$ rpki-client -vvf rpki.apnic.net/member_repository/A91F89A2/BCBAE0CEC54111EEABC2C385C4F9AE02/bIAwUr-WwqtKuqntJqOptGOWBaM.mft File: bIAwUr-WwqtKuqntJqOptGOWBaM.mft (raw, json) Hash identifier: ZOr+/ttU/ZXnlArydTXrZhNajKXGOtYj0p6P55Xkprw= Subject key identifier: 2A:82:54:3F:46:4C:B1:D3:C0:E3:29:BC:D8:73:7C:46:D8:8D:E7:78 Authority key identifier: 6C:80:30:52:BF:96:C2:AB:4A:BA:A9:ED:26:A3:A9:B4:63:96:05:A3 Certificate issuer: /CN=A91F89A2/serialNumber=6C803052BF96C2AB4ABAA9ED26A3A9B4639605A3 Certificate serial: FA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bIAwUr-WwqtKuqntJqOptGOWBaM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F89A2/BCBAE0CEC54111EEABC2C385C4F9AE02/bIAwUr-WwqtKuqntJqOptGOWBaM.mft Manifest number: F8 Signing time: Sat 31 May 2025 04:50:54 +0000 Manifest this update: Sat 31 May 2025 04:50:53 +0000 Manifest next update: Sat 07 Jun 2025 04:50:53 +0000 Files and hashes: 1: bIAwUr-WwqtKuqntJqOptGOWBaM.crl (hash: BQtxDEcVgLUJHwV6uLi+kgT1gIeS0jSh3DrSj5VVUgM=) 2: 0FBF57D2F16611EEB75BE640C4F9AE02.roa (hash: pARn59mvC3EFmnc54zsYhH0vh0pFsHJXtSQmvirMetQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F89A2/BCBAE0CEC54111EEABC2C385C4F9AE02/bIAwUr-WwqtKuqntJqOptGOWBaM.crl rsync://rpki.apnic.net/member_repository/A91F89A2/BCBAE0CEC54111EEABC2C385C4F9AE02/bIAwUr-WwqtKuqntJqOptGOWBaM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bIAwUr-WwqtKuqntJqOptGOWBaM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 04:50:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 250 (0xfa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F89A2, serialNumber=6C803052BF96C2AB4ABAA9ED26A3A9B4639605A3 Validity Not Before: May 31 04:50:53 2025 GMT Not After : Jun 7 04:50:53 2025 GMT Subject: CN=683a8aae-dc8c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:74:52:01:63:f2:cf:28:2d:8c:2d:0d:86:d1: 81:08:bc:cf:5a:d0:26:d1:56:fb:a5:b7:06:4a:7a: 97:74:60:88:86:b2:26:01:7f:15:f2:33:10:6b:86: 50:db:84:6a:b6:98:b1:39:ef:48:66:c1:ad:78:5b: 00:0e:79:00:3f:82:a4:34:99:c5:1d:dd:f4:cf:59: a4:76:c7:72:04:62:33:a6:0e:b9:4d:c7:2f:3a:9b: d6:b0:7a:f7:fb:7b:2a:83:0e:b3:39:88:42:fc:0e: 50:01:56:d9:0f:43:43:27:78:c7:9a:03:4c:1b:63: 9b:07:3c:bc:b2:17:43:ad:df:25:b2:fa:d0:f7:0e: da:23:5f:99:67:5f:1b:82:bc:9f:90:c7:62:48:3f: 62:89:10:3d:35:ce:6b:2e:63:a5:04:e4:5a:02:ed: 2c:26:1e:fa:18:5f:aa:f7:35:7f:52:89:7b:f0:ca: 45:98:de:20:75:ab:ce:4e:72:17:6e:26:3d:9f:a6: 4e:12:0a:e1:21:1a:b7:79:b4:59:e0:cb:0f:f2:d7: 20:41:2c:f1:50:a9:89:a5:d0:85:16:ea:c1:de:da: 1b:54:e1:9d:c3:08:05:71:d6:67:ef:c6:bf:12:0c: 40:10:76:bd:25:4c:6d:90:8b:2a:14:96:1f:30:ee: 8b:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2A:82:54:3F:46:4C:B1:D3:C0:E3:29:BC:D8:73:7C:46:D8:8D:E7:78 X509v3 Authority Key Identifier: keyid:6C:80:30:52:BF:96:C2:AB:4A:BA:A9:ED:26:A3:A9:B4:63:96:05:A3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F89A2/BCBAE0CEC54111EEABC2C385C4F9AE02/bIAwUr-WwqtKuqntJqOptGOWBaM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bIAwUr-WwqtKuqntJqOptGOWBaM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F89A2/BCBAE0CEC54111EEABC2C385C4F9AE02/bIAwUr-WwqtKuqntJqOptGOWBaM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3b:a8:6d:af:b1:c9:65:ef:4e:e4:71:90:c0:1e:56:cf:3b:4a: b3:6f:2d:56:b3:8b:99:e4:74:2a:c4:ca:06:62:05:ea:20:c5: 6f:7d:08:93:9e:9a:02:9c:01:02:a1:41:76:ee:b4:21:06:f2: 11:67:ea:11:f7:86:e1:0e:d7:8f:cb:2d:d2:83:c5:c8:d4:69: 0c:7e:09:9e:27:2f:56:74:16:db:8b:92:84:3a:57:33:c0:13: 17:be:cf:bc:74:48:d3:f7:ac:91:a6:95:ab:7d:de:bc:fa:b9: 61:36:ce:7b:8d:99:b4:0b:f2:43:81:72:9d:17:1a:10:e1:2d: 06:e2:51:88:ca:16:c5:1c:72:62:c7:f8:b3:46:e3:b7:c8:fb: f7:6c:f8:cb:c2:79:c6:83:b1:e3:94:d3:d7:46:ef:2a:3b:12: a5:55:92:3c:c6:1f:64:f0:53:e0:26:53:80:8e:5a:9a:e9:e9: 3f:0d:73:8b:9f:6d:39:d3:96:8d:96:ac:f0:17:04:aa:3b:53: 0b:6e:81:cc:83:dd:cd:e5:91:be:0a:80:cc:67:d3:a4:2c:bd: 03:2f:a2:37:54:0b:c4:96:9f:fe:75:56:08:33:10:e7:13:cf: a0:b8:ac:f1:9a:c2:a7:b0:6d:bf:fb:75:4d:5a:b1:79:03:84: 60:4d:a6:d0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAPowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Rjg5QTIxMTAvBgNVBAUTKDZDODAzMDUyQkY5NkMyQUI0QUJBQTlFRDI2QTNBOUI0 NjM5NjA1QTMwHhcNMjUwNTMxMDQ1MDUzWhcNMjUwNjA3MDQ1MDUzWjAYMRYwFAYD VQQDEw02ODNhOGFhZS1kYzhjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqXRSAWPyzygtjC0NhtGBCLzPWtAm0Vb7pbcGSnqXdGCIhrImAX8V8jMQa4ZQ 24RqtpixOe9IZsGteFsADnkAP4KkNJnFHd30z1mkdsdyBGIzpg65TccvOpvWsHr3 +3sqgw6zOYhC/A5QAVbZD0NDJ3jHmgNMG2ObBzy8shdDrd8lsvrQ9w7aI1+ZZ18b gryfkMdiSD9iiRA9Nc5rLmOlBORaAu0sJh76GF+q9zV/Uol78MpFmN4gdavOTnIX biY9n6ZOEgrhIRq3ebRZ4MsP8tcgQSzxUKmJpdCFFurB3tobVOGdwwgFcdZn78a/ EgxAEHa9JUxtkIsqFJYfMO6LwwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCqCVD9G TLHTwOMpvNhzfEbYjed4MB8GA1UdIwQYMBaAFGyAMFK/lsKrSrqp7SajqbRjlgWj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGODlBMi9CQ0JBRTBDRUM1 NDExMUVFQUJDMkMzODVDNEY5QUUwMi9iSUF3VXItV3dxdEt1cW50SnFPcHRHT1dC YU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JJQXdVci1Xd3F0S3VxbnRKcU9wdEdPV0JhTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG ODlBMi9CQ0JBRTBDRUM1NDExMUVFQUJDMkMzODVDNEY5QUUwMi9iSUF3VXItV3dx dEt1cW50SnFPcHRHT1dCYU0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA7qG2vscll707kcZDAHlbPO0qzby1Ws4uZ5HQqxMoGYgXqIMVvfQiT npoCnAECoUF27rQhBvIRZ+oR94bhDtePyy3Sg8XI1GkMfgmeJy9WdBbbi5KEOlcz wBMXvs+8dEjT96yRppWrfd68+rlhNs57jZm0C/JDgXKdFxoQ4S0G4lGIyhbFHHJi x/izRuO3yPv3bPjLwnnGg7HjlNPXRu8qOxKlVZI8xh9k8FPgJlOAjlqa6ek/DXOL n20505aNlqzwFwSqO1MLboHMg93N5ZG+CoDMZ9OkLL0DL6I3VAvElp/+dVYIMxDn E8+guKzxmsKnsG2/+3VNWrF5A4RgTabQ -----END CERTIFICATE-----Generated at Sat May 31 17:07:46 2025 by rpki-client