$ rpki-client -vvf rpki.apnic.net/member_repository/A91BD9B7/14980498F9D911EB8D2B0E3EC4F9AE02/8goyYNssxWGzO2TeFLAR8poeJBQ.mft File: 8goyYNssxWGzO2TeFLAR8poeJBQ.mft (raw, json) Hash identifier: 6xYjWyuuABwROv3D/dk2uCqntlwBmyCvWjIjwCk/OKc= Subject key identifier: EB:54:E8:1B:9F:D2:AC:0B:52:4C:37:2F:48:FB:B6:AF:48:CB:A8:27 Authority key identifier: F2:0A:32:60:DB:2C:C5:61:B3:3B:64:DE:14:B0:11:F2:9A:1E:24:14 Certificate issuer: /CN=A91BD9B7/serialNumber=F20A3260DB2CC561B33B64DE14B011F29A1E2414 Certificate serial: 053F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8goyYNssxWGzO2TeFLAR8poeJBQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BD9B7/14980498F9D911EB8D2B0E3EC4F9AE02/8goyYNssxWGzO2TeFLAR8poeJBQ.mft Manifest number: 053A Signing time: Sat 14 Jun 2025 23:12:28 +0000 Manifest this update: Sat 14 Jun 2025 23:12:28 +0000 Manifest next update: Sat 21 Jun 2025 23:12:28 +0000 Files and hashes: 1: 8goyYNssxWGzO2TeFLAR8poeJBQ.crl (hash: Edtcr6uFp3eFsXXhe2+ddgugL5mb3ymMMMput41X++s=) 2: 713C4814F9DC11EBA9C81A44C4F9AE02.roa (hash: CQpWK2+G2LnLlpiGc5AJJ6xJWy2B0MtLT56Nh25qbzU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BD9B7/14980498F9D911EB8D2B0E3EC4F9AE02/8goyYNssxWGzO2TeFLAR8poeJBQ.crl rsync://rpki.apnic.net/member_repository/A91BD9B7/14980498F9D911EB8D2B0E3EC4F9AE02/8goyYNssxWGzO2TeFLAR8poeJBQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8goyYNssxWGzO2TeFLAR8poeJBQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Jun 2025 23:12:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1343 (0x53f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BD9B7, serialNumber=F20A3260DB2CC561B33B64DE14B011F29A1E2414 Validity Not Before: Jun 14 23:12:28 2025 GMT Not After : Jun 21 23:12:28 2025 GMT Subject: CN=684e01dc-1b1b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:56:98:15:16:73:88:9e:1c:2e:c5:5d:fe:c0: fd:3b:9a:19:6e:6c:6c:2c:f1:b9:49:37:d1:d3:e7: 7e:53:42:0b:bd:93:d4:3a:a0:02:e5:63:d3:26:64: 17:66:f5:f4:74:1f:cf:be:2e:55:44:78:f5:e1:ff: 3d:71:fb:0c:f6:68:bc:7e:7e:5f:44:8e:c9:5b:77: 0e:d7:e8:b6:51:10:d4:5f:38:a4:77:0e:c7:72:60: 5d:c7:fd:8c:48:0d:02:ba:d2:e9:ff:b3:fa:c8:da: 45:de:20:80:6b:d4:a8:b2:e4:42:2f:c0:b1:0a:63: e3:4a:de:a7:99:52:c3:f7:32:71:68:5e:70:0e:e7: 8b:2f:8b:68:f2:10:86:12:59:47:69:57:7e:03:cf: 9a:22:d9:2c:af:ca:94:b5:39:77:44:5f:51:b4:3c: a9:ec:b7:67:76:ca:a7:f7:ab:c4:37:19:aa:aa:53: 42:dc:39:96:0f:3e:73:ba:af:f6:34:1e:b3:51:7d: 3b:00:24:c1:61:e7:09:f8:50:30:6e:24:4e:ba:59: 88:db:35:b4:dc:07:f1:72:10:5f:12:8d:5d:1f:d3: 66:34:0b:ce:3c:2d:3a:6b:4f:64:08:29:13:ff:64: 64:6d:d7:94:02:51:07:2a:87:cb:91:b8:18:05:b4: e6:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EB:54:E8:1B:9F:D2:AC:0B:52:4C:37:2F:48:FB:B6:AF:48:CB:A8:27 X509v3 Authority Key Identifier: keyid:F2:0A:32:60:DB:2C:C5:61:B3:3B:64:DE:14:B0:11:F2:9A:1E:24:14 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BD9B7/14980498F9D911EB8D2B0E3EC4F9AE02/8goyYNssxWGzO2TeFLAR8poeJBQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8goyYNssxWGzO2TeFLAR8poeJBQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BD9B7/14980498F9D911EB8D2B0E3EC4F9AE02/8goyYNssxWGzO2TeFLAR8poeJBQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 48:62:b7:63:4e:ed:b1:7f:19:ec:d8:97:5c:55:cf:de:92:d6: e8:a2:d3:f9:92:18:c0:58:b5:ed:3f:98:17:bb:03:d9:40:e7: b3:d1:ef:72:68:51:67:c5:4d:2a:aa:cb:36:c6:0b:fe:ee:ef: 36:b2:05:5e:d7:ad:3d:46:c4:bc:bd:43:04:04:ba:52:e4:c8: b1:26:22:67:39:a1:78:15:32:ab:4c:a6:25:54:5e:79:3c:8c: cd:c2:f1:d9:c0:76:5c:f8:70:be:1a:84:6c:c1:d3:20:7c:70: 43:13:6b:b2:9f:53:cf:00:df:e4:40:92:4c:5b:14:c9:a6:8c: ce:52:d7:fa:b8:33:14:a9:ad:8c:07:5f:c3:42:ac:93:42:17: 90:e5:d9:9f:3c:a5:3c:7b:b7:c3:34:91:37:9e:f5:a8:51:19: 52:a7:49:4d:1d:d9:ce:d5:92:e8:ad:ad:f4:6f:dd:04:cd:ff: 4f:60:2a:e4:37:db:31:0f:9a:2b:c3:f9:15:bc:89:4a:59:a1: c1:39:61:f9:fd:f0:d8:a6:9c:b2:e0:d1:c9:d8:c1:92:69:23: d0:2d:15:99:1b:0f:58:cf:1e:26:80:27:b7:55:4e:be:42:0e: 9b:3c:ca:6c:a3:54:04:9d:73:fd:15:a0:aa:c6:3b:5a:dd:2d: d3:81:2f:90 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBT8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkQ5QjcxMTAvBgNVBAUTKEYyMEEzMjYwREIyQ0M1NjFCMzNCNjRERTE0QjAxMUYy OUExRTI0MTQwHhcNMjUwNjE0MjMxMjI4WhcNMjUwNjIxMjMxMjI4WjAYMRYwFAYD VQQDEw02ODRlMDFkYy0xYjFiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxVaYFRZziJ4cLsVd/sD9O5oZbmxsLPG5STfR0+d+U0ILvZPUOqAC5WPTJmQX ZvX0dB/Pvi5VRHj14f89cfsM9mi8fn5fRI7JW3cO1+i2URDUXzikdw7HcmBdx/2M SA0CutLp/7P6yNpF3iCAa9SosuRCL8CxCmPjSt6nmVLD9zJxaF5wDueLL4to8hCG EllHaVd+A8+aItksr8qUtTl3RF9RtDyp7Ldndsqn96vENxmqqlNC3DmWDz5zuq/2 NB6zUX07ACTBYecJ+FAwbiROulmI2zW03AfxchBfEo1dH9NmNAvOPC06a09kCCkT /2RkbdeUAlEHKofLkbgYBbTmiwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOtU6Buf 0qwLUkw3L0j7tq9Iy6gnMB8GA1UdIwQYMBaAFPIKMmDbLMVhsztk3hSwEfKaHiQU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCRDlCNy8xNDk4MDQ5OEY5 RDkxMUVCOEQyQjBFM0VDNEY5QUUwMi84Z295WU5zc3hXR3pPMlRlRkxBUjhwb2VK QlEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzhnb3lZTnNzeFdHek8yVGVGTEFSOHBvZUpCUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC RDlCNy8xNDk4MDQ5OEY5RDkxMUVCOEQyQjBFM0VDNEY5QUUwMi84Z295WU5zc3hX R3pPMlRlRkxBUjhwb2VKQlEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBIYrdjTu2xfxns2JdcVc/ektbootP5khjAWLXtP5gXuwPZQOez0e9y aFFnxU0qqss2xgv+7u82sgVe1609RsS8vUMEBLpS5MixJiJnOaF4FTKrTKYlVF55 PIzNwvHZwHZc+HC+GoRswdMgfHBDE2uyn1PPAN/kQJJMWxTJpozOUtf6uDMUqa2M B1/DQqyTQheQ5dmfPKU8e7fDNJE3nvWoURlSp0lNHdnO1ZLora30b90Ezf9PYCrk N9sxD5orw/kVvIlKWaHBOWH5/fDYppyy4NHJ2MGSaSPQLRWZGw9Yzx4mgCe3VU6+ Qg6bPMpso1QEnXP9FaCqxjta3S3TgS+Q -----END CERTIFICATE-----Generated at Sun Jun 15 08:51:14 2025 by rpki-client