$ rpki-client -vvf rpki.apnic.net/member_repository/A91FEFBB/D896B5C8EA6A11EDB5B6B55EC4F9AE02/2nWrD7Oqh1r631o4-FK9zB3YJvc.mft File: 2nWrD7Oqh1r631o4-FK9zB3YJvc.mft (raw, json) Hash identifier: T/OCw114+LOqwEOC9Z72Ne3SD2gdxY2ykVHqnUlwg5U= Subject key identifier: EA:2F:5A:B1:71:DA:8E:DE:BE:E7:71:8A:79:E1:21:5B:6D:35:50:0C Authority key identifier: DA:75:AB:0F:B3:AA:87:5A:FA:DF:5A:38:F8:52:BD:CC:1D:D8:26:F7 Certificate issuer: /CN=A91FEFBB/serialNumber=DA75AB0FB3AA875AFADF5A38F852BDCC1DD826F7 Certificate serial: 0198 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2nWrD7Oqh1r631o4-FK9zB3YJvc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FEFBB/D896B5C8EA6A11EDB5B6B55EC4F9AE02/2nWrD7Oqh1r631o4-FK9zB3YJvc.mft Manifest number: 0190 Signing time: Fri 13 Jun 2025 02:32:11 +0000 Manifest this update: Fri 13 Jun 2025 02:32:10 +0000 Manifest next update: Fri 20 Jun 2025 02:32:10 +0000 Files and hashes: 1: 2nWrD7Oqh1r631o4-FK9zB3YJvc.crl (hash: aFJwQWrJxEGDmyGEDTOO3Lp44hZew3N77jnJ90ycWGs=) 2: 261D3B8AEE4611ED9BEFED31C4F9AE02.roa (hash: HkCOmQRPg+yDDZPtodRzZcHCpOQoTEGcVWS7eV1BiSA=) 3: 881C3F9CABD311EFBFED7130C4F9AE02.roa (hash: 4Vu2iECkKD+oqedLfhjWXd7CHOWEQhszvHID7EwF+IE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FEFBB/D896B5C8EA6A11EDB5B6B55EC4F9AE02/2nWrD7Oqh1r631o4-FK9zB3YJvc.crl rsync://rpki.apnic.net/member_repository/A91FEFBB/D896B5C8EA6A11EDB5B6B55EC4F9AE02/2nWrD7Oqh1r631o4-FK9zB3YJvc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2nWrD7Oqh1r631o4-FK9zB3YJvc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 20 Jun 2025 02:32:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 408 (0x198) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FEFBB, serialNumber=DA75AB0FB3AA875AFADF5A38F852BDCC1DD826F7 Validity Not Before: Jun 13 02:32:10 2025 GMT Not After : Jun 20 02:32:10 2025 GMT Subject: CN=684b8daa-ff3a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:a9:ea:3d:3a:49:c7:5b:a5:9d:bb:91:21:96: 7e:2e:94:74:83:1b:7b:04:30:48:0b:c1:5d:43:71: 9f:9c:cd:10:40:8d:e8:74:1a:7e:13:a0:e0:a8:fb: 52:74:34:9b:34:c5:68:d1:61:79:b6:9f:a7:cf:d1: df:01:10:5d:60:bb:74:9e:f5:6c:b4:ec:5c:a4:be: de:b5:70:f3:a3:33:1d:b3:d1:35:9d:ae:75:29:99: ce:db:6a:e7:8d:31:4b:c0:96:7c:04:fe:e6:f7:ab: f8:3e:92:2d:c6:fc:fd:54:48:8a:62:5c:66:ea:8c: 79:1c:93:da:5d:26:16:68:f4:bb:c1:de:64:54:06: 76:63:d1:c5:28:70:35:89:6a:d7:92:04:9b:f2:ca: 26:1b:08:e4:d5:05:72:a7:05:07:84:8b:2e:90:db: 8f:0d:4d:48:93:f7:36:c1:15:b0:47:e9:5d:c4:13: cb:fe:92:65:55:29:47:57:82:fd:34:f6:3d:ee:a5: 73:72:eb:24:fc:39:04:10:57:4a:e2:e8:d1:89:87: 5e:18:c3:93:f8:b2:87:7c:c9:33:03:e4:b9:fd:55: b5:59:5e:b0:b7:12:3a:e5:31:87:c5:0e:0e:3a:9a: 79:a0:01:71:09:eb:1b:96:d1:b3:e8:0e:67:3c:8b: ff:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EA:2F:5A:B1:71:DA:8E:DE:BE:E7:71:8A:79:E1:21:5B:6D:35:50:0C X509v3 Authority Key Identifier: keyid:DA:75:AB:0F:B3:AA:87:5A:FA:DF:5A:38:F8:52:BD:CC:1D:D8:26:F7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FEFBB/D896B5C8EA6A11EDB5B6B55EC4F9AE02/2nWrD7Oqh1r631o4-FK9zB3YJvc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2nWrD7Oqh1r631o4-FK9zB3YJvc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FEFBB/D896B5C8EA6A11EDB5B6B55EC4F9AE02/2nWrD7Oqh1r631o4-FK9zB3YJvc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c1:63:c4:57:f6:c8:6c:3f:5b:2b:82:a1:bd:c0:7a:c8:55:2a: 10:43:90:5c:a4:e6:d1:ed:b1:ad:cb:9f:9d:81:ae:40:0d:e1: 81:7c:88:6f:87:b3:cd:e9:66:1c:bc:86:96:5b:9f:4e:49:9e: 0e:ec:4b:fe:2e:0c:88:cc:87:50:d5:96:8b:b9:aa:b4:82:75: b8:4a:b0:6c:15:06:e0:99:21:4a:b7:29:23:a6:5d:d3:d6:c3: 68:12:75:cd:2b:df:86:9f:ee:0e:57:e0:b7:52:a5:84:16:83: 1c:97:59:dc:0a:20:4c:a2:d5:6d:36:11:58:96:a8:b1:74:2b: 6a:21:11:ab:1b:16:48:75:a5:60:02:b0:35:04:92:3e:d5:20: fd:67:cb:ba:81:ed:a1:62:60:4e:b7:f3:e4:e3:45:e9:bb:01: e8:0e:2a:ba:87:3a:67:85:7e:a0:73:fb:a0:13:81:01:af:f0: 73:d9:8a:7e:08:21:9c:3a:80:e0:95:f4:11:e9:54:f5:1e:3a: a2:6c:53:85:07:23:0b:2c:22:38:cb:1b:15:6e:bb:8f:8d:b7: bd:8c:c1:de:53:9f:eb:f3:ad:8d:3b:06:c1:50:6c:fb:34:68: f6:61:95:c0:38:fe:e0:84:4a:49:53:1d:1a:f6:a1:32:14:fe: 71:55:d6:e1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAZgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkVGQkIxMTAvBgNVBAUTKERBNzVBQjBGQjNBQTg3NUFGQURGNUEzOEY4NTJCREND MUREODI2RjcwHhcNMjUwNjEzMDIzMjEwWhcNMjUwNjIwMDIzMjEwWjAYMRYwFAYD VQQDEw02ODRiOGRhYS1mZjNhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxanqPTpJx1ulnbuRIZZ+LpR0gxt7BDBIC8FdQ3GfnM0QQI3odBp+E6DgqPtS dDSbNMVo0WF5tp+nz9HfARBdYLt0nvVstOxcpL7etXDzozMds9E1na51KZnO22rn jTFLwJZ8BP7m96v4PpItxvz9VEiKYlxm6ox5HJPaXSYWaPS7wd5kVAZ2Y9HFKHA1 iWrXkgSb8somGwjk1QVypwUHhIsukNuPDU1Ik/c2wRWwR+ldxBPL/pJlVSlHV4L9 NPY97qVzcusk/DkEEFdK4ujRiYdeGMOT+LKHfMkzA+S5/VW1WV6wtxI65TGHxQ4O Opp5oAFxCesbltGz6A5nPIv/LwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOovWrFx 2o7evudxinnhIVttNVAMMB8GA1UdIwQYMBaAFNp1qw+zqoda+t9aOPhSvcwd2Cb3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGRUZCQi9EODk2QjVDOEVB NkExMUVEQjVCNkI1NUVDNEY5QUUwMi8ybldyRDdPcWgxcjYzMW80LUZLOXpCM1lK dmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJuV3JEN09xaDFyNjMxbzQtRks5ekIzWUp2Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG RUZCQi9EODk2QjVDOEVBNkExMUVEQjVCNkI1NUVDNEY5QUUwMi8ybldyRDdPcWgx cjYzMW80LUZLOXpCM1lKdmMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDBY8RX9shsP1srgqG9wHrIVSoQQ5BcpObR7bGty5+dga5ADeGBfIhv h7PN6WYcvIaWW59OSZ4O7Ev+LgyIzIdQ1ZaLuaq0gnW4SrBsFQbgmSFKtykjpl3T 1sNoEnXNK9+Gn+4OV+C3UqWEFoMcl1ncCiBMotVtNhFYlqixdCtqIRGrGxZIdaVg ArA1BJI+1SD9Z8u6ge2hYmBOt/Pk40XpuwHoDiq6hzpnhX6gc/ugE4EBr/Bz2Yp+ CCGcOoDglfQR6VT1HjqibFOFByMLLCI4yxsVbruPjbe9jMHeU5/r862NOwbBUGz7 NGj2YZXAOP7ghEpJUx0a9qEyFP5xVdbh -----END CERTIFICATE-----Generated at Sat Jun 14 18:51:07 2025 by rpki-client