$ rpki-client -vvf rpki.apnic.net/member_repository/A91CC28E/B5CA896876CD11ED8DC63A64C4F9AE02/m_aWWObA_qLqCOOn_dKtysoTOUk.mft File: m_aWWObA_qLqCOOn_dKtysoTOUk.mft (raw, json) Hash identifier: D0qWIlymeyLbPXreI0GuwuOh+mNO7kBR4O01vKPQ4Q0= Subject key identifier: 4D:4C:7C:BE:8D:CD:83:08:92:AF:C3:67:7E:CA:BE:DA:AF:7D:BF:FD Authority key identifier: 9B:F6:96:58:E6:C0:FE:A2:EA:08:E3:A7:FD:D2:AD:CA:CA:13:39:49 Certificate issuer: /CN=A91CC28E/serialNumber=9BF69658E6C0FEA2EA08E3A7FDD2ADCACA133949 Certificate serial: 01D6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m_aWWObA_qLqCOOn_dKtysoTOUk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CC28E/B5CA896876CD11ED8DC63A64C4F9AE02/m_aWWObA_qLqCOOn_dKtysoTOUk.mft Manifest number: 01D3 Signing time: Sat 07 Jun 2025 02:26:49 +0000 Manifest this update: Sat 07 Jun 2025 02:26:48 +0000 Manifest next update: Sat 14 Jun 2025 02:26:48 +0000 Files and hashes: 1: m_aWWObA_qLqCOOn_dKtysoTOUk.crl (hash: AQ1obZoMYUlJ8bcA87kHKlSZjiEJDqvO+WMM8cb/y7c=) 2: 73E253FC76D011EDBAECD665C4F9AE02.roa (hash: n/BMRPFUHjUzsfa0GoSirwLl0k+pEwLO2kUv8wHTWRI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CC28E/B5CA896876CD11ED8DC63A64C4F9AE02/m_aWWObA_qLqCOOn_dKtysoTOUk.crl rsync://rpki.apnic.net/member_repository/A91CC28E/B5CA896876CD11ED8DC63A64C4F9AE02/m_aWWObA_qLqCOOn_dKtysoTOUk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m_aWWObA_qLqCOOn_dKtysoTOUk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 14 Jun 2025 02:26:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 470 (0x1d6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CC28E, serialNumber=9BF69658E6C0FEA2EA08E3A7FDD2ADCACA133949 Validity Not Before: Jun 7 02:26:48 2025 GMT Not After : Jun 14 02:26:48 2025 GMT Subject: CN=6843a369-f793 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:07:fa:13:59:9e:54:cf:3c:1b:a5:4c:02:07: c9:de:06:a0:f4:2f:6b:40:33:67:60:6b:4e:a0:e5: c9:16:68:87:48:2b:38:13:4b:b9:8c:97:f6:bb:da: de:fc:dc:a6:d7:ea:9b:f7:fe:59:f1:d2:d5:19:c3: 74:c9:5f:b3:31:ba:5f:2f:fa:f6:c2:e7:da:b2:ef: e9:07:86:97:a4:3b:c5:9d:2a:26:6a:17:cc:32:25: e0:9d:2d:2c:d3:3e:05:d2:5d:7c:82:f9:a6:1b:82: 8c:89:3e:f4:13:f5:97:b2:c1:25:3a:85:12:53:62: f7:b3:99:75:41:26:89:cf:80:42:6b:c1:6f:bd:ad: 17:af:8a:eb:4d:ed:3a:02:de:ae:ed:09:4e:97:07: 67:4f:68:1b:da:67:00:08:1f:ee:d8:92:9a:f9:29: f6:e6:f5:4b:d6:25:67:b4:89:f4:06:f0:89:5b:8e: 6f:23:26:d8:ee:aa:da:c0:fa:2a:ea:13:7f:51:2d: 3a:b4:27:5c:b5:c1:09:74:30:9d:15:b0:5f:c6:20: 6b:7c:8c:df:cb:c0:dd:9e:a8:45:48:f3:30:cc:e9: a9:30:3c:b3:33:38:01:42:c8:1d:b7:ca:05:94:4e: 8d:47:79:77:69:cb:b6:cf:22:e7:97:4a:72:5d:b5: 50:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4D:4C:7C:BE:8D:CD:83:08:92:AF:C3:67:7E:CA:BE:DA:AF:7D:BF:FD X509v3 Authority Key Identifier: keyid:9B:F6:96:58:E6:C0:FE:A2:EA:08:E3:A7:FD:D2:AD:CA:CA:13:39:49 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CC28E/B5CA896876CD11ED8DC63A64C4F9AE02/m_aWWObA_qLqCOOn_dKtysoTOUk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m_aWWObA_qLqCOOn_dKtysoTOUk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CC28E/B5CA896876CD11ED8DC63A64C4F9AE02/m_aWWObA_qLqCOOn_dKtysoTOUk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 66:2f:15:43:4a:4d:a1:fe:d9:e6:5a:61:85:eb:1c:c6:6f:c4: 14:3f:d7:5e:40:b9:9e:01:e8:4e:f8:75:a8:4c:51:13:8f:98: fe:33:cf:f9:0c:67:42:e6:c5:81:88:b4:31:e5:db:92:b1:aa: fb:39:9c:bb:5b:fe:df:3e:30:2e:97:49:57:c9:a8:f5:3c:53: 73:fb:f6:78:76:fe:33:f2:1b:d7:0f:a3:05:1d:bc:5b:e8:87: 5b:c9:fc:a0:b8:58:36:03:c3:24:ce:0d:a6:0a:14:5f:f6:40: 8c:bc:db:09:21:7c:8d:79:4d:0a:52:43:68:55:04:f4:28:c0: 79:90:0e:32:2d:bd:b7:ca:74:9c:0c:d0:b0:a6:64:75:b4:7a: 5f:23:dd:30:bf:b5:0a:9a:b7:d8:62:72:5a:fb:c9:b7:30:16: d2:77:0a:56:01:b9:21:47:8c:3f:8d:e3:8b:90:1a:92:c1:bf: 98:d8:b0:7d:a9:50:1e:ba:e4:aa:b9:5e:5d:33:6f:96:57:19: 89:a7:65:f6:ad:02:c1:24:01:2d:35:68:55:5a:20:fb:dc:7e: 1e:02:49:1c:97:fc:89:8b:6b:71:49:ca:5b:5e:d2:e5:f0:8b: ff:0d:cf:4c:58:4b:0e:1d:a0:bd:81:62:4b:69:74:e8:07:7c: 5b:e6:82:c6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAdYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0MyOEUxMTAvBgNVBAUTKDlCRjY5NjU4RTZDMEZFQTJFQTA4RTNBN0ZERDJBRENB Q0ExMzM5NDkwHhcNMjUwNjA3MDIyNjQ4WhcNMjUwNjE0MDIyNjQ4WjAYMRYwFAYD VQQDEw02ODQzYTM2OS1mNzkzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvQf6E1meVM88G6VMAgfJ3gag9C9rQDNnYGtOoOXJFmiHSCs4E0u5jJf2u9re /Nym1+qb9/5Z8dLVGcN0yV+zMbpfL/r2wufasu/pB4aXpDvFnSomahfMMiXgnS0s 0z4F0l18gvmmG4KMiT70E/WXssElOoUSU2L3s5l1QSaJz4BCa8Fvva0Xr4rrTe06 At6u7QlOlwdnT2gb2mcACB/u2JKa+Sn25vVL1iVntIn0BvCJW45vIybY7qrawPoq 6hN/US06tCdctcEJdDCdFbBfxiBrfIzfy8DdnqhFSPMwzOmpMDyzMzgBQsgdt8oF lE6NR3l3acu2zyLnl0pyXbVQnQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFE1MfL6N zYMIkq/DZ37Kvtqvfb/9MB8GA1UdIwQYMBaAFJv2lljmwP6i6gjjp/3SrcrKEzlJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDQzI4RS9CNUNBODk2ODc2 Q0QxMUVEOERDNjNBNjRDNEY5QUUwMi9tX2FXV09iQV9xTHFDT09uX2RLdHlzb1RP VWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL21fYVdXT2JBX3FMcUNPT25fZEt0eXNvVE9Vay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD QzI4RS9CNUNBODk2ODc2Q0QxMUVEOERDNjNBNjRDNEY5QUUwMi9tX2FXV09iQV9x THFDT09uX2RLdHlzb1RPVWsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBmLxVDSk2h/tnmWmGF6xzGb8QUP9deQLmeAehO+HWoTFETj5j+M8/5 DGdC5sWBiLQx5duSsar7OZy7W/7fPjAul0lXyaj1PFNz+/Z4dv4z8hvXD6MFHbxb 6IdbyfyguFg2A8Mkzg2mChRf9kCMvNsJIXyNeU0KUkNoVQT0KMB5kA4yLb23ynSc DNCwpmR1tHpfI90wv7UKmrfYYnJa+8m3MBbSdwpWAbkhR4w/jeOLkBqSwb+Y2LB9 qVAeuuSquV5dM2+WVxmJp2X2rQLBJAEtNWhVWiD73H4eAkkcl/yJi2txScpbXtLl 8Iv/Dc9MWEsOHaC9gWJLaXToB3xb5oLG -----END CERTIFICATE-----Generated at Sat Jun 7 23:01:20 2025 by rpki-client