$ rpki-client -vvf rpki.apnic.net/member_repository/A91FC1B8/FBDE99FA90FB11E992D5987FC4F9AE02/bX2AV2xLO-av9DH40yM49x_fAd0.mft File: bX2AV2xLO-av9DH40yM49x_fAd0.mft (raw, json) Hash identifier: ivnQdFPwlQDTWQLvLakeP05Xby1sEyUdiATkSjxN83s= Subject key identifier: 6A:EA:F6:6E:39:45:A8:03:27:92:66:AC:D4:3C:D5:8E:0D:4F:10:0F Authority key identifier: 6D:7D:80:57:6C:4B:3B:E6:AF:F4:31:F8:D3:23:38:F7:1F:DF:01:DD Certificate issuer: /CN=A91FC1B8/serialNumber=6D7D80576C4B3BE6AFF431F8D32338F71FDF01DD Certificate serial: 0E8B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bX2AV2xLO-av9DH40yM49x_fAd0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FC1B8/FBDE99FA90FB11E992D5987FC4F9AE02/bX2AV2xLO-av9DH40yM49x_fAd0.mft Manifest number: 0E84 Signing time: Sat 10 May 2025 17:34:14 +0000 Manifest this update: Sat 10 May 2025 17:34:14 +0000 Manifest next update: Sat 17 May 2025 17:34:14 +0000 Files and hashes: 1: bX2AV2xLO-av9DH40yM49x_fAd0.crl (hash: caXnfyX9Lm2IgNw4xyY3PzY4efI3s25xR8wDklWSGXw=) 2: 4E150C0890FD11E98DB54881C4F9AE02.roa (hash: WbUUTzfSyCpyqPb3jZBov7io1LDDEMhW0G0g1zGhi5E=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FC1B8/FBDE99FA90FB11E992D5987FC4F9AE02/bX2AV2xLO-av9DH40yM49x_fAd0.crl rsync://rpki.apnic.net/member_repository/A91FC1B8/FBDE99FA90FB11E992D5987FC4F9AE02/bX2AV2xLO-av9DH40yM49x_fAd0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bX2AV2xLO-av9DH40yM49x_fAd0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 17 May 2025 17:34:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3723 (0xe8b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FC1B8, serialNumber=6D7D80576C4B3BE6AFF431F8D32338F71FDF01DD Validity Not Before: May 10 17:34:14 2025 GMT Not After : May 17 17:34:14 2025 GMT Subject: CN=681f8e16-446d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:67:34:84:1d:79:81:d0:ff:c5:0c:42:e0:25: 5c:da:48:f4:1e:a1:df:3e:77:67:8e:0f:43:3b:a9: 71:d4:5b:1b:7c:42:3b:5c:2f:ed:c2:e5:80:c9:72: c7:62:48:f2:cd:06:62:af:d5:5d:ae:2c:7c:9d:00: 99:ad:4f:84:50:a1:bb:ad:81:e4:31:d7:10:f5:dc: a4:97:ea:6f:26:13:16:83:ec:ef:66:75:24:72:a0: 8b:be:33:d5:1c:11:10:1e:80:1e:2a:31:35:b1:f4: 7e:87:80:b2:ab:2c:80:e4:bc:67:b2:8c:b6:53:a2: 6c:4d:60:0d:d0:7d:4d:54:17:a9:10:94:44:59:ee: 5b:5f:15:33:17:b2:5c:4e:c2:83:87:04:b4:4b:6e: fb:0a:7f:7d:d7:e0:72:6b:bd:3d:14:6b:87:23:45: a0:0b:75:46:0f:dd:46:a1:ba:f1:ee:47:f3:97:4e: 96:03:a4:8b:3f:34:4f:34:41:08:57:0c:31:fb:93: 1c:03:bf:52:7c:40:f9:98:0c:a7:e9:d4:2e:fa:85: 93:6f:a4:ba:54:62:37:aa:f2:87:02:83:d8:3f:51: e7:9f:56:d5:d6:e4:d5:e2:6e:3b:58:67:be:75:c5: b0:9c:6d:98:10:69:78:60:e1:62:6a:54:60:41:c3: a9:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6A:EA:F6:6E:39:45:A8:03:27:92:66:AC:D4:3C:D5:8E:0D:4F:10:0F X509v3 Authority Key Identifier: keyid:6D:7D:80:57:6C:4B:3B:E6:AF:F4:31:F8:D3:23:38:F7:1F:DF:01:DD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FC1B8/FBDE99FA90FB11E992D5987FC4F9AE02/bX2AV2xLO-av9DH40yM49x_fAd0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bX2AV2xLO-av9DH40yM49x_fAd0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FC1B8/FBDE99FA90FB11E992D5987FC4F9AE02/bX2AV2xLO-av9DH40yM49x_fAd0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ac:74:93:0a:fb:50:b4:22:05:c8:d5:97:30:f4:51:60:71:ad: 06:0e:2b:df:65:6a:03:ab:4d:e7:9c:33:0d:cb:bb:2a:e5:3e: 62:a9:e6:41:cb:00:63:62:48:9f:ca:f4:51:c3:11:e0:ac:d0: a3:91:4d:9e:e8:78:d9:e2:d8:7a:fb:9b:5a:17:17:c3:45:fc: 02:20:4c:9e:9d:44:7f:fe:31:7c:67:81:f9:9a:d3:0d:bf:aa: 86:2b:fb:19:01:aa:32:dd:f4:95:6e:1d:de:58:2b:7f:d0:bc: 5f:52:fa:63:fd:a5:da:35:24:1a:f5:f4:29:37:79:38:43:f2: 52:fd:b8:93:9b:3c:a1:66:5e:9c:e1:f1:6f:e0:dd:25:1a:0a: 17:e3:a6:67:5b:94:77:64:ba:fe:46:b9:ed:5e:8b:ff:45:3f: 35:bc:70:db:e1:22:90:cf:47:90:22:4d:cc:a1:07:9a:ab:9d: ed:86:48:a9:73:5f:93:21:9b:ba:46:1f:98:bc:bf:ac:8d:65: 98:16:26:50:5e:cd:16:28:a2:2f:96:93:d2:00:9c:35:ee:fc: 29:a9:20:57:b5:80:ef:a3:9b:97:17:8b:2b:4a:b1:02:e3:2a: ec:1b:61:08:b0:c7:95:d9:c3:c1:02:01:f8:d5:b9:f3:84:ad: 9a:58:c1:f2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDoswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkMxQjgxMTAvBgNVBAUTKDZEN0Q4MDU3NkM0QjNCRTZBRkY0MzFGOEQzMjMzOEY3 MUZERjAxREQwHhcNMjUwNTEwMTczNDE0WhcNMjUwNTE3MTczNDE0WjAYMRYwFAYD VQQDEw02ODFmOGUxNi00NDZkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqmc0hB15gdD/xQxC4CVc2kj0HqHfPndnjg9DO6lx1FsbfEI7XC/twuWAyXLH YkjyzQZir9Vdrix8nQCZrU+EUKG7rYHkMdcQ9dykl+pvJhMWg+zvZnUkcqCLvjPV HBEQHoAeKjE1sfR+h4CyqyyA5Lxnsoy2U6JsTWAN0H1NVBepEJREWe5bXxUzF7Jc TsKDhwS0S277Cn991+Bya709FGuHI0WgC3VGD91Gobrx7kfzl06WA6SLPzRPNEEI Vwwx+5McA79SfED5mAyn6dQu+oWTb6S6VGI3qvKHAoPYP1Hnn1bV1uTV4m47WGe+ dcWwnG2YEGl4YOFialRgQcOpowIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGrq9m45 RagDJ5JmrNQ81Y4NTxAPMB8GA1UdIwQYMBaAFG19gFdsSzvmr/Qx+NMjOPcf3wHd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQzFCOC9GQkRFOTlGQTkw RkIxMUU5OTJENTk4N0ZDNEY5QUUwMi9iWDJBVjJ4TE8tYXY5REg0MHlNNDl4X2ZB ZDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JYMkFWMnhMTy1hdjlESDQweU00OXhfZkFkMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG QzFCOC9GQkRFOTlGQTkwRkIxMUU5OTJENTk4N0ZDNEY5QUUwMi9iWDJBVjJ4TE8t YXY5REg0MHlNNDl4X2ZBZDAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCsdJMK+1C0IgXI1Zcw9FFgca0GDivfZWoDq03nnDMNy7sq5T5iqeZB ywBjYkifyvRRwxHgrNCjkU2e6HjZ4th6+5taFxfDRfwCIEyenUR//jF8Z4H5mtMN v6qGK/sZAaoy3fSVbh3eWCt/0LxfUvpj/aXaNSQa9fQpN3k4Q/JS/biTmzyhZl6c 4fFv4N0lGgoX46ZnW5R3ZLr+RrntXov/RT81vHDb4SKQz0eQIk3MoQeaq53thkip c1+TIZu6Rh+YvL+sjWWYFiZQXs0WKKIvlpPSAJw17vwpqSBXtYDvo5uXF4srSrEC 4yrsG2EIsMeV2cPBAgH41bnzhK2aWMHy -----END CERTIFICATE-----Generated at Mon May 12 11:20:36 2025 by rpki-client