$ rpki-client -vvf rpki.apnic.net/member_repository/A91CEE85/FC66F5AE45AD11EFB435EB6FC4F9AE02/ByRKmUzcS5OAdHEcQkjUn51Q2Cc.mft File: ByRKmUzcS5OAdHEcQkjUn51Q2Cc.mft (raw, json) Hash identifier: z1AXN1mjXDeWtOZFX/bZzQ1DaiQ9Znb6DSh2hBPFkzI= Subject key identifier: CD:82:74:43:04:8D:F1:77:BF:6C:98:B6:9C:29:F3:7E:BB:30:3A:7D Authority key identifier: 07:24:4A:99:4C:DC:4B:93:80:74:71:1C:42:48:D4:9F:9D:50:D8:27 Certificate issuer: /CN=A91CEE85/serialNumber=07244A994CDC4B938074711C4248D49F9D50D827 Certificate serial: A7 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ByRKmUzcS5OAdHEcQkjUn51Q2Cc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CEE85/FC66F5AE45AD11EFB435EB6FC4F9AE02/ByRKmUzcS5OAdHEcQkjUn51Q2Cc.mft Manifest number: A5 Signing time: Sun 01 Jun 2025 05:53:52 +0000 Manifest this update: Sun 01 Jun 2025 05:53:52 +0000 Manifest next update: Sun 08 Jun 2025 05:53:52 +0000 Files and hashes: 1: ByRKmUzcS5OAdHEcQkjUn51Q2Cc.crl (hash: oW51VRon6U5dOtbsL74arKeeC2JIQYhzuMMFqwpLxmU=) 2: C2838C8245B011EFAE60CC76C4F9AE02.roa (hash: dwidYpMLAJTM9jddkunL1qdnHKOnW/Pf1EZaeXyq6Fk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CEE85/FC66F5AE45AD11EFB435EB6FC4F9AE02/ByRKmUzcS5OAdHEcQkjUn51Q2Cc.crl rsync://rpki.apnic.net/member_repository/A91CEE85/FC66F5AE45AD11EFB435EB6FC4F9AE02/ByRKmUzcS5OAdHEcQkjUn51Q2Cc.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ByRKmUzcS5OAdHEcQkjUn51Q2Cc.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Jun 2025 05:53:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 167 (0xa7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CEE85, serialNumber=07244A994CDC4B938074711C4248D49F9D50D827 Validity Not Before: Jun 1 05:53:52 2025 GMT Not After : Jun 8 05:53:52 2025 GMT Subject: CN=683beaf0-5bc8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:87:6d:d1:cf:d4:be:4a:2d:2b:e3:84:c1:ce: 3e:27:61:f6:6b:ae:88:2c:07:4c:e9:f6:bb:d0:85: 07:c3:6c:ac:5d:27:ba:e9:04:21:ed:e1:cf:80:75: b2:9b:46:92:3f:a8:73:b6:88:7f:fb:cd:c4:d2:98: 91:2f:6e:20:73:10:cc:17:44:e4:e7:e2:b0:3e:b9: c2:2e:0d:44:e7:8d:5f:a5:0b:b6:37:7b:4b:93:3b: 74:65:d2:26:11:54:a0:89:bc:13:0e:f5:f2:11:ec: 32:06:e9:6f:57:98:60:17:0b:b5:bd:bb:55:5c:5a: c8:de:e6:a4:5f:3c:e9:70:eb:83:62:7e:fb:ab:e6: de:ef:af:e0:66:73:a9:03:32:e4:9e:f2:27:a6:fa: ec:2f:3e:b7:aa:0b:51:8f:f6:fd:e3:6c:c7:46:67: 26:6b:f6:28:4a:de:c3:4e:58:d7:64:be:79:33:35: 59:8e:5d:1e:d4:c5:f6:05:34:9f:93:01:1a:bd:78: 57:ef:6a:70:5a:3a:91:f8:42:47:65:52:2d:4c:d9: e2:1d:57:67:6a:07:6f:73:b3:7b:b0:4b:a0:d3:04: ba:2a:47:c8:8a:32:1b:db:d3:34:81:92:7c:30:51: ed:b7:f7:49:08:0b:ba:a0:b5:cd:ee:19:73:68:be: 7b:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CD:82:74:43:04:8D:F1:77:BF:6C:98:B6:9C:29:F3:7E:BB:30:3A:7D X509v3 Authority Key Identifier: keyid:07:24:4A:99:4C:DC:4B:93:80:74:71:1C:42:48:D4:9F:9D:50:D8:27 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CEE85/FC66F5AE45AD11EFB435EB6FC4F9AE02/ByRKmUzcS5OAdHEcQkjUn51Q2Cc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ByRKmUzcS5OAdHEcQkjUn51Q2Cc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CEE85/FC66F5AE45AD11EFB435EB6FC4F9AE02/ByRKmUzcS5OAdHEcQkjUn51Q2Cc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 14:b7:a3:15:7f:79:d2:32:72:4e:a5:d3:8b:12:0d:76:8f:e0: c9:6c:37:df:27:05:ad:9d:93:ce:cf:7f:2f:b6:fb:c3:e9:f3: bb:26:73:fd:4e:b6:96:65:45:56:07:84:d1:28:15:bc:33:9f: 52:35:ae:f8:1d:2f:0f:ee:74:1c:37:f7:97:8e:85:3d:e9:9c: 3b:c6:66:0a:89:a8:9b:cf:06:a9:14:7c:6a:6b:d6:d0:4d:da: 4b:d2:b4:8f:b3:6f:64:b7:1c:8b:70:e5:1c:23:cf:78:2d:10: 39:6a:53:ce:78:10:88:ad:e6:40:fe:a6:2a:d8:de:88:8d:98: ff:34:74:d5:7d:7c:f9:b2:8d:f5:f4:5b:74:1b:20:28:1f:86: da:7c:4f:4a:61:98:2e:23:b5:42:d6:24:51:8b:ed:d1:87:9a: ef:61:b0:77:6d:3f:b6:ab:da:22:e3:83:9e:ce:98:f6:61:48: 43:7d:92:f8:b4:ce:e5:2d:7d:84:4b:0d:48:c0:3c:e7:9a:5a: de:ad:e5:47:5f:b0:46:91:da:21:cd:c4:ca:18:89:a8:ba:81: e1:f0:a1:f5:de:96:2f:93:c3:5f:9d:2d:cc:b8:b2:c5:19:d1: 99:9a:7b:4b:a1:b7:3d:e2:5c:5b:81:fc:f9:2f:e2:45:ca:80: ff:d6:61:a3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAKcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0VFODUxMTAvBgNVBAUTKDA3MjQ0QTk5NENEQzRCOTM4MDc0NzExQzQyNDhENDlG OUQ1MEQ4MjcwHhcNMjUwNjAxMDU1MzUyWhcNMjUwNjA4MDU1MzUyWjAYMRYwFAYD VQQDEw02ODNiZWFmMC01YmM4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxYdt0c/UvkotK+OEwc4+J2H2a66ILAdM6fa70IUHw2ysXSe66QQh7eHPgHWy m0aSP6hztoh/+83E0piRL24gcxDMF0Tk5+KwPrnCLg1E541fpQu2N3tLkzt0ZdIm EVSgibwTDvXyEewyBulvV5hgFwu1vbtVXFrI3uakXzzpcOuDYn77q+be76/gZnOp AzLknvInpvrsLz63qgtRj/b942zHRmcma/YoSt7DTljXZL55MzVZjl0e1MX2BTSf kwEavXhX72pwWjqR+EJHZVItTNniHVdnagdvc7N7sEug0wS6KkfIijIb29M0gZJ8 MFHtt/dJCAu6oLXN7hlzaL57SwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFM2CdEME jfF3v2yYtpwp8367MDp9MB8GA1UdIwQYMBaAFAckSplM3EuTgHRxHEJI1J+dUNgn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRUU4NS9GQzY2RjVBRTQ1 QUQxMUVGQjQzNUVCNkZDNEY5QUUwMi9CeVJLbVV6Y1M1T0FkSEVjUWtqVW41MVEy Q2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0J5UkttVXpjUzVPQWRIRWNRa2pVbjUxUTJDYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RUU4NS9GQzY2RjVBRTQ1QUQxMUVGQjQzNUVCNkZDNEY5QUUwMi9CeVJLbVV6Y1M1 T0FkSEVjUWtqVW41MVEyQ2MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAUt6MVf3nSMnJOpdOLEg12j+DJbDffJwWtnZPOz38vtvvD6fO7JnP9 TraWZUVWB4TRKBW8M59SNa74HS8P7nQcN/eXjoU96Zw7xmYKiaibzwapFHxqa9bQ TdpL0rSPs29ktxyLcOUcI894LRA5alPOeBCIreZA/qYq2N6IjZj/NHTVfXz5so31 9Ft0GyAoH4bafE9KYZguI7VC1iRRi+3Rh5rvYbB3bT+2q9oi44Oezpj2YUhDfZL4 tM7lLX2ESw1IwDznmlrereVHX7BGkdohzcTKGImouoHh8KH13pYvk8NfnS3MuLLF GdGZmntLobc94lxbgfz5L+JFyoD/1mGj -----END CERTIFICATE-----Generated at Mon Jun 2 19:19:21 2025 by rpki-client