$ rpki-client -vvf rpki.apnic.net/member_repository/A91606AF/A0958F305ECD11EB90876372C4F9AE02/0efCSnRBTL3c_NiORsXVzTs-rtc.mft File: 0efCSnRBTL3c_NiORsXVzTs-rtc.mft (raw, json) Hash identifier: GJq3coAIR3/ZFEmJ3AZZghaJosb4a5a0Ho2rcdKqlP8= Subject key identifier: 2E:1F:B4:9C:D7:29:85:39:1C:59:F7:B7:04:15:77:A8:03:1C:07:BC Authority key identifier: D1:E7:C2:4A:74:41:4C:BD:DC:FC:D8:8E:46:C5:D5:CD:3B:3E:AE:D7 Certificate issuer: /CN=A91606AF/serialNumber=D1E7C24A74414CBDDCFCD88E46C5D5CD3B3EAED7 Certificate serial: 06FD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0efCSnRBTL3c_NiORsXVzTs-rtc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91606AF/A0958F305ECD11EB90876372C4F9AE02/0efCSnRBTL3c_NiORsXVzTs-rtc.mft Manifest number: 06E4 Signing time: Sat 14 Jun 2025 21:50:12 +0000 Manifest this update: Sat 14 Jun 2025 21:50:12 +0000 Manifest next update: Sat 21 Jun 2025 21:50:12 +0000 Files and hashes: 1: 0efCSnRBTL3c_NiORsXVzTs-rtc.crl (hash: Jdrp3emFCYqyjFCoyYp2I1IILg7YJDkzVoHurGaHGsU=) 2: 8C2D64121CB011EDA4740D7EC4F9AE02.roa (hash: +fRxqOXyB3e8V6DJsPZloFZurNNVr8ZfU/q63aOPSF0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91606AF/A0958F305ECD11EB90876372C4F9AE02/0efCSnRBTL3c_NiORsXVzTs-rtc.crl rsync://rpki.apnic.net/member_repository/A91606AF/A0958F305ECD11EB90876372C4F9AE02/0efCSnRBTL3c_NiORsXVzTs-rtc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0efCSnRBTL3c_NiORsXVzTs-rtc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Jun 2025 21:50:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1789 (0x6fd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91606AF, serialNumber=D1E7C24A74414CBDDCFCD88E46C5D5CD3B3EAED7 Validity Not Before: Jun 14 21:50:12 2025 GMT Not After : Jun 21 21:50:12 2025 GMT Subject: CN=684dee94-986f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:d2:bf:69:50:da:15:d3:fc:a7:e3:36:8d:a8: 94:6d:07:5e:88:c7:2c:fc:7c:b6:df:5a:28:d5:fd: e6:16:00:77:ca:35:33:eb:91:ee:8b:6a:17:56:1f: a8:33:23:5f:c0:76:08:fe:dc:62:ee:f3:1a:96:7f: 2a:12:9e:42:8a:a6:8e:fa:c8:7d:c1:d7:7b:28:e5: cc:bb:03:95:2e:8d:e2:60:6c:83:d6:7a:e5:28:dd: dd:89:d4:67:bb:aa:3e:f2:ce:5a:dd:ad:9a:9a:92: 6a:a4:ba:9f:83:f8:6b:b3:90:33:17:7b:14:f0:de: ff:99:ab:a6:3c:db:20:b1:f4:1b:e6:aa:96:06:15: e5:0d:d7:89:64:95:58:df:f4:ae:41:88:8b:c2:9d: d3:41:a4:ce:1b:53:5e:71:a1:61:cf:33:df:58:99: 94:54:42:01:a9:57:a5:e3:93:f2:61:0a:e7:87:0e: 96:b0:28:dc:e3:0a:c7:21:11:16:fc:78:11:fb:ea: c2:ad:8f:21:89:a9:0e:d6:73:3d:54:88:6d:77:42: ca:a2:6a:a0:58:b1:b2:5d:08:e9:4f:9e:e0:5e:d2: f9:58:cc:e2:c6:0e:c9:ce:42:2f:08:aa:b3:89:ad: a1:84:07:4f:23:2b:d9:94:c6:1f:3d:f2:d6:6b:f9: e9:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2E:1F:B4:9C:D7:29:85:39:1C:59:F7:B7:04:15:77:A8:03:1C:07:BC X509v3 Authority Key Identifier: keyid:D1:E7:C2:4A:74:41:4C:BD:DC:FC:D8:8E:46:C5:D5:CD:3B:3E:AE:D7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91606AF/A0958F305ECD11EB90876372C4F9AE02/0efCSnRBTL3c_NiORsXVzTs-rtc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0efCSnRBTL3c_NiORsXVzTs-rtc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91606AF/A0958F305ECD11EB90876372C4F9AE02/0efCSnRBTL3c_NiORsXVzTs-rtc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2e:82:92:30:26:68:79:d4:69:0e:82:fd:b5:ab:db:8b:e3:33: 0d:f6:59:83:d3:a6:d7:ee:22:a5:bd:c1:90:65:37:e3:1f:8f: 27:3e:7a:e3:42:f7:77:1a:93:0e:5b:5f:69:69:b0:6b:a7:04: c0:d1:69:18:65:5b:8c:4f:e4:49:c0:7f:14:d8:6d:f8:9b:74: 08:c2:23:ea:cf:fc:03:0e:c7:ab:13:51:d2:48:d9:ea:2e:0d: 38:57:f3:c1:55:d5:54:cd:6b:c9:f2:fa:8f:0e:c2:a2:ed:4b: ed:5a:b1:ab:91:b5:22:61:a0:49:4b:8a:2f:8a:77:98:e0:a3: fc:25:3e:32:b5:11:78:ee:17:30:63:08:30:c0:06:da:27:c4: 6a:7b:7e:1f:94:d6:d1:77:15:fb:a6:0a:0c:24:cb:70:0b:e3: d6:ae:01:67:67:8e:fe:bc:e1:96:21:52:c8:26:c9:ab:88:c2: 61:64:c1:00:b3:23:e5:e7:af:36:d0:d3:ce:c0:f9:a0:25:6e: c3:27:5d:02:bd:ad:ce:fa:5f:91:e5:d9:89:9c:ec:58:16:13: 2e:d1:48:50:f8:4c:2f:f9:88:d0:ae:a0:11:85:95:60:1a:48: 38:33:76:98:5d:6a:57:e2:c5:80:96:90:0f:76:c2:45:98:11: 3c:08:2e:be -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBv0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjA2QUYxMTAvBgNVBAUTKEQxRTdDMjRBNzQ0MTRDQkREQ0ZDRDg4RTQ2QzVENUNE M0IzRUFFRDcwHhcNMjUwNjE0MjE1MDEyWhcNMjUwNjIxMjE1MDEyWjAYMRYwFAYD VQQDEw02ODRkZWU5NC05ODZmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAydK/aVDaFdP8p+M2jaiUbQdeiMcs/Hy231oo1f3mFgB3yjUz65Hui2oXVh+o MyNfwHYI/txi7vMaln8qEp5CiqaO+sh9wdd7KOXMuwOVLo3iYGyD1nrlKN3didRn u6o+8s5a3a2ampJqpLqfg/hrs5AzF3sU8N7/maumPNsgsfQb5qqWBhXlDdeJZJVY 3/SuQYiLwp3TQaTOG1NecaFhzzPfWJmUVEIBqVel45PyYQrnhw6WsCjc4wrHIREW /HgR++rCrY8hiakO1nM9VIhtd0LKomqgWLGyXQjpT57gXtL5WMzixg7JzkIvCKqz ia2hhAdPIyvZlMYfPfLWa/npaQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFC4ftJzX KYU5HFn3twQVd6gDHAe8MB8GA1UdIwQYMBaAFNHnwkp0QUy93PzYjkbF1c07Pq7X MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MDZBRi9BMDk1OEYzMDVF Q0QxMUVCOTA4NzYzNzJDNEY5QUUwMi8wZWZDU25SQlRMM2NfTmlPUnNYVnpUcy1y dGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzBlZkNTblJCVEwzY19OaU9Sc1hWelRzLXJ0Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 MDZBRi9BMDk1OEYzMDVFQ0QxMUVCOTA4NzYzNzJDNEY5QUUwMi8wZWZDU25SQlRM M2NfTmlPUnNYVnpUcy1ydGMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAugpIwJmh51GkOgv21q9uL4zMN9lmD06bX7iKlvcGQZTfjH48nPnrj Qvd3GpMOW19pabBrpwTA0WkYZVuMT+RJwH8U2G34m3QIwiPqz/wDDserE1HSSNnq Lg04V/PBVdVUzWvJ8vqPDsKi7UvtWrGrkbUiYaBJS4ovineY4KP8JT4ytRF47hcw YwgwwAbaJ8Rqe34flNbRdxX7pgoMJMtwC+PWrgFnZ47+vOGWIVLIJsmriMJhZMEA syPl56820NPOwPmgJW7DJ10Cva3O+l+R5dmJnOxYFhMu0UhQ+Ewv+YjQrqARhZVg Gkg4M3aYXWpX4sWAlpAPdsJFmBE8CC6+ -----END CERTIFICATE-----Generated at Sun Jun 15 04:44:17 2025 by rpki-client