$ rpki-client -vvf rpki.apnic.net/member_repository/A91F8E9B/69EB42C0960E11ED9A4CEA65C4F9AE02/RGeSQ5JYGCp6Hk2kssBvrSqu5Lk.mft File: RGeSQ5JYGCp6Hk2kssBvrSqu5Lk.mft (raw, json) Hash identifier: N82ijVYSjx6ew9aXYVNBIcw/WZM99ePaF4E/FALQEIE= Subject key identifier: D6:EA:7E:B4:88:FA:83:9D:37:58:84:6E:4F:49:31:64:F7:5A:EF:FA Authority key identifier: 44:67:92:43:92:58:18:2A:7A:1E:4D:A4:B2:C0:6F:AD:2A:AE:E4:B9 Certificate issuer: /CN=A91F8E9B/serialNumber=446792439258182A7A1E4DA4B2C06FAD2AAEE4B9 Certificate serial: 01CC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RGeSQ5JYGCp6Hk2kssBvrSqu5Lk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F8E9B/69EB42C0960E11ED9A4CEA65C4F9AE02/RGeSQ5JYGCp6Hk2kssBvrSqu5Lk.mft Manifest number: 01BF Signing time: Sat 31 May 2025 02:47:24 +0000 Manifest this update: Sat 31 May 2025 02:47:24 +0000 Manifest next update: Sat 07 Jun 2025 02:47:24 +0000 Files and hashes: 1: RGeSQ5JYGCp6Hk2kssBvrSqu5Lk.crl (hash: +lnowKPJ0isdB5+3RiGZFvRp7UOIRaz/ETxlRjI2/So=) 2: 6549AD3EAC1011ED8592693FC4F9AE02.roa (hash: ksp6qBpZ5kB0EysEaPobcR9QCXbiquNMVXrarPKPN4A=) 3: 64B2DE72AC1011ED8592693FC4F9AE02.roa (hash: xgTk5QLU2Vm82iRKTqkbO5V1pNHv+/+0qFa5a4D2Fm4=) 4: 665497A2AC1011ED8592693FC4F9AE02.roa (hash: 5cknTz/azpX9sHHI7VxRFMrA+eqmREBfLXzZWKlWnBA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F8E9B/69EB42C0960E11ED9A4CEA65C4F9AE02/RGeSQ5JYGCp6Hk2kssBvrSqu5Lk.crl rsync://rpki.apnic.net/member_repository/A91F8E9B/69EB42C0960E11ED9A4CEA65C4F9AE02/RGeSQ5JYGCp6Hk2kssBvrSqu5Lk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RGeSQ5JYGCp6Hk2kssBvrSqu5Lk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 02:47:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 460 (0x1cc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F8E9B, serialNumber=446792439258182A7A1E4DA4B2C06FAD2AAEE4B9 Validity Not Before: May 31 02:47:24 2025 GMT Not After : Jun 7 02:47:24 2025 GMT Subject: CN=683a6dbc-8bb5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:a8:24:b5:e7:23:4a:90:a8:62:f7:05:ff:97: b5:11:be:b4:a2:6f:c2:3e:f7:e7:df:bb:dc:ab:af: a4:28:ea:6c:42:86:e0:94:ae:88:cd:66:32:4d:8f: f8:5b:ac:68:2c:7a:42:17:6b:42:a7:eb:cc:a0:30: fe:8a:e1:99:a0:57:b9:8d:fa:81:16:0e:6c:3a:fd: b4:4a:5b:d9:c7:21:8a:87:af:fc:70:8a:72:92:87: 40:01:13:b8:c1:f2:86:16:1b:b6:86:37:72:74:ca: 5b:0f:cc:a1:57:12:5d:56:9d:3a:a9:ab:5a:c5:d6: d4:f0:4e:64:62:9d:2c:c0:3f:05:d1:03:a4:5c:f1: 72:ac:2d:ed:0e:3a:2c:56:28:02:7a:4b:8a:d2:98: 86:e8:af:e9:ae:85:61:17:8a:0f:87:ae:14:77:d1: 79:a8:f6:7c:64:c7:2b:c4:88:dc:4a:ac:49:31:57: 3a:be:91:6c:ed:6d:36:49:d3:bb:a5:95:db:be:72: d9:7d:0a:ce:b2:40:a9:e6:a2:41:cd:3d:81:f7:82: 1c:e8:0b:51:74:a2:42:ff:08:e3:95:cd:8a:46:8e: bc:3b:5b:07:b0:91:67:c4:ab:89:0a:68:4f:77:66: ee:84:19:b4:02:2b:87:70:3b:89:bd:e5:82:33:50: 6b:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D6:EA:7E:B4:88:FA:83:9D:37:58:84:6E:4F:49:31:64:F7:5A:EF:FA X509v3 Authority Key Identifier: keyid:44:67:92:43:92:58:18:2A:7A:1E:4D:A4:B2:C0:6F:AD:2A:AE:E4:B9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F8E9B/69EB42C0960E11ED9A4CEA65C4F9AE02/RGeSQ5JYGCp6Hk2kssBvrSqu5Lk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RGeSQ5JYGCp6Hk2kssBvrSqu5Lk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F8E9B/69EB42C0960E11ED9A4CEA65C4F9AE02/RGeSQ5JYGCp6Hk2kssBvrSqu5Lk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 85:5a:fc:b2:83:70:82:fc:1f:40:ae:fa:42:06:08:d7:bd:bc: 6d:66:b6:aa:56:75:bd:7b:96:79:59:2a:9c:46:e6:05:71:fc: b6:dd:f0:88:8b:15:6d:22:7a:52:cb:03:93:cf:fe:a8:15:c4: 6b:06:f5:1c:dd:62:64:ef:df:77:9f:ac:75:6e:5a:cb:b5:78: 2b:35:51:05:20:65:04:56:32:07:d2:5d:09:cd:f7:1e:24:fd: 1b:3a:49:e2:a2:b2:46:5a:ed:0a:4f:94:9a:ca:8d:19:73:7d: c0:22:ef:29:b4:49:aa:64:fb:fc:6e:f9:e6:00:4e:23:e3:8a: ed:cc:80:11:f4:82:9c:24:d2:03:72:5c:1b:e4:55:3e:a0:7e: 90:92:96:7b:2e:cf:7d:37:3d:c3:f6:52:b4:b7:da:a5:fe:e7: cb:46:5b:6d:a4:54:eb:66:4e:6e:3a:ac:47:e0:21:29:dd:fb: 9a:e9:ad:67:74:5e:88:5d:7c:a4:1e:e7:86:23:5e:0f:e7:de: c9:5f:d6:7e:71:ec:52:8e:37:80:be:65:96:bf:42:65:88:61: 92:2f:3f:5f:a6:26:71:10:4d:11:08:81:35:18:a2:81:06:36: 66:46:88:bc:96:83:84:46:53:21:76:fe:38:36:ac:57:02:33: f5:23:33:de -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAcwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjhFOUIxMTAvBgNVBAUTKDQ0Njc5MjQzOTI1ODE4MkE3QTFFNERBNEIyQzA2RkFE MkFBRUU0QjkwHhcNMjUwNTMxMDI0NzI0WhcNMjUwNjA3MDI0NzI0WjAYMRYwFAYD VQQDEw02ODNhNmRiYy04YmI1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxagktecjSpCoYvcF/5e1Eb60om/CPvfn37vcq6+kKOpsQobglK6IzWYyTY/4 W6xoLHpCF2tCp+vMoDD+iuGZoFe5jfqBFg5sOv20SlvZxyGKh6/8cIpykodAARO4 wfKGFhu2hjdydMpbD8yhVxJdVp06qataxdbU8E5kYp0swD8F0QOkXPFyrC3tDjos VigCekuK0piG6K/proVhF4oPh64Ud9F5qPZ8ZMcrxIjcSqxJMVc6vpFs7W02SdO7 pZXbvnLZfQrOskCp5qJBzT2B94Ic6AtRdKJC/wjjlc2KRo68O1sHsJFnxKuJCmhP d2buhBm0AiuHcDuJveWCM1BrewIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNbqfrSI +oOdN1iEbk9JMWT3Wu/6MB8GA1UdIwQYMBaAFERnkkOSWBgqeh5NpLLAb60qruS5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGOEU5Qi82OUVCNDJDMDk2 MEUxMUVEOUE0Q0VBNjVDNEY5QUUwMi9SR2VTUTVKWUdDcDZIazJrc3NCdnJTcXU1 TGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1JHZVNRNUpZR0NwNkhrMmtzc0J2clNxdTVMay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG OEU5Qi82OUVCNDJDMDk2MEUxMUVEOUE0Q0VBNjVDNEY5QUUwMi9SR2VTUTVKWUdD cDZIazJrc3NCdnJTcXU1TGsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCFWvyyg3CC/B9ArvpCBgjXvbxtZraqVnW9e5Z5WSqcRuYFcfy23fCI ixVtInpSywOTz/6oFcRrBvUc3WJk7993n6x1blrLtXgrNVEFIGUEVjIH0l0Jzfce JP0bOkniorJGWu0KT5Sayo0Zc33AIu8ptEmqZPv8bvnmAE4j44rtzIAR9IKcJNID clwb5FU+oH6QkpZ7Ls99Nz3D9lK0t9ql/ufLRlttpFTrZk5uOqxH4CEp3fua6a1n dF6IXXykHueGI14P597JX9Z+cexSjjeAvmWWv0JliGGSLz9fpiZxEE0RCIE1GKKB BjZmRoi8loOERlMhdv44NqxXAjP1IzPe -----END CERTIFICATE-----Generated at Sat May 31 17:11:22 2025 by rpki-client