$ rpki-client -vvf rpki.apnic.net/member_repository/A91EA449/401790FC073C11EF8D1DB056C4F9AE02/b2WgySJgsa2iMYeym6w76trAVmE.mft File: b2WgySJgsa2iMYeym6w76trAVmE.mft (raw, json) Hash identifier: pOuLIX5pCVf/nl/FcEjQ7+z7V5WrYsNy5GAPynmZ2As= Subject key identifier: 2A:15:D6:E3:1E:FD:1F:38:47:D5:85:C5:62:7D:34:98:33:1C:73:01 Authority key identifier: 6F:65:A0:C9:22:60:B1:AD:A2:31:87:B2:9B:AC:3B:EA:DA:C0:56:61 Certificate issuer: /CN=A91EA449/serialNumber=6F65A0C92260B1ADA23187B29BAC3BEADAC05661 Certificate serial: DA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b2WgySJgsa2iMYeym6w76trAVmE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EA449/401790FC073C11EF8D1DB056C4F9AE02/b2WgySJgsa2iMYeym6w76trAVmE.mft Manifest number: D4 Signing time: Sat 31 May 2025 05:19:36 +0000 Manifest this update: Sat 31 May 2025 05:19:35 +0000 Manifest next update: Sat 07 Jun 2025 05:19:35 +0000 Files and hashes: 1: b2WgySJgsa2iMYeym6w76trAVmE.crl (hash: zPkUi0wDm1uT4fSkddVEFln18TRMmNIA52wM1nx5Sqk=) 2: 9DE187FA2A8211F08575E277C4F9AE02.roa (hash: 3cMcK2pghckFQx7VXz26rv14j8WSI+XuvOlTpFA3AVU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EA449/401790FC073C11EF8D1DB056C4F9AE02/b2WgySJgsa2iMYeym6w76trAVmE.crl rsync://rpki.apnic.net/member_repository/A91EA449/401790FC073C11EF8D1DB056C4F9AE02/b2WgySJgsa2iMYeym6w76trAVmE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b2WgySJgsa2iMYeym6w76trAVmE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 05:19:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 218 (0xda) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EA449, serialNumber=6F65A0C92260B1ADA23187B29BAC3BEADAC05661 Validity Not Before: May 31 05:19:35 2025 GMT Not After : Jun 7 05:19:35 2025 GMT Subject: CN=683a9167-9064 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:53:63:19:5a:3f:2a:93:63:20:55:ba:24:78: 29:99:42:38:f1:35:a6:03:2d:04:bc:96:ae:b8:3f: 38:3d:4c:07:42:5c:28:02:d7:f3:f1:81:57:81:6b: 7a:4c:b7:35:2a:a1:79:71:ea:c1:19:45:96:eb:2a: 6d:19:31:e5:2c:21:72:6b:19:4a:aa:95:7e:3f:30: 1e:b7:d3:49:fe:d7:80:2d:cb:90:d8:46:78:2e:af: 5e:70:55:8a:84:39:5f:ba:a1:a7:ba:01:ed:89:3e: 1a:40:1d:e0:38:05:f0:c3:2a:35:6c:b0:7b:a4:9e: 2b:c5:7a:62:75:f6:96:3b:0a:ce:39:e0:e0:5e:fb: b8:a6:80:e3:a1:b5:79:ec:6c:3b:07:35:8a:e8:dd: 3f:f2:14:bd:d8:c0:fa:3f:c6:bc:30:85:bc:b1:55: 5f:04:c5:3e:b3:d5:8c:e9:20:8b:ec:2a:a6:31:24: 54:de:4f:68:85:e4:2d:8f:f5:4f:06:61:23:52:66: 3f:76:b1:3a:a7:62:15:65:d6:a5:fa:2d:fd:5f:33: b4:ed:f4:b5:cf:bf:68:94:4e:64:74:a1:39:e5:68: a4:5c:76:7d:ec:85:1a:fb:02:12:98:00:4d:08:06: 14:72:5a:d3:cf:fa:37:02:ec:37:dc:a7:50:de:36: 3b:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2A:15:D6:E3:1E:FD:1F:38:47:D5:85:C5:62:7D:34:98:33:1C:73:01 X509v3 Authority Key Identifier: keyid:6F:65:A0:C9:22:60:B1:AD:A2:31:87:B2:9B:AC:3B:EA:DA:C0:56:61 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EA449/401790FC073C11EF8D1DB056C4F9AE02/b2WgySJgsa2iMYeym6w76trAVmE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b2WgySJgsa2iMYeym6w76trAVmE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EA449/401790FC073C11EF8D1DB056C4F9AE02/b2WgySJgsa2iMYeym6w76trAVmE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0e:d7:c5:d3:de:08:60:37:12:19:f0:19:4a:42:7c:66:3a:ae: e3:ba:9e:af:d5:ae:be:68:8a:b0:a6:d6:60:22:13:ab:d9:64: 54:0e:73:33:f9:be:53:ca:69:e5:0c:1f:0e:32:e1:19:4e:a0: 00:78:0f:0e:5d:bf:fc:1f:b7:0c:04:c3:ec:4b:8f:23:3a:79: 9e:f1:0a:13:69:ac:5c:f8:28:57:13:37:74:7b:66:0c:59:b5: 5e:27:ad:7d:1b:e8:e7:57:8e:b1:ed:97:70:a6:f4:67:a5:54: 72:47:6d:fb:8b:78:2b:0a:e3:a7:29:fc:6a:2e:70:70:6a:de: d3:40:7f:e6:67:be:e2:54:e1:85:c5:ce:bf:1f:d3:fc:e1:e8: a1:d2:44:7a:ba:25:f5:de:0f:17:9f:99:3b:f0:dc:ce:8a:ea: 44:e4:4c:c9:24:0b:b5:05:e5:3e:81:08:d3:ba:9a:0d:60:c1: 5b:08:2b:27:2d:b3:d6:de:25:25:6b:46:5d:d3:34:d8:95:bc: 29:2f:2d:22:8c:20:b9:1b:56:f1:57:ea:84:f8:52:bb:8c:94: 9a:b3:85:b5:da:33:01:4a:20:ab:a5:70:bb:fa:1e:fa:db:a7: 31:e6:2a:fa:be:b1:55:1f:01:e4:d4:84:7b:7e:ed:a9:97:16: 8a:c0:de:82 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICANowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUE0NDkxMTAvBgNVBAUTKDZGNjVBMEM5MjI2MEIxQURBMjMxODdCMjlCQUMzQkVB REFDMDU2NjEwHhcNMjUwNTMxMDUxOTM1WhcNMjUwNjA3MDUxOTM1WjAYMRYwFAYD VQQDEw02ODNhOTE2Ny05MDY0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvVNjGVo/KpNjIFW6JHgpmUI48TWmAy0EvJauuD84PUwHQlwoAtfz8YFXgWt6 TLc1KqF5cerBGUWW6yptGTHlLCFyaxlKqpV+PzAet9NJ/teALcuQ2EZ4Lq9ecFWK hDlfuqGnugHtiT4aQB3gOAXwwyo1bLB7pJ4rxXpidfaWOwrOOeDgXvu4poDjobV5 7Gw7BzWK6N0/8hS92MD6P8a8MIW8sVVfBMU+s9WM6SCL7CqmMSRU3k9oheQtj/VP BmEjUmY/drE6p2IVZdal+i39XzO07fS1z79olE5kdKE55WikXHZ97IUa+wISmABN CAYUclrTz/o3Auw33KdQ3jY7QQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCoV1uMe /R84R9WFxWJ9NJgzHHMBMB8GA1UdIwQYMBaAFG9loMkiYLGtojGHspusO+rawFZh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQTQ0OS80MDE3OTBGQzA3 M0MxMUVGOEQxREIwNTZDNEY5QUUwMi9iMldneVNKZ3NhMmlNWWV5bTZ3NzZ0ckFW bUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2IyV2d5U0pnc2EyaU1ZZXltNnc3NnRyQVZtRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QTQ0OS80MDE3OTBGQzA3M0MxMUVGOEQxREIwNTZDNEY5QUUwMi9iMldneVNKZ3Nh MmlNWWV5bTZ3NzZ0ckFWbUUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAO18XT3ghgNxIZ8BlKQnxmOq7jup6v1a6+aIqwptZgIhOr2WRUDnMz +b5TymnlDB8OMuEZTqAAeA8OXb/8H7cMBMPsS48jOnme8QoTaaxc+ChXEzd0e2YM WbVeJ619G+jnV46x7ZdwpvRnpVRyR237i3grCuOnKfxqLnBwat7TQH/mZ77iVOGF xc6/H9P84eih0kR6uiX13g8Xn5k78NzOiupE5EzJJAu1BeU+gQjTupoNYMFbCCsn LbPW3iUla0Zd0zTYlbwpLy0ijCC5G1bxV+qE+FK7jJSas4W12jMBSiCrpXC7+h76 26cx5ir6vrFVHwHk1IR7fu2plxaKwN6C -----END CERTIFICATE-----Generated at Sat May 31 17:23:42 2025 by rpki-client