$ rpki-client -vvf rpki.apnic.net/member_repository/A91B777C/62D03E8CB2DA11EB8B384A60C4F9AE02/sJELB8hrD_owClKsfDH8tSwFMtc.mft File: sJELB8hrD_owClKsfDH8tSwFMtc.mft (raw, json) Hash identifier: 9qUN4NEBVwz3ptJJG9LB2OMrEuaDP6xjHaLFo5AcC70= Subject key identifier: 91:E2:4F:83:DC:A2:5D:2B:3D:36:25:3C:58:BA:33:93:93:78:40:8E Authority key identifier: B0:91:0B:07:C8:6B:0F:FA:30:0A:52:AC:7C:31:FC:B5:2C:05:32:D7 Certificate issuer: /CN=A91B777C/serialNumber=B0910B07C86B0FFA300A52AC7C31FCB52C0532D7 Certificate serial: 05F1 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/sJELB8hrD_owClKsfDH8tSwFMtc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B777C/62D03E8CB2DA11EB8B384A60C4F9AE02/sJELB8hrD_owClKsfDH8tSwFMtc.mft Manifest number: 05EB Signing time: Sat 31 May 2025 23:06:46 +0000 Manifest this update: Sat 31 May 2025 23:06:46 +0000 Manifest next update: Sat 07 Jun 2025 23:06:46 +0000 Files and hashes: 1: sJELB8hrD_owClKsfDH8tSwFMtc.crl (hash: ozmubrhkS7sH3reyZa3Ks0JWfj/huCMfWOqyzdihAp4=) 2: 9095FC2CB2E811EBADBB3753C4F9AE02.roa (hash: h5dvfa3FRBYPtcjjdPkOqAVQA/qeLJ42SQi+kECAh1M=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B777C/62D03E8CB2DA11EB8B384A60C4F9AE02/sJELB8hrD_owClKsfDH8tSwFMtc.crl rsync://rpki.apnic.net/member_repository/A91B777C/62D03E8CB2DA11EB8B384A60C4F9AE02/sJELB8hrD_owClKsfDH8tSwFMtc.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/sJELB8hrD_owClKsfDH8tSwFMtc.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 23:06:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1521 (0x5f1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B777C, serialNumber=B0910B07C86B0FFA300A52AC7C31FCB52C0532D7 Validity Not Before: May 31 23:06:46 2025 GMT Not After : Jun 7 23:06:46 2025 GMT Subject: CN=683b8b86-0345 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:c6:fc:85:e1:a6:59:89:be:f8:7b:54:2b:e2: 5a:a4:e8:84:02:65:71:2f:2b:31:ab:da:ed:3a:92: 29:60:3e:cf:c2:1b:b2:71:d7:19:ac:42:9d:81:63: 01:5d:43:08:33:35:12:da:0f:6a:7b:a4:df:d6:f7: 0e:94:f8:b4:0c:6d:4a:4c:97:f0:8f:1b:4e:db:88: 7d:ab:05:d3:80:34:d7:ea:36:e0:03:f3:6e:d7:af: cf:bb:8c:09:ff:e1:ec:19:d7:3d:9f:ad:ea:ca:b6: e6:6f:a6:53:33:43:85:cd:f7:18:b4:88:b0:62:ef: b6:c7:61:6f:1a:00:fe:28:79:ab:8b:a4:d1:4d:c2: 6b:a2:d0:c8:39:b9:c8:c1:69:70:4b:ac:4f:82:f9: b8:a8:b4:bd:92:e4:f7:1a:d8:c7:4e:84:36:e1:e4: 29:38:05:3b:7d:aa:58:c5:42:97:1c:9d:e4:1a:b7: 4d:4a:49:19:7f:b2:c5:7f:d7:c0:2c:25:90:f9:4f: df:1d:bd:86:20:82:2b:9e:f0:a7:38:ad:b7:d7:6a: 8d:bc:3c:fd:68:c8:bf:ca:a9:54:d3:21:13:f2:ea: 33:78:d5:33:cb:78:2e:aa:f9:af:e0:08:ce:13:36: 5a:36:05:d1:2b:04:36:57:18:49:23:c1:b1:bc:1c: 5e:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 91:E2:4F:83:DC:A2:5D:2B:3D:36:25:3C:58:BA:33:93:93:78:40:8E X509v3 Authority Key Identifier: keyid:B0:91:0B:07:C8:6B:0F:FA:30:0A:52:AC:7C:31:FC:B5:2C:05:32:D7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B777C/62D03E8CB2DA11EB8B384A60C4F9AE02/sJELB8hrD_owClKsfDH8tSwFMtc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/sJELB8hrD_owClKsfDH8tSwFMtc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B777C/62D03E8CB2DA11EB8B384A60C4F9AE02/sJELB8hrD_owClKsfDH8tSwFMtc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 45:3e:87:13:c9:b3:8f:22:dc:88:b4:8a:23:b6:b3:7c:da:d0: a1:dd:71:3b:a7:0c:ff:db:6b:a8:e1:fd:71:5e:33:bc:0b:16: 31:af:78:30:29:19:9c:47:d6:0c:b4:c8:68:cc:9c:4f:53:d4: 6c:bc:f9:55:71:8c:6d:26:f5:a3:ec:34:e1:4f:fc:fc:47:85: a8:db:02:a9:11:43:dd:27:94:0f:da:7c:21:3d:6d:0f:e8:54: 16:69:d1:c2:d5:40:ad:bd:df:6b:a4:74:82:33:1a:55:0d:78: df:f1:cc:f5:63:00:66:a8:95:56:09:24:55:7d:ee:4c:de:5e: 89:26:9b:cd:d6:55:3b:7e:ad:3b:21:c4:cf:41:bb:41:19:5e: fa:98:a1:80:85:7b:56:87:f9:99:51:19:d2:63:d4:8a:b3:a3: 85:ca:d6:ef:f1:6d:7e:8d:2a:ef:4e:a4:59:f5:43:bc:e3:a1: 25:2b:25:2e:64:e7:e1:d6:c6:de:f0:f9:e1:44:16:0c:8f:35: e5:9e:2a:7d:af:b4:39:f5:ff:c3:ae:a9:3b:a1:b7:1a:28:66: a9:ca:a0:20:84:ac:55:a6:28:8e:bb:b7:c2:3f:b5:bd:d7:3d: b5:24:15:a9:c3:a3:81:ed:2e:38:ea:42:70:ea:72:7d:01:c8: e1:fc:72:91 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBfEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Qjc3N0MxMTAvBgNVBAUTKEIwOTEwQjA3Qzg2QjBGRkEzMDBBNTJBQzdDMzFGQ0I1 MkMwNTMyRDcwHhcNMjUwNTMxMjMwNjQ2WhcNMjUwNjA3MjMwNjQ2WjAYMRYwFAYD VQQDEw02ODNiOGI4Ni0wMzQ1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAm8b8heGmWYm++HtUK+JapOiEAmVxLysxq9rtOpIpYD7PwhuycdcZrEKdgWMB XUMIMzUS2g9qe6Tf1vcOlPi0DG1KTJfwjxtO24h9qwXTgDTX6jbgA/Nu16/Pu4wJ /+HsGdc9n63qyrbmb6ZTM0OFzfcYtIiwYu+2x2FvGgD+KHmri6TRTcJrotDIObnI wWlwS6xPgvm4qLS9kuT3GtjHToQ24eQpOAU7fapYxUKXHJ3kGrdNSkkZf7LFf9fA LCWQ+U/fHb2GIIIrnvCnOK2312qNvDz9aMi/yqlU0yET8uozeNUzy3guqvmv4AjO EzZaNgXRKwQ2VxhJI8GxvBxeNwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJHiT4Pc ol0rPTYlPFi6M5OTeECOMB8GA1UdIwQYMBaAFLCRCwfIaw/6MApSrHwx/LUsBTLX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNzc3Qy82MkQwM0U4Q0Iy REExMUVCOEIzODRBNjBDNEY5QUUwMi9zSkVMQjhockRfb3dDbEtzZkRIOHRTd0ZN dGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3NKRUxCOGhyRF9vd0NsS3NmREg4dFN3Rk10Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC Nzc3Qy82MkQwM0U4Q0IyREExMUVCOEIzODRBNjBDNEY5QUUwMi9zSkVMQjhockRf b3dDbEtzZkRIOHRTd0ZNdGMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBFPocTybOPItyItIojtrN82tCh3XE7pwz/22uo4f1xXjO8CxYxr3gw KRmcR9YMtMhozJxPU9RsvPlVcYxtJvWj7DThT/z8R4Wo2wKpEUPdJ5QP2nwhPW0P 6FQWadHC1UCtvd9rpHSCMxpVDXjf8cz1YwBmqJVWCSRVfe5M3l6JJpvN1lU7fq07 IcTPQbtBGV76mKGAhXtWh/mZURnSY9SKs6OFytbv8W1+jSrvTqRZ9UO846ElKyUu ZOfh1sbe8PnhRBYMjzXlnip9r7Q59f/Drqk7obcaKGapyqAghKxVpiiOu7fCP7W9 1z21JBWpw6OB7S446kJw6nJ9Acjh/HKR -----END CERTIFICATE-----Generated at Mon Jun 2 19:55:26 2025 by rpki-client