$ rpki-client -vvf rpki.apnic.net/member_repository/A91F9B6C/D7DB0A08FA5D11EFAE374D68C4F9AE02/R2e2k72EYu6vqD2egDydKGtiHcg.mft File: R2e2k72EYu6vqD2egDydKGtiHcg.mft (raw, json) Hash identifier: wox+5/fWVbEsuvH1AL0ChrqGTQk9t/MZhfJmRL1sFks= Subject key identifier: 23:C6:6B:7E:BD:42:F3:B1:70:4C:E0:07:59:0A:6D:36:DB:E6:83:25 Authority key identifier: 47:67:B6:93:BD:84:62:EE:AF:A8:3D:9E:80:3C:9D:28:6B:62:1D:C8 Certificate issuer: /CN=A91F9B6C/serialNumber=4767B693BD8462EEAFA83D9E803C9D286B621DC8 Certificate serial: 27 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/R2e2k72EYu6vqD2egDydKGtiHcg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F9B6C/D7DB0A08FA5D11EFAE374D68C4F9AE02/R2e2k72EYu6vqD2egDydKGtiHcg.mft Manifest number: 26 Signing time: Sun 11 May 2025 06:32:21 +0000 Manifest this update: Sun 11 May 2025 06:32:20 +0000 Manifest next update: Sun 18 May 2025 06:32:20 +0000 Files and hashes: 1: R2e2k72EYu6vqD2egDydKGtiHcg.crl (hash: XzpQI1I/Jo0DrKVo97IK1cTytc9eqkv7mQZ5NTqDpO4=) 2: 3D60B6FCFA5E11EFB84AF068C4F9AE02.roa (hash: Ya8UAl3AvyfkYqVmnBZyGneXfArx61d1F2XHtbOSrtU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F9B6C/D7DB0A08FA5D11EFAE374D68C4F9AE02/R2e2k72EYu6vqD2egDydKGtiHcg.crl rsync://rpki.apnic.net/member_repository/A91F9B6C/D7DB0A08FA5D11EFAE374D68C4F9AE02/R2e2k72EYu6vqD2egDydKGtiHcg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/R2e2k72EYu6vqD2egDydKGtiHcg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 18 May 2025 06:32:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 39 (0x27) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F9B6C, serialNumber=4767B693BD8462EEAFA83D9E803C9D286B621DC8 Validity Not Before: May 11 06:32:20 2025 GMT Not After : May 18 06:32:20 2025 GMT Subject: CN=68204475-53f8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:9a:00:5c:cd:ef:e9:dc:0d:33:f7:ea:50:07: 17:7d:7b:01:85:8b:86:18:ea:ac:a9:d5:c0:53:9c: ff:e9:13:16:cc:26:5e:a2:23:29:16:29:6f:a5:73: a7:6e:58:ac:bc:42:71:47:98:07:d2:f2:61:ba:0e: c0:38:10:4e:13:fc:94:78:07:61:e1:b7:8a:0a:00: 66:8b:c3:12:58:13:b3:2e:d5:70:a3:b1:a0:aa:0f: 4a:4d:e8:7a:4c:c3:07:56:5c:9d:47:74:74:98:88: 7b:06:10:58:fc:33:0b:72:ff:bf:15:a0:b9:79:51: 7a:a4:36:31:4e:58:cd:63:21:d4:8c:e9:ae:21:38: bd:5b:a8:77:62:38:40:16:37:6a:f2:8a:57:46:2c: ef:c6:e1:e3:3f:bf:6f:56:94:e3:cf:3a:36:31:97: 25:66:67:cb:e1:ce:18:a1:03:78:43:59:ff:d5:72: 06:5e:85:f4:e0:e9:c0:1b:86:30:9a:a6:93:04:46: 7c:b6:5a:ce:c3:cb:79:ad:ac:a1:fe:8b:eb:09:2d: 04:82:cd:0c:2b:c2:ed:8f:91:14:ee:40:85:d9:20: e2:2a:fe:30:e6:7f:6f:f4:fe:f1:6f:af:29:81:cb: e4:83:ea:80:c0:9f:1e:b5:10:a1:d5:57:70:d3:79: 7d:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 23:C6:6B:7E:BD:42:F3:B1:70:4C:E0:07:59:0A:6D:36:DB:E6:83:25 X509v3 Authority Key Identifier: keyid:47:67:B6:93:BD:84:62:EE:AF:A8:3D:9E:80:3C:9D:28:6B:62:1D:C8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F9B6C/D7DB0A08FA5D11EFAE374D68C4F9AE02/R2e2k72EYu6vqD2egDydKGtiHcg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/R2e2k72EYu6vqD2egDydKGtiHcg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F9B6C/D7DB0A08FA5D11EFAE374D68C4F9AE02/R2e2k72EYu6vqD2egDydKGtiHcg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 58:49:bb:f1:77:ab:29:b5:39:c8:d6:0d:6f:51:6c:cb:6c:77: 04:54:63:a4:77:01:cc:bf:dc:8f:52:68:38:20:c8:c5:e0:03: bf:98:4f:10:1e:fd:83:75:61:ee:dc:4d:db:6b:85:7b:9c:0b: 11:fd:11:72:04:1f:b4:06:ee:ab:ed:96:a3:79:93:7d:20:6e: 8a:5b:30:17:be:a4:42:e2:07:92:23:1a:e2:fe:34:88:b1:3f: b3:6d:ad:ff:24:e7:b1:76:01:ff:3b:47:85:85:e6:79:99:e0: d9:e3:08:a7:33:e2:89:79:db:0e:2d:8b:5b:bd:38:05:fc:89: 16:44:36:52:7f:4f:e6:03:72:53:35:61:25:87:c1:7b:44:0e: 3e:5c:62:18:ab:16:14:18:21:4d:5f:dc:0a:b5:31:86:5c:03: 80:18:45:43:5e:dc:be:07:ca:ba:93:da:8f:87:51:bc:3a:eb: 87:57:15:cb:e1:a5:d6:d0:b7:ff:03:a1:af:e1:da:14:c6:ce: ae:2a:30:93:55:74:80:36:a5:ce:ab:a3:41:d7:dc:af:5d:36: b6:04:43:30:a6:06:84:8e:b0:96:34:6c:c5:b9:e9:da:4d:19: ce:b9:50:ef:df:f2:d0:b8:85:c1:21:c5:aa:1a:6e:8c:a7:95: 35:ab:80:3f -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBJzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFG OUI2QzExMC8GA1UEBRMoNDc2N0I2OTNCRDg0NjJFRUFGQTgzRDlFODAzQzlEMjg2 QjYyMURDODAeFw0yNTA1MTEwNjMyMjBaFw0yNTA1MTgwNjMyMjBaMBgxFjAUBgNV BAMTDTY4MjA0NDc1LTUzZjgwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCrmgBcze/p3A0z9+pQBxd9ewGFi4YY6qyp1cBTnP/pExbMJl6iIykWKW+lc6du WKy8QnFHmAfS8mG6DsA4EE4T/JR4B2Hht4oKAGaLwxJYE7Mu1XCjsaCqD0pN6HpM wwdWXJ1HdHSYiHsGEFj8Mwty/78VoLl5UXqkNjFOWM1jIdSM6a4hOL1bqHdiOEAW N2ryildGLO/G4eM/v29WlOPPOjYxlyVmZ8vhzhihA3hDWf/VcgZehfTg6cAbhjCa ppMERny2Ws7Dy3mtrKH+i+sJLQSCzQwrwu2PkRTuQIXZIOIq/jDmf2/0/vFvrymB y+SD6oDAnx61EKHVV3DTeX1ZAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUI8Zrfr1C 87FwTOAHWQptNtvmgyUwHwYDVR0jBBgwFoAUR2e2k72EYu6vqD2egDydKGtiHcgw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUY5QjZDL0Q3REIwQTA4RkE1 RDExRUZBRTM3NEQ2OEM0RjlBRTAyL1IyZTJrNzJFWXU2dnFEMmVnRHlkS0d0aUhj Zy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvUjJlMms3MkVZdTZ2cUQyZWdEeWRLR3RpSGNnLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUY5 QjZDL0Q3REIwQTA4RkE1RDExRUZBRTM3NEQ2OEM0RjlBRTAyL1IyZTJrNzJFWXU2 dnFEMmVnRHlkS0d0aUhjZy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAFhJu/F3qym1OcjWDW9RbMtsdwRUY6R3Acy/3I9SaDggyMXgA7+YTxAe /YN1Ye7cTdtrhXucCxH9EXIEH7QG7qvtlqN5k30gbopbMBe+pELiB5IjGuL+NIix P7Ntrf8k57F2Af87R4WF5nmZ4NnjCKcz4ol52w4ti1u9OAX8iRZENlJ/T+YDclM1 YSWHwXtEDj5cYhirFhQYIU1f3Aq1MYZcA4AYRUNe3L4HyrqT2o+HUbw664dXFcvh pdbQt/8Doa/h2hTGzq4qMJNVdIA2pc6ro0HX3K9dNrYEQzCmBoSOsJY0bMW56dpN Gc65UO/f8tC4hcEhxaoaboynlTWrgD8= -----END CERTIFICATE-----Generated at Tue May 13 08:22:02 2025 by rpki-client