$ rpki-client -vvf rpki.apnic.net/member_repository/A91A6F2D/6F821178AB8811EF80C75A74C4F9AE02/r2ctqMXR1sgNUGF4yefLdE9uOOY.mft File: r2ctqMXR1sgNUGF4yefLdE9uOOY.mft (raw, json) Hash identifier: gomfDTWnSBZBmKAmDtroLuizXAKf29Rjh02h63JikNI= Subject key identifier: 73:C3:DA:E4:91:AC:F5:85:A6:4F:BE:42:A7:54:5E:34:2E:01:31:97 Authority key identifier: AF:67:2D:A8:C5:D1:D6:C8:0D:50:61:78:C9:E7:CB:74:4F:6E:38:E6 Certificate issuer: /CN=A91A6F2D/serialNumber=AF672DA8C5D1D6C80D506178C9E7CB744F6E38E6 Certificate serial: 5A Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/r2ctqMXR1sgNUGF4yefLdE9uOOY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A6F2D/6F821178AB8811EF80C75A74C4F9AE02/r2ctqMXR1sgNUGF4yefLdE9uOOY.mft Manifest number: 59 Signing time: Mon 12 May 2025 22:50:42 +0000 Manifest this update: Mon 12 May 2025 22:50:42 +0000 Manifest next update: Mon 19 May 2025 22:50:42 +0000 Files and hashes: 1: r2ctqMXR1sgNUGF4yefLdE9uOOY.crl (hash: PtxH4QEXFlkOM3rbJzwHQJM8YLUll2SRaewH5/WAlC0=) 2: FBE0AB56AC6511EFAEAA8A3CC4F9AE02.roa (hash: 2bzYWZhSZUzBimn1IglwPv7AEhVCAaK8feLQOEL571A=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A6F2D/6F821178AB8811EF80C75A74C4F9AE02/r2ctqMXR1sgNUGF4yefLdE9uOOY.crl rsync://rpki.apnic.net/member_repository/A91A6F2D/6F821178AB8811EF80C75A74C4F9AE02/r2ctqMXR1sgNUGF4yefLdE9uOOY.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/r2ctqMXR1sgNUGF4yefLdE9uOOY.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 19 May 2025 22:50:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 90 (0x5a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A6F2D, serialNumber=AF672DA8C5D1D6C80D506178C9E7CB744F6E38E6 Validity Not Before: May 12 22:50:42 2025 GMT Not After : May 19 22:50:42 2025 GMT Subject: CN=68227b42-ae8b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:a6:02:76:3d:95:17:22:c9:68:12:b9:06:69: fa:62:7b:c5:65:3f:f9:7e:cb:ce:83:f6:a6:19:61: df:1b:93:81:41:64:a6:86:d4:6f:f9:1a:89:fc:f4: 5b:48:d4:4f:28:9c:ec:a8:2c:bf:bb:48:6d:a1:da: 46:23:a4:c3:e3:14:d3:d0:b9:fb:00:fa:74:7a:5c: cb:51:b8:99:cb:89:47:53:f1:fd:20:d8:d4:7c:0b: 76:01:c0:cb:e9:c2:ec:e9:49:db:7d:74:ad:91:1c: 15:dc:66:1f:ee:23:60:9a:fd:b5:72:5b:12:d8:c2: 9d:c2:ac:f3:41:03:b0:1f:b6:7c:e4:63:37:5b:fa: b5:20:cc:2c:3a:16:c9:31:68:4e:d7:58:2e:fa:bc: b0:56:34:71:89:aa:5a:87:23:b3:14:7f:57:68:7b: ef:ff:39:d6:6c:9e:69:c2:59:6c:bc:e2:55:8c:d1: cc:5c:4d:b9:a9:84:96:2f:31:27:c6:59:cd:c1:c9: aa:46:dc:3b:0d:df:ac:eb:1d:1b:c9:c1:30:98:36: 12:46:0b:3c:e1:9c:ce:1c:ad:5b:bf:37:6b:73:7c: c4:58:94:53:09:ad:7d:27:52:d7:9e:f6:cc:08:32: fa:36:fe:ea:65:51:6e:d8:f6:a5:ac:e9:34:97:5f: 47:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 73:C3:DA:E4:91:AC:F5:85:A6:4F:BE:42:A7:54:5E:34:2E:01:31:97 X509v3 Authority Key Identifier: keyid:AF:67:2D:A8:C5:D1:D6:C8:0D:50:61:78:C9:E7:CB:74:4F:6E:38:E6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A6F2D/6F821178AB8811EF80C75A74C4F9AE02/r2ctqMXR1sgNUGF4yefLdE9uOOY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/r2ctqMXR1sgNUGF4yefLdE9uOOY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A6F2D/6F821178AB8811EF80C75A74C4F9AE02/r2ctqMXR1sgNUGF4yefLdE9uOOY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6a:70:f2:61:c3:d7:b5:c4:74:58:01:e7:db:20:6c:9c:6a:94: a1:8c:05:be:cf:98:1e:bc:f0:f9:be:81:68:a2:44:d5:0f:7f: ff:ac:25:ac:2d:50:8d:83:38:e1:f9:ab:de:cb:a8:ca:31:0d: 02:ab:c2:99:71:c8:5d:19:9b:c2:d4:5b:c0:ce:12:8f:00:b0: e2:7d:a2:a7:8a:42:b9:c0:74:c3:d3:f2:2f:f8:c5:a7:b8:10: 83:9f:ac:d2:73:41:df:a2:97:69:d0:ac:eb:a6:3e:7e:85:22: a8:0f:8b:1d:c9:ba:ec:bf:6c:bd:3a:90:e0:b7:4e:25:96:d6: fd:cf:ad:73:96:16:fe:00:12:9a:84:60:50:67:36:5c:4f:eb: ed:91:4d:17:e4:38:d5:d7:8a:92:ec:73:d6:e0:58:a6:a1:d2: 44:87:bd:43:d4:03:66:1d:fb:99:7c:49:7a:26:b2:9c:69:f8: 6c:ea:79:be:2e:c1:53:67:5d:82:cf:f5:a6:20:c7:6f:d7:23: 28:24:2e:a7:e5:7f:32:63:34:a2:f1:7e:e3:ec:91:b8:c9:f8: 51:44:f1:6a:03:24:5c:36:f1:20:09:ed:af:6f:c5:a8:06:04: 72:93:f2:34:f3:ca:d6:79:38:2a:3c:b2:88:60:fb:1e:9f:45: 8a:32:8f:63 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBWjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFB NkYyRDExMC8GA1UEBRMoQUY2NzJEQThDNUQxRDZDODBENTA2MTc4QzlFN0NCNzQ0 RjZFMzhFNjAeFw0yNTA1MTIyMjUwNDJaFw0yNTA1MTkyMjUwNDJaMBgxFjAUBgNV BAMTDTY4MjI3YjQyLWFlOGIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDRpgJ2PZUXIsloErkGafpie8VlP/l+y86D9qYZYd8bk4FBZKaG1G/5Gon89FtI 1E8onOyoLL+7SG2h2kYjpMPjFNPQufsA+nR6XMtRuJnLiUdT8f0g2NR8C3YBwMvp wuzpSdt9dK2RHBXcZh/uI2Ca/bVyWxLYwp3CrPNBA7AftnzkYzdb+rUgzCw6Fskx aE7XWC76vLBWNHGJqlqHI7MUf1doe+//OdZsnmnCWWy84lWM0cxcTbmphJYvMSfG Wc3ByapG3DsN36zrHRvJwTCYNhJGCzzhnM4crVu/N2tzfMRYlFMJrX0nUtee9swI Mvo2/uplUW7Y9qWs6TSXX0eRAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUc8Pa5JGs 9YWmT75Cp1ReNC4BMZcwHwYDVR0jBBgwFoAUr2ctqMXR1sgNUGF4yefLdE9uOOYw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUE2RjJELzZGODIxMTc4QUI4 ODExRUY4MEM3NUE3NEM0RjlBRTAyL3IyY3RxTVhSMXNnTlVHRjR5ZWZMZEU5dU9P WS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvcjJjdHFNWFIxc2dOVUdGNHllZkxkRTl1T09ZLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUE2 RjJELzZGODIxMTc4QUI4ODExRUY4MEM3NUE3NEM0RjlBRTAyL3IyY3RxTVhSMXNn TlVHRjR5ZWZMZEU5dU9PWS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAGpw8mHD17XEdFgB59sgbJxqlKGMBb7PmB688Pm+gWiiRNUPf/+sJawt UI2DOOH5q97LqMoxDQKrwplxyF0Zm8LUW8DOEo8AsOJ9oqeKQrnAdMPT8i/4xae4 EIOfrNJzQd+il2nQrOumPn6FIqgPix3Juuy/bL06kOC3TiWW1v3PrXOWFv4AEpqE YFBnNlxP6+2RTRfkONXXipLsc9bgWKah0kSHvUPUA2Yd+5l8SXomspxp+Gzqeb4u wVNnXYLP9aYgx2/XIygkLqflfzJjNKLxfuPskbjJ+FFE8WoDJFw28SAJ7a9vxagG BHKT8jTzytZ5OCo8sohg+x6fRYoyj2M= -----END CERTIFICATE-----Generated at Wed May 14 18:19:20 2025 by rpki-client