$ rpki-client -vvf rpki.apnic.net/member_repository/A91A9B1B/4B3864D80E0B11EDA8D12E58C4F9AE02/S0QUrmheSI9CsbZH7qAd67DE86A.mft File: S0QUrmheSI9CsbZH7qAd67DE86A.mft (raw, json) Hash identifier: 4rbrgCZuBdJGScQLo/FZspdn4PNcvwiFpueRVrDYuMc= Subject key identifier: 77:D0:DB:13:37:C8:33:8D:B4:65:1A:D3:7E:4F:61:E0:23:71:14:E3 Authority key identifier: 4B:44:14:AE:68:5E:48:8F:42:B1:B6:47:EE:A0:1D:EB:B0:C4:F3:A0 Certificate issuer: /CN=A91A9B1B/serialNumber=4B4414AE685E488F42B1B647EEA01DEBB0C4F3A0 Certificate serial: 0281 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/S0QUrmheSI9CsbZH7qAd67DE86A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A9B1B/4B3864D80E0B11EDA8D12E58C4F9AE02/S0QUrmheSI9CsbZH7qAd67DE86A.mft Manifest number: 027B Signing time: Fri 13 Jun 2025 01:11:26 +0000 Manifest this update: Fri 13 Jun 2025 01:11:25 +0000 Manifest next update: Fri 20 Jun 2025 01:11:25 +0000 Files and hashes: 1: S0QUrmheSI9CsbZH7qAd67DE86A.crl (hash: e0xCz2UTCF3dwmO/t7DfD5dkvCYe+Vi9BeYwEaTN9Jw=) 2: B3F935160E0F11ED89E89675C4F9AE02.roa (hash: FlIBDcsCI6hEzE/Hsl8Oo4AgNaxmcJbVTdpEo3OVvJM=) 3: B4A58FE60E0F11ED89E89675C4F9AE02.roa (hash: xbGvdrnN3RARHETkrmNSzdVV6UQzyx3squYg0aDBmMc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A9B1B/4B3864D80E0B11EDA8D12E58C4F9AE02/S0QUrmheSI9CsbZH7qAd67DE86A.crl rsync://rpki.apnic.net/member_repository/A91A9B1B/4B3864D80E0B11EDA8D12E58C4F9AE02/S0QUrmheSI9CsbZH7qAd67DE86A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/S0QUrmheSI9CsbZH7qAd67DE86A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 20 Jun 2025 01:11:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 641 (0x281) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A9B1B, serialNumber=4B4414AE685E488F42B1B647EEA01DEBB0C4F3A0 Validity Not Before: Jun 13 01:11:25 2025 GMT Not After : Jun 20 01:11:25 2025 GMT Subject: CN=684b7abe-e804 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:9d:ec:d7:ba:ed:24:76:7d:20:a3:20:2d:f0: 30:7b:ac:72:34:7d:9e:79:8d:98:e6:b6:12:e5:61: e5:c2:f0:fb:b5:d0:50:cb:5e:78:5c:f3:55:13:f8: ad:83:8f:0c:07:1e:e3:1c:f8:36:bc:f0:2b:c0:31: d4:dc:6c:5a:ff:d1:28:f4:f8:bc:b4:08:3f:7a:8c: bf:dd:17:03:b5:a0:49:3e:2c:ed:9c:0c:02:93:63: 53:6b:df:9a:c4:99:48:19:c8:5d:97:37:26:e8:f2: eb:cb:a3:b8:08:6d:d9:d6:a6:ba:59:d9:01:3c:d2: 72:b6:f5:d0:90:0f:17:e7:d3:f0:e5:4b:b7:0d:9c: 17:42:c5:89:c0:4c:bc:aa:9b:aa:74:14:17:b9:da: 0a:9d:c6:c2:ae:25:2f:30:35:7b:1c:d2:43:d2:f4: 42:4f:6e:f5:6f:3d:19:f8:6d:b3:25:12:5d:4e:90: 1e:41:0f:b7:ab:e8:6b:11:dc:f1:7c:6f:fb:42:fa: 87:e3:69:40:98:cc:4a:ba:df:d7:20:0c:e4:fb:36: a8:28:93:44:08:6b:f3:2e:fc:4f:30:35:91:71:18: b1:cd:7c:5f:0e:b6:77:42:4e:39:66:af:6d:fb:cc: ed:d5:75:35:3f:56:05:f2:37:d6:fd:59:67:16:54: 02:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 77:D0:DB:13:37:C8:33:8D:B4:65:1A:D3:7E:4F:61:E0:23:71:14:E3 X509v3 Authority Key Identifier: keyid:4B:44:14:AE:68:5E:48:8F:42:B1:B6:47:EE:A0:1D:EB:B0:C4:F3:A0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A9B1B/4B3864D80E0B11EDA8D12E58C4F9AE02/S0QUrmheSI9CsbZH7qAd67DE86A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/S0QUrmheSI9CsbZH7qAd67DE86A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A9B1B/4B3864D80E0B11EDA8D12E58C4F9AE02/S0QUrmheSI9CsbZH7qAd67DE86A.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 26:1e:da:62:57:8b:28:ce:73:79:03:58:05:45:73:d5:73:35: 73:e1:e5:33:27:e5:30:81:d9:6d:52:a0:c6:81:3e:d0:6f:6b: 5c:2a:f4:cc:a7:28:02:f9:3d:64:db:42:ae:ff:13:1f:d8:04: 0c:69:65:34:50:8a:96:a3:a2:be:26:95:97:6a:d8:bb:a8:34: 57:4b:43:5f:59:bf:94:63:cc:48:96:af:a3:80:e1:2e:4d:0b: 9f:69:1a:5d:65:c6:aa:e7:7e:8f:4f:5d:cc:4e:7a:d0:5f:eb: 74:35:13:ec:2c:36:d1:7f:69:46:ba:c5:93:1c:aa:0a:0d:cc: f3:e4:a7:96:56:a5:47:40:92:78:c4:58:f7:83:7a:b6:c0:2c: 99:a7:1a:6b:49:31:5b:d4:77:2f:9b:07:c5:7b:0f:99:b4:b9: 5c:80:ab:bd:cd:09:c2:51:e9:2a:ac:13:aa:cc:84:df:f7:24: ba:11:23:4d:8a:c2:4f:6b:77:7d:1b:2e:74:8e:53:56:3a:39: a1:33:8c:14:7b:63:57:76:c0:68:56:45:cd:f4:39:08:95:4b: b8:f7:93:89:05:18:e8:d4:2b:df:4d:b1:60:24:c3:0d:25:d3: 4b:b0:2c:15:2e:f8:20:77:93:7f:d0:24:2d:4d:68:5a:93:fe: ec:81:c0:00 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAoEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTlCMUIxMTAvBgNVBAUTKDRCNDQxNEFFNjg1RTQ4OEY0MkIxQjY0N0VFQTAxREVC QjBDNEYzQTAwHhcNMjUwNjEzMDExMTI1WhcNMjUwNjIwMDExMTI1WjAYMRYwFAYD VQQDEw02ODRiN2FiZS1lODA0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4J3s17rtJHZ9IKMgLfAwe6xyNH2eeY2Y5rYS5WHlwvD7tdBQy154XPNVE/it g48MBx7jHPg2vPArwDHU3Gxa/9Eo9Pi8tAg/eoy/3RcDtaBJPiztnAwCk2NTa9+a xJlIGchdlzcm6PLry6O4CG3Z1qa6WdkBPNJytvXQkA8X59Pw5Uu3DZwXQsWJwEy8 qpuqdBQXudoKncbCriUvMDV7HNJD0vRCT271bz0Z+G2zJRJdTpAeQQ+3q+hrEdzx fG/7QvqH42lAmMxKut/XIAzk+zaoKJNECGvzLvxPMDWRcRixzXxfDrZ3Qk45Zq9t +8zt1XU1P1YF8jfW/VlnFlQCiQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHfQ2xM3 yDONtGUa035PYeAjcRTjMB8GA1UdIwQYMBaAFEtEFK5oXkiPQrG2R+6gHeuwxPOg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBOUIxQi80QjM4NjREODBF MEIxMUVEQThEMTJFNThDNEY5QUUwMi9TMFFVcm1oZVNJOUNzYlpIN3FBZDY3REU4 NkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1MwUVVybWhlU0k5Q3NiWkg3cUFkNjdERTg2QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB OUIxQi80QjM4NjREODBFMEIxMUVEQThEMTJFNThDNEY5QUUwMi9TMFFVcm1oZVNJ OUNzYlpIN3FBZDY3REU4NkEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAmHtpiV4soznN5A1gFRXPVczVz4eUzJ+UwgdltUqDGgT7Qb2tcKvTM pygC+T1k20Ku/xMf2AQMaWU0UIqWo6K+JpWXati7qDRXS0NfWb+UY8xIlq+jgOEu TQufaRpdZcaq536PT13MTnrQX+t0NRPsLDbRf2lGusWTHKoKDczz5KeWVqVHQJJ4 xFj3g3q2wCyZpxprSTFb1HcvmwfFew+ZtLlcgKu9zQnCUekqrBOqzITf9yS6ESNN isJPa3d9Gy50jlNWOjmhM4wUe2NXdsBoVkXN9DkIlUu495OJBRjo1CvfTbFgJMMN JdNLsCwVLvggd5N/0CQtTWhak/7sgcAA -----END CERTIFICATE-----Generated at Sat Jun 14 19:34:34 2025 by rpki-client