$ rpki-client -vvf rpki.apnic.net/member_repository/A91D1216/DC78268CB94B11EC832B7419C4F9AE02/bb1cTQEh_LMY54xFG29WcyCYYAI.mft File: bb1cTQEh_LMY54xFG29WcyCYYAI.mft (raw, json) Hash identifier: ZUvMIUr7HkoT67IhE41CyZaq3xkMgwlw0XYEBojgVTs= Subject key identifier: 80:5C:49:D9:DC:7A:92:37:FB:28:E1:33:43:6C:E5:2F:19:B4:A7:AD Authority key identifier: 6D:BD:5C:4D:01:21:FC:B3:18:E7:8C:45:1B:6F:56:73:20:98:60:02 Certificate issuer: /CN=A91D1216/serialNumber=6DBD5C4D0121FCB318E78C451B6F567320986002 Certificate serial: 03BE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bb1cTQEh_LMY54xFG29WcyCYYAI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D1216/DC78268CB94B11EC832B7419C4F9AE02/bb1cTQEh_LMY54xFG29WcyCYYAI.mft Manifest number: 038A Signing time: Sat 31 May 2025 01:12:08 +0000 Manifest this update: Sat 31 May 2025 01:12:08 +0000 Manifest next update: Sat 07 Jun 2025 01:12:08 +0000 Files and hashes: 1: bb1cTQEh_LMY54xFG29WcyCYYAI.crl (hash: JCkISb2SS3AnK4TJjLcNwQn+eJQcbwmPn8USwrUqo5w=) 2: AEE9F9E6326011ED9031BC4FC4F9AE02.roa (hash: uzprXmLZAeVeFEFGMakzKpKMKq1iIlqcTuQSaK0YrGo=) 3: AD17704445F611EE97DF317CC4F9AE02.roa (hash: sdrVSjIs8Qd6YgjT3RuNMeG76kE1PDfBoWYkgwiCgcM=) 4: 943D15902D1011EFBBEBA67BC4F9AE02.roa (hash: r7+Epywiay/UAmGWjEXTbZ6MxuYjSj6zJi2sl5IN5FE=) 5: 9B0C244C73B611EEB18A0385C4F9AE02.roa (hash: YgWtLAFjeyb8EUf6jgk5P6z3rHF4ij9vs7WYRKlGxPw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D1216/DC78268CB94B11EC832B7419C4F9AE02/bb1cTQEh_LMY54xFG29WcyCYYAI.crl rsync://rpki.apnic.net/member_repository/A91D1216/DC78268CB94B11EC832B7419C4F9AE02/bb1cTQEh_LMY54xFG29WcyCYYAI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bb1cTQEh_LMY54xFG29WcyCYYAI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 01:12:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 958 (0x3be) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D1216, serialNumber=6DBD5C4D0121FCB318E78C451B6F567320986002 Validity Not Before: May 31 01:12:08 2025 GMT Not After : Jun 7 01:12:08 2025 GMT Subject: CN=683a5768-ee87 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:25:9f:69:92:92:18:85:1c:99:52:23:39:71: 14:82:a3:c8:42:a3:27:b1:51:cd:d8:bc:79:f4:b0: db:92:48:2c:92:16:b8:5c:c1:e3:76:71:52:45:93: 19:81:ca:51:0d:3d:62:d2:1a:4e:ed:49:ce:11:0c: ee:db:c2:63:ad:76:df:3e:7f:08:ab:a0:54:55:30: 55:32:15:8e:f1:3f:f1:82:de:be:84:05:61:68:4c: 42:4f:9c:45:97:be:af:ab:7f:8e:51:ed:0b:7a:4e: 0d:f9:9e:7e:f4:a0:37:09:2b:89:63:76:3c:18:3f: 26:c1:89:0d:41:f1:c2:2f:ec:59:cd:54:6c:ec:29: c7:5d:ad:3c:10:3b:fc:60:bb:8f:44:65:87:34:68: 9a:f9:d8:39:37:c7:e7:dd:05:3d:4f:aa:2f:8b:d2: b0:8c:17:73:8b:8a:fa:f9:ee:66:51:b5:a0:47:22: f1:75:8d:f3:49:ff:0e:dd:d0:17:8a:fe:4a:32:b3: 03:f7:03:ec:33:11:35:52:28:70:9e:97:75:30:a3: 1a:f4:52:ca:2d:bd:82:50:9c:38:5e:8b:fe:c7:f1: b7:bb:a6:65:8e:2a:c9:50:ec:b9:21:c9:bb:3d:f6: 95:9e:d0:8d:63:8b:51:a3:2f:36:f6:94:56:f6:97: 36:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 80:5C:49:D9:DC:7A:92:37:FB:28:E1:33:43:6C:E5:2F:19:B4:A7:AD X509v3 Authority Key Identifier: keyid:6D:BD:5C:4D:01:21:FC:B3:18:E7:8C:45:1B:6F:56:73:20:98:60:02 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D1216/DC78268CB94B11EC832B7419C4F9AE02/bb1cTQEh_LMY54xFG29WcyCYYAI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bb1cTQEh_LMY54xFG29WcyCYYAI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D1216/DC78268CB94B11EC832B7419C4F9AE02/bb1cTQEh_LMY54xFG29WcyCYYAI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 47:75:47:82:28:a8:12:4b:b6:67:7c:28:84:37:bb:95:f7:69: 59:92:76:a1:11:2d:64:98:6c:0d:54:ed:f4:0b:bf:d8:e1:4e: e6:f4:4e:59:68:2a:ae:41:f0:c3:a1:76:d2:46:d6:b8:d2:ab: f8:0e:bd:81:08:f6:9c:97:ef:a0:29:e0:20:88:20:84:1f:e7: 86:d3:8e:21:c2:2a:4f:d6:5c:f2:5c:3c:57:62:02:00:03:c1: 42:00:a6:f7:3d:4d:27:e8:35:8e:90:64:cb:89:99:de:7e:8f: 96:a3:8d:29:16:1f:12:07:86:d1:6b:54:58:07:23:2c:00:bb: 48:41:50:65:76:24:23:0b:f6:02:42:49:a7:1b:cd:38:4e:aa: c3:6f:54:d1:55:3f:5e:49:2c:34:7c:86:ad:b9:0a:17:73:1f: fe:19:3c:87:c5:12:d2:23:92:06:02:a8:49:d1:fd:6c:0d:df: bf:f2:54:c6:fb:52:96:15:47:a6:6b:d5:0c:69:69:ab:68:fc: ec:fb:81:2a:b4:1d:26:2d:7c:ec:ad:bd:ee:df:74:f6:f0:39: 94:74:af:dc:53:52:02:26:c2:29:f4:f6:9d:26:e0:d6:8d:56: 2a:21:43:ca:9d:61:91:72:52:5e:4f:03:e6:22:de:f6:c6:70: 07:89:e8:60 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA74wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDEyMTYxMTAvBgNVBAUTKDZEQkQ1QzREMDEyMUZDQjMxOEU3OEM0NTFCNkY1Njcz MjA5ODYwMDIwHhcNMjUwNTMxMDExMjA4WhcNMjUwNjA3MDExMjA4WjAYMRYwFAYD VQQDEw02ODNhNTc2OC1lZTg3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1SWfaZKSGIUcmVIjOXEUgqPIQqMnsVHN2Lx59LDbkkgskha4XMHjdnFSRZMZ gcpRDT1i0hpO7UnOEQzu28JjrXbfPn8Iq6BUVTBVMhWO8T/xgt6+hAVhaExCT5xF l76vq3+OUe0Lek4N+Z5+9KA3CSuJY3Y8GD8mwYkNQfHCL+xZzVRs7CnHXa08EDv8 YLuPRGWHNGia+dg5N8fn3QU9T6ovi9KwjBdzi4r6+e5mUbWgRyLxdY3zSf8O3dAX iv5KMrMD9wPsMxE1Uihwnpd1MKMa9FLKLb2CUJw4Xov+x/G3u6ZljirJUOy5Icm7 PfaVntCNY4tRoy829pRW9pc2aQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIBcSdnc epI3+yjhM0Ns5S8ZtKetMB8GA1UdIwQYMBaAFG29XE0BIfyzGOeMRRtvVnMgmGAC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMTIxNi9EQzc4MjY4Q0I5 NEIxMUVDODMyQjc0MTlDNEY5QUUwMi9iYjFjVFFFaF9MTVk1NHhGRzI5V2N5Q1lZ QUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JiMWNUUUVoX0xNWTU0eEZHMjlXY3lDWVlBSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MTIxNi9EQzc4MjY4Q0I5NEIxMUVDODMyQjc0MTlDNEY5QUUwMi9iYjFjVFFFaF9M TVk1NHhGRzI5V2N5Q1lZQUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBHdUeCKKgSS7ZnfCiEN7uV92lZknahES1kmGwNVO30C7/Y4U7m9E5Z aCquQfDDoXbSRta40qv4Dr2BCPacl++gKeAgiCCEH+eG044hwipP1lzyXDxXYgIA A8FCAKb3PU0n6DWOkGTLiZnefo+Wo40pFh8SB4bRa1RYByMsALtIQVBldiQjC/YC QkmnG804TqrDb1TRVT9eSSw0fIatuQoXcx/+GTyHxRLSI5IGAqhJ0f1sDd+/8lTG +1KWFUema9UMaWmraPzs+4EqtB0mLXzsrb3u33T28DmUdK/cU1ICJsIp9PadJuDW jVYqIUPKnWGRclJeTwPmIt72xnAHiehg -----END CERTIFICATE-----Generated at Sat May 31 16:34:03 2025 by rpki-client