$ rpki-client -vvf rpki.apnic.net/member_repository/A91B2C88/24299DCA978E11EBBD81B055C4F9AE02/2gE-F4NYyzWot2XJvAkK6c8cT74.mft File: 2gE-F4NYyzWot2XJvAkK6c8cT74.mft (raw, json) Hash identifier: kEc/WPg0Hw5i2a6BklQU0MM/M3lCFB+44r5l42jn/aY= Subject key identifier: 1A:A5:42:27:F5:EF:1B:8F:E9:3A:84:C7:86:04:D9:26:B8:5F:7B:FD Authority key identifier: DA:01:3E:17:83:58:CB:35:A8:B7:65:C9:BC:09:0A:E9:CF:1C:4F:BE Certificate issuer: /CN=A91B2C88/serialNumber=DA013E178358CB35A8B765C9BC090AE9CF1C4FBE Certificate serial: 063A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2gE-F4NYyzWot2XJvAkK6c8cT74.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B2C88/24299DCA978E11EBBD81B055C4F9AE02/2gE-F4NYyzWot2XJvAkK6c8cT74.mft Manifest number: 0632 Signing time: Fri 30 May 2025 22:55:51 +0000 Manifest this update: Fri 30 May 2025 22:55:51 +0000 Manifest next update: Fri 06 Jun 2025 22:55:50 +0000 Files and hashes: 1: 2gE-F4NYyzWot2XJvAkK6c8cT74.crl (hash: WVV1bIelVgu/gTsdzWHKs45ylW2xHKhkzvxQNTwQMSg=) 2: 3C5E55F041A411ECA73C8C0EC4F9AE02.roa (hash: KMuh5ult9LiAce0tih+7IUcHZQamzlPDZPCJthZ1JAs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B2C88/24299DCA978E11EBBD81B055C4F9AE02/2gE-F4NYyzWot2XJvAkK6c8cT74.crl rsync://rpki.apnic.net/member_repository/A91B2C88/24299DCA978E11EBBD81B055C4F9AE02/2gE-F4NYyzWot2XJvAkK6c8cT74.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2gE-F4NYyzWot2XJvAkK6c8cT74.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 22:55:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1594 (0x63a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B2C88, serialNumber=DA013E178358CB35A8B765C9BC090AE9CF1C4FBE Validity Not Before: May 30 22:55:51 2025 GMT Not After : Jun 6 22:55:50 2025 GMT Subject: CN=683a3777-1060 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:92:b6:d8:7c:74:ee:77:54:93:61:f2:af:e6: c5:c8:e7:78:48:4e:af:43:45:14:7d:54:9e:e0:78: d5:72:51:22:d3:01:c4:d4:5a:44:65:e6:c8:5d:eb: 6e:a1:13:bb:22:e1:80:3d:a7:db:9c:f9:95:f2:d9: 22:90:bd:05:7d:dd:dd:e0:08:23:50:3d:f8:a3:c5: d2:4b:1d:18:dc:39:c7:fe:85:f0:95:ef:97:ce:c7: 65:26:aa:fb:48:b4:97:e6:a4:40:43:2d:1b:0a:9d: 7a:3e:8a:fa:af:93:d0:1a:3b:68:d2:58:92:49:07: 25:3a:f6:18:33:49:cf:4f:a8:8c:69:85:b2:55:2c: 43:40:8b:80:3d:ab:72:fd:d0:53:0c:59:c6:0d:04: 75:4e:e8:8b:9d:94:35:bf:c4:fb:ab:55:21:d1:03: 32:8a:8a:19:0c:29:c1:8f:74:c3:d8:4c:94:5b:5f: ce:c5:81:8d:f8:dd:a9:b9:fe:c2:e7:c9:1a:81:32: c3:6e:0d:37:b6:79:5d:e6:7b:59:8d:e3:4e:2a:e4: ac:6e:13:78:b7:53:24:b0:ec:bb:ef:22:66:bc:9a: 1e:ab:48:5e:9d:65:23:2b:c7:2c:78:e0:19:e6:c5: 76:56:d4:08:e9:c5:df:25:41:d2:da:ae:ec:60:03: bd:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1A:A5:42:27:F5:EF:1B:8F:E9:3A:84:C7:86:04:D9:26:B8:5F:7B:FD X509v3 Authority Key Identifier: keyid:DA:01:3E:17:83:58:CB:35:A8:B7:65:C9:BC:09:0A:E9:CF:1C:4F:BE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B2C88/24299DCA978E11EBBD81B055C4F9AE02/2gE-F4NYyzWot2XJvAkK6c8cT74.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2gE-F4NYyzWot2XJvAkK6c8cT74.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B2C88/24299DCA978E11EBBD81B055C4F9AE02/2gE-F4NYyzWot2XJvAkK6c8cT74.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1d:b2:32:3f:54:61:9e:da:9f:ef:bf:37:08:da:d0:ae:8d:84: 7b:36:a0:28:9e:c7:1f:a6:89:40:62:41:27:b6:4e:4c:38:99: 02:9d:32:7e:9d:f9:67:3c:5d:f4:aa:64:7b:36:31:29:6a:05: 30:e9:77:ce:7a:b3:d0:19:15:9b:c6:35:90:34:f1:fa:2f:fe: b4:e0:e9:86:5b:e1:f9:7a:bf:9f:53:c2:1e:0a:f9:4f:1e:e9: 82:ad:11:d8:71:fc:3a:f7:f2:c7:97:7e:b4:7b:48:69:f5:54: 8b:c2:93:70:70:eb:ae:be:e7:94:a8:5c:ee:81:a3:0f:fb:9a: 27:f6:4a:fe:88:f9:77:31:d9:bc:8f:6c:2c:bc:95:37:50:2e: f8:a0:5b:79:bd:fc:5e:bd:1b:77:ea:ee:bc:2f:de:7b:48:cd: bc:77:92:89:f6:e7:26:44:ae:f7:82:59:d9:06:d8:38:71:c3: 49:77:d9:37:3c:c4:f6:f0:3e:46:77:83:15:8a:dd:f7:d4:11: e0:13:01:98:ed:ac:14:27:fd:42:08:80:f2:c6:32:78:bd:ef: 0a:e6:e2:b9:c3:b2:f7:db:95:c9:33:6e:f8:a1:70:c9:a7:cb: 4c:1f:ef:93:30:90:ad:64:8f:6c:70:ca:5e:ac:1d:bf:40:86: 87:3a:a3:1f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBjowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjJDODgxMTAvBgNVBAUTKERBMDEzRTE3ODM1OENCMzVBOEI3NjVDOUJDMDkwQUU5 Q0YxQzRGQkUwHhcNMjUwNTMwMjI1NTUxWhcNMjUwNjA2MjI1NTUwWjAYMRYwFAYD VQQDEw02ODNhMzc3Ny0xMDYwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxpK22Hx07ndUk2Hyr+bFyOd4SE6vQ0UUfVSe4HjVclEi0wHE1FpEZebIXetu oRO7IuGAPafbnPmV8tkikL0Ffd3d4AgjUD34o8XSSx0Y3DnH/oXwle+XzsdlJqr7 SLSX5qRAQy0bCp16Por6r5PQGjto0liSSQclOvYYM0nPT6iMaYWyVSxDQIuAPaty /dBTDFnGDQR1TuiLnZQ1v8T7q1Uh0QMyiooZDCnBj3TD2EyUW1/OxYGN+N2puf7C 58kagTLDbg03tnld5ntZjeNOKuSsbhN4t1MksOy77yJmvJoeq0henWUjK8cseOAZ 5sV2VtQI6cXfJUHS2q7sYAO9FQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBqlQif1 7xuP6TqEx4YE2Sa4X3v9MB8GA1UdIwQYMBaAFNoBPheDWMs1qLdlybwJCunPHE++ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMkM4OC8yNDI5OURDQTk3 OEUxMUVCQkQ4MUIwNTVDNEY5QUUwMi8yZ0UtRjROWXl6V290MlhKdkFrSzZjOGNU NzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJnRS1GNE5ZeXpXb3QyWEp2QWtLNmM4Y1Q3NC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC MkM4OC8yNDI5OURDQTk3OEUxMUVCQkQ4MUIwNTVDNEY5QUUwMi8yZ0UtRjROWXl6 V290MlhKdkFrSzZjOGNUNzQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAdsjI/VGGe2p/vvzcI2tCujYR7NqAonscfpolAYkEntk5MOJkCnTJ+ nflnPF30qmR7NjEpagUw6XfOerPQGRWbxjWQNPH6L/604OmGW+H5er+fU8IeCvlP HumCrRHYcfw69/LHl360e0hp9VSLwpNwcOuuvueUqFzugaMP+5on9kr+iPl3Mdm8 j2wsvJU3UC74oFt5vfxevRt36u68L957SM28d5KJ9ucmRK73glnZBtg4ccNJd9k3 PMT28D5Gd4MVit331BHgEwGY7awUJ/1CCIDyxjJ4ve8K5uK5w7L325XJM274oXDJ p8tMH++TMJCtZI9scMperB2/QIaHOqMf -----END CERTIFICATE-----Generated at Sat May 31 17:50:39 2025 by rpki-client