMTAvBgNVBAUTKEQ5Q0I4QTZFNTRFMjRCNTBGNEFGRkJGQUEwNTk1QkZE ODEwMjQzRUUwHhcNMjUwNTMwMjIwMTE1WhcNMjUwNjA2MjIwMTE1WjAYMRYwFAYD VQQDEw02ODNhMmFhYy04N2Q4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApm42Jbco3hW10oFE+qWpqyItqm3e+perKav0mSTSIPpH2H5hQdyQro4GnO7o VylVIdHG0+OQGSGqdxahjSiOOpl+4dHt2FLgRtvStYEYLzxeY3Wa/XTtLD3idKoZ 8BNPXNjU5B76nLbW/Octy3VNn2TCxy7drx8hMCXA79MI7iMz9NplBr4FNQSK3zyk m2DQN3e2k3jG32uHuEd3uHgfhteHP+JPq0BWQsc1+JI9sQ6drUP2BYicDz2gzsS1 HOsc8It6Gh1Ugrg3eopoHBa4rjltPfyj2hO6Sysph9+78thCmB1u0wTRrLBdUFy4 mLNXLOvsg2oztGtmKdT3yxCEuQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEuiSs9s SorRRaryfKbqZMNeSERYMB8GA1UdIwQYMBaAFNnLim5U4ktQ9K/7+qBZW/2BAkPu MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQzREQi8zQzA3RTJENjM0 NzMxMUVCOTc5NEUyMjZDNEY5QUUwMi8yY3VLYmxUaVMxRDByX3Y2b0ZsYl9ZRUNR LTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJjdUtibFRpUzFEMHJfdjZvRmxiX1lFQ1EtNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB QzREQi8zQzA3RTJENjM0NzMxMUVCOTc5NEUyMjZDNEY5QUUwMi8yY3VLYmxUaVMx RDByX3Y2b0ZsYl9ZRUNRLTQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBRwILdjejWBhNwUnbdywTGpDaaQwR0nw7l7YxVOIMXr92g0nUq7q6F CKh/0j4XPX00/2+14JL846DGwZrc5aeJ6MS7SVcmbBeoNxT+qlBRgv+C4NT+lAjQ R0PFfxt5rupX+CKLff7zEuRo/Tq2Eh2Cnl83NE+SG+e/aU93lobc+FJmnl3c3UoN 38gFYC4/NeSQs3ve56xFWjN/2vCiMGy/axq8P6fB6ehRFIQwYA26DT36857+quHH tYuLqVx9W5c15FYXYzrRRDLg+xnjXYxGbxBfcYCCLI5FQeXONWzMKmT/+JV+obeR 2vFEftt18grEGZ2KycroTqfj9qWmFzwI -----END CERTIFICATE-----Generated at Sat May 31 16:25:49 2025 by rpki-client