$ rpki-client -vvf rpki.apnic.net/member_repository/A91FE7DB/B951E28C3DCA11EA81B9D352C4F9AE02/rroZtvzB0hrnExdw57HaPhR17JA.mft File: rroZtvzB0hrnExdw57HaPhR17JA.mft (raw, json) Hash identifier: iYo2V7SwLqdCToLOS5xos3ldJS1yWFkzhOTlRSgsyD0= Subject key identifier: 50:00:7C:16:A7:0E:4D:C7:33:DD:32:0F:67:83:9F:07:2C:6F:6F:D6 Authority key identifier: AE:BA:19:B6:FC:C1:D2:1A:E7:13:17:70:E7:B1:DA:3E:14:75:EC:90 Certificate issuer: /CN=A91FE7DB/serialNumber=AEBA19B6FCC1D21AE7131770E7B1DA3E1475EC90 Certificate serial: 0B24 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rroZtvzB0hrnExdw57HaPhR17JA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FE7DB/B951E28C3DCA11EA81B9D352C4F9AE02/rroZtvzB0hrnExdw57HaPhR17JA.mft Manifest number: 0B1D Signing time: Fri 30 May 2025 19:25:28 +0000 Manifest this update: Fri 30 May 2025 19:25:27 +0000 Manifest next update: Fri 06 Jun 2025 19:25:27 +0000 Files and hashes: 1: rroZtvzB0hrnExdw57HaPhR17JA.crl (hash: +3q4OeiIYtVySY2bPrPj2Ph7cedJwvoGFRgx+YVbftk=) 2: 078AE946642A11EAA019224CC4F9AE02.roa (hash: mTWsYywMPiMfrhBIpNOsBljvGA4XjVbx+hSty7byGCw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FE7DB/B951E28C3DCA11EA81B9D352C4F9AE02/rroZtvzB0hrnExdw57HaPhR17JA.crl rsync://rpki.apnic.net/member_repository/A91FE7DB/B951E28C3DCA11EA81B9D352C4F9AE02/rroZtvzB0hrnExdw57HaPhR17JA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rroZtvzB0hrnExdw57HaPhR17JA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 19:25:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2852 (0xb24) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FE7DB, serialNumber=AEBA19B6FCC1D21AE7131770E7B1DA3E1475EC90 Validity Not Before: May 30 19:25:27 2025 GMT Not After : Jun 6 19:25:27 2025 GMT Subject: CN=683a0627-7e9a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:37:f6:7d:6d:42:48:ab:83:a9:04:9e:e7:aa: 4d:89:66:35:0b:d9:8a:af:44:b6:ba:d7:0c:35:95: 86:91:43:39:8d:94:d8:4a:d7:9a:60:26:81:35:87: e4:09:18:de:38:a5:c0:b4:85:6f:9e:b4:cb:a3:e0: 25:6f:fa:13:60:e9:a2:ec:1b:c3:50:b2:23:70:6e: c3:2a:33:6b:07:62:7d:d2:73:24:42:2d:0f:d6:fc: 82:62:7d:57:a2:46:19:9b:de:bd:56:b8:2d:3a:2a: d1:4a:be:d9:b8:0e:ad:85:a8:e6:fc:2c:fb:d7:99: de:16:9c:57:05:3e:36:1a:c6:49:48:14:79:fd:52: 83:f4:2c:b5:b3:90:ad:1b:95:b8:1b:9a:5d:ce:79: 34:74:d7:70:43:a9:0a:3a:bb:e5:33:a5:7c:3e:fe: 50:cc:d8:60:36:fa:a0:e7:7c:90:3b:30:fa:4b:8d: 3c:c0:b9:e1:88:43:db:36:fb:23:c1:d4:19:0a:02: ba:06:6b:35:a9:82:14:51:2d:6c:45:7e:7d:69:b4: 8e:80:5b:62:05:b2:0b:1d:09:8e:c9:9d:10:1d:c7: 36:d2:60:07:e1:8b:cf:10:44:02:f9:31:c5:43:5b: ea:75:e7:16:83:66:63:f3:56:6f:0c:69:b2:42:41: ef:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 50:00:7C:16:A7:0E:4D:C7:33:DD:32:0F:67:83:9F:07:2C:6F:6F:D6 X509v3 Authority Key Identifier: keyid:AE:BA:19:B6:FC:C1:D2:1A:E7:13:17:70:E7:B1:DA:3E:14:75:EC:90 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FE7DB/B951E28C3DCA11EA81B9D352C4F9AE02/rroZtvzB0hrnExdw57HaPhR17JA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rroZtvzB0hrnExdw57HaPhR17JA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FE7DB/B951E28C3DCA11EA81B9D352C4F9AE02/rroZtvzB0hrnExdw57HaPhR17JA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 85:bb:0b:51:02:0b:ed:f3:1d:2f:66:1b:3b:9a:fd:f2:1a:ca: 97:ce:b2:12:48:1f:b8:5a:bb:31:c1:74:7f:2b:55:c8:64:13: 39:4b:89:0b:e7:20:a4:64:8d:d7:97:73:47:b7:05:cf:db:bf: da:8b:ec:88:bf:cf:c3:fb:ed:50:48:85:62:4e:72:c7:cb:0e: fa:06:9d:99:14:06:4c:e8:34:b0:c2:fb:59:e4:db:5e:5d:3d: f7:4f:11:69:82:3f:55:65:3a:12:d4:74:f7:f0:01:36:56:c2: e6:60:5c:81:3c:12:8f:43:70:ed:5f:68:f5:d1:a4:72:79:b6: 51:8b:cf:40:94:9d:47:b8:e5:73:06:fe:cf:29:b9:46:d7:1e: db:fc:9d:86:2b:f2:93:a8:fd:5b:33:9d:d1:e0:07:c7:27:64: e3:80:76:9d:8f:79:2d:f3:ba:8c:96:bf:8e:1a:56:78:89:64: ba:00:84:f0:44:53:17:3b:ea:ac:98:f3:43:d0:b9:aa:8b:c6: 15:19:21:eb:ac:cb:56:98:b4:da:66:d1:c3:8b:dc:bd:a0:a0: 41:86:b2:93:88:96:6b:97:7a:e2:82:ab:25:7b:49:63:6d:ce: e4:69:0d:29:74:96:59:44:5b:5c:fd:31:43:cd:78:42:3a:c7: 3a:b8:4f:51 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCyQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkU3REIxMTAvBgNVBAUTKEFFQkExOUI2RkNDMUQyMUFFNzEzMTc3MEU3QjFEQTNF MTQ3NUVDOTAwHhcNMjUwNTMwMTkyNTI3WhcNMjUwNjA2MTkyNTI3WjAYMRYwFAYD VQQDEw02ODNhMDYyNy03ZTlhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2Tf2fW1CSKuDqQSe56pNiWY1C9mKr0S2utcMNZWGkUM5jZTYSteaYCaBNYfk CRjeOKXAtIVvnrTLo+Alb/oTYOmi7BvDULIjcG7DKjNrB2J90nMkQi0P1vyCYn1X okYZm969VrgtOirRSr7ZuA6thajm/Cz715neFpxXBT42GsZJSBR5/VKD9Cy1s5Ct G5W4G5pdznk0dNdwQ6kKOrvlM6V8Pv5QzNhgNvqg53yQOzD6S408wLnhiEPbNvsj wdQZCgK6Bms1qYIUUS1sRX59abSOgFtiBbILHQmOyZ0QHcc20mAH4YvPEEQC+THF Q1vqdecWg2Zj81ZvDGmyQkHvXQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFAAfBan Dk3HM90yD2eDnwcsb2/WMB8GA1UdIwQYMBaAFK66Gbb8wdIa5xMXcOex2j4UdeyQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGRTdEQi9COTUxRTI4QzNE Q0ExMUVBODFCOUQzNTJDNEY5QUUwMi9ycm9adHZ6QjBocm5FeGR3NTdIYVBoUjE3 SkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3Jyb1p0dnpCMGhybkV4ZHc1N0hhUGhSMTdKQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG RTdEQi9COTUxRTI4QzNEQ0ExMUVBODFCOUQzNTJDNEY5QUUwMi9ycm9adHZ6QjBo cm5FeGR3NTdIYVBoUjE3SkEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCFuwtRAgvt8x0vZhs7mv3yGsqXzrISSB+4WrsxwXR/K1XIZBM5S4kL 5yCkZI3Xl3NHtwXP27/ai+yIv8/D++1QSIViTnLHyw76Bp2ZFAZM6DSwwvtZ5Nte XT33TxFpgj9VZToS1HT38AE2VsLmYFyBPBKPQ3DtX2j10aRyebZRi89AlJ1HuOVz Bv7PKblG1x7b/J2GK/KTqP1bM53R4AfHJ2TjgHadj3kt87qMlr+OGlZ4iWS6AITw RFMXO+qsmPND0Lmqi8YVGSHrrMtWmLTaZtHDi9y9oKBBhrKTiJZrl3rigqsle0lj bc7kaQ0pdJZZRFtc/TFDzXhCOsc6uE9R -----END CERTIFICATE-----Generated at Sat May 31 17:06:25 2025 by rpki-client