$ rpki-client -vvf rpki.apnic.net/member_repository/A91AACB2/37D5A3DE1D9C11E2892E8B8A08B02CD2/2en59z7k9bHN8XYsLfODKVCja30.mft File: 2en59z7k9bHN8XYsLfODKVCja30.mft (raw, json) Hash identifier: JwpHNEmPxDXmnn/9C1UhgYv9PLtyF1s5q209ODcCsMc= Subject key identifier: 5F:55:5A:5E:56:15:04:CE:7B:4D:EC:62:D7:99:27:FC:41:42:8A:4F Authority key identifier: D9:E9:F9:F7:3E:E4:F5:B1:CD:F1:76:2C:2D:F3:83:29:50:A3:6B:7D Certificate issuer: /CN=A91AACB2/serialNumber=D9E9F9F73EE4F5B1CDF1762C2DF3832950A36B7D Certificate serial: 3499 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2en59z7k9bHN8XYsLfODKVCja30.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AACB2/37D5A3DE1D9C11E2892E8B8A08B02CD2/2en59z7k9bHN8XYsLfODKVCja30.mft Manifest number: 3493 Signing time: Sat 14 Jun 2025 14:57:18 +0000 Manifest this update: Sat 14 Jun 2025 14:57:18 +0000 Manifest next update: Sat 21 Jun 2025 14:57:18 +0000 Files and hashes: 1: 2en59z7k9bHN8XYsLfODKVCja30.crl (hash: bgC8oiyz8yJtrCMf4oBdBoJ2vtAgdrcj2jpP5tnkTZ0=) 2: 76B5C744B45E11EAB71DF94AC4F9AE02.roa (hash: RzsyMG8grNRl/TU/HKZlXJ7ZiLnl0fu14E8Z0lJpa0Q=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AACB2/37D5A3DE1D9C11E2892E8B8A08B02CD2/2en59z7k9bHN8XYsLfODKVCja30.crl rsync://rpki.apnic.net/member_repository/A91AACB2/37D5A3DE1D9C11E2892E8B8A08B02CD2/2en59z7k9bHN8XYsLfODKVCja30.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2en59z7k9bHN8XYsLfODKVCja30.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Jun 2025 14:57:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13465 (0x3499) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AACB2, serialNumber=D9E9F9F73EE4F5B1CDF1762C2DF3832950A36B7D Validity Not Before: Jun 14 14:57:18 2025 GMT Not After : Jun 21 14:57:18 2025 GMT Subject: CN=684d8dce-d3a3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:ea:f7:dc:c0:82:56:ac:a3:a1:74:8d:cb:12: a1:85:a0:ce:cd:c1:85:fa:91:dd:d7:07:41:cc:16: 40:c3:8d:d7:0a:46:f0:68:32:d7:79:41:71:f4:c9: 67:ec:2d:39:bd:bf:f0:80:53:3e:23:d0:dd:f8:2c: d2:e7:31:43:ac:ac:d5:34:37:83:b6:3e:6c:5b:42: 12:4d:1a:c5:3f:c5:2f:7a:6f:4f:f3:f8:8a:ff:30: b3:59:2e:bb:0c:41:88:55:38:31:3c:ab:e2:89:0c: 0f:40:7a:af:6c:35:70:2c:c6:8b:a6:b2:d6:51:18: 97:46:89:f8:59:bb:23:db:46:93:ea:87:5f:27:41: 1f:9e:a7:81:50:24:a0:ec:f6:1a:cb:d4:94:fc:fb: f5:6f:09:0e:75:44:43:92:c9:54:c1:a2:45:95:cd: 1a:64:67:01:f2:e5:bd:51:d9:1f:80:a2:ae:b2:6d: a6:53:70:d4:4d:b6:85:fc:09:29:da:6e:1a:e8:7a: 20:2d:7f:1e:9b:ff:04:4f:51:1b:bb:63:99:50:57: 23:8a:e8:8a:e0:5f:91:27:15:5c:23:90:9d:43:d2: 74:3d:2f:a1:b4:5f:df:bb:7b:12:95:78:9a:01:2a: 30:d2:1e:0f:4f:a6:06:15:26:81:d6:2c:22:af:25: 56:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5F:55:5A:5E:56:15:04:CE:7B:4D:EC:62:D7:99:27:FC:41:42:8A:4F X509v3 Authority Key Identifier: keyid:D9:E9:F9:F7:3E:E4:F5:B1:CD:F1:76:2C:2D:F3:83:29:50:A3:6B:7D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AACB2/37D5A3DE1D9C11E2892E8B8A08B02CD2/2en59z7k9bHN8XYsLfODKVCja30.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2en59z7k9bHN8XYsLfODKVCja30.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AACB2/37D5A3DE1D9C11E2892E8B8A08B02CD2/2en59z7k9bHN8XYsLfODKVCja30.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 63:b9:45:11:7d:65:ee:ac:e0:a2:77:3e:5a:8a:aa:a8:09:a9: 42:26:2f:aa:53:d8:13:38:d8:82:d6:5b:b5:07:13:54:8f:d1: 9b:30:19:22:9e:84:f6:1b:bc:2d:6b:31:84:92:e7:e4:d7:7d: cf:96:5f:92:61:1f:99:94:51:34:ae:b3:c9:f8:1c:83:d7:97: 46:8c:9c:30:ec:ff:a0:48:52:82:98:71:7b:d1:4d:77:4c:e1: 6b:87:67:92:16:c7:d7:09:49:d7:e3:c2:28:5b:aa:06:c8:32: 9b:71:48:ac:9a:53:c8:7d:77:50:d8:7a:0a:51:1c:f3:cd:49: 58:7d:a0:aa:6e:54:c4:25:92:e1:9b:7f:ed:66:cd:e1:a2:99: 18:ef:5a:f2:74:29:fb:52:44:d5:ba:88:ea:3b:03:68:82:0d: 9c:b1:03:d4:31:c4:f9:6c:d1:88:df:91:be:e0:31:27:bb:a4: 79:5b:4b:67:4f:53:08:39:12:8b:14:69:ad:35:1f:c6:4e:c4: b3:fd:75:31:c6:1b:d7:e6:8f:70:56:97:f4:e3:e6:f7:33:a3: 35:21:8d:ba:23:e9:4f:d6:34:03:6c:35:e6:0f:63:6a:b6:20: 20:9d:52:51:4e:71:4d:12:85:0f:da:ce:01:51:8c:a7:f0:98: ad:af:0a:2a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNJkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUFDQjIxMTAvBgNVBAUTKEQ5RTlGOUY3M0VFNEY1QjFDREYxNzYyQzJERjM4MzI5 NTBBMzZCN0QwHhcNMjUwNjE0MTQ1NzE4WhcNMjUwNjIxMTQ1NzE4WjAYMRYwFAYD VQQDEw02ODRkOGRjZS1kM2EzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzOr33MCCVqyjoXSNyxKhhaDOzcGF+pHd1wdBzBZAw43XCkbwaDLXeUFx9Mln 7C05vb/wgFM+I9Dd+CzS5zFDrKzVNDeDtj5sW0ISTRrFP8Uvem9P8/iK/zCzWS67 DEGIVTgxPKviiQwPQHqvbDVwLMaLprLWURiXRon4Wbsj20aT6odfJ0EfnqeBUCSg 7PYay9SU/Pv1bwkOdURDkslUwaJFlc0aZGcB8uW9UdkfgKKusm2mU3DUTbaF/Akp 2m4a6HogLX8em/8ET1Ebu2OZUFcjiuiK4F+RJxVcI5CdQ9J0PS+htF/fu3sSlXia ASow0h4PT6YGFSaB1iwiryVWWwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFF9VWl5W FQTOe03sYteZJ/xBQopPMB8GA1UdIwQYMBaAFNnp+fc+5PWxzfF2LC3zgylQo2t9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQUNCMi8zN0Q1QTNERTFE OUMxMUUyODkyRThCOEEwOEIwMkNEMi8yZW41OXo3azliSE44WFlzTGZPREtWQ2ph MzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJlbjU5ejdrOWJITjhYWXNMZk9ES1ZDamEzMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB QUNCMi8zN0Q1QTNERTFEOUMxMUUyODkyRThCOEEwOEIwMkNEMi8yZW41OXo3azli SE44WFlzTGZPREtWQ2phMzAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBjuUURfWXurOCidz5aiqqoCalCJi+qU9gTONiC1lu1BxNUj9GbMBki noT2G7wtazGEkufk133Pll+SYR+ZlFE0rrPJ+ByD15dGjJww7P+gSFKCmHF70U13 TOFrh2eSFsfXCUnX48IoW6oGyDKbcUismlPIfXdQ2HoKURzzzUlYfaCqblTEJZLh m3/tZs3hopkY71rydCn7UkTVuojqOwNogg2csQPUMcT5bNGI35G+4DEnu6R5W0tn T1MIORKLFGmtNR/GTsSz/XUxxhvX5o9wVpf04+b3M6M1IY26I+lP1jQDbDXmD2Nq tiAgnVJRTnFNEoUP2s4BUYyn8Jitrwoq -----END CERTIFICATE-----Generated at Sat Jun 14 19:26:58 2025 by rpki-client