$ rpki-client -vvf rpki.apnic.net/member_repository/A91B2252/C58F8B7AF63A11EAB70A361FC4F9AE02/MIoPBCNx10Tky2KrUekE9wys03o.mft File: MIoPBCNx10Tky2KrUekE9wys03o.mft (raw, json) Hash identifier: qkiFAJEEbJd/+I/Qi0bnif9AVwUMvDbxcQjAKo3NGPk= Subject key identifier: 27:52:83:94:18:DC:14:B4:D9:D3:CC:9B:0E:51:C2:02:0E:45:45:31 Authority key identifier: 30:8A:0F:04:23:71:D7:44:E4:CB:62:AB:51:E9:04:F7:0C:AC:D3:7A Certificate issuer: /CN=A91B2252/serialNumber=308A0F042371D744E4CB62AB51E904F70CACD37A Certificate serial: 07D3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MIoPBCNx10Tky2KrUekE9wys03o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B2252/C58F8B7AF63A11EAB70A361FC4F9AE02/MIoPBCNx10Tky2KrUekE9wys03o.mft Manifest number: 07C9 Signing time: Fri 30 May 2025 21:20:45 +0000 Manifest this update: Fri 30 May 2025 21:20:44 +0000 Manifest next update: Fri 06 Jun 2025 21:20:44 +0000 Files and hashes: 1: MIoPBCNx10Tky2KrUekE9wys03o.crl (hash: pZOv5TJNaXN1Y0t99KWy+2jxu/pt+LMWzxxzexTPntw=) 2: 727EECD2678811EF99602F53C4F9AE02.roa (hash: WvAkrs/LiVkRHkVog2xW2/ey9F5S8FH9WKoT4JG9/2M=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B2252/C58F8B7AF63A11EAB70A361FC4F9AE02/MIoPBCNx10Tky2KrUekE9wys03o.crl rsync://rpki.apnic.net/member_repository/A91B2252/C58F8B7AF63A11EAB70A361FC4F9AE02/MIoPBCNx10Tky2KrUekE9wys03o.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MIoPBCNx10Tky2KrUekE9wys03o.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 21:20:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2003 (0x7d3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B2252, serialNumber=308A0F042371D744E4CB62AB51E904F70CACD37A Validity Not Before: May 30 21:20:44 2025 GMT Not After : Jun 6 21:20:44 2025 GMT Subject: CN=683a212c-611b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:ca:30:6b:cc:f0:c9:f7:c8:0d:8b:8c:39:04: 61:40:49:6b:ea:e9:38:c9:45:32:c6:1e:b1:15:ca: 03:12:ec:35:59:a5:15:78:a5:2f:41:79:92:0e:b9: 2a:4b:3a:7a:e5:90:57:52:20:8f:15:d2:ef:ca:00: 2e:3f:ed:4f:c0:97:1d:13:9e:85:ca:ae:8e:f5:90: 1e:fb:e1:92:b1:9e:9d:32:7b:42:57:12:a6:ef:0d: c2:6d:b6:e3:96:7f:94:f9:66:f7:7b:cb:f5:92:d7: 9d:99:ce:36:53:4e:42:4f:b4:09:f4:1d:ac:4e:84: a9:9d:07:66:8c:91:8f:55:8b:f2:df:98:45:e7:c5: 84:a1:83:d4:44:ec:61:66:e1:56:3d:7d:6e:07:54: 40:e4:21:a5:3a:ae:d5:e8:f3:76:2a:3a:29:62:e2: 68:c1:08:22:ce:12:ad:9f:fb:6a:0c:8e:81:0e:3c: 05:ca:29:c5:7d:3e:3b:6d:ed:37:c1:2d:f0:06:33: 9d:ff:a8:93:36:4d:58:af:dc:ec:35:4e:c2:37:66: 49:e0:91:10:02:95:3f:0d:b0:2d:1d:b1:8a:41:0c: 58:c7:a6:db:84:37:71:1b:60:32:e2:4f:02:03:11: 50:3b:5f:36:67:1a:51:d6:90:5b:be:85:6c:2d:e5: 81:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 27:52:83:94:18:DC:14:B4:D9:D3:CC:9B:0E:51:C2:02:0E:45:45:31 X509v3 Authority Key Identifier: keyid:30:8A:0F:04:23:71:D7:44:E4:CB:62:AB:51:E9:04:F7:0C:AC:D3:7A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B2252/C58F8B7AF63A11EAB70A361FC4F9AE02/MIoPBCNx10Tky2KrUekE9wys03o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MIoPBCNx10Tky2KrUekE9wys03o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B2252/C58F8B7AF63A11EAB70A361FC4F9AE02/MIoPBCNx10Tky2KrUekE9wys03o.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 78:ed:3d:4c:e8:9f:5a:4a:47:c2:44:86:86:28:5d:89:0c:db: 94:e0:c7:82:cf:0b:d0:2a:32:03:53:86:67:96:94:3c:6a:73: 79:65:41:97:69:00:26:cb:08:44:b2:e6:3e:0e:07:ac:75:39: 38:33:64:23:ab:9a:ae:0c:0e:72:0a:41:c6:72:89:d0:81:4c: ae:8d:fe:53:3e:94:b9:96:ee:8e:84:57:06:e8:66:0b:24:18: 04:f3:a2:68:6a:c0:ec:8d:cf:4f:c5:7e:7e:d8:72:ad:12:e5: 40:c4:71:f8:76:6d:f3:76:56:1c:ea:4a:19:d3:b8:42:cc:97: 99:43:fd:78:b7:a7:a1:fb:b6:e6:52:ef:3f:8c:f3:92:a3:12: b0:66:f7:42:36:68:d8:34:41:9c:54:41:1b:8b:b1:90:5a:4d: 62:d1:49:57:dd:87:50:df:81:b6:f4:8d:3e:37:00:0e:8f:dd: 64:26:12:b6:50:fa:40:cd:21:35:05:27:41:ee:ce:5d:88:78: 3e:8f:ad:17:3a:7f:68:6a:16:7f:3a:18:25:d7:19:6b:53:5d: cc:08:18:ff:1f:3e:dc:57:8a:ab:5d:0f:cf:b8:4e:3b:a7:c3: b1:43:80:06:cc:6e:15:29:48:4e:1b:a5:2d:f1:7a:ef:05:8b: f5:ec:c9:62 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB9MwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjIyNTIxMTAvBgNVBAUTKDMwOEEwRjA0MjM3MUQ3NDRFNENCNjJBQjUxRTkwNEY3 MENBQ0QzN0EwHhcNMjUwNTMwMjEyMDQ0WhcNMjUwNjA2MjEyMDQ0WjAYMRYwFAYD VQQDEw02ODNhMjEyYy02MTFiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtMowa8zwyffIDYuMOQRhQElr6uk4yUUyxh6xFcoDEuw1WaUVeKUvQXmSDrkq Szp65ZBXUiCPFdLvygAuP+1PwJcdE56Fyq6O9ZAe++GSsZ6dMntCVxKm7w3Cbbbj ln+U+Wb3e8v1ktedmc42U05CT7QJ9B2sToSpnQdmjJGPVYvy35hF58WEoYPUROxh ZuFWPX1uB1RA5CGlOq7V6PN2KjopYuJowQgizhKtn/tqDI6BDjwFyinFfT47be03 wS3wBjOd/6iTNk1Yr9zsNU7CN2ZJ4JEQApU/DbAtHbGKQQxYx6bbhDdxG2Ay4k8C AxFQO182ZxpR1pBbvoVsLeWB4QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCdSg5QY 3BS02dPMmw5RwgIORUUxMB8GA1UdIwQYMBaAFDCKDwQjcddE5Mtiq1HpBPcMrNN6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMjI1Mi9DNThGOEI3QUY2 M0ExMUVBQjcwQTM2MUZDNEY5QUUwMi9NSW9QQkNOeDEwVGt5MktyVWVrRTl3eXMw M28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL01Jb1BCQ054MTBUa3kyS3JVZWtFOXd5czAzby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC MjI1Mi9DNThGOEI3QUY2M0ExMUVBQjcwQTM2MUZDNEY5QUUwMi9NSW9QQkNOeDEw VGt5MktyVWVrRTl3eXMwM28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB47T1M6J9aSkfCRIaGKF2JDNuU4MeCzwvQKjIDU4ZnlpQ8anN5ZUGX aQAmywhEsuY+DgesdTk4M2Qjq5quDA5yCkHGconQgUyujf5TPpS5lu6OhFcG6GYL JBgE86JoasDsjc9PxX5+2HKtEuVAxHH4dm3zdlYc6koZ07hCzJeZQ/14t6eh+7bm Uu8/jPOSoxKwZvdCNmjYNEGcVEEbi7GQWk1i0UlX3YdQ34G29I0+NwAOj91kJhK2 UPpAzSE1BSdB7s5diHg+j60XOn9oahZ/Ohgl1xlrU13MCBj/Hz7cV4qrXQ/PuE47 p8OxQ4AGzG4VKUhOG6Ut8XrvBYv17Mli -----END CERTIFICATE-----Generated at Sat May 31 17:22:11 2025 by rpki-client