$ rpki-client -vvf rpki.apnic.net/member_repository/A91216AC/38D23722F61711EBB20F1A4EC4F9AE02/_l8cdQBIu1TgE3OsPt1Ld32Ijnk.mft File: _l8cdQBIu1TgE3OsPt1Ld32Ijnk.mft (raw, json) Hash identifier: qSdM1iFSru1FIDqtQm/G4T2wQA1Sw6vkE5LdMH7+PkE= Subject key identifier: A6:CE:96:3D:B9:B2:CA:43:38:58:54:07:A5:65:2B:42:45:EF:6F:46 Authority key identifier: FE:5F:1C:75:00:48:BB:54:E0:13:73:AC:3E:DD:4B:77:7D:88:8E:79 Certificate issuer: /CN=A91216AC/serialNumber=FE5F1C750048BB54E01373AC3EDD4B777D888E79 Certificate serial: 0547 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_l8cdQBIu1TgE3OsPt1Ld32Ijnk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91216AC/38D23722F61711EBB20F1A4EC4F9AE02/_l8cdQBIu1TgE3OsPt1Ld32Ijnk.mft Manifest number: 0543 Signing time: Thu 12 Jun 2025 23:03:02 +0000 Manifest this update: Thu 12 Jun 2025 23:03:01 +0000 Manifest next update: Thu 19 Jun 2025 23:03:01 +0000 Files and hashes: 1: _l8cdQBIu1TgE3OsPt1Ld32Ijnk.crl (hash: jbE9Ds7PHfLSwHJAgVVvMw4fBpbeZvE0GthO2dwCMn0=) 2: AE1E5A1AF61C11EBAB08AF17C4F9AE02.roa (hash: L6NkrUDLV6Dmkk8kbRWqS9urNPurijV7bD/FqK/kzIo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91216AC/38D23722F61711EBB20F1A4EC4F9AE02/_l8cdQBIu1TgE3OsPt1Ld32Ijnk.crl rsync://rpki.apnic.net/member_repository/A91216AC/38D23722F61711EBB20F1A4EC4F9AE02/_l8cdQBIu1TgE3OsPt1Ld32Ijnk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_l8cdQBIu1TgE3OsPt1Ld32Ijnk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 19 Jun 2025 23:03:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1351 (0x547) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91216AC, serialNumber=FE5F1C750048BB54E01373AC3EDD4B777D888E79 Validity Not Before: Jun 12 23:03:01 2025 GMT Not After : Jun 19 23:03:01 2025 GMT Subject: CN=684b5ca6-a505 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:a9:b0:44:55:cb:0a:10:fd:1d:ae:52:b1:fd: 50:83:05:8a:06:76:57:5a:2f:d2:70:6f:b9:16:22: 04:31:e3:80:74:8f:81:5d:95:41:35:58:e4:c9:de: cc:54:d3:ed:ee:af:11:38:1c:c0:43:f5:78:da:a3: f5:31:53:49:3d:be:d3:5f:6e:13:f3:2f:e0:a6:3d: 24:d8:1e:3a:bd:eb:83:e3:33:54:09:0b:30:36:04: ae:10:53:5c:9c:a1:82:83:34:c3:78:0b:cc:49:16: b2:0e:5e:1e:91:8b:a2:4a:58:e1:e2:c5:91:07:7e: fb:e1:23:f8:ea:8d:d8:03:eb:da:99:3b:10:6a:51: 5f:cb:1b:bb:75:52:12:63:e7:d8:7d:92:84:12:8f: 7f:fe:d5:38:93:50:af:92:f8:b2:fe:90:7d:b6:97: 64:ad:b1:e7:6e:04:e8:de:09:cc:13:4d:3d:e6:0c: 47:bf:a1:b5:0a:e1:fa:b5:1a:75:db:78:20:7c:4e: 27:00:1f:df:ee:66:9f:32:0d:b2:e6:b2:49:18:57: 35:b1:87:16:36:79:0c:fa:07:68:57:e8:cc:d2:94: 06:87:5c:27:32:2e:8d:41:f3:f1:ca:fc:d1:cf:4d: 44:76:5e:d1:79:44:2b:0f:7e:f5:f8:d7:c0:36:5c: 81:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A6:CE:96:3D:B9:B2:CA:43:38:58:54:07:A5:65:2B:42:45:EF:6F:46 X509v3 Authority Key Identifier: keyid:FE:5F:1C:75:00:48:BB:54:E0:13:73:AC:3E:DD:4B:77:7D:88:8E:79 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91216AC/38D23722F61711EBB20F1A4EC4F9AE02/_l8cdQBIu1TgE3OsPt1Ld32Ijnk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_l8cdQBIu1TgE3OsPt1Ld32Ijnk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91216AC/38D23722F61711EBB20F1A4EC4F9AE02/_l8cdQBIu1TgE3OsPt1Ld32Ijnk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8a:04:ed:80:08:de:ca:8b:d8:4a:33:7d:6d:8f:d6:71:78:38: ef:44:ea:e2:75:34:f2:64:80:3e:2b:fd:be:ae:5c:54:04:04: 76:9d:e2:0b:70:3a:31:4e:93:e1:2e:0e:98:3e:59:e3:90:69: bf:67:4d:6b:f5:b4:eb:9a:ad:61:43:77:1d:4e:41:cd:c7:38: fe:63:28:4f:a2:95:8e:cf:c4:d9:ea:f7:47:2a:5d:3e:1f:17: 0d:de:38:0f:3a:0d:a4:d1:5e:bf:ef:40:ed:56:b2:e6:94:ba: d4:f7:29:2f:2d:28:a7:c7:b8:77:ff:f9:00:17:60:de:9b:06: a9:ff:bb:17:c1:bd:81:35:08:6f:4f:28:42:fb:99:0d:19:47: 95:8c:7a:67:1e:f5:fd:fd:3e:21:1a:9f:97:08:7e:b9:1a:8c: 06:b0:34:65:b3:bc:19:9d:00:51:f3:4e:b1:e1:3f:59:78:bd: 48:57:9d:34:e8:db:fa:ed:6b:e1:77:07:bb:a5:55:9d:de:5e: ed:a5:a0:19:1b:64:9f:4b:2c:0a:4f:48:04:57:71:e5:6e:96: 27:25:4f:e6:fe:0c:1b:bb:8e:2e:8a:dd:3d:4d:ea:a3:02:99: 4b:2a:ab:64:fe:7e:19:67:2e:52:ca:7b:5e:df:8f:db:26:5d: b7:7c:33:bc -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBUcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjE2QUMxMTAvBgNVBAUTKEZFNUYxQzc1MDA0OEJCNTRFMDEzNzNBQzNFREQ0Qjc3 N0Q4ODhFNzkwHhcNMjUwNjEyMjMwMzAxWhcNMjUwNjE5MjMwMzAxWjAYMRYwFAYD VQQDEw02ODRiNWNhNi1hNTA1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3qmwRFXLChD9Ha5Ssf1QgwWKBnZXWi/ScG+5FiIEMeOAdI+BXZVBNVjkyd7M VNPt7q8ROBzAQ/V42qP1MVNJPb7TX24T8y/gpj0k2B46veuD4zNUCQswNgSuEFNc nKGCgzTDeAvMSRayDl4ekYuiSljh4sWRB3774SP46o3YA+vamTsQalFfyxu7dVIS Y+fYfZKEEo9//tU4k1Cvkviy/pB9tpdkrbHnbgTo3gnME0095gxHv6G1CuH6tRp1 23ggfE4nAB/f7mafMg2y5rJJGFc1sYcWNnkM+gdoV+jM0pQGh1wnMi6NQfPxyvzR z01Edl7ReUQrD371+NfANlyBDQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKbOlj25 sspDOFhUB6VlK0JF729GMB8GA1UdIwQYMBaAFP5fHHUASLtU4BNzrD7dS3d9iI55 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMTZBQy8zOEQyMzcyMkY2 MTcxMUVCQjIwRjFBNEVDNEY5QUUwMi9fbDhjZFFCSXUxVGdFM09zUHQxTGQzMklq bmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL19sOGNkUUJJdTFUZ0UzT3NQdDFMZDMySWpuay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy MTZBQy8zOEQyMzcyMkY2MTcxMUVCQjIwRjFBNEVDNEY5QUUwMi9fbDhjZFFCSXUx VGdFM09zUHQxTGQzMklqbmsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCKBO2ACN7Ki9hKM31tj9ZxeDjvROridTTyZIA+K/2+rlxUBAR2neIL cDoxTpPhLg6YPlnjkGm/Z01r9bTrmq1hQ3cdTkHNxzj+YyhPopWOz8TZ6vdHKl0+ HxcN3jgPOg2k0V6/70DtVrLmlLrU9ykvLSinx7h3//kAF2Demwap/7sXwb2BNQhv TyhC+5kNGUeVjHpnHvX9/T4hGp+XCH65GowGsDRls7wZnQBR806x4T9ZeL1IV500 6Nv67Wvhdwe7pVWd3l7tpaAZG2SfSywKT0gEV3HlbpYnJU/m/gwbu44uit09Teqj AplLKqtk/n4ZZy5Synte34/bJl23fDO8 -----END CERTIFICATE-----Generated at Sat Jun 14 19:37:56 2025 by rpki-client