$ rpki-client -vvf rpki.apnic.net/member_repository/A91DBA0F/D90067FE4CD711EAB4555845C4F9AE02/rRapGbMt65RQ0upjx51QMV2RgVU.mft File: rRapGbMt65RQ0upjx51QMV2RgVU.mft (raw, json) Hash identifier: oUvIFnMY1xJBDjTwzDjAog39zV/Zcip5p3uHBW8kxgY= Subject key identifier: 92:4E:FD:74:7C:C9:9D:7B:B8:84:96:CD:A8:85:58:50:B7:56:CF:2C Authority key identifier: AD:16:A9:19:B3:2D:EB:94:50:D2:EA:63:C7:9D:50:31:5D:91:81:55 Certificate issuer: /CN=A91DBA0F/serialNumber=AD16A919B32DEB9450D2EA63C79D50315D918155 Certificate serial: 0AE4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rRapGbMt65RQ0upjx51QMV2RgVU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DBA0F/D90067FE4CD711EAB4555845C4F9AE02/rRapGbMt65RQ0upjx51QMV2RgVU.mft Manifest number: 0AD9 Signing time: Fri 30 May 2025 19:37:53 +0000 Manifest this update: Fri 30 May 2025 19:37:53 +0000 Manifest next update: Fri 06 Jun 2025 19:37:53 +0000 Files and hashes: 1: rRapGbMt65RQ0upjx51QMV2RgVU.crl (hash: pdQeCrXEJzJzKw86F4TT7LT3eUuWqi/MwQD+z5ZZ4U4=) 2: D54C8E6C4DBD11EAAF427F1AC4F9AE02.roa (hash: TavcsNbKSaSDXkcGP72u+jTcP48G3Su8SEY/uwppPwI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DBA0F/D90067FE4CD711EAB4555845C4F9AE02/rRapGbMt65RQ0upjx51QMV2RgVU.crl rsync://rpki.apnic.net/member_repository/A91DBA0F/D90067FE4CD711EAB4555845C4F9AE02/rRapGbMt65RQ0upjx51QMV2RgVU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rRapGbMt65RQ0upjx51QMV2RgVU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 19:37:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2788 (0xae4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DBA0F, serialNumber=AD16A919B32DEB9450D2EA63C79D50315D918155 Validity Not Before: May 30 19:37:53 2025 GMT Not After : Jun 6 19:37:53 2025 GMT Subject: CN=683a0911-f72b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:dc:6e:82:8d:54:de:f0:f1:99:19:b7:46:d2: c3:93:35:c4:8a:07:5f:98:dd:c3:68:b4:e1:e5:09: 29:e6:d9:1c:f6:b1:f4:f0:01:05:21:8b:fd:74:2c: 96:6d:80:17:15:f5:52:d6:08:d8:d9:9f:92:f8:a4: cb:57:e0:a0:6f:44:aa:1b:72:75:3e:b1:cc:a6:53: 17:c1:57:8b:2a:0b:7f:92:7a:b5:5f:29:fb:40:47: 97:da:2a:b1:d7:a3:66:ed:06:d1:f0:be:01:1d:65: 2f:5d:dc:c4:9d:6b:7e:19:57:a8:09:3f:81:58:de: 17:bd:26:9d:d4:f0:f7:b2:40:05:ac:97:1f:a2:d5: 3b:d5:ae:06:cd:88:11:dc:2b:53:38:19:62:f4:4f: 12:41:af:49:be:fc:76:14:2e:66:56:77:f7:7b:ee: e4:d7:6c:b1:b5:b7:e1:4c:f4:6a:9f:dd:39:cc:af: a8:10:7d:30:9b:ac:92:e1:c1:75:c0:a3:e2:dd:ba: f9:ee:c6:2e:1c:3c:13:9d:c7:d1:90:44:04:6d:73: e8:02:d8:4d:6f:6f:25:c8:40:74:8f:8c:60:f1:94: a1:fc:c5:12:30:59:30:38:c9:b4:b1:ae:c8:e6:b6: 89:5b:48:8f:8c:fe:54:22:bf:7e:3e:fd:cf:9a:48: c4:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 92:4E:FD:74:7C:C9:9D:7B:B8:84:96:CD:A8:85:58:50:B7:56:CF:2C X509v3 Authority Key Identifier: keyid:AD:16:A9:19:B3:2D:EB:94:50:D2:EA:63:C7:9D:50:31:5D:91:81:55 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DBA0F/D90067FE4CD711EAB4555845C4F9AE02/rRapGbMt65RQ0upjx51QMV2RgVU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rRapGbMt65RQ0upjx51QMV2RgVU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DBA0F/D90067FE4CD711EAB4555845C4F9AE02/rRapGbMt65RQ0upjx51QMV2RgVU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 82:b6:2a:d4:46:d0:c1:1c:23:dd:c3:e5:64:c8:49:88:db:40: 2e:6d:a3:40:35:cf:a0:45:aa:6e:06:68:7b:51:1e:5c:12:4d: 18:63:13:8f:bf:5f:1b:41:61:c0:1c:03:d0:4d:b0:50:39:49: e2:26:f2:d2:e4:87:d7:d7:2c:ee:9b:6f:07:0f:df:46:2f:da: 9d:55:9f:51:c9:a2:32:62:80:a6:05:6b:f9:f9:d1:55:16:ea: b6:ac:a7:c2:68:f1:da:d7:88:3d:44:86:5c:b9:dc:64:cb:9f: 37:0a:22:7a:1e:4b:8e:a8:22:a8:60:e3:89:af:5b:6d:4c:e0: f5:1f:43:f9:c3:87:50:b6:e0:e6:0c:ff:83:c1:b8:78:de:fd: 1f:13:a7:fc:10:62:11:ec:ec:11:46:73:0b:8a:1b:96:28:b9: c8:60:c9:ae:fb:b9:a0:41:00:ee:42:d4:b9:b6:ca:19:da:ed: db:fd:7a:88:63:72:bf:12:d6:c7:92:7f:12:c9:f7:60:c1:3f: 78:d4:1b:70:1b:60:95:02:8d:c2:ef:1e:c4:64:ad:bf:fe:30: 05:32:b1:b2:2d:18:f7:4d:ff:af:a5:da:c9:7f:6e:43:e7:6b: 63:77:4a:53:db:f6:06:16:90:5f:f4:b1:93:c0:dc:2e:17:5e: f6:24:89:da -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCuQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REJBMEYxMTAvBgNVBAUTKEFEMTZBOTE5QjMyREVCOTQ1MEQyRUE2M0M3OUQ1MDMx NUQ5MTgxNTUwHhcNMjUwNTMwMTkzNzUzWhcNMjUwNjA2MTkzNzUzWjAYMRYwFAYD VQQDEw02ODNhMDkxMS1mNzJiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvtxugo1U3vDxmRm3RtLDkzXEigdfmN3DaLTh5Qkp5tkc9rH08AEFIYv9dCyW bYAXFfVS1gjY2Z+S+KTLV+Cgb0SqG3J1PrHMplMXwVeLKgt/knq1Xyn7QEeX2iqx 16Nm7QbR8L4BHWUvXdzEnWt+GVeoCT+BWN4XvSad1PD3skAFrJcfotU71a4GzYgR 3CtTOBli9E8SQa9Jvvx2FC5mVnf3e+7k12yxtbfhTPRqn905zK+oEH0wm6yS4cF1 wKPi3br57sYuHDwTncfRkEQEbXPoAthNb28lyEB0j4xg8ZSh/MUSMFkwOMm0sa7I 5raJW0iPjP5UIr9+Pv3PmkjEeQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJJO/XR8 yZ17uISWzaiFWFC3Vs8sMB8GA1UdIwQYMBaAFK0WqRmzLeuUUNLqY8edUDFdkYFV MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQkEwRi9EOTAwNjdGRTRD RDcxMUVBQjQ1NTU4NDVDNEY5QUUwMi9yUmFwR2JNdDY1UlEwdXBqeDUxUU1WMlJn VlUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JSYXBHYk10NjVSUTB1cGp4NTFRTVYyUmdWVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QkEwRi9EOTAwNjdGRTRDRDcxMUVBQjQ1NTU4NDVDNEY5QUUwMi9yUmFwR2JNdDY1 UlEwdXBqeDUxUU1WMlJnVlUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCCtirURtDBHCPdw+VkyEmI20AubaNANc+gRapuBmh7UR5cEk0YYxOP v18bQWHAHAPQTbBQOUniJvLS5IfX1yzum28HD99GL9qdVZ9RyaIyYoCmBWv5+dFV Fuq2rKfCaPHa14g9RIZcudxky583CiJ6HkuOqCKoYOOJr1ttTOD1H0P5w4dQtuDm DP+Dwbh43v0fE6f8EGIR7OwRRnMLihuWKLnIYMmu+7mgQQDuQtS5tsoZ2u3b/XqI Y3K/EtbHkn8SyfdgwT941BtwG2CVAo3C7x7EZK2//jAFMrGyLRj3Tf+vpdrJf25D 52tjd0pT2/YGFpBf9LGTwNwuF172JIna -----END CERTIFICATE-----Generated at Sat May 31 17:26:15 2025 by rpki-client