$ rpki-client -vvf rpki.apnic.net/member_repository/A91C40D6/05F86014C53711EEB67AEB79C4F9AE02/du8ZOVeobWTTw83rngdGdG70KQo.mft File: du8ZOVeobWTTw83rngdGdG70KQo.mft (raw, json) Hash identifier: yg9FO/beg64En7uVW+WbWbSa8Cho6uMTZTUtTA7pZtE= Subject key identifier: 02:B2:A0:40:90:19:2A:11:B2:AB:08:C7:7F:B4:63:90:DA:2C:EA:2D Authority key identifier: 76:EF:19:39:57:A8:6D:64:D3:C3:CD:EB:9E:07:46:74:6E:F4:29:0A Certificate issuer: /CN=A91C40D6/serialNumber=76EF193957A86D64D3C3CDEB9E0746746EF4290A Certificate serial: FE Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/du8ZOVeobWTTw83rngdGdG70KQo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C40D6/05F86014C53711EEB67AEB79C4F9AE02/du8ZOVeobWTTw83rngdGdG70KQo.mft Manifest number: FB Signing time: Mon 02 Jun 2025 20:28:10 +0000 Manifest this update: Mon 02 Jun 2025 20:28:09 +0000 Manifest next update: Mon 09 Jun 2025 20:28:09 +0000 Files and hashes: 1: du8ZOVeobWTTw83rngdGdG70KQo.crl (hash: Nxjz26LPYT3hsj/B+l+zMD1apufb3RPXGfHG7/zzEls=) 2: DF4EFA76CA7811EE838E0A73C4F9AE02.roa (hash: /FORfGBg9zOxItBO8An19jk30uxSaavKCQfEXQzUIIw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C40D6/05F86014C53711EEB67AEB79C4F9AE02/du8ZOVeobWTTw83rngdGdG70KQo.crl rsync://rpki.apnic.net/member_repository/A91C40D6/05F86014C53711EEB67AEB79C4F9AE02/du8ZOVeobWTTw83rngdGdG70KQo.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/du8ZOVeobWTTw83rngdGdG70KQo.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 20:28:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 254 (0xfe) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C40D6, serialNumber=76EF193957A86D64D3C3CDEB9E0746746EF4290A Validity Not Before: Jun 2 20:28:09 2025 GMT Not After : Jun 9 20:28:09 2025 GMT Subject: CN=683e0959-efd0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:97:5d:0e:b1:97:13:39:97:48:01:22:62:02: de:26:fa:86:3e:f8:3b:ed:9e:be:c9:34:f9:be:14: f8:ac:2c:ca:82:29:0c:99:18:6c:9a:e4:a5:af:17: f1:63:d7:c4:ab:48:bc:96:63:53:39:68:7f:4b:7c: 67:b9:ab:8c:aa:0e:2f:f3:d6:68:66:28:ca:8b:d3: 38:3a:aa:34:b3:2c:f1:8e:13:cf:3d:c4:2b:4a:bb: 2d:39:10:72:c9:73:8c:fa:9e:c2:ec:ec:02:16:e0: f5:4d:22:33:70:2d:0b:93:e8:64:10:61:55:b9:2e: 62:16:0d:e3:3e:15:ed:13:79:aa:00:31:57:f8:00: 8b:d1:d1:64:f9:d3:7e:9c:6d:0d:a3:96:c0:58:cf: 0e:88:48:16:1c:0c:68:73:87:33:20:d7:7f:15:d6: de:ca:71:c4:f9:e3:61:46:88:03:bc:88:e7:39:20: ad:4b:79:ba:f6:5d:15:f6:42:8a:2c:37:54:de:db: 06:07:10:9e:71:30:9e:c4:03:18:98:aa:22:df:e8: eb:3b:be:fd:49:37:de:b3:75:76:fb:ca:c3:4b:3f: e4:3a:dc:bb:d0:96:fb:8a:6c:80:e3:e9:9a:64:02: a0:4a:cf:52:c0:4d:70:7f:8a:fe:54:29:75:12:c3: 55:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 02:B2:A0:40:90:19:2A:11:B2:AB:08:C7:7F:B4:63:90:DA:2C:EA:2D X509v3 Authority Key Identifier: keyid:76:EF:19:39:57:A8:6D:64:D3:C3:CD:EB:9E:07:46:74:6E:F4:29:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C40D6/05F86014C53711EEB67AEB79C4F9AE02/du8ZOVeobWTTw83rngdGdG70KQo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/du8ZOVeobWTTw83rngdGdG70KQo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C40D6/05F86014C53711EEB67AEB79C4F9AE02/du8ZOVeobWTTw83rngdGdG70KQo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 37:52:a0:5b:a9:1e:6d:e3:30:e7:5d:01:39:f6:4b:95:8d:db: 3d:58:17:ab:d4:e8:ea:f7:e2:cd:07:8b:a7:bc:73:ad:52:62: 73:bd:80:3d:99:a1:c4:8c:6c:61:08:45:90:47:a2:da:14:db: 8e:c0:c9:12:51:fd:de:41:42:6a:61:b2:19:71:50:b4:f1:f9: 5d:54:f4:b2:66:0e:2d:a4:89:20:93:5f:6d:96:79:56:53:99: 01:64:80:8e:25:44:d7:bd:a3:2e:58:d9:89:96:7a:e6:4c:a1: 41:bd:64:a0:35:1c:9e:a8:0c:b8:d5:05:ed:f8:3b:ea:c4:60: 18:76:7f:f0:65:d3:bd:61:cb:0f:a8:62:b0:d3:54:7c:44:ca: 44:4c:5d:4c:33:62:cb:f1:ea:6e:f4:29:7c:a8:b0:a2:de:40: 6a:2c:32:62:eb:39:de:be:d6:70:84:1d:8e:69:59:60:b0:d3: 6e:d4:33:ab:9f:3f:c6:fe:50:5d:ae:37:12:d4:8a:27:c0:19: 0d:90:af:fd:ba:11:f4:4e:8e:4f:67:76:7b:ce:d3:79:a5:d9: 7d:f5:c2:b9:20:26:27:a1:0e:ee:f3:d6:15:7b:e2:6f:b7:d1: 08:61:36:7c:77:83:26:d4:55:0d:e5:0c:52:07:83:7e:aa:0b: 97:91:a2:79 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAP4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzQwRDYxMTAvBgNVBAUTKDc2RUYxOTM5NTdBODZENjREM0MzQ0RFQjlFMDc0Njc0 NkVGNDI5MEEwHhcNMjUwNjAyMjAyODA5WhcNMjUwNjA5MjAyODA5WjAYMRYwFAYD VQQDEw02ODNlMDk1OS1lZmQwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAppddDrGXEzmXSAEiYgLeJvqGPvg77Z6+yTT5vhT4rCzKgikMmRhsmuSlrxfx Y9fEq0i8lmNTOWh/S3xnuauMqg4v89ZoZijKi9M4Oqo0syzxjhPPPcQrSrstORBy yXOM+p7C7OwCFuD1TSIzcC0Lk+hkEGFVuS5iFg3jPhXtE3mqADFX+ACL0dFk+dN+ nG0No5bAWM8OiEgWHAxoc4czINd/FdbeynHE+eNhRogDvIjnOSCtS3m69l0V9kKK LDdU3tsGBxCecTCexAMYmKoi3+jrO779STfes3V2+8rDSz/kOty70Jb7imyA4+ma ZAKgSs9SwE1wf4r+VCl1EsNVXwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAKyoECQ GSoRsqsIx3+0Y5DaLOotMB8GA1UdIwQYMBaAFHbvGTlXqG1k08PN654HRnRu9CkK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNDBENi8wNUY4NjAxNEM1 MzcxMUVFQjY3QUVCNzlDNEY5QUUwMi9kdThaT1Zlb2JXVFR3ODNybmdkR2RHNzBL UW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2R1OFpPVmVvYldUVHc4M3JuZ2RHZEc3MEtRby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD NDBENi8wNUY4NjAxNEM1MzcxMUVFQjY3QUVCNzlDNEY5QUUwMi9kdThaT1Zlb2JX VFR3ODNybmdkR2RHNzBLUW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA3UqBbqR5t4zDnXQE59kuVjds9WBer1Ojq9+LNB4unvHOtUmJzvYA9 maHEjGxhCEWQR6LaFNuOwMkSUf3eQUJqYbIZcVC08fldVPSyZg4tpIkgk19tlnlW U5kBZICOJUTXvaMuWNmJlnrmTKFBvWSgNRyeqAy41QXt+DvqxGAYdn/wZdO9YcsP qGKw01R8RMpETF1MM2LL8epu9Cl8qLCi3kBqLDJi6znevtZwhB2OaVlgsNNu1DOr nz/G/lBdrjcS1IonwBkNkK/9uhH0To5PZ3Z7ztN5pdl99cK5ICYnoQ7u89YVe+Jv t9EIYTZ8d4Mm1FUN5QxSB4N+qguXkaJ5 -----END CERTIFICATE-----Generated at Tue Jun 3 23:43:34 2025 by rpki-client