$ rpki-client -vvf rpki.apnic.net/member_repository/A91FF74B/61A3384A782C11EBAC04F672C4F9AE02/BZ5vA652dqnQ8J1fbL25CGGFWlc.mft File: BZ5vA652dqnQ8J1fbL25CGGFWlc.mft (raw, json) Hash identifier: CAtgkr5yPGZU1TwT3fxGcr5ESrGsbOxQS9sEMUQnho4= Subject key identifier: EA:73:71:18:A3:DB:38:47:FE:F0:D2:E0:46:86:57:1B:C5:10:EE:80 Authority key identifier: 05:9E:6F:03:AE:76:76:A9:D0:F0:9D:5F:6C:BD:B9:08:61:85:5A:57 Certificate issuer: /CN=A91FF74B/serialNumber=059E6F03AE7676A9D0F09D5F6CBDB90861855A57 Certificate serial: 06CB Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/BZ5vA652dqnQ8J1fbL25CGGFWlc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FF74B/61A3384A782C11EBAC04F672C4F9AE02/BZ5vA652dqnQ8J1fbL25CGGFWlc.mft Manifest number: 06AF Signing time: Sat 31 May 2025 21:49:47 +0000 Manifest this update: Sat 31 May 2025 21:49:46 +0000 Manifest next update: Sat 07 Jun 2025 21:49:46 +0000 Files and hashes: 1: BZ5vA652dqnQ8J1fbL25CGGFWlc.crl (hash: lKF3rgemptmuqzXnmFyHby2dR9qttUhQr2X7s7GYYdQ=) 2: 7E0AB01C782C11EBB0B71971C4F9AE02.roa (hash: k3Hyvnta3NTSihzOI6GhNOzxp4Li4ZxAgK0C//8NE4o=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FF74B/61A3384A782C11EBAC04F672C4F9AE02/BZ5vA652dqnQ8J1fbL25CGGFWlc.crl rsync://rpki.apnic.net/member_repository/A91FF74B/61A3384A782C11EBAC04F672C4F9AE02/BZ5vA652dqnQ8J1fbL25CGGFWlc.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/BZ5vA652dqnQ8J1fbL25CGGFWlc.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 21:49:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1739 (0x6cb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FF74B, serialNumber=059E6F03AE7676A9D0F09D5F6CBDB90861855A57 Validity Not Before: May 31 21:49:46 2025 GMT Not After : Jun 7 21:49:46 2025 GMT Subject: CN=683b797b-78b7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:a2:13:a1:08:e5:27:2f:62:55:08:9e:be:f6: 85:09:8d:69:81:55:c1:03:3c:58:d1:40:8b:e0:af: 8e:94:d8:9c:c5:a2:0c:59:d0:5a:a3:33:a2:e9:79: c7:f2:a1:d5:4c:9a:3b:f3:74:82:c1:af:62:af:c9: 2f:75:3e:e4:f1:4d:96:df:74:fd:f5:14:d3:a0:75: 72:6a:d8:26:f8:29:1b:16:05:5e:24:8e:9d:82:06: 23:03:ae:43:6d:39:0d:c2:6b:88:ec:58:1d:17:5e: 07:81:ed:16:a6:bd:cf:40:d2:03:68:53:5f:86:2f: 5a:bc:1b:18:23:94:55:e7:76:d3:f6:1b:90:bd:4d: a7:0e:f2:96:7d:d3:da:19:30:5b:49:94:cd:38:1b: 3a:2d:ff:0f:8f:24:af:15:79:c9:03:d8:87:4a:8d: 78:b5:7e:88:1f:56:17:e6:aa:80:5d:41:38:a1:67: 7e:22:aa:d2:59:82:7e:bc:22:06:51:b0:5d:c3:f8: 16:04:5a:49:8e:e2:d6:b7:49:3b:97:f3:05:be:21: 05:4e:b0:77:ec:d9:bf:90:27:c2:2c:f1:42:f3:75: 48:7a:e1:76:b9:1d:eb:16:08:fc:7e:14:b7:47:22: b0:cd:33:27:41:ed:6b:f8:d8:e9:0e:a2:6c:ea:1a: ec:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EA:73:71:18:A3:DB:38:47:FE:F0:D2:E0:46:86:57:1B:C5:10:EE:80 X509v3 Authority Key Identifier: keyid:05:9E:6F:03:AE:76:76:A9:D0:F0:9D:5F:6C:BD:B9:08:61:85:5A:57 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FF74B/61A3384A782C11EBAC04F672C4F9AE02/BZ5vA652dqnQ8J1fbL25CGGFWlc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/BZ5vA652dqnQ8J1fbL25CGGFWlc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FF74B/61A3384A782C11EBAC04F672C4F9AE02/BZ5vA652dqnQ8J1fbL25CGGFWlc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 84:4c:93:8e:70:0a:eb:02:4e:55:80:9b:c2:c9:f9:1e:23:79: 30:56:bf:2c:bf:d8:7b:6c:fe:6c:2c:a7:60:89:ca:95:cc:59: 7d:9d:c6:6c:3b:6e:8c:5d:47:f3:b5:b0:8b:fa:91:7a:0a:0b: 8e:10:e2:db:a6:5b:93:c9:b5:32:5c:ff:de:38:dd:af:d9:66: cc:4d:2b:c3:d5:46:16:05:9d:47:98:6d:00:08:30:02:a6:48: dd:21:99:02:b0:76:95:9e:28:a9:9c:14:7b:fa:68:b6:86:85: 08:56:ea:c0:57:2d:ce:11:4f:5b:30:20:d3:02:28:e7:c1:60: bd:0b:52:ac:d4:8a:8c:d3:65:9d:38:b6:8c:9e:95:d0:58:f7: 5a:d0:b8:88:44:6e:7e:85:9a:87:70:d1:bb:ed:0a:69:f6:aa: fa:86:07:2f:60:61:10:78:1d:77:3e:b2:31:36:c7:70:02:b4: de:71:02:ed:99:88:b2:77:40:c8:f4:27:60:a8:71:12:d0:1b: 46:c3:e5:d8:81:ae:35:ea:cd:ce:7a:36:91:ee:97:93:fb:b4: f0:ab:20:b9:1e:28:f3:a2:f2:c0:d1:49:22:7c:1d:fd:24:74: b8:21:f8:46:d4:9d:cd:f5:65:57:c1:19:e9:6c:cf:c0:b8:9d: a1:1b:46:d3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBsswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkY3NEIxMTAvBgNVBAUTKDA1OUU2RjAzQUU3Njc2QTlEMEYwOUQ1RjZDQkRCOTA4 NjE4NTVBNTcwHhcNMjUwNTMxMjE0OTQ2WhcNMjUwNjA3MjE0OTQ2WjAYMRYwFAYD VQQDEw02ODNiNzk3Yi03OGI3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzKIToQjlJy9iVQievvaFCY1pgVXBAzxY0UCL4K+OlNicxaIMWdBaozOi6XnH 8qHVTJo783SCwa9ir8kvdT7k8U2W33T99RTToHVyatgm+CkbFgVeJI6dggYjA65D bTkNwmuI7FgdF14Hge0Wpr3PQNIDaFNfhi9avBsYI5RV53bT9huQvU2nDvKWfdPa GTBbSZTNOBs6Lf8PjySvFXnJA9iHSo14tX6IH1YX5qqAXUE4oWd+IqrSWYJ+vCIG UbBdw/gWBFpJjuLWt0k7l/MFviEFTrB37Nm/kCfCLPFC83VIeuF2uR3rFgj8fhS3 RyKwzTMnQe1r+NjpDqJs6hrs6QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOpzcRij 2zhH/vDS4EaGVxvFEO6AMB8GA1UdIwQYMBaAFAWebwOudnap0PCdX2y9uQhhhVpX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGRjc0Qi82MUEzMzg0QTc4 MkMxMUVCQUMwNEY2NzJDNEY5QUUwMi9CWjV2QTY1MmRxblE4SjFmYkwyNUNHR0ZX bGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0JaNXZBNjUyZHFuUThKMWZiTDI1Q0dHRldsYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG Rjc0Qi82MUEzMzg0QTc4MkMxMUVCQUMwNEY2NzJDNEY5QUUwMi9CWjV2QTY1MmRx blE4SjFmYkwyNUNHR0ZXbGMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCETJOOcArrAk5VgJvCyfkeI3kwVr8sv9h7bP5sLKdgicqVzFl9ncZs O26MXUfztbCL+pF6CguOEOLbpluTybUyXP/eON2v2WbMTSvD1UYWBZ1HmG0ACDAC pkjdIZkCsHaVniipnBR7+mi2hoUIVurAVy3OEU9bMCDTAijnwWC9C1Ks1IqM02Wd OLaMnpXQWPda0LiIRG5+hZqHcNG77Qpp9qr6hgcvYGEQeB13PrIxNsdwArTecQLt mYiyd0DI9CdgqHES0BtGw+XYga416s3OejaR7peT+7TwqyC5HijzovLA0UkifB39 JHS4IfhG1J3N9WVXwRnpbM/AuJ2hG0bT -----END CERTIFICATE-----Generated at Mon Jun 2 22:05:59 2025 by rpki-client