$ rpki-client -vvf rpki.apnic.net/member_repository/A91F147C/7E0F587201E911EDAF8BDE30C4F9AE02/7aOF1FcjseHfKXP2K10jovv9JoY.mft File: 7aOF1FcjseHfKXP2K10jovv9JoY.mft (raw, json) Hash identifier: gq4N6w/saUtuMwk0a2tc8ljqOe8ZpGpCCeztNFwiEi4= Subject key identifier: 26:5D:38:51:B3:51:18:75:25:E1:EB:61:00:F8:C7:9D:FE:A8:E6:8E Authority key identifier: ED:A3:85:D4:57:23:B1:E1:DF:29:73:F6:2B:5D:23:A2:FB:FD:26:86 Certificate issuer: /CN=A91F147C/serialNumber=EDA385D45723B1E1DF2973F62B5D23A2FBFD2686 Certificate serial: 02BD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7aOF1FcjseHfKXP2K10jovv9JoY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F147C/7E0F587201E911EDAF8BDE30C4F9AE02/7aOF1FcjseHfKXP2K10jovv9JoY.mft Manifest number: 02AA Signing time: Sat 31 May 2025 01:44:40 +0000 Manifest this update: Sat 31 May 2025 01:44:40 +0000 Manifest next update: Sat 07 Jun 2025 01:44:40 +0000 Files and hashes: 1: 7aOF1FcjseHfKXP2K10jovv9JoY.crl (hash: OEP+vo/Hy1/UVZmMhe/RVchewfXYocpaizr2e7Zj+H8=) 2: E4F8A0BA47ED11EF8A746168C4F9AE02.roa (hash: rCllvSopoGz8aDfU9lvXSKhRHbkj+3Ed22RiWwBDqfc=) 3: F3C5DF2CF03511EF83ECDC30C4F9AE02.roa (hash: bX2GvM4twLrpOhpUXaE3dMjzmYpyVWJx7L0sV9znlKE=) 4: EBF3EF123A2911F09F97AA47C4F9AE02.roa (hash: NHQgyn9MrNq1g/omGCRMq2I0Uiy6dz0ptIaB3+XylPM=) 5: FBE1E73689E311EF9021CE0CC4F9AE02.roa (hash: 455DCGiIcAmYhveApDA31/VkiMOYSAFDxNYnnGbSEJY=) 6: 1C7AC7FE4B0711EFBB12B717C4F9AE02.roa (hash: lOUpDRjlxbgUApviuBIHPbtPtdQ0a+j/Lmf0E0RCirU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F147C/7E0F587201E911EDAF8BDE30C4F9AE02/7aOF1FcjseHfKXP2K10jovv9JoY.crl rsync://rpki.apnic.net/member_repository/A91F147C/7E0F587201E911EDAF8BDE30C4F9AE02/7aOF1FcjseHfKXP2K10jovv9JoY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7aOF1FcjseHfKXP2K10jovv9JoY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 01:44:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 701 (0x2bd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F147C, serialNumber=EDA385D45723B1E1DF2973F62B5D23A2FBFD2686 Validity Not Before: May 31 01:44:40 2025 GMT Not After : Jun 7 01:44:40 2025 GMT Subject: CN=683a5f08-a96c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:0e:65:30:49:c7:2e:60:39:29:a7:a2:79:38: 11:8b:b9:eb:e2:34:53:20:f9:7c:74:c5:0a:7d:f0: 0d:e3:45:9a:2b:80:43:4c:d5:18:25:ef:88:eb:7f: 65:7c:8d:5d:f7:ed:7e:23:65:05:c8:69:44:99:91: bd:21:2f:93:91:88:eb:34:23:8f:69:db:b0:b4:c4: c9:69:eb:bd:c8:c7:e7:31:8d:9c:bc:a6:1f:5f:36: 9d:f2:35:33:1a:43:15:ef:09:59:de:60:93:16:6c: 7e:76:6e:ec:a7:f3:78:41:b8:74:a2:d6:84:b2:39: 10:27:e1:ad:2c:05:cc:ff:03:b8:5f:e8:4d:74:ae: 0a:5f:59:da:2e:4f:2f:1e:95:5e:c7:d3:74:b7:21: 98:97:7f:29:8e:9b:c8:1a:17:a9:98:56:3a:e3:77: be:bb:84:c2:9e:8f:a7:87:34:24:7c:22:4f:4e:47: 67:98:e7:0c:9e:5d:f3:25:a4:db:02:5c:e7:7c:e4: 0b:30:8c:ee:11:78:46:64:2e:a7:82:ea:78:81:f0: b9:fd:29:72:6a:f1:89:d7:5a:f6:82:e3:09:7d:1c: 46:8b:ee:18:03:c8:6c:c5:7c:3b:b2:b7:f2:98:eb: 9d:23:d1:30:9e:12:b1:84:c3:75:24:11:0e:24:ee: bd:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 26:5D:38:51:B3:51:18:75:25:E1:EB:61:00:F8:C7:9D:FE:A8:E6:8E X509v3 Authority Key Identifier: keyid:ED:A3:85:D4:57:23:B1:E1:DF:29:73:F6:2B:5D:23:A2:FB:FD:26:86 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F147C/7E0F587201E911EDAF8BDE30C4F9AE02/7aOF1FcjseHfKXP2K10jovv9JoY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7aOF1FcjseHfKXP2K10jovv9JoY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F147C/7E0F587201E911EDAF8BDE30C4F9AE02/7aOF1FcjseHfKXP2K10jovv9JoY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 33:70:9d:08:25:24:ec:57:ac:09:77:71:99:96:45:fe:c7:86: ae:8d:31:fa:9d:1c:20:ba:05:f5:17:fc:86:a5:9f:a8:1a:37: 29:80:51:37:ac:19:fb:11:cd:46:7a:96:42:42:c2:55:45:c6: 7d:d9:48:cf:ab:8c:71:50:52:8f:44:e3:55:8b:f9:ba:92:61: 82:7a:b3:de:29:c9:89:dd:b9:09:40:61:6f:4d:a2:cc:a4:a6: 0a:70:55:5d:6e:c7:50:b5:a0:da:18:89:e0:5a:5b:b4:ca:21: 87:80:27:78:3d:72:e1:17:39:86:25:9b:d9:e7:fb:8e:65:ed: f5:fb:9a:4d:4d:8a:27:73:72:c5:9e:23:0d:a3:7f:09:36:77: 56:f2:e4:0d:0f:4a:c7:30:fe:78:06:70:9e:75:4d:69:9d:ca: 77:76:40:4c:bc:0a:c7:4b:92:99:74:9a:93:17:be:aa:31:48: b3:c7:74:b2:a9:7a:10:b2:a6:0f:69:8f:82:95:27:d0:4b:08: 8e:28:04:7a:e6:47:34:25:d4:2b:a2:a7:98:e7:5a:6b:2e:3d: 8a:d9:97:b5:47:1f:35:8a:0f:69:1d:f5:e8:2d:35:9c:09:55: 0b:bc:02:12:e0:c4:b1:9b:67:43:bf:2e:79:fd:f5:b4:69:3c: 38:f4:24:e7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAr0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjE0N0MxMTAvBgNVBAUTKEVEQTM4NUQ0NTcyM0IxRTFERjI5NzNGNjJCNUQyM0Ey RkJGRDI2ODYwHhcNMjUwNTMxMDE0NDQwWhcNMjUwNjA3MDE0NDQwWjAYMRYwFAYD VQQDEw02ODNhNWYwOC1hOTZjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvA5lMEnHLmA5KaeieTgRi7nr4jRTIPl8dMUKffAN40WaK4BDTNUYJe+I639l fI1d9+1+I2UFyGlEmZG9IS+TkYjrNCOPaduwtMTJaeu9yMfnMY2cvKYfXzad8jUz GkMV7wlZ3mCTFmx+dm7sp/N4Qbh0otaEsjkQJ+GtLAXM/wO4X+hNdK4KX1naLk8v HpVex9N0tyGYl38pjpvIGhepmFY643e+u4TCno+nhzQkfCJPTkdnmOcMnl3zJaTb AlznfOQLMIzuEXhGZC6ngup4gfC5/SlyavGJ11r2guMJfRxGi+4YA8hsxXw7srfy mOudI9EwnhKxhMN1JBEOJO69pQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCZdOFGz URh1JeHrYQD4x53+qOaOMB8GA1UdIwQYMBaAFO2jhdRXI7Hh3ylz9itdI6L7/SaG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMTQ3Qy83RTBGNTg3MjAx RTkxMUVEQUY4QkRFMzBDNEY5QUUwMi83YU9GMUZjanNlSGZLWFAySzEwam92djlK b1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzdhT0YxRmNqc2VIZktYUDJLMTBqb3Z2OUpvWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG MTQ3Qy83RTBGNTg3MjAxRTkxMUVEQUY4QkRFMzBDNEY5QUUwMi83YU9GMUZjanNl SGZLWFAySzEwam92djlKb1kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAzcJ0IJSTsV6wJd3GZlkX+x4aujTH6nRwgugX1F/yGpZ+oGjcpgFE3 rBn7Ec1GepZCQsJVRcZ92UjPq4xxUFKPRONVi/m6kmGCerPeKcmJ3bkJQGFvTaLM pKYKcFVdbsdQtaDaGIngWlu0yiGHgCd4PXLhFzmGJZvZ5/uOZe31+5pNTYonc3LF niMNo38JNndW8uQND0rHMP54BnCedU1pncp3dkBMvArHS5KZdJqTF76qMUizx3Sy qXoQsqYPaY+ClSfQSwiOKAR65kc0JdQroqeY51prLj2K2Ze1Rx81ig9pHfXoLTWc CVULvAIS4MSxm2dDvy55/fW0aTw49CTn -----END CERTIFICATE-----Generated at Sat May 31 17:48:37 2025 by rpki-client