$ rpki-client -vvf rpki.apnic.net/member_repository/A91FD47F/D5CE626A346111ED9DEE8E7AC4F9AE02/N2A9suBywKj9cROOJUCZ9MrYwW8.mft File: N2A9suBywKj9cROOJUCZ9MrYwW8.mft (raw, json) Hash identifier: C63c3H90/P8k3ODYtDNSB94WO2qSREerjgT6XEakyPo= Subject key identifier: 65:D8:38:45:2F:0D:B7:B4:89:CD:4F:23:CF:3E:AC:0C:00:44:54:A7 Authority key identifier: 37:60:3D:B2:E0:72:C0:A8:FD:71:13:8E:25:40:99:F4:CA:D8:C1:6F Certificate issuer: /CN=A91FD47F/serialNumber=37603DB2E072C0A8FD71138E254099F4CAD8C16F Certificate serial: 0236 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/N2A9suBywKj9cROOJUCZ9MrYwW8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FD47F/D5CE626A346111ED9DEE8E7AC4F9AE02/N2A9suBywKj9cROOJUCZ9MrYwW8.mft Manifest number: 0223 Signing time: Sat 31 May 2025 02:10:22 +0000 Manifest this update: Sat 31 May 2025 02:10:22 +0000 Manifest next update: Sat 07 Jun 2025 02:10:22 +0000 Files and hashes: 1: N2A9suBywKj9cROOJUCZ9MrYwW8.crl (hash: q0yvtyXX3ECqOzhi5I3/LuSfuGejOGahaOqioqTDzYc=) 2: AB68CE76346511EDAC41E081C4F9AE02.roa (hash: me5m52MXo4l0JWieAZh5/5JLHzGNaxm9iecnfymMcU4=) 3: 14B312EC3AE711EDBF700472C4F9AE02.roa (hash: jkOQ3dPuDLNPKoML9QUoAglZcGE8mWGDMaT0FDV/Rrk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FD47F/D5CE626A346111ED9DEE8E7AC4F9AE02/N2A9suBywKj9cROOJUCZ9MrYwW8.crl rsync://rpki.apnic.net/member_repository/A91FD47F/D5CE626A346111ED9DEE8E7AC4F9AE02/N2A9suBywKj9cROOJUCZ9MrYwW8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/N2A9suBywKj9cROOJUCZ9MrYwW8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 02:10:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 566 (0x236) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FD47F, serialNumber=37603DB2E072C0A8FD71138E254099F4CAD8C16F Validity Not Before: May 31 02:10:22 2025 GMT Not After : Jun 7 02:10:22 2025 GMT Subject: CN=683a650e-5272 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:52:d6:a3:f7:6b:2e:d5:a7:2b:2b:c6:bb:a1: 54:47:90:be:ef:dd:6f:22:d7:56:9a:3f:bf:5a:f6: 5b:fa:fe:3f:fd:1f:b8:ef:27:72:01:85:d6:bb:91: c5:c5:90:2f:18:57:08:78:09:f5:88:38:e7:7c:5c: cb:08:09:e5:13:e1:24:16:0b:63:d9:4c:5c:f8:ef: fb:a9:52:42:5f:11:04:16:aa:a0:cb:ac:c3:71:f8: 8a:57:4f:23:27:a4:79:e5:6e:8c:54:81:79:15:84: 64:55:bb:de:ae:63:b5:03:38:db:ad:00:6e:72:70: ff:1a:74:09:e0:e9:5b:07:31:86:0a:88:66:b2:65: 37:81:ac:3c:2a:89:b8:50:96:b3:06:cc:fe:62:79: 3b:5e:7b:2b:7a:d5:a8:6b:b5:16:03:58:b8:4b:df: 82:ad:90:cc:71:0f:fa:eb:e8:eb:ca:18:39:33:70: 98:30:4e:99:89:0e:0f:38:6a:17:e7:4d:02:d1:73: cc:59:74:b8:09:7d:d4:fb:d3:c0:2d:e0:b1:a8:15: 5c:88:bb:55:67:8e:f6:dc:71:52:3b:08:21:29:8a: a9:79:d8:50:f6:d3:97:76:d3:3c:17:ca:fe:4c:72: da:6a:3c:0a:f5:03:d1:e6:40:e9:10:e9:75:e3:e5: 66:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 65:D8:38:45:2F:0D:B7:B4:89:CD:4F:23:CF:3E:AC:0C:00:44:54:A7 X509v3 Authority Key Identifier: keyid:37:60:3D:B2:E0:72:C0:A8:FD:71:13:8E:25:40:99:F4:CA:D8:C1:6F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FD47F/D5CE626A346111ED9DEE8E7AC4F9AE02/N2A9suBywKj9cROOJUCZ9MrYwW8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/N2A9suBywKj9cROOJUCZ9MrYwW8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FD47F/D5CE626A346111ED9DEE8E7AC4F9AE02/N2A9suBywKj9cROOJUCZ9MrYwW8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 58:2c:3b:db:97:15:d1:d1:ed:e6:6a:93:0d:de:a2:68:b8:87: 33:73:0b:32:e1:fb:5c:9d:56:09:c4:31:10:37:90:c4:60:62: e9:b2:8f:a1:8d:ea:39:57:f7:b0:10:ac:03:c6:ab:4d:b0:46: 28:79:b5:94:c8:e2:1c:92:fb:fb:1f:cd:58:57:2b:e5:34:e9: f0:cc:8b:85:0f:bf:35:84:a6:b6:90:0e:ae:93:c2:ae:1b:c0: 24:a7:37:b4:85:be:a1:e8:df:f6:77:53:52:69:ef:2e:2e:40: ac:92:d5:1f:50:82:74:21:54:75:2b:07:eb:d8:c9:04:b5:d6: 86:50:d3:32:aa:69:9d:ba:93:94:fa:94:64:ff:d3:e4:a4:dd: 3e:dc:28:fc:f1:a2:71:07:4c:14:bc:0a:c4:05:7f:86:ec:3c: 03:64:9a:cd:2d:aa:7c:8d:8e:b7:78:7f:02:35:26:e0:e3:17: 3b:ec:ff:ff:e8:e6:1f:54:96:f0:3a:0b:4e:e7:ee:05:0a:a0: 10:6c:c3:22:b8:a3:ad:f4:8e:3c:0f:e1:43:58:a2:57:8d:0a: c1:18:0a:48:e3:5b:51:7f:b9:dd:4a:fb:e7:d3:52:7d:8f:9a: 1a:62:44:ab:d3:a2:5e:80:d0:14:97:25:e7:56:3e:bb:07:11: 0a:fc:53:44 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAjYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkQ0N0YxMTAvBgNVBAUTKDM3NjAzREIyRTA3MkMwQThGRDcxMTM4RTI1NDA5OUY0 Q0FEOEMxNkYwHhcNMjUwNTMxMDIxMDIyWhcNMjUwNjA3MDIxMDIyWjAYMRYwFAYD VQQDEw02ODNhNjUwZS01MjcyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2lLWo/drLtWnKyvGu6FUR5C+791vItdWmj+/WvZb+v4//R+47ydyAYXWu5HF xZAvGFcIeAn1iDjnfFzLCAnlE+EkFgtj2Uxc+O/7qVJCXxEEFqqgy6zDcfiKV08j J6R55W6MVIF5FYRkVbvermO1AzjbrQBucnD/GnQJ4OlbBzGGCohmsmU3gaw8Kom4 UJazBsz+Ynk7XnsretWoa7UWA1i4S9+CrZDMcQ/66+jryhg5M3CYME6ZiQ4POGoX 500C0XPMWXS4CX3U+9PALeCxqBVciLtVZ4723HFSOwghKYqpedhQ9tOXdtM8F8r+ THLaajwK9QPR5kDpEOl14+Vm/wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGXYOEUv Dbe0ic1PI88+rAwARFSnMB8GA1UdIwQYMBaAFDdgPbLgcsCo/XETjiVAmfTK2MFv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGRDQ3Ri9ENUNFNjI2QTM0 NjExMUVEOURFRThFN0FDNEY5QUUwMi9OMkE5c3VCeXdLajljUk9PSlVDWjlNcll3 VzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL04yQTlzdUJ5d0tqOWNST09KVUNaOU1yWXdXOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG RDQ3Ri9ENUNFNjI2QTM0NjExMUVEOURFRThFN0FDNEY5QUUwMi9OMkE5c3VCeXdL ajljUk9PSlVDWjlNcll3VzgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBYLDvblxXR0e3mapMN3qJouIczcwsy4ftcnVYJxDEQN5DEYGLpso+h jeo5V/ewEKwDxqtNsEYoebWUyOIckvv7H81YVyvlNOnwzIuFD781hKa2kA6uk8Ku G8Akpze0hb6h6N/2d1NSae8uLkCsktUfUIJ0IVR1Kwfr2MkEtdaGUNMyqmmdupOU +pRk/9PkpN0+3Cj88aJxB0wUvArEBX+G7DwDZJrNLap8jY63eH8CNSbg4xc77P// 6OYfVJbwOgtO5+4FCqAQbMMiuKOt9I48D+FDWKJXjQrBGApI41tRf7ndSvvn01J9 j5oaYkSr06JegNAUlyXnVj67BxEK/FNE -----END CERTIFICATE-----Generated at Sat May 31 17:23:36 2025 by rpki-client