$ rpki-client -vvf rpki.apnic.net/member_repository/A91864A7/C8055FD6C92511ED80936149C4F9AE02/_0KzQ2BElUaW_-CLDuGXXGxbjW0.mft File: _0KzQ2BElUaW_-CLDuGXXGxbjW0.mft (raw, json) Hash identifier: JEMZDL0daen+5qBbZXk1Tc9YG03lkICsM9uA7Q+xNdU= Subject key identifier: EB:F5:9B:A1:9F:C7:46:62:88:A1:10:8C:BC:6B:5B:E7:74:30:F0:ED Authority key identifier: FF:42:B3:43:60:44:95:46:96:FF:E0:8B:0E:E1:97:5C:6C:5B:8D:6D Certificate issuer: /CN=A91864A7/serialNumber=FF42B3436044954696FFE08B0EE1975C6C5B8D6D Certificate serial: 01B8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_0KzQ2BElUaW_-CLDuGXXGxbjW0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91864A7/C8055FD6C92511ED80936149C4F9AE02/_0KzQ2BElUaW_-CLDuGXXGxbjW0.mft Manifest number: 01AC Signing time: Sun 15 Jun 2025 02:32:51 +0000 Manifest this update: Sun 15 Jun 2025 02:32:50 +0000 Manifest next update: Sun 22 Jun 2025 02:32:50 +0000 Files and hashes: 1: _0KzQ2BElUaW_-CLDuGXXGxbjW0.crl (hash: QeG4QmRF1K7Y+bzf55TNWq76d66DPL/KDSed18FFxz0=) 2: BCAE303EF6C611EE8AA17A87C4F9AE02.roa (hash: b9dTa2nX+qFG6d7y+XsHyu+bx2asCK2u/yxDxyFKOqQ=) 3: B34D1A26F6C811EEBC4BE00BC4F9AE02.roa (hash: wwr+xiQ0ICFC4K2aFb1fxrN51KszvejW5t2iwGw5e3Y=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91864A7/C8055FD6C92511ED80936149C4F9AE02/_0KzQ2BElUaW_-CLDuGXXGxbjW0.crl rsync://rpki.apnic.net/member_repository/A91864A7/C8055FD6C92511ED80936149C4F9AE02/_0KzQ2BElUaW_-CLDuGXXGxbjW0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_0KzQ2BElUaW_-CLDuGXXGxbjW0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 22 Jun 2025 02:32:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 440 (0x1b8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91864A7, serialNumber=FF42B3436044954696FFE08B0EE1975C6C5B8D6D Validity Not Before: Jun 15 02:32:50 2025 GMT Not After : Jun 22 02:32:50 2025 GMT Subject: CN=684e30d3-c49a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:d4:a5:64:ef:a3:f7:80:58:00:4c:84:15:19: 60:2a:39:71:e9:61:aa:ea:73:4e:4e:16:9c:55:bc: d3:38:25:92:95:d4:19:dd:bc:94:cd:44:05:53:25: fe:07:e2:91:78:3d:b4:85:f7:22:2f:d6:98:ee:78: 8f:db:0a:77:ff:17:3a:3d:4b:5c:c1:07:5b:3c:5e: 22:64:32:63:a7:f2:65:65:57:0e:93:14:13:e5:68: e9:27:f2:b4:df:41:eb:88:26:77:87:39:56:8f:b1: e6:45:3c:e6:63:3a:6a:d7:5f:b6:97:7c:0d:a6:eb: 56:e7:b9:9c:82:e4:6e:43:81:0b:09:a6:c1:0d:7d: 3f:61:b7:8e:db:a7:00:3f:1d:b2:85:c0:5f:5a:cb: 18:6c:63:8b:ae:02:78:ce:f0:f6:b4:7e:58:d6:23: 0a:59:de:14:54:48:97:15:96:9b:59:17:65:b7:3a: 3a:cb:b4:5b:f7:e9:c7:52:70:37:cf:d6:2f:c8:90: 6e:a8:22:f8:4c:e8:ac:3d:9c:72:f0:b7:bc:27:66: 17:56:65:a3:d6:8c:00:2a:e6:25:de:19:92:98:9e: 58:99:57:67:14:98:9c:ac:10:2f:83:a4:3b:74:a9: 9c:50:cd:dc:55:59:a5:df:d4:a6:ef:9e:d0:b2:ce: 3b:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EB:F5:9B:A1:9F:C7:46:62:88:A1:10:8C:BC:6B:5B:E7:74:30:F0:ED X509v3 Authority Key Identifier: keyid:FF:42:B3:43:60:44:95:46:96:FF:E0:8B:0E:E1:97:5C:6C:5B:8D:6D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91864A7/C8055FD6C92511ED80936149C4F9AE02/_0KzQ2BElUaW_-CLDuGXXGxbjW0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_0KzQ2BElUaW_-CLDuGXXGxbjW0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91864A7/C8055FD6C92511ED80936149C4F9AE02/_0KzQ2BElUaW_-CLDuGXXGxbjW0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 78:ae:ec:02:73:37:8c:35:c6:50:4a:00:dd:35:ea:95:f4:a3: 35:d3:6b:22:d3:77:1d:88:cf:c7:71:2a:b4:81:b3:96:62:9c: d4:25:6b:45:97:98:80:af:d5:8b:72:8b:62:1d:fd:81:da:a7: 33:b5:ad:f6:15:71:22:01:5e:f3:63:c5:3e:e1:96:f1:ef:6c: 53:1d:ba:10:b3:61:c5:e3:e0:4f:e3:d0:22:99:2a:93:7f:22: 99:a1:e8:92:f6:f9:9d:a1:e4:7a:bc:b9:2f:c1:c4:ca:a7:d1: be:4f:af:b7:80:d6:dd:3e:d4:c7:c4:6c:32:e9:13:83:06:9c: 4f:bc:a6:38:8a:87:09:d1:f0:8d:d2:2b:94:da:2d:13:42:ba: 58:99:e8:f1:42:d0:fd:b9:e2:75:c4:82:05:c3:2a:b7:71:34: 96:05:e2:eb:93:e0:52:0c:3d:f7:d1:f7:f0:60:60:3f:f3:8f: 49:9b:a0:70:29:a7:2c:5a:75:98:2b:a8:49:48:46:58:35:37: 8f:d5:34:87:fd:51:7f:8a:f4:1b:41:b9:db:8c:4f:ef:e2:e2: 40:43:f1:f0:35:6f:24:86:fc:3c:49:30:32:25:8b:e5:94:cc: b0:80:0e:73:8b:54:6a:cf:4f:17:53:c7:cf:ae:fd:d6:eb:71: df:4e:70:29 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAbgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODY0QTcxMTAvBgNVBAUTKEZGNDJCMzQzNjA0NDk1NDY5NkZGRTA4QjBFRTE5NzVD NkM1QjhENkQwHhcNMjUwNjE1MDIzMjUwWhcNMjUwNjIyMDIzMjUwWjAYMRYwFAYD VQQDEw02ODRlMzBkMy1jNDlhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA09SlZO+j94BYAEyEFRlgKjlx6WGq6nNOThacVbzTOCWSldQZ3byUzUQFUyX+ B+KReD20hfciL9aY7niP2wp3/xc6PUtcwQdbPF4iZDJjp/JlZVcOkxQT5WjpJ/K0 30HriCZ3hzlWj7HmRTzmYzpq11+2l3wNputW57mcguRuQ4ELCabBDX0/YbeO26cA Px2yhcBfWssYbGOLrgJ4zvD2tH5Y1iMKWd4UVEiXFZabWRdltzo6y7Rb9+nHUnA3 z9YvyJBuqCL4TOisPZxy8Le8J2YXVmWj1owAKuYl3hmSmJ5YmVdnFJicrBAvg6Q7 dKmcUM3cVVml39Sm757Qss47MwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOv1m6Gf x0ZiiKEQjLxrW+d0MPDtMB8GA1UdIwQYMBaAFP9Cs0NgRJVGlv/giw7hl1xsW41t MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NjRBNy9DODA1NUZENkM5 MjUxMUVEODA5MzYxNDlDNEY5QUUwMi9fMEt6UTJCRWxVYVdfLUNMRHVHWFhHeGJq VzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL18wS3pRMkJFbFVhV18tQ0xEdUdYWEd4YmpXMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NjRBNy9DODA1NUZENkM5MjUxMUVEODA5MzYxNDlDNEY5QUUwMi9fMEt6UTJCRWxV YVdfLUNMRHVHWFhHeGJqVzAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB4ruwCczeMNcZQSgDdNeqV9KM102si03cdiM/HcSq0gbOWYpzUJWtF l5iAr9WLcotiHf2B2qczta32FXEiAV7zY8U+4Zbx72xTHboQs2HF4+BP49AimSqT fyKZoeiS9vmdoeR6vLkvwcTKp9G+T6+3gNbdPtTHxGwy6RODBpxPvKY4iocJ0fCN 0iuU2i0TQrpYmejxQtD9ueJ1xIIFwyq3cTSWBeLrk+BSDD330ffwYGA/849Jm6Bw KacsWnWYK6hJSEZYNTeP1TSH/VF/ivQbQbnbjE/v4uJAQ/HwNW8khvw8STAyJYvl lMywgA5zi1Rqz08XU8fPrv3W63HfTnAp -----END CERTIFICATE-----Generated at Sun Jun 15 08:49:49 2025 by rpki-client