$ rpki-client -vvf rpki.apnic.net/member_repository/A91DBE37/6A35E3D0765711EB997DB424C4F9AE02/79cHaffoVdJXok1qHUkDlQqzadM.mft File: 79cHaffoVdJXok1qHUkDlQqzadM.mft (raw, json) Hash identifier: vpLMTycHwmTF/NQh6evA/z/BGbg5ofBH1kC0+XVrqfs= Subject key identifier: CB:AC:4C:F6:25:D6:33:F7:18:C7:BB:31:CE:E5:31:86:38:2F:1F:5B Authority key identifier: EF:D7:07:69:F7:E8:55:D2:57:A2:4D:6A:1D:49:03:95:0A:B3:69:D3 Certificate issuer: /CN=A91DBE37/serialNumber=EFD70769F7E855D257A24D6A1D4903950AB369D3 Certificate serial: 0685 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/79cHaffoVdJXok1qHUkDlQqzadM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DBE37/6A35E3D0765711EB997DB424C4F9AE02/79cHaffoVdJXok1qHUkDlQqzadM.mft Manifest number: 067F Signing time: Fri 30 May 2025 22:29:43 +0000 Manifest this update: Fri 30 May 2025 22:29:42 +0000 Manifest next update: Fri 06 Jun 2025 22:29:42 +0000 Files and hashes: 1: 79cHaffoVdJXok1qHUkDlQqzadM.crl (hash: BwahRyg4Rd8vSjOydSRGofuwdb1WCHFGliJGrDq6v8Q=) 2: 9E924168765811EB9E261F25C4F9AE02.roa (hash: gf+XHv/B7y9fMOtlEsCMLfQ4eU62pqLRv/z7H7sAxg4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DBE37/6A35E3D0765711EB997DB424C4F9AE02/79cHaffoVdJXok1qHUkDlQqzadM.crl rsync://rpki.apnic.net/member_repository/A91DBE37/6A35E3D0765711EB997DB424C4F9AE02/79cHaffoVdJXok1qHUkDlQqzadM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/79cHaffoVdJXok1qHUkDlQqzadM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 22:29:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1669 (0x685) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DBE37, serialNumber=EFD70769F7E855D257A24D6A1D4903950AB369D3 Validity Not Before: May 30 22:29:42 2025 GMT Not After : Jun 6 22:29:42 2025 GMT Subject: CN=683a3157-57dd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:f0:c5:c5:9e:8b:25:0c:c3:e4:b6:8f:52:4d: c9:4a:04:58:ea:73:5d:06:50:d0:0e:6f:89:62:53: 30:72:f3:cf:b4:00:fe:e9:89:5d:2b:b2:a8:5b:df: 4e:9e:4a:7c:96:e8:9b:c4:e9:86:21:6e:1c:73:76: 74:1d:d9:58:7a:c7:25:28:fe:8c:a7:54:32:a2:ce: d0:2e:3d:4d:27:e5:27:cc:19:d7:ff:fa:2c:29:80: 3f:1f:12:22:f8:b6:ed:e6:d4:b8:3b:0e:29:32:35: 79:86:18:54:dd:95:41:52:2b:00:62:76:94:1a:e6: 47:b5:65:8c:92:6f:0a:c2:b2:bd:cf:ab:38:4f:09: 29:44:0a:c0:e4:d2:1f:0f:4a:02:eb:04:c6:20:cc: 3d:77:3c:27:71:c6:ca:6e:74:6c:10:5c:ee:7c:f4: 0d:61:a3:d6:4c:e4:a7:eb:90:a3:2c:7a:41:cd:bc: 78:0b:0d:b1:25:d4:22:8f:82:85:92:e0:49:e3:4e: 76:75:af:b8:c2:42:34:fb:8d:05:44:4d:b2:38:b2: 32:18:2e:45:17:50:64:13:7e:c9:ee:49:c6:2d:07: 08:ce:be:c8:b4:f1:25:8f:e0:14:98:f9:94:36:04: 1b:89:cb:3d:5d:97:ad:7f:b8:82:84:3a:21:91:0d: 20:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CB:AC:4C:F6:25:D6:33:F7:18:C7:BB:31:CE:E5:31:86:38:2F:1F:5B X509v3 Authority Key Identifier: keyid:EF:D7:07:69:F7:E8:55:D2:57:A2:4D:6A:1D:49:03:95:0A:B3:69:D3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DBE37/6A35E3D0765711EB997DB424C4F9AE02/79cHaffoVdJXok1qHUkDlQqzadM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/79cHaffoVdJXok1qHUkDlQqzadM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DBE37/6A35E3D0765711EB997DB424C4F9AE02/79cHaffoVdJXok1qHUkDlQqzadM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b5:18:ee:fa:0e:6c:87:bd:ff:6c:5b:96:73:9c:28:6a:10:49: 54:6e:22:15:46:a8:4a:74:8d:2a:96:d6:ce:e1:2a:94:f0:44: 11:d7:70:11:4b:55:b2:d2:88:a2:79:2d:7b:ec:3d:b7:a7:90: 51:48:0d:64:f4:98:8e:81:b1:22:d7:a9:0b:ef:66:09:41:86: 0e:ec:58:1b:21:d8:6b:7f:c2:b3:6b:a8:4f:a7:62:a7:95:82: 76:08:a5:f4:c1:a0:d2:3a:c3:6c:9c:ad:78:0f:1e:ec:a7:42: 47:ab:55:26:fe:a1:b1:19:c7:92:7c:29:08:67:2e:6b:78:b9: b0:14:aa:83:bc:df:58:5c:13:19:06:f9:4c:93:15:42:d9:41: bd:2a:09:07:ae:6e:63:b0:41:14:16:f7:fb:1f:15:32:39:51: b4:ee:0d:b0:96:08:50:ef:b5:18:ed:41:74:a0:f6:29:3b:4f: d8:71:18:8a:aa:df:4c:fb:da:ee:83:bd:2f:24:d6:d1:84:25: 5d:a4:f8:20:06:f2:16:72:d2:b1:aa:81:e2:7d:33:10:f7:45: 56:55:d9:8f:17:20:57:11:9f:17:93:b7:36:de:29:7a:c9:8e: c6:7b:76:51:4d:1d:f7:da:ce:35:05:c1:f7:d1:d9:80:81:a6: 2d:b1:02:7c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBoUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REJFMzcxMTAvBgNVBAUTKEVGRDcwNzY5RjdFODU1RDI1N0EyNEQ2QTFENDkwMzk1 MEFCMzY5RDMwHhcNMjUwNTMwMjIyOTQyWhcNMjUwNjA2MjIyOTQyWjAYMRYwFAYD VQQDEw02ODNhMzE1Ny01N2RkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv/DFxZ6LJQzD5LaPUk3JSgRY6nNdBlDQDm+JYlMwcvPPtAD+6YldK7KoW99O nkp8luibxOmGIW4cc3Z0HdlYesclKP6Mp1Qyos7QLj1NJ+UnzBnX//osKYA/HxIi +Lbt5tS4Ow4pMjV5hhhU3ZVBUisAYnaUGuZHtWWMkm8KwrK9z6s4TwkpRArA5NIf D0oC6wTGIMw9dzwnccbKbnRsEFzufPQNYaPWTOSn65CjLHpBzbx4Cw2xJdQij4KF kuBJ4052da+4wkI0+40FRE2yOLIyGC5FF1BkE37J7knGLQcIzr7ItPElj+AUmPmU NgQbics9XZetf7iChDohkQ0gxwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMusTPYl 1jP3GMe7Mc7lMYY4Lx9bMB8GA1UdIwQYMBaAFO/XB2n36FXSV6JNah1JA5UKs2nT MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQkUzNy82QTM1RTNEMDc2 NTcxMUVCOTk3REI0MjRDNEY5QUUwMi83OWNIYWZmb1ZkSlhvazFxSFVrRGxRcXph ZE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzc5Y0hhZmZvVmRKWG9rMXFIVWtEbFFxemFkTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QkUzNy82QTM1RTNEMDc2NTcxMUVCOTk3REI0MjRDNEY5QUUwMi83OWNIYWZmb1Zk SlhvazFxSFVrRGxRcXphZE0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC1GO76DmyHvf9sW5ZznChqEElUbiIVRqhKdI0qltbO4SqU8EQR13AR S1Wy0oiieS177D23p5BRSA1k9JiOgbEi16kL72YJQYYO7FgbIdhrf8Kza6hPp2Kn lYJ2CKX0waDSOsNsnK14Dx7sp0JHq1Um/qGxGceSfCkIZy5reLmwFKqDvN9YXBMZ BvlMkxVC2UG9KgkHrm5jsEEUFvf7HxUyOVG07g2wlghQ77UY7UF0oPYpO0/YcRiK qt9M+9rug70vJNbRhCVdpPggBvIWctKxqoHifTMQ90VWVdmPFyBXEZ8Xk7c23il6 yY7Ge3ZRTR332s41BcH30dmAgaYtsQJ8 -----END CERTIFICATE-----Generated at Sat May 31 17:32:51 2025 by rpki-client