$ rpki-client -vvf rpki.apnic.net/member_repository/A91508C4/532FDCDC3E1111EBAE00216CC4F9AE02/rSHpWiYaLoAl4zypVIJcFHCzt6M.mft File: rSHpWiYaLoAl4zypVIJcFHCzt6M.mft (raw, json) Hash identifier: 4kIV7nXqu6VYtKjJzvcg0uTUtCvdwCc695lCHQWVXyM= Subject key identifier: CD:34:41:14:C5:C0:B2:2E:0E:9D:60:A1:6B:52:05:11:86:37:C5:85 Authority key identifier: AD:21:E9:5A:26:1A:2E:80:25:E3:3C:A9:54:82:5C:14:70:B3:B7:A3 Certificate issuer: /CN=A91508C4/serialNumber=AD21E95A261A2E8025E33CA954825C1470B3B7A3 Certificate serial: 071B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rSHpWiYaLoAl4zypVIJcFHCzt6M.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91508C4/532FDCDC3E1111EBAE00216CC4F9AE02/rSHpWiYaLoAl4zypVIJcFHCzt6M.mft Manifest number: 0716 Signing time: Sat 14 Jun 2025 21:36:41 +0000 Manifest this update: Sat 14 Jun 2025 21:36:40 +0000 Manifest next update: Sat 21 Jun 2025 21:36:40 +0000 Files and hashes: 1: rSHpWiYaLoAl4zypVIJcFHCzt6M.crl (hash: QGjHLne0cvhGfkiFOWlLoKt3nNB6+5RRZ2DLar/YMv0=) 2: B855A21C3E1211EB8D23EB6CC4F9AE02.roa (hash: WhAEh4S3tK527emBBM2jGEQwQFEHNqJyzLHLvoZ2c44=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91508C4/532FDCDC3E1111EBAE00216CC4F9AE02/rSHpWiYaLoAl4zypVIJcFHCzt6M.crl rsync://rpki.apnic.net/member_repository/A91508C4/532FDCDC3E1111EBAE00216CC4F9AE02/rSHpWiYaLoAl4zypVIJcFHCzt6M.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rSHpWiYaLoAl4zypVIJcFHCzt6M.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Jun 2025 21:36:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1819 (0x71b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91508C4, serialNumber=AD21E95A261A2E8025E33CA954825C1470B3B7A3 Validity Not Before: Jun 14 21:36:40 2025 GMT Not After : Jun 21 21:36:40 2025 GMT Subject: CN=684deb69-c4c3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:e8:b9:4b:2d:90:ec:fe:95:e3:95:34:d7:52: c1:9f:e4:91:b5:e8:3c:4c:0a:b1:8b:f8:a5:73:f5: 0c:30:ff:9e:9b:b6:e4:e8:a0:e7:65:46:0a:a9:8e: a4:2e:9d:d2:86:90:46:a1:54:9e:17:6c:64:2b:d7: 20:ce:8f:3e:01:77:78:87:17:67:56:c5:88:7a:11: b0:37:69:68:6c:f4:d5:3a:22:17:8a:fa:a9:21:e3: 77:e4:3d:40:5d:08:60:d9:a3:a2:71:1c:f0:e4:a8: 5d:25:f9:45:75:41:1e:f3:2d:8c:33:22:5f:84:b3: e3:76:7f:05:9d:c0:21:3c:4e:ab:8e:9b:a3:83:f9: 90:8e:b2:8f:44:4f:a3:02:ec:a3:08:de:d7:cd:bd: 62:89:b9:cb:82:2e:04:e9:d4:bf:db:3d:5c:3f:39: 29:70:a1:ac:53:85:62:06:35:1c:75:76:34:9c:80: 62:7a:d6:23:b3:6d:b6:6c:3b:7c:93:c6:fe:30:73: 64:a2:1c:b3:06:35:68:71:32:b6:9d:08:df:ec:6c: 38:fd:12:f7:d3:1c:4b:ae:d1:f9:11:30:db:54:78: 33:3e:7d:00:29:fe:88:13:6d:04:be:7b:97:c7:72: 34:ad:e7:49:5f:f3:0b:4f:b7:d2:ac:a2:bb:73:1d: 88:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CD:34:41:14:C5:C0:B2:2E:0E:9D:60:A1:6B:52:05:11:86:37:C5:85 X509v3 Authority Key Identifier: keyid:AD:21:E9:5A:26:1A:2E:80:25:E3:3C:A9:54:82:5C:14:70:B3:B7:A3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91508C4/532FDCDC3E1111EBAE00216CC4F9AE02/rSHpWiYaLoAl4zypVIJcFHCzt6M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rSHpWiYaLoAl4zypVIJcFHCzt6M.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91508C4/532FDCDC3E1111EBAE00216CC4F9AE02/rSHpWiYaLoAl4zypVIJcFHCzt6M.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5f:a7:7e:da:59:69:6c:ef:1b:b0:36:81:51:e6:44:86:b0:96: 0c:5f:3e:4a:9e:f9:76:4e:29:43:1b:bd:21:2c:bb:bf:52:60: 68:33:b9:01:9d:7d:9d:db:ce:fa:80:0e:a3:fa:29:67:ce:5d: 2f:58:4c:af:d4:ef:47:4e:6d:77:41:90:8c:23:c0:67:16:5b: cc:ae:d6:e7:f2:40:f3:67:8c:c6:84:68:51:ad:12:6b:0b:97: 5e:65:67:01:8f:f5:12:f4:05:f5:87:c1:d2:b6:85:b1:6a:17: 22:ba:f4:27:1f:5b:35:28:e4:1b:05:8c:65:31:de:f9:e0:cd: b6:e1:a2:ef:56:b3:c2:1f:62:e1:85:48:a0:53:88:b8:da:59: b7:c8:f8:21:d0:53:42:64:ba:f1:98:d1:10:76:6f:2c:d9:a9: f1:37:e8:1f:6f:72:bf:a5:1e:a0:f8:08:91:c1:7b:0c:03:0c: 8b:99:09:98:b1:99:e8:5d:c4:10:3e:60:b1:84:b7:ae:47:c4: fd:dc:6c:bc:14:4b:ce:53:9c:cc:2a:a4:88:e5:7f:e2:f8:27: ef:e8:49:fd:a8:d0:7d:6c:7d:a5:88:65:56:b7:7a:51:ec:1f: 16:43:cf:83:94:20:65:da:b7:d9:c9:08:b1:5f:1d:b0:70:00: bb:ac:b4:fd -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBxswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTA4QzQxMTAvBgNVBAUTKEFEMjFFOTVBMjYxQTJFODAyNUUzM0NBOTU0ODI1QzE0 NzBCM0I3QTMwHhcNMjUwNjE0MjEzNjQwWhcNMjUwNjIxMjEzNjQwWjAYMRYwFAYD VQQDEw02ODRkZWI2OS1jNGMzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuOi5Sy2Q7P6V45U011LBn+SRteg8TAqxi/ilc/UMMP+em7bk6KDnZUYKqY6k Lp3ShpBGoVSeF2xkK9cgzo8+AXd4hxdnVsWIehGwN2lobPTVOiIXivqpIeN35D1A XQhg2aOicRzw5KhdJflFdUEe8y2MMyJfhLPjdn8FncAhPE6rjpujg/mQjrKPRE+j AuyjCN7Xzb1iibnLgi4E6dS/2z1cPzkpcKGsU4ViBjUcdXY0nIBietYjs222bDt8 k8b+MHNkohyzBjVocTK2nQjf7Gw4/RL30xxLrtH5ETDbVHgzPn0AKf6IE20EvnuX x3I0redJX/MLT7fSrKK7cx2IxQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFM00QRTF wLIuDp1goWtSBRGGN8WFMB8GA1UdIwQYMBaAFK0h6VomGi6AJeM8qVSCXBRws7ej MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MDhDNC81MzJGRENEQzNF MTExMUVCQUUwMDIxNkNDNEY5QUUwMi9yU0hwV2lZYUxvQWw0enlwVklKY0ZIQ3p0 Nk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JTSHBXaVlhTG9BbDR6eXBWSUpjRkhDenQ2TS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MDhDNC81MzJGRENEQzNFMTExMUVCQUUwMDIxNkNDNEY5QUUwMi9yU0hwV2lZYUxv QWw0enlwVklKY0ZIQ3p0Nk0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBfp37aWWls7xuwNoFR5kSGsJYMXz5Knvl2TilDG70hLLu/UmBoM7kB nX2d2876gA6j+ilnzl0vWEyv1O9HTm13QZCMI8BnFlvMrtbn8kDzZ4zGhGhRrRJr C5deZWcBj/US9AX1h8HStoWxahciuvQnH1s1KOQbBYxlMd754M224aLvVrPCH2Lh hUigU4i42lm3yPgh0FNCZLrxmNEQdm8s2anxN+gfb3K/pR6g+AiRwXsMAwyLmQmY sZnoXcQQPmCxhLeuR8T93Gy8FEvOU5zMKqSI5X/i+Cfv6En9qNB9bH2liGVWt3pR 7B8WQ8+DlCBl2rfZyQixXx2wcAC7rLT9 -----END CERTIFICATE-----Generated at Sun Jun 15 04:44:12 2025 by rpki-client