$ rpki-client -vvf rpki.apnic.net/member_repository/A91F89D9/EABFEBF26F5C11EF835A7B66C4F9AE02/F11CAiv1C9bCDzCxxa2MlOCFvE4.mft File: F11CAiv1C9bCDzCxxa2MlOCFvE4.mft (raw, json) Hash identifier: rEBA/R2degP5o9I6sG6h5c25owhkMbJEVM4cnBO6MfI= Subject key identifier: 2F:BB:EB:57:D4:18:7B:1D:07:DF:38:82:5E:5F:04:E4:47:04:24:D9 Authority key identifier: 17:5D:42:02:2B:F5:0B:D6:C2:0F:30:B1:C5:AD:8C:94:E0:85:BC:4E Certificate issuer: /CN=A91F89D9/serialNumber=175D42022BF50BD6C20F30B1C5AD8C94E085BC4E Certificate serial: 8E Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/F11CAiv1C9bCDzCxxa2MlOCFvE4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F89D9/EABFEBF26F5C11EF835A7B66C4F9AE02/F11CAiv1C9bCDzCxxa2MlOCFvE4.mft Manifest number: 8C Signing time: Tue 03 Jun 2025 06:19:58 +0000 Manifest this update: Tue 03 Jun 2025 06:19:57 +0000 Manifest next update: Tue 10 Jun 2025 06:19:57 +0000 Files and hashes: 1: F11CAiv1C9bCDzCxxa2MlOCFvE4.crl (hash: IYSN2ILSq+TWIJwaXNmLlo1hiji3wocAjkD+6OUhuyE=) 2: A18C777C6F5F11EFAF849B28C4F9AE02.roa (hash: fujb24eQPYgPwcrZc8i7YcmXNyel+exUWMY7rJXI438=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F89D9/EABFEBF26F5C11EF835A7B66C4F9AE02/F11CAiv1C9bCDzCxxa2MlOCFvE4.crl rsync://rpki.apnic.net/member_repository/A91F89D9/EABFEBF26F5C11EF835A7B66C4F9AE02/F11CAiv1C9bCDzCxxa2MlOCFvE4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/F11CAiv1C9bCDzCxxa2MlOCFvE4.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 10 Jun 2025 06:19:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 142 (0x8e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F89D9, serialNumber=175D42022BF50BD6C20F30B1C5AD8C94E085BC4E Validity Not Before: Jun 3 06:19:57 2025 GMT Not After : Jun 10 06:19:57 2025 GMT Subject: CN=683e940d-b4cd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:5f:8c:cb:77:29:60:21:10:8e:45:9a:82:fb: 64:08:ce:50:c2:6d:5d:5f:38:d8:97:df:90:5a:6c: b8:df:15:b3:7d:41:6c:72:d1:2e:bf:5a:ad:b0:d2: 0e:76:59:1c:36:c7:e3:bd:0f:16:26:22:b9:cf:06: 8a:db:79:43:95:83:87:fe:3a:59:b4:a0:e0:ed:ce: 5e:39:0e:40:08:a1:3b:e8:05:82:cd:9c:c3:b6:a9: 84:83:e7:46:d5:79:73:65:ba:6b:7c:32:74:59:f3: 74:09:11:f1:ca:00:57:53:e3:d2:b4:b4:6a:1c:00: 0e:17:44:a5:fe:96:90:d4:96:f4:76:04:90:be:a3: ec:da:83:c5:14:17:14:2b:c3:50:bb:61:a5:39:81: a4:85:e8:57:1d:36:41:3a:de:d3:5d:6b:7e:5d:ec: a4:99:46:df:c0:fc:f8:8b:9f:40:21:5a:13:5f:1e: ec:64:d6:3f:4a:96:11:63:ee:14:80:19:41:ba:f9: ea:b6:7c:93:eb:d2:20:25:6b:d3:77:ef:5d:32:29: c4:2f:2a:c5:d8:5b:55:94:a6:67:75:4f:a8:2f:70: 81:c4:89:bf:71:95:4a:0c:00:d5:29:a6:a4:89:39: e8:67:5b:90:6a:b9:c1:f9:6e:eb:83:05:78:6c:60: ab:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2F:BB:EB:57:D4:18:7B:1D:07:DF:38:82:5E:5F:04:E4:47:04:24:D9 X509v3 Authority Key Identifier: keyid:17:5D:42:02:2B:F5:0B:D6:C2:0F:30:B1:C5:AD:8C:94:E0:85:BC:4E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F89D9/EABFEBF26F5C11EF835A7B66C4F9AE02/F11CAiv1C9bCDzCxxa2MlOCFvE4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/F11CAiv1C9bCDzCxxa2MlOCFvE4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F89D9/EABFEBF26F5C11EF835A7B66C4F9AE02/F11CAiv1C9bCDzCxxa2MlOCFvE4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2b:2c:09:e9:1d:1f:12:cf:53:07:82:a9:1f:47:49:80:c4:90: 2b:bc:6e:6b:be:a2:29:66:a7:62:52:8b:52:f5:5c:f8:b1:db: 4c:7c:bd:bd:bd:2c:f9:2c:a7:2c:7b:63:e3:d0:70:4e:a5:fd: e6:5b:b8:4e:f4:b7:1d:29:8f:b3:ab:eb:9b:6a:2e:b5:7b:79: 73:09:8d:fd:f3:f2:39:d6:55:e3:1f:82:da:19:7f:d3:de:19: 0b:b1:b2:60:ce:af:de:2b:44:43:1b:c8:ef:b0:ba:9d:aa:0d: 58:52:5f:5f:b5:a9:42:b9:a1:d8:c7:8e:df:1b:f4:4c:d2:25: 17:8a:29:bb:24:ed:06:eb:c8:d9:d5:c6:ed:2d:b5:5a:cd:40: 3e:cd:61:62:d7:b3:78:95:98:41:68:5a:f7:1b:c9:21:24:9a: 9e:6d:e6:87:7b:93:d8:99:42:9c:9e:f5:84:7d:db:0b:d0:1e: 7a:23:9b:3d:88:b8:ea:3b:dc:bb:1c:93:30:d9:1a:1d:4d:95: 56:8f:e8:4a:ad:2c:39:48:40:81:0c:aa:36:96:f4:52:40:97: e7:31:0d:79:72:2f:f2:31:0d:01:a4:6d:06:bf:96:76:3f:a5: 49:4f:4b:f0:dd:65:78:38:3f:41:69:f3:84:be:9c:0c:68:3f: 2d:09:bb:a0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAI4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Rjg5RDkxMTAvBgNVBAUTKDE3NUQ0MjAyMkJGNTBCRDZDMjBGMzBCMUM1QUQ4Qzk0 RTA4NUJDNEUwHhcNMjUwNjAzMDYxOTU3WhcNMjUwNjEwMDYxOTU3WjAYMRYwFAYD VQQDEw02ODNlOTQwZC1iNGNkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxF+My3cpYCEQjkWagvtkCM5Qwm1dXzjYl9+QWmy43xWzfUFsctEuv1qtsNIO dlkcNsfjvQ8WJiK5zwaK23lDlYOH/jpZtKDg7c5eOQ5ACKE76AWCzZzDtqmEg+dG 1XlzZbprfDJ0WfN0CRHxygBXU+PStLRqHAAOF0Sl/paQ1Jb0dgSQvqPs2oPFFBcU K8NQu2GlOYGkhehXHTZBOt7TXWt+XeykmUbfwPz4i59AIVoTXx7sZNY/SpYRY+4U gBlBuvnqtnyT69IgJWvTd+9dMinELyrF2FtVlKZndU+oL3CBxIm/cZVKDADVKaak iTnoZ1uQarnB+W7rgwV4bGCrvwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFC+761fU GHsdB984gl5fBORHBCTZMB8GA1UdIwQYMBaAFBddQgIr9QvWwg8wscWtjJTghbxO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGODlEOS9FQUJGRUJGMjZG NUMxMUVGODM1QTdCNjZDNEY5QUUwMi9GMTFDQWl2MUM5YkNEekN4eGEyTWxPQ0Z2 RTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0YxMUNBaXYxQzliQ0R6Q3h4YTJNbE9DRnZFNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG ODlEOS9FQUJGRUJGMjZGNUMxMUVGODM1QTdCNjZDNEY5QUUwMi9GMTFDQWl2MUM5 YkNEekN4eGEyTWxPQ0Z2RTQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQArLAnpHR8Sz1MHgqkfR0mAxJArvG5rvqIpZqdiUotS9Vz4sdtMfL29 vSz5LKcse2Pj0HBOpf3mW7hO9LcdKY+zq+ubai61e3lzCY398/I51lXjH4LaGX/T 3hkLsbJgzq/eK0RDG8jvsLqdqg1YUl9ftalCuaHYx47fG/RM0iUXiim7JO0G68jZ 1cbtLbVazUA+zWFi17N4lZhBaFr3G8khJJqebeaHe5PYmUKcnvWEfdsL0B56I5s9 iLjqO9y7HJMw2RodTZVWj+hKrSw5SECBDKo2lvRSQJfnMQ15ci/yMQ0BpG0Gv5Z2 P6VJT0vw3WV4OD9BafOEvpwMaD8tCbug -----END CERTIFICATE-----Generated at Tue Jun 3 23:58:14 2025 by rpki-client