$ rpki-client -vvf rpki.apnic.net/member_repository/A91B1E8B/6291764445B611EF8AB30A31C4F9AE02/nTwzrLEQPnH6H_PmAT6dwxEiafw.mft File: nTwzrLEQPnH6H_PmAT6dwxEiafw.mft (raw, json) Hash identifier: GvXiqfSmm7brD7Girf/cGr5fRzgkLfninfekGiXtfIg= Subject key identifier: 0C:DC:CC:A5:5E:8F:A8:A0:E5:52:4B:2E:65:98:12:D9:D7:39:7F:90 Authority key identifier: 9D:3C:33:AC:B1:10:3E:71:FA:1F:F3:E6:01:3E:9D:C3:11:22:69:FC Certificate issuer: /CN=A91B1E8B/serialNumber=9D3C33ACB1103E71FA1FF3E6013E9DC3112269FC Certificate serial: A8 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/nTwzrLEQPnH6H_PmAT6dwxEiafw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B1E8B/6291764445B611EF8AB30A31C4F9AE02/nTwzrLEQPnH6H_PmAT6dwxEiafw.mft Manifest number: A6 Signing time: Tue 03 Jun 2025 05:59:09 +0000 Manifest this update: Tue 03 Jun 2025 05:59:08 +0000 Manifest next update: Tue 10 Jun 2025 05:59:08 +0000 Files and hashes: 1: nTwzrLEQPnH6H_PmAT6dwxEiafw.crl (hash: P3ERWA6mWUFGif2Y0iePQb7WRK78Bfu51YZzgOqbnaQ=) 2: DD76C09AB16711EFBD483568C4F9AE02.roa (hash: lZ2oQ4wvz4evXveDE7LNoYJmc6E6jg/A59sR/rYBi6k=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B1E8B/6291764445B611EF8AB30A31C4F9AE02/nTwzrLEQPnH6H_PmAT6dwxEiafw.crl rsync://rpki.apnic.net/member_repository/A91B1E8B/6291764445B611EF8AB30A31C4F9AE02/nTwzrLEQPnH6H_PmAT6dwxEiafw.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/nTwzrLEQPnH6H_PmAT6dwxEiafw.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 10 Jun 2025 05:59:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 168 (0xa8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B1E8B, serialNumber=9D3C33ACB1103E71FA1FF3E6013E9DC3112269FC Validity Not Before: Jun 3 05:59:08 2025 GMT Not After : Jun 10 05:59:08 2025 GMT Subject: CN=683e8f2d-dbc6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:9d:70:46:c5:d1:f7:a1:d9:ab:e2:b0:f8:5d: 1a:3d:55:fe:cd:10:46:20:c0:a0:b8:70:47:8a:0b: 81:86:a6:fe:fa:6d:f9:e9:78:c1:05:07:97:f4:e8: 21:c1:8f:e3:c4:b3:aa:74:9a:5f:43:40:a8:e9:43: d0:d7:c6:3e:4d:63:19:65:7a:d5:31:95:df:cc:d7: 4d:a3:be:93:cf:ee:62:20:12:58:fa:ea:6d:1f:f3: 9c:df:20:fb:5d:05:0d:b3:20:91:6d:67:cd:a7:57: 41:1e:5a:18:71:4e:b4:55:36:1a:14:e1:8c:ab:3a: cd:bc:03:3f:53:f6:6d:30:9e:ad:74:3a:94:fd:59: 57:86:b0:d8:72:36:ec:28:59:69:a0:ef:5c:98:1e: f8:40:aa:1c:ac:c6:f6:c1:f6:9d:91:3d:0e:95:2a: 60:c6:9b:2a:85:97:17:46:db:a3:95:a7:4b:1b:3f: e0:d1:07:7b:f4:2c:d0:42:97:ae:4c:87:3a:bc:37: ca:13:ee:ae:94:09:3d:4c:00:8e:4c:23:c2:10:44: 4d:db:25:67:14:b3:30:48:ac:0f:a4:0f:15:a2:6d: 74:29:d1:bd:10:9e:d1:2e:eb:81:7f:64:1a:6a:6d: b6:5d:fb:cc:dd:1a:77:5f:dc:3d:44:6f:d5:7f:a6: a7:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0C:DC:CC:A5:5E:8F:A8:A0:E5:52:4B:2E:65:98:12:D9:D7:39:7F:90 X509v3 Authority Key Identifier: keyid:9D:3C:33:AC:B1:10:3E:71:FA:1F:F3:E6:01:3E:9D:C3:11:22:69:FC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B1E8B/6291764445B611EF8AB30A31C4F9AE02/nTwzrLEQPnH6H_PmAT6dwxEiafw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/nTwzrLEQPnH6H_PmAT6dwxEiafw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B1E8B/6291764445B611EF8AB30A31C4F9AE02/nTwzrLEQPnH6H_PmAT6dwxEiafw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4a:b1:43:11:46:61:46:c9:26:97:f2:19:7b:96:bd:da:68:b3: bd:19:ec:a5:8d:bb:ef:ab:9d:47:87:87:31:01:ff:57:49:52: cb:c5:57:38:5d:1f:d7:5a:65:c2:34:84:21:65:da:41:80:ea: e6:ea:f2:4a:ae:12:22:71:cc:12:ae:6f:f9:55:79:7e:64:09: 2a:96:30:dc:6d:dd:01:a9:0b:45:0a:56:62:36:e0:a5:7f:fc: 4d:73:14:60:cf:03:2c:72:33:79:c2:15:de:73:ec:cb:6b:f5: 1a:96:ce:7d:0b:3a:08:56:bf:5d:78:26:d8:39:23:fb:f8:3b: 44:cc:80:af:3e:7d:90:e5:fa:aa:a7:fe:3d:b0:c5:01:55:ae: e8:3d:df:11:c7:3d:0d:43:e9:45:17:a1:df:08:d4:1f:20:4c: 7e:6c:b5:7e:5e:b8:22:73:c5:bf:85:c6:8f:17:96:bf:27:1c: 4d:7c:b5:d6:cb:4b:a4:4f:be:6f:11:0e:f0:db:54:4d:cb:3b: 08:b9:f8:1c:50:fb:3d:e2:5b:bc:3a:1b:cb:c8:87:53:fd:1d: 2f:2a:b6:2e:c9:9c:e3:55:99:5b:b5:2c:16:38:aa:c2:6d:c8: 58:ba:b3:43:ed:d9:68:b4:3b:fd:30:8a:2d:76:cb:5b:45:a8: 7a:e4:58:74 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAKgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjFFOEIxMTAvBgNVBAUTKDlEM0MzM0FDQjExMDNFNzFGQTFGRjNFNjAxM0U5REMz MTEyMjY5RkMwHhcNMjUwNjAzMDU1OTA4WhcNMjUwNjEwMDU1OTA4WjAYMRYwFAYD VQQDEw02ODNlOGYyZC1kYmM2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArp1wRsXR96HZq+Kw+F0aPVX+zRBGIMCguHBHiguBhqb++m356XjBBQeX9Ogh wY/jxLOqdJpfQ0Co6UPQ18Y+TWMZZXrVMZXfzNdNo76Tz+5iIBJY+uptH/Oc3yD7 XQUNsyCRbWfNp1dBHloYcU60VTYaFOGMqzrNvAM/U/ZtMJ6tdDqU/VlXhrDYcjbs KFlpoO9cmB74QKocrMb2wfadkT0OlSpgxpsqhZcXRtujladLGz/g0Qd79CzQQpeu TIc6vDfKE+6ulAk9TACOTCPCEERN2yVnFLMwSKwPpA8Vom10KdG9EJ7RLuuBf2Qa am22XfvM3Rp3X9w9RG/Vf6an9QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAzczKVe j6ig5VJLLmWYEtnXOX+QMB8GA1UdIwQYMBaAFJ08M6yxED5x+h/z5gE+ncMRImn8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMUU4Qi82MjkxNzY0NDQ1 QjYxMUVGOEFCMzBBMzFDNEY5QUUwMi9uVHd6ckxFUVBuSDZIX1BtQVQ2ZHd4RWlh ZncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL25Ud3pyTEVRUG5INkhfUG1BVDZkd3hFaWFmdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC MUU4Qi82MjkxNzY0NDQ1QjYxMUVGOEFCMzBBMzFDNEY5QUUwMi9uVHd6ckxFUVBu SDZIX1BtQVQ2ZHd4RWlhZncubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBKsUMRRmFGySaX8hl7lr3aaLO9Geyljbvvq51Hh4cxAf9XSVLLxVc4 XR/XWmXCNIQhZdpBgOrm6vJKrhIiccwSrm/5VXl+ZAkqljDcbd0BqQtFClZiNuCl f/xNcxRgzwMscjN5whXec+zLa/Uals59CzoIVr9deCbYOSP7+DtEzICvPn2Q5fqq p/49sMUBVa7oPd8Rxz0NQ+lFF6HfCNQfIEx+bLV+Xrgic8W/hcaPF5a/JxxNfLXW y0ukT75vEQ7w21RNyzsIufgcUPs94lu8OhvLyIdT/R0vKrYuyZzjVZlbtSwWOKrC bchYurND7dlotDv9MIotdstbRah65Fh0 -----END CERTIFICATE-----Generated at Wed Jun 4 00:14:22 2025 by rpki-client