$ rpki-client -vvf rpki.apnic.net/member_repository/A91AF5F7/44FCE568C78411EBAD4C9659C4F9AE02/Cid9JqnCQCuKHNRXeTXk88JZwZ8.mft File: Cid9JqnCQCuKHNRXeTXk88JZwZ8.mft (raw, json) Hash identifier: V9Cg5LlbMuvjVhUFzjKdsYFspXBXaoXm8gjUTYOKy7U= Subject key identifier: C6:1E:5B:62:EA:00:8F:0E:E1:99:3C:99:6A:83:3B:FF:0A:E5:35:9E Authority key identifier: 0A:27:7D:26:A9:C2:40:2B:8A:1C:D4:57:79:35:E4:F3:C2:59:C1:9F Certificate issuer: /CN=A91AF5F7/serialNumber=0A277D26A9C2402B8A1CD4577935E4F3C259C19F Certificate serial: 05D2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Cid9JqnCQCuKHNRXeTXk88JZwZ8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AF5F7/44FCE568C78411EBAD4C9659C4F9AE02/Cid9JqnCQCuKHNRXeTXk88JZwZ8.mft Manifest number: 05C2 Signing time: Fri 30 May 2025 23:20:26 +0000 Manifest this update: Fri 30 May 2025 23:20:26 +0000 Manifest next update: Fri 06 Jun 2025 23:20:26 +0000 Files and hashes: 1: Cid9JqnCQCuKHNRXeTXk88JZwZ8.crl (hash: dOMAK5odRhAUlBcOdo+LjOTf/usSGrabBYANzMK3Rzg=) 2: 4D38774A86E611EF9D6F5581C4F9AE02.roa (hash: 7ioLjk8VeJvEHBuoWRfrT57B74IDRpNgRa9+NJtrnGo=) 3: 0DD6AB9CA4F011EC96AF7B65C4F9AE02.roa (hash: /5KvjYunF83kIcMiJK5ao0UnFWTIm9b33GuRAVT7yXE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AF5F7/44FCE568C78411EBAD4C9659C4F9AE02/Cid9JqnCQCuKHNRXeTXk88JZwZ8.crl rsync://rpki.apnic.net/member_repository/A91AF5F7/44FCE568C78411EBAD4C9659C4F9AE02/Cid9JqnCQCuKHNRXeTXk88JZwZ8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Cid9JqnCQCuKHNRXeTXk88JZwZ8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 23:20:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1490 (0x5d2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AF5F7, serialNumber=0A277D26A9C2402B8A1CD4577935E4F3C259C19F Validity Not Before: May 30 23:20:26 2025 GMT Not After : Jun 6 23:20:26 2025 GMT Subject: CN=683a3d3a-fdc1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:53:2b:ac:ca:eb:a9:b8:d8:03:13:81:2f:a8: 4d:a9:26:8f:07:48:e1:d9:73:c8:2d:f2:9f:b8:b8: f4:9d:bf:fd:8d:46:68:2f:f3:39:52:98:79:fb:07: 75:0a:cb:46:6e:a0:16:56:aa:1e:62:37:dd:ee:c2: d6:96:da:50:61:a7:63:3e:b8:1e:a6:35:88:db:17: 7d:c8:85:ab:c7:d0:83:a0:f9:31:2a:b0:f2:0e:22: 0d:95:89:19:b5:54:20:44:bb:fb:63:2d:d8:df:71: 4d:4b:91:1c:f8:9e:8a:3e:5a:cb:dd:da:67:f2:e6: 80:d5:a7:d7:a4:1e:04:31:00:71:88:91:7d:5f:1c: 9a:e7:4d:9b:b0:3b:1e:f8:8a:95:85:96:d2:3a:21: 7c:5d:8e:c1:3f:79:23:d2:50:e3:13:61:e2:88:16: 16:af:b5:86:45:d6:cc:2d:cd:af:14:91:c3:05:38: 24:fe:f1:b7:f0:5a:7f:ec:0e:ff:cb:b7:8b:8d:8f: 37:e3:a6:8b:e2:96:74:06:4c:d2:78:0b:06:8f:39: b9:af:9a:43:10:49:1a:ab:8f:8b:f3:7e:74:c5:45: 36:69:7c:72:7b:4e:d9:72:26:8b:1a:21:63:88:b0: 1a:0e:5f:3a:4c:00:08:df:15:5d:98:d4:73:b7:0c: d8:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C6:1E:5B:62:EA:00:8F:0E:E1:99:3C:99:6A:83:3B:FF:0A:E5:35:9E X509v3 Authority Key Identifier: keyid:0A:27:7D:26:A9:C2:40:2B:8A:1C:D4:57:79:35:E4:F3:C2:59:C1:9F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AF5F7/44FCE568C78411EBAD4C9659C4F9AE02/Cid9JqnCQCuKHNRXeTXk88JZwZ8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Cid9JqnCQCuKHNRXeTXk88JZwZ8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AF5F7/44FCE568C78411EBAD4C9659C4F9AE02/Cid9JqnCQCuKHNRXeTXk88JZwZ8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 20:2c:61:95:2c:ae:1c:4c:a7:be:56:c5:28:49:eb:65:88:1f: 12:e8:06:0f:41:2b:9e:f2:cf:5c:53:db:31:75:69:ef:c7:fb: 68:63:a2:9b:57:1a:ca:54:f5:fe:f4:e1:12:4c:45:b2:9d:5c: 1b:c6:67:57:41:d8:fe:4e:53:5d:6a:c7:11:8e:f5:ac:af:13: 43:c8:67:58:05:45:12:41:bc:ca:04:05:72:53:63:94:46:60: 96:10:aa:89:31:fd:28:78:20:bf:62:3f:20:0e:da:8d:c9:16: fe:f0:a8:4d:01:94:72:4e:b5:b0:3e:17:f0:3d:f0:7f:d1:00: d6:a6:7a:8e:88:bf:e3:15:09:84:19:24:0a:3f:11:1b:80:bc: ea:4c:a1:62:00:69:28:70:32:7e:d3:31:02:8a:10:e1:47:0d: a3:ef:4c:c0:34:ba:5f:88:c9:51:e7:48:65:1b:55:2d:31:d7: d2:63:35:57:15:c4:b0:03:fa:84:5c:3f:bf:eb:05:63:af:ec: bb:15:c1:9b:b6:e3:de:ce:e0:36:8d:4b:3d:6a:b5:b7:3c:7e: e0:20:2d:75:0d:06:ad:e0:9c:f5:fb:9c:31:21:bf:44:31:44: b5:db:0c:5f:8e:cf:69:c5:8f:11:ba:08:7c:b9:d4:c8:66:58: d4:05:c8:98 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBdIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUY1RjcxMTAvBgNVBAUTKDBBMjc3RDI2QTlDMjQwMkI4QTFDRDQ1Nzc5MzVFNEYz QzI1OUMxOUYwHhcNMjUwNTMwMjMyMDI2WhcNMjUwNjA2MjMyMDI2WjAYMRYwFAYD VQQDEw02ODNhM2QzYS1mZGMxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx1MrrMrrqbjYAxOBL6hNqSaPB0jh2XPILfKfuLj0nb/9jUZoL/M5Uph5+wd1 CstGbqAWVqoeYjfd7sLWltpQYadjPrgepjWI2xd9yIWrx9CDoPkxKrDyDiINlYkZ tVQgRLv7Yy3Y33FNS5Ec+J6KPlrL3dpn8uaA1afXpB4EMQBxiJF9Xxya502bsDse +IqVhZbSOiF8XY7BP3kj0lDjE2HiiBYWr7WGRdbMLc2vFJHDBTgk/vG38Fp/7A7/ y7eLjY8346aL4pZ0BkzSeAsGjzm5r5pDEEkaq4+L8350xUU2aXxye07ZciaLGiFj iLAaDl86TAAI3xVdmNRztwzYrwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMYeW2Lq AI8O4Zk8mWqDO/8K5TWeMB8GA1UdIwQYMBaAFAonfSapwkArihzUV3k15PPCWcGf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBRjVGNy80NEZDRTU2OEM3 ODQxMUVCQUQ0Qzk2NTlDNEY5QUUwMi9DaWQ5SnFuQ1FDdUtITlJYZVRYazg4Slp3 WjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NpZDlKcW5DUUN1S0hOUlhlVFhrODhKWndaOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB RjVGNy80NEZDRTU2OEM3ODQxMUVCQUQ0Qzk2NTlDNEY5QUUwMi9DaWQ5SnFuQ1FD dUtITlJYZVRYazg4Slp3WjgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAgLGGVLK4cTKe+VsUoSetliB8S6AYPQSue8s9cU9sxdWnvx/toY6Kb VxrKVPX+9OESTEWynVwbxmdXQdj+TlNdascRjvWsrxNDyGdYBUUSQbzKBAVyU2OU RmCWEKqJMf0oeCC/Yj8gDtqNyRb+8KhNAZRyTrWwPhfwPfB/0QDWpnqOiL/jFQmE GSQKPxEbgLzqTKFiAGkocDJ+0zECihDhRw2j70zANLpfiMlR50hlG1UtMdfSYzVX FcSwA/qEXD+/6wVjr+y7FcGbtuPezuA2jUs9arW3PH7gIC11DQat4Jz1+5wxIb9E MUS12wxfjs9pxY8Rugh8udTIZljUBciY -----END CERTIFICATE-----Generated at Sat May 31 17:34:22 2025 by rpki-client