$ rpki-client -vvf rpki.apnic.net/member_repository/A91E5C49/8A87EFC21A4811EB8F143246C4F9AE02/RBbomFjaZ3sM2jO4ey6Miv0cYHg.mft File: RBbomFjaZ3sM2jO4ey6Miv0cYHg.mft (raw, json) Hash identifier: mTVkMZ5JqtDgbeS5R1njtPSji4uyWmIDtMB7mEC/s4w= Subject key identifier: 6A:53:1A:40:65:7B:3C:05:CA:1D:CB:E5:9F:4B:A0:EC:C3:F8:B1:64 Authority key identifier: 44:16:E8:98:58:DA:67:7B:0C:DA:33:B8:7B:2E:8C:8A:FD:1C:60:78 Certificate issuer: /CN=A91E5C49/serialNumber=4416E89858DA677B0CDA33B87B2E8C8AFD1C6078 Certificate serial: 076F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RBbomFjaZ3sM2jO4ey6Miv0cYHg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E5C49/8A87EFC21A4811EB8F143246C4F9AE02/RBbomFjaZ3sM2jO4ey6Miv0cYHg.mft Manifest number: 0ED0 Signing time: Fri 30 May 2025 21:46:18 +0000 Manifest this update: Fri 30 May 2025 21:46:17 +0000 Manifest next update: Fri 06 Jun 2025 21:46:17 +0000 Files and hashes: 1: RBbomFjaZ3sM2jO4ey6Miv0cYHg.crl (hash: 9DLoYtLgjvn1fv4QXbm+11QucOCMfYUE1ctCo0svNuU=) 2: 84FDF25A396711ED8AF52966C4F9AE02.roa (hash: hkxmNGokisQG0mbBKypviapB/RNUZ9nsMjdRwBRak9A=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E5C49/8A87EFC21A4811EB8F143246C4F9AE02/RBbomFjaZ3sM2jO4ey6Miv0cYHg.crl rsync://rpki.apnic.net/member_repository/A91E5C49/8A87EFC21A4811EB8F143246C4F9AE02/RBbomFjaZ3sM2jO4ey6Miv0cYHg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RBbomFjaZ3sM2jO4ey6Miv0cYHg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 21:46:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1903 (0x76f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5C49, serialNumber=4416E89858DA677B0CDA33B87B2E8C8AFD1C6078 Validity Not Before: May 30 21:46:17 2025 GMT Not After : Jun 6 21:46:17 2025 GMT Subject: CN=683a272a-6968 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:8d:33:50:b5:16:3e:9d:39:e6:2c:89:58:1b: 28:d8:56:29:fe:c7:f0:c4:10:0a:60:d8:62:16:c0: 56:12:4b:42:98:ac:a7:03:62:ad:4b:f1:52:73:31: 3d:f6:48:45:00:d2:2d:45:cb:73:a8:d8:53:4c:83: 90:cd:30:95:ee:7e:9f:c1:d2:c0:7c:f7:4d:c1:b1: 15:81:ea:d4:22:d2:74:82:a7:49:1e:b7:bf:71:30: 6a:04:d8:6d:bc:1f:6d:1d:41:e3:5b:b7:91:a4:9d: 59:bc:ac:b6:ab:93:41:08:6d:52:92:0e:5a:46:e9: 90:4f:db:15:d3:26:58:09:94:3d:4a:84:89:90:f6: 99:d8:80:96:5c:8a:8f:9a:5d:a6:fd:4a:17:d4:ba: d3:7c:68:e1:de:66:cf:fb:da:57:93:0b:09:65:2c: 64:7c:98:b2:94:bb:af:8f:27:cd:e9:d7:eb:ce:dd: da:1b:d3:40:48:9b:a6:63:93:e3:0a:ec:86:42:69: 2e:c1:43:92:3f:44:fa:da:f6:7d:fc:ce:ff:a3:26: 3f:67:0c:af:f1:f6:14:24:8c:45:48:52:6e:16:98: 1c:7e:78:6b:c7:2a:44:a9:a5:0f:30:33:3c:c7:3e: 40:8e:88:2c:44:b8:d0:d6:7b:85:c3:c5:74:68:c7: 67:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6A:53:1A:40:65:7B:3C:05:CA:1D:CB:E5:9F:4B:A0:EC:C3:F8:B1:64 X509v3 Authority Key Identifier: keyid:44:16:E8:98:58:DA:67:7B:0C:DA:33:B8:7B:2E:8C:8A:FD:1C:60:78 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E5C49/8A87EFC21A4811EB8F143246C4F9AE02/RBbomFjaZ3sM2jO4ey6Miv0cYHg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RBbomFjaZ3sM2jO4ey6Miv0cYHg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E5C49/8A87EFC21A4811EB8F143246C4F9AE02/RBbomFjaZ3sM2jO4ey6Miv0cYHg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 89:bc:46:df:cb:ac:b3:24:36:c4:08:40:14:11:aa:9d:6e:74: 10:6e:05:5e:9a:97:fa:73:43:ad:0d:08:86:73:e7:d2:6b:fa: 2f:88:ca:79:d8:55:82:f1:b6:3e:33:26:b3:76:03:99:e4:97: 90:5f:5f:91:6b:6c:10:f5:cd:e0:4e:ac:dc:54:84:6f:3d:25: a3:43:b5:57:d8:c1:54:ca:9f:b0:13:15:98:81:35:04:26:33: 8b:b9:ec:85:fa:25:4b:13:69:ce:d8:8b:fe:74:db:e7:bc:aa: 4a:49:54:4d:a4:28:bd:fb:55:1e:0a:0b:6d:b7:c6:5e:2c:a0: eb:cd:b3:33:7c:19:48:48:64:a4:8f:02:b4:f9:91:f8:8d:4e: 77:15:1d:59:4d:ed:b1:1b:f0:39:5a:21:34:97:26:df:38:96: 03:c9:dd:84:93:c5:a0:90:df:6b:3f:2a:6f:e7:b0:e8:15:1e: 25:a6:98:fc:02:46:b7:d8:ab:73:b2:67:eb:9d:1f:5d:76:d0: b4:49:9c:7b:a3:ce:5f:bc:f7:8d:30:27:13:0a:c6:77:c9:45: 78:53:d4:fc:f4:d4:4f:0f:92:6a:89:9b:f8:01:ea:f9:5a:29: bb:8f:95:16:41:91:21:1a:a5:1f:67:03:30:67:e6:2d:35:fe: bf:fb:eb:9b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB28wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTVDNDkxMTAvBgNVBAUTKDQ0MTZFODk4NThEQTY3N0IwQ0RBMzNCODdCMkU4QzhB RkQxQzYwNzgwHhcNMjUwNTMwMjE0NjE3WhcNMjUwNjA2MjE0NjE3WjAYMRYwFAYD VQQDEw02ODNhMjcyYS02OTY4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuY0zULUWPp055iyJWBso2FYp/sfwxBAKYNhiFsBWEktCmKynA2KtS/FSczE9 9khFANItRctzqNhTTIOQzTCV7n6fwdLAfPdNwbEVgerUItJ0gqdJHre/cTBqBNht vB9tHUHjW7eRpJ1ZvKy2q5NBCG1Skg5aRumQT9sV0yZYCZQ9SoSJkPaZ2ICWXIqP ml2m/UoX1LrTfGjh3mbP+9pXkwsJZSxkfJiylLuvjyfN6dfrzt3aG9NASJumY5Pj CuyGQmkuwUOSP0T62vZ9/M7/oyY/Zwyv8fYUJIxFSFJuFpgcfnhrxypEqaUPMDM8 xz5AjogsRLjQ1nuFw8V0aMdn6QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGpTGkBl ezwFyh3L5Z9LoOzD+LFkMB8GA1UdIwQYMBaAFEQW6JhY2md7DNozuHsujIr9HGB4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNUM0OS84QTg3RUZDMjFB NDgxMUVCOEYxNDMyNDZDNEY5QUUwMi9SQmJvbUZqYVozc00yak80ZXk2TWl2MGNZ SGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1JCYm9tRmphWjNzTTJqTzRleTZNaXYwY1lIZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NUM0OS84QTg3RUZDMjFBNDgxMUVCOEYxNDMyNDZDNEY5QUUwMi9SQmJvbUZqYVoz c00yak80ZXk2TWl2MGNZSGcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCJvEbfy6yzJDbECEAUEaqdbnQQbgVempf6c0OtDQiGc+fSa/oviMp5 2FWC8bY+MyazdgOZ5JeQX1+Ra2wQ9c3gTqzcVIRvPSWjQ7VX2MFUyp+wExWYgTUE JjOLueyF+iVLE2nO2Iv+dNvnvKpKSVRNpCi9+1UeCgttt8ZeLKDrzbMzfBlISGSk jwK0+ZH4jU53FR1ZTe2xG/A5WiE0lybfOJYDyd2Ek8WgkN9rPypv57DoFR4lppj8 Aka32KtzsmfrnR9ddtC0SZx7o85fvPeNMCcTCsZ3yUV4U9T89NRPD5JqiZv4Aer5 Wim7j5UWQZEhGqUfZwMwZ+YtNf6/++ub -----END CERTIFICATE-----Generated at Sat May 31 14:56:24 2025 by rpki-client