$ rpki-client -vvf rpki.apnic.net/member_repository/A91A546E/0CD41DA8B76A11EA814F5084C4F9AE02/bFpYn5JM6b7R_Yn1r_YwySdXRCA.mft File: bFpYn5JM6b7R_Yn1r_YwySdXRCA.mft (raw, json) Hash identifier: 5iDqh80sNo5wZ2exJ8PSWOfmLsg6dej49aWUsdbabr8= Subject key identifier: DE:F2:68:F6:41:BA:61:57:76:8F:6A:F7:0C:DF:D8:B8:F0:D6:47:10 Authority key identifier: 6C:5A:58:9F:92:4C:E9:BE:D1:FD:89:F5:AF:F6:30:C9:27:57:44:20 Certificate issuer: /CN=A91A546E/serialNumber=6C5A589F924CE9BED1FD89F5AFF630C927574420 Certificate serial: 091F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bFpYn5JM6b7R_Yn1r_YwySdXRCA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A546E/0CD41DA8B76A11EA814F5084C4F9AE02/bFpYn5JM6b7R_Yn1r_YwySdXRCA.mft Manifest number: 08EA Signing time: Sat 14 Jun 2025 20:18:14 +0000 Manifest this update: Sat 14 Jun 2025 20:18:14 +0000 Manifest next update: Sat 21 Jun 2025 20:18:14 +0000 Files and hashes: 1: bFpYn5JM6b7R_Yn1r_YwySdXRCA.crl (hash: rIA0B7z9B0epkGDPhoi9bjgh1OwzuUMyaxuhisyRNd0=) 2: 46948AC87B8511EDB9E3E055C4F9AE02.roa (hash: ZxtXXsjPmgBn3QuaEolbOSfh14MSz6fJKNljAALoKTY=) 3: A69F92BE090911F084AAF925C4F9AE02.roa (hash: JAD+Foc1J+GOz5pKNPlHnr3Zrw5SjVxBWNoZZgDQ44M=) 4: 88252000B55C11ECA9565039C4F9AE02.roa (hash: ROM2aBA2uOLvGraWZ2OMfhtRxZ5DusfnSKSNI9N61E8=) 5: CCBF0CF6B55911EC9256FE19C4F9AE02.roa (hash: J9pnyjCXshJdQFSggqWmHXW0nySYEfDGHTCaX/EZOYk=) 6: CC3B5938B55911EC9256FE19C4F9AE02.roa (hash: Ejx3yVkwMIGPx4PH4VpagQp/pASvV9ahz0Vqhx7EKZo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A546E/0CD41DA8B76A11EA814F5084C4F9AE02/bFpYn5JM6b7R_Yn1r_YwySdXRCA.crl rsync://rpki.apnic.net/member_repository/A91A546E/0CD41DA8B76A11EA814F5084C4F9AE02/bFpYn5JM6b7R_Yn1r_YwySdXRCA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bFpYn5JM6b7R_Yn1r_YwySdXRCA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Jun 2025 20:18:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2335 (0x91f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A546E, serialNumber=6C5A589F924CE9BED1FD89F5AFF630C927574420 Validity Not Before: Jun 14 20:18:14 2025 GMT Not After : Jun 21 20:18:14 2025 GMT Subject: CN=684dd906-eac7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:62:c7:e6:0f:4c:ba:dd:32:58:91:34:24:ce: 40:7b:e7:a3:09:dd:e9:7b:79:5a:61:f3:b4:2d:07: 1b:6c:19:17:40:26:d2:f3:27:69:b0:ac:d7:5c:52: 9b:b8:6a:f8:8f:4b:f8:11:e0:60:6f:a5:f8:da:e2: 5a:83:4f:26:66:3d:bb:f9:10:e5:fe:d8:03:58:c8: 47:e9:ff:07:ef:88:69:bb:b0:5e:34:e8:bd:b2:87: 85:05:9d:58:42:34:9a:97:84:05:ff:99:41:46:ce: 7e:2e:00:02:0e:f6:05:19:e5:69:d2:65:9c:9c:00: c5:a2:ca:92:42:6a:10:19:1d:8c:f8:36:3c:2a:c9: 46:c0:90:aa:1c:05:b2:06:fa:f7:04:0b:11:a5:16: 96:89:6f:07:8b:bf:08:cf:46:60:88:50:03:68:b8: 50:81:19:94:10:bd:0a:79:ee:02:4f:11:61:80:bf: e0:4b:01:72:0a:c4:33:d9:fe:b9:e1:89:c3:a3:3e: 6a:92:ff:44:0a:8c:9a:40:a7:f0:47:dc:20:3e:4d: f0:d0:ee:29:34:da:0f:44:43:b1:a2:37:97:9d:dc: 3b:38:a4:a7:4a:80:7d:6c:ca:b7:b7:28:ce:f4:ba: ba:37:d6:ed:05:1a:4c:b1:0f:b7:bb:6c:38:64:75: ad:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DE:F2:68:F6:41:BA:61:57:76:8F:6A:F7:0C:DF:D8:B8:F0:D6:47:10 X509v3 Authority Key Identifier: keyid:6C:5A:58:9F:92:4C:E9:BE:D1:FD:89:F5:AF:F6:30:C9:27:57:44:20 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A546E/0CD41DA8B76A11EA814F5084C4F9AE02/bFpYn5JM6b7R_Yn1r_YwySdXRCA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bFpYn5JM6b7R_Yn1r_YwySdXRCA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A546E/0CD41DA8B76A11EA814F5084C4F9AE02/bFpYn5JM6b7R_Yn1r_YwySdXRCA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 45:a6:f6:c3:03:01:09:14:2d:da:05:d6:d9:32:5c:57:a3:e9: 24:98:bf:87:4f:92:f9:da:6e:46:d0:fe:73:8a:5c:94:10:67: 9d:5e:ea:d2:22:ba:36:85:ab:0a:ab:59:bf:1b:e4:a1:fc:14: d5:f1:a0:a6:aa:f0:d8:4a:b2:7d:e1:d5:81:a4:51:7d:fb:db: fb:b7:98:f4:66:77:fd:de:62:fe:ad:6e:9e:f3:08:67:b0:ee: 67:c7:6a:7b:33:27:c7:e5:b4:05:0e:36:3a:a3:1f:45:98:42: d9:3f:c6:e4:92:fb:0f:8d:3d:42:5d:1f:cd:8e:a0:1f:08:33: 9b:62:e8:57:a1:16:c2:24:b5:5f:66:bf:b0:41:9f:ff:f1:8b: d9:7f:20:39:95:ae:2a:6d:2c:77:e5:e6:bf:7b:55:90:df:bd: 52:0f:51:81:4e:a3:51:3e:6b:e9:f8:26:19:99:5e:04:a9:8a: eb:3b:35:02:80:a3:15:51:3e:6c:a5:65:69:38:6d:ca:56:98: 7f:f4:63:84:27:12:e6:b1:4e:0b:11:b2:b8:41:6a:11:e0:5b: 7a:c4:89:8f:26:d0:3d:22:b1:9a:6e:cd:17:9b:63:3c:e0:46: ab:00:e3:41:3e:bd:33:4d:d4:f4:2b:19:57:c0:dc:a7:93:5a: cf:18:de:cc -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCR8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU0NkUxMTAvBgNVBAUTKDZDNUE1ODlGOTI0Q0U5QkVEMUZEODlGNUFGRjYzMEM5 Mjc1NzQ0MjAwHhcNMjUwNjE0MjAxODE0WhcNMjUwNjIxMjAxODE0WjAYMRYwFAYD VQQDEw02ODRkZDkwNi1lYWM3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsmLH5g9Mut0yWJE0JM5Ae+ejCd3pe3laYfO0LQcbbBkXQCbS8ydpsKzXXFKb uGr4j0v4EeBgb6X42uJag08mZj27+RDl/tgDWMhH6f8H74hpu7BeNOi9soeFBZ1Y QjSal4QF/5lBRs5+LgACDvYFGeVp0mWcnADFosqSQmoQGR2M+DY8KslGwJCqHAWy Bvr3BAsRpRaWiW8Hi78Iz0ZgiFADaLhQgRmUEL0Kee4CTxFhgL/gSwFyCsQz2f65 4YnDoz5qkv9ECoyaQKfwR9wgPk3w0O4pNNoPREOxojeXndw7OKSnSoB9bMq3tyjO 9Lq6N9btBRpMsQ+3u2w4ZHWtNQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFN7yaPZB umFXdo9q9wzf2Ljw1kcQMB8GA1UdIwQYMBaAFGxaWJ+STOm+0f2J9a/2MMknV0Qg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTQ2RS8wQ0Q0MURBOEI3 NkExMUVBODE0RjUwODRDNEY5QUUwMi9iRnBZbjVKTTZiN1JfWW4xcl9Zd3lTZFhS Q0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JGcFluNUpNNmI3Ul9ZbjFyX1l3eVNkWFJDQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NTQ2RS8wQ0Q0MURBOEI3NkExMUVBODE0RjUwODRDNEY5QUUwMi9iRnBZbjVKTTZi N1JfWW4xcl9Zd3lTZFhSQ0EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBFpvbDAwEJFC3aBdbZMlxXo+kkmL+HT5L52m5G0P5zilyUEGedXurS Iro2hasKq1m/G+Sh/BTV8aCmqvDYSrJ94dWBpFF9+9v7t5j0Znf93mL+rW6e8whn sO5nx2p7MyfH5bQFDjY6ox9FmELZP8bkkvsPjT1CXR/NjqAfCDObYuhXoRbCJLVf Zr+wQZ//8YvZfyA5la4qbSx35ea/e1WQ371SD1GBTqNRPmvp+CYZmV4EqYrrOzUC gKMVUT5spWVpOG3KVph/9GOEJxLmsU4LEbK4QWoR4Ft6xImPJtA9IrGabs0Xm2M8 4EarAONBPr0zTdT0KxlXwNynk1rPGN7M -----END CERTIFICATE-----Generated at Sun Jun 15 08:45:44 2025 by rpki-client