$ rpki-client -vvf rpki.apnic.net/member_repository/A91D298D/2CB11FCEF1A611EAB95C0E2FC4F9AE02/g675MVKyUIy8gKNifjon6HvP3so.mft File: g675MVKyUIy8gKNifjon6HvP3so.mft (raw, json) Hash identifier: kfQTF3W6U/JlmLUzb4h2jwEmPLymaFFOuRQedZM0C1Q= Subject key identifier: 6F:12:52:43:C6:FB:3A:3E:18:37:2F:D7:CA:0F:FC:A5:D4:81:FF:27 Authority key identifier: 83:AE:F9:31:52:B2:50:8C:BC:80:A3:62:7E:3A:27:E8:7B:CF:DE:CA Certificate issuer: /CN=A91D298D/serialNumber=83AEF93152B2508CBC80A3627E3A27E87BCFDECA Certificate serial: 07ED Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/g675MVKyUIy8gKNifjon6HvP3so.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D298D/2CB11FCEF1A611EAB95C0E2FC4F9AE02/g675MVKyUIy8gKNifjon6HvP3so.mft Manifest number: 07DE Signing time: Sat 31 May 2025 21:07:18 +0000 Manifest this update: Sat 31 May 2025 21:07:18 +0000 Manifest next update: Sat 07 Jun 2025 21:07:18 +0000 Files and hashes: 1: g675MVKyUIy8gKNifjon6HvP3so.crl (hash: JRfWGc+TBszNJHG9A2mos1e4W+a+Myy1OJW60T0pd4A=) 2: 1229795E652C11EB9B039023C4F9AE02.roa (hash: eB6jpfzkEyGBZh+SZTE0lOYtKObRo5aMeXareF4tcfY=) 3: 51B1F2A665D911EBA6089869C4F9AE02.roa (hash: BRTjFa3VaO5mZBCwL3I9ZNLwh8/q1ESDbEK3Wu3mXHM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D298D/2CB11FCEF1A611EAB95C0E2FC4F9AE02/g675MVKyUIy8gKNifjon6HvP3so.crl rsync://rpki.apnic.net/member_repository/A91D298D/2CB11FCEF1A611EAB95C0E2FC4F9AE02/g675MVKyUIy8gKNifjon6HvP3so.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/g675MVKyUIy8gKNifjon6HvP3so.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 21:07:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2029 (0x7ed) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D298D, serialNumber=83AEF93152B2508CBC80A3627E3A27E87BCFDECA Validity Not Before: May 31 21:07:18 2025 GMT Not After : Jun 7 21:07:18 2025 GMT Subject: CN=683b6f86-e1fe Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:e1:dc:e0:54:0d:62:aa:41:97:0e:65:0e:6d: 84:10:db:71:12:6b:0a:fb:be:0e:c9:48:69:0f:a0: 13:48:bd:ec:db:f2:42:ab:80:80:22:74:c4:7e:5e: 7e:8b:df:46:d7:92:00:aa:87:76:88:2d:0a:1c:5a: 67:8d:b0:f9:02:e0:aa:db:e9:60:40:f7:ee:5b:a6: 6a:f7:78:a2:26:f1:d9:ec:90:8f:87:63:0e:ba:26: 87:dd:d5:d0:78:e1:ed:82:a7:e8:64:90:d9:28:17: ef:cb:b0:b9:c0:c8:02:52:a6:34:00:42:d5:c2:d5: a4:1a:fb:93:9b:3f:8c:8f:8e:02:9b:b7:e1:40:6c: 43:27:cb:10:b6:ee:6e:4a:ec:be:8f:08:18:50:8e: 0e:53:5f:d1:3f:15:06:bc:e7:fc:86:b8:d1:de:7b: cf:39:7b:5c:31:34:fe:6a:f4:04:c1:cd:f1:1b:4c: 32:39:42:06:59:75:02:ab:e7:ec:99:16:61:99:a9: c0:c5:7b:29:06:52:52:7a:08:0b:9f:00:a7:cd:aa: 76:47:5a:bf:29:71:04:ca:13:26:6a:82:5e:12:7a: 46:ca:91:dd:0d:c6:e4:9b:9c:39:28:66:3e:9c:23: c4:48:80:af:b4:42:b4:91:23:4b:59:bd:89:fd:27: c4:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6F:12:52:43:C6:FB:3A:3E:18:37:2F:D7:CA:0F:FC:A5:D4:81:FF:27 X509v3 Authority Key Identifier: keyid:83:AE:F9:31:52:B2:50:8C:BC:80:A3:62:7E:3A:27:E8:7B:CF:DE:CA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D298D/2CB11FCEF1A611EAB95C0E2FC4F9AE02/g675MVKyUIy8gKNifjon6HvP3so.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/g675MVKyUIy8gKNifjon6HvP3so.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D298D/2CB11FCEF1A611EAB95C0E2FC4F9AE02/g675MVKyUIy8gKNifjon6HvP3so.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 76:be:d7:08:50:6a:86:4b:a2:bf:c1:70:87:3f:ef:7d:d4:67: 96:d4:e3:11:c1:09:ab:26:10:9a:a0:61:62:ab:f0:00:fd:bb: 56:9a:ff:d7:2b:ac:40:ea:fd:f5:5a:02:36:b2:cf:da:61:16: 15:a5:01:69:2d:d5:04:95:8a:38:07:d7:ed:f9:c4:b4:3e:47: d1:46:fe:35:f9:58:07:ca:ee:56:db:ff:00:07:16:1b:0a:19: 43:62:06:9c:0c:46:e7:5f:0d:dc:73:5d:eb:7b:3d:18:bd:59: e8:c0:29:ab:e1:57:d6:1e:77:04:82:c3:0d:f9:b8:5b:9a:25: 5b:2a:bf:b7:35:29:d9:07:37:a8:38:e9:27:1e:fb:f9:2e:74: f2:9b:08:2c:ed:d1:0b:38:d4:6f:7d:71:fd:a6:3d:fd:86:0c: ea:9b:99:18:67:bf:f7:61:f1:fa:5f:22:a5:43:67:4d:ab:05: a0:fe:e8:0c:38:10:be:60:62:02:85:6e:5e:21:31:60:af:4d: 8f:b9:5f:51:37:a4:8f:4c:03:e5:2b:71:07:3e:fd:d1:1a:c2: e9:96:45:17:94:3e:4a:bd:08:87:e3:49:dd:7c:8d:bd:f4:3d: d2:cc:9b:a6:63:6c:1b:e8:f2:89:40:f6:4e:ca:b2:ca:96:70: 98:14:92:fc -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB+0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDI5OEQxMTAvBgNVBAUTKDgzQUVGOTMxNTJCMjUwOENCQzgwQTM2MjdFM0EyN0U4 N0JDRkRFQ0EwHhcNMjUwNTMxMjEwNzE4WhcNMjUwNjA3MjEwNzE4WjAYMRYwFAYD VQQDEw02ODNiNmY4Ni1lMWZlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAouHc4FQNYqpBlw5lDm2EENtxEmsK+74OyUhpD6ATSL3s2/JCq4CAInTEfl5+ i99G15IAqod2iC0KHFpnjbD5AuCq2+lgQPfuW6Zq93iiJvHZ7JCPh2MOuiaH3dXQ eOHtgqfoZJDZKBfvy7C5wMgCUqY0AELVwtWkGvuTmz+Mj44Cm7fhQGxDJ8sQtu5u Suy+jwgYUI4OU1/RPxUGvOf8hrjR3nvPOXtcMTT+avQEwc3xG0wyOUIGWXUCq+fs mRZhmanAxXspBlJSeggLnwCnzap2R1q/KXEEyhMmaoJeEnpGypHdDcbkm5w5KGY+ nCPESICvtEK0kSNLWb2J/SfEFQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFG8SUkPG +zo+GDcv18oP/KXUgf8nMB8GA1UdIwQYMBaAFIOu+TFSslCMvICjYn46J+h7z97K MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMjk4RC8yQ0IxMUZDRUYx QTYxMUVBQjk1QzBFMkZDNEY5QUUwMi9nNjc1TVZLeVVJeThnS05pZmpvbjZIdlAz c28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2c2NzVNVkt5VUl5OGdLTmlmam9uNkh2UDNzby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE Mjk4RC8yQ0IxMUZDRUYxQTYxMUVBQjk1QzBFMkZDNEY5QUUwMi9nNjc1TVZLeVVJ eThnS05pZmpvbjZIdlAzc28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB2vtcIUGqGS6K/wXCHP+991GeW1OMRwQmrJhCaoGFiq/AA/btWmv/X K6xA6v31WgI2ss/aYRYVpQFpLdUElYo4B9ft+cS0PkfRRv41+VgHyu5W2/8ABxYb ChlDYgacDEbnXw3cc13rez0YvVnowCmr4VfWHncEgsMN+bhbmiVbKr+3NSnZBzeo OOknHvv5LnTymwgs7dELONRvfXH9pj39hgzqm5kYZ7/3YfH6XyKlQ2dNqwWg/ugM OBC+YGIChW5eITFgr02PuV9RN6SPTAPlK3EHPv3RGsLplkUXlD5KvQiH40ndfI29 9D3SzJumY2wb6PKJQPZOyrLKlnCYFJL8 -----END CERTIFICATE-----Generated at Mon Jun 2 19:36:30 2025 by rpki-client