$ rpki-client -vvf rpki.apnic.net/member_repository/A91947C4/595BE82C635B11EE884CAD4FC4F9AE02/Sdth_wPFUWeVz3hQnqN6Bg9FR78.mft File: Sdth_wPFUWeVz3hQnqN6Bg9FR78.mft (raw, json) Hash identifier: cyZSMnXPXlwntY7ZKtmCeEzYKxFlhtr3yLKYsp8/gG4= Subject key identifier: 32:A2:1D:BE:84:E2:27:45:7D:E0:E7:AB:7B:B7:13:58:94:20:44:0B Authority key identifier: 49:DB:61:FF:03:C5:51:67:95:CF:78:50:9E:A3:7A:06:0F:45:47:BF Certificate issuer: /CN=A91947C4/serialNumber=49DB61FF03C5516795CF78509EA37A060F4547BF Certificate serial: 0142 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Sdth_wPFUWeVz3hQnqN6Bg9FR78.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91947C4/595BE82C635B11EE884CAD4FC4F9AE02/Sdth_wPFUWeVz3hQnqN6Bg9FR78.mft Manifest number: 0140 Signing time: Fri 13 Jun 2025 03:21:08 +0000 Manifest this update: Fri 13 Jun 2025 03:21:07 +0000 Manifest next update: Fri 20 Jun 2025 03:21:07 +0000 Files and hashes: 1: Sdth_wPFUWeVz3hQnqN6Bg9FR78.crl (hash: RfkC8vVxF8SFUuMy70pqOns0nU2MvzxzkB5dqNmsc5Y=) 2: 08181C0C646D11EE82448758C4F9AE02.roa (hash: aw8y769dbHtoKJEd8vQWlpw8CKdXEBliY+eMjR7xPWk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91947C4/595BE82C635B11EE884CAD4FC4F9AE02/Sdth_wPFUWeVz3hQnqN6Bg9FR78.crl rsync://rpki.apnic.net/member_repository/A91947C4/595BE82C635B11EE884CAD4FC4F9AE02/Sdth_wPFUWeVz3hQnqN6Bg9FR78.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Sdth_wPFUWeVz3hQnqN6Bg9FR78.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 20 Jun 2025 03:21:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 322 (0x142) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91947C4, serialNumber=49DB61FF03C5516795CF78509EA37A060F4547BF Validity Not Before: Jun 13 03:21:07 2025 GMT Not After : Jun 20 03:21:07 2025 GMT Subject: CN=684b9924-04e8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:5c:7b:2e:96:bd:1e:28:0c:26:fc:5e:7c:a4: e7:c8:24:d1:7d:85:86:4d:10:8c:1d:21:2d:cb:f4: e7:b0:3c:f9:12:d1:60:b7:5f:9b:ae:cb:c6:37:2d: f4:fb:68:f5:59:99:39:88:63:a5:b2:bc:70:dd:3c: 8b:db:0b:f4:8f:ba:39:39:18:99:a5:20:d0:d3:b4: a2:c8:76:cc:a0:9f:7b:cd:06:75:c9:3c:8a:64:78: d6:02:71:45:35:65:fe:c2:a9:d7:b3:8c:18:56:27: 5b:5f:a8:0a:ea:7e:d3:a2:b5:5a:3b:91:52:14:3b: 59:95:7d:30:2a:f9:07:ab:f2:eb:a4:6a:99:2f:17: e1:11:d9:95:32:fe:77:a8:e9:59:ad:d9:0e:44:cd: 9a:c8:13:7a:0a:ad:d2:38:d1:a4:84:8a:a2:9a:71: 1b:f9:7f:19:58:3b:eb:1f:92:a5:de:f2:3b:bc:c8: 45:51:5f:f6:21:0f:bb:e4:4d:7d:ee:ca:ca:e4:89: 21:05:ad:58:e6:84:59:c6:61:59:26:6b:f5:24:9d: 26:9b:3c:3c:75:76:ab:02:4a:6e:cb:33:a8:7f:e0: 62:d1:15:a0:94:97:3c:c4:56:45:54:66:18:44:c2: 50:a7:76:50:72:93:2e:25:14:71:29:24:b0:7f:38: fa:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 32:A2:1D:BE:84:E2:27:45:7D:E0:E7:AB:7B:B7:13:58:94:20:44:0B X509v3 Authority Key Identifier: keyid:49:DB:61:FF:03:C5:51:67:95:CF:78:50:9E:A3:7A:06:0F:45:47:BF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91947C4/595BE82C635B11EE884CAD4FC4F9AE02/Sdth_wPFUWeVz3hQnqN6Bg9FR78.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Sdth_wPFUWeVz3hQnqN6Bg9FR78.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91947C4/595BE82C635B11EE884CAD4FC4F9AE02/Sdth_wPFUWeVz3hQnqN6Bg9FR78.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 98:e0:57:54:fb:09:a1:79:7d:ee:36:88:32:dc:2c:2b:a9:e3: 2e:f7:ce:19:7c:3a:a2:f8:4d:f3:86:0d:10:8f:5c:aa:ac:c1: 86:6b:ac:8d:c2:36:8f:85:c3:08:5a:2b:ad:aa:8a:b9:94:9d: 60:dd:98:d6:38:20:8d:4b:cd:cd:e3:63:be:f0:02:f9:c3:32: 57:4a:57:44:d4:8e:34:86:54:66:ac:90:ba:f7:f4:38:29:89: 5e:b6:08:0a:f3:dd:e5:1d:42:02:62:35:70:fa:9a:a3:5f:ed: 97:dc:4a:e2:2d:a9:0e:0f:67:d6:93:de:f1:88:74:11:cd:4e: 11:b9:8d:a0:18:ff:8b:a7:92:0d:56:28:6a:17:e3:01:28:b2: bd:48:7c:8c:e5:66:bb:2a:0f:a2:67:ac:68:b8:77:1e:b0:1e: c8:d0:f6:e0:d1:5f:8b:76:16:fd:e7:64:bd:ef:ab:22:c7:c4: 1a:06:7b:a7:90:6d:ec:ad:05:fd:1f:11:cb:7f:24:7d:57:02: 46:b8:0c:34:cd:f2:f0:50:e6:da:d6:f7:66:d9:05:da:83:89: c8:82:5c:da:c1:79:6b:65:7d:5f:96:7a:96:a2:b0:a2:84:b8: 41:78:ec:85:43:3b:b3:9f:51:1c:3e:a2:67:48:1c:0d:aa:88: fa:b5:a7:cc -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAUIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTQ3QzQxMTAvBgNVBAUTKDQ5REI2MUZGMDNDNTUxNjc5NUNGNzg1MDlFQTM3QTA2 MEY0NTQ3QkYwHhcNMjUwNjEzMDMyMTA3WhcNMjUwNjIwMDMyMTA3WjAYMRYwFAYD VQQDEw02ODRiOTkyNC0wNGU4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1Vx7Lpa9HigMJvxefKTnyCTRfYWGTRCMHSEty/TnsDz5EtFgt1+brsvGNy30 +2j1WZk5iGOlsrxw3TyL2wv0j7o5ORiZpSDQ07SiyHbMoJ97zQZ1yTyKZHjWAnFF NWX+wqnXs4wYVidbX6gK6n7TorVaO5FSFDtZlX0wKvkHq/LrpGqZLxfhEdmVMv53 qOlZrdkORM2ayBN6Cq3SONGkhIqimnEb+X8ZWDvrH5Kl3vI7vMhFUV/2IQ+75E19 7srK5IkhBa1Y5oRZxmFZJmv1JJ0mmzw8dXarAkpuyzOof+Bi0RWglJc8xFZFVGYY RMJQp3ZQcpMuJRRxKSSwfzj6qwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDKiHb6E 4idFfeDnq3u3E1iUIEQLMB8GA1UdIwQYMBaAFEnbYf8DxVFnlc94UJ6jegYPRUe/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NDdDNC81OTVCRTgyQzYz NUIxMUVFODg0Q0FENEZDNEY5QUUwMi9TZHRoX3dQRlVXZVZ6M2hRbnFONkJnOUZS NzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1NkdGhfd1BGVVdlVnozaFFucU42Qmc5RlI3OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NDdDNC81OTVCRTgyQzYzNUIxMUVFODg0Q0FENEZDNEY5QUUwMi9TZHRoX3dQRlVX ZVZ6M2hRbnFONkJnOUZSNzgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCY4FdU+wmheX3uNogy3CwrqeMu984ZfDqi+E3zhg0Qj1yqrMGGa6yN wjaPhcMIWiutqoq5lJ1g3ZjWOCCNS83N42O+8AL5wzJXSldE1I40hlRmrJC69/Q4 KYletggK893lHUICYjVw+pqjX+2X3EriLakOD2fWk97xiHQRzU4RuY2gGP+Lp5IN VihqF+MBKLK9SHyM5Wa7Kg+iZ6xouHcesB7I0Pbg0V+Ldhb952S976six8QaBnun kG3srQX9HxHLfyR9VwJGuAw0zfLwUOba1vdm2QXag4nIglzawXlrZX1flnqWorCi hLhBeOyFQzuzn1EcPqJnSBwNqoj6tafM -----END CERTIFICATE-----Generated at Sat Jun 14 17:17:52 2025 by rpki-client