$ rpki-client -vvf rpki.apnic.net/member_repository/A91401C4/2B2B3C9E1D6911E2AAA055A608B02CD2/v3vK8ZCcELz-oNjn1F2CVPJpxr8.mft File: v3vK8ZCcELz-oNjn1F2CVPJpxr8.mft (raw, json) Hash identifier: m+/M9XjkjWT1vri/C9RiV76idR3tvX0m6i9m0xuMSds= Subject key identifier: B4:86:63:17:29:BC:DA:59:71:E4:52:3C:82:32:7C:AF:51:84:08:4C Authority key identifier: BF:7B:CA:F1:90:9C:10:BC:FE:A0:D8:E7:D4:5D:82:54:F2:69:C6:BF Certificate issuer: /CN=A91401C4/serialNumber=BF7BCAF1909C10BCFEA0D8E7D45D8254F269C6BF Certificate serial: 34FA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/v3vK8ZCcELz-oNjn1F2CVPJpxr8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91401C4/2B2B3C9E1D6911E2AAA055A608B02CD2/v3vK8ZCcELz-oNjn1F2CVPJpxr8.mft Manifest number: 34C7 Signing time: Sun 22 Jun 2025 14:15:52 +0000 Manifest this update: Sun 22 Jun 2025 14:15:52 +0000 Manifest next update: Sun 29 Jun 2025 14:15:52 +0000 Files and hashes: 1: v3vK8ZCcELz-oNjn1F2CVPJpxr8.crl (hash: OWnpAnXDTf/X8HF6m8xp7p1rrk0qjTa46hSV6BYVBKU=) 2: 13773D180C8111EB9BD25070C4F9AE02.roa (hash: EcHgJTBJZVSZcmyoGTsJf6lDzdXZarLLw4Yz9Tt75wA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91401C4/2B2B3C9E1D6911E2AAA055A608B02CD2/v3vK8ZCcELz-oNjn1F2CVPJpxr8.crl rsync://rpki.apnic.net/member_repository/A91401C4/2B2B3C9E1D6911E2AAA055A608B02CD2/v3vK8ZCcELz-oNjn1F2CVPJpxr8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/v3vK8ZCcELz-oNjn1F2CVPJpxr8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 29 Jun 2025 14:15:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13562 (0x34fa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91401C4, serialNumber=BF7BCAF1909C10BCFEA0D8E7D45D8254F269C6BF Validity Not Before: Jun 22 14:15:52 2025 GMT Not After : Jun 29 14:15:52 2025 GMT Subject: CN=68581018-d051 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:81:65:93:a0:65:35:73:1e:dd:4c:2f:79:58: 0c:c2:bd:de:50:51:45:8b:21:7e:c7:f4:6e:6a:34: 8f:e0:99:d2:92:42:63:0f:f1:91:81:49:c0:ea:89: df:df:46:16:14:56:95:13:ac:64:8d:aa:57:e9:c3: 55:4a:d2:c1:20:92:33:f2:4e:06:7a:99:96:21:d3: ef:a0:dc:70:ac:57:4a:a8:81:83:72:3e:e2:c1:88: 43:40:5e:47:c1:da:4d:c9:12:b9:77:9b:72:f9:be: 48:00:d1:0c:31:ef:cf:bb:be:c1:7e:77:81:82:8a: 0e:13:46:cc:18:fb:24:6a:82:b1:cd:5f:7a:3a:64: 9a:f0:d4:0c:ad:59:5f:ce:73:8f:92:ad:d6:62:0c: 6a:d1:4d:ec:9e:93:81:71:d8:1f:e0:a0:6f:29:ff: b5:61:f0:29:67:d4:63:fb:a4:7d:1e:53:b5:57:3f: 52:1d:34:05:7f:5b:ac:6f:20:b5:9e:38:39:70:53: eb:4f:2b:34:42:77:4e:97:3b:62:c2:f7:47:cc:bd: 42:dd:0b:7e:cb:a0:f6:26:3b:30:6a:4a:f7:e0:70: fe:2b:ba:c8:d4:24:22:53:97:ec:ac:60:07:1f:5a: 1f:a1:85:2b:24:fe:86:47:c4:0e:f6:16:6b:f9:e2: a0:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B4:86:63:17:29:BC:DA:59:71:E4:52:3C:82:32:7C:AF:51:84:08:4C X509v3 Authority Key Identifier: keyid:BF:7B:CA:F1:90:9C:10:BC:FE:A0:D8:E7:D4:5D:82:54:F2:69:C6:BF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91401C4/2B2B3C9E1D6911E2AAA055A608B02CD2/v3vK8ZCcELz-oNjn1F2CVPJpxr8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/v3vK8ZCcELz-oNjn1F2CVPJpxr8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91401C4/2B2B3C9E1D6911E2AAA055A608B02CD2/v3vK8ZCcELz-oNjn1F2CVPJpxr8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 46:9c:d6:48:13:43:85:5b:6a:4d:a7:9e:a8:19:6a:f6:8d:43: a5:2a:d1:83:ee:e7:16:b5:37:4d:26:db:b2:59:b0:68:9b:1d: 03:dd:49:13:ac:83:86:14:36:3d:38:dc:e0:34:2a:52:75:12: 37:b8:2b:9b:de:9d:9d:68:db:f9:47:40:cd:78:fb:15:bb:da: 98:e4:cd:1a:9b:a0:e6:db:64:ed:5c:56:34:75:d3:e1:4e:89: 2e:2e:26:ba:3b:c2:38:2e:9d:81:a8:b3:b5:88:49:37:11:27: 8b:1d:a0:8b:ef:19:62:01:4d:17:d0:f5:12:04:cf:15:1f:c9: 68:88:14:b4:5e:95:47:58:a7:16:c6:99:51:76:dd:48:39:c2: 44:68:08:48:f1:26:b9:01:74:cf:c7:af:2c:c8:89:10:85:b9: 5e:38:5f:4a:6c:98:bc:cc:5f:46:09:cd:e6:08:f9:96:c6:9f: 48:bc:ab:e4:50:51:97:b5:29:5f:93:e8:89:27:f8:ea:36:1c: d3:64:85:37:4a:ac:7b:f6:21:3f:c6:4d:f0:59:29:3d:2e:01: cd:b5:72:ad:21:fb:0e:fe:65:f0:2e:aa:67:2b:61:bc:30:ef: ef:b9:5a:45:a5:7b:71:8d:5f:33:47:e6:dd:2f:5f:4e:0a:b9: d3:ce:f1:6c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNPowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDAxQzQxMTAvBgNVBAUTKEJGN0JDQUYxOTA5QzEwQkNGRUEwRDhFN0Q0NUQ4MjU0 RjI2OUM2QkYwHhcNMjUwNjIyMTQxNTUyWhcNMjUwNjI5MTQxNTUyWjAYMRYwFAYD VQQDEw02ODU4MTAxOC1kMDUxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsoFlk6BlNXMe3UwveVgMwr3eUFFFiyF+x/RuajSP4JnSkkJjD/GRgUnA6onf 30YWFFaVE6xkjapX6cNVStLBIJIz8k4GepmWIdPvoNxwrFdKqIGDcj7iwYhDQF5H wdpNyRK5d5ty+b5IANEMMe/Pu77BfneBgooOE0bMGPskaoKxzV96OmSa8NQMrVlf znOPkq3WYgxq0U3snpOBcdgf4KBvKf+1YfApZ9Rj+6R9HlO1Vz9SHTQFf1usbyC1 njg5cFPrTys0QndOlztiwvdHzL1C3Qt+y6D2Jjswakr34HD+K7rI1CQiU5fsrGAH H1ofoYUrJP6GR8QO9hZr+eKgewIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLSGYxcp vNpZceRSPIIyfK9RhAhMMB8GA1UdIwQYMBaAFL97yvGQnBC8/qDY59RdglTyaca/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MDFDNC8yQjJCM0M5RTFE NjkxMUUyQUFBMDU1QTYwOEIwMkNEMi92M3ZLOFpDY0VMei1vTmpuMUYyQ1ZQSnB4 cjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3Yzdks4WkNjRUx6LW9Oam4xRjJDVlBKcHhyOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 MDFDNC8yQjJCM0M5RTFENjkxMUUyQUFBMDU1QTYwOEIwMkNEMi92M3ZLOFpDY0VM ei1vTmpuMUYyQ1ZQSnB4cjgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBGnNZIE0OFW2pNp56oGWr2jUOlKtGD7ucWtTdNJtuyWbBomx0D3UkT rIOGFDY9ONzgNCpSdRI3uCub3p2daNv5R0DNePsVu9qY5M0am6Dm22TtXFY0ddPh TokuLia6O8I4Lp2BqLO1iEk3ESeLHaCL7xliAU0X0PUSBM8VH8loiBS0XpVHWKcW xplRdt1IOcJEaAhI8Sa5AXTPx68syIkQhbleOF9KbJi8zF9GCc3mCPmWxp9IvKvk UFGXtSlfk+iJJ/jqNhzTZIU3Sqx79iE/xk3wWSk9LgHNtXKtIfsO/mXwLqpnK2G8 MO/vuVpFpXtxjV8zR+bdL19OCrnTzvFs -----END CERTIFICATE-----Generated at Mon Jun 23 00:34:46 2025 by rpki-client