$ rpki-client -vvf rpki.apnic.net/member_repository/A91E734C/A73235EC73C211EA9D40B885C4F9AE02/bGgIQDgcHvMtPI2786zECCz2pbM.mft File: bGgIQDgcHvMtPI2786zECCz2pbM.mft (raw, json) Hash identifier: npjbB0G3+zD3mE3EsiKN/2Yx8s9TdJHcO080lXhKjF8= Subject key identifier: FC:B0:92:B4:CE:21:6A:C1:DA:AE:1F:7B:B9:C7:54:E9:4A:B5:F7:1F Authority key identifier: 6C:68:08:40:38:1C:1E:F3:2D:3C:8D:BB:F3:AC:C4:08:2C:F6:A5:B3 Certificate issuer: /CN=A91E734C/serialNumber=6C680840381C1EF32D3C8DBBF3ACC4082CF6A5B3 Certificate serial: 0A35 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bGgIQDgcHvMtPI2786zECCz2pbM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E734C/A73235EC73C211EA9D40B885C4F9AE02/bGgIQDgcHvMtPI2786zECCz2pbM.mft Manifest number: 0A17 Signing time: Fri 30 May 2025 20:00:35 +0000 Manifest this update: Fri 30 May 2025 20:00:35 +0000 Manifest next update: Fri 06 Jun 2025 20:00:35 +0000 Files and hashes: 1: bGgIQDgcHvMtPI2786zECCz2pbM.crl (hash: ekcOgR6WlRqtAzhxbdnmISGa6OdXPh8YuNDAahJolVM=) 2: A32546F8A3DB11EA98BC5D48C4F9AE02.roa (hash: G01L1XLnOeHPHEOBsipJ57Qla0AD5wDZb1QdjAc+xSg=) 3: 2131145E9E4C11EABF30421BC4F9AE02.roa (hash: t6ZMY4L5BwCt1IMJhlimNMIeL0Ws6WTTcjT9QCJWlnU=) 4: A3D50B2EA3DB11EA98BC5D48C4F9AE02.roa (hash: ytlftfyFWjiXKIbSy8izVb+CXXbL9qxoIXy1hZ6RR08=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E734C/A73235EC73C211EA9D40B885C4F9AE02/bGgIQDgcHvMtPI2786zECCz2pbM.crl rsync://rpki.apnic.net/member_repository/A91E734C/A73235EC73C211EA9D40B885C4F9AE02/bGgIQDgcHvMtPI2786zECCz2pbM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bGgIQDgcHvMtPI2786zECCz2pbM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 20:00:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2613 (0xa35) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E734C, serialNumber=6C680840381C1EF32D3C8DBBF3ACC4082CF6A5B3 Validity Not Before: May 30 20:00:35 2025 GMT Not After : Jun 6 20:00:35 2025 GMT Subject: CN=683a0e63-6424 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:b7:94:94:bd:f4:d4:48:8c:a5:db:33:13:e5: 5b:e6:b2:83:3d:c6:aa:07:0a:9c:52:4f:69:c8:59: 4b:b9:81:5c:31:9f:e2:38:12:d4:76:22:16:94:58: 2a:8c:33:13:1e:8f:49:5c:c0:9b:7e:64:6a:df:a9: 44:94:4c:5c:fe:e2:db:81:0c:54:fc:f3:80:d8:d9: 79:3b:86:44:e7:49:ef:40:23:59:e9:66:7c:2c:a1: 41:ab:9f:14:ef:6a:4b:ba:dc:19:7f:6d:7b:98:0c: 05:16:10:3b:f2:b8:11:87:00:b3:0c:1d:5c:91:b8: 20:b4:c4:c0:9f:21:ed:1d:8a:c0:7b:90:5a:af:cd: bf:a9:7a:de:f0:36:a0:21:6d:7e:8f:20:44:57:c6: e2:fb:05:80:8a:23:a6:91:de:80:f6:5d:8c:0a:a7: 52:b5:0b:de:ea:1a:be:bd:e9:45:e3:8c:5f:e3:f3: 2a:7d:3b:70:7f:76:0b:e8:60:1a:c1:df:40:f8:dd: fa:58:cb:3e:ae:8e:45:2e:fb:6a:c4:aa:15:02:f5: d5:04:90:06:35:63:87:7b:3b:48:28:e9:9e:b3:e6: 8d:49:1e:7f:6d:33:61:25:47:97:9a:d7:0d:a8:03: dc:bd:96:95:ba:29:f5:92:79:b6:d8:d9:28:c5:b0: 8e:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FC:B0:92:B4:CE:21:6A:C1:DA:AE:1F:7B:B9:C7:54:E9:4A:B5:F7:1F X509v3 Authority Key Identifier: keyid:6C:68:08:40:38:1C:1E:F3:2D:3C:8D:BB:F3:AC:C4:08:2C:F6:A5:B3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E734C/A73235EC73C211EA9D40B885C4F9AE02/bGgIQDgcHvMtPI2786zECCz2pbM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bGgIQDgcHvMtPI2786zECCz2pbM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E734C/A73235EC73C211EA9D40B885C4F9AE02/bGgIQDgcHvMtPI2786zECCz2pbM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 68:06:8c:21:dc:9d:8e:dc:c5:1e:21:16:64:9b:92:3d:ad:20: 34:81:a5:05:dc:e4:13:52:5a:f4:e6:60:6c:fd:33:8b:af:f5: aa:83:6f:c9:27:38:67:1f:9c:8c:97:6a:7f:60:57:cc:ec:96: 76:60:6a:fc:63:63:3d:ec:8b:9b:ab:df:72:ef:c5:28:73:98: 7a:04:b3:58:b9:f1:a4:8f:5d:74:b1:cb:d5:a8:88:8f:56:3b: 39:78:19:71:8f:13:6c:d4:73:5f:11:a0:7c:dd:52:b7:8b:b0: ba:e2:c2:6a:59:e4:ea:a1:09:ac:40:92:37:bf:10:9b:0b:12: 5b:db:ad:b0:22:ba:84:84:82:3c:0d:ed:7d:f8:a3:3d:f1:3f: 8d:5e:ca:ab:ac:09:e8:ef:9f:54:d3:41:68:e7:e9:35:25:74: 59:7d:8d:b7:a3:e1:ae:88:fc:b6:ca:f0:18:93:52:8b:04:17: 14:0c:21:b0:83:e3:37:e6:be:41:03:35:90:24:9f:fd:ca:9f: a4:55:2d:89:d2:19:9f:97:65:b8:1e:e6:98:db:e3:61:16:72: 33:e2:92:0f:2c:3c:8d:a7:75:d7:69:9d:82:b8:55:33:8f:3a: a2:20:ea:48:e0:00:fc:b7:0a:55:35:6c:d1:9a:e7:75:2e:c9: 66:20:ef:02 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCjUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTczNEMxMTAvBgNVBAUTKDZDNjgwODQwMzgxQzFFRjMyRDNDOERCQkYzQUNDNDA4 MkNGNkE1QjMwHhcNMjUwNTMwMjAwMDM1WhcNMjUwNjA2MjAwMDM1WjAYMRYwFAYD VQQDEw02ODNhMGU2My02NDI0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoreUlL301EiMpdszE+Vb5rKDPcaqBwqcUk9pyFlLuYFcMZ/iOBLUdiIWlFgq jDMTHo9JXMCbfmRq36lElExc/uLbgQxU/POA2Nl5O4ZE50nvQCNZ6WZ8LKFBq58U 72pLutwZf217mAwFFhA78rgRhwCzDB1ckbggtMTAnyHtHYrAe5Bar82/qXre8Dag IW1+jyBEV8bi+wWAiiOmkd6A9l2MCqdStQve6hq+velF44xf4/MqfTtwf3YL6GAa wd9A+N36WMs+ro5FLvtqxKoVAvXVBJAGNWOHeztIKOmes+aNSR5/bTNhJUeXmtcN qAPcvZaVuin1knm22NkoxbCOZwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPywkrTO IWrB2q4fe7nHVOlKtfcfMB8GA1UdIwQYMBaAFGxoCEA4HB7zLTyNu/OsxAgs9qWz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNzM0Qy9BNzMyMzVFQzcz QzIxMUVBOUQ0MEI4ODVDNEY5QUUwMi9iR2dJUURnY0h2TXRQSTI3ODZ6RUNDejJw Yk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JHZ0lRRGdjSHZNdFBJMjc4NnpFQ0N6MnBiTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NzM0Qy9BNzMyMzVFQzczQzIxMUVBOUQ0MEI4ODVDNEY5QUUwMi9iR2dJUURnY0h2 TXRQSTI3ODZ6RUNDejJwYk0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBoBowh3J2O3MUeIRZkm5I9rSA0gaUF3OQTUlr05mBs/TOLr/Wqg2/J JzhnH5yMl2p/YFfM7JZ2YGr8Y2M97Iubq99y78Uoc5h6BLNYufGkj110scvVqIiP Vjs5eBlxjxNs1HNfEaB83VK3i7C64sJqWeTqoQmsQJI3vxCbCxJb262wIrqEhII8 De19+KM98T+NXsqrrAno759U00Fo5+k1JXRZfY23o+GuiPy2yvAYk1KLBBcUDCGw g+M35r5BAzWQJJ/9yp+kVS2J0hmfl2W4HuaY2+NhFnIz4pIPLDyNp3XXaZ2CuFUz jzqiIOpI4AD8twpVNWzRmud1LslmIO8C -----END CERTIFICATE-----Generated at Sat May 31 16:46:51 2025 by rpki-client