$ rpki-client -vvf rpki.apnic.net/member_repository/A91E9D1A/C59B02DA1D7011E286F147B508B02CD2/CXb8PSMYbUjGcXc3QIkc9U4xuA4.mft File: CXb8PSMYbUjGcXc3QIkc9U4xuA4.mft (raw, json) Hash identifier: AUxCgRG83VgUKzsrMZQzlmwXw/H04lhCuoF7T4s/G2Y= Subject key identifier: D2:F2:6A:80:A0:90:52:AD:B1:C8:B2:E6:5F:D1:DD:E4:BB:E2:22:68 Authority key identifier: 09:76:FC:3D:23:18:6D:48:C6:71:77:37:40:89:1C:F5:4E:31:B8:0E Certificate issuer: /CN=A91E9D1A/serialNumber=0976FC3D23186D48C671773740891CF54E31B80E Certificate serial: 34C8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CXb8PSMYbUjGcXc3QIkc9U4xuA4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E9D1A/C59B02DA1D7011E286F147B508B02CD2/CXb8PSMYbUjGcXc3QIkc9U4xuA4.mft Manifest number: 34A8 Signing time: Sat 31 May 2025 14:19:26 +0000 Manifest this update: Sat 31 May 2025 14:19:25 +0000 Manifest next update: Sat 07 Jun 2025 14:19:25 +0000 Files and hashes: 1: CXb8PSMYbUjGcXc3QIkc9U4xuA4.crl (hash: jzVau5HzW+BrNn7BR+/AYyTDFZU6CG7kZ1pZN1d9Jkw=) 2: 81C9B5A4BBFA11ED99272016C4F9AE02.roa (hash: 5TYvs++Mvewysf2Y0/6vpFA2+467A8J4q0CP6JqLCQs=) 3: E404430CB0F811E595E0F761C4F9AE02.roa (hash: aPLpTjVx3H8dG+sQrN1VcBaFu+dKTfAESi5mspAt7yo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E9D1A/C59B02DA1D7011E286F147B508B02CD2/CXb8PSMYbUjGcXc3QIkc9U4xuA4.crl rsync://rpki.apnic.net/member_repository/A91E9D1A/C59B02DA1D7011E286F147B508B02CD2/CXb8PSMYbUjGcXc3QIkc9U4xuA4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CXb8PSMYbUjGcXc3QIkc9U4xuA4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 14:18:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13512 (0x34c8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E9D1A, serialNumber=0976FC3D23186D48C671773740891CF54E31B80E Validity Not Before: May 31 14:19:25 2025 GMT Not After : Jun 7 14:19:25 2025 GMT Subject: CN=683b0fee-41b5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:9e:f3:c5:c3:0b:29:a2:a7:5a:04:77:3f:7e: e1:a9:fe:17:2a:60:37:68:83:ef:92:50:e9:d0:d6: 5d:81:38:f4:70:5d:a3:93:9b:61:ac:f2:9b:63:3c: c3:02:e5:3c:be:08:a7:c4:4e:01:28:65:b7:ec:66: 96:c5:17:42:64:8a:f8:52:c2:f4:94:d4:6f:25:ac: 3d:c8:19:09:cf:53:4a:c0:34:e8:aa:1e:3e:84:6d: f3:be:a5:17:94:22:ac:6d:39:34:cb:83:ed:06:36: 4e:0f:4b:25:af:1a:db:14:9a:bd:35:5f:27:e1:6c: 51:97:e1:df:a5:02:3c:20:af:dc:dd:cf:ba:bc:b5: 14:a9:b6:ab:60:46:30:4a:29:00:59:f6:25:3d:a5: a0:af:da:69:5f:95:0c:a5:7d:1e:87:df:fd:2f:19: 1f:29:d8:88:63:e7:68:2b:6a:ec:56:b3:a3:7e:09: 1a:93:ad:6a:c9:cc:43:a4:a1:63:1a:34:0e:72:18: 42:99:eb:54:77:5c:5e:ee:ca:a5:16:22:e3:74:97: c2:06:cd:61:50:5e:62:34:11:a7:fd:b3:44:67:d6: 14:e5:12:6f:e8:69:35:9e:d6:08:83:a5:05:d1:f5: a5:b5:c0:68:e5:f1:72:e9:ac:6f:4a:9f:44:69:3b: 34:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D2:F2:6A:80:A0:90:52:AD:B1:C8:B2:E6:5F:D1:DD:E4:BB:E2:22:68 X509v3 Authority Key Identifier: keyid:09:76:FC:3D:23:18:6D:48:C6:71:77:37:40:89:1C:F5:4E:31:B8:0E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E9D1A/C59B02DA1D7011E286F147B508B02CD2/CXb8PSMYbUjGcXc3QIkc9U4xuA4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CXb8PSMYbUjGcXc3QIkc9U4xuA4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E9D1A/C59B02DA1D7011E286F147B508B02CD2/CXb8PSMYbUjGcXc3QIkc9U4xuA4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 99:6f:32:e0:47:2b:ae:d6:93:0c:26:66:2e:2c:60:45:22:a2: bb:d4:31:a9:c6:81:5f:08:5f:50:db:f1:76:ca:83:c1:da:74: 50:d2:75:f0:cf:05:2f:de:13:87:02:82:a5:fe:45:c2:d4:ca: e1:e9:ca:02:4b:75:f1:b0:2c:f4:58:2a:36:aa:da:46:10:5e: 74:11:ea:5a:f8:3c:06:eb:e6:4e:48:2b:2f:a7:bf:84:ae:fa: 55:43:a2:db:f2:c7:3e:2d:12:54:38:0d:d8:98:b1:9e:fa:c5: 58:fe:3c:a4:47:45:f7:72:9d:e5:6e:ab:b4:a8:6c:c6:8f:1f: 12:e4:3b:c6:d4:d0:32:a4:cf:65:51:19:24:97:17:72:9f:d1: 84:00:ba:2d:42:f0:c3:c7:10:c6:ee:8e:cb:42:df:26:01:28: d8:6a:74:64:99:65:6e:d6:2d:16:e7:09:0d:59:b0:bf:64:95: db:ac:34:e9:85:3a:d9:29:26:14:8f:41:bb:c4:46:b9:7c:41: 51:67:56:7c:22:9c:47:95:6d:fb:46:2c:9e:51:60:4a:c5:ad: ef:ca:01:45:ff:8d:d2:6c:03:13:97:59:31:91:aa:a0:22:b1: d6:ac:0d:b0:19:c3:e8:83:4e:a4:b0:af:51:76:50:ba:0d:0e: 53:92:07:77 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNMgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTlEMUExMTAvBgNVBAUTKDA5NzZGQzNEMjMxODZENDhDNjcxNzczNzQwODkxQ0Y1 NEUzMUI4MEUwHhcNMjUwNTMxMTQxOTI1WhcNMjUwNjA3MTQxOTI1WjAYMRYwFAYD VQQDEw02ODNiMGZlZS00MWI1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqJ7zxcMLKaKnWgR3P37hqf4XKmA3aIPvklDp0NZdgTj0cF2jk5thrPKbYzzD AuU8vginxE4BKGW37GaWxRdCZIr4UsL0lNRvJaw9yBkJz1NKwDToqh4+hG3zvqUX lCKsbTk0y4PtBjZOD0slrxrbFJq9NV8n4WxRl+HfpQI8IK/c3c+6vLUUqbarYEYw SikAWfYlPaWgr9ppX5UMpX0eh9/9LxkfKdiIY+doK2rsVrOjfgkak61qycxDpKFj GjQOchhCmetUd1xe7sqlFiLjdJfCBs1hUF5iNBGn/bNEZ9YU5RJv6Gk1ntYIg6UF 0fWltcBo5fFy6axvSp9EaTs0rQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNLyaoCg kFKtsciy5l/R3eS74iJoMB8GA1UdIwQYMBaAFAl2/D0jGG1IxnF3N0CJHPVOMbgO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFOUQxQS9DNTlCMDJEQTFE NzAxMUUyODZGMTQ3QjUwOEIwMkNEMi9DWGI4UFNNWWJVakdjWGMzUUlrYzlVNHh1 QTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NYYjhQU01ZYlVqR2NYYzNRSWtjOVU0eHVBNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF OUQxQS9DNTlCMDJEQTFENzAxMUUyODZGMTQ3QjUwOEIwMkNEMi9DWGI4UFNNWWJV akdjWGMzUUlrYzlVNHh1QTQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCZbzLgRyuu1pMMJmYuLGBFIqK71DGpxoFfCF9Q2/F2yoPB2nRQ0nXw zwUv3hOHAoKl/kXC1Mrh6coCS3XxsCz0WCo2qtpGEF50Eepa+DwG6+ZOSCsvp7+E rvpVQ6Lb8sc+LRJUOA3YmLGe+sVY/jykR0X3cp3lbqu0qGzGjx8S5DvG1NAypM9l URkklxdyn9GEALotQvDDxxDG7o7LQt8mASjYanRkmWVu1i0W5wkNWbC/ZJXbrDTp hTrZKSYUj0G7xEa5fEFRZ1Z8IpxHlW37RiyeUWBKxa3vygFF/43SbAMTl1kxkaqg IrHWrA2wGcPog06ksK9RdlC6DQ5Tkgd3 -----END CERTIFICATE-----Generated at Sat May 31 16:28:37 2025 by rpki-client