$ rpki-client -vvf rpki.apnic.net/member_repository/A91FD609/0C609B9CEC1911EA925DFC6FC4F9AE02/B82dMe1hhir1A-UglCjHyyfqiB8.mft File: B82dMe1hhir1A-UglCjHyyfqiB8.mft (raw, json) Hash identifier: hn4YkXKFJVdFfFI4uURJTKlYa1qbWDKNGz+Dse/layo= Subject key identifier: BE:8E:FE:5F:71:34:66:B0:21:1B:06:E9:4A:7A:20:32:D6:1A:F6:09 Authority key identifier: 07:CD:9D:31:ED:61:86:2A:F5:03:E5:20:94:28:C7:CB:27:EA:88:1F Certificate issuer: /CN=A91FD609/serialNumber=07CD9D31ED61862AF503E5209428C7CB27EA881F Certificate serial: 07E6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/B82dMe1hhir1A-UglCjHyyfqiB8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FD609/0C609B9CEC1911EA925DFC6FC4F9AE02/B82dMe1hhir1A-UglCjHyyfqiB8.mft Manifest number: 07DC Signing time: Sat 10 May 2025 20:41:57 +0000 Manifest this update: Sat 10 May 2025 20:41:57 +0000 Manifest next update: Sat 17 May 2025 20:41:57 +0000 Files and hashes: 1: B82dMe1hhir1A-UglCjHyyfqiB8.crl (hash: X5F/Szd9WXuNvuJffkZA3BViWvYUiLSzxZB8ya21H+Y=) 2: 765DBCFEEC1A11EAA8520072C4F9AE02.roa (hash: LwXV2swiHkwzhmRJHgtxVwl/mp8FDjhnbQvKS2GLsds=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FD609/0C609B9CEC1911EA925DFC6FC4F9AE02/B82dMe1hhir1A-UglCjHyyfqiB8.crl rsync://rpki.apnic.net/member_repository/A91FD609/0C609B9CEC1911EA925DFC6FC4F9AE02/B82dMe1hhir1A-UglCjHyyfqiB8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/B82dMe1hhir1A-UglCjHyyfqiB8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 17 May 2025 20:41:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2022 (0x7e6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FD609, serialNumber=07CD9D31ED61862AF503E5209428C7CB27EA881F Validity Not Before: May 10 20:41:57 2025 GMT Not After : May 17 20:41:57 2025 GMT Subject: CN=681fba15-e7ba Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:4d:34:d9:32:3e:b5:6d:02:8e:91:10:d7:7d: db:e7:08:a9:13:4f:de:97:92:92:21:9b:02:20:04: 74:e6:f5:e5:82:85:2b:b7:18:6a:a5:5b:b9:fc:80: b2:95:6d:bf:a2:71:29:f5:2f:12:00:0b:dd:6c:45: 40:76:b4:49:2a:6f:f9:df:ce:54:85:14:50:b4:c9: 4f:b7:4c:d1:21:80:8b:ad:05:89:6d:36:3d:8a:d3: 4f:96:1a:e3:cb:ef:10:e2:de:89:b4:0e:92:5a:ef: 2d:d2:c0:f9:2b:aa:d0:9b:5e:38:83:6c:cf:ac:1e: 56:32:be:8b:d3:8a:52:7e:20:bc:5e:c7:bc:1f:98: 46:60:bc:35:84:dd:c2:fc:c3:8f:d5:8a:38:06:f2: 57:ee:ab:24:dc:89:44:61:0e:0e:82:27:a8:47:de: 9c:10:3c:2e:87:e9:e5:25:cc:ac:ca:c7:02:23:cb: 5b:5c:81:40:b0:2e:53:14:80:4a:c6:32:25:63:ff: 2e:dd:9b:95:03:c5:50:aa:21:a2:d6:91:7b:15:df: d5:c2:ce:56:8b:1a:e6:9e:15:df:71:0b:e2:c2:91: fe:9c:e2:ad:62:cf:56:ad:27:90:dd:7f:21:cc:f3: 81:ce:6f:f9:a2:05:ab:4c:26:eb:f1:8d:13:32:8f: 3c:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BE:8E:FE:5F:71:34:66:B0:21:1B:06:E9:4A:7A:20:32:D6:1A:F6:09 X509v3 Authority Key Identifier: keyid:07:CD:9D:31:ED:61:86:2A:F5:03:E5:20:94:28:C7:CB:27:EA:88:1F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FD609/0C609B9CEC1911EA925DFC6FC4F9AE02/B82dMe1hhir1A-UglCjHyyfqiB8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/B82dMe1hhir1A-UglCjHyyfqiB8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FD609/0C609B9CEC1911EA925DFC6FC4F9AE02/B82dMe1hhir1A-UglCjHyyfqiB8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 06:e8:b8:a2:03:a3:91:91:d1:e5:37:e0:b4:9b:d2:ef:7b:c3: 22:cb:e4:8d:bb:29:e1:08:ef:d4:7b:83:6e:4c:f8:cd:b6:61: 3a:5b:15:5e:65:04:89:d3:43:63:94:d8:65:e3:89:a2:d1:cf: 19:25:1a:d2:49:5e:7b:31:bf:b3:f3:b6:f5:8c:5d:70:b3:94: df:3c:9e:02:14:63:d9:53:e6:1f:47:27:8a:a6:f3:2f:46:89: b5:cc:76:42:6d:09:3a:f6:d1:4a:b3:05:0d:a1:a9:22:d5:b4: 86:9f:d4:27:53:f5:d6:6e:64:a7:1f:b5:c6:f0:c9:f7:33:9e: 40:c2:e0:17:be:ea:c1:17:99:d1:48:a0:06:0f:d4:04:6d:05: c9:6c:d2:8b:6e:35:cc:2f:32:e8:f3:27:e1:55:92:a8:00:57: d2:38:90:1c:bd:0a:b2:26:77:d3:b3:cc:e5:cd:ad:51:17:3d: b4:1b:0d:b9:10:dc:03:1a:a4:5b:cb:ef:bf:ba:87:b1:10:59: ed:14:26:e0:9c:d2:1c:6f:2b:c9:e6:ac:b8:26:a5:6f:75:87: c8:84:22:23:e2:b1:4d:56:06:3f:cb:0f:48:3c:14:e9:cf:ae: 27:04:79:26:6e:b1:7d:be:32:65:4d:b5:7d:2f:b1:03:10:ac: 7c:51:fc:43 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB+YwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkQ2MDkxMTAvBgNVBAUTKDA3Q0Q5RDMxRUQ2MTg2MkFGNTAzRTUyMDk0MjhDN0NC MjdFQTg4MUYwHhcNMjUwNTEwMjA0MTU3WhcNMjUwNTE3MjA0MTU3WjAYMRYwFAYD VQQDEw02ODFmYmExNS1lN2JhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAz0002TI+tW0CjpEQ133b5wipE0/el5KSIZsCIAR05vXlgoUrtxhqpVu5/ICy lW2/onEp9S8SAAvdbEVAdrRJKm/5385UhRRQtMlPt0zRIYCLrQWJbTY9itNPlhrj y+8Q4t6JtA6SWu8t0sD5K6rQm144g2zPrB5WMr6L04pSfiC8Xse8H5hGYLw1hN3C /MOP1Yo4BvJX7qsk3IlEYQ4OgieoR96cEDwuh+nlJcysyscCI8tbXIFAsC5TFIBK xjIlY/8u3ZuVA8VQqiGi1pF7Fd/Vws5WixrmnhXfcQviwpH+nOKtYs9WrSeQ3X8h zPOBzm/5ogWrTCbr8Y0TMo883QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFL6O/l9x NGawIRsG6Up6IDLWGvYJMB8GA1UdIwQYMBaAFAfNnTHtYYYq9QPlIJQox8sn6ogf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGRDYwOS8wQzYwOUI5Q0VD MTkxMUVBOTI1REZDNkZDNEY5QUUwMi9CODJkTWUxaGhpcjFBLVVnbENqSHl5ZnFp QjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0I4MmRNZTFoaGlyMUEtVWdsQ2pIeXlmcWlCOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG RDYwOS8wQzYwOUI5Q0VDMTkxMUVBOTI1REZDNkZDNEY5QUUwMi9CODJkTWUxaGhp cjFBLVVnbENqSHl5ZnFpQjgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAG6LiiA6ORkdHlN+C0m9Lve8Miy+SNuynhCO/Ue4NuTPjNtmE6WxVe ZQSJ00NjlNhl44mi0c8ZJRrSSV57Mb+z87b1jF1ws5TfPJ4CFGPZU+YfRyeKpvMv Rom1zHZCbQk69tFKswUNoaki1bSGn9QnU/XWbmSnH7XG8Mn3M55AwuAXvurBF5nR SKAGD9QEbQXJbNKLbjXMLzLo8yfhVZKoAFfSOJAcvQqyJnfTs8zlza1RFz20Gw25 ENwDGqRby++/uoexEFntFCbgnNIcbyvJ5qy4JqVvdYfIhCIj4rFNVgY/yw9IPBTp z64nBHkmbrF9vjJlTbV9L7EDEKx8UfxD -----END CERTIFICATE-----Generated at Sun May 11 13:48:59 2025 by rpki-client