$ rpki-client -vvf rpki.apnic.net/member_repository/A91D25E5/ECBF00E89B4B11EB9730A154C4F9AE02/-rpT9D2gDiGn6veS1I_bdpV6gLw.mft File: -rpT9D2gDiGn6veS1I_bdpV6gLw.mft (raw, json) Hash identifier: 77BwVtVhzoAfi3Ro8ArRlHOoUaCNqaMtmG6UuXP9a3o= Subject key identifier: 29:81:27:0E:C7:7A:CA:61:45:53:DB:BB:23:3F:D5:6A:F4:E9:CB:BE Authority key identifier: FA:BA:53:F4:3D:A0:0E:21:A7:EA:F7:92:D4:8F:DB:76:95:7A:80:BC Certificate issuer: /CN=A91D25E5/serialNumber=FABA53F43DA00E21A7EAF792D48FDB76957A80BC Certificate serial: 0626 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-rpT9D2gDiGn6veS1I_bdpV6gLw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D25E5/ECBF00E89B4B11EB9730A154C4F9AE02/-rpT9D2gDiGn6veS1I_bdpV6gLw.mft Manifest number: 0621 Signing time: Fri 30 May 2025 22:57:56 +0000 Manifest this update: Fri 30 May 2025 22:57:56 +0000 Manifest next update: Fri 06 Jun 2025 22:57:56 +0000 Files and hashes: 1: -rpT9D2gDiGn6veS1I_bdpV6gLw.crl (hash: LLL54Zu+xEGQrKN7cmgMkajGfFL4XxWpoRbbhYioq08=) 2: EB8DE9B49B6411EBA08FBE84C4F9AE02.roa (hash: OXMHoo8Egs65FUqbV0ME5rvmbJEFphKa1wlI6laYOWs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D25E5/ECBF00E89B4B11EB9730A154C4F9AE02/-rpT9D2gDiGn6veS1I_bdpV6gLw.crl rsync://rpki.apnic.net/member_repository/A91D25E5/ECBF00E89B4B11EB9730A154C4F9AE02/-rpT9D2gDiGn6veS1I_bdpV6gLw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-rpT9D2gDiGn6veS1I_bdpV6gLw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 22:57:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1574 (0x626) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D25E5, serialNumber=FABA53F43DA00E21A7EAF792D48FDB76957A80BC Validity Not Before: May 30 22:57:56 2025 GMT Not After : Jun 6 22:57:56 2025 GMT Subject: CN=683a37f4-5ca0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:63:61:f5:57:ed:86:97:44:5d:2f:4e:b4:5a: fe:f6:1c:90:ef:90:52:bc:39:37:15:d9:af:af:70: f8:b7:87:e6:bd:f0:28:56:a4:64:44:d8:da:ba:64: b7:49:4c:26:3b:c4:6a:74:57:30:d9:34:24:03:0d: 7b:fc:46:71:89:5c:32:84:f4:62:73:a1:fd:4b:bb: 98:d7:89:c0:65:4c:1a:42:44:c2:8b:83:ad:f8:99: 83:40:1f:2e:12:ad:5b:08:6b:ff:4f:eb:d6:33:8f: 53:65:c0:e4:7b:4e:16:e3:fe:35:d8:7d:ff:06:78: c4:c5:75:0f:c5:e5:15:34:54:33:ac:5e:84:45:c8: 2f:03:ed:91:47:cc:27:38:0b:2d:fb:fd:0a:c5:a8: 15:41:18:e3:f2:eb:74:ae:be:cc:10:f9:3c:18:8b: af:57:a3:71:0f:95:77:08:dc:0c:18:20:54:2a:45: b7:61:6d:8e:12:2e:08:ee:ba:8a:4c:b8:49:cd:1b: b2:9f:66:50:4d:2e:3d:1b:56:6d:2f:25:02:d6:f4: d6:91:01:d2:d7:bc:2e:6d:c4:74:28:9f:fc:5e:46: 17:d4:aa:4c:88:c5:b7:9c:56:39:f7:ed:ca:8f:0b: cd:5d:11:ac:dd:eb:31:d1:35:21:f6:dc:b8:3f:94: 40:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 29:81:27:0E:C7:7A:CA:61:45:53:DB:BB:23:3F:D5:6A:F4:E9:CB:BE X509v3 Authority Key Identifier: keyid:FA:BA:53:F4:3D:A0:0E:21:A7:EA:F7:92:D4:8F:DB:76:95:7A:80:BC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D25E5/ECBF00E89B4B11EB9730A154C4F9AE02/-rpT9D2gDiGn6veS1I_bdpV6gLw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-rpT9D2gDiGn6veS1I_bdpV6gLw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D25E5/ECBF00E89B4B11EB9730A154C4F9AE02/-rpT9D2gDiGn6veS1I_bdpV6gLw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1c:d2:b1:56:b4:bd:76:7a:fb:a6:10:ef:64:7c:7a:36:0c:06: 98:51:ec:00:50:45:79:7a:9a:88:50:97:a7:ba:5f:75:68:e7: ed:53:16:58:ff:1d:de:b7:86:45:4c:06:84:d0:82:4f:17:5d: fe:25:22:67:07:ed:70:82:d3:fc:c7:44:00:38:84:db:c9:66: be:9c:dd:ef:3a:4d:9a:dc:16:a8:a0:b5:58:5d:1d:7e:4e:1f: 03:b3:4f:0f:18:96:58:ce:ad:9a:7b:b6:1f:a2:82:d6:00:02: 6d:03:e2:cc:bd:d2:03:6b:e2:61:f2:6c:d7:39:a3:21:57:71: 72:bc:a8:3f:e7:8e:83:b7:21:43:b2:64:5f:78:f2:49:24:50: fe:32:74:78:b1:64:58:17:08:a4:1e:66:3f:27:74:e7:0e:88: cb:29:ca:2a:5a:0e:f3:1d:ec:a3:50:5d:ac:cf:18:44:19:ef: 3c:53:8f:c3:02:ca:07:c2:d2:21:c0:dd:ab:55:d1:59:5b:b1: 66:3e:1a:dd:c2:9f:6e:4f:ec:25:ae:75:7d:f1:84:cb:02:f8: b2:5c:d4:e0:5e:6b:99:a3:e8:75:ed:3b:6e:86:6e:85:a9:40: a8:aa:d1:d4:59:82:89:4b:98:11:8c:80:6d:9c:6c:a9:35:6a: 83:44:5c:ae -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBiYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDI1RTUxMTAvBgNVBAUTKEZBQkE1M0Y0M0RBMDBFMjFBN0VBRjc5MkQ0OEZEQjc2 OTU3QTgwQkMwHhcNMjUwNTMwMjI1NzU2WhcNMjUwNjA2MjI1NzU2WjAYMRYwFAYD VQQDEw02ODNhMzdmNC01Y2EwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAp2Nh9VfthpdEXS9OtFr+9hyQ75BSvDk3Fdmvr3D4t4fmvfAoVqRkRNjaumS3 SUwmO8RqdFcw2TQkAw17/EZxiVwyhPRic6H9S7uY14nAZUwaQkTCi4Ot+JmDQB8u Eq1bCGv/T+vWM49TZcDke04W4/412H3/BnjExXUPxeUVNFQzrF6ERcgvA+2RR8wn OAst+/0KxagVQRjj8ut0rr7MEPk8GIuvV6NxD5V3CNwMGCBUKkW3YW2OEi4I7rqK TLhJzRuyn2ZQTS49G1ZtLyUC1vTWkQHS17wubcR0KJ/8XkYX1KpMiMW3nFY59+3K jwvNXRGs3esx0TUh9ty4P5RAGwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCmBJw7H esphRVPbuyM/1Wr06cu+MB8GA1UdIwQYMBaAFPq6U/Q9oA4hp+r3ktSP23aVeoC8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMjVFNS9FQ0JGMDBFODlC NEIxMUVCOTczMEExNTRDNEY5QUUwMi8tcnBUOUQyZ0RpR242dmVTMUlfYmRwVjZn THcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy1ycFQ5RDJnRGlHbjZ2ZVMxSV9iZHBWNmdMdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MjVFNS9FQ0JGMDBFODlCNEIxMUVCOTczMEExNTRDNEY5QUUwMi8tcnBUOUQyZ0Rp R242dmVTMUlfYmRwVjZnTHcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAc0rFWtL12evumEO9kfHo2DAaYUewAUEV5epqIUJenul91aOftUxZY /x3et4ZFTAaE0IJPF13+JSJnB+1wgtP8x0QAOITbyWa+nN3vOk2a3BaooLVYXR1+ Th8Ds08PGJZYzq2ae7YfooLWAAJtA+LMvdIDa+Jh8mzXOaMhV3FyvKg/546DtyFD smRfePJJJFD+MnR4sWRYFwikHmY/J3TnDojLKcoqWg7zHeyjUF2szxhEGe88U4/D AsoHwtIhwN2rVdFZW7FmPhrdwp9uT+wlrnV98YTLAviyXNTgXmuZo+h17Ttuhm6F qUCoqtHUWYKJS5gRjIBtnGypNWqDRFyu -----END CERTIFICATE-----Generated at Sat May 31 17:32:59 2025 by rpki-client