$ rpki-client -vvf rpki.apnic.net/member_repository/A91F0AF0/E37629500FFF11E98815AE22C4F9AE02/2b1w53f4Ya5UOFcUjmM1L9qEwHo.mft File: 2b1w53f4Ya5UOFcUjmM1L9qEwHo.mft (raw, json) Hash identifier: xKE9VYLvpW7jqDHgzwJ5B2voxmFNqPedMeTRfZ5gw9Q= Subject key identifier: 37:14:31:59:0E:52:16:78:7A:18:A8:15:60:DD:7A:24:A5:54:28:C7 Authority key identifier: D9:BD:70:E7:77:F8:61:AE:54:38:57:14:8E:63:35:2F:DA:84:C0:7A Certificate issuer: /CN=A91F0AF0/serialNumber=D9BD70E777F861AE543857148E63352FDA84C07A Certificate serial: 0C6C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2b1w53f4Ya5UOFcUjmM1L9qEwHo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F0AF0/E37629500FFF11E98815AE22C4F9AE02/2b1w53f4Ya5UOFcUjmM1L9qEwHo.mft Manifest number: 1D81 Signing time: Fri 30 May 2025 17:27:10 +0000 Manifest this update: Fri 30 May 2025 17:27:09 +0000 Manifest next update: Fri 06 Jun 2025 17:27:09 +0000 Files and hashes: 1: 2b1w53f4Ya5UOFcUjmM1L9qEwHo.crl (hash: 1ug5BQuCcLf2hHtj6qpA36XPpCdWAViOYLKhlmi11u0=) 2: CE3C7EF66FEB11EB91967864C4F9AE02.roa (hash: Ecj4wTVjyUbe05JmkTHE3iJeDcHJFhB138/thNFleyk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F0AF0/E37629500FFF11E98815AE22C4F9AE02/2b1w53f4Ya5UOFcUjmM1L9qEwHo.crl rsync://rpki.apnic.net/member_repository/A91F0AF0/E37629500FFF11E98815AE22C4F9AE02/2b1w53f4Ya5UOFcUjmM1L9qEwHo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2b1w53f4Ya5UOFcUjmM1L9qEwHo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 17:27:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3180 (0xc6c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F0AF0, serialNumber=D9BD70E777F861AE543857148E63352FDA84C07A Validity Not Before: May 30 17:27:09 2025 GMT Not After : Jun 6 17:27:09 2025 GMT Subject: CN=6839ea6d-3c2a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:33:4f:db:b4:fe:6e:94:2d:8f:7d:7e:bf:89: c1:b8:5a:cc:7e:64:5c:32:c8:32:af:5f:bc:9a:60: 08:06:21:ba:65:ba:45:b8:f4:a9:43:37:0e:4b:36: 86:ee:67:7e:4c:a2:10:a1:2f:15:fd:5f:26:2f:4f: 81:57:a3:ed:a4:d0:49:37:63:72:63:37:74:91:70: 06:5c:58:68:df:65:b9:99:d1:85:12:3c:5b:b7:6a: 69:78:ee:23:b2:b2:b5:c0:c3:ee:25:6c:8e:4f:9c: 26:aa:3a:57:89:1a:86:89:53:7d:69:3e:21:2a:94: 0b:a4:a1:6a:3e:44:ca:70:77:a4:60:31:a9:94:55: b9:08:18:be:0b:99:56:9b:88:21:7e:6e:76:7c:ea: 59:4e:25:ae:6b:7b:2f:61:cf:0a:99:48:c2:6a:1e: a1:95:62:67:df:c2:eb:a4:50:05:05:a1:9c:17:45: 27:48:01:d6:b1:48:95:33:e4:fb:9a:d6:bf:23:91: dc:de:ab:ef:e9:91:81:6f:3f:17:8d:90:8a:2b:8d: b7:69:b2:e8:1b:99:06:d7:45:7c:13:c1:79:e7:64: 3a:d6:97:60:40:bf:4a:0b:f3:dc:6d:4a:8b:41:c3: f5:ee:08:54:25:a8:48:70:29:1c:e4:fe:e9:69:c6: 2f:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 37:14:31:59:0E:52:16:78:7A:18:A8:15:60:DD:7A:24:A5:54:28:C7 X509v3 Authority Key Identifier: keyid:D9:BD:70:E7:77:F8:61:AE:54:38:57:14:8E:63:35:2F:DA:84:C0:7A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F0AF0/E37629500FFF11E98815AE22C4F9AE02/2b1w53f4Ya5UOFcUjmM1L9qEwHo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2b1w53f4Ya5UOFcUjmM1L9qEwHo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F0AF0/E37629500FFF11E98815AE22C4F9AE02/2b1w53f4Ya5UOFcUjmM1L9qEwHo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 18:17:46:0d:8a:0e:89:20:e4:8e:f9:5f:b9:f8:49:27:c2:8b: a4:b2:90:95:ba:1c:a3:61:0e:16:72:35:b6:50:99:12:e8:af: c8:5e:18:41:1b:98:f4:01:f5:5b:ba:08:54:de:3e:f7:c1:dc: de:26:b6:24:e7:87:73:36:4b:01:d2:69:55:84:02:cb:dd:4e: 71:5d:98:5f:45:a1:45:87:c2:8b:e4:72:c8:6b:8f:7b:55:b7: c8:c6:cb:88:df:09:0d:4c:95:22:e6:ee:8d:d7:a6:47:65:46: cf:c0:5d:48:a0:fc:65:cd:f5:e8:d8:d4:77:2d:ae:02:2f:b7: b2:94:98:6e:5f:c4:95:24:ce:f5:14:c4:d8:a9:12:c4:a7:d1: 74:7d:61:ed:31:23:97:82:69:cf:bf:49:3b:e9:aa:37:e1:20: 6d:72:40:16:82:39:60:c7:da:a0:78:20:ae:65:cc:4e:ef:24: fd:81:c1:d0:7a:39:bb:69:de:dc:36:bf:32:d4:4d:93:05:21: 22:c6:d6:29:58:50:71:6a:11:f3:5b:3d:f5:c8:04:14:40:4f: b6:e9:64:30:fb:4b:be:b0:aa:6a:10:c4:8b:67:a4:2b:f8:d7: dc:6b:f8:71:07:e1:00:1b:9c:a0:45:72:38:bc:40:9b:79:00: 27:cc:4c:e5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDGwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjBBRjAxMTAvBgNVBAUTKEQ5QkQ3MEU3NzdGODYxQUU1NDM4NTcxNDhFNjMzNTJG REE4NEMwN0EwHhcNMjUwNTMwMTcyNzA5WhcNMjUwNjA2MTcyNzA5WjAYMRYwFAYD VQQDEw02ODM5ZWE2ZC0zYzJhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyTNP27T+bpQtj31+v4nBuFrMfmRcMsgyr1+8mmAIBiG6ZbpFuPSpQzcOSzaG 7md+TKIQoS8V/V8mL0+BV6PtpNBJN2NyYzd0kXAGXFho32W5mdGFEjxbt2ppeO4j srK1wMPuJWyOT5wmqjpXiRqGiVN9aT4hKpQLpKFqPkTKcHekYDGplFW5CBi+C5lW m4ghfm52fOpZTiWua3svYc8KmUjCah6hlWJn38LrpFAFBaGcF0UnSAHWsUiVM+T7 mta/I5Hc3qvv6ZGBbz8XjZCKK423abLoG5kG10V8E8F552Q61pdgQL9KC/PcbUqL QcP17ghUJahIcCkc5P7pacYvGQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDcUMVkO UhZ4ehioFWDdeiSlVCjHMB8GA1UdIwQYMBaAFNm9cOd3+GGuVDhXFI5jNS/ahMB6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMEFGMC9FMzc2Mjk1MDBG RkYxMUU5ODgxNUFFMjJDNEY5QUUwMi8yYjF3NTNmNFlhNVVPRmNVam1NMUw5cUV3 SG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJiMXc1M2Y0WWE1VU9GY1VqbU0xTDlxRXdIby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG MEFGMC9FMzc2Mjk1MDBGRkYxMUU5ODgxNUFFMjJDNEY5QUUwMi8yYjF3NTNmNFlh NVVPRmNVam1NMUw5cUV3SG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAYF0YNig6JIOSO+V+5+EknwoukspCVuhyjYQ4WcjW2UJkS6K/IXhhB G5j0AfVbughU3j73wdzeJrYk54dzNksB0mlVhALL3U5xXZhfRaFFh8KL5HLIa497 VbfIxsuI3wkNTJUi5u6N16ZHZUbPwF1IoPxlzfXo2NR3La4CL7eylJhuX8SVJM71 FMTYqRLEp9F0fWHtMSOXgmnPv0k76ao34SBtckAWgjlgx9qgeCCuZcxO7yT9gcHQ ejm7ad7cNr8y1E2TBSEixtYpWFBxahHzWz31yAQUQE+26WQw+0u+sKpqEMSLZ6Qr +Nfca/hxB+EAG5ygRXI4vECbeQAnzEzl -----END CERTIFICATE-----Generated at Sat May 31 14:53:19 2025 by rpki-client