$ rpki-client -vvf rpki.apnic.net/member_repository/A91B2CDA/F4E2BAB825C311E8A0714A34C4F9AE02/2gNU-zgfRSHBCxY-y9IqCD-3omw.mft File: 2gNU-zgfRSHBCxY-y9IqCD-3omw.mft (raw, json) Hash identifier: y7DYmu9bXCHAXo+nU/MVepjrMJ33XKurV9tw2mfnbA4= Subject key identifier: D7:D5:C0:DC:94:09:80:5F:6D:62:02:0D:BD:91:22:7C:3D:55:55:52 Authority key identifier: DA:03:54:FB:38:1F:45:21:C1:0B:16:3E:CB:D2:2A:08:3F:B7:A2:6C Certificate issuer: /CN=A91B2CDA/serialNumber=DA0354FB381F4521C10B163ECBD22A083FB7A26C Certificate serial: 15E9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2gNU-zgfRSHBCxY-y9IqCD-3omw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B2CDA/F4E2BAB825C311E8A0714A34C4F9AE02/2gNU-zgfRSHBCxY-y9IqCD-3omw.mft Manifest number: 15D8 Signing time: Fri 30 May 2025 16:57:27 +0000 Manifest this update: Fri 30 May 2025 16:57:27 +0000 Manifest next update: Fri 06 Jun 2025 16:57:27 +0000 Files and hashes: 1: 2gNU-zgfRSHBCxY-y9IqCD-3omw.crl (hash: T3InyZCSOHGSeAtl3pTIQrrpCBywW4W11kZ1sIUkKWs=) 2: 7F3ED5DE9C4411ECBD85CE4FC4F9AE02.roa (hash: IzneJg8uANhMNifeTA7mpjTNJJeW/3cdEs9nqqZnnZs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B2CDA/F4E2BAB825C311E8A0714A34C4F9AE02/2gNU-zgfRSHBCxY-y9IqCD-3omw.crl rsync://rpki.apnic.net/member_repository/A91B2CDA/F4E2BAB825C311E8A0714A34C4F9AE02/2gNU-zgfRSHBCxY-y9IqCD-3omw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2gNU-zgfRSHBCxY-y9IqCD-3omw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 16:57:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5609 (0x15e9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B2CDA, serialNumber=DA0354FB381F4521C10B163ECBD22A083FB7A26C Validity Not Before: May 30 16:57:27 2025 GMT Not After : Jun 6 16:57:27 2025 GMT Subject: CN=6839e377-2609 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:99:e4:5f:62:92:16:05:a0:65:6c:eb:60:a9: a5:0b:e6:b0:31:de:61:ef:66:91:f1:f3:d6:fd:c6: 04:a3:d4:d5:11:5f:03:c9:de:9a:93:88:2c:b2:6f: 1c:c9:f5:85:a9:b9:1f:c4:be:b7:26:91:34:d3:64: 55:96:1a:a3:a0:3c:0e:05:c6:6c:3f:0a:6c:37:fe: 84:90:d5:69:a3:4e:2b:59:f4:aa:7d:c8:b2:c1:70: ef:4f:2a:48:42:eb:15:92:2b:20:45:20:9c:a0:5b: f5:ba:8c:02:86:07:2c:d4:9b:c7:95:14:74:84:4d: 7c:f6:26:6e:03:f5:fa:a6:80:64:33:74:de:e1:40: ca:18:7f:b9:42:67:f5:1a:78:41:42:e7:38:de:a4: f4:44:c2:17:a5:48:2e:b8:dc:10:fd:36:b6:68:02: 6f:da:67:0e:ff:7b:68:a7:c8:32:2d:31:b7:e3:5c: 64:6c:1f:41:31:85:be:d9:a6:9f:ec:83:df:76:11: 07:bd:ad:5c:72:59:71:d5:c9:d5:e8:b6:bc:25:78: d6:e0:c6:22:4b:e1:9d:b5:87:3d:a9:fb:a6:2c:81: c3:62:0d:cd:85:f3:af:a5:13:3f:fc:9c:72:e0:f0: 67:33:ff:e7:d9:c3:8a:16:22:a1:bc:df:b3:8e:4e: f0:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D7:D5:C0:DC:94:09:80:5F:6D:62:02:0D:BD:91:22:7C:3D:55:55:52 X509v3 Authority Key Identifier: keyid:DA:03:54:FB:38:1F:45:21:C1:0B:16:3E:CB:D2:2A:08:3F:B7:A2:6C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B2CDA/F4E2BAB825C311E8A0714A34C4F9AE02/2gNU-zgfRSHBCxY-y9IqCD-3omw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2gNU-zgfRSHBCxY-y9IqCD-3omw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B2CDA/F4E2BAB825C311E8A0714A34C4F9AE02/2gNU-zgfRSHBCxY-y9IqCD-3omw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 71:08:e6:77:6b:33:a0:41:b5:e2:42:8b:16:17:c1:8b:c8:2f: 15:34:f9:ea:ce:5f:00:79:24:eb:a7:dd:22:41:bc:08:b9:d1: e8:0c:df:cc:93:f8:53:ef:2a:a3:87:28:b3:a9:6b:45:c1:42: c5:fb:78:e0:76:42:03:c5:e6:46:7f:3c:06:88:a0:d6:5e:60: b2:d4:1e:b1:bc:49:49:2c:15:23:c4:4c:7b:aa:fb:44:79:40: 62:aa:0f:de:9b:1d:cd:de:50:58:21:3f:51:9a:5a:38:62:9f: 0d:3d:95:8e:96:65:f2:7e:8c:2d:b2:03:f0:2a:74:d7:5b:09: 73:2a:ee:f0:9c:25:3e:ce:1c:25:71:4f:4f:ea:e8:d5:1d:b3: d0:09:33:4b:1c:74:07:42:6f:f8:3b:3d:14:35:71:26:f3:62: c9:d8:4e:f4:a7:4b:89:c5:48:ef:2c:be:ad:52:e4:e1:01:e9: ed:19:3f:c6:d5:ff:4a:11:2f:7a:f8:4f:56:dd:05:98:1c:df: 9f:37:9b:66:ee:94:16:03:dc:e1:73:ab:9b:a9:25:a4:f2:3d: 19:47:a4:8c:74:f6:24:a1:ba:73:27:ff:34:02:23:19:7c:18: e7:3f:94:4f:07:49:97:87:93:fa:7b:1f:22:fd:b3:4e:05:89: ae:b2:ed:e1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICFekwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjJDREExMTAvBgNVBAUTKERBMDM1NEZCMzgxRjQ1MjFDMTBCMTYzRUNCRDIyQTA4 M0ZCN0EyNkMwHhcNMjUwNTMwMTY1NzI3WhcNMjUwNjA2MTY1NzI3WjAYMRYwFAYD VQQDEw02ODM5ZTM3Ny0yNjA5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApJnkX2KSFgWgZWzrYKmlC+awMd5h72aR8fPW/cYEo9TVEV8Dyd6ak4gssm8c yfWFqbkfxL63JpE002RVlhqjoDwOBcZsPwpsN/6EkNVpo04rWfSqfciywXDvTypI QusVkisgRSCcoFv1uowChgcs1JvHlRR0hE189iZuA/X6poBkM3Te4UDKGH+5Qmf1 GnhBQuc43qT0RMIXpUguuNwQ/Ta2aAJv2mcO/3top8gyLTG341xkbB9BMYW+2aaf 7IPfdhEHva1ccllx1cnV6La8JXjW4MYiS+GdtYc9qfumLIHDYg3NhfOvpRM//Jxy 4PBnM//n2cOKFiKhvN+zjk7wtQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNfVwNyU CYBfbWICDb2RInw9VVVSMB8GA1UdIwQYMBaAFNoDVPs4H0UhwQsWPsvSKgg/t6Js MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMkNEQS9GNEUyQkFCODI1 QzMxMUU4QTA3MTRBMzRDNEY5QUUwMi8yZ05VLXpnZlJTSEJDeFkteTlJcUNELTNv bXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJnTlUtemdmUlNIQkN4WS15OUlxQ0QtM29tdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC MkNEQS9GNEUyQkFCODI1QzMxMUU4QTA3MTRBMzRDNEY5QUUwMi8yZ05VLXpnZlJT SEJDeFkteTlJcUNELTNvbXcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBxCOZ3azOgQbXiQosWF8GLyC8VNPnqzl8AeSTrp90iQbwIudHoDN/M k/hT7yqjhyizqWtFwULF+3jgdkIDxeZGfzwGiKDWXmCy1B6xvElJLBUjxEx7qvtE eUBiqg/emx3N3lBYIT9Rmlo4Yp8NPZWOlmXyfowtsgPwKnTXWwlzKu7wnCU+zhwl cU9P6ujVHbPQCTNLHHQHQm/4Oz0UNXEm82LJ2E70p0uJxUjvLL6tUuThAentGT/G 1f9KES96+E9W3QWYHN+fN5tm7pQWA9zhc6ubqSWk8j0ZR6SMdPYkobpzJ/80AiMZ fBjnP5RPB0mXh5P6ex8i/bNOBYmusu3h -----END CERTIFICATE-----Generated at Sat May 31 16:47:47 2025 by rpki-client