$ rpki-client -vvf rpki.apnic.net/member_repository/A91F4E89/C533D7242AF411EAA48F1541C4F9AE02/Df2AHulmIu0X31XXqqZMce_5t70.mft File: Df2AHulmIu0X31XXqqZMce_5t70.mft (raw, json) Hash identifier: UjEyHhkcQxtuZPA0WBJRsyYHMuTqOZ+IKeM1thNfcig= Subject key identifier: 64:27:ED:A2:5A:C3:EC:86:5E:E7:C5:03:28:35:C3:C4:54:7A:D8:D8 Authority key identifier: 0D:FD:80:1E:E9:66:22:ED:17:DF:55:D7:AA:A6:4C:71:EF:F9:B7:BD Certificate issuer: /CN=A91F4E89/serialNumber=0DFD801EE96622ED17DF55D7AAA64C71EFF9B7BD Certificate serial: 0B83 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Df2AHulmIu0X31XXqqZMce_5t70.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F4E89/C533D7242AF411EAA48F1541C4F9AE02/Df2AHulmIu0X31XXqqZMce_5t70.mft Manifest number: 0B7D Signing time: Fri 30 May 2025 19:14:22 +0000 Manifest this update: Fri 30 May 2025 19:14:22 +0000 Manifest next update: Fri 06 Jun 2025 19:14:22 +0000 Files and hashes: 1: Df2AHulmIu0X31XXqqZMce_5t70.crl (hash: BtfPHCq9XPTnEgntxn4BvyP0vaIybq1Aug0GkkBbDDg=) 2: 72F52C962AF511EA8C989441C4F9AE02.roa (hash: VUxxRKza4YtkY3CW36/yWhqdjkRvkusFphcVpxC9+Yc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F4E89/C533D7242AF411EAA48F1541C4F9AE02/Df2AHulmIu0X31XXqqZMce_5t70.crl rsync://rpki.apnic.net/member_repository/A91F4E89/C533D7242AF411EAA48F1541C4F9AE02/Df2AHulmIu0X31XXqqZMce_5t70.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Df2AHulmIu0X31XXqqZMce_5t70.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 19:14:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2947 (0xb83) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F4E89, serialNumber=0DFD801EE96622ED17DF55D7AAA64C71EFF9B7BD Validity Not Before: May 30 19:14:22 2025 GMT Not After : Jun 6 19:14:22 2025 GMT Subject: CN=683a038e-26c1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:35:e2:ac:9d:7e:a1:8b:a0:e2:89:3e:27:36: 22:d3:35:10:22:3e:4d:ed:84:97:3c:0f:fe:fb:7f: 34:74:ae:a4:f7:46:17:34:00:c5:e0:72:85:7a:d0: c8:63:20:6a:5b:06:7d:65:cd:08:8c:0f:3d:e1:8d: 5d:c8:22:c1:fb:8c:a3:52:59:98:9a:f6:5b:72:8f: 40:75:64:87:85:ed:bd:58:f4:2f:e8:d1:6c:dd:94: 86:99:c3:c8:5e:22:86:ff:27:97:26:0a:49:4c:a3: c8:12:52:a3:12:23:d6:8c:d1:80:6a:df:48:cf:b0: c0:69:9b:f4:6e:88:40:3d:f4:18:1b:63:d6:eb:37: 5c:23:7a:37:70:17:5c:ae:99:d8:ca:c2:43:87:64: 35:45:d9:01:c4:31:57:25:87:e6:0b:7f:07:3f:84: f3:24:f8:72:44:3f:c3:cd:6a:9d:57:66:bf:52:42: 13:f4:8e:20:17:8c:42:c1:52:47:eb:30:81:77:24: e9:f3:e9:a5:98:be:62:99:c3:05:84:dd:ce:ef:7c: 5e:aa:61:f4:86:58:02:0c:d8:b4:6f:a9:90:2a:e4: 52:d4:c6:d2:c9:37:c6:63:54:35:d3:03:ed:5b:4f: 5b:dd:04:61:65:18:ff:50:7f:cc:f3:0d:71:7d:91: 60:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 64:27:ED:A2:5A:C3:EC:86:5E:E7:C5:03:28:35:C3:C4:54:7A:D8:D8 X509v3 Authority Key Identifier: keyid:0D:FD:80:1E:E9:66:22:ED:17:DF:55:D7:AA:A6:4C:71:EF:F9:B7:BD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F4E89/C533D7242AF411EAA48F1541C4F9AE02/Df2AHulmIu0X31XXqqZMce_5t70.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Df2AHulmIu0X31XXqqZMce_5t70.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F4E89/C533D7242AF411EAA48F1541C4F9AE02/Df2AHulmIu0X31XXqqZMce_5t70.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6f:d5:48:7b:6d:6a:ac:d9:83:cc:54:01:42:5e:64:76:6e:7c: 94:bf:16:5c:5b:fe:a8:3f:96:4f:1b:14:ff:08:c1:5f:1a:c8: 6e:88:b4:f3:61:77:53:74:80:d5:33:e5:42:9e:13:10:fe:7d: 0d:c5:9f:b1:d3:01:06:82:4a:7d:e3:3f:fd:19:2e:29:5d:19: f8:a9:37:f6:18:5e:cf:98:87:fd:7c:b7:7d:c6:3d:9e:dc:1e: 4c:75:00:0b:58:e0:41:10:15:31:72:de:b0:14:86:63:4a:c4: 2b:6b:95:55:c9:27:c6:72:ce:c0:4a:2e:59:b5:2e:97:0f:9b: e7:7b:89:92:68:86:cd:7c:b0:cd:90:c3:95:05:f7:4b:7b:32: 63:ab:04:ff:ce:d3:e9:af:fa:58:25:6e:d9:b5:49:6f:b8:39: e9:5b:30:ea:9d:e0:10:fa:49:bd:c2:1a:00:23:8a:41:7f:ea: 8a:af:ad:7b:f1:0b:ca:3d:8e:4d:5f:0d:df:1d:3c:07:57:b3: 06:e3:43:dc:c6:fc:32:36:2b:df:7c:47:08:53:a9:c3:0d:3b: a9:ac:22:b3:81:47:f8:e1:4c:f1:ad:b6:da:1a:0d:14:e4:09: 53:66:2b:d1:57:b2:da:62:9c:23:59:3a:29:15:e4:e9:7a:e3: 3a:e7:d3:67 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC4MwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjRFODkxMTAvBgNVBAUTKDBERkQ4MDFFRTk2NjIyRUQxN0RGNTVEN0FBQTY0Qzcx RUZGOUI3QkQwHhcNMjUwNTMwMTkxNDIyWhcNMjUwNjA2MTkxNDIyWjAYMRYwFAYD VQQDEw02ODNhMDM4ZS0yNmMxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyTXirJ1+oYug4ok+JzYi0zUQIj5N7YSXPA/++380dK6k90YXNADF4HKFetDI YyBqWwZ9Zc0IjA894Y1dyCLB+4yjUlmYmvZbco9AdWSHhe29WPQv6NFs3ZSGmcPI XiKG/yeXJgpJTKPIElKjEiPWjNGAat9Iz7DAaZv0bohAPfQYG2PW6zdcI3o3cBdc rpnYysJDh2Q1RdkBxDFXJYfmC38HP4TzJPhyRD/DzWqdV2a/UkIT9I4gF4xCwVJH 6zCBdyTp8+mlmL5imcMFhN3O73xeqmH0hlgCDNi0b6mQKuRS1MbSyTfGY1Q10wPt W09b3QRhZRj/UH/M8w1xfZFgowIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGQn7aJa w+yGXufFAyg1w8RUetjYMB8GA1UdIwQYMBaAFA39gB7pZiLtF99V16qmTHHv+be9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNEU4OS9DNTMzRDcyNDJB RjQxMUVBQTQ4RjE1NDFDNEY5QUUwMi9EZjJBSHVsbUl1MFgzMVhYcXFaTWNlXzV0 NzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0RmMkFIdWxtSXUwWDMxWFhxcVpNY2VfNXQ3MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NEU4OS9DNTMzRDcyNDJBRjQxMUVBQTQ4RjE1NDFDNEY5QUUwMi9EZjJBSHVsbUl1 MFgzMVhYcXFaTWNlXzV0NzAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBv1Uh7bWqs2YPMVAFCXmR2bnyUvxZcW/6oP5ZPGxT/CMFfGshuiLTz YXdTdIDVM+VCnhMQ/n0NxZ+x0wEGgkp94z/9GS4pXRn4qTf2GF7PmIf9fLd9xj2e 3B5MdQALWOBBEBUxct6wFIZjSsQra5VVySfGcs7ASi5ZtS6XD5vne4mSaIbNfLDN kMOVBfdLezJjqwT/ztPpr/pYJW7ZtUlvuDnpWzDqneAQ+km9whoAI4pBf+qKr617 8QvKPY5NXw3fHTwHV7MG40PcxvwyNivffEcIU6nDDTuprCKzgUf44UzxrbbaGg0U 5AlTZivRV7LaYpwjWTopFeTpeuM659Nn -----END CERTIFICATE-----Generated at Sat May 31 17:37:49 2025 by rpki-client