$ rpki-client -vvf rpki.apnic.net/member_repository/A91A9B3C/3F3362DA86FA11EBB3C7BB29C4F9AE02/b2FOWP6Tat901zb1OS3tX9FrdYc.mft File: b2FOWP6Tat901zb1OS3tX9FrdYc.mft (raw, json) Hash identifier: CENJ0iXqm6BlQJGLbQ09i3Gbtpf9KugVFxQwpnle7cU= Subject key identifier: FF:7F:FA:80:48:A9:64:3E:B4:D6:CF:B9:70:90:D8:1F:25:1E:C1:16 Authority key identifier: 6F:61:4E:58:FE:93:6A:DF:74:D7:36:F5:39:2D:ED:5F:D1:6B:75:87 Certificate issuer: /CN=A91A9B3C/serialNumber=6F614E58FE936ADF74D736F5392DED5FD16B7587 Certificate serial: 0651 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b2FOWP6Tat901zb1OS3tX9FrdYc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A9B3C/3F3362DA86FA11EBB3C7BB29C4F9AE02/b2FOWP6Tat901zb1OS3tX9FrdYc.mft Manifest number: 064C Signing time: Sat 10 May 2025 22:09:56 +0000 Manifest this update: Sat 10 May 2025 22:09:56 +0000 Manifest next update: Sat 17 May 2025 22:09:56 +0000 Files and hashes: 1: b2FOWP6Tat901zb1OS3tX9FrdYc.crl (hash: aHR5+1PQYk4Wa85wr02W4o3KmugtbJOBUHJkyu5jiyg=) 2: 00D8BE5286FC11EB8A95642DC4F9AE02.roa (hash: k0J17sE1EdNCFMHPLLouV8rIaMP7CAywUqJdG5phE9Y=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A9B3C/3F3362DA86FA11EBB3C7BB29C4F9AE02/b2FOWP6Tat901zb1OS3tX9FrdYc.crl rsync://rpki.apnic.net/member_repository/A91A9B3C/3F3362DA86FA11EBB3C7BB29C4F9AE02/b2FOWP6Tat901zb1OS3tX9FrdYc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b2FOWP6Tat901zb1OS3tX9FrdYc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 17 May 2025 22:09:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1617 (0x651) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A9B3C, serialNumber=6F614E58FE936ADF74D736F5392DED5FD16B7587 Validity Not Before: May 10 22:09:56 2025 GMT Not After : May 17 22:09:56 2025 GMT Subject: CN=681fceb4-c984 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:3f:a2:47:eb:cf:c9:ab:fd:c2:20:b6:44:fa: 43:0a:d3:82:bf:39:7c:fd:88:ec:9d:08:f1:04:a7: d7:a7:cd:51:74:21:57:b1:f2:d3:ea:86:17:da:cf: e3:68:4b:96:19:78:6d:bf:57:60:d6:0e:03:3f:dc: b4:ca:96:9c:96:5d:c7:5c:63:c4:4a:92:a3:cb:49: fd:6a:1a:ca:2c:2f:1e:66:5b:38:3b:98:14:6e:c3: 8f:2a:92:0c:f9:b0:8f:86:8b:9c:dd:70:c1:df:8a: bc:8e:a8:56:6d:e4:60:85:8d:c6:bb:6b:4a:df:3e: e1:d1:3b:6f:db:31:0a:ae:84:7d:e4:2a:bd:48:73: 6f:58:70:ee:8b:2a:40:01:2f:17:a5:d1:7e:93:40: 31:10:7e:ca:6f:f4:ec:ca:76:71:ff:83:b5:e0:ee: dd:4c:2d:c2:82:96:d9:77:c8:24:7e:b1:ff:b8:2e: 01:4b:e3:6e:4b:45:fb:10:5f:df:ae:fa:6e:94:0e: 71:53:fa:57:e6:3c:a7:f0:b8:4b:df:d8:47:e3:35: 95:5f:ce:86:7f:36:06:12:58:0d:d2:46:07:99:e3: 0a:2e:f7:8d:84:79:03:2a:a0:60:b5:b6:ca:f1:de: e6:a1:bb:55:7e:ac:65:8c:30:9d:d7:a1:47:f6:5e: c9:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FF:7F:FA:80:48:A9:64:3E:B4:D6:CF:B9:70:90:D8:1F:25:1E:C1:16 X509v3 Authority Key Identifier: keyid:6F:61:4E:58:FE:93:6A:DF:74:D7:36:F5:39:2D:ED:5F:D1:6B:75:87 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A9B3C/3F3362DA86FA11EBB3C7BB29C4F9AE02/b2FOWP6Tat901zb1OS3tX9FrdYc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b2FOWP6Tat901zb1OS3tX9FrdYc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A9B3C/3F3362DA86FA11EBB3C7BB29C4F9AE02/b2FOWP6Tat901zb1OS3tX9FrdYc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 24:41:63:f7:58:e3:af:67:a9:ef:e7:0b:9f:84:e2:40:66:23: 8f:b4:2f:a7:d1:57:44:cb:eb:f2:93:ff:24:c5:63:40:b6:c7: 59:5a:84:43:bc:11:95:ca:c1:0b:43:6f:13:a8:10:1f:c1:6e: 00:a1:6d:85:d1:15:6b:1a:39:1d:01:7a:9d:e8:75:c9:d0:3f: 52:32:1d:33:d1:ec:28:45:d0:f7:4a:7d:94:d2:e9:25:ce:5f: bd:90:0e:1b:9e:11:63:83:24:4f:a9:a7:32:52:d0:dc:41:1b: b8:37:58:2c:dd:e3:36:d2:eb:1f:94:c1:42:3a:3b:51:3d:58: 03:74:ca:a1:3e:df:a4:d0:f9:aa:b4:d5:6a:45:22:74:b9:b9: 8e:61:db:4f:75:46:19:54:aa:39:ec:14:29:4d:0e:e2:4f:35: 4b:16:83:99:32:00:ff:0b:40:b8:c8:28:5b:a0:9a:f8:eb:f6: 0e:91:30:07:7b:1c:ce:8e:49:6c:98:4d:05:ff:01:4e:ca:a6: 5f:90:8c:82:c7:be:36:c5:04:53:1d:07:a8:27:8e:b2:ba:8c: 62:e5:f7:15:5f:b6:48:e5:bf:c5:74:67:34:4b:98:3d:53:62: db:e4:4f:c4:ea:32:56:8a:9e:c0:47:f9:18:2f:9b:10:f0:59: d8:01:b3:16 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBlEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTlCM0MxMTAvBgNVBAUTKDZGNjE0RTU4RkU5MzZBREY3NEQ3MzZGNTM5MkRFRDVG RDE2Qjc1ODcwHhcNMjUwNTEwMjIwOTU2WhcNMjUwNTE3MjIwOTU2WjAYMRYwFAYD VQQDEw02ODFmY2ViNC1jOTg0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxT+iR+vPyav9wiC2RPpDCtOCvzl8/YjsnQjxBKfXp81RdCFXsfLT6oYX2s/j aEuWGXhtv1dg1g4DP9y0ypacll3HXGPESpKjy0n9ahrKLC8eZls4O5gUbsOPKpIM +bCPhouc3XDB34q8jqhWbeRghY3Gu2tK3z7h0Ttv2zEKroR95Cq9SHNvWHDuiypA AS8XpdF+k0AxEH7Kb/TsynZx/4O14O7dTC3CgpbZd8gkfrH/uC4BS+NuS0X7EF/f rvpulA5xU/pX5jyn8LhL39hH4zWVX86GfzYGElgN0kYHmeMKLveNhHkDKqBgtbbK 8d7mobtVfqxljDCd16FH9l7JuQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFP9/+oBI qWQ+tNbPuXCQ2B8lHsEWMB8GA1UdIwQYMBaAFG9hTlj+k2rfdNc29Tkt7V/Ra3WH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBOUIzQy8zRjMzNjJEQTg2 RkExMUVCQjNDN0JCMjlDNEY5QUUwMi9iMkZPV1A2VGF0OTAxemIxT1MzdFg5RnJk WWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2IyRk9XUDZUYXQ5MDF6YjFPUzN0WDlGcmRZYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB OUIzQy8zRjMzNjJEQTg2RkExMUVCQjNDN0JCMjlDNEY5QUUwMi9iMkZPV1A2VGF0 OTAxemIxT1MzdFg5RnJkWWMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAkQWP3WOOvZ6nv5wufhOJAZiOPtC+n0VdEy+vyk/8kxWNAtsdZWoRD vBGVysELQ28TqBAfwW4AoW2F0RVrGjkdAXqd6HXJ0D9SMh0z0ewoRdD3Sn2U0ukl zl+9kA4bnhFjgyRPqacyUtDcQRu4N1gs3eM20usflMFCOjtRPVgDdMqhPt+k0Pmq tNVqRSJ0ubmOYdtPdUYZVKo57BQpTQ7iTzVLFoOZMgD/C0C4yChboJr46/YOkTAH exzOjklsmE0F/wFOyqZfkIyCx742xQRTHQeoJ46yuoxi5fcVX7ZI5b/FdGc0S5g9 U2Lb5E/E6jJWip7AR/kYL5sQ8FnYAbMW -----END CERTIFICATE-----Generated at Sun May 11 18:58:03 2025 by rpki-client