$ rpki-client -vvf rpki.apnic.net/member_repository/A91D0B0E/44BCA632806911EF887B703CC4F9AE02/awKSxgJwici6idjGWhozDUiLCiw.mft File: awKSxgJwici6idjGWhozDUiLCiw.mft (raw, json) Hash identifier: UAcMl1ezghIVEGgU8S7q5t9YooqFsGBfzUDceXtGsSI= Subject key identifier: 51:9B:5A:6A:E5:13:0B:24:81:37:A7:7F:14:B7:51:99:CD:69:87:4D Authority key identifier: 6B:02:92:C6:02:70:89:C8:BA:89:D8:C6:5A:1A:33:0D:48:8B:0A:2C Certificate issuer: /CN=A91D0B0E/serialNumber=6B0292C6027089C8BA89D8C65A1A330D488B0A2C Certificate serial: 84 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/awKSxgJwici6idjGWhozDUiLCiw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D0B0E/44BCA632806911EF887B703CC4F9AE02/awKSxgJwici6idjGWhozDUiLCiw.mft Manifest number: 81 Signing time: Sun 01 Jun 2025 06:23:00 +0000 Manifest this update: Sun 01 Jun 2025 06:23:00 +0000 Manifest next update: Sun 08 Jun 2025 06:23:00 +0000 Files and hashes: 1: awKSxgJwici6idjGWhozDUiLCiw.crl (hash: wDAVmnI/1b/521TVuKmsMcfBsn9hUFDbL+HGSTDc91Y=) 2: 17782970808311EFBB9C2A46C4F9AE02.roa (hash: r6WIlbiy+lDO4CO1ktSRKcgbqSLB19B4thVbY1+vaPg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D0B0E/44BCA632806911EF887B703CC4F9AE02/awKSxgJwici6idjGWhozDUiLCiw.crl rsync://rpki.apnic.net/member_repository/A91D0B0E/44BCA632806911EF887B703CC4F9AE02/awKSxgJwici6idjGWhozDUiLCiw.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/awKSxgJwici6idjGWhozDUiLCiw.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Jun 2025 06:22:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 132 (0x84) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D0B0E, serialNumber=6B0292C6027089C8BA89D8C65A1A330D488B0A2C Validity Not Before: Jun 1 06:23:00 2025 GMT Not After : Jun 8 06:23:00 2025 GMT Subject: CN=683bf1c4-74de Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:53:7e:b3:21:92:f1:82:41:a9:25:a6:08:2f: 56:2d:55:4f:24:24:0f:11:e5:d4:89:01:dc:4a:aa: c4:78:68:e2:73:f5:26:23:34:e2:f4:b4:11:4e:0e: 54:ed:12:50:6b:01:b8:dc:40:9b:7a:9a:87:97:11: 6f:56:7c:48:9b:bd:4d:58:e9:bf:c0:db:36:fd:13: ae:92:6a:13:9d:75:25:b9:b1:bb:1f:43:d0:41:e5: e7:62:45:f2:82:d6:33:63:b9:15:8b:d4:aa:9c:c1: 69:d1:ea:b0:82:1a:1b:ba:39:88:22:e3:44:99:0a: 3f:0f:12:fd:83:09:ca:4a:2b:e3:9d:68:a3:f8:29: 0d:4f:9b:57:fd:d6:c2:f8:5d:3d:ec:df:d8:d2:68: 7d:3e:14:eb:b4:06:19:e4:0a:f7:35:48:d1:d4:08: ba:46:9e:59:3f:8e:a7:a4:4b:9a:ae:c0:8f:76:8d: f6:5f:b4:6c:4c:d0:a6:b0:20:38:d5:d0:a4:91:8e: d6:13:55:5d:d9:1d:fd:90:5d:d3:86:e5:de:2c:d3: 05:2e:1b:a9:17:3d:5e:1e:19:45:65:f7:eb:3f:82: 96:b0:c6:86:1f:26:51:bd:fb:a6:81:93:bb:e0:10: ec:38:68:8d:49:af:00:07:fe:04:b9:01:a7:38:f3: e3:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 51:9B:5A:6A:E5:13:0B:24:81:37:A7:7F:14:B7:51:99:CD:69:87:4D X509v3 Authority Key Identifier: keyid:6B:02:92:C6:02:70:89:C8:BA:89:D8:C6:5A:1A:33:0D:48:8B:0A:2C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D0B0E/44BCA632806911EF887B703CC4F9AE02/awKSxgJwici6idjGWhozDUiLCiw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/awKSxgJwici6idjGWhozDUiLCiw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D0B0E/44BCA632806911EF887B703CC4F9AE02/awKSxgJwici6idjGWhozDUiLCiw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 82:dd:89:48:d6:eb:45:4a:69:1b:32:97:1f:b5:78:92:de:b5: df:70:a5:ed:7a:52:54:9f:19:77:d2:d8:ac:44:a5:21:be:ec: bb:3e:44:59:ae:32:55:72:c2:48:e9:66:20:87:5e:5c:62:04: fe:c3:1f:42:a1:79:48:b8:57:b1:b3:65:db:aa:b2:29:df:4c: 9b:25:0d:d1:70:de:f8:1a:e9:2b:e7:8b:5e:5e:07:f4:8c:ec: d6:2a:0b:8e:d1:e0:ca:00:10:a6:97:54:23:dd:40:38:26:fb: 81:c7:6f:40:df:71:ee:ab:18:77:8b:23:4c:7c:46:7e:b2:54: 15:dc:33:10:82:c5:a7:f5:4d:d5:07:c2:5a:26:ff:9b:af:f7: 24:73:d6:d5:6b:c5:80:5f:ee:19:f2:96:a3:70:e7:75:07:fe: 9f:d6:f6:00:d0:c6:79:08:3a:eb:27:2f:7d:cc:a1:3a:a0:3f: 0e:86:a8:5f:40:84:72:63:03:86:cd:3f:56:43:47:da:69:ff: a2:85:73:4d:35:db:a6:53:3b:62:a5:b0:fb:77:2b:58:86:c3: 97:66:40:3f:48:ac:cf:15:04:38:25:a4:ce:b6:02:6a:58:33: a2:88:36:be:eb:4d:23:27:d9:67:82:42:a1:ad:0f:db:6d:9d: eb:b2:f6:f4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAIQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDBCMEUxMTAvBgNVBAUTKDZCMDI5MkM2MDI3MDg5QzhCQTg5RDhDNjVBMUEzMzBE NDg4QjBBMkMwHhcNMjUwNjAxMDYyMzAwWhcNMjUwNjA4MDYyMzAwWjAYMRYwFAYD VQQDEw02ODNiZjFjNC03NGRlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAr1N+syGS8YJBqSWmCC9WLVVPJCQPEeXUiQHcSqrEeGjic/UmIzTi9LQRTg5U 7RJQawG43ECbepqHlxFvVnxIm71NWOm/wNs2/ROukmoTnXUlubG7H0PQQeXnYkXy gtYzY7kVi9SqnMFp0eqwghobujmIIuNEmQo/DxL9gwnKSivjnWij+CkNT5tX/dbC +F097N/Y0mh9PhTrtAYZ5Ar3NUjR1Ai6Rp5ZP46npEuarsCPdo32X7RsTNCmsCA4 1dCkkY7WE1Vd2R39kF3ThuXeLNMFLhupFz1eHhlFZffrP4KWsMaGHyZRvfumgZO7 4BDsOGiNSa8AB/4EuQGnOPPjtQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFGbWmrl EwskgTenfxS3UZnNaYdNMB8GA1UdIwQYMBaAFGsCksYCcInIuonYxloaMw1Iiwos MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMEIwRS80NEJDQTYzMjgw NjkxMUVGODg3QjcwM0NDNEY5QUUwMi9hd0tTeGdKd2ljaTZpZGpHV2hvekRVaUxD aXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2F3S1N4Z0p3aWNpNmlkakdXaG96RFVpTENpdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MEIwRS80NEJDQTYzMjgwNjkxMUVGODg3QjcwM0NDNEY5QUUwMi9hd0tTeGdKd2lj aTZpZGpHV2hvekRVaUxDaXcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCC3YlI1utFSmkbMpcftXiS3rXfcKXtelJUnxl30tisRKUhvuy7PkRZ rjJVcsJI6WYgh15cYgT+wx9CoXlIuFexs2XbqrIp30ybJQ3RcN74Gukr54teXgf0 jOzWKguO0eDKABCml1Qj3UA4JvuBx29A33Huqxh3iyNMfEZ+slQV3DMQgsWn9U3V B8JaJv+br/ckc9bVa8WAX+4Z8pajcOd1B/6f1vYA0MZ5CDrrJy99zKE6oD8Ohqhf QIRyYwOGzT9WQ0faaf+ihXNNNdumUztipbD7dytYhsOXZkA/SKzPFQQ4JaTOtgJq WDOiiDa+600jJ9lngkKhrQ/bbZ3rsvb0 -----END CERTIFICATE-----Generated at Mon Jun 2 20:30:57 2025 by rpki-client