$ rpki-client -vvf rpki.apnic.net/member_repository/A91BE096/2FBB440E334511E998C5673BC4F9AE02/Sr2iSte9no2c77NZONCoeIBMYuQ.mft File: Sr2iSte9no2c77NZONCoeIBMYuQ.mft (raw, json) Hash identifier: zCD7jEbYpqwoinMnHANWJGGRGfcj5kMHSqZl4Re66ok= Subject key identifier: FC:5C:9B:6C:5C:0C:6B:CB:30:1B:BB:AE:33:C8:35:9A:14:F7:F3:C0 Authority key identifier: 4A:BD:A2:4A:D7:BD:9E:8D:9C:EF:B3:59:38:D0:A8:78:80:4C:62:E4 Certificate issuer: /CN=A91BE096/serialNumber=4ABDA24AD7BD9E8D9CEFB35938D0A878804C62E4 Certificate serial: 10A3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Sr2iSte9no2c77NZONCoeIBMYuQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BE096/2FBB440E334511E998C5673BC4F9AE02/Sr2iSte9no2c77NZONCoeIBMYuQ.mft Manifest number: 108A Signing time: Sat 14 Jun 2025 17:17:10 +0000 Manifest this update: Sat 14 Jun 2025 17:17:10 +0000 Manifest next update: Sat 21 Jun 2025 17:17:10 +0000 Files and hashes: 1: Sr2iSte9no2c77NZONCoeIBMYuQ.crl (hash: 8jDfFLinppK9tV4me9znNFvP0peJi8x1Sry1dKQzok4=) 2: 60E695B6C52A11EE80D54071C4F9AE02.roa (hash: Ur8W3C7QgJQkw3BnGAD55weFMOItsdqD/26WShAlLaM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BE096/2FBB440E334511E998C5673BC4F9AE02/Sr2iSte9no2c77NZONCoeIBMYuQ.crl rsync://rpki.apnic.net/member_repository/A91BE096/2FBB440E334511E998C5673BC4F9AE02/Sr2iSte9no2c77NZONCoeIBMYuQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Sr2iSte9no2c77NZONCoeIBMYuQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Jun 2025 17:17:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4259 (0x10a3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BE096, serialNumber=4ABDA24AD7BD9E8D9CEFB35938D0A878804C62E4 Validity Not Before: Jun 14 17:17:10 2025 GMT Not After : Jun 21 17:17:10 2025 GMT Subject: CN=684dae96-a2ee Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:3e:fe:79:57:8c:14:e4:30:7b:fe:97:bd:ab: 24:18:40:87:34:e5:f0:74:28:4a:e3:0f:2c:35:f1: 20:54:65:49:f1:b6:60:67:12:44:e0:f6:d4:75:5a: 4d:20:b2:78:93:c7:a6:f9:2e:94:1c:6d:5b:ba:fb: e3:06:7c:a5:48:93:e1:41:13:62:a0:fa:02:45:95: 8c:40:8b:c9:a3:6c:a3:ae:96:46:65:54:95:0a:43: 24:9c:6d:04:61:3f:ff:75:90:33:e7:e5:32:5e:11: 7a:19:a1:1d:c5:9b:9f:c6:95:42:97:1a:7a:57:65: 54:ab:b6:54:7a:10:b7:9a:0d:e2:80:a8:95:a5:58: 77:43:b3:41:a6:ed:29:8c:c8:7f:24:87:cb:71:ca: 2e:ee:de:ce:5a:34:11:e2:ee:61:db:09:ee:20:23: 36:f6:b0:d1:b9:dd:58:1c:d6:c1:ee:1b:00:c9:67: 8f:84:50:c3:7e:19:e0:d6:84:4d:5e:10:4a:a6:4a: 55:8f:2b:11:ac:7f:e6:cb:de:c4:b6:fb:a4:ad:e6: 4d:29:b1:a0:a1:0e:11:ea:59:34:0b:a4:06:b5:ea: 8e:a6:a7:b1:32:47:a2:bc:87:11:0b:97:7c:8f:cd: 5c:72:ea:d1:58:a0:4e:6e:96:e0:68:c4:ba:ed:0c: 43:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FC:5C:9B:6C:5C:0C:6B:CB:30:1B:BB:AE:33:C8:35:9A:14:F7:F3:C0 X509v3 Authority Key Identifier: keyid:4A:BD:A2:4A:D7:BD:9E:8D:9C:EF:B3:59:38:D0:A8:78:80:4C:62:E4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BE096/2FBB440E334511E998C5673BC4F9AE02/Sr2iSte9no2c77NZONCoeIBMYuQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Sr2iSte9no2c77NZONCoeIBMYuQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BE096/2FBB440E334511E998C5673BC4F9AE02/Sr2iSte9no2c77NZONCoeIBMYuQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 89:71:d3:ba:5a:7b:f3:20:b3:0d:5d:e5:c3:e2:b4:9b:ae:8c: cf:8e:c6:43:37:d9:6c:03:d8:d6:af:52:72:70:b4:ed:4b:56: f9:92:0a:f1:34:1b:91:83:9a:de:2a:b8:45:97:56:99:47:f9: 23:01:59:11:f7:3b:81:81:18:81:39:ac:2d:ca:9b:19:4b:e7: 58:99:d4:79:50:e2:04:0f:eb:7c:e4:9c:16:a8:bc:c5:a6:14: 40:d7:38:f7:42:ac:89:bf:f5:04:57:91:ea:1f:71:6c:b2:68: de:4d:7e:d1:0a:40:47:3d:6b:72:7c:36:54:ac:1e:dc:fb:54: 60:b2:12:76:c5:be:9a:1a:0c:b1:59:f8:f8:8c:eb:6d:bf:b6: e6:6d:73:7f:da:37:98:75:93:67:3b:bc:db:89:8b:38:e9:78: cf:e2:b6:b2:a7:71:ea:80:c2:81:ab:83:5d:ca:1c:e2:5c:59: 9f:bf:18:45:99:e1:c3:d7:e2:6c:c9:1d:37:38:7c:07:3a:c7: 4c:81:e3:4c:a9:da:9d:be:ce:ba:e5:37:f8:1f:f1:64:01:cb: f3:21:d5:1d:b7:93:29:95:d6:af:6c:f1:e3:a6:0b:c4:a1:05: a5:f3:7b:fc:27:0a:d9:bb:8f:a6:96:5e:be:21:97:9d:02:6c: c7:03:24:79 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEKMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkUwOTYxMTAvBgNVBAUTKDRBQkRBMjRBRDdCRDlFOEQ5Q0VGQjM1OTM4RDBBODc4 ODA0QzYyRTQwHhcNMjUwNjE0MTcxNzEwWhcNMjUwNjIxMTcxNzEwWjAYMRYwFAYD VQQDEw02ODRkYWU5Ni1hMmVlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0D7+eVeMFOQwe/6XvaskGECHNOXwdChK4w8sNfEgVGVJ8bZgZxJE4PbUdVpN ILJ4k8em+S6UHG1buvvjBnylSJPhQRNioPoCRZWMQIvJo2yjrpZGZVSVCkMknG0E YT//dZAz5+UyXhF6GaEdxZufxpVClxp6V2VUq7ZUehC3mg3igKiVpVh3Q7NBpu0p jMh/JIfLccou7t7OWjQR4u5h2wnuICM29rDRud1YHNbB7hsAyWePhFDDfhng1oRN XhBKpkpVjysRrH/my97EtvukreZNKbGgoQ4R6lk0C6QGteqOpqexMkeivIcRC5d8 j81ccurRWKBObpbgaMS67QxDGQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPxcm2xc DGvLMBu7rjPINZoU9/PAMB8GA1UdIwQYMBaAFEq9okrXvZ6NnO+zWTjQqHiATGLk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCRTA5Ni8yRkJCNDQwRTMz NDUxMUU5OThDNTY3M0JDNEY5QUUwMi9TcjJpU3RlOW5vMmM3N05aT05Db2VJQk1Z dVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1NyMmlTdGU5bm8yYzc3TlpPTkNvZUlCTVl1US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC RTA5Ni8yRkJCNDQwRTMzNDUxMUU5OThDNTY3M0JDNEY5QUUwMi9TcjJpU3RlOW5v MmM3N05aT05Db2VJQk1ZdVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCJcdO6WnvzILMNXeXD4rSbrozPjsZDN9lsA9jWr1JycLTtS1b5kgrx NBuRg5reKrhFl1aZR/kjAVkR9zuBgRiBOawtypsZS+dYmdR5UOIED+t85JwWqLzF phRA1zj3QqyJv/UEV5HqH3FssmjeTX7RCkBHPWtyfDZUrB7c+1RgshJ2xb6aGgyx Wfj4jOttv7bmbXN/2jeYdZNnO7zbiYs46XjP4rayp3HqgMKBq4NdyhziXFmfvxhF meHD1+JsyR03OHwHOsdMgeNMqdqdvs665Tf4H/FkAcvzIdUdt5MpldavbPHjpgvE oQWl83v8JwrZu4+mll6+IZedAmzHAyR5 -----END CERTIFICATE-----Generated at Sun Jun 15 08:38:09 2025 by rpki-client