$ rpki-client -vvf rpki.apnic.net/member_repository/A91B53A5/2580A8D64B6511E7B469C07AC4F9AE02/2fwVW2_aEGxpmlabEgOEkJWKoy8.mft File: 2fwVW2_aEGxpmlabEgOEkJWKoy8.mft (raw, json) Hash identifier: lPJKU0xMGzLvtYfPS7qNRpwMai3pLCgTFbb8vrdyd+8= Subject key identifier: A9:E1:F6:9E:73:DE:FF:E3:B2:BD:0F:7A:C4:AE:EF:27:01:4F:02:9B Authority key identifier: D9:FC:15:5B:6F:DA:10:6C:69:9A:56:9B:12:03:84:90:95:8A:A3:2F Certificate issuer: /CN=A91B53A5/serialNumber=D9FC155B6FDA106C699A569B12038490958AA32F Certificate serial: 1A4B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2fwVW2_aEGxpmlabEgOEkJWKoy8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B53A5/2580A8D64B6511E7B469C07AC4F9AE02/2fwVW2_aEGxpmlabEgOEkJWKoy8.mft Manifest number: 1A32 Signing time: Fri 30 May 2025 16:32:26 +0000 Manifest this update: Fri 30 May 2025 16:32:26 +0000 Manifest next update: Fri 06 Jun 2025 16:32:26 +0000 Files and hashes: 1: 2fwVW2_aEGxpmlabEgOEkJWKoy8.crl (hash: qf5w+vRehkBPatkXI/iKOBCRWqknGx9lwY+f4YgBR2Q=) 2: C443D86A55A311E7896BED09C4F9AE02.roa (hash: RAjaQS5QbqXtrUMbAxpVJSZQfE94i9hS979yM5B3+jI=) 3: A9286C0E6D4411E7AF539270C4F9AE02.roa (hash: CvwZ78Bx6JW2ZSeXfa9JVVvETeg0+qlUbSWAQnUGr1k=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B53A5/2580A8D64B6511E7B469C07AC4F9AE02/2fwVW2_aEGxpmlabEgOEkJWKoy8.crl rsync://rpki.apnic.net/member_repository/A91B53A5/2580A8D64B6511E7B469C07AC4F9AE02/2fwVW2_aEGxpmlabEgOEkJWKoy8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2fwVW2_aEGxpmlabEgOEkJWKoy8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 16:32:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6731 (0x1a4b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B53A5, serialNumber=D9FC155B6FDA106C699A569B12038490958AA32F Validity Not Before: May 30 16:32:26 2025 GMT Not After : Jun 6 16:32:26 2025 GMT Subject: CN=6839dd9a-6ad7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:92:ad:eb:a1:d6:0e:15:c7:61:e1:a1:2b:15: b4:d3:61:0c:34:ff:ca:50:bb:46:6f:75:f5:30:4a: d3:b6:a8:2d:03:17:97:72:fa:0c:9a:c8:5e:0b:58: 3b:81:af:32:84:0e:f9:22:97:8e:ee:9e:e1:b8:24: d2:6b:9a:6c:f7:02:aa:37:3a:c3:71:11:86:e3:99: 47:2a:92:6c:cd:d9:8e:e4:e3:1b:7c:44:03:df:de: 14:3f:b3:9b:6a:a7:81:39:b1:2d:f7:2c:89:3f:51: 37:b6:6d:87:08:27:fc:72:da:42:35:21:cf:d3:e5: a2:10:35:c2:64:87:87:4a:d3:ca:34:f9:a4:c2:d3: 1f:5c:65:2f:6f:fd:25:17:12:b9:b0:8f:f3:77:d8: e9:c4:89:9d:50:98:2a:31:81:2b:64:9b:dc:33:0e: 53:d2:d2:48:61:e1:45:de:0f:7d:b6:af:ff:e6:00: eb:3b:4a:65:63:91:91:b1:a6:4c:70:2f:df:e5:7e: 92:81:10:b0:0a:a2:93:66:14:fc:35:ec:66:bc:24: 07:ee:ac:f9:9d:82:a3:b5:3f:04:73:75:b7:8a:13: 6b:88:a1:1a:92:7b:53:9b:d1:14:34:bf:2f:f3:81: 8a:8b:47:3a:8d:3a:20:69:fb:b4:76:b2:47:13:9d: 0a:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A9:E1:F6:9E:73:DE:FF:E3:B2:BD:0F:7A:C4:AE:EF:27:01:4F:02:9B X509v3 Authority Key Identifier: keyid:D9:FC:15:5B:6F:DA:10:6C:69:9A:56:9B:12:03:84:90:95:8A:A3:2F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B53A5/2580A8D64B6511E7B469C07AC4F9AE02/2fwVW2_aEGxpmlabEgOEkJWKoy8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2fwVW2_aEGxpmlabEgOEkJWKoy8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B53A5/2580A8D64B6511E7B469C07AC4F9AE02/2fwVW2_aEGxpmlabEgOEkJWKoy8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 65:88:ac:44:d8:50:6d:6f:93:dc:ee:73:1e:e9:25:ce:55:48: 4f:30:22:15:93:d2:96:40:53:02:e4:ff:2d:29:b6:f3:53:73: 7c:4a:ec:61:00:8c:b8:1b:eb:6c:64:6a:d9:41:d9:e2:2d:5f: 5f:49:f1:bd:59:a9:87:6b:f2:e0:1a:3f:84:1e:b1:6b:b0:c3: e2:e8:7b:4a:3a:53:b4:0d:f4:e8:a3:75:50:b4:ce:81:d3:97: c8:1a:a2:b6:7a:71:96:f9:17:6e:81:79:77:85:a9:ac:fa:6a: 99:f1:cf:72:90:6d:5c:7f:6b:29:c4:2d:97:db:7e:66:00:b4: 4e:ef:f1:6d:1e:14:a2:f3:a1:d5:e3:f0:ee:da:2e:e1:e5:38: 0d:a0:d1:31:cd:52:04:ca:ab:5e:25:0b:9c:83:cc:61:b5:38: 33:ef:25:83:80:4c:71:86:99:8b:29:a8:bc:9a:1d:cd:f2:51: 60:67:7d:08:8d:34:6e:ad:f8:ee:58:86:83:14:55:63:be:7c: 5e:a9:98:c5:0e:09:b7:8c:6b:6a:97:1e:84:13:67:95:ab:33: 04:13:5e:c7:74:26:2a:85:29:09:59:8b:d1:1d:df:f4:e5:4f: 25:e3:4d:97:7f:84:84:c4:7d:70:75:dd:a0:ec:86:7d:a7:d0: 9f:09:50:76 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICGkswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjUzQTUxMTAvBgNVBAUTKEQ5RkMxNTVCNkZEQTEwNkM2OTlBNTY5QjEyMDM4NDkw OTU4QUEzMkYwHhcNMjUwNTMwMTYzMjI2WhcNMjUwNjA2MTYzMjI2WjAYMRYwFAYD VQQDEw02ODM5ZGQ5YS02YWQ3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt5Kt66HWDhXHYeGhKxW002EMNP/KULtGb3X1MErTtqgtAxeXcvoMmsheC1g7 ga8yhA75IpeO7p7huCTSa5ps9wKqNzrDcRGG45lHKpJszdmO5OMbfEQD394UP7Ob aqeBObEt9yyJP1E3tm2HCCf8ctpCNSHP0+WiEDXCZIeHStPKNPmkwtMfXGUvb/0l FxK5sI/zd9jpxImdUJgqMYErZJvcMw5T0tJIYeFF3g99tq//5gDrO0plY5GRsaZM cC/f5X6SgRCwCqKTZhT8NexmvCQH7qz5nYKjtT8Ec3W3ihNriKEakntTm9EUNL8v 84GKi0c6jTogafu0drJHE50KkwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKnh9p5z 3v/jsr0PesSu7ycBTwKbMB8GA1UdIwQYMBaAFNn8FVtv2hBsaZpWmxIDhJCViqMv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNTNBNS8yNTgwQThENjRC NjUxMUU3QjQ2OUMwN0FDNEY5QUUwMi8yZndWVzJfYUVHeHBtbGFiRWdPRWtKV0tv eTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJmd1ZXMl9hRUd4cG1sYWJFZ09Fa0pXS295OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NTNBNS8yNTgwQThENjRCNjUxMUU3QjQ2OUMwN0FDNEY5QUUwMi8yZndWVzJfYUVH eHBtbGFiRWdPRWtKV0tveTgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBliKxE2FBtb5Pc7nMe6SXOVUhPMCIVk9KWQFMC5P8tKbbzU3N8Suxh AIy4G+tsZGrZQdniLV9fSfG9WamHa/LgGj+EHrFrsMPi6HtKOlO0DfToo3VQtM6B 05fIGqK2enGW+RdugXl3hams+mqZ8c9ykG1cf2spxC2X235mALRO7/FtHhSi86HV 4/Du2i7h5TgNoNExzVIEyqteJQucg8xhtTgz7yWDgExxhpmLKai8mh3N8lFgZ30I jTRurfjuWIaDFFVjvnxeqZjFDgm3jGtqlx6EE2eVqzMEE17HdCYqhSkJWYvRHd/0 5U8l402Xf4SExH1wdd2g7IZ9p9CfCVB2 -----END CERTIFICATE-----Generated at Sat May 31 17:02:24 2025 by rpki-client