$ rpki-client -vvf rpki.apnic.net/member_repository/A91B3CA4/15F68B5CCF1911EAAEF60B1EC4F9AE02/tY0p97gQfxWFtf_nDFAsbI9dMwI.mft File: tY0p97gQfxWFtf_nDFAsbI9dMwI.mft (raw, json) Hash identifier: pog/bzE7QCXPs+qJugUUCuq7YLQHuKo9mSD+isOOAr4= Subject key identifier: A4:BA:5B:16:43:9D:1C:68:E7:CB:9A:AC:39:17:84:BC:40:1C:22:64 Authority key identifier: B5:8D:29:F7:B8:10:7F:15:85:B5:FF:E7:0C:50:2C:6C:8F:5D:33:02 Certificate issuer: /CN=A91B3CA4/serialNumber=B58D29F7B8107F1585B5FFE70C502C6C8F5D3302 Certificate serial: 0863 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tY0p97gQfxWFtf_nDFAsbI9dMwI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B3CA4/15F68B5CCF1911EAAEF60B1EC4F9AE02/tY0p97gQfxWFtf_nDFAsbI9dMwI.mft Manifest number: 084A Signing time: Sat 14 Jun 2025 20:32:54 +0000 Manifest this update: Sat 14 Jun 2025 20:32:54 +0000 Manifest next update: Sat 21 Jun 2025 20:32:54 +0000 Files and hashes: 1: tY0p97gQfxWFtf_nDFAsbI9dMwI.crl (hash: UrvK+BRaeWnB/L+Qu65sE2vAX8+EkRnd1vz/mLl+MkY=) 2: C33EB0EC7C4211EB933D233EC4F9AE02.roa (hash: V3s4r52s3OPKDLcYcdmKSn/0GHVPcogcj1iQaYzRFaU=) 3: 3C3F21BAD6F011EE9B38B67DC4F9AE02.roa (hash: w/43LlQIYPABEvYlfxDIIPmu3emguiTlymMjfBLzQJU=) 4: 8F44F16A4BCC11EDA2E6375FC4F9AE02.roa (hash: khDPT7nUu2MBxImumtcyIV73z19WxJClk9M9DnU+8VY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B3CA4/15F68B5CCF1911EAAEF60B1EC4F9AE02/tY0p97gQfxWFtf_nDFAsbI9dMwI.crl rsync://rpki.apnic.net/member_repository/A91B3CA4/15F68B5CCF1911EAAEF60B1EC4F9AE02/tY0p97gQfxWFtf_nDFAsbI9dMwI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tY0p97gQfxWFtf_nDFAsbI9dMwI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Jun 2025 20:32:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2147 (0x863) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B3CA4, serialNumber=B58D29F7B8107F1585B5FFE70C502C6C8F5D3302 Validity Not Before: Jun 14 20:32:54 2025 GMT Not After : Jun 21 20:32:54 2025 GMT Subject: CN=684ddc76-0377 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:68:e4:5c:8f:c9:67:cf:e1:2e:70:cc:ff:b4: bc:bc:71:48:2c:37:1e:b9:43:b6:e7:89:b3:d3:e0: ae:4c:41:3a:65:0e:d6:ae:02:d6:b3:f0:d5:d4:b6: 64:93:37:82:3c:c0:74:46:04:c0:0d:88:8f:d7:25: 20:79:01:20:0a:cb:93:f4:3d:56:ba:81:06:ce:d2: 6f:a9:bd:ad:72:79:87:98:72:20:d0:fe:18:af:83: 11:30:90:bc:de:03:c9:cd:4c:d1:3f:df:9f:94:9a: 9f:ef:4d:fd:90:6e:0f:d0:8a:aa:88:e2:77:ea:d5: 02:b9:45:31:b9:6a:f4:1f:f3:59:09:33:51:2d:ea: e4:6c:ba:94:83:95:67:80:dc:e7:49:df:4f:d2:dd: 73:e3:f4:4c:b1:60:9f:08:61:c0:68:a5:73:93:3d: f8:ce:07:d7:2f:15:d7:80:32:82:35:af:fc:c8:1d: d2:6a:af:61:71:d2:6f:2e:9b:7b:2c:92:fc:9a:b7: 9a:08:b0:e7:5d:c3:14:aa:b1:15:87:fe:a4:9b:bc: b0:0f:90:74:cb:c3:53:75:e1:06:91:cd:b9:be:a2: 92:b1:ed:45:75:8e:03:4c:46:3a:9f:49:a7:40:07: 97:2c:79:f5:09:ad:e1:2d:98:e9:8f:0a:05:70:9d: a4:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A4:BA:5B:16:43:9D:1C:68:E7:CB:9A:AC:39:17:84:BC:40:1C:22:64 X509v3 Authority Key Identifier: keyid:B5:8D:29:F7:B8:10:7F:15:85:B5:FF:E7:0C:50:2C:6C:8F:5D:33:02 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B3CA4/15F68B5CCF1911EAAEF60B1EC4F9AE02/tY0p97gQfxWFtf_nDFAsbI9dMwI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tY0p97gQfxWFtf_nDFAsbI9dMwI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B3CA4/15F68B5CCF1911EAAEF60B1EC4F9AE02/tY0p97gQfxWFtf_nDFAsbI9dMwI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 91:4f:2e:18:b3:b0:14:9c:d7:cf:b3:ec:38:2f:c0:a6:38:94: d0:77:c9:50:41:06:be:71:f2:c9:e8:84:da:7e:29:e4:d4:59: 20:65:9a:74:1c:6c:23:ea:85:f6:f6:29:0c:f4:1c:36:46:72: 2b:41:76:11:e6:fc:a5:df:c6:84:30:bd:d7:dc:d3:c9:aa:db: f6:1a:41:bb:c2:2b:57:e5:e3:da:43:9c:74:3d:76:f7:0c:75: bb:14:e6:6b:b4:6d:26:de:fe:81:92:34:67:63:76:fe:07:ae: 97:b2:7a:53:14:0d:d9:21:42:b0:2d:29:e8:b6:48:bf:31:86: f9:e8:49:87:d1:a1:b4:41:17:ad:1a:62:0e:e1:a9:f7:d6:59: e5:66:5a:43:3e:cf:49:f2:1c:48:5e:35:a9:6d:12:17:e2:5e: a6:e9:44:42:79:ca:d2:ed:4b:fa:86:33:99:cc:62:10:4c:aa: 65:a5:47:dc:54:59:59:b9:9c:f6:7b:db:d8:3c:51:ef:0c:f0: 75:1f:07:81:00:2d:ad:21:fd:e3:99:52:f7:99:a5:4e:2e:62: a3:ef:bb:be:b3:52:db:32:86:21:24:a3:9e:84:bc:19:70:4f: 3a:f0:27:e4:d0:a2:df:dd:b5:2c:1c:38:84:67:93:d9:17:29: 7f:3d:70:17 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCGMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjNDQTQxMTAvBgNVBAUTKEI1OEQyOUY3QjgxMDdGMTU4NUI1RkZFNzBDNTAyQzZD OEY1RDMzMDIwHhcNMjUwNjE0MjAzMjU0WhcNMjUwNjIxMjAzMjU0WjAYMRYwFAYD VQQDEw02ODRkZGM3Ni0wMzc3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtGjkXI/JZ8/hLnDM/7S8vHFILDceuUO254mz0+CuTEE6ZQ7WrgLWs/DV1LZk kzeCPMB0RgTADYiP1yUgeQEgCsuT9D1WuoEGztJvqb2tcnmHmHIg0P4Yr4MRMJC8 3gPJzUzRP9+flJqf7039kG4P0IqqiOJ36tUCuUUxuWr0H/NZCTNRLerkbLqUg5Vn gNznSd9P0t1z4/RMsWCfCGHAaKVzkz34zgfXLxXXgDKCNa/8yB3Saq9hcdJvLpt7 LJL8mreaCLDnXcMUqrEVh/6km7ywD5B0y8NTdeEGkc25vqKSse1FdY4DTEY6n0mn QAeXLHn1Ca3hLZjpjwoFcJ2kqQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKS6WxZD nRxo58uarDkXhLxAHCJkMB8GA1UdIwQYMBaAFLWNKfe4EH8VhbX/5wxQLGyPXTMC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCM0NBNC8xNUY2OEI1Q0NG MTkxMUVBQUVGNjBCMUVDNEY5QUUwMi90WTBwOTdnUWZ4V0Z0Zl9uREZBc2JJOWRN d0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RZMHA5N2dRZnhXRnRmX25ERkFzYkk5ZE13SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC M0NBNC8xNUY2OEI1Q0NGMTkxMUVBQUVGNjBCMUVDNEY5QUUwMi90WTBwOTdnUWZ4 V0Z0Zl9uREZBc2JJOWRNd0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCRTy4Ys7AUnNfPs+w4L8CmOJTQd8lQQQa+cfLJ6ITafink1FkgZZp0 HGwj6oX29ikM9Bw2RnIrQXYR5vyl38aEML3X3NPJqtv2GkG7witX5ePaQ5x0PXb3 DHW7FOZrtG0m3v6BkjRnY3b+B66XsnpTFA3ZIUKwLSnotki/MYb56EmH0aG0QRet GmIO4an31lnlZlpDPs9J8hxIXjWpbRIX4l6m6URCecrS7Uv6hjOZzGIQTKplpUfc VFlZuZz2e9vYPFHvDPB1HweBAC2tIf3jmVL3maVOLmKj77u+s1LbMoYhJKOehLwZ cE868Cfk0KLf3bUsHDiEZ5PZFyl/PXAX -----END CERTIFICATE-----Generated at Sun Jun 15 08:38:57 2025 by rpki-client