$ rpki-client -vvf rpki.apnic.net/member_repository/A91B477B/1C256270725011EBB648F84EC4F9AE02/H8Tf0A2sNKjrhGPTlRwio0WDesk.mft File: H8Tf0A2sNKjrhGPTlRwio0WDesk.mft (raw, json) Hash identifier: SUjUqlq51bmb/kYIrAMdHQY8DI4uO9PDJ+1Hv9ZlS/8= Subject key identifier: 2B:D1:B2:CA:78:1B:E8:75:45:47:44:29:8D:A6:B9:6A:1A:3B:F6:92 Authority key identifier: 1F:C4:DF:D0:0D:AC:34:A8:EB:84:63:D3:95:1C:22:A3:45:83:7A:C9 Certificate issuer: /CN=A91B477B/serialNumber=1FC4DFD00DAC34A8EB8463D3951C22A345837AC9 Certificate serial: 06AD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/H8Tf0A2sNKjrhGPTlRwio0WDesk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B477B/1C256270725011EBB648F84EC4F9AE02/H8Tf0A2sNKjrhGPTlRwio0WDesk.mft Manifest number: 06A0 Signing time: Sun 22 Jun 2025 21:46:19 +0000 Manifest this update: Sun 22 Jun 2025 21:46:19 +0000 Manifest next update: Sun 29 Jun 2025 21:46:19 +0000 Files and hashes: 1: H8Tf0A2sNKjrhGPTlRwio0WDesk.crl (hash: ay5iHIonD0q3Ta5qTqhZAGrt8FsqXFOpPkaXHncre2w=) 2: 22F72E28725311EBA9C51756C4F9AE02.roa (hash: jYjWFz3EGxandnR9opo8f6aMMLeOf+7OXo3+jH6tu9c=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B477B/1C256270725011EBB648F84EC4F9AE02/H8Tf0A2sNKjrhGPTlRwio0WDesk.crl rsync://rpki.apnic.net/member_repository/A91B477B/1C256270725011EBB648F84EC4F9AE02/H8Tf0A2sNKjrhGPTlRwio0WDesk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/H8Tf0A2sNKjrhGPTlRwio0WDesk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 29 Jun 2025 21:46:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1709 (0x6ad) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B477B, serialNumber=1FC4DFD00DAC34A8EB8463D3951C22A345837AC9 Validity Not Before: Jun 22 21:46:19 2025 GMT Not After : Jun 29 21:46:19 2025 GMT Subject: CN=685879ab-3ddf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ef:5d:25:12:39:6e:8a:af:6c:08:66:7d:24:74: 92:ac:26:24:33:88:3b:8f:70:2a:5c:49:e7:7f:4e: 17:2d:d9:53:a6:4a:1f:09:99:28:f8:94:90:19:98: ec:30:1c:30:e2:db:96:55:14:0b:d3:e3:12:56:9e: 25:dc:6a:ef:d5:9f:eb:d0:29:30:95:ba:e9:a3:7f: f9:e6:fb:29:84:84:5c:11:93:ad:44:88:11:8c:bb: a2:3b:db:a3:1e:b1:13:66:c5:15:19:fe:9e:cf:c1: f1:18:16:6d:53:c5:29:79:9c:06:5a:bb:d8:c5:7e: b9:23:c5:c5:98:08:6a:27:54:d5:3a:8a:a1:42:ec: b0:5c:61:a0:13:78:66:d1:92:8a:d4:a5:c6:45:af: 77:43:83:5d:87:ed:2e:11:3f:43:a7:21:2f:34:e5: ee:68:12:9d:3d:ca:94:3d:aa:ef:4b:24:19:c8:58: 7d:7b:00:00:10:cd:4e:f8:e0:4e:80:50:7f:18:47: 40:24:d6:63:11:50:c3:15:e4:85:4f:e4:37:a7:0b: 28:4e:f9:93:9a:2b:f4:f4:e0:a4:79:12:fe:d4:81: 26:61:30:96:96:ab:8b:09:3d:7b:a3:83:09:4e:b3: 96:99:a6:4e:fb:24:12:39:9a:46:f2:b1:52:f3:7a: 83:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2B:D1:B2:CA:78:1B:E8:75:45:47:44:29:8D:A6:B9:6A:1A:3B:F6:92 X509v3 Authority Key Identifier: keyid:1F:C4:DF:D0:0D:AC:34:A8:EB:84:63:D3:95:1C:22:A3:45:83:7A:C9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B477B/1C256270725011EBB648F84EC4F9AE02/H8Tf0A2sNKjrhGPTlRwio0WDesk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/H8Tf0A2sNKjrhGPTlRwio0WDesk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B477B/1C256270725011EBB648F84EC4F9AE02/H8Tf0A2sNKjrhGPTlRwio0WDesk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ab:fb:68:d2:5c:1b:ca:22:67:60:f3:6b:6a:9a:d6:5f:57:7e: cc:ad:fd:4b:13:80:f3:8e:f5:b0:6d:89:c6:d6:b1:05:77:01: bb:14:57:1c:db:d9:ba:65:6c:8d:5d:a8:4a:44:8e:03:fe:7f: 61:a5:58:6a:d1:79:e7:52:28:e1:c5:1e:9f:f6:8c:42:fd:1b: b7:6e:e8:c9:07:87:c4:e5:fe:5c:c8:27:36:68:3d:aa:c7:83: da:a9:6b:8f:5b:85:3f:ef:be:1a:46:f1:ef:62:c5:0e:0c:a3: d1:25:f9:79:4f:97:ae:a9:73:a6:3a:ca:2d:17:24:52:ff:68: b7:c1:e3:12:99:76:63:e2:5f:94:a8:29:c4:27:1f:58:8f:2e: 63:ef:ee:3e:a4:54:4c:e0:15:e8:e5:be:ea:43:10:bd:b0:fd: 19:36:ca:cf:4e:19:11:59:17:0e:14:b9:80:26:3a:d1:93:39: 5e:ac:90:9d:20:1d:2f:3c:45:2e:7e:a7:c2:b2:a3:1e:b6:f7: bd:80:4c:bb:30:f1:4f:ff:b4:01:65:ae:30:dc:05:40:54:3b: ab:1c:53:34:5b:ff:c2:1c:d2:d6:4d:6c:c1:a7:b1:d1:b4:70: ee:39:92:9e:61:82:7e:cb:c8:5d:af:dd:12:2b:84:aa:d8:27: d0:f8:31:09 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBq0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjQ3N0IxMTAvBgNVBAUTKDFGQzRERkQwMERBQzM0QThFQjg0NjNEMzk1MUMyMkEz NDU4MzdBQzkwHhcNMjUwNjIyMjE0NjE5WhcNMjUwNjI5MjE0NjE5WjAYMRYwFAYD VQQDEw02ODU4NzlhYi0zZGRmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA710lEjluiq9sCGZ9JHSSrCYkM4g7j3AqXEnnf04XLdlTpkofCZko+JSQGZjs MBww4tuWVRQL0+MSVp4l3Grv1Z/r0Ckwlbrpo3/55vsphIRcEZOtRIgRjLuiO9uj HrETZsUVGf6ez8HxGBZtU8UpeZwGWrvYxX65I8XFmAhqJ1TVOoqhQuywXGGgE3hm 0ZKK1KXGRa93Q4Ndh+0uET9DpyEvNOXuaBKdPcqUParvSyQZyFh9ewAAEM1O+OBO gFB/GEdAJNZjEVDDFeSFT+Q3pwsoTvmTmiv09OCkeRL+1IEmYTCWlquLCT17o4MJ TrOWmaZO+yQSOZpG8rFS83qDGQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCvRssp4 G+h1RUdEKY2muWoaO/aSMB8GA1UdIwQYMBaAFB/E39ANrDSo64Rj05UcIqNFg3rJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNDc3Qi8xQzI1NjI3MDcy NTAxMUVCQjY0OEY4NEVDNEY5QUUwMi9IOFRmMEEyc05LanJoR1BUbFJ3aW8wV0Rl c2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0g4VGYwQTJzTktqcmhHUFRsUndpbzBXRGVzay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NDc3Qi8xQzI1NjI3MDcyNTAxMUVCQjY0OEY4NEVDNEY5QUUwMi9IOFRmMEEyc05L anJoR1BUbFJ3aW8wV0Rlc2subWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCr+2jSXBvKImdg82tqmtZfV37Mrf1LE4DzjvWwbYnG1rEFdwG7FFcc 29m6ZWyNXahKRI4D/n9hpVhq0XnnUijhxR6f9oxC/Ru3bujJB4fE5f5cyCc2aD2q x4PaqWuPW4U/774aRvHvYsUODKPRJfl5T5euqXOmOsotFyRS/2i3weMSmXZj4l+U qCnEJx9Yjy5j7+4+pFRM4BXo5b7qQxC9sP0ZNsrPThkRWRcOFLmAJjrRkzlerJCd IB0vPEUufqfCsqMetve9gEy7MPFP/7QBZa4w3AVAVDurHFM0W//CHNLWTWzBp7HR tHDuOZKeYYJ+y8hdr90SK4Sq2CfQ+DEJ -----END CERTIFICATE-----Generated at Mon Jun 23 05:51:39 2025 by rpki-client