$ rpki-client -vvf rpki.apnic.net/member_repository/A91E70ED/E6277A3EE9E111E9A5987E1FC4F9AE02/2jyR-PFV2QuZh8kTskxPnlRF6cw.mft File: 2jyR-PFV2QuZh8kTskxPnlRF6cw.mft (raw, json) Hash identifier: lg4ZWJuYt9Lfu07ELZ9sDBKOejZy9kQtxs5M3Np8x0g= Subject key identifier: 7F:6E:29:B3:CF:DE:63:97:AC:FC:FF:C4:23:42:10:72:E1:41:8D:DB Authority key identifier: DA:3C:91:F8:F1:55:D9:0B:99:87:C9:13:B2:4C:4F:9E:54:45:E9:CC Certificate issuer: /CN=A91E70ED/serialNumber=DA3C91F8F155D90B9987C913B24C4F9E5445E9CC Certificate serial: 0CF3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2jyR-PFV2QuZh8kTskxPnlRF6cw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E70ED/E6277A3EE9E111E9A5987E1FC4F9AE02/2jyR-PFV2QuZh8kTskxPnlRF6cw.mft Manifest number: 0CE0 Signing time: Sat 14 Jun 2025 18:00:30 +0000 Manifest this update: Sat 14 Jun 2025 18:00:29 +0000 Manifest next update: Sat 21 Jun 2025 18:00:29 +0000 Files and hashes: 1: 2jyR-PFV2QuZh8kTskxPnlRF6cw.crl (hash: 2AKK8XoV0HF+vekThztnFT6PXl101kIzU8OVNza+3H8=) 2: 8D9FFB3EEB2911EB9891D01DC4F9AE02.roa (hash: mgW7VeujR3wQCY2FOQTLD+1AfxSaJAkPmJmO0oMCuHQ=) 3: FEB624F6B94911EE897F7947C4F9AE02.roa (hash: rybbZdEyPr2dvKbIGHG7PjXC8DWgHoGfpQtIcH3SNoo=) 4: 8E4647E6EB2911EB9891D01DC4F9AE02.roa (hash: adFrZ9wVUFL/q70xYlPOLV2jTwKmfI9/GoGFtthCxcw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E70ED/E6277A3EE9E111E9A5987E1FC4F9AE02/2jyR-PFV2QuZh8kTskxPnlRF6cw.crl rsync://rpki.apnic.net/member_repository/A91E70ED/E6277A3EE9E111E9A5987E1FC4F9AE02/2jyR-PFV2QuZh8kTskxPnlRF6cw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2jyR-PFV2QuZh8kTskxPnlRF6cw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Jun 2025 17:13:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3315 (0xcf3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E70ED, serialNumber=DA3C91F8F155D90B9987C913B24C4F9E5445E9CC Validity Not Before: Jun 14 18:00:29 2025 GMT Not After : Jun 21 18:00:29 2025 GMT Subject: CN=684db8be-9c73 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:06:47:d0:b6:4a:f3:a3:0d:11:d4:d5:57:af: 20:e2:cf:23:42:9b:0e:d7:e1:e6:6a:b4:94:ae:b0: e1:89:00:bb:50:d6:b3:0f:b8:1d:ff:95:c8:7d:e5: 0a:a5:ac:9d:e7:c9:3b:f4:e1:20:79:b4:76:93:2c: f8:3f:f2:e2:15:48:a9:0a:0d:f6:2c:1f:90:8d:49: 96:47:29:8d:12:43:a0:21:2b:79:98:df:e6:ec:3b: 7e:f3:c9:c3:12:b0:cf:00:4a:fc:07:7d:46:52:dd: 2d:ac:ca:e4:02:d7:83:ee:db:69:52:94:39:2a:00: ca:31:01:5b:c8:0c:26:9e:77:0a:67:ae:3c:1c:bf: a7:f4:14:74:92:89:c7:d3:8e:1d:59:0e:cd:7d:87: 7c:5d:14:75:a7:56:0e:a8:c9:57:55:f0:c3:fd:25: 8f:e4:9f:a3:58:d7:dc:ec:81:6a:18:4a:60:92:e8: aa:51:88:b9:a6:4c:34:f0:2b:8e:05:3a:84:3a:6e: 11:5f:17:7a:0c:80:d0:d5:05:c7:8f:1b:3c:5e:4d: 3b:64:a4:55:88:d5:ef:60:da:fd:fd:ef:04:2d:a8: 22:5d:67:de:b6:3b:30:5a:e9:1b:a4:80:ea:38:43: ec:4e:14:f5:fa:36:a8:f4:99:3e:20:48:54:ec:70: 16:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7F:6E:29:B3:CF:DE:63:97:AC:FC:FF:C4:23:42:10:72:E1:41:8D:DB X509v3 Authority Key Identifier: keyid:DA:3C:91:F8:F1:55:D9:0B:99:87:C9:13:B2:4C:4F:9E:54:45:E9:CC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E70ED/E6277A3EE9E111E9A5987E1FC4F9AE02/2jyR-PFV2QuZh8kTskxPnlRF6cw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2jyR-PFV2QuZh8kTskxPnlRF6cw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E70ED/E6277A3EE9E111E9A5987E1FC4F9AE02/2jyR-PFV2QuZh8kTskxPnlRF6cw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b4:9e:f3:44:b4:f0:d6:8f:30:7e:ee:b7:d5:62:22:ba:c6:3e: 88:78:27:a1:5a:63:2d:62:c8:64:c3:07:97:83:83:9f:01:53: f0:4d:fe:0c:28:a1:23:b6:f0:78:c0:4b:89:ca:98:4c:6c:04: 30:74:4b:5b:68:80:e5:fc:10:73:fb:a1:01:7c:57:64:bf:58: cf:11:70:1e:bf:32:1a:64:15:bc:12:f5:c4:75:7b:da:f7:60: 41:bd:8d:38:db:f1:0f:47:18:b1:6d:04:80:5a:bf:3b:16:b9: 5d:43:28:69:2f:b3:d1:39:9a:87:cf:8d:db:3f:7b:63:50:0b: f1:d3:ea:73:16:74:88:5b:8d:e0:f8:8d:fa:a3:35:13:30:69: da:e0:7e:52:30:8f:8c:ff:30:ae:97:e0:5c:5f:57:92:8a:65: a3:14:63:78:b9:b7:82:22:6a:83:9c:06:d8:25:a7:5d:f7:fd: 65:3b:5b:be:f7:cf:9e:88:19:49:69:e5:35:04:ec:a7:c5:c0: d9:0c:fa:67:01:ee:9c:ad:0f:73:b6:44:4a:2e:34:b0:9b:9f: f5:3c:37:38:ee:0e:05:8b:7e:01:db:bc:e7:a8:b6:4d:a9:b2: b2:10:52:ac:47:71:d6:b1:12:5b:02:9f:a0:dd:88:70:08:42: d3:d1:73:c2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDPMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTcwRUQxMTAvBgNVBAUTKERBM0M5MUY4RjE1NUQ5MEI5OTg3QzkxM0IyNEM0RjlF NTQ0NUU5Q0MwHhcNMjUwNjE0MTgwMDI5WhcNMjUwNjIxMTgwMDI5WjAYMRYwFAYD VQQDEw02ODRkYjhiZS05YzczMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsAZH0LZK86MNEdTVV68g4s8jQpsO1+HmarSUrrDhiQC7UNazD7gd/5XIfeUK payd58k79OEgebR2kyz4P/LiFUipCg32LB+QjUmWRymNEkOgISt5mN/m7Dt+88nD ErDPAEr8B31GUt0trMrkAteD7ttpUpQ5KgDKMQFbyAwmnncKZ648HL+n9BR0konH 044dWQ7NfYd8XRR1p1YOqMlXVfDD/SWP5J+jWNfc7IFqGEpgkuiqUYi5pkw08CuO BTqEOm4RXxd6DIDQ1QXHjxs8Xk07ZKRViNXvYNr9/e8ELagiXWfetjswWukbpIDq OEPsThT1+jao9Jk+IEhU7HAW7wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFH9uKbPP 3mOXrPz/xCNCEHLhQY3bMB8GA1UdIwQYMBaAFNo8kfjxVdkLmYfJE7JMT55URenM MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNzBFRC9FNjI3N0EzRUU5 RTExMUU5QTU5ODdFMUZDNEY5QUUwMi8yanlSLVBGVjJRdVpoOGtUc2t4UG5sUkY2 Y3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJqeVItUEZWMlF1Wmg4a1Rza3hQbmxSRjZjdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NzBFRC9FNjI3N0EzRUU5RTExMUU5QTU5ODdFMUZDNEY5QUUwMi8yanlSLVBGVjJR dVpoOGtUc2t4UG5sUkY2Y3cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC0nvNEtPDWjzB+7rfVYiK6xj6IeCehWmMtYshkwweXg4OfAVPwTf4M KKEjtvB4wEuJyphMbAQwdEtbaIDl/BBz+6EBfFdkv1jPEXAevzIaZBW8EvXEdXva 92BBvY042/EPRxixbQSAWr87FrldQyhpL7PROZqHz43bP3tjUAvx0+pzFnSIW43g +I36ozUTMGna4H5SMI+M/zCul+BcX1eSimWjFGN4ubeCImqDnAbYJadd9/1lO1u+ 98+eiBlJaeU1BOynxcDZDPpnAe6crQ9ztkRKLjSwm5/1PDc47g4Fi34B27znqLZN qbKyEFKsR3HWsRJbAp+g3YhwCELT0XPC -----END CERTIFICATE-----Generated at Sat Jun 14 19:22:21 2025 by rpki-client