$ rpki-client -vvf rpki.apnic.net/member_repository/A91FEFBB/D896B5C8EA6A11EDB5B6B55EC4F9AE02/2nWrD7Oqh1r631o4-FK9zB3YJvc.mft File: 2nWrD7Oqh1r631o4-FK9zB3YJvc.mft (raw, json) Hash identifier: 4gPxRPmFtRxmjBodESm3bm+aLES5e5jsXF/UKVQToI4= Subject key identifier: DA:DE:EC:A3:54:24:72:29:81:FC:03:95:C3:C6:AD:35:1F:BF:00:30 Authority key identifier: DA:75:AB:0F:B3:AA:87:5A:FA:DF:5A:38:F8:52:BD:CC:1D:D8:26:F7 Certificate issuer: /CN=A91FEFBB/serialNumber=DA75AB0FB3AA875AFADF5A38F852BDCC1DD826F7 Certificate serial: 0191 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2nWrD7Oqh1r631o4-FK9zB3YJvc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FEFBB/D896B5C8EA6A11EDB5B6B55EC4F9AE02/2nWrD7Oqh1r631o4-FK9zB3YJvc.mft Manifest number: 0189 Signing time: Sat 31 May 2025 03:16:58 +0000 Manifest this update: Sat 31 May 2025 03:16:57 +0000 Manifest next update: Sat 07 Jun 2025 03:16:57 +0000 Files and hashes: 1: 2nWrD7Oqh1r631o4-FK9zB3YJvc.crl (hash: uIgvJKvEWMO80TtPVNOOaDvvavR9zIsE/pZKv5HdhnI=) 2: 261D3B8AEE4611ED9BEFED31C4F9AE02.roa (hash: HkCOmQRPg+yDDZPtodRzZcHCpOQoTEGcVWS7eV1BiSA=) 3: 881C3F9CABD311EFBFED7130C4F9AE02.roa (hash: 4Vu2iECkKD+oqedLfhjWXd7CHOWEQhszvHID7EwF+IE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FEFBB/D896B5C8EA6A11EDB5B6B55EC4F9AE02/2nWrD7Oqh1r631o4-FK9zB3YJvc.crl rsync://rpki.apnic.net/member_repository/A91FEFBB/D896B5C8EA6A11EDB5B6B55EC4F9AE02/2nWrD7Oqh1r631o4-FK9zB3YJvc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2nWrD7Oqh1r631o4-FK9zB3YJvc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 03:16:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 401 (0x191) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FEFBB, serialNumber=DA75AB0FB3AA875AFADF5A38F852BDCC1DD826F7 Validity Not Before: May 31 03:16:57 2025 GMT Not After : Jun 7 03:16:57 2025 GMT Subject: CN=683a74aa-6682 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:d6:fe:16:af:dc:8d:99:24:71:0e:fe:81:ca: 8d:64:36:28:92:cc:12:5b:9a:7f:89:f9:8a:e6:bf: 65:ab:33:ad:29:28:a4:a5:d4:c2:3f:a0:1e:c0:07: 32:b3:74:e4:2f:ff:a3:4a:e6:d2:36:be:42:98:0e: 0d:14:e3:fc:8a:e4:fd:f7:cb:d6:bb:52:c8:21:e7: 04:1d:d5:a7:22:92:3b:7e:3f:b4:f7:22:d9:5c:1c: 94:63:49:08:18:d9:3c:17:44:27:a0:c7:b0:d4:23: 10:f0:72:a5:9b:57:43:49:dd:5c:54:8d:7b:cd:26: cf:43:15:17:b7:a7:eb:1a:59:31:b8:dd:9b:b0:7c: bd:ee:a4:4e:a8:1c:a1:fe:34:ba:cc:ef:f1:30:9a: a5:5f:93:45:12:6b:46:42:68:8f:e7:c3:fc:36:4d: 65:e1:4c:4b:f4:87:12:a1:25:dd:d0:6e:db:5d:33: e7:ec:92:5c:7f:08:33:4c:3f:e2:87:ea:78:81:df: a3:16:7c:b6:26:0b:a4:99:5c:09:4f:cb:2f:61:4d: 7d:12:a0:14:b0:bf:8c:9d:2e:06:78:81:e5:99:3a: cf:b4:e8:b7:03:82:8d:46:9f:80:b1:21:f3:4d:9b: 55:25:27:b7:b8:75:19:f3:85:9b:3d:4e:d3:80:b5: bc:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DA:DE:EC:A3:54:24:72:29:81:FC:03:95:C3:C6:AD:35:1F:BF:00:30 X509v3 Authority Key Identifier: keyid:DA:75:AB:0F:B3:AA:87:5A:FA:DF:5A:38:F8:52:BD:CC:1D:D8:26:F7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FEFBB/D896B5C8EA6A11EDB5B6B55EC4F9AE02/2nWrD7Oqh1r631o4-FK9zB3YJvc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2nWrD7Oqh1r631o4-FK9zB3YJvc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FEFBB/D896B5C8EA6A11EDB5B6B55EC4F9AE02/2nWrD7Oqh1r631o4-FK9zB3YJvc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 03:cf:6f:2a:c0:14:1a:1b:42:b9:9b:47:be:aa:9b:da:08:5a: 76:70:7b:d5:55:09:08:45:b0:84:57:4e:ca:c7:c8:0a:ae:57: c7:f1:22:3a:83:47:dc:4b:9b:f0:12:ff:22:fa:79:da:d6:5d: 4f:b6:a1:f0:89:0b:8b:45:55:94:86:9c:65:10:cc:97:77:5d: e1:71:27:4d:1c:8d:aa:8c:41:b0:d1:4d:72:90:89:25:46:1f: bc:1e:d0:cc:9f:7c:99:ba:ff:e7:1f:48:1a:e0:af:87:56:37: 35:84:39:dd:09:27:ea:20:7f:dd:a3:4f:cd:b9:a6:c3:bb:a7: 07:da:ee:ae:9a:7e:57:b6:e1:39:19:03:2b:9c:75:d2:06:58: 65:d7:1b:50:5d:9d:ee:5e:13:b2:11:6f:0d:fa:14:85:c5:47: 95:ff:93:4b:3e:46:df:c6:04:b7:1c:f2:ee:8e:45:ba:04:ce: f7:90:b5:1d:a0:71:ce:48:ac:e6:08:38:0e:67:14:3d:ee:55: 52:b7:e0:58:c0:15:60:c3:a9:3e:b3:54:15:74:08:ad:53:8c: 52:2f:60:d2:b6:76:35:e1:73:86:87:22:f1:92:49:2c:10:d4: f4:42:6f:8e:ca:d0:66:cb:ec:42:98:0c:56:70:46:f4:7a:e9: 1e:d2:95:39 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAZEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkVGQkIxMTAvBgNVBAUTKERBNzVBQjBGQjNBQTg3NUFGQURGNUEzOEY4NTJCREND MUREODI2RjcwHhcNMjUwNTMxMDMxNjU3WhcNMjUwNjA3MDMxNjU3WjAYMRYwFAYD VQQDEw02ODNhNzRhYS02NjgyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxtb+Fq/cjZkkcQ7+gcqNZDYokswSW5p/ifmK5r9lqzOtKSikpdTCP6AewAcy s3TkL/+jSubSNr5CmA4NFOP8iuT998vWu1LIIecEHdWnIpI7fj+09yLZXByUY0kI GNk8F0QnoMew1CMQ8HKlm1dDSd1cVI17zSbPQxUXt6frGlkxuN2bsHy97qROqByh /jS6zO/xMJqlX5NFEmtGQmiP58P8Nk1l4UxL9IcSoSXd0G7bXTPn7JJcfwgzTD/i h+p4gd+jFny2JgukmVwJT8svYU19EqAUsL+MnS4GeIHlmTrPtOi3A4KNRp+AsSHz TZtVJSe3uHUZ84WbPU7TgLW8aQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNre7KNU JHIpgfwDlcPGrTUfvwAwMB8GA1UdIwQYMBaAFNp1qw+zqoda+t9aOPhSvcwd2Cb3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGRUZCQi9EODk2QjVDOEVB NkExMUVEQjVCNkI1NUVDNEY5QUUwMi8ybldyRDdPcWgxcjYzMW80LUZLOXpCM1lK dmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJuV3JEN09xaDFyNjMxbzQtRks5ekIzWUp2Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG RUZCQi9EODk2QjVDOEVBNkExMUVEQjVCNkI1NUVDNEY5QUUwMi8ybldyRDdPcWgx cjYzMW80LUZLOXpCM1lKdmMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQADz28qwBQaG0K5m0e+qpvaCFp2cHvVVQkIRbCEV07Kx8gKrlfH8SI6 g0fcS5vwEv8i+nna1l1PtqHwiQuLRVWUhpxlEMyXd13hcSdNHI2qjEGw0U1ykIkl Rh+8HtDMn3yZuv/nH0ga4K+HVjc1hDndCSfqIH/do0/NuabDu6cH2u6umn5XtuE5 GQMrnHXSBlhl1xtQXZ3uXhOyEW8N+hSFxUeV/5NLPkbfxgS3HPLujkW6BM73kLUd oHHOSKzmCDgOZxQ97lVSt+BYwBVgw6k+s1QVdAitU4xSL2DStnY14XOGhyLxkkks ENT0Qm+OytBmy+xCmAxWcEb0euke0pU5 -----END CERTIFICATE-----Generated at Sat May 31 16:35:50 2025 by rpki-client