$ rpki-client -vvf rpki.apnic.net/member_repository/A91F6E63/D69CD928E4A411EB8BC5C546C4F9AE02/rbkheCH_vuCW4c7EcJijFFokbqA.mft File: rbkheCH_vuCW4c7EcJijFFokbqA.mft (raw, json) Hash identifier: YF5oN3ftnl0mXrIyYzas8DOi8Anjs4fZst5hIvJozCM= Subject key identifier: C1:5C:1E:7D:CB:8F:17:04:3A:C9:88:CF:EA:21:0F:5D:F7:2E:FB:FA Authority key identifier: AD:B9:21:78:21:FF:BE:E0:96:E1:CE:C4:70:98:A3:14:5A:24:6E:A0 Certificate issuer: /CN=A91F6E63/serialNumber=ADB9217821FFBEE096E1CEC47098A3145A246EA0 Certificate serial: 056E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rbkheCH_vuCW4c7EcJijFFokbqA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F6E63/D69CD928E4A411EB8BC5C546C4F9AE02/rbkheCH_vuCW4c7EcJijFFokbqA.mft Manifest number: 0568 Signing time: Fri 30 May 2025 23:33:36 +0000 Manifest this update: Fri 30 May 2025 23:33:35 +0000 Manifest next update: Fri 06 Jun 2025 23:33:35 +0000 Files and hashes: 1: rbkheCH_vuCW4c7EcJijFFokbqA.crl (hash: NUwISBU3HdFQlxmDPKGsVaOQxtfUQtl2Shz5VnIj674=) 2: 0C0402DEE5CD11EBADAD0E66C4F9AE02.roa (hash: C+71hKrmRR9fYlphYRnTOW1PJp3T8YQjGXM58/kjFCU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F6E63/D69CD928E4A411EB8BC5C546C4F9AE02/rbkheCH_vuCW4c7EcJijFFokbqA.crl rsync://rpki.apnic.net/member_repository/A91F6E63/D69CD928E4A411EB8BC5C546C4F9AE02/rbkheCH_vuCW4c7EcJijFFokbqA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rbkheCH_vuCW4c7EcJijFFokbqA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 23:33:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1390 (0x56e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F6E63, serialNumber=ADB9217821FFBEE096E1CEC47098A3145A246EA0 Validity Not Before: May 30 23:33:35 2025 GMT Not After : Jun 6 23:33:35 2025 GMT Subject: CN=683a4050-9725 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:f7:b9:2b:31:4e:e2:b0:15:0d:40:bb:cb:11: c7:1c:41:52:ee:c8:9e:c6:13:3c:c1:d3:e2:ae:16: 3e:76:f8:7b:9f:2b:1b:e8:54:3d:31:2c:48:4a:a2: 13:ce:bf:4f:35:37:15:f0:5e:0d:e0:ff:a8:0a:12: c3:1b:19:93:9b:17:38:03:f9:7c:84:f3:f4:b4:6c: af:8a:e8:a0:02:0a:32:98:25:5c:a9:7a:c5:72:b3: ec:fb:0d:35:55:08:4b:b3:00:e3:84:60:6d:71:0e: 0b:21:14:0d:72:03:85:66:0b:89:e4:04:41:6a:52: 75:f1:06:ba:36:fe:16:44:fe:ae:4e:7b:43:ec:ee: 5c:16:35:e2:42:37:05:3e:16:ce:bc:bc:09:bf:fb: 6a:00:5d:2d:ad:72:c1:56:f7:eb:66:86:cd:08:8b: 09:11:93:ea:a3:b8:bf:f2:d2:a2:d3:bd:0a:88:78: e9:59:98:a6:7b:b6:a8:3e:c2:30:34:27:44:de:eb: fd:28:70:96:3d:fd:6e:88:2c:41:1d:bb:ab:46:84: 8d:23:09:81:37:5c:eb:99:2a:28:4c:48:65:13:f4: 87:98:8a:ab:e7:de:0c:37:b6:1d:e1:28:44:c2:d2: 6f:a3:02:b9:d6:ab:99:30:83:18:48:f4:bf:5a:79: 9e:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C1:5C:1E:7D:CB:8F:17:04:3A:C9:88:CF:EA:21:0F:5D:F7:2E:FB:FA X509v3 Authority Key Identifier: keyid:AD:B9:21:78:21:FF:BE:E0:96:E1:CE:C4:70:98:A3:14:5A:24:6E:A0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F6E63/D69CD928E4A411EB8BC5C546C4F9AE02/rbkheCH_vuCW4c7EcJijFFokbqA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rbkheCH_vuCW4c7EcJijFFokbqA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F6E63/D69CD928E4A411EB8BC5C546C4F9AE02/rbkheCH_vuCW4c7EcJijFFokbqA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5d:7e:02:09:8d:ce:7c:f5:19:d3:ca:56:bb:e0:d7:c1:c6:0f: cc:96:af:52:05:54:c8:9d:36:92:ff:ca:e9:c7:3d:62:98:f7: 53:3c:ed:7d:7e:05:5e:b9:02:c3:a0:9d:d9:5e:9a:d3:b8:f9: 4c:45:3d:35:7f:f8:8b:9b:13:53:f6:71:da:0c:cc:eb:c1:a0: 86:53:88:7b:27:9a:ad:4c:04:cf:30:f3:b8:96:11:88:64:51: 08:3d:27:23:0d:a9:ff:8a:d8:5b:1c:90:2f:30:03:20:70:a9: 33:26:8f:58:5e:29:99:ef:b7:58:cd:5d:18:1d:8b:c4:cf:08: ab:40:fc:85:df:99:64:30:b5:96:86:ea:8e:b2:20:a8:fc:9c: 2b:5a:49:45:02:a4:26:a8:75:c5:f7:2f:4f:d3:02:a9:6b:a1: 10:5b:85:c8:9e:b0:29:73:1e:90:d4:44:84:d3:03:49:41:46: 6e:a6:18:09:e4:0c:b3:63:fe:96:4a:ad:b0:d4:6b:17:ec:56: a1:ff:7c:f5:77:f1:46:03:70:f0:2b:fc:34:00:67:33:ae:a5: 17:2a:79:4b:e5:f4:d8:b7:74:91:44:41:9f:ba:83:56:ee:9a: 28:cc:7c:8f:56:3a:79:46:22:a9:cf:a5:01:ba:a5:fd:4c:98: 8f:39:cf:e8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBW4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjZFNjMxMTAvBgNVBAUTKEFEQjkyMTc4MjFGRkJFRTA5NkUxQ0VDNDcwOThBMzE0 NUEyNDZFQTAwHhcNMjUwNTMwMjMzMzM1WhcNMjUwNjA2MjMzMzM1WjAYMRYwFAYD VQQDEw02ODNhNDA1MC05NzI1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3ve5KzFO4rAVDUC7yxHHHEFS7siexhM8wdPirhY+dvh7nysb6FQ9MSxISqIT zr9PNTcV8F4N4P+oChLDGxmTmxc4A/l8hPP0tGyviuigAgoymCVcqXrFcrPs+w01 VQhLswDjhGBtcQ4LIRQNcgOFZguJ5ARBalJ18Qa6Nv4WRP6uTntD7O5cFjXiQjcF PhbOvLwJv/tqAF0trXLBVvfrZobNCIsJEZPqo7i/8tKi070KiHjpWZime7aoPsIw NCdE3uv9KHCWPf1uiCxBHburRoSNIwmBN1zrmSooTEhlE/SHmIqr594MN7Yd4ShE wtJvowK51quZMIMYSPS/WnmeSwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMFcHn3L jxcEOsmIz+ohD133Lvv6MB8GA1UdIwQYMBaAFK25IXgh/77gluHOxHCYoxRaJG6g MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNkU2My9ENjlDRDkyOEU0 QTQxMUVCOEJDNUM1NDZDNEY5QUUwMi9yYmtoZUNIX3Z1Q1c0YzdFY0ppakZGb2ti cUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3Jia2hlQ0hfdnVDVzRjN0VjSmlqRkZva2JxQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NkU2My9ENjlDRDkyOEU0QTQxMUVCOEJDNUM1NDZDNEY5QUUwMi9yYmtoZUNIX3Z1 Q1c0YzdFY0ppakZGb2ticUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBdfgIJjc589RnTyla74NfBxg/Mlq9SBVTInTaS/8rpxz1imPdTPO19 fgVeuQLDoJ3ZXprTuPlMRT01f/iLmxNT9nHaDMzrwaCGU4h7J5qtTATPMPO4lhGI ZFEIPScjDan/ithbHJAvMAMgcKkzJo9YXimZ77dYzV0YHYvEzwirQPyF35lkMLWW huqOsiCo/JwrWklFAqQmqHXF9y9P0wKpa6EQW4XInrApcx6Q1ESE0wNJQUZuphgJ 5AyzY/6WSq2w1GsX7Fah/3z1d/FGA3DwK/w0AGczrqUXKnlL5fTYt3SRREGfuoNW 7poozHyPVjp5RiKpz6UBuqX9TJiPOc/o -----END CERTIFICATE-----Generated at Sat May 31 17:37:50 2025 by rpki-client