$ rpki-client -vvf rpki.apnic.net/member_repository/A91325C7/24398230548611EB9F98C264C4F9AE02/mhSDaiGG0ZciFIYiSDVdq4u5c2Y.mft File: mhSDaiGG0ZciFIYiSDVdq4u5c2Y.mft (raw, json) Hash identifier: H/ctmq8XQ+lBJFOu47h5r/3XPb98AVgQyGhaK2DRCbk= Subject key identifier: 5D:C6:F0:3F:A0:42:42:8E:CB:FD:14:BD:06:7D:96:D1:98:75:70:4B Authority key identifier: 9A:14:83:6A:21:86:D1:97:22:14:86:22:48:35:5D:AB:8B:B9:73:66 Certificate issuer: /CN=A91325C7/serialNumber=9A14836A2186D1972214862248355DAB8BB97366 Certificate serial: 06ED Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mhSDaiGG0ZciFIYiSDVdq4u5c2Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91325C7/24398230548611EB9F98C264C4F9AE02/mhSDaiGG0ZciFIYiSDVdq4u5c2Y.mft Manifest number: 06DF Signing time: Sat 14 Jun 2025 21:44:14 +0000 Manifest this update: Sat 14 Jun 2025 21:44:14 +0000 Manifest next update: Sat 21 Jun 2025 21:44:14 +0000 Files and hashes: 1: mhSDaiGG0ZciFIYiSDVdq4u5c2Y.crl (hash: VbmjZ4Vu9D1sIgR5ZbFY7CLw4TyepSM47OOREozR/OU=) 2: 591B98DE548711EB89568B65C4F9AE02.roa (hash: d7N6f6yC80H+bBisy6d0uZFPMZkPZ4+tK8vPcg2RMI4=) 3: 59BC86E0548711EB89568B65C4F9AE02.roa (hash: XqZL53ufCEPPnAj9K+Mz0fhXU33hy00eQ9KaFrfBZL4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91325C7/24398230548611EB9F98C264C4F9AE02/mhSDaiGG0ZciFIYiSDVdq4u5c2Y.crl rsync://rpki.apnic.net/member_repository/A91325C7/24398230548611EB9F98C264C4F9AE02/mhSDaiGG0ZciFIYiSDVdq4u5c2Y.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mhSDaiGG0ZciFIYiSDVdq4u5c2Y.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Jun 2025 21:44:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1773 (0x6ed) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91325C7, serialNumber=9A14836A2186D1972214862248355DAB8BB97366 Validity Not Before: Jun 14 21:44:14 2025 GMT Not After : Jun 21 21:44:14 2025 GMT Subject: CN=684ded2e-9678 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:7e:55:b7:21:2c:15:aa:16:dd:18:0b:5e:81: c0:06:22:5e:f4:c9:a4:49:19:17:b3:de:1d:db:a7: c7:2a:b0:b5:7d:ed:b0:0d:f2:32:c9:95:94:df:41: d9:2d:cf:3d:38:2c:2b:9d:83:07:81:fd:b5:91:8d: bf:64:a7:76:35:81:35:d2:1b:97:ea:0e:e4:50:e4: 67:dd:6b:0e:76:c6:08:6c:ce:66:45:6e:7b:31:f7: 23:04:94:90:15:14:bf:a5:db:e6:1d:5c:d6:65:d4: 02:6b:c8:3d:52:24:c3:11:43:be:ec:7b:3e:29:42: a8:64:7f:f6:8f:bd:31:de:a7:1a:db:c5:f8:09:b1: 4e:6f:74:7f:7e:81:1f:a9:a4:09:ca:f5:6f:1f:58: b7:6d:8f:b2:49:63:01:c9:e1:2f:81:11:a0:bf:91: 76:b8:e5:88:8a:21:0d:88:4a:f5:88:e2:6a:ae:27: ef:79:49:3f:86:7b:6c:a0:cc:c7:f6:14:3c:c3:4a: 09:07:22:55:a7:f9:ed:de:f3:88:f5:2c:75:c9:69: be:d2:94:41:a1:81:1f:73:22:c1:c2:68:ca:fb:ff: 5f:cd:7a:e1:2f:c2:85:d9:93:a7:c4:66:4e:5c:4e: 03:e8:33:34:74:91:0f:f1:77:b5:a3:1e:2e:9e:dd: af:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5D:C6:F0:3F:A0:42:42:8E:CB:FD:14:BD:06:7D:96:D1:98:75:70:4B X509v3 Authority Key Identifier: keyid:9A:14:83:6A:21:86:D1:97:22:14:86:22:48:35:5D:AB:8B:B9:73:66 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91325C7/24398230548611EB9F98C264C4F9AE02/mhSDaiGG0ZciFIYiSDVdq4u5c2Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mhSDaiGG0ZciFIYiSDVdq4u5c2Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91325C7/24398230548611EB9F98C264C4F9AE02/mhSDaiGG0ZciFIYiSDVdq4u5c2Y.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 61:97:53:45:e0:e1:0e:80:5b:74:bc:9d:8f:00:c8:65:13:b5: 72:38:58:a9:20:bc:8a:c7:e1:9f:dd:02:2a:0b:45:c2:72:02: f6:65:f7:fb:1a:e3:2e:72:21:6c:1c:fd:25:1a:6f:fa:8c:4b: d7:58:65:bb:be:51:ad:d4:7a:52:a0:b0:c8:a4:67:ed:83:5f: e3:08:ba:55:36:95:91:1e:fa:d0:db:2f:68:a0:6f:26:e4:c8: 06:93:22:e3:1f:36:25:2e:80:bf:1a:c9:34:eb:6f:4a:ce:8b: bf:c9:74:26:92:d6:f6:da:3e:dc:f9:af:d3:b7:32:f1:a9:88: b3:6e:43:03:fd:c9:91:f5:ba:8e:7d:8d:fc:a1:c1:53:91:e0: e8:9e:f8:d5:b9:39:03:76:ca:c8:60:24:99:a1:d3:9e:38:78: b9:a2:25:56:a7:ac:1b:2c:59:40:4d:c3:40:e4:31:46:52:79: 44:bb:25:85:8a:0c:56:d8:75:df:f8:82:bd:bd:92:c3:2c:24: fa:05:70:34:4d:92:df:3d:23:48:45:ae:14:70:7b:2c:8a:fa: 34:38:2f:df:b8:2a:97:35:e3:57:7c:90:08:55:8f:70:20:13: df:e8:2a:3d:e8:28:64:2f:26:1f:5d:51:15:0a:bc:4d:6f:26: 97:80:ac:f5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBu0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzI1QzcxMTAvBgNVBAUTKDlBMTQ4MzZBMjE4NkQxOTcyMjE0ODYyMjQ4MzU1REFC OEJCOTczNjYwHhcNMjUwNjE0MjE0NDE0WhcNMjUwNjIxMjE0NDE0WjAYMRYwFAYD VQQDEw02ODRkZWQyZS05Njc4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAz35VtyEsFaoW3RgLXoHABiJe9MmkSRkXs94d26fHKrC1fe2wDfIyyZWU30HZ Lc89OCwrnYMHgf21kY2/ZKd2NYE10huX6g7kUORn3WsOdsYIbM5mRW57MfcjBJSQ FRS/pdvmHVzWZdQCa8g9UiTDEUO+7Hs+KUKoZH/2j70x3qca28X4CbFOb3R/foEf qaQJyvVvH1i3bY+ySWMByeEvgRGgv5F2uOWIiiENiEr1iOJqrifveUk/hntsoMzH 9hQ8w0oJByJVp/nt3vOI9Sx1yWm+0pRBoYEfcyLBwmjK+/9fzXrhL8KF2ZOnxGZO XE4D6DM0dJEP8Xe1ox4unt2vbwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFF3G8D+g QkKOy/0UvQZ9ltGYdXBLMB8GA1UdIwQYMBaAFJoUg2ohhtGXIhSGIkg1XauLuXNm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMjVDNy8yNDM5ODIzMDU0 ODYxMUVCOUY5OEMyNjRDNEY5QUUwMi9taFNEYWlHRzBaY2lGSVlpU0RWZHE0dTVj MlkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL21oU0RhaUdHMFpjaUZJWWlTRFZkcTR1NWMyWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz MjVDNy8yNDM5ODIzMDU0ODYxMUVCOUY5OEMyNjRDNEY5QUUwMi9taFNEYWlHRzBa Y2lGSVlpU0RWZHE0dTVjMlkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBhl1NF4OEOgFt0vJ2PAMhlE7VyOFipILyKx+Gf3QIqC0XCcgL2Zff7 GuMuciFsHP0lGm/6jEvXWGW7vlGt1HpSoLDIpGftg1/jCLpVNpWRHvrQ2y9ooG8m 5MgGkyLjHzYlLoC/Gsk0629Kzou/yXQmktb22j7c+a/TtzLxqYizbkMD/cmR9bqO fY38ocFTkeDonvjVuTkDdsrIYCSZodOeOHi5oiVWp6wbLFlATcNA5DFGUnlEuyWF igxW2HXf+IK9vZLDLCT6BXA0TZLfPSNIRa4UcHssivo0OC/fuCqXNeNXfJAIVY9w IBPf6Co96ChkLyYfXVEVCrxNbyaXgKz1 -----END CERTIFICATE-----Generated at Sun Jun 15 09:42:45 2025 by rpki-client