$ rpki-client -vvf rpki.apnic.net/member_repository/A91C309F/1DB483A469DC11EB9E16091AC4F9AE02/7HnRemDtVw7Ge1EWFitgi2C5zUE.mft File: 7HnRemDtVw7Ge1EWFitgi2C5zUE.mft (raw, json) Hash identifier: W6Js9CJ2GXoryG5i7QtW57pC7ksKxkkboDRja7G3ZgI= Subject key identifier: 73:96:F8:AA:6E:06:FC:15:5F:47:7A:67:EF:A2:F1:29:A3:A9:C7:F8 Authority key identifier: EC:79:D1:7A:60:ED:57:0E:C6:7B:51:16:16:2B:60:8B:60:B9:CD:41 Certificate issuer: /CN=A91C309F/serialNumber=EC79D17A60ED570EC67B5116162B608B60B9CD41 Certificate serial: 06A9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7HnRemDtVw7Ge1EWFitgi2C5zUE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C309F/1DB483A469DC11EB9E16091AC4F9AE02/7HnRemDtVw7Ge1EWFitgi2C5zUE.mft Manifest number: 06A2 Signing time: Fri 30 May 2025 22:24:02 +0000 Manifest this update: Fri 30 May 2025 22:24:02 +0000 Manifest next update: Fri 06 Jun 2025 22:24:02 +0000 Files and hashes: 1: 7HnRemDtVw7Ge1EWFitgi2C5zUE.crl (hash: 5siZ0Og5HoBHu9eaKDbcruN3S3YpVhYUN1JFw3OixWY=) 2: C144C89ADCF311EC80AD955EC4F9AE02.roa (hash: oHlo3Sofjys47IZ2Ei8IuoMAeL8C2VUTJUZO9aDUVcs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C309F/1DB483A469DC11EB9E16091AC4F9AE02/7HnRemDtVw7Ge1EWFitgi2C5zUE.crl rsync://rpki.apnic.net/member_repository/A91C309F/1DB483A469DC11EB9E16091AC4F9AE02/7HnRemDtVw7Ge1EWFitgi2C5zUE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7HnRemDtVw7Ge1EWFitgi2C5zUE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 22:24:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1705 (0x6a9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C309F, serialNumber=EC79D17A60ED570EC67B5116162B608B60B9CD41 Validity Not Before: May 30 22:24:02 2025 GMT Not After : Jun 6 22:24:02 2025 GMT Subject: CN=683a3002-27f6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:18:7e:59:96:80:08:e8:c9:c3:68:cf:fe:3b: 27:ba:5c:bc:e7:fd:07:78:5a:f5:85:18:aa:5e:e8: db:4d:bb:d1:01:1f:77:4d:10:61:99:de:9d:6e:0e: 4a:ad:4a:4e:a8:d0:9c:a1:01:1a:23:4a:25:4e:f8: f4:37:73:05:ee:f5:4e:fb:88:3f:14:77:e8:50:43: 99:6d:db:51:43:c7:14:83:0b:31:68:59:94:c1:ba: 3e:63:ba:9e:e8:9f:4f:6c:70:04:8a:5e:98:8b:f0: 24:f9:45:7b:e1:1f:93:2c:07:35:cf:a2:ea:fd:1e: 76:f7:e7:4a:f0:07:0c:96:44:22:60:cb:57:dd:52: 0d:66:2d:13:c8:0f:42:bf:05:c8:5e:e0:5e:fa:b5: 02:d3:85:a7:fe:7b:28:27:bf:0e:c3:f0:b5:c4:00: 39:56:13:64:06:a0:dc:12:17:0b:e6:5c:8c:dd:fa: 25:81:d1:80:7c:7f:d6:8e:b3:0e:be:0f:00:e3:ce: 77:3f:d8:10:33:ee:b0:7a:80:92:00:4a:90:d3:49: b8:cb:ac:9b:c3:62:a4:ff:62:53:c4:a7:c0:7b:08: 41:ab:1d:55:78:65:03:57:cd:8f:71:22:38:bd:c3: c7:b5:43:93:4f:cb:76:b5:80:74:87:f4:0e:54:00: e7:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 73:96:F8:AA:6E:06:FC:15:5F:47:7A:67:EF:A2:F1:29:A3:A9:C7:F8 X509v3 Authority Key Identifier: keyid:EC:79:D1:7A:60:ED:57:0E:C6:7B:51:16:16:2B:60:8B:60:B9:CD:41 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C309F/1DB483A469DC11EB9E16091AC4F9AE02/7HnRemDtVw7Ge1EWFitgi2C5zUE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7HnRemDtVw7Ge1EWFitgi2C5zUE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C309F/1DB483A469DC11EB9E16091AC4F9AE02/7HnRemDtVw7Ge1EWFitgi2C5zUE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1c:76:33:65:2e:59:fc:37:c4:7d:74:ac:cb:5a:78:56:7b:34: 02:0a:1b:46:1a:91:da:1c:14:7a:62:c4:ea:0c:cc:67:1e:3d: 84:93:03:b5:1a:5f:84:cc:c5:9c:37:cf:0d:a4:ef:4f:69:15: 3b:79:ef:52:9c:d9:b7:5a:9c:3a:b4:02:e6:27:01:dc:ab:d5: 2d:a9:8f:f7:8f:6e:fa:aa:36:c8:83:1a:8c:d1:cd:87:de:2d: 5a:ba:0e:29:7f:e7:b8:36:a3:bb:18:f7:de:33:ed:5c:c4:62: c8:a2:a7:38:68:be:c7:cb:31:d8:a5:df:32:14:90:e9:8c:fa: db:4a:5a:04:18:af:19:c3:5b:37:32:03:31:5b:f8:e8:5d:18: 2f:b7:ab:00:aa:03:7c:99:9f:03:11:7e:12:ed:ec:c1:2a:c6: f7:db:61:4f:94:6c:35:8f:55:3e:ca:d5:ac:ce:8b:e8:d0:ff: 52:e5:8b:33:0c:32:ec:bb:fc:ae:eb:97:64:0e:00:94:b2:fd: 5d:c6:82:b4:73:50:37:7c:af:5e:b1:29:9a:6d:32:0a:45:b6: 72:b1:51:31:16:d6:08:3f:01:ae:98:1b:fb:b4:6a:8d:7b:a6: 56:50:4f:fe:ee:fe:9a:b6:54:cc:01:53:7c:87:9b:94:b6:84: e1:cd:8b:da -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBqkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzMwOUYxMTAvBgNVBAUTKEVDNzlEMTdBNjBFRDU3MEVDNjdCNTExNjE2MkI2MDhC NjBCOUNENDEwHhcNMjUwNTMwMjIyNDAyWhcNMjUwNjA2MjIyNDAyWjAYMRYwFAYD VQQDEw02ODNhMzAwMi0yN2Y2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArBh+WZaACOjJw2jP/jsnuly85/0HeFr1hRiqXujbTbvRAR93TRBhmd6dbg5K rUpOqNCcoQEaI0olTvj0N3MF7vVO+4g/FHfoUEOZbdtRQ8cUgwsxaFmUwbo+Y7qe 6J9PbHAEil6Yi/Ak+UV74R+TLAc1z6Lq/R529+dK8AcMlkQiYMtX3VINZi0TyA9C vwXIXuBe+rUC04Wn/nsoJ78Ow/C1xAA5VhNkBqDcEhcL5lyM3folgdGAfH/WjrMO vg8A4853P9gQM+6weoCSAEqQ00m4y6ybw2Kk/2JTxKfAewhBqx1VeGUDV82PcSI4 vcPHtUOTT8t2tYB0h/QOVADnQwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHOW+Kpu BvwVX0d6Z++i8Smjqcf4MB8GA1UdIwQYMBaAFOx50Xpg7VcOxntRFhYrYItguc1B MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMzA5Ri8xREI0ODNBNDY5 REMxMUVCOUUxNjA5MUFDNEY5QUUwMi83SG5SZW1EdFZ3N0dlMUVXRml0Z2kyQzV6 VUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzdIblJlbUR0Vnc3R2UxRVdGaXRnaTJDNXpVRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MzA5Ri8xREI0ODNBNDY5REMxMUVCOUUxNjA5MUFDNEY5QUUwMi83SG5SZW1EdFZ3 N0dlMUVXRml0Z2kyQzV6VUUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAcdjNlLln8N8R9dKzLWnhWezQCChtGGpHaHBR6YsTqDMxnHj2EkwO1 Gl+EzMWcN88NpO9PaRU7ee9SnNm3Wpw6tALmJwHcq9UtqY/3j276qjbIgxqM0c2H 3i1aug4pf+e4NqO7GPfeM+1cxGLIoqc4aL7HyzHYpd8yFJDpjPrbSloEGK8Zw1s3 MgMxW/joXRgvt6sAqgN8mZ8DEX4S7ezBKsb322FPlGw1j1U+ytWszovo0P9S5Ysz DDLsu/yu65dkDgCUsv1dxoK0c1A3fK9esSmabTIKRbZysVExFtYIPwGumBv7tGqN e6ZWUE/+7v6atlTMAVN8h5uUtoThzYva -----END CERTIFICATE-----Generated at Sat May 31 17:03:26 2025 by rpki-client