$ rpki-client -vvf rpki.apnic.net/member_repository/A91BE056/003E1158D78B11EEA2EBD712C4F9AE02/fBlP7bilyMl2697IST3zw_CMyOI.mft File: fBlP7bilyMl2697IST3zw_CMyOI.mft (raw, json) Hash identifier: yzplbFu7P6o2XwLBo02LLWsI3xR/jsoilUxm0qg+cMo= Subject key identifier: 2B:93:8E:9B:0A:5E:7E:2A:A0:8F:35:F8:2E:4A:99:CC:94:F6:E3:3A Authority key identifier: 7C:19:4F:ED:B8:A5:C8:C9:76:EB:DE:C8:49:3D:F3:C3:F0:8C:C8:E2 Certificate issuer: /CN=A91BE056/serialNumber=7C194FEDB8A5C8C976EBDEC8493DF3C3F08CC8E2 Certificate serial: FA Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/fBlP7bilyMl2697IST3zw_CMyOI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BE056/003E1158D78B11EEA2EBD712C4F9AE02/fBlP7bilyMl2697IST3zw_CMyOI.mft Manifest number: F4 Signing time: Sat 31 May 2025 23:42:54 +0000 Manifest this update: Sat 31 May 2025 23:42:53 +0000 Manifest next update: Sat 07 Jun 2025 23:42:53 +0000 Files and hashes: 1: fBlP7bilyMl2697IST3zw_CMyOI.crl (hash: AEV3IbjlX4awmUu4wLU+hrqjoL8XM+kb5bJHogEPp5A=) 2: C7AAEA76637311EF97465324C4F9AE02.roa (hash: 7qAgqeHaZPQYvPPHuv1+My9lZgN4hj2uJJ26C3QxuHc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BE056/003E1158D78B11EEA2EBD712C4F9AE02/fBlP7bilyMl2697IST3zw_CMyOI.crl rsync://rpki.apnic.net/member_repository/A91BE056/003E1158D78B11EEA2EBD712C4F9AE02/fBlP7bilyMl2697IST3zw_CMyOI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/fBlP7bilyMl2697IST3zw_CMyOI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 23:42:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 250 (0xfa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BE056, serialNumber=7C194FEDB8A5C8C976EBDEC8493DF3C3F08CC8E2 Validity Not Before: May 31 23:42:53 2025 GMT Not After : Jun 7 23:42:53 2025 GMT Subject: CN=683b93fe-785e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:19:04:ef:09:48:31:9e:d4:82:22:4f:ec:07: a9:a2:54:c3:d2:35:52:5a:66:c0:ca:ea:7b:ef:7c: df:a8:fd:ba:91:84:78:0d:21:4f:92:1d:97:ad:ca: 52:4b:20:1d:65:7a:1a:70:98:4b:b1:6a:0d:5b:a8: ee:5b:49:91:96:ab:6e:d3:72:30:30:21:e1:b1:2c: cc:56:70:e5:ca:da:d1:59:a0:3f:c8:74:30:a7:c4: cc:16:8c:ed:24:e9:f5:d4:d7:3b:48:ee:e1:55:9b: 79:9d:4d:b8:ac:61:98:68:bf:88:3b:65:56:8a:48: 8f:a5:66:55:3a:6f:b7:58:15:43:a0:d5:28:9c:4b: 5e:c7:be:3a:8e:68:32:37:5f:56:2a:c0:5f:99:42: 94:60:c3:77:78:9e:73:38:aa:fd:15:0c:e6:76:2d: 2a:12:c9:39:43:16:cb:99:ee:94:75:c5:f3:d1:db: 43:74:ee:85:16:c3:a9:21:e7:f0:0e:d5:67:f1:bc: e7:48:e6:a4:f6:69:16:62:cf:0e:51:3b:01:4d:1e: 1b:1c:75:da:ee:cf:e7:e2:d8:71:86:9a:64:47:f8: 88:83:c1:0a:d2:ca:25:7d:d5:b8:82:f6:83:1b:da: 5a:d3:73:ee:a3:02:35:45:92:ea:3a:3d:fb:8e:d7: 26:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2B:93:8E:9B:0A:5E:7E:2A:A0:8F:35:F8:2E:4A:99:CC:94:F6:E3:3A X509v3 Authority Key Identifier: keyid:7C:19:4F:ED:B8:A5:C8:C9:76:EB:DE:C8:49:3D:F3:C3:F0:8C:C8:E2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BE056/003E1158D78B11EEA2EBD712C4F9AE02/fBlP7bilyMl2697IST3zw_CMyOI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/fBlP7bilyMl2697IST3zw_CMyOI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BE056/003E1158D78B11EEA2EBD712C4F9AE02/fBlP7bilyMl2697IST3zw_CMyOI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0f:1d:ba:99:b2:da:9f:34:c8:99:8b:63:f4:94:04:a1:e9:b0: e3:d9:e9:53:73:77:13:04:16:17:8b:99:40:cd:0e:1b:00:91: 57:d0:8c:e9:a7:3c:6b:e0:32:54:48:f5:f2:e1:ff:91:9c:80: e4:36:42:61:11:5a:3c:1b:bb:2a:f8:a3:66:24:1f:80:4c:c2: ae:bf:d3:9a:bf:4c:84:23:bf:ea:38:6e:a5:bf:5e:5c:77:8b: da:7c:aa:5a:40:87:be:3f:8a:46:85:9e:2a:07:50:0e:96:67: 63:0b:82:41:93:79:f4:7a:09:5c:dd:24:31:1f:57:cb:8f:50: 77:9a:e5:46:46:e5:3c:4b:8d:32:b3:52:84:16:9b:08:01:52: f4:a9:bc:67:19:17:d4:75:4e:1b:fe:54:0c:67:fa:9a:db:5a: 94:9b:bd:4e:91:0b:09:57:3c:b5:e1:c5:85:1c:42:20:59:32: 01:80:6e:21:5d:2e:56:24:62:c1:40:41:f3:72:2f:e6:17:18: 28:1a:82:06:87:bd:45:82:d3:2f:1e:45:c5:ba:c9:e3:46:ff: d7:e4:6e:9a:59:00:ad:7f:75:cd:cb:fd:9b:79:ad:1e:d9:7b: 83:85:87:2e:b4:69:ba:aa:c7:3a:00:0a:6c:55:21:93:be:49: db:e2:76:35 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAPowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkUwNTYxMTAvBgNVBAUTKDdDMTk0RkVEQjhBNUM4Qzk3NkVCREVDODQ5M0RGM0Mz RjA4Q0M4RTIwHhcNMjUwNTMxMjM0MjUzWhcNMjUwNjA3MjM0MjUzWjAYMRYwFAYD VQQDEw02ODNiOTNmZS03ODVlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0xkE7wlIMZ7UgiJP7AepolTD0jVSWmbAyup773zfqP26kYR4DSFPkh2XrcpS SyAdZXoacJhLsWoNW6juW0mRlqtu03IwMCHhsSzMVnDlytrRWaA/yHQwp8TMFozt JOn11Nc7SO7hVZt5nU24rGGYaL+IO2VWikiPpWZVOm+3WBVDoNUonEtex746jmgy N19WKsBfmUKUYMN3eJ5zOKr9FQzmdi0qEsk5QxbLme6UdcXz0dtDdO6FFsOpIefw DtVn8bznSOak9mkWYs8OUTsBTR4bHHXa7s/n4thxhppkR/iIg8EK0solfdW4gvaD G9pa03PuowI1RZLqOj37jtcmiwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCuTjpsK Xn4qoI81+C5KmcyU9uM6MB8GA1UdIwQYMBaAFHwZT+24pcjJduveyEk988PwjMji MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCRTA1Ni8wMDNFMTE1OEQ3 OEIxMUVFQTJFQkQ3MTJDNEY5QUUwMi9mQmxQN2JpbHlNbDI2OTdJU1QzendfQ015 T0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2ZCbFA3YmlseU1sMjY5N0lTVDN6d19DTXlPSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC RTA1Ni8wMDNFMTE1OEQ3OEIxMUVFQTJFQkQ3MTJDNEY5QUUwMi9mQmxQN2JpbHlN bDI2OTdJU1QzendfQ015T0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAPHbqZstqfNMiZi2P0lASh6bDj2elTc3cTBBYXi5lAzQ4bAJFX0Izp pzxr4DJUSPXy4f+RnIDkNkJhEVo8G7sq+KNmJB+ATMKuv9Oav0yEI7/qOG6lv15c d4vafKpaQIe+P4pGhZ4qB1AOlmdjC4JBk3n0eglc3SQxH1fLj1B3muVGRuU8S40y s1KEFpsIAVL0qbxnGRfUdU4b/lQMZ/qa21qUm71OkQsJVzy14cWFHEIgWTIBgG4h XS5WJGLBQEHzci/mFxgoGoIGh71FgtMvHkXFusnjRv/X5G6aWQCtf3XNy/2bea0e 2XuDhYcutGm6qsc6AApsVSGTvknb4nY1 -----END CERTIFICATE-----Generated at Mon Jun 2 20:21:27 2025 by rpki-client