$ rpki-client -vvf rpki.apnic.net/member_repository/A91E8BE3/E6E6BE44BF9C11EF9DA88282C4F9AE02/b9CIejkD49bhe7nP2O8mknC6ywc.mft File: b9CIejkD49bhe7nP2O8mknC6ywc.mft (raw, json) Hash identifier: E5MRt7jmMXNRSQ7Ev3LqiowE1n+wpgzlY4zf2zLQclk= Subject key identifier: 55:58:15:AC:D5:08:01:12:76:38:A6:52:BD:35:72:11:25:82:79:6F Authority key identifier: 6F:D0:88:7A:39:03:E3:D6:E1:7B:B9:CF:D8:EF:26:92:70:BA:CB:07 Certificate issuer: /CN=A91E8BE3/serialNumber=6FD0887A3903E3D6E17BB9CFD8EF269270BACB07 Certificate serial: 60 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/b9CIejkD49bhe7nP2O8mknC6ywc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E8BE3/E6E6BE44BF9C11EF9DA88282C4F9AE02/b9CIejkD49bhe7nP2O8mknC6ywc.mft Manifest number: 5B Signing time: Sun 01 Jun 2025 06:57:06 +0000 Manifest this update: Sun 01 Jun 2025 06:57:05 +0000 Manifest next update: Sun 08 Jun 2025 06:57:05 +0000 Files and hashes: 1: b9CIejkD49bhe7nP2O8mknC6ywc.crl (hash: gCaDTH/rZl0PPcj0sicbOuW1ib+JWxV6FJbujvVGH18=) 2: 3139D35EBFA811EFA9B7DC2AC4F9AE02.roa (hash: gL/pv5Q4H259tRW/M/fWgTAynaK4mXLMVK09D4O3Mmw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E8BE3/E6E6BE44BF9C11EF9DA88282C4F9AE02/b9CIejkD49bhe7nP2O8mknC6ywc.crl rsync://rpki.apnic.net/member_repository/A91E8BE3/E6E6BE44BF9C11EF9DA88282C4F9AE02/b9CIejkD49bhe7nP2O8mknC6ywc.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/b9CIejkD49bhe7nP2O8mknC6ywc.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Jun 2025 06:57:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 96 (0x60) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E8BE3, serialNumber=6FD0887A3903E3D6E17BB9CFD8EF269270BACB07 Validity Not Before: Jun 1 06:57:05 2025 GMT Not After : Jun 8 06:57:05 2025 GMT Subject: CN=683bf9c1-1c55 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:f5:69:cc:a8:86:94:34:65:91:b7:45:a0:12: 76:77:db:d0:12:64:2a:95:35:4d:66:93:71:59:66: 40:cb:3d:57:b9:35:b0:b3:3f:ac:47:83:40:15:67: f0:8e:45:2d:b9:e3:40:6e:d3:80:64:d0:ec:75:9d: 67:5b:cb:6f:f6:d7:78:f6:e8:8a:19:b6:c8:1b:9b: c1:09:44:e8:c2:32:d6:6f:b3:6e:bc:52:70:5b:89: da:71:b2:8c:66:e5:d4:fd:9b:89:c3:df:86:fb:a6: ee:2f:54:56:a7:e8:f4:55:bf:c0:71:40:24:5f:7c: d2:aa:ec:ea:a3:02:e5:46:ca:99:13:0e:4f:8c:6a: 42:10:21:68:ba:94:2e:30:4e:2c:ad:c8:27:6d:30: ed:2a:78:9a:1f:b0:1e:60:ec:e9:fc:b8:ef:22:27: ba:6c:6b:fd:f0:e4:a0:34:47:ac:ce:ea:0e:d6:72: 1a:50:17:58:4e:60:cf:ca:4a:57:5d:aa:16:9f:fe: 36:86:1f:c7:37:b7:29:f7:5d:ac:da:a4:09:ee:50: 6d:62:c1:8a:50:33:24:ed:e1:74:cd:0f:5b:aa:bc: c0:fb:42:9d:e5:79:9c:a6:02:b4:3f:23:fa:78:35: 68:57:48:b8:f7:a8:16:4f:8d:9e:ba:42:db:e6:68: bb:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 55:58:15:AC:D5:08:01:12:76:38:A6:52:BD:35:72:11:25:82:79:6F X509v3 Authority Key Identifier: keyid:6F:D0:88:7A:39:03:E3:D6:E1:7B:B9:CF:D8:EF:26:92:70:BA:CB:07 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E8BE3/E6E6BE44BF9C11EF9DA88282C4F9AE02/b9CIejkD49bhe7nP2O8mknC6ywc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/b9CIejkD49bhe7nP2O8mknC6ywc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E8BE3/E6E6BE44BF9C11EF9DA88282C4F9AE02/b9CIejkD49bhe7nP2O8mknC6ywc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4f:7e:f7:e8:ca:67:79:fb:ae:9c:ce:81:6c:98:75:7e:53:59: a6:f2:a1:76:93:86:f8:6c:24:d9:5c:07:5f:8f:41:6c:61:fb: e6:3a:5e:cd:5e:54:43:4e:57:35:97:1f:ab:13:22:2f:79:df: 9f:69:89:82:c0:5b:e0:9c:ea:a5:79:61:6a:84:3f:18:5d:1c: e7:7d:a0:0f:be:07:f6:a8:07:9a:ec:cb:90:3f:25:25:1d:ba: 09:14:d9:60:55:54:3f:7e:4e:79:47:60:2c:91:bd:b5:cd:f7: 7d:74:7d:52:70:81:92:1f:0a:c4:8c:bf:11:e9:86:66:23:ff: 99:74:cc:40:66:0a:d6:a7:a0:5b:31:e6:55:04:09:84:44:c9: a3:73:ad:db:71:76:1c:7d:04:91:bd:a4:67:38:cc:3e:cf:e5: 22:0b:f0:d4:8b:4e:54:bd:79:e0:92:80:ff:8f:83:1d:74:27: 2c:fd:d3:35:db:07:63:6e:2d:f3:bd:bc:e4:a4:f4:4d:05:9b: 3f:59:54:0d:66:40:ff:60:8b:1a:1b:85:09:05:7b:a1:2d:80: 22:7d:bc:d2:7c:b4:9c:f5:79:8d:c9:8e:41:e9:c5:99:24:0b: 81:4b:e8:34:58:15:bd:69:1b:72:7e:73:8f:c3:af:a3:7b:3f: 0e:fa:e4:f7 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBYDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFF OEJFMzExMC8GA1UEBRMoNkZEMDg4N0EzOTAzRTNENkUxN0JCOUNGRDhFRjI2OTI3 MEJBQ0IwNzAeFw0yNTA2MDEwNjU3MDVaFw0yNTA2MDgwNjU3MDVaMBgxFjAUBgNV BAMTDTY4M2JmOWMxLTFjNTUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDG9WnMqIaUNGWRt0WgEnZ329ASZCqVNU1mk3FZZkDLPVe5NbCzP6xHg0AVZ/CO RS2540Bu04Bk0Ox1nWdby2/213j26IoZtsgbm8EJROjCMtZvs268UnBbidpxsoxm 5dT9m4nD34b7pu4vVFan6PRVv8BxQCRffNKq7OqjAuVGypkTDk+MakIQIWi6lC4w TiytyCdtMO0qeJofsB5g7On8uO8iJ7psa/3w5KA0R6zO6g7WchpQF1hOYM/KSldd qhaf/jaGH8c3tyn3XazapAnuUG1iwYpQMyTt4XTND1uqvMD7Qp3leZymArQ/I/p4 NWhXSLj3qBZPjZ66QtvmaLs9AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUVVgVrNUI ARJ2OKZSvTVyESWCeW8wHwYDVR0jBBgwFoAUb9CIejkD49bhe7nP2O8mknC6ywcw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUU4QkUzL0U2RTZCRTQ0QkY5 QzExRUY5REE4ODI4MkM0RjlBRTAyL2I5Q0llamtENDliaGU3blAyTzhta25DNnl3 Yy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvYjlDSWVqa0Q0OWJoZTduUDJPOG1rbkM2eXdjLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUU4 QkUzL0U2RTZCRTQ0QkY5QzExRUY5REE4ODI4MkM0RjlBRTAyL2I5Q0llamtENDli aGU3blAyTzhta25DNnl3Yy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAE9+9+jKZ3n7rpzOgWyYdX5TWabyoXaThvhsJNlcB1+PQWxh++Y6Xs1e VENOVzWXH6sTIi95359piYLAW+Cc6qV5YWqEPxhdHOd9oA++B/aoB5rsy5A/JSUd ugkU2WBVVD9+TnlHYCyRvbXN9310fVJwgZIfCsSMvxHphmYj/5l0zEBmCtanoFsx 5lUECYREyaNzrdtxdhx9BJG9pGc4zD7P5SIL8NSLTlS9eeCSgP+Pgx10Jyz90zXb B2NuLfO9vOSk9E0Fmz9ZVA1mQP9gixobhQkFe6EtgCJ9vNJ8tJz1eY3JjkHpxZkk C4FL6DRYFb1pG3J+c4/Dr6N7Pw765Pc= -----END CERTIFICATE-----Generated at Mon Jun 2 19:19:24 2025 by rpki-client