$ rpki-client -vvf rpki.apnic.net/member_repository/A91D3603/8C82AC341F6C11EC87580672C4F9AE02/0fGDjm-uASwUWNKgeiJNnhEBJdw.mft File: 0fGDjm-uASwUWNKgeiJNnhEBJdw.mft (raw, json) Hash identifier: uj2mN3QhxvesoM0TppBRKYsaeJqtx3ebKfR6w6v8Vis= Subject key identifier: 74:86:82:7A:47:3E:16:A7:4C:75:5D:70:DE:2C:C5:F5:CA:8E:10:47 Authority key identifier: D1:F1:83:8E:6F:AE:01:2C:14:58:D2:A0:7A:22:4D:9E:11:01:25:DC Certificate issuer: /CN=A91D3603/serialNumber=D1F1838E6FAE012C1458D2A07A224D9E110125DC Certificate serial: 04DB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0fGDjm-uASwUWNKgeiJNnhEBJdw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D3603/8C82AC341F6C11EC87580672C4F9AE02/0fGDjm-uASwUWNKgeiJNnhEBJdw.mft Manifest number: 04D5 Signing time: Fri 30 May 2025 23:59:06 +0000 Manifest this update: Fri 30 May 2025 23:59:06 +0000 Manifest next update: Fri 06 Jun 2025 23:59:06 +0000 Files and hashes: 1: 0fGDjm-uASwUWNKgeiJNnhEBJdw.crl (hash: tHGMd/p2AfMixlO3ReULX0v0jeRlLFGvYOfqrHJ8CHU=) 2: 11F818F81F7311EC9027050AC4F9AE02.roa (hash: PTzWu6eYDTTqoEV88MOR131OkkMKAZ5jVAGwccli/Vg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D3603/8C82AC341F6C11EC87580672C4F9AE02/0fGDjm-uASwUWNKgeiJNnhEBJdw.crl rsync://rpki.apnic.net/member_repository/A91D3603/8C82AC341F6C11EC87580672C4F9AE02/0fGDjm-uASwUWNKgeiJNnhEBJdw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0fGDjm-uASwUWNKgeiJNnhEBJdw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 23:59:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1243 (0x4db) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D3603, serialNumber=D1F1838E6FAE012C1458D2A07A224D9E110125DC Validity Not Before: May 30 23:59:06 2025 GMT Not After : Jun 6 23:59:06 2025 GMT Subject: CN=683a464a-cf21 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:fb:9a:6b:9c:8a:1d:16:14:8b:f9:f9:4a:e3: 1e:60:60:e8:d8:f4:af:b3:df:42:67:17:68:cf:b6: 58:f1:98:30:10:d2:c9:71:1a:76:62:12:36:19:1d: cf:ee:00:7c:18:f3:fa:38:5f:02:de:57:83:96:8e: c6:82:f0:62:1c:9e:93:50:64:83:70:f8:35:9c:c7: 5d:15:1f:2e:76:21:0c:18:d9:7f:96:59:f7:d5:d6: 1f:21:31:ff:e5:07:77:1b:1e:ca:7c:95:e4:23:37: 16:50:ac:55:e7:28:17:7d:ec:bd:e0:7e:f9:de:4d: 5a:3a:7e:b9:35:f6:7b:8e:d8:15:8c:65:a1:d0:00: 9e:99:32:9b:68:8b:83:22:8e:2a:5b:6b:fc:c9:44: 46:26:3e:af:d8:de:0e:7b:bf:79:17:99:14:55:35: 2b:4d:bf:20:48:93:a7:51:80:5c:4c:93:4c:57:1a: bd:cd:09:de:d6:6a:17:60:d2:26:ef:ab:d1:96:19: 5e:25:1f:48:25:0d:f7:bf:9d:3e:20:7d:03:ac:49: 2a:d8:74:12:02:63:ec:bc:ec:95:34:cc:34:42:c6: ae:8f:38:ba:a2:45:6f:f1:e1:34:12:f1:41:8d:52: 9f:b0:97:04:a8:89:ff:de:05:d8:c5:83:8e:11:eb: a8:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 74:86:82:7A:47:3E:16:A7:4C:75:5D:70:DE:2C:C5:F5:CA:8E:10:47 X509v3 Authority Key Identifier: keyid:D1:F1:83:8E:6F:AE:01:2C:14:58:D2:A0:7A:22:4D:9E:11:01:25:DC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D3603/8C82AC341F6C11EC87580672C4F9AE02/0fGDjm-uASwUWNKgeiJNnhEBJdw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0fGDjm-uASwUWNKgeiJNnhEBJdw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D3603/8C82AC341F6C11EC87580672C4F9AE02/0fGDjm-uASwUWNKgeiJNnhEBJdw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9f:81:67:42:c9:be:41:58:6e:30:2a:3e:44:24:82:fc:c8:8a: b1:28:e8:28:99:f8:df:9e:71:8b:9d:81:a7:8e:6a:2e:95:28: de:a0:5b:52:b2:7d:86:87:47:d5:63:fb:9c:7d:96:a4:21:b8: 42:e6:e8:30:77:eb:ba:4d:e5:87:2f:3f:0d:e5:9e:39:12:e8: 03:cd:49:2d:48:59:88:ee:f7:82:ba:4e:58:db:80:3c:1d:44: ac:a2:87:22:67:27:10:08:47:32:dc:2b:e1:50:9c:c7:ac:35: 40:5a:87:56:43:87:f5:fd:6e:0d:29:2f:ca:90:63:c3:ae:3c: 37:1b:fe:85:9d:6b:74:d2:0f:b1:33:a3:2b:13:94:ef:02:6b: a4:1b:a5:ed:40:50:67:8a:10:86:43:dd:2a:48:ae:a5:95:13: 05:e4:4f:16:6d:46:ad:a4:79:6c:c8:89:45:30:f2:58:d9:46: e5:d5:b6:d5:83:aa:da:b3:82:9f:9a:24:87:3a:45:9a:de:37: 54:db:7b:e6:ac:2b:ef:01:a1:75:b7:26:ba:6e:b4:ce:91:06: ba:68:e3:cc:31:a0:1a:79:41:ec:93:a7:21:db:fa:2b:97:49: 0c:fa:7c:eb:3a:aa:0e:58:f6:5b:4c:89:c6:a8:2b:ba:ed:8c: 05:77:54:dd -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBNswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDM2MDMxMTAvBgNVBAUTKEQxRjE4MzhFNkZBRTAxMkMxNDU4RDJBMDdBMjI0RDlF MTEwMTI1REMwHhcNMjUwNTMwMjM1OTA2WhcNMjUwNjA2MjM1OTA2WjAYMRYwFAYD VQQDEw02ODNhNDY0YS1jZjIxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArPuaa5yKHRYUi/n5SuMeYGDo2PSvs99CZxdoz7ZY8ZgwENLJcRp2YhI2GR3P 7gB8GPP6OF8C3leDlo7GgvBiHJ6TUGSDcPg1nMddFR8udiEMGNl/lln31dYfITH/ 5Qd3Gx7KfJXkIzcWUKxV5ygXfey94H753k1aOn65NfZ7jtgVjGWh0ACemTKbaIuD Io4qW2v8yURGJj6v2N4Oe795F5kUVTUrTb8gSJOnUYBcTJNMVxq9zQne1moXYNIm 76vRlhleJR9IJQ33v50+IH0DrEkq2HQSAmPsvOyVNMw0Qsaujzi6okVv8eE0EvFB jVKfsJcEqIn/3gXYxYOOEeuoDQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHSGgnpH PhanTHVdcN4sxfXKjhBHMB8GA1UdIwQYMBaAFNHxg45vrgEsFFjSoHoiTZ4RASXc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMzYwMy84QzgyQUMzNDFG NkMxMUVDODc1ODA2NzJDNEY5QUUwMi8wZkdEam0tdUFTd1VXTktnZWlKTm5oRUJK ZHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzBmR0RqbS11QVN3VVdOS2dlaUpObmhFQkpkdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MzYwMy84QzgyQUMzNDFGNkMxMUVDODc1ODA2NzJDNEY5QUUwMi8wZkdEam0tdUFT d1VXTktnZWlKTm5oRUJKZHcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCfgWdCyb5BWG4wKj5EJIL8yIqxKOgomfjfnnGLnYGnjmoulSjeoFtS sn2Gh0fVY/ucfZakIbhC5ugwd+u6TeWHLz8N5Z45EugDzUktSFmI7veCuk5Y24A8 HUSsoociZycQCEcy3CvhUJzHrDVAWodWQ4f1/W4NKS/KkGPDrjw3G/6FnWt00g+x M6MrE5TvAmukG6XtQFBnihCGQ90qSK6llRMF5E8WbUatpHlsyIlFMPJY2Ubl1bbV g6ras4KfmiSHOkWa3jdU23vmrCvvAaF1tya6brTOkQa6aOPMMaAaeUHsk6ch2/or l0kM+nzrOqoOWPZbTInGqCu67YwFd1Td -----END CERTIFICATE-----Generated at Sat May 31 16:49:05 2025 by rpki-client