$ rpki-client -vvf rpki.apnic.net/member_repository/A91854B7/E180CE7A851E11EB8419B327C4F9AE02/-IuXQE-dwQ9aqwL3TsSQ-YrQ07A.mft File: -IuXQE-dwQ9aqwL3TsSQ-YrQ07A.mft (raw, json) Hash identifier: krGH/pXX+hVHOFoHrSYSHUvyMfWxRwPsx6GTCfzZul8= Subject key identifier: 88:56:6C:E5:35:1B:26:6B:21:0D:59:7E:3D:C2:D9:C1:77:9F:0A:04 Authority key identifier: F8:8B:97:40:4F:9D:C1:0F:5A:AB:02:F7:4E:C4:90:F9:8A:D0:D3:B0 Certificate issuer: /CN=A91854B7/serialNumber=F88B97404F9DC10F5AAB02F74EC490F98AD0D3B0 Certificate serial: 0672 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-IuXQE-dwQ9aqwL3TsSQ-YrQ07A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91854B7/E180CE7A851E11EB8419B327C4F9AE02/-IuXQE-dwQ9aqwL3TsSQ-YrQ07A.mft Manifest number: 0661 Signing time: Thu 12 Jun 2025 22:05:59 +0000 Manifest this update: Thu 12 Jun 2025 22:05:59 +0000 Manifest next update: Thu 19 Jun 2025 22:05:59 +0000 Files and hashes: 1: -IuXQE-dwQ9aqwL3TsSQ-YrQ07A.crl (hash: UWs0+qQXh7584jczq+AtTJxs+x2WoJTEMkvHt8UQqoU=) 2: 3EACF95EEBB511ECA410BF6DC4F9AE02.roa (hash: xFmg051Irl3QGxSaxPh5/PYgXOOm8roreRqol3Gv8es=) 3: 57D28CCA853E11EB9D9E2D39C4F9AE02.roa (hash: goZ7BQs8FCZwkLeH44QNaXxFhzltbICpUZt+GahLEkQ=) 4: 5892BB44853E11EB9D9E2D39C4F9AE02.roa (hash: pCDQvhpjTdtiJ3zqTDHJUEvIuviY7SsjRZSRovU8uCc=) 5: 1D526B2E5DB311EEA8990E1BC4F9AE02.roa (hash: SXTVWJ2PMrAIqDEbXazZSPAGB7rgkYD55HYA8ZjO4Yw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91854B7/E180CE7A851E11EB8419B327C4F9AE02/-IuXQE-dwQ9aqwL3TsSQ-YrQ07A.crl rsync://rpki.apnic.net/member_repository/A91854B7/E180CE7A851E11EB8419B327C4F9AE02/-IuXQE-dwQ9aqwL3TsSQ-YrQ07A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-IuXQE-dwQ9aqwL3TsSQ-YrQ07A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 19 Jun 2025 22:05:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1650 (0x672) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91854B7, serialNumber=F88B97404F9DC10F5AAB02F74EC490F98AD0D3B0 Validity Not Before: Jun 12 22:05:59 2025 GMT Not After : Jun 19 22:05:59 2025 GMT Subject: CN=684b4f47-0d42 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:9a:59:a2:18:cb:42:8c:2e:ad:32:8b:52:bf: d8:d8:71:1f:ac:a2:cf:8b:1f:3e:94:df:c9:71:f8: 69:e1:15:47:69:f3:ad:12:70:03:68:ce:7c:ed:01: 12:35:75:91:26:b5:16:f6:02:d8:e1:7a:9f:02:a2: 82:1c:c6:30:c6:2c:45:85:31:49:f3:28:fd:57:5d: 76:d9:79:f8:45:8e:6f:21:b5:26:b9:1d:41:e1:1c: 60:13:d1:e4:71:55:61:a0:a2:ae:62:f8:d1:38:ed: ba:5a:6c:73:cd:f4:b2:40:a8:47:9b:53:81:e8:1a: a5:57:5d:e1:fc:a9:60:38:93:10:fb:3e:8d:6d:58: 9d:84:a1:1e:a9:53:de:9f:ec:47:10:8b:04:0c:5c: 20:c5:d0:44:ea:4c:30:4a:10:9e:76:4c:ba:9b:36: 8e:3f:6e:34:f7:29:7d:b8:76:85:da:ef:8a:eb:f7: b7:e1:6b:9f:a5:a6:c7:1b:31:c6:22:77:0c:97:f4: 95:f8:36:20:98:12:e2:95:71:a7:e4:1d:53:b6:74: ff:29:e9:a9:c8:bf:9a:1b:0f:d6:4a:37:64:be:89: ec:e4:80:f7:22:c8:48:54:65:c3:74:04:e6:01:83: a6:9f:d4:c5:bf:ae:09:57:89:e7:27:e7:69:6c:68: 39:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 88:56:6C:E5:35:1B:26:6B:21:0D:59:7E:3D:C2:D9:C1:77:9F:0A:04 X509v3 Authority Key Identifier: keyid:F8:8B:97:40:4F:9D:C1:0F:5A:AB:02:F7:4E:C4:90:F9:8A:D0:D3:B0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91854B7/E180CE7A851E11EB8419B327C4F9AE02/-IuXQE-dwQ9aqwL3TsSQ-YrQ07A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-IuXQE-dwQ9aqwL3TsSQ-YrQ07A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91854B7/E180CE7A851E11EB8419B327C4F9AE02/-IuXQE-dwQ9aqwL3TsSQ-YrQ07A.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3c:e6:51:5f:b5:b0:ce:2b:fa:6c:a0:d2:1d:36:b6:d2:ce:64: 99:68:8e:1c:9a:f3:9d:20:8b:35:9b:ba:79:20:12:ca:37:0f: ab:50:16:71:70:33:31:12:a1:d7:5d:79:10:61:00:a7:da:4b: 51:90:97:24:5d:1e:a2:5c:d0:52:1d:0d:f8:09:fe:09:b7:e6: cc:0a:04:2f:24:b7:50:74:a2:95:b3:d5:a5:be:17:8c:6a:4b: b7:dc:4b:c0:39:95:88:63:14:a7:38:45:53:b0:e8:df:58:5e: ae:9d:d5:e0:e1:26:ec:ae:99:36:80:a2:54:0d:d7:18:65:f9: 03:5b:06:31:51:3c:34:02:87:24:d6:72:9f:3c:5c:35:ba:cf: ff:6b:bb:41:71:8d:53:fa:a6:15:ed:ad:82:42:c7:d4:0b:19: 40:07:08:5d:73:ac:d5:43:f8:1b:f5:20:01:75:e4:b2:fc:18: 5b:f7:6b:0e:49:92:e7:c4:c9:bf:d3:3f:f5:63:3d:83:1a:6f: c3:a8:4f:71:6b:33:8f:82:68:8f:52:c7:d7:58:c6:9e:8f:7d: ea:d0:bd:58:c4:28:d9:19:75:62:40:06:29:3b:b3:e7:60:11: 9b:71:43:da:64:4a:38:35:23:d7:65:e4:21:2e:98:0f:2c:71: b4:44:6f:29 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBnIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODU0QjcxMTAvBgNVBAUTKEY4OEI5NzQwNEY5REMxMEY1QUFCMDJGNzRFQzQ5MEY5 OEFEMEQzQjAwHhcNMjUwNjEyMjIwNTU5WhcNMjUwNjE5MjIwNTU5WjAYMRYwFAYD VQQDEw02ODRiNGY0Ny0wZDQyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAr5pZohjLQowurTKLUr/Y2HEfrKLPix8+lN/Jcfhp4RVHafOtEnADaM587QES NXWRJrUW9gLY4XqfAqKCHMYwxixFhTFJ8yj9V1122Xn4RY5vIbUmuR1B4RxgE9Hk cVVhoKKuYvjROO26WmxzzfSyQKhHm1OB6BqlV13h/KlgOJMQ+z6NbVidhKEeqVPe n+xHEIsEDFwgxdBE6kwwShCedky6mzaOP2409yl9uHaF2u+K6/e34WufpabHGzHG IncMl/SV+DYgmBLilXGn5B1TtnT/KempyL+aGw/WSjdkvons5ID3IshIVGXDdATm AYOmn9TFv64JV4nnJ+dpbGg5aQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIhWbOU1 GyZrIQ1Zfj3C2cF3nwoEMB8GA1UdIwQYMBaAFPiLl0BPncEPWqsC907EkPmK0NOw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NTRCNy9FMTgwQ0U3QTg1 MUUxMUVCODQxOUIzMjdDNEY5QUUwMi8tSXVYUUUtZHdROWFxd0wzVHNTUS1ZclEw N0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy1JdVhRRS1kd1E5YXF3TDNUc1NRLVlyUTA3QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NTRCNy9FMTgwQ0U3QTg1MUUxMUVCODQxOUIzMjdDNEY5QUUwMi8tSXVYUUUtZHdR OWFxd0wzVHNTUS1ZclEwN0EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA85lFftbDOK/psoNIdNrbSzmSZaI4cmvOdIIs1m7p5IBLKNw+rUBZx cDMxEqHXXXkQYQCn2ktRkJckXR6iXNBSHQ34Cf4Jt+bMCgQvJLdQdKKVs9WlvheM aku33EvAOZWIYxSnOEVTsOjfWF6undXg4Sbsrpk2gKJUDdcYZfkDWwYxUTw0Aock 1nKfPFw1us//a7tBcY1T+qYV7a2CQsfUCxlABwhdc6zVQ/gb9SABdeSy/Bhb92sO SZLnxMm/0z/1Yz2DGm/DqE9xazOPgmiPUsfXWMaej33q0L1YxCjZGXViQAYpO7Pn YBGbcUPaZEo4NSPXZeQhLpgPLHG0RG8p -----END CERTIFICATE-----Generated at Sat Jun 14 19:30:56 2025 by rpki-client