$ rpki-client -vvf rpki.apnic.net/member_repository/A91ECC24/16C613166AFA11EDB706FF3CC4F9AE02/9JfRcWknbUPFhSFcGYMxwzwiWnU.mft File: 9JfRcWknbUPFhSFcGYMxwzwiWnU.mft (raw, json) Hash identifier: gFFng9GfqTbLFiE9JU3iJuUeFS3SA7dqpL2D2UvWeb0= Subject key identifier: 8A:52:F5:36:77:AD:42:F5:90:04:14:8D:5B:89:8C:99:39:EA:98:06 Authority key identifier: F4:97:D1:71:69:27:6D:43:C5:85:21:5C:19:83:31:C3:3C:22:5A:75 Certificate issuer: /CN=A91ECC24/serialNumber=F497D17169276D43C585215C198331C33C225A75 Certificate serial: 01F2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9JfRcWknbUPFhSFcGYMxwzwiWnU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91ECC24/16C613166AFA11EDB706FF3CC4F9AE02/9JfRcWknbUPFhSFcGYMxwzwiWnU.mft Manifest number: 01E6 Signing time: Sat 31 May 2025 02:29:28 +0000 Manifest this update: Sat 31 May 2025 02:29:27 +0000 Manifest next update: Sat 07 Jun 2025 02:29:27 +0000 Files and hashes: 1: 9JfRcWknbUPFhSFcGYMxwzwiWnU.crl (hash: vDDWK67zaKLWnfnpM9sDa3dBrkkf+dXBK3ao8G2VlpQ=) 2: AC8A59D689D311EE81F03018C4F9AE02.roa (hash: CgMPU2zKmFQv28rwsx7lyUdY/WjeUcfrzEMiRjZzUr8=) 3: B9D8F9CE89D011EEB603FF75C4F9AE02.roa (hash: l/45mJzVlvrXkvMnYsTOqET7KEWpbH/MA+sFMBUmJ+A=) 4: C82A0778680811EE88B5527CC4F9AE02.roa (hash: FMfFksLuvdDh719tgVb78yQXrHhuawjPdGhDWuzq2VE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91ECC24/16C613166AFA11EDB706FF3CC4F9AE02/9JfRcWknbUPFhSFcGYMxwzwiWnU.crl rsync://rpki.apnic.net/member_repository/A91ECC24/16C613166AFA11EDB706FF3CC4F9AE02/9JfRcWknbUPFhSFcGYMxwzwiWnU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9JfRcWknbUPFhSFcGYMxwzwiWnU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 02:29:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 498 (0x1f2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91ECC24, serialNumber=F497D17169276D43C585215C198331C33C225A75 Validity Not Before: May 31 02:29:27 2025 GMT Not After : Jun 7 02:29:27 2025 GMT Subject: CN=683a6987-06ee Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:ce:28:71:f2:27:2c:74:fd:a6:87:27:18:d4: f1:ce:f7:70:73:64:0d:49:fe:b9:d2:89:7f:0a:64: b0:c6:20:0a:17:f9:77:af:fc:5b:62:20:d1:4d:88: f9:be:7e:8e:d7:4e:99:fd:77:f7:b0:8e:76:4b:0f: 3f:d0:8e:ea:e2:6f:91:c7:36:c5:72:74:a2:7f:0f: 01:49:0b:fc:ca:c3:1d:f6:0f:fb:23:56:96:ec:2c: 98:55:f9:8a:38:64:ae:a1:5f:8a:d5:07:76:9c:b0: 66:a4:63:6b:cd:71:0f:b0:0d:77:ad:5d:5b:58:0e: cd:da:1a:e3:57:d4:e4:ca:0b:8f:eb:af:7b:8a:af: a3:67:2c:91:f8:40:cd:8a:36:e7:2f:b5:26:7d:9c: 10:80:9d:18:e5:04:8f:30:62:40:0e:a9:f5:aa:ed: 6b:84:8b:46:0b:99:2e:22:df:31:55:60:8a:0a:9e: 9c:00:9c:26:16:25:b0:a3:12:9a:fd:2d:e9:49:5e: 07:34:4d:1e:24:a3:07:8a:3e:08:9d:c9:28:e7:07: ea:cc:b5:53:de:e6:22:9e:40:4f:c4:a0:30:fc:2b: fc:0f:4e:0c:4d:d8:a3:1f:e5:24:ee:12:4d:48:70: 06:cd:9e:c3:8a:cd:ab:57:04:8a:9f:b5:19:bc:2f: d6:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8A:52:F5:36:77:AD:42:F5:90:04:14:8D:5B:89:8C:99:39:EA:98:06 X509v3 Authority Key Identifier: keyid:F4:97:D1:71:69:27:6D:43:C5:85:21:5C:19:83:31:C3:3C:22:5A:75 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91ECC24/16C613166AFA11EDB706FF3CC4F9AE02/9JfRcWknbUPFhSFcGYMxwzwiWnU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9JfRcWknbUPFhSFcGYMxwzwiWnU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91ECC24/16C613166AFA11EDB706FF3CC4F9AE02/9JfRcWknbUPFhSFcGYMxwzwiWnU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 56:4a:06:a9:c6:0b:22:fd:d7:dd:ee:e5:63:dd:ba:ea:35:ee: a2:7d:e3:1a:0c:36:b0:0a:62:f8:53:e7:29:ab:60:0b:6b:fa: 3f:ae:9f:d3:db:45:0e:c7:13:6d:d7:c5:6c:67:69:e4:8c:01: dd:d0:ce:20:94:8b:aa:77:79:2e:8f:47:a2:8b:cc:5e:a6:34: 64:18:5c:5c:1c:be:d3:08:6b:42:06:67:9c:67:1b:07:4d:aa: 3a:45:f6:62:f9:50:73:ec:aa:c9:81:28:c3:4f:2c:84:61:f1: 0c:4d:bf:52:ec:59:3a:32:68:5c:15:2b:5b:d4:33:3a:8e:61: 0a:ce:b6:21:5d:19:92:bb:61:b5:43:95:9a:ae:f2:85:e3:b4: 4a:86:1b:75:5d:ee:2f:c8:6f:78:4e:8f:78:a2:75:d6:8e:17: 8d:9a:39:7c:1a:ce:9e:42:d0:77:a6:a5:58:04:44:64:be:57: 72:c3:dc:64:32:c7:ac:ed:7a:30:a6:8f:fb:4b:db:6e:75:e5: 26:63:19:ce:38:c3:a0:63:ba:0c:2c:14:f9:4e:75:09:f9:2d: 59:01:fd:b5:b8:b0:86:7f:1a:a5:be:aa:e6:50:81:1d:f7:00: 20:f2:57:b0:7e:62:08:80:8f:4d:31:c5:d7:c4:3a:96:2d:f8: b3:e5:bf:c5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAfIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUNDMjQxMTAvBgNVBAUTKEY0OTdEMTcxNjkyNzZENDNDNTg1MjE1QzE5ODMzMUMz M0MyMjVBNzUwHhcNMjUwNTMxMDIyOTI3WhcNMjUwNjA3MDIyOTI3WjAYMRYwFAYD VQQDEw02ODNhNjk4Ny0wNmVlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxs4ocfInLHT9pocnGNTxzvdwc2QNSf650ol/CmSwxiAKF/l3r/xbYiDRTYj5 vn6O106Z/Xf3sI52Sw8/0I7q4m+RxzbFcnSifw8BSQv8ysMd9g/7I1aW7CyYVfmK OGSuoV+K1Qd2nLBmpGNrzXEPsA13rV1bWA7N2hrjV9TkyguP6697iq+jZyyR+EDN ijbnL7UmfZwQgJ0Y5QSPMGJADqn1qu1rhItGC5kuIt8xVWCKCp6cAJwmFiWwoxKa /S3pSV4HNE0eJKMHij4Incko5wfqzLVT3uYinkBPxKAw/Cv8D04MTdijH+Uk7hJN SHAGzZ7Dis2rVwSKn7UZvC/W2QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIpS9TZ3 rUL1kAQUjVuJjJk56pgGMB8GA1UdIwQYMBaAFPSX0XFpJ21DxYUhXBmDMcM8Ilp1 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQ0MyNC8xNkM2MTMxNjZB RkExMUVEQjcwNkZGM0NDNEY5QUUwMi85SmZSY1drbmJVUEZoU0ZjR1lNeHd6d2lX blUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzlKZlJjV2tuYlVQRmhTRmNHWU14d3p3aVduVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF Q0MyNC8xNkM2MTMxNjZBRkExMUVEQjcwNkZGM0NDNEY5QUUwMi85SmZSY1drbmJV UEZoU0ZjR1lNeHd6d2lXblUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBWSgapxgsi/dfd7uVj3brqNe6ifeMaDDawCmL4U+cpq2ALa/o/rp/T 20UOxxNt18VsZ2nkjAHd0M4glIuqd3kuj0eii8xepjRkGFxcHL7TCGtCBmecZxsH Tao6RfZi+VBz7KrJgSjDTyyEYfEMTb9S7Fk6MmhcFStb1DM6jmEKzrYhXRmSu2G1 Q5WarvKF47RKhht1Xe4vyG94To94onXWjheNmjl8Gs6eQtB3pqVYBERkvldyw9xk Mses7Xowpo/7S9tudeUmYxnOOMOgY7oMLBT5TnUJ+S1ZAf21uLCGfxqlvqrmUIEd 9wAg8lewfmIIgI9NMcXXxDqWLfiz5b/F -----END CERTIFICATE-----Generated at Sat May 31 16:38:06 2025 by rpki-client