$ rpki-client -vvf rpki.apnic.net/member_repository/A91E15EA/F1A7E2F4FB8111EC9C412644C4F9AE02/98erVUq_Hcr4wXnBS8h6vPi3dg4.mft File: 98erVUq_Hcr4wXnBS8h6vPi3dg4.mft (raw, json) Hash identifier: drg2B8w5uHWH88xcietrKBMN3mpfikUCXD+h9v39jlg= Subject key identifier: 21:29:6B:89:9D:67:B8:57:16:B2:A0:B2:B3:7F:82:1F:7C:6B:67:4F Authority key identifier: F7:C7:AB:55:4A:BF:1D:CA:F8:C1:79:C1:4B:C8:7A:BC:F8:B7:76:0E Certificate issuer: /CN=A91E15EA/serialNumber=F7C7AB554ABF1DCAF8C179C14BC87ABCF8B7760E Certificate serial: 02B0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/98erVUq_Hcr4wXnBS8h6vPi3dg4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E15EA/F1A7E2F4FB8111EC9C412644C4F9AE02/98erVUq_Hcr4wXnBS8h6vPi3dg4.mft Manifest number: 02AB Signing time: Thu 05 Jun 2025 01:20:36 +0000 Manifest this update: Thu 05 Jun 2025 01:20:36 +0000 Manifest next update: Thu 12 Jun 2025 01:20:36 +0000 Files and hashes: 1: 98erVUq_Hcr4wXnBS8h6vPi3dg4.crl (hash: 7Xf/rYlsJPJX9dJWHf+vRLcZnxpT1uQRozKHKNZeJvE=) 2: A60C101AFB8411ECB7FF456FC4F9AE02.roa (hash: KUkDUfBaYO7x5r7GKr4hhdrUQHUWyKfXeCnKjTowHew=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E15EA/F1A7E2F4FB8111EC9C412644C4F9AE02/98erVUq_Hcr4wXnBS8h6vPi3dg4.crl rsync://rpki.apnic.net/member_repository/A91E15EA/F1A7E2F4FB8111EC9C412644C4F9AE02/98erVUq_Hcr4wXnBS8h6vPi3dg4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/98erVUq_Hcr4wXnBS8h6vPi3dg4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 12 Jun 2025 01:20:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 688 (0x2b0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E15EA, serialNumber=F7C7AB554ABF1DCAF8C179C14BC87ABCF8B7760E Validity Not Before: Jun 5 01:20:36 2025 GMT Not After : Jun 12 01:20:36 2025 GMT Subject: CN=6840f0e4-2182 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:04:4f:90:f6:dc:ee:87:95:13:55:0d:22:71: 8f:b0:46:a6:25:66:49:6f:e8:f0:7d:d3:f2:14:96: 80:de:01:33:cf:79:67:a5:d2:a0:7f:df:0a:f8:b5: c0:b3:c1:12:e0:e3:9b:53:2e:c5:75:99:bd:dd:61: 71:7e:73:58:bc:f6:5e:92:ca:44:d0:ae:fa:22:58: 9b:52:9b:bc:5e:d9:78:3a:f9:df:f7:1d:91:cd:c5: 5b:bd:aa:bd:8b:19:11:f4:5f:87:8b:66:29:72:5c: 47:63:df:71:ca:aa:2d:ae:8a:b5:aa:11:7a:48:b4: db:7f:ca:5b:17:cc:7d:c5:6d:d9:d0:f6:38:cf:d6: 02:ee:d2:6d:47:cc:b5:cf:6c:c3:ea:12:44:62:75: 06:06:e3:0a:85:e8:28:3f:fb:83:91:14:94:1c:bc: 20:98:f2:f0:f5:a7:d4:ee:84:54:f8:08:cf:95:46: f1:72:26:c9:8a:66:58:48:23:78:27:30:97:6b:1a: 43:7e:f1:4f:d8:bb:49:e2:f7:f3:10:e2:f2:d2:85: a6:37:99:a2:6c:ba:c9:04:b0:fa:00:bd:ff:01:d7: 27:e5:a9:4c:f9:03:b2:64:b8:32:c0:5b:0f:0b:05: e8:eb:f9:0a:2c:cd:c5:4b:cb:71:2b:01:7c:31:16: 89:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 21:29:6B:89:9D:67:B8:57:16:B2:A0:B2:B3:7F:82:1F:7C:6B:67:4F X509v3 Authority Key Identifier: keyid:F7:C7:AB:55:4A:BF:1D:CA:F8:C1:79:C1:4B:C8:7A:BC:F8:B7:76:0E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E15EA/F1A7E2F4FB8111EC9C412644C4F9AE02/98erVUq_Hcr4wXnBS8h6vPi3dg4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/98erVUq_Hcr4wXnBS8h6vPi3dg4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E15EA/F1A7E2F4FB8111EC9C412644C4F9AE02/98erVUq_Hcr4wXnBS8h6vPi3dg4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 20:ca:7a:73:2e:f7:ed:49:ad:4e:b8:c7:83:0f:0b:bb:90:22: 6f:39:aa:46:7b:80:53:76:34:6d:e5:b7:34:87:12:14:84:a3: 54:ab:df:ef:b0:8e:95:27:52:58:12:0b:d9:14:1b:b4:19:8f: 6b:53:fa:ab:3b:47:a8:1c:3e:e6:a2:ca:78:ae:d5:68:1e:1d: be:a8:f3:7f:63:07:e5:d0:0c:75:58:73:d4:9d:73:52:73:42: 05:50:48:f6:08:44:71:e2:17:d8:5f:57:40:a7:f3:a5:e3:07: db:b3:47:11:6c:de:43:6b:6b:03:68:a6:5d:29:04:ea:22:d8: 10:b7:bd:04:f1:b4:5d:de:f2:6b:2b:a2:f4:fc:aa:96:28:1a: e1:f4:6d:cd:77:36:25:a1:9f:6c:38:fc:ba:37:78:e6:0f:21: 30:65:63:78:b1:6a:ef:04:a9:4e:18:f9:85:6f:9b:13:03:0c: 21:7c:da:88:68:f7:c2:30:cc:75:46:4c:ac:57:7b:12:98:c8: 03:7e:d9:ea:0b:09:c3:7c:d1:f6:e0:e3:bd:69:5b:5b:47:0f: b4:1c:5e:68:70:24:1d:bf:e9:24:93:2e:82:a1:df:fb:ea:92: e8:88:d1:01:3c:7c:1e:f4:76:9b:1d:6d:39:bb:51:00:5d:7e: b1:59:6e:4b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICArAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTE1RUExMTAvBgNVBAUTKEY3QzdBQjU1NEFCRjFEQ0FGOEMxNzlDMTRCQzg3QUJD RjhCNzc2MEUwHhcNMjUwNjA1MDEyMDM2WhcNMjUwNjEyMDEyMDM2WjAYMRYwFAYD VQQDEw02ODQwZjBlNC0yMTgyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2gRPkPbc7oeVE1UNInGPsEamJWZJb+jwfdPyFJaA3gEzz3lnpdKgf98K+LXA s8ES4OObUy7FdZm93WFxfnNYvPZekspE0K76IlibUpu8Xtl4Ovnf9x2RzcVbvaq9 ixkR9F+Hi2YpclxHY99xyqotroq1qhF6SLTbf8pbF8x9xW3Z0PY4z9YC7tJtR8y1 z2zD6hJEYnUGBuMKhegoP/uDkRSUHLwgmPLw9afU7oRU+AjPlUbxcibJimZYSCN4 JzCXaxpDfvFP2LtJ4vfzEOLy0oWmN5mibLrJBLD6AL3/Adcn5alM+QOyZLgywFsP CwXo6/kKLM3FS8txKwF8MRaJmQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCEpa4md Z7hXFrKgsrN/gh98a2dPMB8GA1UdIwQYMBaAFPfHq1VKvx3K+MF5wUvIerz4t3YO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMTVFQS9GMUE3RTJGNEZC ODExMUVDOUM0MTI2NDRDNEY5QUUwMi85OGVyVlVxX0hjcjR3WG5CUzhoNnZQaTNk ZzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzk4ZXJWVXFfSGNyNHdYbkJTOGg2dlBpM2RnNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MTVFQS9GMUE3RTJGNEZCODExMUVDOUM0MTI2NDRDNEY5QUUwMi85OGVyVlVxX0hj cjR3WG5CUzhoNnZQaTNkZzQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAgynpzLvftSa1OuMeDDwu7kCJvOapGe4BTdjRt5bc0hxIUhKNUq9/v sI6VJ1JYEgvZFBu0GY9rU/qrO0eoHD7mosp4rtVoHh2+qPN/Ywfl0Ax1WHPUnXNS c0IFUEj2CERx4hfYX1dAp/Ol4wfbs0cRbN5Da2sDaKZdKQTqItgQt70E8bRd3vJr K6L0/KqWKBrh9G3NdzYloZ9sOPy6N3jmDyEwZWN4sWrvBKlOGPmFb5sTAwwhfNqI aPfCMMx1RkysV3sSmMgDftnqCwnDfNH24OO9aVtbRw+0HF5ocCQdv+kkky6Cod/7 6pLoiNEBPHwe9HabHW05u1EAXX6xWW5L -----END CERTIFICATE-----Generated at Thu Jun 5 19:51:23 2025 by rpki-client