$ rpki-client -vvf rpki.apnic.net/member_repository/A91E8CB0/3770124E6BC511ED866A7D5EC4F9AE02/r6bXvcN7ZMjxRu6mFzbT1FF4-zc.mft File: r6bXvcN7ZMjxRu6mFzbT1FF4-zc.mft (raw, json) Hash identifier: emXgq71M27R9QGO+/fXL/UeR42299jryx2tY56a1eNA= Subject key identifier: 8C:06:07:0E:40:A6:24:A5:5C:FB:D3:17:3D:FF:7B:F1:21:51:FF:66 Authority key identifier: AF:A6:D7:BD:C3:7B:64:C8:F1:46:EE:A6:17:36:D3:D4:51:78:FB:37 Certificate issuer: /CN=A91E8CB0/serialNumber=AFA6D7BDC37B64C8F146EEA61736D3D45178FB37 Certificate serial: 01DF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r6bXvcN7ZMjxRu6mFzbT1FF4-zc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E8CB0/3770124E6BC511ED866A7D5EC4F9AE02/r6bXvcN7ZMjxRu6mFzbT1FF4-zc.mft Manifest number: 01DA Signing time: Sat 31 May 2025 02:30:12 +0000 Manifest this update: Sat 31 May 2025 02:30:11 +0000 Manifest next update: Sat 07 Jun 2025 02:30:11 +0000 Files and hashes: 1: r6bXvcN7ZMjxRu6mFzbT1FF4-zc.crl (hash: Qq/ERiTtSgeOaDbiEiAkEBEYWWOvtghg8VMIIL0ERwk=) 2: F11BA4EA75B811EDA34F9687C4F9AE02.roa (hash: ZxJWdKT+dhhJyfungVSpx3334JD5sGMO+S5A+zHFl74=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E8CB0/3770124E6BC511ED866A7D5EC4F9AE02/r6bXvcN7ZMjxRu6mFzbT1FF4-zc.crl rsync://rpki.apnic.net/member_repository/A91E8CB0/3770124E6BC511ED866A7D5EC4F9AE02/r6bXvcN7ZMjxRu6mFzbT1FF4-zc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r6bXvcN7ZMjxRu6mFzbT1FF4-zc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 02:30:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 479 (0x1df) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E8CB0, serialNumber=AFA6D7BDC37B64C8F146EEA61736D3D45178FB37 Validity Not Before: May 31 02:30:11 2025 GMT Not After : Jun 7 02:30:11 2025 GMT Subject: CN=683a69b3-d9b0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:b7:b3:66:53:dd:9f:f2:d3:26:70:2d:c7:10: 39:28:e6:a5:cf:65:b7:7e:67:c8:e5:cb:fb:d3:ef: 18:85:c1:13:06:d8:32:fe:3c:a6:bc:5d:da:e9:fd: 34:f7:af:c2:5a:9d:e5:24:4d:b6:e4:5c:d1:14:fb: a0:2a:ae:65:4a:55:bc:3a:c0:46:bf:fe:19:c6:1d: 6c:b6:28:d4:7f:4e:7a:f5:d0:f3:9e:de:e2:f9:45: 25:10:12:7d:c2:2d:20:9d:91:b5:b3:bf:f4:28:a5: ac:fb:9d:0e:aa:e9:79:3a:97:54:ee:a0:67:66:27: 14:c6:27:30:ad:85:47:61:25:a1:b6:e1:56:53:62: 9d:e5:ae:93:57:7b:73:6b:e8:f8:36:ca:0d:1d:29: d6:7a:47:d3:40:a8:b4:c3:82:93:ec:88:1e:f9:51: bb:85:7d:b0:b1:de:bc:f4:34:9d:43:4b:2e:13:38: c4:50:1a:8d:66:15:47:24:40:13:2e:6a:c5:b3:79: c0:41:22:ab:75:e1:1b:2d:51:37:20:69:15:04:a9: 57:11:9f:3a:ba:51:ef:9e:03:e8:a8:52:23:79:02: a2:47:aa:a3:4e:91:37:55:0e:c3:63:1d:6c:6d:f1: 5f:4a:83:c0:54:60:07:5b:ab:2c:8e:81:52:d3:57: 83:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8C:06:07:0E:40:A6:24:A5:5C:FB:D3:17:3D:FF:7B:F1:21:51:FF:66 X509v3 Authority Key Identifier: keyid:AF:A6:D7:BD:C3:7B:64:C8:F1:46:EE:A6:17:36:D3:D4:51:78:FB:37 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E8CB0/3770124E6BC511ED866A7D5EC4F9AE02/r6bXvcN7ZMjxRu6mFzbT1FF4-zc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r6bXvcN7ZMjxRu6mFzbT1FF4-zc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E8CB0/3770124E6BC511ED866A7D5EC4F9AE02/r6bXvcN7ZMjxRu6mFzbT1FF4-zc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9c:b5:14:57:8d:26:0e:69:b6:56:31:c0:79:14:cf:24:0a:2b: 3f:19:b0:2e:c2:9f:e5:31:e1:cc:d2:07:13:98:5a:fe:d9:07: 6a:ba:fa:2f:80:45:a2:26:e3:bd:cb:86:62:02:e5:35:f8:cf: c8:08:e7:66:79:72:52:e0:b9:3e:e2:7a:d0:cd:90:20:df:eb: e0:54:1b:44:fc:58:67:a9:2b:1e:b6:53:e7:4a:bb:6b:fb:1e: 6c:69:36:f8:8b:a9:92:f3:cc:dd:1a:10:38:d3:58:58:c1:14: 13:23:9c:3b:69:48:f9:fe:17:77:b9:94:c2:e4:16:56:9f:8a: b0:71:ff:b4:b8:0c:b2:ab:8f:41:f4:5d:83:e1:b9:a1:52:cc: 26:7c:05:ae:42:8c:8f:6e:7d:aa:f8:c4:37:e4:eb:74:4c:6a: c0:d6:c7:3e:a3:9b:f3:d6:82:9d:4a:39:54:7a:b4:93:10:8c: 5a:08:2f:9d:08:a8:1b:6c:3b:bc:d7:b3:65:c2:ed:62:d0:3c: 3e:6f:8f:7a:d6:41:ea:d4:2f:5a:0a:ad:30:50:26:07:25:8b: c3:21:0c:a4:a9:cb:b8:b8:2a:8e:4e:79:2d:26:f6:bf:9c:8e: 52:74:bb:a1:2e:1d:ad:40:d2:36:a4:fb:08:85:ee:de:01:96: f8:0e:27:9b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAd8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RThDQjAxMTAvBgNVBAUTKEFGQTZEN0JEQzM3QjY0QzhGMTQ2RUVBNjE3MzZEM0Q0 NTE3OEZCMzcwHhcNMjUwNTMxMDIzMDExWhcNMjUwNjA3MDIzMDExWjAYMRYwFAYD VQQDEw02ODNhNjliMy1kOWIwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuLezZlPdn/LTJnAtxxA5KOalz2W3fmfI5cv70+8YhcETBtgy/jymvF3a6f00 96/CWp3lJE225FzRFPugKq5lSlW8OsBGv/4Zxh1stijUf0569dDznt7i+UUlEBJ9 wi0gnZG1s7/0KKWs+50Oqul5OpdU7qBnZicUxicwrYVHYSWhtuFWU2Kd5a6TV3tz a+j4NsoNHSnWekfTQKi0w4KT7Ige+VG7hX2wsd689DSdQ0suEzjEUBqNZhVHJEAT LmrFs3nAQSKrdeEbLVE3IGkVBKlXEZ86ulHvngPoqFIjeQKiR6qjTpE3VQ7DYx1s bfFfSoPAVGAHW6ssjoFS01eDFQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIwGBw5A piSlXPvTFz3/e/EhUf9mMB8GA1UdIwQYMBaAFK+m173De2TI8Ubuphc209RRePs3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFOENCMC8zNzcwMTI0RTZC QzUxMUVEODY2QTdENUVDNEY5QUUwMi9yNmJYdmNON1pNanhSdTZtRnpiVDFGRjQt emMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3I2Ylh2Y043Wk1qeFJ1Nm1GemJUMUZGNC16Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF OENCMC8zNzcwMTI0RTZCQzUxMUVEODY2QTdENUVDNEY5QUUwMi9yNmJYdmNON1pN anhSdTZtRnpiVDFGRjQtemMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCctRRXjSYOabZWMcB5FM8kCis/GbAuwp/lMeHM0gcTmFr+2Qdquvov gEWiJuO9y4ZiAuU1+M/ICOdmeXJS4Lk+4nrQzZAg3+vgVBtE/FhnqSsetlPnSrtr +x5saTb4i6mS88zdGhA401hYwRQTI5w7aUj5/hd3uZTC5BZWn4qwcf+0uAyyq49B 9F2D4bmhUswmfAWuQoyPbn2q+MQ35Ot0TGrA1sc+o5vz1oKdSjlUerSTEIxaCC+d CKgbbDu817Nlwu1i0Dw+b4961kHq1C9aCq0wUCYHJYvDIQykqcu4uCqOTnktJva/ nI5SdLuhLh2tQNI2pPsIhe7eAZb4Dieb -----END CERTIFICATE-----Generated at Sat May 31 16:56:19 2025 by rpki-client