$ rpki-client -vvf rpki.apnic.net/member_repository/A91A57F8/34509400B97511ED8040DE22C4F9AE02/n2T-UJklN_sLQOUvnPrDEMonGRg.mft File: n2T-UJklN_sLQOUvnPrDEMonGRg.mft (raw, json) Hash identifier: CpoRsclRp7X4unejiLTkzx9solEqijXdAx0uSM/9WO8= Subject key identifier: 94:8C:50:EF:59:25:C8:82:B6:07:4A:B9:90:77:FD:79:79:9B:FB:CB Authority key identifier: 9F:64:FE:50:99:25:37:FB:0B:40:E5:2F:9C:FA:C3:10:CA:27:19:18 Certificate issuer: /CN=A91A57F8/serialNumber=9F64FE50992537FB0B40E52F9CFAC310CA271918 Certificate serial: 01E3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/n2T-UJklN_sLQOUvnPrDEMonGRg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A57F8/34509400B97511ED8040DE22C4F9AE02/n2T-UJklN_sLQOUvnPrDEMonGRg.mft Manifest number: 01D6 Signing time: Sun 15 Jun 2025 02:26:41 +0000 Manifest this update: Sun 15 Jun 2025 02:26:41 +0000 Manifest next update: Sun 22 Jun 2025 02:26:41 +0000 Files and hashes: 1: n2T-UJklN_sLQOUvnPrDEMonGRg.crl (hash: 8CKCnTBocYxx7BxM5zeVAhsAP+qPwdYylYNrXkr1E5Q=) 2: A508D320BBC711ED8DF23C40C4F9AE02.roa (hash: gmdIOgts2gqY1ppnefV+yq0uoAlH32RZLcAhOdl6QRA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A57F8/34509400B97511ED8040DE22C4F9AE02/n2T-UJklN_sLQOUvnPrDEMonGRg.crl rsync://rpki.apnic.net/member_repository/A91A57F8/34509400B97511ED8040DE22C4F9AE02/n2T-UJklN_sLQOUvnPrDEMonGRg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/n2T-UJklN_sLQOUvnPrDEMonGRg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 22 Jun 2025 02:26:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 483 (0x1e3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A57F8, serialNumber=9F64FE50992537FB0B40E52F9CFAC310CA271918 Validity Not Before: Jun 15 02:26:41 2025 GMT Not After : Jun 22 02:26:41 2025 GMT Subject: CN=684e2f61-3988 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:fd:d6:a9:e6:8b:c6:05:15:3c:d1:b6:8d:28: d2:ee:06:7c:de:56:e3:aa:0f:3e:9c:4f:33:42:ed: 24:a9:40:35:b0:29:73:52:58:57:aa:d9:40:af:65: 7c:f5:b0:56:19:09:0c:d0:0f:df:d8:41:e7:7b:8a: 37:f2:28:97:51:4d:46:a8:91:a2:74:1b:fb:ee:43: da:c4:dc:e8:91:f8:ef:29:49:92:10:cc:62:ab:62: 28:f9:72:18:39:73:dc:d1:73:10:39:78:0c:01:4e: 51:eb:10:13:a5:d5:62:7b:60:1b:3d:d9:df:55:61: b0:f9:91:09:10:21:e0:54:08:1b:cc:08:17:0d:c9: 68:70:d7:a3:5d:8b:53:ff:ed:de:79:3d:b8:d0:e5: a9:dc:93:63:b2:52:c7:18:5a:a2:21:57:ec:42:f8: e1:e7:7c:35:10:28:8d:de:f0:c5:b3:f3:8c:4b:db: ca:a1:b1:88:f6:c6:67:e3:c7:47:ef:f7:69:47:c4: f5:e5:a7:b1:1b:e0:84:aa:56:b3:97:75:94:73:5f: d6:6b:ca:b6:9f:a0:c0:39:fe:9e:55:76:16:6b:af: 9b:b7:ba:1e:58:72:a0:50:44:c8:47:6e:30:18:67: ce:2e:0c:4a:f8:0c:72:06:a2:b7:80:ad:bf:21:4a: d6:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 94:8C:50:EF:59:25:C8:82:B6:07:4A:B9:90:77:FD:79:79:9B:FB:CB X509v3 Authority Key Identifier: keyid:9F:64:FE:50:99:25:37:FB:0B:40:E5:2F:9C:FA:C3:10:CA:27:19:18 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A57F8/34509400B97511ED8040DE22C4F9AE02/n2T-UJklN_sLQOUvnPrDEMonGRg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/n2T-UJklN_sLQOUvnPrDEMonGRg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A57F8/34509400B97511ED8040DE22C4F9AE02/n2T-UJklN_sLQOUvnPrDEMonGRg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 30:ec:6d:1b:2a:31:a1:41:9d:21:e8:f2:62:ce:02:d3:39:c2: 92:3a:36:7a:fd:ba:b0:29:8e:5c:db:24:03:29:ab:ae:2b:a8: 07:07:47:2f:29:43:ca:83:ce:60:8e:1c:db:9b:8e:20:17:11: 7f:77:68:b7:3e:d2:76:0c:92:f5:db:b6:2a:fc:d0:11:68:33: f9:07:09:90:56:b7:90:9a:e0:0e:d9:be:63:de:95:6c:14:fe: 6a:52:ac:39:40:7a:80:a1:77:73:36:92:a5:3a:f5:d0:c5:a9: bb:08:b4:bb:d1:52:f8:67:b3:de:b5:e2:69:0e:10:a5:bc:3f: b5:c7:18:62:c0:45:2f:53:a7:a5:26:fa:89:2b:f6:75:c7:ad: ff:f5:68:40:7f:cd:ec:56:a1:ef:49:21:37:df:e2:53:80:a3: 37:2a:ba:71:46:02:73:8f:a4:75:74:2e:10:43:cf:e3:ba:2d: 8e:47:a1:31:f1:01:44:3d:a7:f0:36:0b:6f:5f:fc:d9:5b:00: 7c:7e:a6:00:22:2d:a4:8a:07:6e:53:d4:25:3f:74:c2:25:84: 8e:0f:9c:da:a3:ec:d9:f4:d6:1d:9d:34:84:ac:78:78:78:2d: 0b:fe:cd:90:bb:ea:83:df:2b:21:7b:09:99:74:c1:6c:a4:f8: 15:fc:00:a0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAeMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU3RjgxMTAvBgNVBAUTKDlGNjRGRTUwOTkyNTM3RkIwQjQwRTUyRjlDRkFDMzEw Q0EyNzE5MTgwHhcNMjUwNjE1MDIyNjQxWhcNMjUwNjIyMDIyNjQxWjAYMRYwFAYD VQQDEw02ODRlMmY2MS0zOTg4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAz/3WqeaLxgUVPNG2jSjS7gZ83lbjqg8+nE8zQu0kqUA1sClzUlhXqtlAr2V8 9bBWGQkM0A/f2EHne4o38iiXUU1GqJGidBv77kPaxNzokfjvKUmSEMxiq2Io+XIY OXPc0XMQOXgMAU5R6xATpdVie2AbPdnfVWGw+ZEJECHgVAgbzAgXDclocNejXYtT /+3eeT240OWp3JNjslLHGFqiIVfsQvjh53w1ECiN3vDFs/OMS9vKobGI9sZn48dH 7/dpR8T15aexG+CEqlazl3WUc1/Wa8q2n6DAOf6eVXYWa6+bt7oeWHKgUETIR24w GGfOLgxK+AxyBqK3gK2/IUrWrQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJSMUO9Z JciCtgdKuZB3/Xl5m/vLMB8GA1UdIwQYMBaAFJ9k/lCZJTf7C0DlL5z6wxDKJxkY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTdGOC8zNDUwOTQwMEI5 NzUxMUVEODA0MERFMjJDNEY5QUUwMi9uMlQtVUprbE5fc0xRT1V2blByREVNb25H UmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL24yVC1VSmtsTl9zTFFPVXZuUHJERU1vbkdSZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NTdGOC8zNDUwOTQwMEI5NzUxMUVEODA0MERFMjJDNEY5QUUwMi9uMlQtVUprbE5f c0xRT1V2blByREVNb25HUmcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAw7G0bKjGhQZ0h6PJizgLTOcKSOjZ6/bqwKY5c2yQDKauuK6gHB0cv KUPKg85gjhzbm44gFxF/d2i3PtJ2DJL127Yq/NARaDP5BwmQVreQmuAO2b5j3pVs FP5qUqw5QHqAoXdzNpKlOvXQxam7CLS70VL4Z7PeteJpDhClvD+1xxhiwEUvU6el JvqJK/Z1x63/9WhAf83sVqHvSSE33+JTgKM3KrpxRgJzj6R1dC4QQ8/jui2OR6Ex 8QFEPafwNgtvX/zZWwB8fqYAIi2kigduU9QlP3TCJYSOD5zao+zZ9NYdnTSErHh4 eC0L/s2Qu+qD3yshewmZdMFspPgV/ACg -----END CERTIFICATE-----Generated at Sun Jun 15 09:44:46 2025 by rpki-client