$ rpki-client -vvf rpki.apnic.net/member_repository/A91CD00C/CAA8861EC60111EC95FF1E11C4F9AE02/2yzMqD2FMojFAM38OuHi_qBJ9RQ.mft File: 2yzMqD2FMojFAM38OuHi_qBJ9RQ.mft (raw, json) Hash identifier: YhCK0u4LlANSAzXjrMnr2g8jDxHT/CKMiGLMlhCq8O0= Subject key identifier: 01:08:1A:03:EE:04:A4:2E:77:9C:31:A4:E7:33:6C:C6:FB:5B:36:E0 Authority key identifier: DB:2C:CC:A8:3D:85:32:88:C5:00:CD:FC:3A:E1:E2:FE:A0:49:F5:14 Certificate issuer: /CN=A91CD00C/serialNumber=DB2CCCA83D853288C500CDFC3AE1E2FEA049F514 Certificate serial: 0335 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2yzMqD2FMojFAM38OuHi_qBJ9RQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CD00C/CAA8861EC60111EC95FF1E11C4F9AE02/2yzMqD2FMojFAM38OuHi_qBJ9RQ.mft Manifest number: 032F Signing time: Sat 31 May 2025 01:17:36 +0000 Manifest this update: Sat 31 May 2025 01:17:36 +0000 Manifest next update: Sat 07 Jun 2025 01:17:36 +0000 Files and hashes: 1: 2yzMqD2FMojFAM38OuHi_qBJ9RQ.crl (hash: gZFGybZVhANbq2wu51CsfO5NOUPyuwA5N+KYIEEdvQk=) 2: 46654408C6CB11ECB185E43EC4F9AE02.roa (hash: YDV59vkDGMUjv69JwCXS0TevAXxNgXIE57WFOFZhJBo=) 3: 15D68F5ED55011EFA0564D54C4F9AE02.roa (hash: bm0eX3arzl/Vd2cVSRTEVj0uPXCCRL3I0GcsJSw9xWg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CD00C/CAA8861EC60111EC95FF1E11C4F9AE02/2yzMqD2FMojFAM38OuHi_qBJ9RQ.crl rsync://rpki.apnic.net/member_repository/A91CD00C/CAA8861EC60111EC95FF1E11C4F9AE02/2yzMqD2FMojFAM38OuHi_qBJ9RQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2yzMqD2FMojFAM38OuHi_qBJ9RQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 01:17:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 821 (0x335) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CD00C, serialNumber=DB2CCCA83D853288C500CDFC3AE1E2FEA049F514 Validity Not Before: May 31 01:17:36 2025 GMT Not After : Jun 7 01:17:36 2025 GMT Subject: CN=683a58b0-72bf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f2:72:9c:32:fc:a4:bb:d9:0f:e2:4e:c3:a3:09: b9:33:bc:25:04:cd:47:3f:10:2a:f1:6c:8d:2d:1e: 86:b2:79:4a:d3:ca:93:b2:d1:bc:e2:cf:e1:75:2b: 6d:af:5c:4d:a3:c4:92:6f:91:ab:8d:b5:38:95:e5: 3c:39:70:6c:2d:e7:ef:9c:7c:a6:bc:00:46:b3:81: 74:17:80:fd:5c:f3:ce:39:df:18:84:65:df:77:b1: 68:b7:b1:c2:43:1c:28:a1:91:50:83:01:0f:e2:c4: d8:61:db:9d:01:43:c7:96:8d:81:5d:fe:88:3a:e9: 7e:25:c8:9b:5b:11:8f:9f:db:0a:35:5f:76:de:6e: bf:93:08:e7:49:02:74:31:d7:11:af:71:2e:49:22: db:71:4e:41:72:07:06:30:f9:77:62:db:19:6e:5d: 1c:7b:8b:e5:e3:a4:41:c3:20:05:f8:e8:37:af:30: e4:c1:f4:3d:52:7e:c9:89:a8:eb:77:91:9d:a2:7f: 59:71:b6:33:bd:3f:93:a9:6f:76:c4:68:8e:22:d6: 8e:af:90:f2:5d:76:89:ca:73:bc:38:42:04:f2:4b: 0e:91:46:c9:bc:4d:06:5a:37:62:53:ee:ae:36:45: 1c:8f:dd:6b:6c:15:77:2a:9e:95:8a:99:4f:c1:8f: 15:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 01:08:1A:03:EE:04:A4:2E:77:9C:31:A4:E7:33:6C:C6:FB:5B:36:E0 X509v3 Authority Key Identifier: keyid:DB:2C:CC:A8:3D:85:32:88:C5:00:CD:FC:3A:E1:E2:FE:A0:49:F5:14 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CD00C/CAA8861EC60111EC95FF1E11C4F9AE02/2yzMqD2FMojFAM38OuHi_qBJ9RQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2yzMqD2FMojFAM38OuHi_qBJ9RQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CD00C/CAA8861EC60111EC95FF1E11C4F9AE02/2yzMqD2FMojFAM38OuHi_qBJ9RQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 27:0a:9e:90:53:9a:14:e0:ff:c8:85:06:34:51:1f:5a:db:0f: 98:28:50:7f:3d:db:f4:a7:60:86:d4:35:92:27:fb:fe:a6:53: 71:ec:64:99:a5:5c:87:bf:46:4a:fc:5e:40:9d:f5:f6:e0:d8: 02:ff:5a:76:5e:0a:bb:05:c1:3a:46:5b:95:bf:e4:f0:b6:ae: 2d:4f:fd:e4:21:8c:dc:e2:ca:69:e0:82:db:83:7f:c9:22:46: 8a:70:16:62:c4:47:86:6e:18:74:e8:12:25:b4:89:45:49:80: 0e:0f:3a:96:86:d8:40:ad:f1:51:b1:86:06:7b:dd:87:4b:ed: 9d:5e:f1:de:98:e1:55:ab:d7:7e:8b:e1:b7:c4:32:71:98:9a: e8:9e:7d:35:0d:44:43:30:ab:40:c7:20:fa:a8:2d:2a:7b:6d: 18:a1:76:86:16:e2:bd:f0:c5:85:87:42:e0:47:05:ac:12:cb: f4:cf:b1:75:3b:2a:5e:cc:89:86:c9:28:be:cb:be:00:de:5a: 1f:fa:65:d1:e7:8c:a3:71:d2:7c:89:64:fc:0d:29:3f:5c:a8: a4:71:80:c9:41:25:8a:2b:d5:04:2f:a0:ea:d6:72:c0:93:24: 09:e9:9b:90:3a:e0:4f:f6:ab:7d:87:cf:7e:6c:67:a1:c5:e2: 8f:33:19:2d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAzUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0QwMEMxMTAvBgNVBAUTKERCMkNDQ0E4M0Q4NTMyODhDNTAwQ0RGQzNBRTFFMkZF QTA0OUY1MTQwHhcNMjUwNTMxMDExNzM2WhcNMjUwNjA3MDExNzM2WjAYMRYwFAYD VQQDEw02ODNhNThiMC03MmJmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8nKcMvyku9kP4k7Dowm5M7wlBM1HPxAq8WyNLR6GsnlK08qTstG84s/hdStt r1xNo8SSb5GrjbU4leU8OXBsLefvnHymvABGs4F0F4D9XPPOOd8YhGXfd7Fot7HC QxwooZFQgwEP4sTYYdudAUPHlo2BXf6IOul+JcibWxGPn9sKNV923m6/kwjnSQJ0 MdcRr3EuSSLbcU5BcgcGMPl3YtsZbl0ce4vl46RBwyAF+Og3rzDkwfQ9Un7Jiajr d5Gdon9ZcbYzvT+TqW92xGiOItaOr5DyXXaJynO8OEIE8ksOkUbJvE0GWjdiU+6u NkUcj91rbBV3Kp6ViplPwY8VQwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAEIGgPu BKQud5wxpOczbMb7WzbgMB8GA1UdIwQYMBaAFNsszKg9hTKIxQDN/Drh4v6gSfUU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRDAwQy9DQUE4ODYxRUM2 MDExMUVDOTVGRjFFMTFDNEY5QUUwMi8yeXpNcUQyRk1vakZBTTM4T3VIaV9xQko5 UlEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJ5ek1xRDJGTW9qRkFNMzhPdUhpX3FCSjlSUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RDAwQy9DQUE4ODYxRUM2MDExMUVDOTVGRjFFMTFDNEY5QUUwMi8yeXpNcUQyRk1v akZBTTM4T3VIaV9xQko5UlEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAnCp6QU5oU4P/IhQY0UR9a2w+YKFB/Pdv0p2CG1DWSJ/v+plNx7GSZ pVyHv0ZK/F5AnfX24NgC/1p2Xgq7BcE6RluVv+Twtq4tT/3kIYzc4spp4ILbg3/J IkaKcBZixEeGbhh06BIltIlFSYAODzqWhthArfFRsYYGe92HS+2dXvHemOFVq9d+ i+G3xDJxmJronn01DURDMKtAxyD6qC0qe20YoXaGFuK98MWFh0LgRwWsEsv0z7F1 OypezImGySi+y74A3lof+mXR54yjcdJ8iWT8DSk/XKikcYDJQSWKK9UEL6Dq1nLA kyQJ6ZuQOuBP9qt9h89+bGehxeKPMxkt -----END CERTIFICATE-----Generated at Sat May 31 16:28:41 2025 by rpki-client