$ rpki-client -vvf rpki.apnic.net/member_repository/A91743EF/E6ABB010BA4011E7A08D266FC4F9AE02/0dZcikMk4of26pFbOfXTYC0eN6Y.mft File: 0dZcikMk4of26pFbOfXTYC0eN6Y.mft (raw, json) Hash identifier: RzEV5OS9H46pqS0ONl6TUgGK9uFebyb1Ept4ZFpidKs= Subject key identifier: 3A:F3:FC:D8:55:C9:9E:A8:5A:A7:3F:E4:74:7E:90:C7:6A:B3:4D:D0 Authority key identifier: D1:D6:5C:8A:43:24:E2:87:F6:EA:91:5B:39:F5:D3:60:2D:1E:37:A6 Certificate issuer: /CN=A91743EF/serialNumber=D1D65C8A4324E287F6EA915B39F5D3602D1E37A6 Certificate serial: 181A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0dZcikMk4of26pFbOfXTYC0eN6Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91743EF/E6ABB010BA4011E7A08D266FC4F9AE02/0dZcikMk4of26pFbOfXTYC0eN6Y.mft Manifest number: 1808 Signing time: Sat 14 Jun 2025 16:30:07 +0000 Manifest this update: Sat 14 Jun 2025 16:30:07 +0000 Manifest next update: Sat 21 Jun 2025 16:30:07 +0000 Files and hashes: 1: 0dZcikMk4of26pFbOfXTYC0eN6Y.crl (hash: ZC/gZGtF7RZuZIL0NIS6Wev+NP7cCPEDqzRqh7Y0tGE=) 2: 8B2EE9667A0911EE934F1262C4F9AE02.roa (hash: c58kYquiR7PhXwHG1m2k+88ex1+jC31dtd+q7AHBr2g=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91743EF/E6ABB010BA4011E7A08D266FC4F9AE02/0dZcikMk4of26pFbOfXTYC0eN6Y.crl rsync://rpki.apnic.net/member_repository/A91743EF/E6ABB010BA4011E7A08D266FC4F9AE02/0dZcikMk4of26pFbOfXTYC0eN6Y.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0dZcikMk4of26pFbOfXTYC0eN6Y.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Jun 2025 16:30:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6170 (0x181a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91743EF, serialNumber=D1D65C8A4324E287F6EA915B39F5D3602D1E37A6 Validity Not Before: Jun 14 16:30:07 2025 GMT Not After : Jun 21 16:30:07 2025 GMT Subject: CN=684da38f-01bd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:c7:84:34:58:8a:0e:6c:82:12:b1:e2:66:9d: 3c:1a:2a:17:d6:a8:dc:72:35:dd:4e:28:03:34:6d: 36:8c:3b:70:f6:d3:bd:53:e7:97:7f:4f:fa:51:4f: 73:30:08:14:ef:f9:cb:ef:5a:10:b0:f6:1c:5f:99: bb:72:07:6f:fd:76:6b:3f:c0:f2:5e:93:73:9f:72: ea:bf:16:fa:4c:73:57:66:b1:76:1e:85:be:2b:69: 67:a3:6f:e4:27:42:06:d2:fe:84:8a:e4:30:c8:90: 34:1a:de:68:10:75:63:67:4b:b3:f2:75:89:37:a6: 96:bd:20:e7:5c:51:a0:5e:75:fb:34:c3:32:8f:84: a8:c2:3d:8f:ce:7e:84:98:36:16:23:60:bc:d3:91: d9:c6:18:f9:0c:00:93:53:cb:b2:38:34:e0:09:ae: 87:e0:7a:4f:d7:1a:6a:0c:d0:31:40:e2:56:2c:1f: 7d:2a:55:23:e7:0f:ab:f8:f0:55:b1:df:1e:62:12: f0:50:1a:ee:13:d0:02:f0:cd:33:66:ec:d4:25:cd: 19:7f:50:97:13:0a:de:43:fa:77:71:f2:4b:18:98: 75:b3:3a:b0:97:2e:c7:f1:3a:95:5d:e9:75:c0:c6: c5:1e:6d:11:7d:fb:6a:29:8d:50:4d:5a:8f:01:81: 50:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3A:F3:FC:D8:55:C9:9E:A8:5A:A7:3F:E4:74:7E:90:C7:6A:B3:4D:D0 X509v3 Authority Key Identifier: keyid:D1:D6:5C:8A:43:24:E2:87:F6:EA:91:5B:39:F5:D3:60:2D:1E:37:A6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91743EF/E6ABB010BA4011E7A08D266FC4F9AE02/0dZcikMk4of26pFbOfXTYC0eN6Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0dZcikMk4of26pFbOfXTYC0eN6Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91743EF/E6ABB010BA4011E7A08D266FC4F9AE02/0dZcikMk4of26pFbOfXTYC0eN6Y.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 71:e2:f6:74:47:b6:49:ae:5c:62:7f:e1:9a:46:f7:ac:fa:18: 51:ad:06:9e:43:21:81:95:96:52:98:0b:77:a5:05:a4:6b:8b: 1b:a3:33:eb:6a:15:58:71:6c:02:00:ba:2e:42:5e:53:d5:a8: 0a:d9:5c:04:10:7f:7e:21:32:6f:26:f7:be:45:fd:7d:9a:4a: 37:b1:fa:45:d2:e9:c0:46:cc:58:27:6a:29:01:f4:0e:94:0b: 65:9a:dd:1b:06:a3:d9:62:01:2b:46:9e:a7:b7:a2:2d:c2:89: 9a:bc:41:7d:40:6e:45:40:81:52:b6:b4:bc:39:9b:03:bd:00: f2:9d:4d:b1:8a:ee:aa:db:e8:2c:2f:32:dc:3b:f7:52:b6:77: 88:08:4f:02:25:f5:82:08:e7:5b:a9:92:b3:39:6f:77:a1:b7: f0:a4:7e:8f:af:7e:cf:f9:b6:f6:c5:cb:30:68:e3:70:f3:09: 06:0c:6a:18:bc:6b:30:99:59:7b:6e:76:54:4e:f5:0f:80:de: 33:99:dd:dd:b4:82:39:ae:b4:53:2b:8f:d5:79:8e:dd:0b:5b: 72:33:ad:a0:8d:57:13:d3:ed:0c:77:5f:07:fd:8f:9c:21:d3: bb:8a:5c:6a:00:0a:a7:56:35:c2:c9:36:d9:84:34:12:70:ca: 12:a8:f8:de -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICGBowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzQzRUYxMTAvBgNVBAUTKEQxRDY1QzhBNDMyNEUyODdGNkVBOTE1QjM5RjVEMzYw MkQxRTM3QTYwHhcNMjUwNjE0MTYzMDA3WhcNMjUwNjIxMTYzMDA3WjAYMRYwFAYD VQQDEw02ODRkYTM4Zi0wMWJkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuceENFiKDmyCErHiZp08GioX1qjccjXdTigDNG02jDtw9tO9U+eXf0/6UU9z MAgU7/nL71oQsPYcX5m7cgdv/XZrP8DyXpNzn3Lqvxb6THNXZrF2HoW+K2lno2/k J0IG0v6EiuQwyJA0Gt5oEHVjZ0uz8nWJN6aWvSDnXFGgXnX7NMMyj4Sowj2Pzn6E mDYWI2C805HZxhj5DACTU8uyODTgCa6H4HpP1xpqDNAxQOJWLB99KlUj5w+r+PBV sd8eYhLwUBruE9AC8M0zZuzUJc0Zf1CXEwreQ/p3cfJLGJh1szqwly7H8TqVXel1 wMbFHm0RfftqKY1QTVqPAYFQMwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDrz/NhV yZ6oWqc/5HR+kMdqs03QMB8GA1UdIwQYMBaAFNHWXIpDJOKH9uqRWzn102AtHjem MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NDNFRi9FNkFCQjAxMEJB NDAxMUU3QTA4RDI2NkZDNEY5QUUwMi8wZFpjaWtNazRvZjI2cEZiT2ZYVFlDMGVO NlkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzBkWmNpa01rNG9mMjZwRmJPZlhUWUMwZU42WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 NDNFRi9FNkFCQjAxMEJBNDAxMUU3QTA4RDI2NkZDNEY5QUUwMi8wZFpjaWtNazRv ZjI2cEZiT2ZYVFlDMGVONlkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBx4vZ0R7ZJrlxif+GaRves+hhRrQaeQyGBlZZSmAt3pQWka4sbozPr ahVYcWwCALouQl5T1agK2VwEEH9+ITJvJve+Rf19mko3sfpF0unARsxYJ2opAfQO lAtlmt0bBqPZYgErRp6nt6ItwomavEF9QG5FQIFStrS8OZsDvQDynU2xiu6q2+gs LzLcO/dStneICE8CJfWCCOdbqZKzOW93obfwpH6Pr37P+bb2xcswaONw8wkGDGoY vGswmVl7bnZUTvUPgN4zmd3dtII5rrRTK4/VeY7dC1tyM62gjVcT0+0Md18H/Y+c IdO7ilxqAAqnVjXCyTbZhDQScMoSqPje -----END CERTIFICATE-----Generated at Sun Jun 15 05:00:18 2025 by rpki-client