$ rpki-client -vvf rpki.apnic.net/member_repository/A91F89A2/B396F3C0C54111EEABC2C385C4F9AE02/2Px5W2PMQlc_1dtE8Kg4bI1kO4Q.mft File: 2Px5W2PMQlc_1dtE8Kg4bI1kO4Q.mft (raw, json) Hash identifier: J4c52/5RmhCpbkYhRif34sDlEExT1QMExntJmz5l16s= Subject key identifier: F2:99:46:5A:C9:5D:63:E4:00:DB:D6:C8:D9:1A:8C:AF:A6:4F:82:E4 Authority key identifier: D8:FC:79:5B:63:CC:42:57:3F:D5:DB:44:F0:A8:38:6C:8D:64:3B:84 Certificate issuer: /CN=A91F89A2/serialNumber=D8FC795B63CC42573FD5DB44F0A8386C8D643B84 Certificate serial: FD Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2Px5W2PMQlc_1dtE8Kg4bI1kO4Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F89A2/B396F3C0C54111EEABC2C385C4F9AE02/2Px5W2PMQlc_1dtE8Kg4bI1kO4Q.mft Manifest number: FA Signing time: Sun 01 Jun 2025 04:53:45 +0000 Manifest this update: Sun 01 Jun 2025 04:53:45 +0000 Manifest next update: Sun 08 Jun 2025 04:53:45 +0000 Files and hashes: 1: 2Px5W2PMQlc_1dtE8Kg4bI1kO4Q.crl (hash: Uhr4nWhUQUiYBAmPhtNcoWOljML7nr7GLC95zeM4FT4=) 2: 6C363C0CF85911EE9EAE731BC4F9AE02.roa (hash: G8LAWFDM7ySLTe/ZJTkJCLPXRoKFmaYaIusDW3bZoi0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F89A2/B396F3C0C54111EEABC2C385C4F9AE02/2Px5W2PMQlc_1dtE8Kg4bI1kO4Q.crl rsync://rpki.apnic.net/member_repository/A91F89A2/B396F3C0C54111EEABC2C385C4F9AE02/2Px5W2PMQlc_1dtE8Kg4bI1kO4Q.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2Px5W2PMQlc_1dtE8Kg4bI1kO4Q.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Jun 2025 04:53:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 253 (0xfd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F89A2, serialNumber=D8FC795B63CC42573FD5DB44F0A8386C8D643B84 Validity Not Before: Jun 1 04:53:45 2025 GMT Not After : Jun 8 04:53:45 2025 GMT Subject: CN=683bdcd9-1822 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:0f:e3:f4:13:fc:12:21:82:f9:ec:78:cd:d0: 85:04:28:3d:8e:18:5b:37:68:c2:f2:a8:49:8f:e6: da:c4:4c:d1:58:ec:43:f6:58:de:68:73:2c:fc:92: 2a:53:24:fd:1b:83:09:bd:7a:9f:fc:2d:93:4f:79: b6:55:ac:bd:f5:f0:28:7e:f3:b7:54:4c:47:45:05: 48:88:d4:9d:99:d1:d3:3f:5f:94:51:73:0f:b8:1b: 49:b8:25:14:95:3b:5c:e9:39:e8:9f:be:bb:08:a5: 4e:51:4e:2a:33:26:bf:8b:9c:54:8f:41:72:94:3c: cb:c6:17:b4:b0:46:71:1e:ba:c0:29:12:e2:fc:1a: 3a:e2:63:55:07:15:7d:e6:5d:67:12:eb:d7:3f:5e: aa:e3:ea:13:0a:75:10:54:35:bc:70:3e:0f:e8:85: ce:ca:94:88:8e:b4:f0:84:3e:fc:8d:ba:fc:4b:48: 1c:29:a8:9b:56:0a:f4:2c:ac:43:44:0b:74:2b:1b: 28:90:cb:ea:76:b0:c8:7a:39:46:70:0c:8a:7d:ac: a6:f9:c3:01:e4:b8:c2:09:6b:d6:ca:b6:5b:1d:51: 29:16:71:a6:f9:7b:3a:62:42:94:fa:6c:ad:31:49: 5f:e6:fd:67:ab:1f:b9:1b:62:11:1c:4b:5a:27:2a: d3:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F2:99:46:5A:C9:5D:63:E4:00:DB:D6:C8:D9:1A:8C:AF:A6:4F:82:E4 X509v3 Authority Key Identifier: keyid:D8:FC:79:5B:63:CC:42:57:3F:D5:DB:44:F0:A8:38:6C:8D:64:3B:84 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F89A2/B396F3C0C54111EEABC2C385C4F9AE02/2Px5W2PMQlc_1dtE8Kg4bI1kO4Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2Px5W2PMQlc_1dtE8Kg4bI1kO4Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F89A2/B396F3C0C54111EEABC2C385C4F9AE02/2Px5W2PMQlc_1dtE8Kg4bI1kO4Q.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 95:b7:45:40:65:73:9f:42:b4:58:d7:93:e2:40:d5:2d:43:e2: 6e:ed:90:dd:6c:93:d6:11:6b:bc:11:31:dc:1a:4d:fd:2c:3f: ec:3d:e4:61:0e:ed:ba:97:9c:78:f8:77:02:42:b4:76:8f:58: 99:f7:8b:f4:28:d2:69:f4:92:71:97:34:c0:20:3d:cb:f7:44: 3b:2f:66:12:00:aa:d9:31:99:4d:f0:61:51:fc:f3:ee:7a:de: de:fc:64:48:36:14:16:38:90:56:2c:06:58:03:aa:34:ae:f7: 60:c4:15:05:3f:5c:32:0c:93:d9:c1:32:d7:e0:a5:8a:0f:ee: d0:af:f8:01:25:87:56:96:fb:68:ee:09:63:d4:ff:e9:45:09: 73:bc:17:c7:cf:53:0c:10:10:c5:39:15:f4:60:35:c0:81:ed: cb:5d:0a:a4:8c:bd:20:ea:51:8b:77:3a:bf:34:26:c9:7b:04: 4b:10:b9:a6:a6:14:cb:9e:44:ea:6a:9e:2f:a9:bc:32:71:98: 49:79:32:a0:7a:ae:91:2a:77:38:e5:6d:af:83:4f:dc:7c:af: 26:bb:cb:a5:73:35:ee:57:ff:23:fe:64:59:5a:61:75:be:ba: 24:c7:26:b1:83:18:0c:ab:4e:c6:e9:dd:05:e7:9d:4a:65:3a: 9a:a3:5d:38 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAP0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Rjg5QTIxMTAvBgNVBAUTKEQ4RkM3OTVCNjNDQzQyNTczRkQ1REI0NEYwQTgzODZD OEQ2NDNCODQwHhcNMjUwNjAxMDQ1MzQ1WhcNMjUwNjA4MDQ1MzQ1WjAYMRYwFAYD VQQDEw02ODNiZGNkOS0xODIyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4w/j9BP8EiGC+ex4zdCFBCg9jhhbN2jC8qhJj+baxEzRWOxD9ljeaHMs/JIq UyT9G4MJvXqf/C2TT3m2Vay99fAofvO3VExHRQVIiNSdmdHTP1+UUXMPuBtJuCUU lTtc6Tnon767CKVOUU4qMya/i5xUj0FylDzLxhe0sEZxHrrAKRLi/Bo64mNVBxV9 5l1nEuvXP16q4+oTCnUQVDW8cD4P6IXOypSIjrTwhD78jbr8S0gcKaibVgr0LKxD RAt0KxsokMvqdrDIejlGcAyKfaym+cMB5LjCCWvWyrZbHVEpFnGm+Xs6YkKU+myt MUlf5v1nqx+5G2IRHEtaJyrTqwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPKZRlrJ XWPkANvWyNkajK+mT4LkMB8GA1UdIwQYMBaAFNj8eVtjzEJXP9XbRPCoOGyNZDuE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGODlBMi9CMzk2RjNDMEM1 NDExMUVFQUJDMkMzODVDNEY5QUUwMi8yUHg1VzJQTVFsY18xZHRFOEtnNGJJMWtP NFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzJQeDVXMlBNUWxjXzFkdEU4S2c0Ykkxa080US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG ODlBMi9CMzk2RjNDMEM1NDExMUVFQUJDMkMzODVDNEY5QUUwMi8yUHg1VzJQTVFs Y18xZHRFOEtnNGJJMWtPNFEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCVt0VAZXOfQrRY15PiQNUtQ+Ju7ZDdbJPWEWu8ETHcGk39LD/sPeRh Du26l5x4+HcCQrR2j1iZ94v0KNJp9JJxlzTAID3L90Q7L2YSAKrZMZlN8GFR/PPu et7e/GRINhQWOJBWLAZYA6o0rvdgxBUFP1wyDJPZwTLX4KWKD+7Qr/gBJYdWlvto 7glj1P/pRQlzvBfHz1MMEBDFORX0YDXAge3LXQqkjL0g6lGLdzq/NCbJewRLELmm phTLnkTqap4vqbwycZhJeTKgeq6RKnc45W2vg0/cfK8mu8ulczXuV/8j/mRZWmF1 vrokxyaxgxgMq07G6d0F551KZTqao104 -----END CERTIFICATE-----Generated at Mon Jun 2 19:49:36 2025 by rpki-client