$ rpki-client -vvf rpki.apnic.net/member_repository/A913C91D/D90CD874358411E99A990228C4F9AE02/ctZbs8rUoJjzb0E3WUzH_sL6KKM.mft File: ctZbs8rUoJjzb0E3WUzH_sL6KKM.mft (raw, json) Hash identifier: OZbQ8j3yrP17Aox92ULMijcl5KdmQEAuKmYnW4uU0I4= Subject key identifier: AD:6B:13:7F:22:DD:27:E9:45:6C:45:59:62:E1:ED:55:B9:D7:33:11 Authority key identifier: 72:D6:5B:B3:CA:D4:A0:98:F3:6F:41:37:59:4C:C7:FE:C2:FA:28:A3 Certificate issuer: /CN=A913C91D/serialNumber=72D65BB3CAD4A098F36F4137594CC7FEC2FA28A3 Certificate serial: 1078 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ctZbs8rUoJjzb0E3WUzH_sL6KKM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913C91D/D90CD874358411E99A990228C4F9AE02/ctZbs8rUoJjzb0E3WUzH_sL6KKM.mft Manifest number: 106F Signing time: Sat 14 Jun 2025 17:18:15 +0000 Manifest this update: Sat 14 Jun 2025 17:18:15 +0000 Manifest next update: Sat 21 Jun 2025 17:18:15 +0000 Files and hashes: 1: ctZbs8rUoJjzb0E3WUzH_sL6KKM.crl (hash: ccWQGCv8Z6MMXqbbFMNxXjwy/XpfDrbfLaBax+Ft7U8=) 2: 39C6EF3688BF11EABC04973FC4F9AE02.roa (hash: E3ZTe2bEAycjBIVFstyPiPS8lw3hN6h/g285ab56Ew4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913C91D/D90CD874358411E99A990228C4F9AE02/ctZbs8rUoJjzb0E3WUzH_sL6KKM.crl rsync://rpki.apnic.net/member_repository/A913C91D/D90CD874358411E99A990228C4F9AE02/ctZbs8rUoJjzb0E3WUzH_sL6KKM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ctZbs8rUoJjzb0E3WUzH_sL6KKM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Jun 2025 17:18:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4216 (0x1078) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913C91D, serialNumber=72D65BB3CAD4A098F36F4137594CC7FEC2FA28A3 Validity Not Before: Jun 14 17:18:15 2025 GMT Not After : Jun 21 17:18:15 2025 GMT Subject: CN=684daed7-663b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:5b:ab:2e:38:dc:3d:7a:dc:68:3d:31:26:06: dd:7e:59:e8:e3:cc:9d:da:9a:66:56:10:45:d1:72: 1b:22:68:a8:26:d5:84:ef:b5:41:e3:76:0e:f5:ee: 98:43:23:83:26:2d:6b:9d:31:bf:c1:09:b3:4e:7f: 4c:9f:f8:69:e0:25:21:35:c8:fa:0f:e4:af:65:84: 31:64:40:fd:8d:17:20:dc:3b:30:4e:d4:c8:81:48: e6:f8:05:d5:67:19:09:23:db:bc:07:f3:a9:5b:f7: 75:00:5a:a9:26:a2:30:ed:ab:d3:d5:55:a6:b2:1a: 18:c0:2e:94:fa:0a:7f:50:c2:0a:11:a8:cd:f7:52: 05:70:52:7f:1b:bc:af:b7:a5:8e:d4:eb:ea:cb:c1: 03:1a:95:03:ac:bc:17:d7:c6:02:6b:e8:ac:8a:b5: 01:97:e9:29:c4:1a:e7:11:6b:fd:12:36:8a:05:c2: 07:6f:ea:8b:a3:a0:b1:ea:85:dc:34:6f:bd:16:2c: de:97:6f:74:38:d7:01:32:04:7f:17:8e:9a:bc:34: bd:6e:68:6c:41:8f:c9:9b:a3:5e:db:b3:2f:18:8b: c6:ba:07:e9:56:86:bd:a8:e4:cd:ad:1f:81:e8:8e: d4:d7:d5:48:07:18:cf:cd:95:1d:65:e4:5d:25:5e: a8:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AD:6B:13:7F:22:DD:27:E9:45:6C:45:59:62:E1:ED:55:B9:D7:33:11 X509v3 Authority Key Identifier: keyid:72:D6:5B:B3:CA:D4:A0:98:F3:6F:41:37:59:4C:C7:FE:C2:FA:28:A3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913C91D/D90CD874358411E99A990228C4F9AE02/ctZbs8rUoJjzb0E3WUzH_sL6KKM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ctZbs8rUoJjzb0E3WUzH_sL6KKM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913C91D/D90CD874358411E99A990228C4F9AE02/ctZbs8rUoJjzb0E3WUzH_sL6KKM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a5:35:e9:9b:66:20:56:41:e2:01:5c:ce:17:32:49:86:92:a9: 69:66:db:5b:13:56:c6:b3:c0:38:f3:e0:3b:f6:80:1c:09:0a: 80:d8:e8:c9:99:46:06:f3:9a:69:34:59:fd:8e:90:ae:e4:b1: e5:ac:6e:79:6f:2c:d1:c5:1a:80:45:09:4f:c5:bf:d2:c8:42: 05:4b:ff:7b:32:70:d0:d5:0c:99:05:90:b1:9a:9d:0b:21:d0: fc:26:1a:df:a5:e5:5d:67:92:9a:90:3d:6b:90:1c:c2:2a:5e: f6:ef:fb:ae:25:c6:c0:c0:c2:18:2e:2d:be:5a:cc:d5:b3:8d: 8b:5e:73:b8:65:a1:cd:de:22:08:30:fe:55:04:ce:94:2d:4d: d6:1d:1c:26:97:ef:8a:ab:1b:94:9d:ea:b9:5d:7f:18:fd:08: 2a:cb:5f:e5:a0:ac:a5:1b:5c:02:c9:63:71:f4:e0:a6:93:57: de:18:1b:4f:a1:7a:59:27:12:e2:b8:38:e2:2b:8a:23:df:7b: 2e:59:4d:ed:7f:f5:29:36:46:6c:3a:28:0f:77:f3:14:1a:af: e1:58:49:9e:16:c2:40:37:74:72:fe:bb:a5:c5:66:93:9e:2c: 12:bf:f0:74:41:9b:c5:5b:19:25:5a:b7:59:a3:92:09:76:dd: 93:fc:11:79 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEHgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0M5MUQxMTAvBgNVBAUTKDcyRDY1QkIzQ0FENEEwOThGMzZGNDEzNzU5NENDN0ZF QzJGQTI4QTMwHhcNMjUwNjE0MTcxODE1WhcNMjUwNjIxMTcxODE1WjAYMRYwFAYD VQQDEw02ODRkYWVkNy02NjNiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu1urLjjcPXrcaD0xJgbdflno48yd2ppmVhBF0XIbImioJtWE77VB43YO9e6Y QyODJi1rnTG/wQmzTn9Mn/hp4CUhNcj6D+SvZYQxZED9jRcg3DswTtTIgUjm+AXV ZxkJI9u8B/OpW/d1AFqpJqIw7avT1VWmshoYwC6U+gp/UMIKEajN91IFcFJ/G7yv t6WO1Ovqy8EDGpUDrLwX18YCa+isirUBl+kpxBrnEWv9EjaKBcIHb+qLo6Cx6oXc NG+9Fizel290ONcBMgR/F46avDS9bmhsQY/Jm6Ne27MvGIvGugfpVoa9qOTNrR+B 6I7U19VIBxjPzZUdZeRdJV6otwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFK1rE38i 3SfpRWxFWWLh7VW51zMRMB8GA1UdIwQYMBaAFHLWW7PK1KCY829BN1lMx/7C+iij MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzQzkxRC9EOTBDRDg3NDM1 ODQxMUU5OUE5OTAyMjhDNEY5QUUwMi9jdFpiczhyVW9KanpiMEUzV1V6SF9zTDZL S00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2N0WmJzOHJVb0pqemIwRTNXVXpIX3NMNktLTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz QzkxRC9EOTBDRDg3NDM1ODQxMUU5OUE5OTAyMjhDNEY5QUUwMi9jdFpiczhyVW9K anpiMEUzV1V6SF9zTDZLS00ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQClNembZiBWQeIBXM4XMkmGkqlpZttbE1bGs8A48+A79oAcCQqA2OjJ mUYG85ppNFn9jpCu5LHlrG55byzRxRqARQlPxb/SyEIFS/97MnDQ1QyZBZCxmp0L IdD8JhrfpeVdZ5KakD1rkBzCKl727/uuJcbAwMIYLi2+WszVs42LXnO4ZaHN3iII MP5VBM6ULU3WHRwml++KqxuUneq5XX8Y/Qgqy1/loKylG1wCyWNx9OCmk1feGBtP oXpZJxLiuDjiK4oj33suWU3tf/UpNkZsOigPd/MUGq/hWEmeFsJAN3Ry/rulxWaT niwSv/B0QZvFWxklWrdZo5IJdt2T/BF5 -----END CERTIFICATE-----Generated at Sun Jun 15 09:32:20 2025 by rpki-client