$ rpki-client -vvf rpki.apnic.net/member_repository/A91B43F4/17AC2A70419C11E5835FD183C4F9AE02/C2PmOl-jsuPMuZMOj2yM7MJFi0U.mft File: C2PmOl-jsuPMuZMOj2yM7MJFi0U.mft (raw, json) Hash identifier: u0+NkuUHrk5f6km6pkplHPRYKjsDtsyWdL6lVM0lzLU= Subject key identifier: 7B:78:CB:F8:C4:C9:37:D0:31:DF:30:12:07:7C:C2:1D:50:98:D5:71 Authority key identifier: 0B:63:E6:3A:5F:A3:B2:E3:CC:B9:93:0E:8F:6C:8C:EC:C2:45:8B:45 Certificate issuer: /CN=A91B43F4/serialNumber=0B63E63A5FA3B2E3CCB9930E8F6C8CECC2458B45 Certificate serial: 24AE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C2PmOl-jsuPMuZMOj2yM7MJFi0U.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B43F4/17AC2A70419C11E5835FD183C4F9AE02/C2PmOl-jsuPMuZMOj2yM7MJFi0U.mft Manifest number: 2499 Signing time: Fri 30 May 2025 15:56:35 +0000 Manifest this update: Fri 30 May 2025 15:56:35 +0000 Manifest next update: Fri 06 Jun 2025 15:56:35 +0000 Files and hashes: 1: C2PmOl-jsuPMuZMOj2yM7MJFi0U.crl (hash: kSWU8Ru2sXUpsVwbL8NU9hGRH7/AB+CTn1/ibVc/paI=) 2: EBC23D9A041E11ECA959B779C4F9AE02.roa (hash: CE+jGBv1hmvPpnjcj/lZMkYxYBXBElFQLbmvrCZoU3o=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B43F4/17AC2A70419C11E5835FD183C4F9AE02/C2PmOl-jsuPMuZMOj2yM7MJFi0U.crl rsync://rpki.apnic.net/member_repository/A91B43F4/17AC2A70419C11E5835FD183C4F9AE02/C2PmOl-jsuPMuZMOj2yM7MJFi0U.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C2PmOl-jsuPMuZMOj2yM7MJFi0U.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 15:56:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9390 (0x24ae) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B43F4, serialNumber=0B63E63A5FA3B2E3CCB9930E8F6C8CECC2458B45 Validity Not Before: May 30 15:56:35 2025 GMT Not After : Jun 6 15:56:35 2025 GMT Subject: CN=6839d533-d21f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:d6:c3:39:4e:e5:42:81:ea:fa:79:58:17:66: af:3f:7e:04:20:22:22:46:87:26:18:a0:6a:1f:ec: 5c:14:6d:5b:22:4c:83:72:b6:f6:8a:86:8e:ea:78: 88:ad:29:fe:f5:44:e7:84:38:3b:38:06:55:29:53: a2:c2:93:6b:ef:8d:d9:ec:67:65:81:89:3e:70:32: 8b:6e:12:3a:7d:ab:96:a7:34:09:44:58:df:b6:48: 4d:0a:ce:41:d6:11:d7:67:3d:a7:47:94:23:e8:30: 66:86:12:fc:09:83:11:e4:31:39:60:36:05:31:b5: 89:0b:70:5c:5a:9b:d4:9d:05:2c:f4:47:09:b7:1b: 8c:76:5e:5b:b4:5e:4b:59:24:ea:4c:0c:16:c9:bf: 2a:2f:f1:24:2c:59:d5:58:8b:93:c3:15:d9:21:64: f9:72:b2:56:35:4a:d5:6d:67:07:e0:36:66:25:06: 54:f2:b1:84:b6:c6:26:87:c8:b8:48:4e:a9:09:2b: 76:7f:5a:2f:61:f5:34:19:8f:0c:1c:b9:d8:3d:0f: ce:6a:8a:c7:6c:df:87:5f:45:69:7f:5d:a7:0b:ee: 96:96:eb:6c:94:bc:f7:db:ee:32:d3:99:fc:09:b0: df:2c:33:45:50:28:6f:9a:8c:eb:a4:63:56:bc:c5: 7f:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7B:78:CB:F8:C4:C9:37:D0:31:DF:30:12:07:7C:C2:1D:50:98:D5:71 X509v3 Authority Key Identifier: keyid:0B:63:E6:3A:5F:A3:B2:E3:CC:B9:93:0E:8F:6C:8C:EC:C2:45:8B:45 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B43F4/17AC2A70419C11E5835FD183C4F9AE02/C2PmOl-jsuPMuZMOj2yM7MJFi0U.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C2PmOl-jsuPMuZMOj2yM7MJFi0U.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B43F4/17AC2A70419C11E5835FD183C4F9AE02/C2PmOl-jsuPMuZMOj2yM7MJFi0U.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8b:24:b3:7c:d7:1d:be:7a:dc:74:a5:65:78:4b:87:9b:f8:57: 68:dc:e9:71:5d:40:62:4b:03:a4:93:42:02:a6:ba:90:05:ef: 68:3e:0c:ce:86:20:e3:31:ab:bd:e9:af:c6:82:4e:0d:a2:50: b4:98:6c:3b:b3:82:5a:95:d1:87:8f:ad:79:b5:f3:79:38:31: a9:f8:25:51:2e:91:63:c8:a3:55:23:c2:c9:2d:d6:4b:e4:e1: 97:79:97:7e:84:b3:51:de:1e:7b:57:6c:07:6e:a5:fa:b8:31: 77:dc:f3:79:d2:07:34:50:0f:80:1b:4a:44:23:04:dc:08:d9: ac:ce:9c:86:b0:70:cb:90:93:b9:4f:f8:1a:e7:2a:14:6b:07: 91:d9:f9:2b:fc:59:bf:a4:91:4f:58:0f:39:ec:15:fa:f6:ba: 7b:6d:54:e4:e9:f2:3d:b8:a4:0c:f2:f3:6c:0b:25:e8:62:cf: 1c:1f:d4:ad:c3:b6:56:8d:0d:b3:d5:49:4a:d9:ea:c4:e2:ce: 5d:6c:65:0c:43:77:0e:3b:63:69:81:32:b7:7f:08:9f:cb:c4: 60:eb:c8:3c:a1:bd:fa:fe:85:11:a4:1d:2b:8f:01:e3:41:26: 33:c6:20:6a:cf:dd:6e:e4:3d:75:11:07:a0:2e:39:d9:54:ae: 80:c5:9a:56 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICJK4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjQzRjQxMTAvBgNVBAUTKDBCNjNFNjNBNUZBM0IyRTNDQ0I5OTMwRThGNkM4Q0VD QzI0NThCNDUwHhcNMjUwNTMwMTU1NjM1WhcNMjUwNjA2MTU1NjM1WjAYMRYwFAYD VQQDEw02ODM5ZDUzMy1kMjFmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAytbDOU7lQoHq+nlYF2avP34EICIiRocmGKBqH+xcFG1bIkyDcrb2ioaO6niI rSn+9UTnhDg7OAZVKVOiwpNr743Z7GdlgYk+cDKLbhI6fauWpzQJRFjftkhNCs5B 1hHXZz2nR5Qj6DBmhhL8CYMR5DE5YDYFMbWJC3BcWpvUnQUs9EcJtxuMdl5btF5L WSTqTAwWyb8qL/EkLFnVWIuTwxXZIWT5crJWNUrVbWcH4DZmJQZU8rGEtsYmh8i4 SE6pCSt2f1ovYfU0GY8MHLnYPQ/OaorHbN+HX0Vpf12nC+6WlutslLz32+4y05n8 CbDfLDNFUChvmozrpGNWvMV/dQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHt4y/jE yTfQMd8wEgd8wh1QmNVxMB8GA1UdIwQYMBaAFAtj5jpfo7LjzLmTDo9sjOzCRYtF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNDNGNC8xN0FDMkE3MDQx OUMxMUU1ODM1RkQxODNDNEY5QUUwMi9DMlBtT2wtanN1UE11Wk1PajJ5TTdNSkZp MFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0MyUG1PbC1qc3VQTXVaTU9qMnlNN01KRmkwVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NDNGNC8xN0FDMkE3MDQxOUMxMUU1ODM1RkQxODNDNEY5QUUwMi9DMlBtT2wtanN1 UE11Wk1PajJ5TTdNSkZpMFUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCLJLN81x2+etx0pWV4S4eb+Fdo3OlxXUBiSwOkk0ICprqQBe9oPgzO hiDjMau96a/Ggk4NolC0mGw7s4JaldGHj615tfN5ODGp+CVRLpFjyKNVI8LJLdZL 5OGXeZd+hLNR3h57V2wHbqX6uDF33PN50gc0UA+AG0pEIwTcCNmszpyGsHDLkJO5 T/ga5yoUaweR2fkr/Fm/pJFPWA857BX69rp7bVTk6fI9uKQM8vNsCyXoYs8cH9St w7ZWjQ2z1UlK2erE4s5dbGUMQ3cOO2NpgTK3fwify8Rg68g8ob36/oURpB0rjwHj QSYzxiBqz91u5D11EQegLjnZVK6AxZpW -----END CERTIFICATE-----Generated at Sat May 31 16:33:03 2025 by rpki-client