$ rpki-client -vvf rpki.apnic.net/member_repository/A91346B1/9A0ECE10D0F011EC8ECDBF63C4F9AE02/Lz71uQE3FOMXTGcArgSCTi8FwjA.mft File: Lz71uQE3FOMXTGcArgSCTi8FwjA.mft (raw, json) Hash identifier: WamC1QRYs9sAR195miPVQIB+4BiRX9fxUKgFNcpRyDU= Subject key identifier: DD:89:08:56:2E:0B:67:5B:B2:24:56:90:D2:67:92:A7:F9:32:5D:A6 Authority key identifier: 2F:3E:F5:B9:01:37:14:E3:17:4C:67:00:AE:04:82:4E:2F:05:C2:30 Certificate issuer: /CN=A91346B1/serialNumber=2F3EF5B9013714E3174C6700AE04824E2F05C230 Certificate serial: 0339 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Lz71uQE3FOMXTGcArgSCTi8FwjA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91346B1/9A0ECE10D0F011EC8ECDBF63C4F9AE02/Lz71uQE3FOMXTGcArgSCTi8FwjA.mft Manifest number: 031D Signing time: Sun 15 Jun 2025 00:53:15 +0000 Manifest this update: Sun 15 Jun 2025 00:53:15 +0000 Manifest next update: Sun 22 Jun 2025 00:53:15 +0000 Files and hashes: 1: Lz71uQE3FOMXTGcArgSCTi8FwjA.crl (hash: GzLr4PZsOVgND4pjigYGDtiqb2v33d8RQDpTFQM2nBQ=) 2: 19E46D60D0F711EC8673072FC4F9AE02.roa (hash: MW8b0lzbn7akooUbZ8tV+oRNYmXktBHymwJPvbPr0T4=) 3: 69C96612D0F411EC8DAD6D11C4F9AE02.roa (hash: zRGHLr8o7A/D/r9KWR7LY3IvuquDXPxtjtwrPymfsx8=) 4: 196C52A8D0F711EC8673072FC4F9AE02.roa (hash: pmgvt39f/aMkunvyVMO6rfLmljyqEtakdw2Wz0MGd3o=) 5: 6A430D5AD0F411EC8DAD6D11C4F9AE02.roa (hash: Vk4lMkqK5ng6B+iZp/Sl6mPlRDRoZ3QpBy8plRdehn4=) 6: 1BC3E9F8D0F711EC8673072FC4F9AE02.roa (hash: RV0bq4XHGKUuOS8T3WS7G4aUlSWl2to/4furDRifxYQ=) 7: 6920E4D8D0F411EC8DAD6D11C4F9AE02.roa (hash: 6/3DevyJRKnv1xx6SHWcr3LVBgvTH0u4H55ECTrHATk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91346B1/9A0ECE10D0F011EC8ECDBF63C4F9AE02/Lz71uQE3FOMXTGcArgSCTi8FwjA.crl rsync://rpki.apnic.net/member_repository/A91346B1/9A0ECE10D0F011EC8ECDBF63C4F9AE02/Lz71uQE3FOMXTGcArgSCTi8FwjA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Lz71uQE3FOMXTGcArgSCTi8FwjA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 22 Jun 2025 00:53:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 825 (0x339) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91346B1, serialNumber=2F3EF5B9013714E3174C6700AE04824E2F05C230 Validity Not Before: Jun 15 00:53:15 2025 GMT Not After : Jun 22 00:53:15 2025 GMT Subject: CN=684e197b-0031 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:05:f9:6c:40:ca:ca:d2:a3:9d:b2:c7:a7:92: af:fe:bd:ca:25:58:99:33:49:3d:d9:fa:61:70:ec: 02:fe:94:5b:4c:75:0a:38:03:ca:76:63:22:bd:4e: f0:64:35:1d:c7:92:66:7b:2c:c4:3a:ac:71:28:0a: 14:b6:1c:b6:05:0b:b5:35:6c:89:80:e9:b0:6d:2e: 90:bc:1c:1a:52:6d:27:6d:0e:a8:7a:8b:14:5f:b3: b9:06:18:16:7a:ca:27:20:18:38:f5:4b:5a:fe:0a: 63:cf:9a:d1:d4:8f:1c:0e:73:30:a7:ee:7e:2c:5b: d5:b5:7d:5c:42:1f:f6:57:3b:93:46:81:dc:48:e4: 79:fa:3d:3b:ea:a1:88:d3:e8:1d:a3:5d:d2:6f:bb: 8b:91:57:c3:c4:17:0f:f6:7d:f9:c5:97:e7:2f:38: 37:20:53:46:f1:58:3e:10:95:27:1a:71:a9:2e:ba: 5f:a2:0e:18:ea:2d:77:aa:22:0c:a8:38:de:59:b2: 59:d8:54:e7:c6:dc:81:cc:68:6a:94:c4:c8:c4:8e: 65:80:b6:ff:ee:8d:fb:46:a2:fc:d4:0f:f7:b9:50: fe:2c:89:66:5f:7c:5c:a6:01:5e:31:72:8b:cf:b7: 28:6d:f1:27:b7:64:cb:cb:de:71:cc:1b:96:b7:e8: 21:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DD:89:08:56:2E:0B:67:5B:B2:24:56:90:D2:67:92:A7:F9:32:5D:A6 X509v3 Authority Key Identifier: keyid:2F:3E:F5:B9:01:37:14:E3:17:4C:67:00:AE:04:82:4E:2F:05:C2:30 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91346B1/9A0ECE10D0F011EC8ECDBF63C4F9AE02/Lz71uQE3FOMXTGcArgSCTi8FwjA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Lz71uQE3FOMXTGcArgSCTi8FwjA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91346B1/9A0ECE10D0F011EC8ECDBF63C4F9AE02/Lz71uQE3FOMXTGcArgSCTi8FwjA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 44:40:ec:10:c2:9a:b9:c4:fc:05:f7:d0:59:b4:c2:c9:02:a4: 40:80:49:c8:7c:ca:eb:7a:1a:d2:c6:a0:af:7b:96:60:3e:79: 41:29:ca:71:64:14:c3:85:2b:24:0f:66:1c:92:f6:33:1f:a0: b1:91:be:7d:91:6b:88:2d:f9:16:47:e4:5e:4e:9e:de:a7:32: 0a:82:60:e2:71:20:32:4d:d0:f9:70:a7:74:5e:b4:fb:cd:0b: 02:c4:d4:ab:2a:f5:5f:74:62:08:a5:bb:7d:33:51:e9:2b:2d: 48:f7:a2:03:09:2c:05:bb:08:7d:71:8c:a1:b1:48:e2:9b:38: 2b:04:26:ab:bf:b8:b0:02:14:66:e0:7c:1a:c8:46:70:95:0f: b2:a8:4f:31:64:15:85:0c:78:01:90:8f:9a:ef:2f:2c:bb:2b: 44:66:77:74:1d:c0:46:17:70:4a:77:c4:51:38:ca:50:5e:e3: 46:48:6f:76:b9:2a:2d:0a:cf:c9:d5:db:10:86:c6:34:99:50: d6:8d:e9:ca:be:e1:f2:32:cf:cc:06:71:62:80:d2:07:61:ab: 58:bb:62:3f:56:8d:2c:04:ab:a9:00:d6:68:84:70:d3:e3:41: 61:08:a0:29:51:25:e4:27:50:ff:b7:88:a7:b1:1c:31:7b:54: 02:f9:2e:32 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAzkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzQ2QjExMTAvBgNVBAUTKDJGM0VGNUI5MDEzNzE0RTMxNzRDNjcwMEFFMDQ4MjRF MkYwNUMyMzAwHhcNMjUwNjE1MDA1MzE1WhcNMjUwNjIyMDA1MzE1WjAYMRYwFAYD VQQDEw02ODRlMTk3Yi0wMDMxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1QX5bEDKytKjnbLHp5Kv/r3KJViZM0k92fphcOwC/pRbTHUKOAPKdmMivU7w ZDUdx5JmeyzEOqxxKAoUthy2BQu1NWyJgOmwbS6QvBwaUm0nbQ6oeosUX7O5BhgW esonIBg49Uta/gpjz5rR1I8cDnMwp+5+LFvVtX1cQh/2VzuTRoHcSOR5+j076qGI 0+gdo13Sb7uLkVfDxBcP9n35xZfnLzg3IFNG8Vg+EJUnGnGpLrpfog4Y6i13qiIM qDjeWbJZ2FTnxtyBzGhqlMTIxI5lgLb/7o37RqL81A/3uVD+LIlmX3xcpgFeMXKL z7cobfEnt2TLy95xzBuWt+ghAwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFN2JCFYu C2dbsiRWkNJnkqf5Ml2mMB8GA1UdIwQYMBaAFC8+9bkBNxTjF0xnAK4Egk4vBcIw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNDZCMS85QTBFQ0UxMEQw RjAxMUVDOEVDREJGNjNDNEY5QUUwMi9MejcxdVFFM0ZPTVhUR2NBcmdTQ1RpOEZ3 akEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0x6NzF1UUUzRk9NWFRHY0FyZ1NDVGk4RndqQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz NDZCMS85QTBFQ0UxMEQwRjAxMUVDOEVDREJGNjNDNEY5QUUwMi9MejcxdVFFM0ZP TVhUR2NBcmdTQ1RpOEZ3akEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBEQOwQwpq5xPwF99BZtMLJAqRAgEnIfMrrehrSxqCve5ZgPnlBKcpx ZBTDhSskD2YckvYzH6Cxkb59kWuILfkWR+ReTp7epzIKgmDicSAyTdD5cKd0XrT7 zQsCxNSrKvVfdGIIpbt9M1HpKy1I96IDCSwFuwh9cYyhsUjimzgrBCarv7iwAhRm 4HwayEZwlQ+yqE8xZBWFDHgBkI+a7y8suytEZnd0HcBGF3BKd8RROMpQXuNGSG92 uSotCs/J1dsQhsY0mVDWjenKvuHyMs/MBnFigNIHYatYu2I/Vo0sBKupANZohHDT 40FhCKApUSXkJ1D/t4insRwxe1QC+S4y -----END CERTIFICATE-----Generated at Sun Jun 15 05:11:59 2025 by rpki-client