$ rpki-client -vvf rpki.apnic.net/member_repository/A91CB8BA/2B732E70BA8511EABA838E30C4F9AE02/RwqTRJ5hH6mtBaKJ1hiCILX8_Do.mft File: RwqTRJ5hH6mtBaKJ1hiCILX8_Do.mft (raw, json) Hash identifier: ASq2+F9HmPPOZyuBQLm/mMVZyn6zczWHe/mCbFDZAL8= Subject key identifier: CD:C2:51:BE:89:5D:2E:31:21:FD:7D:E7:C2:FD:8B:1A:39:67:62:F2 Authority key identifier: 47:0A:93:44:9E:61:1F:A9:AD:05:A2:89:D6:18:82:20:B5:FC:FC:3A Certificate issuer: /CN=A91CB8BA/serialNumber=470A93449E611FA9AD05A289D6188220B5FCFC3A Certificate serial: 08C9 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RwqTRJ5hH6mtBaKJ1hiCILX8_Do.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CB8BA/2B732E70BA8511EABA838E30C4F9AE02/RwqTRJ5hH6mtBaKJ1hiCILX8_Do.mft Manifest number: 08B8 Signing time: Mon 02 Jun 2025 20:41:05 +0000 Manifest this update: Mon 02 Jun 2025 20:41:04 +0000 Manifest next update: Mon 09 Jun 2025 20:41:04 +0000 Files and hashes: 1: RwqTRJ5hH6mtBaKJ1hiCILX8_Do.crl (hash: jDP/dAehC0Ol/UtxeQvx2OGw+Uj+Kf2tGWc0oLONHMk=) 2: 465DBB30BA8811EAAF996D39C4F9AE02.roa (hash: 23ndFVCcLg+/bCNKhL706A7YBuPjvG2i31lg9YjdTYE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CB8BA/2B732E70BA8511EABA838E30C4F9AE02/RwqTRJ5hH6mtBaKJ1hiCILX8_Do.crl rsync://rpki.apnic.net/member_repository/A91CB8BA/2B732E70BA8511EABA838E30C4F9AE02/RwqTRJ5hH6mtBaKJ1hiCILX8_Do.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RwqTRJ5hH6mtBaKJ1hiCILX8_Do.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 20:41:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2249 (0x8c9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CB8BA, serialNumber=470A93449E611FA9AD05A289D6188220B5FCFC3A Validity Not Before: Jun 2 20:41:04 2025 GMT Not After : Jun 9 20:41:04 2025 GMT Subject: CN=683e0c60-2fcd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:bb:5c:74:d8:a1:b1:eb:8d:9c:74:66:bd:9e: 75:43:4d:b4:8a:a1:4a:fc:32:39:07:eb:7a:c1:1c: ae:f4:8a:5d:3f:83:bc:ba:a6:88:7d:1f:5e:06:bb: d1:a8:cb:7a:26:be:1a:b6:df:cc:10:40:84:23:d6: 65:e3:30:97:58:a2:36:22:5d:d9:1a:23:d2:ee:2a: 4b:6f:9c:25:9b:dd:99:e7:14:46:ee:4c:c9:01:d1: d5:48:bb:dd:9b:35:17:b8:76:13:a5:70:ec:17:99: 14:99:41:ee:65:cc:44:8d:9b:50:e2:8e:3c:1a:0f: a9:80:9b:03:9d:39:b6:f2:10:47:33:d1:68:21:45: 36:d4:f0:77:ca:ed:92:b1:60:e5:75:01:26:88:39: 19:08:b1:5d:1b:98:e9:6f:04:c1:2f:fe:fe:d3:4c: 62:61:f3:eb:a6:95:0d:14:5b:e6:a0:46:83:4a:82: 3e:4c:a1:99:ad:62:6d:0f:1a:ed:11:d1:41:a6:d5: ff:e9:d2:7f:aa:8f:fc:96:59:fc:37:d7:fb:71:ad: 4a:14:68:67:fb:e4:80:b2:89:20:64:91:bc:aa:8e: 1b:5a:31:b6:9c:e3:a0:44:18:e4:f9:93:c5:0c:2f: f9:62:32:c3:95:86:ce:e7:17:c7:90:40:95:14:97: 24:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CD:C2:51:BE:89:5D:2E:31:21:FD:7D:E7:C2:FD:8B:1A:39:67:62:F2 X509v3 Authority Key Identifier: keyid:47:0A:93:44:9E:61:1F:A9:AD:05:A2:89:D6:18:82:20:B5:FC:FC:3A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CB8BA/2B732E70BA8511EABA838E30C4F9AE02/RwqTRJ5hH6mtBaKJ1hiCILX8_Do.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RwqTRJ5hH6mtBaKJ1hiCILX8_Do.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CB8BA/2B732E70BA8511EABA838E30C4F9AE02/RwqTRJ5hH6mtBaKJ1hiCILX8_Do.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1a:b6:14:0f:eb:d7:c1:5c:3c:b4:ba:75:85:75:ec:cd:13:21: d5:d4:a3:09:10:bf:bd:63:a4:ae:c5:cb:65:ae:a3:d6:1a:0d: 33:27:4d:16:d7:2f:47:97:21:91:ad:77:e2:45:8a:e7:42:69: e2:cd:10:2d:74:c2:54:a7:cc:e2:eb:52:48:32:ed:a8:e5:6d: 6b:13:0f:38:b9:86:aa:6f:15:57:94:9e:df:52:9d:59:d7:f1: 66:a1:aa:cc:01:03:6f:39:27:89:d5:1b:ac:d2:cd:61:e0:15: 7e:76:e1:cb:9b:e3:3e:85:f7:f3:93:be:7f:7f:7d:4f:86:26: a6:9b:4a:7a:0e:b2:79:69:e5:14:4a:df:0f:74:c3:f5:84:ca: 08:cc:94:d4:1a:d9:ae:74:1e:4b:d4:2b:59:01:0c:cb:a7:20: ad:d0:09:d1:c8:77:42:7d:b7:7d:e1:31:c6:23:2c:7c:96:ba: fa:25:b1:5e:99:c0:a1:de:a8:5b:89:93:69:52:9f:e5:1a:21: 79:78:a9:03:2e:cf:b5:96:92:d0:9f:3d:7b:ff:a8:2d:fd:7f: 0a:60:ea:8d:fa:99:02:c8:05:ac:92:20:97:10:c0:f6:2b:26: f6:2b:53:51:4f:ae:53:79:54:46:d3:f8:b5:79:c6:8e:ef:cc: d0:6c:6c:5e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCMkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0I4QkExMTAvBgNVBAUTKDQ3MEE5MzQ0OUU2MTFGQTlBRDA1QTI4OUQ2MTg4MjIw QjVGQ0ZDM0EwHhcNMjUwNjAyMjA0MTA0WhcNMjUwNjA5MjA0MTA0WjAYMRYwFAYD VQQDEw02ODNlMGM2MC0yZmNkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArrtcdNihseuNnHRmvZ51Q020iqFK/DI5B+t6wRyu9IpdP4O8uqaIfR9eBrvR qMt6Jr4att/MEECEI9Zl4zCXWKI2Il3ZGiPS7ipLb5wlm92Z5xRG7kzJAdHVSLvd mzUXuHYTpXDsF5kUmUHuZcxEjZtQ4o48Gg+pgJsDnTm28hBHM9FoIUU21PB3yu2S sWDldQEmiDkZCLFdG5jpbwTBL/7+00xiYfPrppUNFFvmoEaDSoI+TKGZrWJtDxrt EdFBptX/6dJ/qo/8lln8N9f7ca1KFGhn++SAsokgZJG8qo4bWjG2nOOgRBjk+ZPF DC/5YjLDlYbO5xfHkECVFJckvwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFM3CUb6J XS4xIf1958L9ixo5Z2LyMB8GA1UdIwQYMBaAFEcKk0SeYR+prQWiidYYgiC1/Pw6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDQjhCQS8yQjczMkU3MEJB ODUxMUVBQkE4MzhFMzBDNEY5QUUwMi9Sd3FUUko1aEg2bXRCYUtKMWhpQ0lMWDhf RG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1J3cVRSSjVoSDZtdEJhS0oxaGlDSUxYOF9Eby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD QjhCQS8yQjczMkU3MEJBODUxMUVBQkE4MzhFMzBDNEY5QUUwMi9Sd3FUUko1aEg2 bXRCYUtKMWhpQ0lMWDhfRG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAathQP69fBXDy0unWFdezNEyHV1KMJEL+9Y6SuxctlrqPWGg0zJ00W 1y9HlyGRrXfiRYrnQmnizRAtdMJUp8zi61JIMu2o5W1rEw84uYaqbxVXlJ7fUp1Z 1/FmoarMAQNvOSeJ1Rus0s1h4BV+duHLm+M+hffzk75/f31Phiamm0p6DrJ5aeUU St8PdMP1hMoIzJTUGtmudB5L1CtZAQzLpyCt0AnRyHdCfbd94THGIyx8lrr6JbFe mcCh3qhbiZNpUp/lGiF5eKkDLs+1lpLQnz17/6gt/X8KYOqN+pkCyAWskiCXEMD2 Kyb2K1NRT65TeVRG0/i1ecaO78zQbGxe -----END CERTIFICATE-----Generated at Tue Jun 3 23:43:33 2025 by rpki-client