$ rpki-client -vvf rpki.apnic.net/member_repository/A91F0AF0/E37629500FFF11E98815AE22C4F9AE02/2b1w53f4Ya5UOFcUjmM1L9qEwHo.mft File: 2b1w53f4Ya5UOFcUjmM1L9qEwHo.mft (raw, json) Hash identifier: R9jwNbm01LjBuEI4ZE0AdH7K5kWkcqgq+26R4zfUxYo= Subject key identifier: 86:F8:90:C6:FC:99:08:86:C0:09:10:87:8F:28:0C:B4:0B:92:4E:25 Authority key identifier: D9:BD:70:E7:77:F8:61:AE:54:38:57:14:8E:63:35:2F:DA:84:C0:7A Certificate issuer: /CN=A91F0AF0/serialNumber=D9BD70E777F861AE543857148E63352FDA84C07A Certificate serial: 0C73 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2b1w53f4Ya5UOFcUjmM1L9qEwHo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F0AF0/E37629500FFF11E98815AE22C4F9AE02/2b1w53f4Ya5UOFcUjmM1L9qEwHo.mft Manifest number: 1D8F Signing time: Thu 12 Jun 2025 17:11:46 +0000 Manifest this update: Thu 12 Jun 2025 17:11:46 +0000 Manifest next update: Thu 19 Jun 2025 17:11:46 +0000 Files and hashes: 1: 2b1w53f4Ya5UOFcUjmM1L9qEwHo.crl (hash: resxWTW8Pi/0MTolgZW4JR8fVX20tQPOrbuYwc4Sx6s=) 2: CE3C7EF66FEB11EB91967864C4F9AE02.roa (hash: Ecj4wTVjyUbe05JmkTHE3iJeDcHJFhB138/thNFleyk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F0AF0/E37629500FFF11E98815AE22C4F9AE02/2b1w53f4Ya5UOFcUjmM1L9qEwHo.crl rsync://rpki.apnic.net/member_repository/A91F0AF0/E37629500FFF11E98815AE22C4F9AE02/2b1w53f4Ya5UOFcUjmM1L9qEwHo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2b1w53f4Ya5UOFcUjmM1L9qEwHo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 19 Jun 2025 17:11:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3187 (0xc73) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F0AF0, serialNumber=D9BD70E777F861AE543857148E63352FDA84C07A Validity Not Before: Jun 12 17:11:46 2025 GMT Not After : Jun 19 17:11:46 2025 GMT Subject: CN=684b0a52-224a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:16:ca:20:83:6c:81:6c:02:1d:07:17:75:ed: 98:51:57:5a:f7:8b:ab:2a:bd:8f:30:9a:02:18:f4: bc:88:69:48:10:d0:84:55:da:bf:f7:63:d8:cf:c2: 74:47:5b:c4:fe:89:5a:52:c0:09:18:4c:28:d9:9b: cd:a7:f7:fd:6d:be:be:75:75:67:9a:48:fd:c8:f5: 12:1b:b2:fa:02:7f:b2:1c:16:22:1c:1b:2b:1b:05: 07:5f:4a:a6:11:77:63:e5:55:9c:4f:39:b6:4d:2b: 08:ef:9c:b5:f9:6c:43:86:56:a5:8e:2f:41:1d:9e: 47:97:73:f1:6f:7f:bc:d5:d0:28:38:bf:cd:4d:db: 60:ba:7d:cf:45:a2:c8:f0:fe:d7:63:9d:ba:07:b1: 79:1b:f6:f6:37:1c:e6:15:e0:fb:fe:0f:53:92:fe: 58:76:53:9e:78:fd:fd:d2:f9:43:12:0c:56:36:3b: d5:59:9a:76:bc:55:76:b7:26:12:6a:f9:a9:33:18: 13:8d:4d:7b:c0:bf:3e:4a:72:c6:ee:2a:00:e2:c2: 2a:0d:f5:e3:00:9a:32:ee:62:64:f6:97:70:c0:d3: cc:a6:8e:0d:eb:b5:37:c2:ca:e4:41:4f:f9:73:26: a2:1b:7e:13:3d:30:5c:7d:11:e0:37:8c:03:40:dc: 0d:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 86:F8:90:C6:FC:99:08:86:C0:09:10:87:8F:28:0C:B4:0B:92:4E:25 X509v3 Authority Key Identifier: keyid:D9:BD:70:E7:77:F8:61:AE:54:38:57:14:8E:63:35:2F:DA:84:C0:7A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F0AF0/E37629500FFF11E98815AE22C4F9AE02/2b1w53f4Ya5UOFcUjmM1L9qEwHo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2b1w53f4Ya5UOFcUjmM1L9qEwHo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F0AF0/E37629500FFF11E98815AE22C4F9AE02/2b1w53f4Ya5UOFcUjmM1L9qEwHo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3f:dc:4e:ba:4b:6b:f0:1c:bf:94:5d:96:2b:32:60:e4:06:43: 55:92:58:7b:71:1f:cf:36:1f:7b:9b:0d:d7:a9:ed:9b:f4:4e: 71:61:4d:43:79:0c:7d:4e:69:7a:27:cd:2a:a1:2c:ac:a1:a2: 35:38:6b:01:8a:6e:1e:a3:42:bf:88:f6:85:18:10:8b:f3:2a: a9:62:c7:38:6a:c4:a8:4d:3b:0e:4a:6d:c9:38:e7:34:c0:1d: 14:a3:4b:5f:20:f8:9c:a7:0b:23:03:c6:88:fd:ca:b3:50:9c: 9b:2e:ee:db:17:46:5b:e4:a9:14:ed:17:f6:5c:e5:f7:78:ed: d6:3d:45:64:cc:08:b2:e2:8d:32:52:48:cb:9e:61:34:4c:e0: b4:d8:83:85:00:cc:4c:f6:35:e4:67:55:ac:09:f3:dd:8c:21: 36:3d:8a:d7:f0:4a:9c:ce:f3:98:69:a7:43:a2:c2:b9:36:be: b9:fc:56:a6:a0:9d:46:28:75:52:8e:8b:fe:a3:2b:b7:40:e8: 67:a7:fb:25:7e:39:d8:18:df:b9:2f:61:89:68:4a:cf:8e:35: c3:0b:e7:68:48:f9:28:7a:d9:f1:92:e0:1a:fb:df:21:14:3e: d8:dc:2d:e3:e6:52:39:de:69:c3:08:49:a3:90:6b:bb:8a:bc: 47:25:d6:90 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDHMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjBBRjAxMTAvBgNVBAUTKEQ5QkQ3MEU3NzdGODYxQUU1NDM4NTcxNDhFNjMzNTJG REE4NEMwN0EwHhcNMjUwNjEyMTcxMTQ2WhcNMjUwNjE5MTcxMTQ2WjAYMRYwFAYD VQQDEw02ODRiMGE1Mi0yMjRhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwRbKIINsgWwCHQcXde2YUVda94urKr2PMJoCGPS8iGlIENCEVdq/92PYz8J0 R1vE/olaUsAJGEwo2ZvNp/f9bb6+dXVnmkj9yPUSG7L6An+yHBYiHBsrGwUHX0qm EXdj5VWcTzm2TSsI75y1+WxDhlalji9BHZ5Hl3Pxb3+81dAoOL/NTdtgun3PRaLI 8P7XY526B7F5G/b2NxzmFeD7/g9Tkv5YdlOeeP390vlDEgxWNjvVWZp2vFV2tyYS avmpMxgTjU17wL8+SnLG7ioA4sIqDfXjAJoy7mJk9pdwwNPMpo4N67U3wsrkQU/5 cyaiG34TPTBcfRHgN4wDQNwN2QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIb4kMb8 mQiGwAkQh48oDLQLkk4lMB8GA1UdIwQYMBaAFNm9cOd3+GGuVDhXFI5jNS/ahMB6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMEFGMC9FMzc2Mjk1MDBG RkYxMUU5ODgxNUFFMjJDNEY5QUUwMi8yYjF3NTNmNFlhNVVPRmNVam1NMUw5cUV3 SG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJiMXc1M2Y0WWE1VU9GY1VqbU0xTDlxRXdIby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG MEFGMC9FMzc2Mjk1MDBGRkYxMUU5ODgxNUFFMjJDNEY5QUUwMi8yYjF3NTNmNFlh NVVPRmNVam1NMUw5cUV3SG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA/3E66S2vwHL+UXZYrMmDkBkNVklh7cR/PNh97mw3Xqe2b9E5xYU1D eQx9Tml6J80qoSysoaI1OGsBim4eo0K/iPaFGBCL8yqpYsc4asSoTTsOSm3JOOc0 wB0Uo0tfIPicpwsjA8aI/cqzUJybLu7bF0Zb5KkU7Rf2XOX3eO3WPUVkzAiy4o0y UkjLnmE0TOC02IOFAMxM9jXkZ1WsCfPdjCE2PYrX8EqczvOYaadDosK5Nr65/Fam oJ1GKHVSjov+oyu3QOhnp/slfjnYGN+5L2GJaErPjjXDC+doSPkoetnxkuAa+98h FD7Y3C3j5lI53mnDCEmjkGu7irxHJdaQ -----END CERTIFICATE-----Generated at Sat Jun 14 17:33:00 2025 by rpki-client