$ rpki-client -vvf rpki.apnic.net/member_repository/A91449E2/B6443384EFFF11ED8556EE54C4F9AE02/D0a9vHSQTl34KfAVlbUcqqIBuds.mft File: D0a9vHSQTl34KfAVlbUcqqIBuds.mft (raw, json) Hash identifier: mmqssy0WRIH0Xwixwe74uUOfn7Yp2MB3gaHSr/qaAIM= Subject key identifier: 97:F9:61:98:98:4C:2B:42:24:88:94:B3:56:0B:7C:15:FA:31:67:C2 Authority key identifier: 0F:46:BD:BC:74:90:4E:5D:F8:29:F0:15:95:B5:1C:AA:A2:01:B9:DB Certificate issuer: /CN=A91449E2/serialNumber=0F46BDBC74904E5DF829F01595B51CAAA201B9DB Certificate serial: 018D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D0a9vHSQTl34KfAVlbUcqqIBuds.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91449E2/B6443384EFFF11ED8556EE54C4F9AE02/D0a9vHSQTl34KfAVlbUcqqIBuds.mft Manifest number: 018A Signing time: Sun 15 Jun 2025 02:47:08 +0000 Manifest this update: Sun 15 Jun 2025 02:47:07 +0000 Manifest next update: Sun 22 Jun 2025 02:47:07 +0000 Files and hashes: 1: D0a9vHSQTl34KfAVlbUcqqIBuds.crl (hash: +UrbUkPK+dVMIs0QcbbbRskhT0RGn2s7PYTKoqY02AY=) 2: 568D8AACF00511ED9239BC6EC4F9AE02.roa (hash: INPCDc0DcqgC408Ka6XEyt5LGDqlBDYRzaUMMyrzKIM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91449E2/B6443384EFFF11ED8556EE54C4F9AE02/D0a9vHSQTl34KfAVlbUcqqIBuds.crl rsync://rpki.apnic.net/member_repository/A91449E2/B6443384EFFF11ED8556EE54C4F9AE02/D0a9vHSQTl34KfAVlbUcqqIBuds.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D0a9vHSQTl34KfAVlbUcqqIBuds.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 22 Jun 2025 02:47:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 397 (0x18d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91449E2, serialNumber=0F46BDBC74904E5DF829F01595B51CAAA201B9DB Validity Not Before: Jun 15 02:47:07 2025 GMT Not After : Jun 22 02:47:07 2025 GMT Subject: CN=684e342c-18f9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:57:90:45:46:8b:17:44:1f:1a:6e:c4:ff:cc: 68:6c:91:88:ca:58:a4:5b:23:a7:e4:ff:ba:93:d8: bb:ab:9d:48:01:3c:a3:79:7d:aa:fd:e7:55:11:9c: 22:7d:7e:2f:ff:f2:ce:db:a7:73:59:7c:9d:c6:8e: 00:07:5b:2d:29:0d:47:38:81:c5:f7:00:7d:33:18: a7:59:40:3d:46:b2:23:5a:f2:6f:b2:70:43:a8:69: 65:84:26:37:2c:45:0e:d4:90:a1:d7:ed:91:07:94: 6b:19:e7:b4:11:df:d3:1d:c6:ab:59:98:4d:08:38: b3:2a:c1:c4:f0:4c:1b:24:14:53:90:c4:6c:92:04: 53:76:c3:72:3c:01:a9:eb:0f:fc:60:3f:6d:72:98: 79:1d:f8:ed:eb:27:d7:70:44:37:7e:d6:d7:40:cf: 8a:16:83:4e:cc:f3:c0:70:80:14:ae:30:f3:d1:1e: 30:74:48:f0:06:34:bf:6a:c9:f9:aa:95:8d:60:d3: be:81:6f:ad:0f:5f:dc:b5:89:62:78:44:99:e0:23: 9c:05:f8:cf:39:5c:f2:65:b3:59:43:c0:61:31:39: f9:7d:c1:12:4d:0b:63:cc:b2:22:f5:9a:fb:e5:b9: 46:c1:e1:d1:1e:34:4b:f6:35:75:bb:57:6a:d4:98: 6c:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 97:F9:61:98:98:4C:2B:42:24:88:94:B3:56:0B:7C:15:FA:31:67:C2 X509v3 Authority Key Identifier: keyid:0F:46:BD:BC:74:90:4E:5D:F8:29:F0:15:95:B5:1C:AA:A2:01:B9:DB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91449E2/B6443384EFFF11ED8556EE54C4F9AE02/D0a9vHSQTl34KfAVlbUcqqIBuds.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D0a9vHSQTl34KfAVlbUcqqIBuds.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91449E2/B6443384EFFF11ED8556EE54C4F9AE02/D0a9vHSQTl34KfAVlbUcqqIBuds.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption cb:a1:7c:ff:36:28:03:05:ee:7d:3f:f2:e7:cc:d5:62:22:89: 87:3f:7d:f0:51:3b:d1:5d:08:1a:f3:1d:f0:76:2b:a7:28:0b: 2d:ba:a2:b2:37:f8:05:91:18:d6:c0:25:21:03:d5:f8:12:e7: 28:01:2d:fe:6b:20:f2:8d:23:3d:4a:23:c9:8e:ce:d2:82:86: 80:30:03:ff:ec:7b:77:ed:35:7a:a9:a1:e3:48:87:d2:85:01: 53:43:d8:e3:21:93:13:3f:03:eb:7b:c6:ab:3d:5a:88:fe:ec: 5d:1d:2b:33:79:b7:bc:d4:c2:35:ed:e0:f2:55:cd:11:8f:0e: 25:63:9d:20:ea:e7:8d:69:24:8f:79:bf:f3:cc:74:52:8c:b4: 70:44:12:de:84:4e:dc:8b:fd:f8:30:03:7b:42:a4:be:12:7f: 65:40:f8:01:48:bc:c8:c7:5f:88:b1:f1:21:d7:82:21:10:8e: 0e:e8:b5:54:d8:8b:dd:49:7c:5d:b0:14:8c:ed:88:17:2a:34: 29:16:c8:cd:09:e4:9e:fc:d3:db:79:18:ff:ed:86:df:a5:dc: d5:3a:16:a6:a7:bf:6f:5d:18:14:65:02:a6:f7:46:9e:3c:6a: a4:c8:03:c6:72:b1:5d:3c:8d:2e:e9:d8:f8:9a:13:5d:75:d5: cc:7f:57:78 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAY0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDQ5RTIxMTAvBgNVBAUTKDBGNDZCREJDNzQ5MDRFNURGODI5RjAxNTk1QjUxQ0FB QTIwMUI5REIwHhcNMjUwNjE1MDI0NzA3WhcNMjUwNjIyMDI0NzA3WjAYMRYwFAYD VQQDEw02ODRlMzQyYy0xOGY5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4FeQRUaLF0QfGm7E/8xobJGIylikWyOn5P+6k9i7q51IATyjeX2q/edVEZwi fX4v//LO26dzWXydxo4AB1stKQ1HOIHF9wB9MxinWUA9RrIjWvJvsnBDqGllhCY3 LEUO1JCh1+2RB5RrGee0Ed/THcarWZhNCDizKsHE8EwbJBRTkMRskgRTdsNyPAGp 6w/8YD9tcph5Hfjt6yfXcEQ3ftbXQM+KFoNOzPPAcIAUrjDz0R4wdEjwBjS/asn5 qpWNYNO+gW+tD1/ctYlieESZ4COcBfjPOVzyZbNZQ8BhMTn5fcESTQtjzLIi9Zr7 5blGweHRHjRL9jV1u1dq1JhsMQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJf5YZiY TCtCJIiUs1YLfBX6MWfCMB8GA1UdIwQYMBaAFA9Gvbx0kE5d+CnwFZW1HKqiAbnb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NDlFMi9CNjQ0MzM4NEVG RkYxMUVEODU1NkVFNTRDNEY5QUUwMi9EMGE5dkhTUVRsMzRLZkFWbGJVY3FxSUJ1 ZHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0QwYTl2SFNRVGwzNEtmQVZsYlVjcXFJQnVkcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 NDlFMi9CNjQ0MzM4NEVGRkYxMUVEODU1NkVFNTRDNEY5QUUwMi9EMGE5dkhTUVRs MzRLZkFWbGJVY3FxSUJ1ZHMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDLoXz/NigDBe59P/LnzNViIomHP33wUTvRXQga8x3wdiunKAstuqKy N/gFkRjWwCUhA9X4EucoAS3+ayDyjSM9SiPJjs7SgoaAMAP/7Ht37TV6qaHjSIfS hQFTQ9jjIZMTPwPre8arPVqI/uxdHSszebe81MI17eDyVc0Rjw4lY50g6ueNaSSP eb/zzHRSjLRwRBLehE7ci/34MAN7QqS+En9lQPgBSLzIx1+IsfEh14IhEI4O6LVU 2IvdSXxdsBSM7YgXKjQpFsjNCeSe/NPbeRj/7YbfpdzVOhamp79vXRgUZQKm90ae PGqkyAPGcrFdPI0u6dj4mhNdddXMf1d4 -----END CERTIFICATE-----Generated at Sun Jun 15 08:31:48 2025 by rpki-client