$ rpki-client -vvf rpki.apnic.net/member_repository/A91B8D33/59626710477711EEA6BD537EC4F9AE02/CNaM9FAHRTdf8sxYS6X75Xe-4z8.mft File: CNaM9FAHRTdf8sxYS6X75Xe-4z8.mft (raw, json) Hash identifier: v3+mQc06DWJKrcb6VgP5rkAuElTcedv+i0qsXFHE5Ug= Subject key identifier: 78:42:00:26:CC:DF:10:FC:07:2D:C6:08:53:41:FE:77:C0:89:49:D7 Authority key identifier: 08:D6:8C:F4:50:07:45:37:5F:F2:CC:58:4B:A5:FB:E5:77:BE:E3:3F Certificate issuer: /CN=A91B8D33/serialNumber=08D68CF4500745375FF2CC584BA5FBE577BEE33F Certificate serial: 0161 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CNaM9FAHRTdf8sxYS6X75Xe-4z8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B8D33/59626710477711EEA6BD537EC4F9AE02/CNaM9FAHRTdf8sxYS6X75Xe-4z8.mft Manifest number: 0157 Signing time: Fri 13 Jun 2025 03:08:42 +0000 Manifest this update: Fri 13 Jun 2025 03:08:41 +0000 Manifest next update: Fri 20 Jun 2025 03:08:41 +0000 Files and hashes: 1: CNaM9FAHRTdf8sxYS6X75Xe-4z8.crl (hash: JAY0ZMdNdTMxswDeruxx5R6WuD1dBZtoIqrQ3QxTzBo=) 2: E62F8796D1BD11EFBCCC0B68C4F9AE02.roa (hash: fNs1z1deex6fcIdqMxez0n/drhicpYWMQnLuUAo17fo=) 3: 86D7DAE6D1C211EF9AA9410EC4F9AE02.roa (hash: ygqqEQTyg2IH19vlQAL4kX0HHDThJX4eE1C7WPj4wYg=) 4: C698E13ED1BD11EF9C00D867C4F9AE02.roa (hash: xRbmb+/1S1f8++5LVT2TgnO4g2wWlkEYjHuBK2BLWRw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B8D33/59626710477711EEA6BD537EC4F9AE02/CNaM9FAHRTdf8sxYS6X75Xe-4z8.crl rsync://rpki.apnic.net/member_repository/A91B8D33/59626710477711EEA6BD537EC4F9AE02/CNaM9FAHRTdf8sxYS6X75Xe-4z8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CNaM9FAHRTdf8sxYS6X75Xe-4z8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 20 Jun 2025 03:08:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 353 (0x161) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B8D33, serialNumber=08D68CF4500745375FF2CC584BA5FBE577BEE33F Validity Not Before: Jun 13 03:08:41 2025 GMT Not After : Jun 20 03:08:41 2025 GMT Subject: CN=684b9639-d822 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:f7:32:38:b5:95:c1:49:d4:38:47:7d:ef:1a: 90:d2:65:53:61:e1:2b:32:5e:af:cd:7c:4c:14:b7: 09:fd:69:eb:ca:a4:d5:69:d2:0b:51:c5:f1:03:00: d9:bf:52:41:12:a2:ef:13:f1:1a:e2:00:0f:92:04: d8:18:fe:8c:ef:6c:88:c9:79:77:c7:ef:07:bd:a9: af:ef:6c:6e:81:38:60:4f:94:fb:7e:1f:b9:97:3b: 11:37:a5:5a:57:4b:be:ff:20:f7:04:6b:b6:b7:51: 49:92:95:9d:67:fd:33:58:85:1f:d6:a1:33:e0:b8: 23:52:44:e3:98:75:51:d1:41:53:e5:6f:d1:38:17: 36:15:b3:51:7b:62:f6:66:7e:88:ea:13:26:f8:87: 81:c0:fc:6f:5d:10:60:2d:bc:a6:6a:e9:74:ce:8e: d2:f5:f8:09:76:be:3c:be:35:15:44:e4:17:45:9a: 2c:7f:1e:7d:b6:c5:b6:23:80:14:93:58:94:f9:df: ea:79:37:7d:c0:4f:be:8c:aa:53:e9:a1:2b:f6:18: a9:21:f9:64:62:fe:84:8f:34:db:e2:56:3f:60:09: 9b:04:f7:24:87:67:49:54:be:00:d9:21:03:39:11: a5:a1:5b:f0:00:47:19:d0:38:45:c8:a6:af:ba:df: 03:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 78:42:00:26:CC:DF:10:FC:07:2D:C6:08:53:41:FE:77:C0:89:49:D7 X509v3 Authority Key Identifier: keyid:08:D6:8C:F4:50:07:45:37:5F:F2:CC:58:4B:A5:FB:E5:77:BE:E3:3F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B8D33/59626710477711EEA6BD537EC4F9AE02/CNaM9FAHRTdf8sxYS6X75Xe-4z8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CNaM9FAHRTdf8sxYS6X75Xe-4z8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B8D33/59626710477711EEA6BD537EC4F9AE02/CNaM9FAHRTdf8sxYS6X75Xe-4z8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 73:ca:38:3f:71:22:be:c3:ec:27:0e:2f:92:ad:1f:3d:84:7a: 38:d8:e7:1e:d5:6f:cf:65:41:31:27:33:5a:8e:3f:4a:77:6b: f8:63:a8:4e:3a:b6:88:13:0d:bd:0d:71:05:e3:d4:32:c3:d7: 12:cb:d3:de:8b:bd:f9:8c:1b:88:54:d9:32:45:16:8f:8b:97: be:6f:ec:7d:39:d9:7c:6d:03:32:01:44:62:1e:ee:bc:49:c2: 1b:b8:1e:5d:30:85:fd:f2:ea:a4:a3:1e:63:34:e5:68:6d:fb: 14:2f:99:84:be:45:5c:fb:38:9d:91:f4:77:c1:3a:d3:68:b4: b0:b6:81:4d:d1:82:59:c5:4e:7b:93:2a:e8:54:21:ae:5f:2b: 1a:82:7c:85:78:ac:f3:4c:37:db:7d:27:be:32:67:02:e2:9c: 9a:8e:63:d3:36:b3:71:bf:85:3e:a9:42:df:12:3c:e0:75:83: a0:64:a6:f5:47:84:35:21:24:dd:a4:40:7e:cd:8a:eb:e1:36: 3f:a2:da:0d:7c:c1:0a:0e:82:bb:4c:12:b4:ce:36:c8:53:c4: d3:70:32:07:2c:52:cd:11:1b:15:ef:f8:45:aa:a2:85:05:dd: 10:53:ef:92:de:99:b1:79:bb:9f:d1:82:9b:84:06:7e:5e:e1: f9:84:fa:a2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAWEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjhEMzMxMTAvBgNVBAUTKDA4RDY4Q0Y0NTAwNzQ1Mzc1RkYyQ0M1ODRCQTVGQkU1 NzdCRUUzM0YwHhcNMjUwNjEzMDMwODQxWhcNMjUwNjIwMDMwODQxWjAYMRYwFAYD VQQDEw02ODRiOTYzOS1kODIyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyfcyOLWVwUnUOEd97xqQ0mVTYeErMl6vzXxMFLcJ/WnryqTVadILUcXxAwDZ v1JBEqLvE/Ea4gAPkgTYGP6M72yIyXl3x+8Hvamv72xugThgT5T7fh+5lzsRN6Va V0u+/yD3BGu2t1FJkpWdZ/0zWIUf1qEz4LgjUkTjmHVR0UFT5W/ROBc2FbNRe2L2 Zn6I6hMm+IeBwPxvXRBgLbymaul0zo7S9fgJdr48vjUVROQXRZosfx59tsW2I4AU k1iU+d/qeTd9wE++jKpT6aEr9hipIflkYv6EjzTb4lY/YAmbBPckh2dJVL4A2SED ORGloVvwAEcZ0DhFyKavut8DbQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHhCACbM 3xD8By3GCFNB/nfAiUnXMB8GA1UdIwQYMBaAFAjWjPRQB0U3X/LMWEul++V3vuM/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCOEQzMy81OTYyNjcxMDQ3 NzcxMUVFQTZCRDUzN0VDNEY5QUUwMi9DTmFNOUZBSFJUZGY4c3hZUzZYNzVYZS00 ejguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NOYU05RkFIUlRkZjhzeFlTNlg3NVhlLTR6OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC OEQzMy81OTYyNjcxMDQ3NzcxMUVFQTZCRDUzN0VDNEY5QUUwMi9DTmFNOUZBSFJU ZGY4c3hZUzZYNzVYZS00ejgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBzyjg/cSK+w+wnDi+SrR89hHo42Oce1W/PZUExJzNajj9Kd2v4Y6hO OraIEw29DXEF49Qyw9cSy9Pei735jBuIVNkyRRaPi5e+b+x9Odl8bQMyAURiHu68 ScIbuB5dMIX98uqkox5jNOVobfsUL5mEvkVc+zidkfR3wTrTaLSwtoFN0YJZxU57 kyroVCGuXysagnyFeKzzTDfbfSe+MmcC4pyajmPTNrNxv4U+qULfEjzgdYOgZKb1 R4Q1ISTdpEB+zYrr4TY/otoNfMEKDoK7TBK0zjbIU8TTcDIHLFLNERsV7/hFqqKF Bd0QU++S3pmxebuf0YKbhAZ+XuH5hPqi -----END CERTIFICATE-----Generated at Sat Jun 14 18:38:52 2025 by rpki-client