$ rpki-client -vvf rpki.apnic.net/member_repository/A91211D4/A9F4965286CD11EBA4AFF609C4F9AE02/lo0qqmFoy0lpRKcnAYr7QqJuMeE.mft File: lo0qqmFoy0lpRKcnAYr7QqJuMeE.mft (raw, json) Hash identifier: LdyOncV5r3i1CdNs+0oIOH9wSXQ99/JDPGR6mRTvQTs= Subject key identifier: 5B:65:57:1C:AC:5D:AB:D2:68:41:08:28:73:2E:7E:77:F9:16:42:70 Authority key identifier: 96:8D:2A:AA:61:68:CB:49:69:44:A7:27:01:8A:FB:42:A2:6E:31:E1 Certificate issuer: /CN=A91211D4/serialNumber=968D2AAA6168CB496944A727018AFB42A26E31E1 Certificate serial: 06A3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lo0qqmFoy0lpRKcnAYr7QqJuMeE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91211D4/A9F4965286CD11EBA4AFF609C4F9AE02/lo0qqmFoy0lpRKcnAYr7QqJuMeE.mft Manifest number: 0683 Signing time: Sat 14 Jun 2025 22:12:11 +0000 Manifest this update: Sat 14 Jun 2025 22:12:10 +0000 Manifest next update: Sat 21 Jun 2025 22:12:10 +0000 Files and hashes: 1: lo0qqmFoy0lpRKcnAYr7QqJuMeE.crl (hash: /OfiHtw0H9OAI5od0Pfokfl5yJ3H6DiLwX1or6QM5Lw=) 2: 1019A190866411EF9319811DC4F9AE02.roa (hash: iHNv1D4CuKh0MplUtgE1k/nBfju2p94sD6YSJueQYIQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91211D4/A9F4965286CD11EBA4AFF609C4F9AE02/lo0qqmFoy0lpRKcnAYr7QqJuMeE.crl rsync://rpki.apnic.net/member_repository/A91211D4/A9F4965286CD11EBA4AFF609C4F9AE02/lo0qqmFoy0lpRKcnAYr7QqJuMeE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lo0qqmFoy0lpRKcnAYr7QqJuMeE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Jun 2025 22:12:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1699 (0x6a3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91211D4, serialNumber=968D2AAA6168CB496944A727018AFB42A26E31E1 Validity Not Before: Jun 14 22:12:10 2025 GMT Not After : Jun 21 22:12:10 2025 GMT Subject: CN=684df3bb-b4ce Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:33:86:20:b0:5c:3b:de:53:06:4f:eb:16:28: de:b6:2c:1f:67:d3:16:b1:b3:20:31:89:a2:3c:3f: 8e:a2:88:28:77:e1:02:f9:b1:74:49:91:97:42:77: 3f:13:04:1a:e7:c1:28:5a:f7:fa:60:f5:1a:da:e4: c1:01:26:cd:47:56:26:1c:7b:6e:c7:4b:84:19:e6: 8b:d0:a3:f7:24:f4:6a:dd:fe:d1:a6:73:42:73:c0: 7f:fe:51:db:62:69:0e:7b:ba:46:63:d4:d6:f2:82: 13:25:58:66:6d:ed:2e:02:09:62:ff:f9:1b:a1:62: 3a:07:fa:c1:36:c9:38:a5:e7:09:b5:32:07:84:e9: 03:a9:e8:09:ea:1b:02:81:9d:10:36:bf:45:a1:06: a2:e4:c8:84:46:92:a4:7f:26:45:9f:71:92:75:fc: 72:24:ab:17:7e:2b:9e:24:68:ef:08:42:35:d7:3f: 6a:ea:b4:00:5a:dc:85:d0:e2:6d:6c:48:c0:a5:69: 67:b0:41:ca:fd:5e:de:74:5f:e8:25:0b:c9:3c:94: c7:92:59:a8:99:19:58:7f:58:d0:96:ba:5b:c2:8e: 60:19:e5:36:fd:11:47:15:6d:59:93:fb:66:76:4f: 27:44:a6:bd:f6:54:97:37:b5:6d:90:5f:0d:94:2b: 03:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5B:65:57:1C:AC:5D:AB:D2:68:41:08:28:73:2E:7E:77:F9:16:42:70 X509v3 Authority Key Identifier: keyid:96:8D:2A:AA:61:68:CB:49:69:44:A7:27:01:8A:FB:42:A2:6E:31:E1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91211D4/A9F4965286CD11EBA4AFF609C4F9AE02/lo0qqmFoy0lpRKcnAYr7QqJuMeE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lo0qqmFoy0lpRKcnAYr7QqJuMeE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91211D4/A9F4965286CD11EBA4AFF609C4F9AE02/lo0qqmFoy0lpRKcnAYr7QqJuMeE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 27:bc:aa:3a:6d:95:40:ca:7d:58:04:15:06:9e:87:e9:b8:3c: f0:02:6b:d0:e2:fc:8f:54:64:cb:cc:36:b7:0e:00:02:91:b0: 93:ec:d4:91:8b:49:ba:d8:e8:ba:1d:4f:ec:c6:0a:f3:05:a9: d3:8c:dc:b0:48:1b:f5:46:f4:77:02:0f:17:68:54:d0:76:09: a2:3c:9e:68:ff:e6:c0:80:73:99:83:f0:6d:13:c9:94:83:77: 6a:55:1d:31:67:b8:18:b0:fa:5c:9c:a7:52:fe:59:a4:92:30: f0:ca:52:a9:30:51:80:ca:fd:e6:83:4f:f3:84:44:35:11:23: 2b:dd:d5:85:c5:1b:f8:b7:12:9b:19:b3:2d:05:77:28:e9:6e: 16:06:4d:23:57:f3:a5:bd:c7:7a:ae:bf:33:54:ba:33:be:73: dc:b3:01:e3:e1:f8:65:63:90:6f:9a:c7:45:a2:b5:2a:b5:63: 79:e6:8a:6f:f5:40:a9:23:36:9a:93:f2:13:bc:81:79:51:f9: e5:22:9e:61:07:c0:de:bb:eb:48:c8:ad:69:44:40:a9:1d:95: b4:7e:7b:df:3b:82:19:d6:ea:54:75:9d:02:2e:83:0b:49:5f: 73:c7:41:12:5a:cb:79:e0:82:43:eb:00:ec:97:3e:34:cb:a8: b1:42:5b:b0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBqMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjExRDQxMTAvBgNVBAUTKDk2OEQyQUFBNjE2OENCNDk2OTQ0QTcyNzAxOEFGQjQy QTI2RTMxRTEwHhcNMjUwNjE0MjIxMjEwWhcNMjUwNjIxMjIxMjEwWjAYMRYwFAYD VQQDEw02ODRkZjNiYi1iNGNlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtDOGILBcO95TBk/rFijetiwfZ9MWsbMgMYmiPD+Ooogod+EC+bF0SZGXQnc/ EwQa58EoWvf6YPUa2uTBASbNR1YmHHtux0uEGeaL0KP3JPRq3f7RpnNCc8B//lHb YmkOe7pGY9TW8oITJVhmbe0uAgli//kboWI6B/rBNsk4pecJtTIHhOkDqegJ6hsC gZ0QNr9FoQai5MiERpKkfyZFn3GSdfxyJKsXfiueJGjvCEI11z9q6rQAWtyF0OJt bEjApWlnsEHK/V7edF/oJQvJPJTHklmomRlYf1jQlrpbwo5gGeU2/RFHFW1Zk/tm dk8nRKa99lSXN7VtkF8NlCsDNQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFtlVxys XavSaEEIKHMufnf5FkJwMB8GA1UdIwQYMBaAFJaNKqphaMtJaUSnJwGK+0KibjHh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMTFENC9BOUY0OTY1Mjg2 Q0QxMUVCQTRBRkY2MDlDNEY5QUUwMi9sbzBxcW1Gb3kwbHBSS2NuQVlyN1FxSnVN ZUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xvMHFxbUZveTBscFJLY25BWXI3UXFKdU1lRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy MTFENC9BOUY0OTY1Mjg2Q0QxMUVCQTRBRkY2MDlDNEY5QUUwMi9sbzBxcW1Gb3kw bHBSS2NuQVlyN1FxSnVNZUUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAnvKo6bZVAyn1YBBUGnofpuDzwAmvQ4vyPVGTLzDa3DgACkbCT7NSR i0m62Oi6HU/sxgrzBanTjNywSBv1RvR3Ag8XaFTQdgmiPJ5o/+bAgHOZg/BtE8mU g3dqVR0xZ7gYsPpcnKdS/lmkkjDwylKpMFGAyv3mg0/zhEQ1ESMr3dWFxRv4txKb GbMtBXco6W4WBk0jV/Olvcd6rr8zVLozvnPcswHj4fhlY5BvmsdForUqtWN55opv 9UCpIzaak/ITvIF5UfnlIp5hB8Deu+tIyK1pRECpHZW0fnvfO4IZ1upUdZ0CLoML SV9zx0ESWst54IJD6wDslz40y6ixQluw -----END CERTIFICATE-----Generated at Sun Jun 15 08:22:58 2025 by rpki-client