$ rpki-client -vvf rpki.apnic.net/member_repository/A91D6499/9F836C52780911EBA16AE156C4F9AE02/C99de_bArcNvIwEoNtjC3CQnkzw.mft File: C99de_bArcNvIwEoNtjC3CQnkzw.mft (raw, json) Hash identifier: DTRXTpmduukDFtbGYJkvM4pKQ5JkLfCjuU1Ir1wg1Bg= Subject key identifier: 57:A0:26:FB:1D:D8:9E:5A:3A:06:72:31:8D:A4:8E:86:DB:5D:F2:B3 Authority key identifier: 0B:DF:5D:7B:F6:C0:AD:C3:6F:23:01:28:36:D8:C2:DC:24:27:93:3C Certificate issuer: /CN=A91D6499/serialNumber=0BDF5D7BF6C0ADC36F23012836D8C2DC2427933C Certificate serial: 068A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C99de_bArcNvIwEoNtjC3CQnkzw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D6499/9F836C52780911EBA16AE156C4F9AE02/C99de_bArcNvIwEoNtjC3CQnkzw.mft Manifest number: 067E Signing time: Wed 14 May 2025 22:22:24 +0000 Manifest this update: Wed 14 May 2025 22:22:23 +0000 Manifest next update: Wed 21 May 2025 22:22:23 +0000 Files and hashes: 1: C99de_bArcNvIwEoNtjC3CQnkzw.crl (hash: HQcydwN1BkOrYxlpWqOWxWqAYh43klSMDwf45RQdWAE=) 2: A96F9914F1D811EFA3152963C4F9AE02.roa (hash: GbZWi9q6UX7D+oMHHFTd4plXypkHkfSoO+ds1DieM3U=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D6499/9F836C52780911EBA16AE156C4F9AE02/C99de_bArcNvIwEoNtjC3CQnkzw.crl rsync://rpki.apnic.net/member_repository/A91D6499/9F836C52780911EBA16AE156C4F9AE02/C99de_bArcNvIwEoNtjC3CQnkzw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C99de_bArcNvIwEoNtjC3CQnkzw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 21 May 2025 22:22:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1674 (0x68a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D6499, serialNumber=0BDF5D7BF6C0ADC36F23012836D8C2DC2427933C Validity Not Before: May 14 22:22:23 2025 GMT Not After : May 21 22:22:23 2025 GMT Subject: CN=682517a0-c884 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:fe:e7:06:45:1f:17:f4:b6:82:0e:49:56:6c: 76:c4:4e:10:ec:ba:54:e1:91:59:f8:e6:61:30:d5: e7:79:0d:25:db:59:97:5f:a2:06:5a:bd:5a:05:e0: 5c:a0:cf:d9:4c:17:84:a6:c7:4e:2b:3b:85:09:ea: b6:e9:db:29:be:6f:03:21:20:69:45:e9:92:a2:46: 1b:28:f2:21:51:f9:b2:f0:87:ea:7e:5f:ef:c9:ac: 8f:2c:e0:9c:05:6d:74:91:d4:e7:3d:6b:cb:51:19: ad:74:de:0e:42:d7:01:a8:9d:50:fc:ca:f7:70:a3: 0a:80:c8:56:67:cf:43:ee:5b:e6:24:51:2c:f2:4b: 43:00:ef:3e:be:a0:37:d9:39:12:56:1b:ea:7f:9c: fa:37:db:24:f6:9a:15:07:ab:51:54:ea:21:ad:d0: 86:f0:4a:2a:2b:63:f4:d4:29:a1:81:a3:cd:47:46: 56:cb:4e:18:59:5e:e7:f3:9e:a5:da:5b:d9:8e:e6: 4d:14:6b:a1:8b:6c:7c:7f:3f:3e:5c:03:0f:4f:43: c7:be:53:3e:0d:cf:3a:3b:9e:48:6e:6a:d1:d7:e3: 64:91:7f:30:8d:31:d6:12:98:43:a7:84:08:89:2b: 7e:38:92:09:25:63:ba:07:f4:e0:e3:b1:42:f9:58: 97:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 57:A0:26:FB:1D:D8:9E:5A:3A:06:72:31:8D:A4:8E:86:DB:5D:F2:B3 X509v3 Authority Key Identifier: keyid:0B:DF:5D:7B:F6:C0:AD:C3:6F:23:01:28:36:D8:C2:DC:24:27:93:3C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D6499/9F836C52780911EBA16AE156C4F9AE02/C99de_bArcNvIwEoNtjC3CQnkzw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C99de_bArcNvIwEoNtjC3CQnkzw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D6499/9F836C52780911EBA16AE156C4F9AE02/C99de_bArcNvIwEoNtjC3CQnkzw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2f:7c:b8:d7:14:11:6f:01:aa:2e:f4:a7:6e:19:d5:13:e4:9f: 12:50:32:e1:14:cb:f6:4a:ca:87:a9:58:fd:c9:48:65:be:ce: c7:32:74:e3:32:cc:63:0f:36:5f:11:6f:6e:8d:e0:3c:2e:d1: 83:97:5d:bb:78:bf:ae:9d:ef:9c:b2:1c:af:18:8e:78:30:c1: 9a:a5:6a:cc:86:29:b4:aa:eb:d0:fc:9d:92:05:de:ed:23:c2: 16:f3:9b:ef:f1:9a:c9:4f:ad:86:97:77:6e:5e:cb:78:1a:88: bb:69:3d:d2:ef:e0:75:91:3e:de:91:f1:2a:bc:6a:2a:01:e6: 3f:bf:bc:f3:f4:8d:ad:bf:ec:5f:9f:24:d4:c4:f5:ea:86:3c: 6f:a7:20:fb:e1:82:f3:ca:8a:eb:fe:0c:b7:c7:4a:68:f6:b2: 5d:67:18:92:10:dc:52:93:25:0c:90:96:ca:85:00:0f:09:3c: 81:95:80:15:af:ce:28:cf:a1:f4:a6:fa:ba:8d:c8:32:54:13: e2:da:be:7d:cd:1c:61:a2:36:b3:15:a6:3f:af:69:4c:bc:e9: 13:87:d7:7a:cf:b2:2d:26:c3:da:f9:c1:f3:81:cd:0b:03:b7: f3:81:00:94:54:14:2b:6d:c5:23:2a:48:c0:6c:97:4f:85:e0: b8:21:eb:4d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBoowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDY0OTkxMTAvBgNVBAUTKDBCREY1RDdCRjZDMEFEQzM2RjIzMDEyODM2RDhDMkRD MjQyNzkzM0MwHhcNMjUwNTE0MjIyMjIzWhcNMjUwNTIxMjIyMjIzWjAYMRYwFAYD VQQDEw02ODI1MTdhMC1jODg0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwf7nBkUfF/S2gg5JVmx2xE4Q7LpU4ZFZ+OZhMNXneQ0l21mXX6IGWr1aBeBc oM/ZTBeEpsdOKzuFCeq26dspvm8DISBpRemSokYbKPIhUfmy8Ifqfl/vyayPLOCc BW10kdTnPWvLURmtdN4OQtcBqJ1Q/Mr3cKMKgMhWZ89D7lvmJFEs8ktDAO8+vqA3 2TkSVhvqf5z6N9sk9poVB6tRVOohrdCG8EoqK2P01CmhgaPNR0ZWy04YWV7n856l 2lvZjuZNFGuhi2x8fz8+XAMPT0PHvlM+Dc86O55IbmrR1+NkkX8wjTHWEphDp4QI iSt+OJIJJWO6B/Tg47FC+ViXpQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFegJvsd 2J5aOgZyMY2kjobbXfKzMB8GA1UdIwQYMBaAFAvfXXv2wK3DbyMBKDbYwtwkJ5M8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENjQ5OS85RjgzNkM1Mjc4 MDkxMUVCQTE2QUUxNTZDNEY5QUUwMi9DOTlkZV9iQXJjTnZJd0VvTnRqQzNDUW5r encuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0M5OWRlX2JBcmNOdkl3RW9OdGpDM0NRbmt6dy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NjQ5OS85RjgzNkM1Mjc4MDkxMUVCQTE2QUUxNTZDNEY5QUUwMi9DOTlkZV9iQXJj TnZJd0VvTnRqQzNDUW5rencubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAvfLjXFBFvAaou9KduGdUT5J8SUDLhFMv2SsqHqVj9yUhlvs7HMnTj MsxjDzZfEW9ujeA8LtGDl127eL+une+cshyvGI54MMGapWrMhim0quvQ/J2SBd7t I8IW85vv8ZrJT62Gl3duXst4Goi7aT3S7+B1kT7ekfEqvGoqAeY/v7zz9I2tv+xf nyTUxPXqhjxvpyD74YLzyorr/gy3x0po9rJdZxiSENxSkyUMkJbKhQAPCTyBlYAV r84oz6H0pvq6jcgyVBPi2r59zRxhojazFaY/r2lMvOkTh9d6z7ItJsPa+cHzgc0L A7fzgQCUVBQrbcUjKkjAbJdPheC4IetN -----END CERTIFICATE-----Generated at Fri May 16 11:56:12 2025 by rpki-client