$ rpki-client -vvf rpki.apnic.net/member_repository/A91AF3E2/DA622E9A5B9E11EFBCDBC55BC4F9AE02/9rpuYwpqqY2CFWgmTgJ7mI31ybo.mft File: 9rpuYwpqqY2CFWgmTgJ7mI31ybo.mft (raw, json) Hash identifier: mhiMeOYel7m2ObeNYawolOa1FOH0AfZF14TaRqPr1rs= Subject key identifier: 38:06:CA:7D:F9:C7:42:14:6D:6F:26:84:27:80:1F:86:F4:FF:8F:E3 Authority key identifier: F6:BA:6E:63:0A:6A:A9:8D:82:15:68:26:4E:02:7B:98:8D:F5:C9:BA Certificate issuer: /CN=A91AF3E2/serialNumber=F6BA6E630A6AA98D821568264E027B988DF5C9BA Certificate serial: 98 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9rpuYwpqqY2CFWgmTgJ7mI31ybo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AF3E2/DA622E9A5B9E11EFBCDBC55BC4F9AE02/9rpuYwpqqY2CFWgmTgJ7mI31ybo.mft Manifest number: 96 Signing time: Sat 31 May 2025 05:57:23 +0000 Manifest this update: Sat 31 May 2025 05:57:22 +0000 Manifest next update: Sat 07 Jun 2025 05:57:22 +0000 Files and hashes: 1: 9rpuYwpqqY2CFWgmTgJ7mI31ybo.crl (hash: /K9qgU9GCB7I8b5CPx1maqdzQpwBwvJonCB6Y+uineE=) 2: 1CDD9EF85B9F11EFACE3275CC4F9AE02.roa (hash: v4ejIpdySbBIKimD5EDirkHkD31xywXn/idyAwvPc/k=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AF3E2/DA622E9A5B9E11EFBCDBC55BC4F9AE02/9rpuYwpqqY2CFWgmTgJ7mI31ybo.crl rsync://rpki.apnic.net/member_repository/A91AF3E2/DA622E9A5B9E11EFBCDBC55BC4F9AE02/9rpuYwpqqY2CFWgmTgJ7mI31ybo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9rpuYwpqqY2CFWgmTgJ7mI31ybo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 05:57:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 152 (0x98) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AF3E2, serialNumber=F6BA6E630A6AA98D821568264E027B988DF5C9BA Validity Not Before: May 31 05:57:22 2025 GMT Not After : Jun 7 05:57:22 2025 GMT Subject: CN=683a9a42-f79b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:bf:06:73:bd:e8:1f:f2:dd:02:05:48:e6:b3: 0b:2d:ac:55:af:83:1d:c8:e2:01:16:69:1e:6f:78: 96:f2:78:aa:bd:58:50:cd:bb:39:ae:d9:c9:52:ef: cc:11:ce:af:20:75:a1:10:1e:45:af:bf:4b:ae:58: 33:60:b7:10:79:72:89:3b:be:2e:6f:6e:27:a6:58: 39:97:1c:52:d1:6d:12:52:fa:28:24:e1:a7:90:70: 02:3d:2d:0c:a1:4c:14:e9:c2:a7:1f:f7:44:dc:c0: 7b:f8:2f:28:05:58:bc:03:d5:e9:9d:f9:58:93:de: e6:89:ce:f2:26:56:d3:83:07:5b:8f:bf:9f:74:4b: 47:63:b5:f9:11:b0:59:db:20:78:77:0c:fa:00:aa: 4c:37:53:da:d8:7a:c7:8a:1c:fb:63:ca:93:c3:fa: 96:bb:b0:98:f4:3e:4f:71:2c:e1:f7:4e:42:13:b6: 86:92:b6:cb:dc:09:38:79:cc:d1:a3:13:e7:12:37: b8:58:bb:bb:d9:a2:b0:b3:5e:4a:10:3a:22:cf:b9: 59:54:33:fd:8e:69:31:58:a5:86:cd:cd:6b:38:3c: 45:d6:ac:9b:03:bf:39:1c:cd:24:70:87:40:41:1b: 08:4e:76:9e:1c:9b:0c:85:d9:46:9f:d8:e0:01:ae: 8a:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 38:06:CA:7D:F9:C7:42:14:6D:6F:26:84:27:80:1F:86:F4:FF:8F:E3 X509v3 Authority Key Identifier: keyid:F6:BA:6E:63:0A:6A:A9:8D:82:15:68:26:4E:02:7B:98:8D:F5:C9:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AF3E2/DA622E9A5B9E11EFBCDBC55BC4F9AE02/9rpuYwpqqY2CFWgmTgJ7mI31ybo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9rpuYwpqqY2CFWgmTgJ7mI31ybo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AF3E2/DA622E9A5B9E11EFBCDBC55BC4F9AE02/9rpuYwpqqY2CFWgmTgJ7mI31ybo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 62:ae:8c:29:dd:38:3a:8a:44:10:fe:6f:90:77:5f:83:75:48: 23:11:31:54:e9:11:54:48:fe:82:17:a3:a8:11:5d:e2:18:64: 9d:09:4b:be:4f:b1:50:49:d4:c0:a2:d5:bd:b3:34:5e:3a:88: 6a:54:9c:6e:a3:28:72:3a:5c:88:cd:1e:6e:83:93:1e:33:39: 6c:cd:73:22:b2:3b:b0:32:b1:a2:6f:28:b9:e5:36:65:b3:9f: 20:a1:f1:53:96:fb:00:cf:68:7b:dd:3b:8d:f9:78:49:04:a8: 97:0d:6e:d9:93:d3:a2:74:1a:a1:c7:bb:45:09:1e:b6:33:7c: b1:6f:31:31:9f:de:4e:7d:57:26:30:0c:1f:14:93:5c:a4:de: da:da:cc:b7:5e:c0:ad:59:ac:12:29:1f:24:91:7e:82:cd:ee: 72:d5:aa:4a:d9:15:b9:6c:a2:64:6d:d2:34:6d:33:2f:17:52: ce:69:a2:59:62:6f:3a:5d:91:80:c0:fe:59:11:c8:35:c5:11: 78:0f:b7:48:76:ee:09:f8:d4:34:03:aa:29:f6:41:32:b6:21: e7:48:3d:0d:8d:85:d7:77:b4:d0:f2:c2:3a:1e:09:09:e9:f8: ad:ac:fe:c3:3a:2f:c5:83:de:2c:91:05:16:ea:ca:b1:41:1c: 14:ed:85:6b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAJgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUYzRTIxMTAvBgNVBAUTKEY2QkE2RTYzMEE2QUE5OEQ4MjE1NjgyNjRFMDI3Qjk4 OERGNUM5QkEwHhcNMjUwNTMxMDU1NzIyWhcNMjUwNjA3MDU1NzIyWjAYMRYwFAYD VQQDEw02ODNhOWE0Mi1mNzliMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzL8Gc73oH/LdAgVI5rMLLaxVr4MdyOIBFmkeb3iW8niqvVhQzbs5rtnJUu/M Ec6vIHWhEB5Fr79LrlgzYLcQeXKJO74ub24nplg5lxxS0W0SUvooJOGnkHACPS0M oUwU6cKnH/dE3MB7+C8oBVi8A9XpnflYk97mic7yJlbTgwdbj7+fdEtHY7X5EbBZ 2yB4dwz6AKpMN1Pa2HrHihz7Y8qTw/qWu7CY9D5PcSzh905CE7aGkrbL3Ak4eczR oxPnEje4WLu72aKws15KEDoiz7lZVDP9jmkxWKWGzc1rODxF1qybA785HM0kcIdA QRsITnaeHJsMhdlGn9jgAa6KMwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDgGyn35 x0IUbW8mhCeAH4b0/4/jMB8GA1UdIwQYMBaAFPa6bmMKaqmNghVoJk4Ce5iN9cm6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBRjNFMi9EQTYyMkU5QTVC OUUxMUVGQkNEQkM1NUJDNEY5QUUwMi85cnB1WXdwcXFZMkNGV2dtVGdKN21JMzF5 Ym8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzlycHVZd3BxcVkyQ0ZXZ21UZ0o3bUkzMXliby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB RjNFMi9EQTYyMkU5QTVCOUUxMUVGQkNEQkM1NUJDNEY5QUUwMi85cnB1WXdwcXFZ MkNGV2dtVGdKN21JMzF5Ym8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBirowp3Tg6ikQQ/m+Qd1+DdUgjETFU6RFUSP6CF6OoEV3iGGSdCUu+ T7FQSdTAotW9szReOohqVJxuoyhyOlyIzR5ug5MeMzlszXMisjuwMrGibyi55TZl s58gofFTlvsAz2h73TuN+XhJBKiXDW7Zk9OidBqhx7tFCR62M3yxbzExn95OfVcm MAwfFJNcpN7a2sy3XsCtWawSKR8kkX6Cze5y1apK2RW5bKJkbdI0bTMvF1LOaaJZ Ym86XZGAwP5ZEcg1xRF4D7dIdu4J+NQ0A6op9kEytiHnSD0NjYXXd7TQ8sI6HgkJ 6fitrP7DOi/Fg94skQUW6sqxQRwU7YVr -----END CERTIFICATE-----Generated at Sat May 31 17:00:15 2025 by rpki-client