$ rpki-client -vvf rpki.apnic.net/member_repository/A91C2B93/3AC874EE014311EF825A6465C4F9AE02/2dZffzYJDEAbzyDUvIDEPw3Fkz0.mft File: 2dZffzYJDEAbzyDUvIDEPw3Fkz0.mft (raw, json) Hash identifier: 17TehdgkHb4jUEGEW/CL7zWz+Lu3r/Qcq9ehoPlrK4Y= Subject key identifier: CB:F2:8E:79:A5:B6:D3:99:71:A8:3C:73:2E:33:2F:01:99:27:EC:74 Authority key identifier: D9:D6:5F:7F:36:09:0C:40:1B:CF:20:D4:BC:80:C4:3F:0D:C5:93:3D Certificate issuer: /CN=A91C2B93/serialNumber=D9D65F7F36090C401BCF20D4BC80C43F0DC5933D Certificate serial: D6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2dZffzYJDEAbzyDUvIDEPw3Fkz0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C2B93/3AC874EE014311EF825A6465C4F9AE02/2dZffzYJDEAbzyDUvIDEPw3Fkz0.mft Manifest number: D0 Signing time: Sat 31 May 2025 05:16:43 +0000 Manifest this update: Sat 31 May 2025 05:16:43 +0000 Manifest next update: Sat 07 Jun 2025 05:16:43 +0000 Files and hashes: 1: 2dZffzYJDEAbzyDUvIDEPw3Fkz0.crl (hash: iZp/RUGnCtODzjts2JUR/ZKEewdWG1hWQDEzdFtOI28=) 2: B00A68E6014A11EFA8F03B5BC4F9AE02.roa (hash: F6IB2oLxhpfXXQwj/Kl3IJNncyOBKEOTP7G3C5XwQrk=) 3: E2037F8C019911EFAFFEEC5DC4F9AE02.roa (hash: yyKQJp3Cor943Y25Ya+6ME8Xl4xDZuaYL1jQZ9UiIZI=) 4: B0BE3042014A11EFA8F03B5BC4F9AE02.roa (hash: kGlkPBXGhK2HbK8wICTx12rG9bb9NpN/Iy7FI3DGEGY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C2B93/3AC874EE014311EF825A6465C4F9AE02/2dZffzYJDEAbzyDUvIDEPw3Fkz0.crl rsync://rpki.apnic.net/member_repository/A91C2B93/3AC874EE014311EF825A6465C4F9AE02/2dZffzYJDEAbzyDUvIDEPw3Fkz0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2dZffzYJDEAbzyDUvIDEPw3Fkz0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 05:16:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 214 (0xd6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C2B93, serialNumber=D9D65F7F36090C401BCF20D4BC80C43F0DC5933D Validity Not Before: May 31 05:16:43 2025 GMT Not After : Jun 7 05:16:43 2025 GMT Subject: CN=683a90bb-9c35 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:2c:ad:32:49:3f:65:8c:56:42:66:4f:8e:4f: 82:ab:0f:21:78:31:fa:01:0d:c4:d1:e0:8b:b9:2f: 98:a7:42:99:b2:d9:4d:1f:5d:4e:d5:f0:1b:a2:74: ce:7a:1c:17:f5:7a:42:ba:36:b7:b8:f1:f5:9f:d0: 7a:14:62:59:15:37:4d:11:7c:61:eb:e6:b4:51:45: 3c:81:aa:3e:d4:a7:90:3a:b7:03:0a:d6:ac:0e:10: b7:97:54:5c:7e:c1:81:b8:a3:73:c8:c2:b5:53:6c: 2c:4f:4f:a9:c0:c4:b9:95:0a:f8:ae:a3:13:fa:80: b0:a8:50:88:54:f2:c7:9b:78:9d:0f:db:f4:23:79: c1:f0:8c:db:96:61:4a:ca:80:2b:22:cc:9d:8b:7d: c0:1a:6f:55:8c:89:5f:b2:3b:8c:ff:a9:7a:54:26: cf:a0:b5:6c:9d:23:fd:cc:eb:67:1a:17:8a:3b:60: 86:a6:3a:79:6d:88:61:11:36:32:09:e7:c3:06:ba: ef:f4:43:b9:50:23:66:ac:42:29:f7:16:ce:63:c0: f7:64:3f:bb:c6:41:4a:52:c4:11:b8:78:b1:72:76: 35:f8:1d:4c:e8:62:3e:5c:7b:86:c7:19:08:11:1d: 0c:6a:ab:0a:35:4e:d5:70:ce:71:6f:36:e7:2f:00: f8:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CB:F2:8E:79:A5:B6:D3:99:71:A8:3C:73:2E:33:2F:01:99:27:EC:74 X509v3 Authority Key Identifier: keyid:D9:D6:5F:7F:36:09:0C:40:1B:CF:20:D4:BC:80:C4:3F:0D:C5:93:3D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C2B93/3AC874EE014311EF825A6465C4F9AE02/2dZffzYJDEAbzyDUvIDEPw3Fkz0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2dZffzYJDEAbzyDUvIDEPw3Fkz0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C2B93/3AC874EE014311EF825A6465C4F9AE02/2dZffzYJDEAbzyDUvIDEPw3Fkz0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3d:ca:ff:8c:eb:e6:6c:04:e3:8b:d3:32:1b:eb:a1:62:44:7b: aa:4f:38:3c:4d:6a:b1:79:c4:3d:93:be:fb:bf:35:f0:dd:da: 29:9e:d8:5c:08:2b:dd:04:15:2b:f4:36:ed:34:ba:e7:52:08: 07:66:72:84:56:05:26:6a:32:3c:ec:7b:dc:98:42:29:85:1b: e5:52:1c:93:1f:96:54:6b:51:89:85:2f:1c:fe:f5:6a:6c:55: f2:dc:2b:03:48:77:65:c5:8f:5c:42:bf:68:a0:c7:f3:aa:1f: 79:c0:88:9c:a0:b6:fc:97:fa:4e:d4:3f:16:1f:51:c4:5b:f3: 24:37:67:dc:ba:f6:c9:31:3a:e9:bb:85:4b:47:c1:bc:18:fd: a9:e6:51:f3:b4:b0:4d:b9:d2:da:66:e7:90:24:9f:81:5e:aa: 32:1e:37:39:b8:1d:d8:39:9f:4a:8c:82:06:b3:7f:23:a9:b0: bc:05:df:ee:64:18:ad:07:48:b9:03:53:9a:36:12:f5:63:dd: a2:af:0c:20:b7:6c:39:24:a8:b1:90:70:fb:97:32:05:85:10: c8:52:7c:21:6e:81:5b:17:89:8b:ee:36:a6:e2:0e:c1:57:88: fe:45:1e:f4:49:37:c8:ec:73:f7:25:80:28:80:6e:bf:f7:97: fa:63:1c:2f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICANYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzJCOTMxMTAvBgNVBAUTKEQ5RDY1RjdGMzYwOTBDNDAxQkNGMjBENEJDODBDNDNG MERDNTkzM0QwHhcNMjUwNTMxMDUxNjQzWhcNMjUwNjA3MDUxNjQzWjAYMRYwFAYD VQQDEw02ODNhOTBiYi05YzM1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAziytMkk/ZYxWQmZPjk+Cqw8heDH6AQ3E0eCLuS+Yp0KZstlNH11O1fAbonTO ehwX9XpCuja3uPH1n9B6FGJZFTdNEXxh6+a0UUU8gao+1KeQOrcDCtasDhC3l1Rc fsGBuKNzyMK1U2wsT0+pwMS5lQr4rqMT+oCwqFCIVPLHm3idD9v0I3nB8IzblmFK yoArIsydi33AGm9VjIlfsjuM/6l6VCbPoLVsnSP9zOtnGheKO2CGpjp5bYhhETYy CefDBrrv9EO5UCNmrEIp9xbOY8D3ZD+7xkFKUsQRuHixcnY1+B1M6GI+XHuGxxkI ER0MaqsKNU7VcM5xbzbnLwD4wQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMvyjnml ttOZcag8cy4zLwGZJ+x0MB8GA1UdIwQYMBaAFNnWX382CQxAG88g1LyAxD8NxZM9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMkI5My8zQUM4NzRFRTAx NDMxMUVGODI1QTY0NjVDNEY5QUUwMi8yZFpmZnpZSkRFQWJ6eURVdklERVB3M0Zr ejAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJkWmZmellKREVBYnp5RFV2SURFUHczRmt6MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MkI5My8zQUM4NzRFRTAxNDMxMUVGODI1QTY0NjVDNEY5QUUwMi8yZFpmZnpZSkRF QWJ6eURVdklERVB3M0ZrejAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA9yv+M6+ZsBOOL0zIb66FiRHuqTzg8TWqxecQ9k777vzXw3dopnthc CCvdBBUr9DbtNLrnUggHZnKEVgUmajI87HvcmEIphRvlUhyTH5ZUa1GJhS8c/vVq bFXy3CsDSHdlxY9cQr9ooMfzqh95wIicoLb8l/pO1D8WH1HEW/MkN2fcuvbJMTrp u4VLR8G8GP2p5lHztLBNudLaZueQJJ+BXqoyHjc5uB3YOZ9KjIIGs38jqbC8Bd/u ZBitB0i5A1OaNhL1Y92irwwgt2w5JKixkHD7lzIFhRDIUnwhboFbF4mL7jam4g7B V4j+RR70STfI7HP3JYAogG6/95f6Yxwv -----END CERTIFICATE-----Generated at Sat May 31 14:38:09 2025 by rpki-client