$ rpki-client -vvf rpki.apnic.net/member_repository/A91A99F8/7A4D7B8804A711F0B4D73982C4F9AE02/-c2wYYjVT9E3MDC5IMjkRdstPVc.mft File: -c2wYYjVT9E3MDC5IMjkRdstPVc.mft (raw, json) Hash identifier: vhqrn1Ap62O0UpysV8vlfEbSRbnjD6laRzILRRbhuTE= Subject key identifier: FE:E1:86:20:EA:1B:1C:5F:8C:68:38:8D:75:28:4B:15:19:B6:62:5F Authority key identifier: F9:CD:B0:61:88:D5:4F:D1:37:30:30:B9:20:C8:E4:45:DB:2D:3D:57 Certificate issuer: /CN=A91A99F8/serialNumber=F9CDB06188D54FD1373030B920C8E445DB2D3D57 Certificate serial: 33 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-c2wYYjVT9E3MDC5IMjkRdstPVc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A99F8/7A4D7B8804A711F0B4D73982C4F9AE02/-c2wYYjVT9E3MDC5IMjkRdstPVc.mft Manifest number: 32 Signing time: Fri 13 Jun 2025 06:37:31 +0000 Manifest this update: Fri 13 Jun 2025 06:37:30 +0000 Manifest next update: Fri 20 Jun 2025 06:37:30 +0000 Files and hashes: 1: -c2wYYjVT9E3MDC5IMjkRdstPVc.crl (hash: d156HYcJPG890LWGahTa3IUps4IdLh/gIr/F1E7KfyI=) 2: 2C85E816062011F0B0CCFB73C4F9AE02.roa (hash: 8aYqOb0WxmeZs6QAtf0y7rudLC0LQSdIL+LI3T4/O2Y=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A99F8/7A4D7B8804A711F0B4D73982C4F9AE02/-c2wYYjVT9E3MDC5IMjkRdstPVc.crl rsync://rpki.apnic.net/member_repository/A91A99F8/7A4D7B8804A711F0B4D73982C4F9AE02/-c2wYYjVT9E3MDC5IMjkRdstPVc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-c2wYYjVT9E3MDC5IMjkRdstPVc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 20 Jun 2025 06:37:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 51 (0x33) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A99F8, serialNumber=F9CDB06188D54FD1373030B920C8E445DB2D3D57 Validity Not Before: Jun 13 06:37:30 2025 GMT Not After : Jun 20 06:37:30 2025 GMT Subject: CN=684bc72b-6840 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:2f:55:95:dd:53:01:5b:ed:98:14:9f:ae:cf: 10:00:20:c9:51:c2:e4:e5:1d:f1:bd:0c:6d:90:b6: b9:03:4f:0d:b7:16:5c:40:63:c8:da:dd:7a:58:f5: 8b:61:de:42:ab:54:f7:89:9c:c7:50:01:ec:e5:c9: c3:0c:4a:3c:a8:ad:5a:d2:2a:8c:b6:d5:d3:f3:f5: fb:df:21:19:55:66:3b:33:9e:58:ae:72:be:f1:50: 22:fe:36:aa:96:66:8c:eb:f0:73:03:4b:aa:64:27: 13:5b:fb:ae:5e:a8:e0:d3:ad:8e:02:ea:cc:3d:93: f5:89:06:89:f2:8c:db:63:dc:ef:ee:63:98:a0:30: c3:6f:57:df:f4:f8:16:7b:24:62:73:5d:87:2f:74: 5d:59:30:53:58:94:97:04:f9:e9:91:cd:70:c8:c2: fc:e9:ec:61:24:01:bc:42:4a:fb:d3:ea:03:6b:36: 61:f0:6e:53:94:b7:58:d1:88:e7:c4:1e:c9:f8:a9: c3:1f:58:8e:0e:96:92:a9:cb:98:8b:b6:77:85:7d: 5c:a9:c6:fa:4c:98:0b:8c:19:3c:83:6b:89:c8:76: 84:d4:f7:bf:7f:c9:ae:da:cc:c9:09:28:0a:bb:0f: aa:1c:b5:86:83:75:53:b5:1e:ae:45:54:8b:d7:14: ee:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FE:E1:86:20:EA:1B:1C:5F:8C:68:38:8D:75:28:4B:15:19:B6:62:5F X509v3 Authority Key Identifier: keyid:F9:CD:B0:61:88:D5:4F:D1:37:30:30:B9:20:C8:E4:45:DB:2D:3D:57 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A99F8/7A4D7B8804A711F0B4D73982C4F9AE02/-c2wYYjVT9E3MDC5IMjkRdstPVc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-c2wYYjVT9E3MDC5IMjkRdstPVc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A99F8/7A4D7B8804A711F0B4D73982C4F9AE02/-c2wYYjVT9E3MDC5IMjkRdstPVc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c9:4b:f1:a1:b6:98:8e:68:ba:1a:01:ee:f7:2b:b1:0f:fa:73: c2:e0:51:fc:31:fe:36:78:9d:ce:6a:ce:ac:2b:87:97:1c:08: 18:c0:be:d1:fe:31:24:43:c8:cd:9e:58:84:66:90:c1:12:14: 64:4d:75:ca:93:84:49:c1:5c:ea:3f:8c:3d:75:21:54:15:3b: 2f:fc:95:6a:96:37:0b:ac:1d:e3:08:88:e6:f6:93:2e:4f:4b: 4c:bc:de:e3:a6:8c:a0:bc:e5:4a:70:07:dc:09:de:7c:51:99: 05:e9:65:0e:b6:65:4e:b5:2d:8a:cb:2f:ed:e0:9a:f9:4b:81: dc:d7:da:d7:36:79:a1:99:58:31:9a:57:60:36:00:a2:76:22: d4:ac:cc:93:04:98:9c:d2:a8:77:2b:43:2d:de:c5:c8:5c:dc: 7a:b8:db:dd:76:da:be:3a:5d:b1:40:89:43:86:79:3c:37:fc: 50:f6:2b:98:64:b8:11:4e:40:ef:7e:bb:d5:f5:8e:c7:34:43: 80:7e:80:a0:d2:24:8d:34:eb:50:a9:f4:5b:f2:cd:4f:79:30: d5:a5:f6:a4:a2:8a:66:b0:6e:d4:a2:fe:6b:9a:ec:dc:c7:81: d1:95:e8:5d:d3:be:c5:a3:96:d3:4e:1e:2b:60:8a:0b:69:d9: 2d:d5:11:f2 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBMzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFB OTlGODExMC8GA1UEBRMoRjlDREIwNjE4OEQ1NEZEMTM3MzAzMEI5MjBDOEU0NDVE QjJEM0Q1NzAeFw0yNTA2MTMwNjM3MzBaFw0yNTA2MjAwNjM3MzBaMBgxFjAUBgNV BAMTDTY4NGJjNzJiLTY4NDAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDPL1WV3VMBW+2YFJ+uzxAAIMlRwuTlHfG9DG2QtrkDTw23FlxAY8ja3XpY9Yth 3kKrVPeJnMdQAezlycMMSjyorVrSKoy21dPz9fvfIRlVZjsznliucr7xUCL+NqqW Zozr8HMDS6pkJxNb+65eqODTrY4C6sw9k/WJBonyjNtj3O/uY5igMMNvV9/0+BZ7 JGJzXYcvdF1ZMFNYlJcE+emRzXDIwvzp7GEkAbxCSvvT6gNrNmHwblOUt1jRiOfE Hsn4qcMfWI4OlpKpy5iLtneFfVypxvpMmAuMGTyDa4nIdoTU979/ya7azMkJKAq7 D6octYaDdVO1Hq5FVIvXFO5LAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU/uGGIOob HF+MaDiNdShLFRm2Yl8wHwYDVR0jBBgwFoAU+c2wYYjVT9E3MDC5IMjkRdstPVcw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUE5OUY4LzdBNEQ3Qjg4MDRB NzExRjBCNEQ3Mzk4MkM0RjlBRTAyLy1jMndZWWpWVDlFM01EQzVJTWprUmRzdFBW Yy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvLWMyd1lZalZUOUUzTURDNUlNamtSZHN0UFZjLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUE5 OUY4LzdBNEQ3Qjg4MDRBNzExRjBCNEQ3Mzk4MkM0RjlBRTAyLy1jMndZWWpWVDlF M01EQzVJTWprUmRzdFBWYy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAMlL8aG2mI5ouhoB7vcrsQ/6c8LgUfwx/jZ4nc5qzqwrh5ccCBjAvtH+ MSRDyM2eWIRmkMESFGRNdcqThEnBXOo/jD11IVQVOy/8lWqWNwusHeMIiOb2ky5P S0y83uOmjKC85UpwB9wJ3nxRmQXpZQ62ZU61LYrLL+3gmvlLgdzX2tc2eaGZWDGa V2A2AKJ2ItSszJMEmJzSqHcrQy3exchc3Hq429122r46XbFAiUOGeTw3/FD2K5hk uBFOQO9+u9X1jsc0Q4B+gKDSJI0061Cp9FvyzU95MNWl9qSiimawbtSi/mua7NzH gdGV6F3TvsWjltNOHitgigtp2S3VEfI= -----END CERTIFICATE-----Generated at Sun Jun 15 08:07:19 2025 by rpki-client