$ rpki-client -vvf rpki.apnic.net/member_repository/A91734C9/6736024A225D11EABACFC960C4F9AE02/40gJvFtFT8eZSH_u2tcCEkAkYjo.mft File: 40gJvFtFT8eZSH_u2tcCEkAkYjo.mft (raw, json) Hash identifier: aCP6mlvufrGt2gOZNsbQmNYgB4wHDfI7LijtgCERXt4= Subject key identifier: E5:3F:64:21:A9:CB:FF:24:01:FC:42:DE:6D:7F:17:28:74:85:55:32 Authority key identifier: E3:48:09:BC:5B:45:4F:C7:99:48:7F:EE:DA:D7:02:12:40:24:62:3A Certificate issuer: /CN=A91734C9/serialNumber=E34809BC5B454FC799487FEEDAD702124024623A Certificate serial: 0BC6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/40gJvFtFT8eZSH_u2tcCEkAkYjo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91734C9/6736024A225D11EABACFC960C4F9AE02/40gJvFtFT8eZSH_u2tcCEkAkYjo.mft Manifest number: 0BB6 Signing time: Thu 12 Jun 2025 18:45:57 +0000 Manifest this update: Thu 12 Jun 2025 18:45:57 +0000 Manifest next update: Thu 19 Jun 2025 18:45:57 +0000 Files and hashes: 1: 40gJvFtFT8eZSH_u2tcCEkAkYjo.crl (hash: QBYvZGnYNyHq02tOy8Ij7ed2dY1L1YVtNd0zzfInGhM=) 2: 783907BC225E11EA8BD18A62C4F9AE02.roa (hash: Myi9k4IrBdVLRWD9OtQqLIwtmIphhX+YDXYJBcNy/bw=) 3: 78CFD3CC225E11EA8BD18A62C4F9AE02.roa (hash: MyUFtJY4lLof0Zwtdhx7AIg2aYopA1OEBl/K6VizYaU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91734C9/6736024A225D11EABACFC960C4F9AE02/40gJvFtFT8eZSH_u2tcCEkAkYjo.crl rsync://rpki.apnic.net/member_repository/A91734C9/6736024A225D11EABACFC960C4F9AE02/40gJvFtFT8eZSH_u2tcCEkAkYjo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/40gJvFtFT8eZSH_u2tcCEkAkYjo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 19 Jun 2025 18:45:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3014 (0xbc6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91734C9, serialNumber=E34809BC5B454FC799487FEEDAD702124024623A Validity Not Before: Jun 12 18:45:57 2025 GMT Not After : Jun 19 18:45:57 2025 GMT Subject: CN=684b2065-6fdb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ef:16:6d:56:ee:fc:7e:20:5f:fa:ba:fb:b9:8e: 5a:9c:4f:b2:6e:1d:8c:c1:1c:ff:f0:0f:7c:c3:13: ec:17:00:03:c9:37:cb:66:08:12:d2:70:e0:f1:a6: 2e:67:e3:48:8c:27:44:0f:f3:63:f9:bf:5d:26:48: 5a:ce:0d:b9:30:84:7d:83:48:8a:a5:f9:b8:1d:ad: 71:34:b0:2d:89:fb:f5:c6:80:9d:ef:8f:e8:60:1d: 44:bd:43:83:ea:fb:f9:36:2e:9f:d1:b7:73:2e:39: 81:87:6b:0c:04:81:2c:5a:bb:41:c7:ba:52:4e:a7: a5:1c:cd:ca:91:0e:1f:c6:9b:5e:20:bd:a8:63:e3: f2:2a:e8:07:32:0d:d7:f1:05:cc:71:cc:dc:8c:c1: 2b:24:33:f3:cc:35:94:95:00:0d:b7:c3:6d:99:32: ad:a7:e2:83:98:92:6d:a0:d2:5c:74:2e:00:8c:57: 6d:71:19:de:ea:8b:27:dd:7e:3f:6d:dc:08:89:70: a0:6a:d4:6b:ed:a9:4a:1f:16:3f:8f:6e:47:81:c3: fd:d6:04:d4:89:26:ae:53:ea:2e:2f:34:aa:c0:a9: c3:f3:08:32:6c:e8:aa:6e:74:8a:70:07:fc:c3:9a: 69:54:17:46:be:f5:3c:a6:97:07:04:1c:22:1a:dc: 17:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E5:3F:64:21:A9:CB:FF:24:01:FC:42:DE:6D:7F:17:28:74:85:55:32 X509v3 Authority Key Identifier: keyid:E3:48:09:BC:5B:45:4F:C7:99:48:7F:EE:DA:D7:02:12:40:24:62:3A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91734C9/6736024A225D11EABACFC960C4F9AE02/40gJvFtFT8eZSH_u2tcCEkAkYjo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/40gJvFtFT8eZSH_u2tcCEkAkYjo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91734C9/6736024A225D11EABACFC960C4F9AE02/40gJvFtFT8eZSH_u2tcCEkAkYjo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2e:e1:f5:ce:0c:69:a8:d5:86:28:bb:d1:1f:08:79:10:5d:e1: 8c:ce:ac:ad:20:b7:01:7b:cd:d7:5c:d5:ad:85:8e:c1:62:5c: 4b:9a:ec:ff:98:77:4b:87:1b:93:42:bb:ca:a6:79:e0:dd:88: 6c:a6:dc:3b:79:f0:17:75:e6:e3:fa:86:ed:7a:40:c5:40:21: 6d:40:6f:64:a9:b8:71:25:30:1d:9b:3b:5c:12:f8:7d:54:5e: 25:5d:ab:3f:28:89:e7:e1:2f:e2:10:89:1c:c2:c7:a6:e4:47: 87:37:9f:63:a3:19:ea:16:9e:6e:92:bf:db:da:a3:fe:21:8f: ee:d6:10:88:dc:5e:98:1d:b6:11:1f:74:93:55:8f:08:55:6a: 3e:38:a4:50:b9:33:9f:b3:d4:79:82:27:7b:34:b6:7c:e1:a1: f6:34:68:12:34:37:17:cd:dc:4c:0a:b1:44:1e:50:48:bd:d1: 2f:de:3c:22:22:c0:87:f8:39:b2:e6:22:01:76:3f:0a:fb:a0: 73:6d:d7:52:24:78:e9:6a:fa:66:85:16:dc:f3:ff:c1:ae:81: d1:40:04:ef:9f:be:91:ee:88:ae:6a:d0:77:cd:7f:55:04:40: 17:cb:ca:18:38:8b:a2:e3:12:36:56:66:68:e8:07:c5:ac:a8: e9:c8:2b:50 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC8YwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzM0QzkxMTAvBgNVBAUTKEUzNDgwOUJDNUI0NTRGQzc5OTQ4N0ZFRURBRDcwMjEy NDAyNDYyM0EwHhcNMjUwNjEyMTg0NTU3WhcNMjUwNjE5MTg0NTU3WjAYMRYwFAYD VQQDEw02ODRiMjA2NS02ZmRiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7xZtVu78fiBf+rr7uY5anE+ybh2MwRz/8A98wxPsFwADyTfLZggS0nDg8aYu Z+NIjCdED/Nj+b9dJkhazg25MIR9g0iKpfm4Ha1xNLAtifv1xoCd74/oYB1EvUOD 6vv5Ni6f0bdzLjmBh2sMBIEsWrtBx7pSTqelHM3KkQ4fxpteIL2oY+PyKugHMg3X 8QXMcczcjMErJDPzzDWUlQANt8NtmTKtp+KDmJJtoNJcdC4AjFdtcRne6osn3X4/ bdwIiXCgatRr7alKHxY/j25HgcP91gTUiSauU+ouLzSqwKnD8wgybOiqbnSKcAf8 w5ppVBdGvvU8ppcHBBwiGtwXDwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOU/ZCGp y/8kAfxC3m1/Fyh0hVUyMB8GA1UdIwQYMBaAFONICbxbRU/HmUh/7trXAhJAJGI6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MzRDOS82NzM2MDI0QTIy NUQxMUVBQkFDRkM5NjBDNEY5QUUwMi80MGdKdkZ0RlQ4ZVpTSF91MnRjQ0VrQWtZ am8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzQwZ0p2RnRGVDhlWlNIX3UydGNDRWtBa1lqby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MzRDOS82NzM2MDI0QTIyNUQxMUVBQkFDRkM5NjBDNEY5QUUwMi80MGdKdkZ0RlQ4 ZVpTSF91MnRjQ0VrQWtZam8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAu4fXODGmo1YYou9EfCHkQXeGMzqytILcBe83XXNWthY7BYlxLmuz/ mHdLhxuTQrvKpnng3Yhsptw7efAXdebj+obtekDFQCFtQG9kqbhxJTAdmztcEvh9 VF4lXas/KInn4S/iEIkcwsem5EeHN59joxnqFp5ukr/b2qP+IY/u1hCI3F6YHbYR H3STVY8IVWo+OKRQuTOfs9R5gid7NLZ84aH2NGgSNDcXzdxMCrFEHlBIvdEv3jwi IsCH+Dmy5iIBdj8K+6BzbddSJHjpavpmhRbc8//BroHRQATvn76R7oiuatB3zX9V BEAXy8oYOIui4xI2VmZo6AfFrKjpyCtQ -----END CERTIFICATE-----Generated at Sat Jun 14 18:00:46 2025 by rpki-client