$ rpki-client -vvf rpki.apnic.net/member_repository/A91F79A2/B8C0B0A026A011EFB9A37E39C4F9AE02/EdT02sf7qLXBIiQwBTm9xhVEXeU.mft File: EdT02sf7qLXBIiQwBTm9xhVEXeU.mft (raw, json) Hash identifier: LQdN8+elkxP2PhB2gryYog0lf7etjsidM9Arb0tQjGk= Subject key identifier: 33:90:DE:C0:3A:0D:96:EB:98:CD:DA:2C:12:D6:45:88:6B:AF:5E:DA Authority key identifier: 11:D4:F4:DA:C7:FB:A8:B5:C1:22:24:30:05:39:BD:C6:15:44:5D:E5 Certificate issuer: /CN=A91F79A2/serialNumber=11D4F4DAC7FBA8B5C12224300539BDC615445DE5 Certificate serial: BC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EdT02sf7qLXBIiQwBTm9xhVEXeU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F79A2/B8C0B0A026A011EFB9A37E39C4F9AE02/EdT02sf7qLXBIiQwBTm9xhVEXeU.mft Manifest number: BB Signing time: Sat 31 May 2025 05:32:22 +0000 Manifest this update: Sat 31 May 2025 05:32:22 +0000 Manifest next update: Sat 07 Jun 2025 05:32:22 +0000 Files and hashes: 1: EdT02sf7qLXBIiQwBTm9xhVEXeU.crl (hash: dMaRIRxo1cJACAjymrX4c1cS8kGxCPb8A3db+nIIQ78=) 2: 6B10AF52379A11F0B3AC7740C4F9AE02.roa (hash: PntSRuBY5UDnjcKtKj4+s10xaKpLqXOxOQqX6IkzMhU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F79A2/B8C0B0A026A011EFB9A37E39C4F9AE02/EdT02sf7qLXBIiQwBTm9xhVEXeU.crl rsync://rpki.apnic.net/member_repository/A91F79A2/B8C0B0A026A011EFB9A37E39C4F9AE02/EdT02sf7qLXBIiQwBTm9xhVEXeU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EdT02sf7qLXBIiQwBTm9xhVEXeU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 05:32:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 188 (0xbc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F79A2, serialNumber=11D4F4DAC7FBA8B5C12224300539BDC615445DE5 Validity Not Before: May 31 05:32:22 2025 GMT Not After : Jun 7 05:32:22 2025 GMT Subject: CN=683a9466-91f0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:60:b9:88:bc:0d:5b:0b:9a:81:1b:b3:56:9a: 1b:76:ed:97:37:fa:c8:e8:53:58:05:1e:f8:f6:3d: db:7e:91:c3:39:ca:dc:ad:8a:fe:32:b9:af:91:6f: 42:5a:6b:a0:23:52:a9:75:81:36:89:02:d6:5f:28: 5c:1c:78:f1:3c:1e:4a:95:cd:cd:25:b4:e4:0b:34: 68:fc:5b:6c:b7:06:ac:43:19:15:87:a8:32:57:04: 16:1f:f3:7f:39:70:b0:8c:03:0d:43:53:01:09:ee: f7:c9:86:3d:f5:62:d1:75:dd:e2:13:a2:8c:04:80: 8f:28:64:05:98:9f:43:09:5c:34:a5:d7:9a:91:27: 45:0c:e3:af:89:e1:09:b2:d1:8b:fb:89:b0:27:14: b3:fb:af:2b:63:33:19:ae:fa:61:f3:e5:8e:3f:7f: c3:5c:fb:03:7b:5d:26:de:5e:2e:03:e9:31:ff:bf: ef:60:d2:bd:9e:de:f1:2d:c7:fd:59:5d:c6:f2:8a: dd:fe:e6:4e:b8:fc:e5:37:47:04:fd:11:f7:ab:5b: b6:57:b5:ad:32:3a:86:91:0c:82:13:83:55:33:11: 4a:8d:7a:11:0b:94:37:f8:6f:31:11:2d:14:3f:43: 88:20:94:67:ca:50:29:18:00:cf:7e:77:4e:d2:5a: 9f:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 33:90:DE:C0:3A:0D:96:EB:98:CD:DA:2C:12:D6:45:88:6B:AF:5E:DA X509v3 Authority Key Identifier: keyid:11:D4:F4:DA:C7:FB:A8:B5:C1:22:24:30:05:39:BD:C6:15:44:5D:E5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F79A2/B8C0B0A026A011EFB9A37E39C4F9AE02/EdT02sf7qLXBIiQwBTm9xhVEXeU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EdT02sf7qLXBIiQwBTm9xhVEXeU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F79A2/B8C0B0A026A011EFB9A37E39C4F9AE02/EdT02sf7qLXBIiQwBTm9xhVEXeU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3f:1a:c0:5d:e4:45:08:5d:b3:55:27:8f:7b:f2:e4:cd:5e:aa: 67:b6:32:bb:41:b4:41:a7:dd:2a:8f:3b:a6:32:1a:6d:a1:7f: 98:0d:c0:02:98:46:86:f3:08:cc:fa:ae:e3:00:3d:f5:22:1f: 30:23:85:13:bb:1b:51:d8:3e:1b:a7:a9:0c:a4:a1:f3:d6:80: 47:53:9c:32:a8:57:6b:7b:10:a3:06:51:2e:bb:38:95:e9:eb: 66:b6:9d:4f:08:23:0b:3c:62:23:2b:c6:68:19:43:fe:c1:e2: 22:ec:58:1d:14:21:72:a4:50:a1:22:70:90:51:bf:91:12:7b: e1:0a:e2:ce:8f:2b:d6:3f:fa:35:89:77:32:d9:1e:ed:ec:55: 6a:04:2f:a9:e1:21:61:e2:c5:aa:b9:c5:7a:a3:97:d6:ab:d1: 81:00:18:0f:2e:8d:53:3f:2e:0d:e1:d3:cb:d1:6d:3f:f9:7f: 05:ba:8a:39:7a:fe:95:a3:ef:7b:59:78:33:ca:0c:41:b1:d2: c3:6b:c5:84:1b:92:82:e7:4e:c0:91:32:65:7a:34:17:b0:85: 29:03:29:25:1a:61:ac:e2:0a:4e:8f:7b:7e:a2:d4:6c:44:2a: 79:05:cf:1d:b7:d5:fa:fa:d9:35:b8:1e:35:2f:fb:15:42:9f: 29:26:45:ef -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICALwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Rjc5QTIxMTAvBgNVBAUTKDExRDRGNERBQzdGQkE4QjVDMTIyMjQzMDA1MzlCREM2 MTU0NDVERTUwHhcNMjUwNTMxMDUzMjIyWhcNMjUwNjA3MDUzMjIyWjAYMRYwFAYD VQQDEw02ODNhOTQ2Ni05MWYwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqmC5iLwNWwuagRuzVpobdu2XN/rI6FNYBR749j3bfpHDOcrcrYr+MrmvkW9C WmugI1KpdYE2iQLWXyhcHHjxPB5Klc3NJbTkCzRo/FtstwasQxkVh6gyVwQWH/N/ OXCwjAMNQ1MBCe73yYY99WLRdd3iE6KMBICPKGQFmJ9DCVw0pdeakSdFDOOvieEJ stGL+4mwJxSz+68rYzMZrvph8+WOP3/DXPsDe10m3l4uA+kx/7/vYNK9nt7xLcf9 WV3G8ord/uZOuPzlN0cE/RH3q1u2V7WtMjqGkQyCE4NVMxFKjXoRC5Q3+G8xES0U P0OIIJRnylApGADPfndO0lqf1QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDOQ3sA6 DZbrmM3aLBLWRYhrr17aMB8GA1UdIwQYMBaAFBHU9NrH+6i1wSIkMAU5vcYVRF3l MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNzlBMi9COEMwQjBBMDI2 QTAxMUVGQjlBMzdFMzlDNEY5QUUwMi9FZFQwMnNmN3FMWEJJaVF3QlRtOXhoVkVY ZVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0VkVDAyc2Y3cUxYQklpUXdCVG05eGhWRVhlVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NzlBMi9COEMwQjBBMDI2QTAxMUVGQjlBMzdFMzlDNEY5QUUwMi9FZFQwMnNmN3FM WEJJaVF3QlRtOXhoVkVYZVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA/GsBd5EUIXbNVJ4978uTNXqpntjK7QbRBp90qjzumMhptoX+YDcAC mEaG8wjM+q7jAD31Ih8wI4UTuxtR2D4bp6kMpKHz1oBHU5wyqFdrexCjBlEuuziV 6etmtp1PCCMLPGIjK8ZoGUP+weIi7FgdFCFypFChInCQUb+REnvhCuLOjyvWP/o1 iXcy2R7t7FVqBC+p4SFh4sWqucV6o5fWq9GBABgPLo1TPy4N4dPL0W0/+X8Fuoo5 ev6Vo+97WXgzygxBsdLDa8WEG5KC507AkTJlejQXsIUpAyklGmGs4gpOj3t+otRs RCp5Bc8dt9X6+tk1uB41L/sVQp8pJkXv -----END CERTIFICATE-----Generated at Sat May 31 17:30:24 2025 by rpki-client