$ rpki-client -vvf rpki.apnic.net/member_repository/A91FB03A/DFC68D643A1611ED9152BF0EC4F9AE02/i0b6Eepu4jUJnkhDPIJJehl7nXw.mft File: i0b6Eepu4jUJnkhDPIJJehl7nXw.mft (raw, json) Hash identifier: o3/bPSZc1XKtVzwTDoAHLXXwY4ZXcx5mnbecccXj/Bw= Subject key identifier: D9:77:1E:AA:DE:2C:0C:86:98:8D:8D:67:41:83:56:D4:F2:26:49:A0 Authority key identifier: 8B:46:FA:11:EA:6E:E2:35:09:9E:48:43:3C:82:49:7A:19:7B:9D:7C Certificate issuer: /CN=A91FB03A/serialNumber=8B46FA11EA6EE235099E48433C82497A197B9D7C Certificate serial: 0213 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/i0b6Eepu4jUJnkhDPIJJehl7nXw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FB03A/DFC68D643A1611ED9152BF0EC4F9AE02/i0b6Eepu4jUJnkhDPIJJehl7nXw.mft Manifest number: 0209 Signing time: Sat 31 May 2025 02:12:14 +0000 Manifest this update: Sat 31 May 2025 02:12:14 +0000 Manifest next update: Sat 07 Jun 2025 02:12:14 +0000 Files and hashes: 1: i0b6Eepu4jUJnkhDPIJJehl7nXw.crl (hash: YvszstD14+qQ/fTa+fdEddqpoObJTqcKro+a3x92dvQ=) 2: 0B3B85D63A1B11EDAE662B14C4F9AE02.roa (hash: NR8OS1L1YDEOVGgB6cb2fttAqoXgsKVRMpQfg5GvzjQ=) 3: 0BF33B7C3A1B11EDAE662B14C4F9AE02.roa (hash: U57sQE5yclVx7OH+nAtAbjTBaki6Yvzg4fauYYq6XuI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FB03A/DFC68D643A1611ED9152BF0EC4F9AE02/i0b6Eepu4jUJnkhDPIJJehl7nXw.crl rsync://rpki.apnic.net/member_repository/A91FB03A/DFC68D643A1611ED9152BF0EC4F9AE02/i0b6Eepu4jUJnkhDPIJJehl7nXw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/i0b6Eepu4jUJnkhDPIJJehl7nXw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 02:12:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 531 (0x213) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FB03A, serialNumber=8B46FA11EA6EE235099E48433C82497A197B9D7C Validity Not Before: May 31 02:12:14 2025 GMT Not After : Jun 7 02:12:14 2025 GMT Subject: CN=683a657e-50b4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:69:16:5a:77:2e:99:36:40:26:fe:d0:ef:62: 48:3c:1f:fa:ec:2f:31:5e:8a:98:c2:08:7b:e3:85: 14:30:a4:2c:3f:e7:09:6d:45:34:a6:bb:ec:ef:7a: 4c:7f:b8:fe:81:86:a0:c4:6e:8a:17:5c:86:e0:87: 19:c7:d4:ed:a4:18:ff:4c:45:65:65:13:ac:1c:0e: 6e:db:5c:fb:a5:2f:a1:93:81:2f:04:d5:26:55:44: d0:df:7e:7b:41:1b:eb:f9:9e:b3:78:cf:2d:fb:92: 70:a9:d1:83:e5:15:83:1a:3d:9c:c2:0c:2f:a6:8c: 54:95:09:07:9e:0d:2c:30:41:cb:52:8d:34:73:28: b6:95:20:aa:46:b3:7f:e7:e9:87:63:17:92:52:38: ff:b3:28:69:97:6f:9f:f8:dd:06:d6:e2:b1:bf:76: 6e:aa:f4:9c:23:31:d0:a4:86:d8:9c:1c:38:de:7f: c6:a3:3a:b3:62:51:d1:66:39:64:6c:af:9a:8c:b3: cb:d0:79:e7:fb:f1:ab:e4:b5:e3:bd:ca:2e:5c:83: 80:00:8f:6b:ff:bf:22:f4:7d:f6:17:20:4d:9f:47: 8f:46:98:6d:23:e8:e7:06:3b:ec:18:7c:6c:98:54: 2b:2f:ea:90:51:b7:dc:7a:a0:57:aa:24:6b:99:16: 8a:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D9:77:1E:AA:DE:2C:0C:86:98:8D:8D:67:41:83:56:D4:F2:26:49:A0 X509v3 Authority Key Identifier: keyid:8B:46:FA:11:EA:6E:E2:35:09:9E:48:43:3C:82:49:7A:19:7B:9D:7C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FB03A/DFC68D643A1611ED9152BF0EC4F9AE02/i0b6Eepu4jUJnkhDPIJJehl7nXw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/i0b6Eepu4jUJnkhDPIJJehl7nXw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FB03A/DFC68D643A1611ED9152BF0EC4F9AE02/i0b6Eepu4jUJnkhDPIJJehl7nXw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 45:23:d9:0f:1b:e4:97:8f:81:c3:65:7c:48:bd:95:a3:27:2a: 28:6d:de:ae:34:22:8d:d2:dd:cb:d8:91:9e:69:65:48:93:a9: 99:af:59:97:03:ee:fd:00:ea:ac:0c:a8:21:0f:12:e9:41:73: 76:98:3a:aa:1b:17:7e:29:76:c8:bf:dc:8d:24:9b:83:59:16: b4:ee:cd:bd:b0:9d:c9:a3:e5:13:0b:79:a9:97:0e:1b:6f:0d: 14:a5:01:d7:05:ae:66:53:13:f9:45:06:f9:76:5e:19:1a:a6: e3:24:73:22:d6:98:45:9a:88:df:83:ca:93:ce:7c:87:95:1d: 31:5b:35:ea:10:62:b7:1d:43:0d:22:e7:d5:57:bc:27:22:04: 43:b3:e8:5b:36:ce:a4:df:70:e9:10:90:8e:83:42:89:cb:09: 5a:e1:1b:07:8b:b4:1f:d6:8a:80:9a:92:d2:09:f0:d7:12:3c: 80:00:bf:94:e1:af:87:48:77:f7:fa:2b:5f:ba:bc:99:ed:24: 37:43:c4:96:d2:9f:0b:b7:a8:02:45:2e:b9:8d:81:79:6f:07: 7a:2e:18:b1:56:5c:f6:1d:52:c3:36:c5:c4:48:79:97:f5:04: 4d:e0:37:98:e7:f8:f8:99:25:5d:2e:2f:ad:8b:9c:86:95:10: 18:4c:4c:81 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAhMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkIwM0ExMTAvBgNVBAUTKDhCNDZGQTExRUE2RUUyMzUwOTlFNDg0MzNDODI0OTdB MTk3QjlEN0MwHhcNMjUwNTMxMDIxMjE0WhcNMjUwNjA3MDIxMjE0WjAYMRYwFAYD VQQDEw02ODNhNjU3ZS01MGI0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA12kWWncumTZAJv7Q72JIPB/67C8xXoqYwgh744UUMKQsP+cJbUU0prvs73pM f7j+gYagxG6KF1yG4IcZx9TtpBj/TEVlZROsHA5u21z7pS+hk4EvBNUmVUTQ3357 QRvr+Z6zeM8t+5JwqdGD5RWDGj2cwgwvpoxUlQkHng0sMEHLUo00cyi2lSCqRrN/ 5+mHYxeSUjj/syhpl2+f+N0G1uKxv3ZuqvScIzHQpIbYnBw43n/GozqzYlHRZjlk bK+ajLPL0Hnn+/Gr5LXjvcouXIOAAI9r/78i9H32FyBNn0ePRphtI+jnBjvsGHxs mFQrL+qQUbfceqBXqiRrmRaKRQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNl3Hqre LAyGmI2NZ0GDVtTyJkmgMB8GA1UdIwQYMBaAFItG+hHqbuI1CZ5IQzyCSXoZe518 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQjAzQS9ERkM2OEQ2NDNB MTYxMUVEOTE1MkJGMEVDNEY5QUUwMi9pMGI2RWVwdTRqVUpua2hEUElKSmVobDdu WHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2kwYjZFZXB1NGpVSm5raERQSUpKZWhsN25Ydy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG QjAzQS9ERkM2OEQ2NDNBMTYxMUVEOTE1MkJGMEVDNEY5QUUwMi9pMGI2RWVwdTRq VUpua2hEUElKSmVobDduWHcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBFI9kPG+SXj4HDZXxIvZWjJyoobd6uNCKN0t3L2JGeaWVIk6mZr1mX A+79AOqsDKghDxLpQXN2mDqqGxd+KXbIv9yNJJuDWRa07s29sJ3Jo+UTC3mplw4b bw0UpQHXBa5mUxP5RQb5dl4ZGqbjJHMi1phFmojfg8qTznyHlR0xWzXqEGK3HUMN IufVV7wnIgRDs+hbNs6k33DpEJCOg0KJywla4RsHi7Qf1oqAmpLSCfDXEjyAAL+U 4a+HSHf3+itfuryZ7SQ3Q8SW0p8Lt6gCRS65jYF5bwd6LhixVlz2HVLDNsXESHmX 9QRN4DeY5/j4mSVdLi+ti5yGlRAYTEyB -----END CERTIFICATE-----Generated at Sat May 31 16:32:17 2025 by rpki-client