$ rpki-client -vvf rpki.apnic.net/member_repository/A91A8A52/FB7E4BDE70B511ED93F0DD16C4F9AE02/cS61otcGnxjunGXzsBMnGtvx9UA.mft File: cS61otcGnxjunGXzsBMnGtvx9UA.mft (raw, json) Hash identifier: 81DdnjZ5FVHmIeH+Mzeaw1IlW87pAjCRxHVyO7z8mqk= Subject key identifier: A0:DE:79:74:8C:20:89:48:E7:3C:8E:36:67:41:D5:35:57:56:23:24 Authority key identifier: 71:2E:B5:A2:D7:06:9F:18:EE:9C:65:F3:B0:13:27:1A:DB:F1:F5:40 Certificate issuer: /CN=A91A8A52/serialNumber=712EB5A2D7069F18EE9C65F3B013271ADBF1F540 Certificate serial: 01EF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cS61otcGnxjunGXzsBMnGtvx9UA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A8A52/FB7E4BDE70B511ED93F0DD16C4F9AE02/cS61otcGnxjunGXzsBMnGtvx9UA.mft Manifest number: 01E3 Signing time: Sun 15 Jun 2025 02:01:22 +0000 Manifest this update: Sun 15 Jun 2025 02:01:21 +0000 Manifest next update: Sun 22 Jun 2025 02:01:21 +0000 Files and hashes: 1: cS61otcGnxjunGXzsBMnGtvx9UA.crl (hash: c4rif9hlrWxG706AhclexaeIdmQUVWYfns+/NOUCWkk=) 2: 655B85F0225B11EFADDE6F63C4F9AE02.roa (hash: n2zLDtDaPNL3Ye6qBkwU/zpDC2mfhiqQ0N3aGF+8gOs=) 3: 8F14EDAA70B911EDB6E1F81BC4F9AE02.roa (hash: KwJcRfcCHNm1/1H4hZVLWjzBmRVSuYEae2GuTglAJm0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A8A52/FB7E4BDE70B511ED93F0DD16C4F9AE02/cS61otcGnxjunGXzsBMnGtvx9UA.crl rsync://rpki.apnic.net/member_repository/A91A8A52/FB7E4BDE70B511ED93F0DD16C4F9AE02/cS61otcGnxjunGXzsBMnGtvx9UA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cS61otcGnxjunGXzsBMnGtvx9UA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 22 Jun 2025 02:01:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 495 (0x1ef) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A8A52, serialNumber=712EB5A2D7069F18EE9C65F3B013271ADBF1F540 Validity Not Before: Jun 15 02:01:21 2025 GMT Not After : Jun 22 02:01:21 2025 GMT Subject: CN=684e2972-95c5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:7d:9c:27:9f:05:02:d7:d7:e2:bc:90:1f:09: 60:fc:e1:f9:f3:32:c9:32:2a:4c:47:bc:59:bc:a6: 2b:dd:90:ce:29:ef:4b:5e:3b:a2:e9:c7:38:5e:f6: 99:6a:ab:d6:f7:73:ae:01:2f:10:4b:79:a3:60:70: d4:88:36:c7:e7:86:f8:62:cd:7a:a1:8a:40:e1:d4: a8:5f:01:b8:b6:e8:0b:37:e8:82:42:58:19:bb:83: 06:5a:ab:5c:9d:fb:32:2d:93:a1:c9:b9:34:32:0e: 0b:fb:01:b0:77:b3:80:ca:f9:af:4a:67:19:79:38: 52:ec:fc:47:6b:4e:0b:fb:cb:6e:d0:60:fa:f6:0b: e1:b4:7a:1f:8a:ad:12:10:b9:e7:e6:cd:b7:bd:df: 8b:94:40:01:45:8e:44:27:15:9c:d2:e2:f7:7e:5f: 24:c3:8f:d3:92:a1:ee:2d:ba:ec:4d:de:fc:59:83: 81:ea:57:75:37:c5:f1:74:2a:a5:0a:5c:81:34:ff: f3:51:a9:a3:68:6f:89:bc:8e:ff:41:90:ca:b6:d0: 63:37:d2:2d:52:da:0b:09:b1:68:9d:a2:ee:51:78: c2:74:6c:22:56:72:66:c2:17:98:3a:47:b9:65:b7: 8e:46:0b:c3:c3:1a:33:92:11:cb:fc:86:3a:1a:6f: c0:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A0:DE:79:74:8C:20:89:48:E7:3C:8E:36:67:41:D5:35:57:56:23:24 X509v3 Authority Key Identifier: keyid:71:2E:B5:A2:D7:06:9F:18:EE:9C:65:F3:B0:13:27:1A:DB:F1:F5:40 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A8A52/FB7E4BDE70B511ED93F0DD16C4F9AE02/cS61otcGnxjunGXzsBMnGtvx9UA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cS61otcGnxjunGXzsBMnGtvx9UA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A8A52/FB7E4BDE70B511ED93F0DD16C4F9AE02/cS61otcGnxjunGXzsBMnGtvx9UA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7e:df:5a:77:1f:e2:49:ca:a2:06:34:bb:eb:48:30:f0:53:ff: 49:8b:79:86:b8:87:8d:16:ba:cc:3f:4f:30:34:95:ec:3a:3d: 5b:c8:01:1b:14:54:ee:20:65:1a:0f:4b:8d:91:7b:91:11:a4: fa:1d:83:6c:47:96:09:71:c4:a2:7c:ca:d5:3c:3b:d3:5b:f2: c4:22:23:b7:a1:fb:cc:ba:17:2a:eb:37:70:e4:b5:77:d8:9e: 6e:a7:b1:09:bd:16:1e:fc:e6:c4:64:18:fc:cd:85:5e:84:1e: df:27:b8:6b:2b:ae:86:36:ab:ca:61:7c:64:f2:4f:43:fa:ec: 03:f9:67:9c:c4:5f:fb:14:a2:8f:a4:29:2c:b3:1b:e4:af:f3: c4:ea:d7:d0:47:a5:87:fa:a7:c4:c7:36:54:e6:14:3e:2c:62: d4:f3:5c:10:df:8d:f7:93:ac:38:cd:9e:08:b2:3f:2e:cf:ac: 73:e7:23:5a:10:02:cc:4c:28:2f:6a:7c:19:00:18:1a:9e:6b: a6:06:0e:f2:27:28:49:f8:6f:21:e2:73:57:17:3a:8f:f7:e7: 09:07:79:5c:f8:ca:2c:45:88:f4:c2:36:0f:6e:86:16:21:64: 5e:a4:c5:ae:67:a6:20:b6:d8:58:b0:f8:a1:90:57:f6:03:a6: 04:32:98:57 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAe8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QThBNTIxMTAvBgNVBAUTKDcxMkVCNUEyRDcwNjlGMThFRTlDNjVGM0IwMTMyNzFB REJGMUY1NDAwHhcNMjUwNjE1MDIwMTIxWhcNMjUwNjIyMDIwMTIxWjAYMRYwFAYD VQQDEw02ODRlMjk3Mi05NWM1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAl32cJ58FAtfX4ryQHwlg/OH58zLJMipMR7xZvKYr3ZDOKe9LXjui6cc4XvaZ aqvW93OuAS8QS3mjYHDUiDbH54b4Ys16oYpA4dSoXwG4tugLN+iCQlgZu4MGWqtc nfsyLZOhybk0Mg4L+wGwd7OAyvmvSmcZeThS7PxHa04L+8tu0GD69gvhtHofiq0S ELnn5s23vd+LlEABRY5EJxWc0uL3fl8kw4/TkqHuLbrsTd78WYOB6ld1N8XxdCql ClyBNP/zUamjaG+JvI7/QZDKttBjN9ItUtoLCbFonaLuUXjCdGwiVnJmwheYOke5 ZbeORgvDwxozkhHL/IY6Gm/AJQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKDeeXSM IIlI5zyONmdB1TVXViMkMB8GA1UdIwQYMBaAFHEutaLXBp8Y7pxl87ATJxrb8fVA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBOEE1Mi9GQjdFNEJERTcw QjUxMUVEOTNGMEREMTZDNEY5QUUwMi9jUzYxb3RjR254anVuR1h6c0JNbkd0dng5 VUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NTNjFvdGNHbnhqdW5HWHpzQk1uR3R2eDlVQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB OEE1Mi9GQjdFNEJERTcwQjUxMUVEOTNGMEREMTZDNEY5QUUwMi9jUzYxb3RjR254 anVuR1h6c0JNbkd0dng5VUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB+31p3H+JJyqIGNLvrSDDwU/9Ji3mGuIeNFrrMP08wNJXsOj1byAEb FFTuIGUaD0uNkXuREaT6HYNsR5YJccSifMrVPDvTW/LEIiO3ofvMuhcq6zdw5LV3 2J5up7EJvRYe/ObEZBj8zYVehB7fJ7hrK66GNqvKYXxk8k9D+uwD+WecxF/7FKKP pCkssxvkr/PE6tfQR6WH+qfExzZU5hQ+LGLU81wQ3433k6w4zZ4Isj8uz6xz5yNa EALMTCgvanwZABganmumBg7yJyhJ+G8h4nNXFzqP9+cJB3lc+MosRYj0wjYPboYW IWRepMWuZ6YgtthYsPihkFf2A6YEMphX -----END CERTIFICATE-----Generated at Sun Jun 15 08:50:26 2025 by rpki-client