$ rpki-client -vvf rpki.apnic.net/member_repository/A91B829A/1F23E058057F11EAA5516B3FC4F9AE02/iV5rynpcNtnzBEctDScTpILJ2yU.mft File: iV5rynpcNtnzBEctDScTpILJ2yU.mft (raw, json) Hash identifier: R9b+qDjzfqHLu5lAtOmybJ8OQvv7tyb2DyMdBXxFTXw= Subject key identifier: 0F:5F:27:1B:E1:BD:32:2A:0C:5E:58:EA:CE:E5:B8:D7:37:8B:61:3C Authority key identifier: 89:5E:6B:CA:7A:5C:36:D9:F3:04:47:2D:0D:27:13:A4:82:C9:DB:25 Certificate issuer: /CN=A91B829A/serialNumber=895E6BCA7A5C36D9F304472D0D2713A482C9DB25 Certificate serial: 0C56 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iV5rynpcNtnzBEctDScTpILJ2yU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B829A/1F23E058057F11EAA5516B3FC4F9AE02/iV5rynpcNtnzBEctDScTpILJ2yU.mft Manifest number: 0C4C Signing time: Sat 14 Jun 2025 18:18:57 +0000 Manifest this update: Sat 14 Jun 2025 18:18:56 +0000 Manifest next update: Sat 21 Jun 2025 18:18:56 +0000 Files and hashes: 1: iV5rynpcNtnzBEctDScTpILJ2yU.crl (hash: MU2BuktgqgxyHqh0vCrGo5/d+M+G4qJRC8FW4s8aTgc=) 2: 37759456617811ECBB095A62C4F9AE02.roa (hash: v3SUpuH8xWSras56GKvRnCYqonsTS7bWwXVAuKOWPmw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B829A/1F23E058057F11EAA5516B3FC4F9AE02/iV5rynpcNtnzBEctDScTpILJ2yU.crl rsync://rpki.apnic.net/member_repository/A91B829A/1F23E058057F11EAA5516B3FC4F9AE02/iV5rynpcNtnzBEctDScTpILJ2yU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iV5rynpcNtnzBEctDScTpILJ2yU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Jun 2025 18:18:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3158 (0xc56) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B829A, serialNumber=895E6BCA7A5C36D9F304472D0D2713A482C9DB25 Validity Not Before: Jun 14 18:18:56 2025 GMT Not After : Jun 21 18:18:56 2025 GMT Subject: CN=684dbd10-707c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:94:ea:b7:95:59:52:11:16:61:1e:42:ba:e2:f4: 50:e9:87:50:4a:f0:85:31:68:d6:42:c9:4c:b8:4e: 0b:f4:c4:75:41:8b:a0:1f:cc:2b:20:e0:4c:42:70: 20:c5:eb:02:00:e6:f1:c2:4d:11:37:ab:6c:d2:b9: 2b:08:ac:d4:87:de:28:e5:27:64:99:6b:9e:4a:cf: b9:6e:a9:f1:13:61:da:6c:0c:27:5d:52:88:ca:8a: 37:11:92:7d:9d:23:e0:49:f2:fc:de:04:b5:42:4a: ee:a1:c8:29:bc:6b:c9:8b:3a:91:4a:a5:c0:04:fe: af:0c:24:aa:f7:cd:05:e8:43:ed:aa:b2:50:b1:3a: ff:61:e9:e7:23:40:b1:56:88:21:b2:c4:6e:6a:28: 10:eb:3a:92:68:86:68:66:2f:28:ba:7b:dd:95:78: 7f:11:5a:10:00:74:22:e5:44:de:5c:2f:d5:9b:f6: 5a:36:ca:eb:eb:5b:cb:0a:85:0c:3d:d9:3a:0e:9e: 8a:ab:f5:30:d4:42:28:19:4d:10:63:28:20:e6:b1: aa:05:a7:44:ad:20:ae:c5:2f:b5:dc:f2:64:bf:79: 3c:57:51:11:b1:86:b0:27:d0:e1:3c:f5:51:09:89: 6a:b7:8c:62:de:d9:65:2c:75:49:cd:e0:15:f9:d7: 10:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0F:5F:27:1B:E1:BD:32:2A:0C:5E:58:EA:CE:E5:B8:D7:37:8B:61:3C X509v3 Authority Key Identifier: keyid:89:5E:6B:CA:7A:5C:36:D9:F3:04:47:2D:0D:27:13:A4:82:C9:DB:25 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B829A/1F23E058057F11EAA5516B3FC4F9AE02/iV5rynpcNtnzBEctDScTpILJ2yU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iV5rynpcNtnzBEctDScTpILJ2yU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B829A/1F23E058057F11EAA5516B3FC4F9AE02/iV5rynpcNtnzBEctDScTpILJ2yU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 44:36:ff:ae:34:cc:82:30:7a:60:6d:ce:05:2c:2f:89:7a:fa: e0:36:ba:97:1f:cb:ca:4a:39:bd:46:c9:2e:cc:0e:61:b5:74: c1:16:59:90:6b:92:01:61:35:2a:e6:58:e9:ca:c1:8a:1c:02: 90:fa:d2:de:93:74:fa:43:de:df:c6:22:b8:99:1c:24:ce:3b: b9:ed:3d:ba:6b:54:26:02:3e:db:a5:0a:72:f5:fb:9a:79:6f: 19:a7:83:3a:df:c5:5f:a0:b1:b0:21:a4:6c:9b:41:7c:85:72: dc:10:59:a7:ba:e4:06:b4:c6:6d:07:5e:29:f0:37:69:af:39: b9:36:ac:15:9e:4e:c8:1c:fd:6e:9c:db:47:45:48:17:6d:a5: 97:4c:ba:a8:65:45:e5:59:c9:4a:cd:0a:a7:9e:fc:de:58:d8: f3:0c:f1:0e:9b:2b:22:db:cd:0c:80:17:9b:76:54:c6:7e:e6: 16:6f:56:43:50:55:8a:1a:37:fa:d2:a8:53:cd:01:7e:5e:6a: e7:be:36:d8:56:3e:0c:c4:aa:33:a6:4d:99:10:f7:4f:e3:5f: bb:91:5c:e4:c4:f3:3e:48:fe:09:70:ff:be:65:0a:65:cd:2e: 90:ff:e7:e0:70:4b:9a:c2:c9:d5:00:a7:44:78:ac:e2:8c:31: b8:aa:14:bc -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDFYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjgyOUExMTAvBgNVBAUTKDg5NUU2QkNBN0E1QzM2RDlGMzA0NDcyRDBEMjcxM0E0 ODJDOURCMjUwHhcNMjUwNjE0MTgxODU2WhcNMjUwNjIxMTgxODU2WjAYMRYwFAYD VQQDEw02ODRkYmQxMC03MDdjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAlOq3lVlSERZhHkK64vRQ6YdQSvCFMWjWQslMuE4L9MR1QYugH8wrIOBMQnAg xesCAObxwk0RN6ts0rkrCKzUh94o5SdkmWueSs+5bqnxE2HabAwnXVKIyoo3EZJ9 nSPgSfL83gS1QkruocgpvGvJizqRSqXABP6vDCSq980F6EPtqrJQsTr/YennI0Cx VoghssRuaigQ6zqSaIZoZi8ounvdlXh/EVoQAHQi5UTeXC/Vm/ZaNsrr61vLCoUM Pdk6Dp6Kq/Uw1EIoGU0QYygg5rGqBadErSCuxS+13PJkv3k8V1ERsYawJ9DhPPVR CYlqt4xi3tllLHVJzeAV+dcQ9wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFA9fJxvh vTIqDF5Y6s7luNc3i2E8MB8GA1UdIwQYMBaAFIlea8p6XDbZ8wRHLQ0nE6SCydsl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCODI5QS8xRjIzRTA1ODA1 N0YxMUVBQTU1MTZCM0ZDNEY5QUUwMi9pVjVyeW5wY050bnpCRWN0RFNjVHBJTEoy eVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lWNXJ5bnBjTnRuekJFY3REU2NUcElMSjJ5VS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC ODI5QS8xRjIzRTA1ODA1N0YxMUVBQTU1MTZCM0ZDNEY5QUUwMi9pVjVyeW5wY050 bnpCRWN0RFNjVHBJTEoyeVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBENv+uNMyCMHpgbc4FLC+JevrgNrqXH8vKSjm9RskuzA5htXTBFlmQ a5IBYTUq5ljpysGKHAKQ+tLek3T6Q97fxiK4mRwkzju57T26a1QmAj7bpQpy9fua eW8Zp4M638VfoLGwIaRsm0F8hXLcEFmnuuQGtMZtB14p8Ddprzm5NqwVnk7IHP1u nNtHRUgXbaWXTLqoZUXlWclKzQqnnvzeWNjzDPEOmysi280MgBebdlTGfuYWb1ZD UFWKGjf60qhTzQF+XmrnvjbYVj4MxKozpk2ZEPdP41+7kVzkxPM+SP4JcP++ZQpl zS6Q/+fgcEuawsnVAKdEeKzijDG4qhS8 -----END CERTIFICATE-----Generated at Sun Jun 15 09:35:52 2025 by rpki-client