$ rpki-client -vvf rpki.apnic.net/member_repository/A91C0E5D/0D0FFBDC91D711EB86FA3426C4F9AE02/Ar6z5iH6umNCHtP4hPonC80zHXc.mft File: Ar6z5iH6umNCHtP4hPonC80zHXc.mft (raw, json) Hash identifier: VK6B5OfrrGkdH0PoiXtKC6oLuD1aRXvE1USPoQfqQdM= Subject key identifier: 03:D7:FB:5F:E1:1B:6D:9E:A4:70:5A:3B:1F:B7:AB:4D:A7:8B:6E:77 Authority key identifier: 02:BE:B3:E6:21:FA:BA:63:42:1E:D3:F8:84:FA:27:0B:CD:33:1D:77 Certificate issuer: /CN=A91C0E5D/serialNumber=02BEB3E621FABA63421ED3F884FA270BCD331D77 Certificate serial: 064A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ar6z5iH6umNCHtP4hPonC80zHXc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C0E5D/0D0FFBDC91D711EB86FA3426C4F9AE02/Ar6z5iH6umNCHtP4hPonC80zHXc.mft Manifest number: 0640 Signing time: Fri 30 May 2025 22:52:07 +0000 Manifest this update: Fri 30 May 2025 22:52:06 +0000 Manifest next update: Fri 06 Jun 2025 22:52:06 +0000 Files and hashes: 1: Ar6z5iH6umNCHtP4hPonC80zHXc.crl (hash: iEnA+d4OmXoE6nbtW6wt3QdKNXGKwk8EZa+vXnxq6Go=) 2: C34EB9A6C28311EB9370913FC4F9AE02.roa (hash: Al61RmIvimM1KwvJGrf39fcF1DIlgNVctNk1tZ67VR0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C0E5D/0D0FFBDC91D711EB86FA3426C4F9AE02/Ar6z5iH6umNCHtP4hPonC80zHXc.crl rsync://rpki.apnic.net/member_repository/A91C0E5D/0D0FFBDC91D711EB86FA3426C4F9AE02/Ar6z5iH6umNCHtP4hPonC80zHXc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ar6z5iH6umNCHtP4hPonC80zHXc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 22:52:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1610 (0x64a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C0E5D, serialNumber=02BEB3E621FABA63421ED3F884FA270BCD331D77 Validity Not Before: May 30 22:52:06 2025 GMT Not After : Jun 6 22:52:06 2025 GMT Subject: CN=683a3697-8f1f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:0b:0c:01:a0:3c:91:cb:26:6b:12:d1:9a:55: 70:87:9e:d5:7b:b4:db:b4:d9:92:af:46:8e:ca:18: 17:cc:86:ff:a7:86:ce:77:48:36:32:00:af:ae:bd: 5b:75:15:fb:aa:11:68:0b:b4:3d:a1:9b:03:e5:ca: ac:7d:66:9f:51:58:ef:dc:45:02:e8:e4:30:15:57: 43:f4:20:ec:33:fc:b4:f2:2b:81:fc:86:8f:b9:e3: 11:cd:b5:e4:4c:a6:10:95:87:d0:05:80:f3:06:e2: 11:9c:19:c4:24:3d:04:7a:ba:e8:8a:96:cc:83:b7: ca:b1:b2:ee:ec:54:70:fe:cc:68:ae:4c:61:75:32: a0:16:e3:50:a8:16:a7:72:d9:8a:11:98:98:a3:12: 87:d8:99:1c:c9:e9:1e:a9:ba:12:3f:c4:c6:1f:84: 94:29:a1:1e:9c:d1:f4:4e:13:11:46:6d:2a:25:0d: 71:3c:99:9b:bd:0f:ec:ac:eb:da:64:01:26:02:bf: 9d:68:e1:1b:df:78:1b:7b:9c:f4:da:de:e3:be:0b: e8:fe:21:12:2f:26:c4:3f:9b:04:f7:ae:75:73:f5: 8f:6c:4e:2b:15:2f:a2:84:d6:5c:e7:2e:f0:1a:c8: f9:0b:96:2f:1e:4d:32:ed:f2:4d:16:23:1f:75:fb: 38:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 03:D7:FB:5F:E1:1B:6D:9E:A4:70:5A:3B:1F:B7:AB:4D:A7:8B:6E:77 X509v3 Authority Key Identifier: keyid:02:BE:B3:E6:21:FA:BA:63:42:1E:D3:F8:84:FA:27:0B:CD:33:1D:77 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C0E5D/0D0FFBDC91D711EB86FA3426C4F9AE02/Ar6z5iH6umNCHtP4hPonC80zHXc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ar6z5iH6umNCHtP4hPonC80zHXc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C0E5D/0D0FFBDC91D711EB86FA3426C4F9AE02/Ar6z5iH6umNCHtP4hPonC80zHXc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 23:b1:4a:0a:8f:82:c5:4d:bf:3a:ad:70:c7:61:f8:19:00:ed: a1:8a:b2:78:91:56:25:2f:ee:37:a8:ea:8a:c7:37:62:ea:26: 1e:18:c3:93:2b:f6:1f:19:13:5d:55:fe:4f:ae:91:61:4c:50: 64:de:45:bc:30:fc:86:0d:f8:61:6e:69:ad:53:37:0a:14:89: e6:39:a8:7c:05:0c:bb:d6:ba:f3:e6:8a:84:19:f7:3b:29:b0: dc:85:c4:7c:97:75:c0:82:a3:da:68:bc:7f:cb:2a:f8:a0:0b: de:2e:98:c8:8e:cc:c6:4c:36:df:f8:fc:82:a2:d2:91:0e:5c: 9d:35:f4:15:10:dc:fb:cb:c9:c4:ec:9e:c9:2e:80:ea:53:b7: 3e:1a:4e:a9:b9:93:c4:c1:e5:86:35:25:18:de:d6:da:35:4f: ab:08:72:d2:2c:2a:8d:b3:07:cc:f5:d3:e6:f0:da:b0:d8:82: 0d:e4:02:3b:ce:cf:91:d6:93:9c:fe:d5:45:9c:22:af:ba:ad: fa:83:c5:d0:f6:98:fb:89:83:26:16:82:de:0b:a0:f5:42:04: 7d:53:0d:84:f7:de:56:23:8a:e1:ea:2c:5e:73:7e:75:ab:e7: 5e:f0:da:57:fa:46:02:e8:8f:a7:84:be:e3:e9:bb:96:77:60: 65:14:5e:fa -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBkowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzBFNUQxMTAvBgNVBAUTKDAyQkVCM0U2MjFGQUJBNjM0MjFFRDNGODg0RkEyNzBC Q0QzMzFENzcwHhcNMjUwNTMwMjI1MjA2WhcNMjUwNjA2MjI1MjA2WjAYMRYwFAYD VQQDEw02ODNhMzY5Ny04ZjFmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAygsMAaA8kcsmaxLRmlVwh57Ve7TbtNmSr0aOyhgXzIb/p4bOd0g2MgCvrr1b dRX7qhFoC7Q9oZsD5cqsfWafUVjv3EUC6OQwFVdD9CDsM/y08iuB/IaPueMRzbXk TKYQlYfQBYDzBuIRnBnEJD0EerroipbMg7fKsbLu7FRw/sxorkxhdTKgFuNQqBan ctmKEZiYoxKH2JkcyekeqboSP8TGH4SUKaEenNH0ThMRRm0qJQ1xPJmbvQ/srOva ZAEmAr+daOEb33gbe5z02t7jvgvo/iESLybEP5sE9651c/WPbE4rFS+ihNZc5y7w Gsj5C5YvHk0y7fJNFiMfdfs4mwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAPX+1/h G22epHBaOx+3q02ni253MB8GA1UdIwQYMBaAFAK+s+Yh+rpjQh7T+IT6JwvNMx13 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMEU1RC8wRDBGRkJEQzkx RDcxMUVCODZGQTM0MjZDNEY5QUUwMi9BcjZ6NWlINnVtTkNIdFA0aFBvbkM4MHpI WGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0FyNno1aUg2dW1OQ0h0UDRoUG9uQzgwekhYYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MEU1RC8wRDBGRkJEQzkxRDcxMUVCODZGQTM0MjZDNEY5QUUwMi9BcjZ6NWlINnVt TkNIdFA0aFBvbkM4MHpIWGMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAjsUoKj4LFTb86rXDHYfgZAO2hirJ4kVYlL+43qOqKxzdi6iYeGMOT K/YfGRNdVf5PrpFhTFBk3kW8MPyGDfhhbmmtUzcKFInmOah8BQy71rrz5oqEGfc7 KbDchcR8l3XAgqPaaLx/yyr4oAveLpjIjszGTDbf+PyCotKRDlydNfQVENz7y8nE 7J7JLoDqU7c+Gk6puZPEweWGNSUY3tbaNU+rCHLSLCqNswfM9dPm8Nqw2IIN5AI7 zs+R1pOc/tVFnCKvuq36g8XQ9pj7iYMmFoLeC6D1QgR9Uw2E995WI4rh6ixec351 q+de8NpX+kYC6I+nhL7j6buWd2BlFF76 -----END CERTIFICATE-----Generated at Sat May 31 16:38:09 2025 by rpki-client