$ rpki-client -vvf rpki.apnic.net/member_repository/A91297A2/B3DFC8846D6211EEB307CE19C4F9AE02/45B7SOaYfi_fztAe0B1As_Y9sRg.mft File: 45B7SOaYfi_fztAe0B1As_Y9sRg.mft (raw, json) Hash identifier: qvBV8/2eGMeU9bkdztgUoOBawGsvqEd4HGx1IqNmW/k= Subject key identifier: A9:77:18:6E:EE:60:48:D5:42:36:57:C8:F9:5A:D5:A9:CA:22:09:A3 Authority key identifier: E3:90:7B:48:E6:98:7E:2F:DF:CE:D0:1E:D0:1D:40:B3:F6:3D:B1:18 Certificate issuer: /CN=A91297A2/serialNumber=E3907B48E6987E2FDFCED01ED01D40B3F63DB118 Certificate serial: 0140 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/45B7SOaYfi_fztAe0B1As_Y9sRg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91297A2/B3DFC8846D6211EEB307CE19C4F9AE02/45B7SOaYfi_fztAe0B1As_Y9sRg.mft Manifest number: 013B Signing time: Fri 13 Jun 2025 03:24:56 +0000 Manifest this update: Fri 13 Jun 2025 03:24:56 +0000 Manifest next update: Fri 20 Jun 2025 03:24:56 +0000 Files and hashes: 1: 45B7SOaYfi_fztAe0B1As_Y9sRg.crl (hash: H91P1BKiZWbar+6NI0Ds7YzX9nbtWgK5w3iw3brsvT8=) 2: 3802AF56829811EEB7C3F322C4F9AE02.roa (hash: /dryDqRy0DH6c/gZr4MBN4BosfeqNmHeRwKmrIx/CX8=) 3: B08503D8F8AA11EE91684140C4F9AE02.roa (hash: ZuM6BVmH6niQKuKQ1eCiPR55KnpBaOjGce45jTQXxyE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91297A2/B3DFC8846D6211EEB307CE19C4F9AE02/45B7SOaYfi_fztAe0B1As_Y9sRg.crl rsync://rpki.apnic.net/member_repository/A91297A2/B3DFC8846D6211EEB307CE19C4F9AE02/45B7SOaYfi_fztAe0B1As_Y9sRg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/45B7SOaYfi_fztAe0B1As_Y9sRg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 20 Jun 2025 03:24:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 320 (0x140) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91297A2, serialNumber=E3907B48E6987E2FDFCED01ED01D40B3F63DB118 Validity Not Before: Jun 13 03:24:56 2025 GMT Not After : Jun 20 03:24:56 2025 GMT Subject: CN=684b9a08-bf71 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:4d:14:e9:4c:4e:49:9b:68:0a:f5:7c:25:3c: 3d:97:28:fb:fe:34:bf:54:7c:a8:16:4e:70:c2:69: 4a:c5:25:af:89:1d:38:10:54:d4:c2:86:9f:37:03: fa:d7:cd:f3:d7:43:56:b7:22:30:ad:4c:76:7f:f5: 49:f9:bb:46:f1:dd:0d:14:4f:ae:f8:3a:d5:1d:98: e5:4b:03:57:3a:40:74:01:04:d0:4e:e9:0b:a8:0f: 30:d6:82:24:c8:3c:b1:de:9a:59:bf:ae:4a:6b:83: 10:05:ad:40:b7:ac:2b:8d:46:57:e1:61:10:30:0d: 83:52:3c:df:23:ed:82:74:c8:f8:9b:6b:98:2d:77: eb:d1:24:1b:7c:98:1c:a6:3f:61:79:02:cc:cf:60: 40:94:04:6d:53:89:39:1f:12:4d:34:8c:86:c0:24: c3:37:9d:11:a9:b4:52:97:e1:68:ae:84:99:27:e2: 29:b9:8e:76:ee:e8:00:6e:db:32:42:01:2d:96:68: ea:fc:98:72:4c:26:41:a3:e2:1a:94:21:24:42:88: b3:26:4f:7e:31:f1:a4:d0:1c:e2:e8:0d:68:4d:4f: bf:07:4f:f6:7f:af:2e:75:22:59:44:90:90:9d:c5: 50:77:4a:d7:e6:22:6b:ae:58:71:74:23:ea:b7:38: 03:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A9:77:18:6E:EE:60:48:D5:42:36:57:C8:F9:5A:D5:A9:CA:22:09:A3 X509v3 Authority Key Identifier: keyid:E3:90:7B:48:E6:98:7E:2F:DF:CE:D0:1E:D0:1D:40:B3:F6:3D:B1:18 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91297A2/B3DFC8846D6211EEB307CE19C4F9AE02/45B7SOaYfi_fztAe0B1As_Y9sRg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/45B7SOaYfi_fztAe0B1As_Y9sRg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91297A2/B3DFC8846D6211EEB307CE19C4F9AE02/45B7SOaYfi_fztAe0B1As_Y9sRg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1f:b8:32:a7:70:2d:01:e3:74:88:8e:22:10:bc:42:2b:3b:36: 1c:95:6b:7a:3b:59:20:10:d8:82:57:70:66:17:11:ee:ac:4e: 12:18:31:b2:33:04:68:2a:90:99:e8:df:0e:38:60:55:71:54: 74:a7:ad:46:5b:6e:81:e3:21:f6:30:ff:de:3f:0b:64:cc:77: de:72:b7:76:cb:16:b6:cb:49:da:81:76:cb:10:15:16:6f:8f: 10:a0:5b:8d:63:0b:6e:41:74:db:03:b4:0d:5b:b9:29:8f:97: fa:7f:8b:a8:e5:1e:3f:1e:83:35:1e:89:e9:6c:8e:44:f8:c0: 65:c8:eb:e9:19:bd:ce:c2:f1:70:cb:dd:66:0e:ae:b7:59:01: 57:6a:c0:c2:8e:dd:60:2a:2f:e3:da:bf:a1:3f:bf:01:1f:c1: ce:95:6a:13:6c:10:66:40:2c:25:23:98:db:b5:2f:1d:d8:50: 3f:1b:43:a9:a0:d9:21:67:78:84:7c:f8:9d:a7:4c:cf:98:7f: c9:6f:08:0e:39:ce:4c:c9:a2:88:35:9d:f3:fd:b3:1c:84:08: 83:2f:cd:c0:92:6b:34:d5:b9:24:f3:ab:ff:6f:91:77:74:e1: f6:b2:c4:9d:89:8c:78:6e:ab:5f:ba:f8:58:f5:3a:70:52:bb: 4d:11:ca:1f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAUAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mjk3QTIxMTAvBgNVBAUTKEUzOTA3QjQ4RTY5ODdFMkZERkNFRDAxRUQwMUQ0MEIz RjYzREIxMTgwHhcNMjUwNjEzMDMyNDU2WhcNMjUwNjIwMDMyNDU2WjAYMRYwFAYD VQQDEw02ODRiOWEwOC1iZjcxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5U0U6UxOSZtoCvV8JTw9lyj7/jS/VHyoFk5wwmlKxSWviR04EFTUwoafNwP6 183z10NWtyIwrUx2f/VJ+btG8d0NFE+u+DrVHZjlSwNXOkB0AQTQTukLqA8w1oIk yDyx3ppZv65Ka4MQBa1At6wrjUZX4WEQMA2DUjzfI+2CdMj4m2uYLXfr0SQbfJgc pj9heQLMz2BAlARtU4k5HxJNNIyGwCTDN50RqbRSl+ForoSZJ+IpuY527ugAbtsy QgEtlmjq/JhyTCZBo+IalCEkQoizJk9+MfGk0Bzi6A1oTU+/B0/2f68udSJZRJCQ ncVQd0rX5iJrrlhxdCPqtzgDywIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKl3GG7u YEjVQjZXyPla1anKIgmjMB8GA1UdIwQYMBaAFOOQe0jmmH4v387QHtAdQLP2PbEY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyOTdBMi9CM0RGQzg4NDZE NjIxMUVFQjMwN0NFMTlDNEY5QUUwMi80NUI3U09hWWZpX2Z6dEFlMEIxQXNfWTlz UmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzQ1QjdTT2FZZmlfZnp0QWUwQjFBc19ZOXNSZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy OTdBMi9CM0RGQzg4NDZENjIxMUVFQjMwN0NFMTlDNEY5QUUwMi80NUI3U09hWWZp X2Z6dEFlMEIxQXNfWTlzUmcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAfuDKncC0B43SIjiIQvEIrOzYclWt6O1kgENiCV3BmFxHurE4SGDGy MwRoKpCZ6N8OOGBVcVR0p61GW26B4yH2MP/ePwtkzHfecrd2yxa2y0nagXbLEBUW b48QoFuNYwtuQXTbA7QNW7kpj5f6f4uo5R4/HoM1HonpbI5E+MBlyOvpGb3OwvFw y91mDq63WQFXasDCjt1gKi/j2r+hP78BH8HOlWoTbBBmQCwlI5jbtS8d2FA/G0Op oNkhZ3iEfPidp0zPmH/JbwgOOc5MyaKINZ3z/bMchAiDL83Akms01bkk86v/b5F3 dOH2ssSdiYx4bqtfuvhY9TpwUrtNEcof -----END CERTIFICATE-----Generated at Sat Jun 14 19:39:18 2025 by rpki-client