$ rpki-client -vvf rpki.apnic.net/member_repository/A91AEAE7/E182579690F311EB9D2E0E4FC4F9AE02/2r-ztZ99cW_VLUWnQa8Vmvfq97o.mft File: 2r-ztZ99cW_VLUWnQa8Vmvfq97o.mft (raw, json) Hash identifier: ze/42oMyCeoRXG8lthBxs5owtuJIOPTFPrjYCJQHlhQ= Subject key identifier: 0C:6D:9F:08:C2:3C:74:1A:E0:84:F6:5A:EE:2C:19:4B:16:70:20:06 Authority key identifier: DA:BF:B3:B5:9F:7D:71:6F:D5:2D:45:A7:41:AF:15:9A:F7:EA:F7:BA Certificate issuer: /CN=A91AEAE7/serialNumber=DABFB3B59F7D716FD52D45A741AF159AF7EAF7BA Certificate serial: 0661 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2r-ztZ99cW_VLUWnQa8Vmvfq97o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AEAE7/E182579690F311EB9D2E0E4FC4F9AE02/2r-ztZ99cW_VLUWnQa8Vmvfq97o.mft Manifest number: 0645 Signing time: Fri 30 May 2025 22:50:57 +0000 Manifest this update: Fri 30 May 2025 22:50:57 +0000 Manifest next update: Fri 06 Jun 2025 22:50:57 +0000 Files and hashes: 1: 2r-ztZ99cW_VLUWnQa8Vmvfq97o.crl (hash: YV4s4lhBQzLnU4Tvm28aY9fos0dGzcLoYlc0fY5KH6E=) 2: 0A7BC528913611EBBD9B811AC4F9AE02.roa (hash: NzOCnKqg2qahRXEOik1xyZlxFZ3lrtlDe5hks5SrPJA=) 3: 09A1853E913611EBBD9B811AC4F9AE02.roa (hash: IqmyGbo6lE5IdQOfP9xw6QgI0Xcsu+xkWZJJhr6ZiRQ=) 4: 8A345D2891A111EB87E23C38C4F9AE02.roa (hash: lgtMLH6i/g97QEVVbiDk03F8pSWOlpowm/3LEp7TGhw=) 5: 08DCE5BC913611EBBD9B811AC4F9AE02.roa (hash: xoqWpk6kq9UDnJpAtKinOiTxbgS2kwe2RRE2npE/Mm0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AEAE7/E182579690F311EB9D2E0E4FC4F9AE02/2r-ztZ99cW_VLUWnQa8Vmvfq97o.crl rsync://rpki.apnic.net/member_repository/A91AEAE7/E182579690F311EB9D2E0E4FC4F9AE02/2r-ztZ99cW_VLUWnQa8Vmvfq97o.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2r-ztZ99cW_VLUWnQa8Vmvfq97o.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 22:50:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1633 (0x661) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AEAE7, serialNumber=DABFB3B59F7D716FD52D45A741AF159AF7EAF7BA Validity Not Before: May 30 22:50:57 2025 GMT Not After : Jun 6 22:50:57 2025 GMT Subject: CN=683a3651-ad42 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:36:a5:ea:46:48:39:13:26:06:dc:dc:a7:05: bf:f4:18:46:33:88:55:1e:a9:76:e1:56:22:30:07: ba:37:d7:85:66:8d:2a:32:61:06:ac:1f:9e:72:a6: 30:c8:2a:be:46:78:03:09:ff:f8:10:de:d3:3d:92: 2b:63:38:1d:ab:96:80:ef:6c:af:e3:00:b5:c3:c6: a9:6f:2a:cc:e5:b2:93:32:76:0b:14:e0:fa:d2:63: 1e:76:ed:f4:5e:ef:41:ef:25:5b:36:bd:a8:a1:42: 6f:7b:b1:e6:0f:07:13:d9:59:6f:97:42:3e:c0:4d: 27:4f:a1:3a:a0:61:c5:05:57:cf:d8:2a:b9:d7:d6: 43:26:8f:61:38:9e:2e:cc:a8:ce:c8:64:fb:33:b0: a5:0f:b1:44:b6:73:90:4f:77:be:48:bd:7f:6a:22: 7d:d9:f4:42:e5:87:10:b4:8b:eb:97:68:e5:11:0a: 68:14:b6:14:23:6b:ff:11:08:dd:ff:ac:e7:e6:6c: 3b:dd:9c:cf:65:0b:fe:49:aa:28:6a:a8:d0:72:87: 98:38:c2:a7:52:49:c1:d5:07:fa:d7:47:33:7a:57: 9e:7a:e8:6e:87:12:12:0d:59:d6:75:10:e8:72:71: 06:50:d9:f3:af:64:ee:49:d0:fc:9a:38:81:1d:99: 78:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0C:6D:9F:08:C2:3C:74:1A:E0:84:F6:5A:EE:2C:19:4B:16:70:20:06 X509v3 Authority Key Identifier: keyid:DA:BF:B3:B5:9F:7D:71:6F:D5:2D:45:A7:41:AF:15:9A:F7:EA:F7:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AEAE7/E182579690F311EB9D2E0E4FC4F9AE02/2r-ztZ99cW_VLUWnQa8Vmvfq97o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2r-ztZ99cW_VLUWnQa8Vmvfq97o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AEAE7/E182579690F311EB9D2E0E4FC4F9AE02/2r-ztZ99cW_VLUWnQa8Vmvfq97o.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 75:cf:f1:77:03:bd:6a:11:4f:1f:7c:f6:6c:c6:27:00:92:30: fd:c8:3a:0a:aa:cd:db:6e:a3:8d:a6:25:f4:aa:53:01:3a:d6: 3a:e7:76:60:c1:83:1b:3f:8b:f3:51:d0:38:7c:ad:ae:8f:95: 57:1f:b7:18:9e:9f:b6:ed:f8:04:ac:87:9a:5f:7f:f7:83:c9: 3d:dc:20:dc:76:b2:1a:77:38:f5:c4:9e:db:c8:06:5f:96:fa: 50:88:74:53:3b:55:3e:1d:b3:f5:4a:56:66:84:be:41:12:32: 49:14:54:af:c3:44:a6:c8:ee:84:27:74:11:a8:ae:26:92:05: 10:ef:0c:29:c0:16:c7:40:df:d7:06:7b:40:39:c3:d1:fc:06: 04:e7:66:6b:75:21:dd:4f:b5:81:6c:65:b5:c9:69:eb:57:36: d7:a8:81:ec:fb:25:c1:1b:27:46:1d:73:04:72:db:2d:96:3e: 89:1e:ba:49:1d:2d:ac:9e:d5:38:53:54:d3:59:cd:85:f0:4e: e8:5c:69:17:43:16:63:43:95:ee:3a:c8:7a:00:1b:67:56:e3: 74:45:75:e5:ac:3c:ee:aa:d7:29:34:7d:2d:39:e1:3c:84:f3: a6:06:49:c0:08:21:90:b5:30:a3:fc:06:56:0e:7e:89:b1:f4: 94:1d:6e:7c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBmEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUVBRTcxMTAvBgNVBAUTKERBQkZCM0I1OUY3RDcxNkZENTJENDVBNzQxQUYxNTlB RjdFQUY3QkEwHhcNMjUwNTMwMjI1MDU3WhcNMjUwNjA2MjI1MDU3WjAYMRYwFAYD VQQDEw02ODNhMzY1MS1hZDQyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArTal6kZIORMmBtzcpwW/9BhGM4hVHql24VYiMAe6N9eFZo0qMmEGrB+ecqYw yCq+RngDCf/4EN7TPZIrYzgdq5aA72yv4wC1w8apbyrM5bKTMnYLFOD60mMedu30 Xu9B7yVbNr2ooUJve7HmDwcT2Vlvl0I+wE0nT6E6oGHFBVfP2Cq519ZDJo9hOJ4u zKjOyGT7M7ClD7FEtnOQT3e+SL1/aiJ92fRC5YcQtIvrl2jlEQpoFLYUI2v/EQjd /6zn5mw73ZzPZQv+SaooaqjQcoeYOMKnUknB1Qf610czeleeeuhuhxISDVnWdRDo cnEGUNnzr2TuSdD8mjiBHZl4JwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAxtnwjC PHQa4IT2Wu4sGUsWcCAGMB8GA1UdIwQYMBaAFNq/s7WffXFv1S1Fp0GvFZr36ve6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBRUFFNy9FMTgyNTc5Njkw RjMxMUVCOUQyRTBFNEZDNEY5QUUwMi8yci16dFo5OWNXX1ZMVVduUWE4Vm12ZnE5 N28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJyLXp0Wjk5Y1dfVkxVV25RYThWbXZmcTk3by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB RUFFNy9FMTgyNTc5NjkwRjMxMUVCOUQyRTBFNEZDNEY5QUUwMi8yci16dFo5OWNX X1ZMVVduUWE4Vm12ZnE5N28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB1z/F3A71qEU8ffPZsxicAkjD9yDoKqs3bbqONpiX0qlMBOtY653Zg wYMbP4vzUdA4fK2uj5VXH7cYnp+27fgErIeaX3/3g8k93CDcdrIadzj1xJ7byAZf lvpQiHRTO1U+HbP1SlZmhL5BEjJJFFSvw0SmyO6EJ3QRqK4mkgUQ7wwpwBbHQN/X BntAOcPR/AYE52ZrdSHdT7WBbGW1yWnrVzbXqIHs+yXBGydGHXMEctstlj6JHrpJ HS2sntU4U1TTWc2F8E7oXGkXQxZjQ5XuOsh6ABtnVuN0RXXlrDzuqtcpNH0tOeE8 hPOmBknACCGQtTCj/AZWDn6JsfSUHW58 -----END CERTIFICATE-----Generated at Sat May 31 17:34:23 2025 by rpki-client