$ rpki-client -vvf rpki.apnic.net/member_repository/A91892EB/FD0081DEC56711EBAFEA602BC4F9AE02/C2zfP6zGgLeGkm3hOfHg9nREBlQ.mft File: C2zfP6zGgLeGkm3hOfHg9nREBlQ.mft (raw, json) Hash identifier: N+Dzo02wflEJCw3vE2mIb6JsOIKQ/8U+uqawvs6vu20= Subject key identifier: A3:20:83:D3:2D:3B:AD:EA:E0:C7:32:E6:EF:3A:CB:9F:D2:5F:D2:13 Authority key identifier: 0B:6C:DF:3F:AC:C6:80:B7:86:92:6D:E1:39:F1:E0:F6:74:44:06:54 Certificate issuer: /CN=A91892EB/serialNumber=0B6CDF3FACC680B786926DE139F1E0F674440654 Certificate serial: 05D6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C2zfP6zGgLeGkm3hOfHg9nREBlQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91892EB/FD0081DEC56711EBAFEA602BC4F9AE02/C2zfP6zGgLeGkm3hOfHg9nREBlQ.mft Manifest number: 05BF Signing time: Mon 12 May 2025 22:55:46 +0000 Manifest this update: Mon 12 May 2025 22:55:46 +0000 Manifest next update: Mon 19 May 2025 22:55:46 +0000 Files and hashes: 1: C2zfP6zGgLeGkm3hOfHg9nREBlQ.crl (hash: Mo9b0i3k43TVNxzGJj+/wutwAzn30dc8Ot9HwfC/nt0=) 2: 387532CEE46D11EE8DBC2937C4F9AE02.roa (hash: ruwggHNoAUFm9Chx4UGeH2/Ms9/ktBjyMv9b4cEeu5E=) 3: F4DC3C2AC59211EBAA9C5B7BC4F9AE02.roa (hash: Ofg177dT9U9TbFcWrgETTbW4rQYxs3ewgMOUkLe9Rug=) 4: F5BE1E346FFD11EE83D3D154C4F9AE02.roa (hash: zkvJXsg6ZbaTEwK193SUdCnoyTyMt79mUaZuDwnshuE=) 5: D4413B92007C11EE99460918C4F9AE02.roa (hash: bEBpIBlAOueDVvlaTSK/ST40bTuOmwGNh/38eLyftkg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91892EB/FD0081DEC56711EBAFEA602BC4F9AE02/C2zfP6zGgLeGkm3hOfHg9nREBlQ.crl rsync://rpki.apnic.net/member_repository/A91892EB/FD0081DEC56711EBAFEA602BC4F9AE02/C2zfP6zGgLeGkm3hOfHg9nREBlQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C2zfP6zGgLeGkm3hOfHg9nREBlQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 19 May 2025 22:55:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1494 (0x5d6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91892EB, serialNumber=0B6CDF3FACC680B786926DE139F1E0F674440654 Validity Not Before: May 12 22:55:46 2025 GMT Not After : May 19 22:55:46 2025 GMT Subject: CN=68227c72-79d4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:bb:e6:f3:18:7e:18:61:1a:84:2d:49:a7:76: 55:a7:47:49:49:cf:a6:c7:a0:1d:27:19:ec:0f:72: 2f:69:e8:72:b0:eb:5b:fd:30:1f:c8:c1:0b:03:9d: a6:2d:36:e5:dd:f1:0c:b7:28:b6:8e:ee:a3:70:f2: 8a:d4:7f:5c:36:70:fd:f0:aa:d6:4d:90:c6:0f:3d: 00:40:96:4f:9e:38:71:9a:fa:3b:6e:a2:9a:1e:6f: 33:4c:d6:c9:e0:f3:b8:f7:ad:ff:a8:f2:8f:e9:04: 39:b6:a7:f8:98:9b:4e:c3:83:f8:84:79:98:dc:f0: 6e:ed:6f:bc:a7:bb:82:da:67:a2:0f:c4:80:fc:69: 80:b2:bb:7d:b7:61:c5:4e:46:b6:20:2a:b9:8e:d5: 95:6d:8e:41:1c:cb:fb:34:e7:e3:d6:47:2d:7f:99: 23:38:dc:ff:ca:43:af:60:ec:af:ba:07:e4:49:58: 80:4e:30:75:dc:31:72:6a:0c:c2:5c:c4:5e:62:34: cd:de:ee:e2:7a:f9:82:b9:5f:30:3f:23:21:d4:48: 1a:2c:4b:ec:b1:6e:bf:1c:3a:28:d9:a5:57:f1:8c: 37:83:c4:ba:9b:3e:3b:3b:06:1e:d2:d7:38:a5:52: 92:24:42:62:38:69:f2:0d:30:22:21:fa:22:d4:9f: f4:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A3:20:83:D3:2D:3B:AD:EA:E0:C7:32:E6:EF:3A:CB:9F:D2:5F:D2:13 X509v3 Authority Key Identifier: keyid:0B:6C:DF:3F:AC:C6:80:B7:86:92:6D:E1:39:F1:E0:F6:74:44:06:54 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91892EB/FD0081DEC56711EBAFEA602BC4F9AE02/C2zfP6zGgLeGkm3hOfHg9nREBlQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C2zfP6zGgLeGkm3hOfHg9nREBlQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91892EB/FD0081DEC56711EBAFEA602BC4F9AE02/C2zfP6zGgLeGkm3hOfHg9nREBlQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 12:92:27:2d:f3:fc:f0:17:c0:28:73:a7:3a:9e:0f:54:ef:9d: 5d:49:80:48:2c:e2:3a:c1:c8:3d:5d:1b:13:4a:6f:1a:cc:28: d4:7e:88:57:be:68:89:b8:b2:70:63:e0:56:bc:38:f1:41:ff: a0:19:33:ba:9e:dc:08:64:fa:cd:f7:2f:c1:e5:c8:ec:2b:63: 25:1e:99:b5:5e:db:e4:be:22:16:61:f5:ba:c1:a2:7c:f5:64: 50:33:47:ce:b4:d6:d8:5f:e6:bd:64:a0:23:8b:a5:95:97:76: d7:09:07:dd:99:44:7f:e3:83:8f:c1:0e:5e:b3:07:37:71:20: d4:52:a8:e5:61:d0:b9:99:78:c9:26:07:bb:da:d5:5e:b9:b2: ed:df:0f:ae:07:9c:6d:24:d2:c7:7a:76:e4:30:c8:47:8c:03: cf:c0:65:3f:b8:63:9e:9c:41:d9:49:ba:b7:9b:c2:18:da:f1: f3:e5:25:ff:b8:a2:d8:95:0e:79:01:8e:53:2c:53:34:ce:8e: 1c:e8:5f:7a:69:fa:ee:07:bc:64:87:29:fd:64:a4:dd:2c:f6: 71:c8:d3:f8:57:ce:9d:c2:47:79:2d:6e:64:6a:49:c5:60:d3: b5:23:7f:25:86:67:cc:7c:00:e2:de:dc:d8:70:b2:a7:d6:b6: 19:a2:fb:c7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBdYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODkyRUIxMTAvBgNVBAUTKDBCNkNERjNGQUNDNjgwQjc4NjkyNkRFMTM5RjFFMEY2 NzQ0NDA2NTQwHhcNMjUwNTEyMjI1NTQ2WhcNMjUwNTE5MjI1NTQ2WjAYMRYwFAYD VQQDEw02ODIyN2M3Mi03OWQ0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt7vm8xh+GGEahC1Jp3ZVp0dJSc+mx6AdJxnsD3IvaehysOtb/TAfyMELA52m LTbl3fEMtyi2ju6jcPKK1H9cNnD98KrWTZDGDz0AQJZPnjhxmvo7bqKaHm8zTNbJ 4PO4963/qPKP6QQ5tqf4mJtOw4P4hHmY3PBu7W+8p7uC2meiD8SA/GmAsrt9t2HF Tka2ICq5jtWVbY5BHMv7NOfj1kctf5kjONz/ykOvYOyvugfkSViATjB13DFyagzC XMReYjTN3u7ievmCuV8wPyMh1EgaLEvssW6/HDoo2aVX8Yw3g8S6mz47OwYe0tc4 pVKSJEJiOGnyDTAiIfoi1J/0DQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKMgg9Mt O63q4Mcy5u86y5/SX9ITMB8GA1UdIwQYMBaAFAts3z+sxoC3hpJt4Tnx4PZ0RAZU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4OTJFQi9GRDAwODFERUM1 NjcxMUVCQUZFQTYwMkJDNEY5QUUwMi9DMnpmUDZ6R2dMZUdrbTNoT2ZIZzluUkVC bFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0MyemZQNnpHZ0xlR2ttM2hPZkhnOW5SRUJsUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 OTJFQi9GRDAwODFERUM1NjcxMUVCQUZFQTYwMkJDNEY5QUUwMi9DMnpmUDZ6R2dM ZUdrbTNoT2ZIZzluUkVCbFEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQASkict8/zwF8Aoc6c6ng9U751dSYBILOI6wcg9XRsTSm8azCjUfohX vmiJuLJwY+BWvDjxQf+gGTO6ntwIZPrN9y/B5cjsK2MlHpm1XtvkviIWYfW6waJ8 9WRQM0fOtNbYX+a9ZKAji6WVl3bXCQfdmUR/44OPwQ5eswc3cSDUUqjlYdC5mXjJ Jge72tVeubLt3w+uB5xtJNLHenbkMMhHjAPPwGU/uGOenEHZSbq3m8IY2vHz5SX/ uKLYlQ55AY5TLFM0zo4c6F96afruB7xkhyn9ZKTdLPZxyNP4V86dwkd5LW5kaknF YNO1I38lhmfMfADi3tzYcLKn1rYZovvH -----END CERTIFICATE-----Generated at Wed May 14 03:24:42 2025 by rpki-client