$ rpki-client -vvf rpki.apnic.net/member_repository/A91C0C0B/4459448C2C6A11EA9CECBF4AC4F9AE02/AShwXWnFHg4rB4rtuZiR5_GbTR8.mft File: AShwXWnFHg4rB4rtuZiR5_GbTR8.mft (raw, json) Hash identifier: mzUlYsu0NdizqRnvBixU3NxzEhkgJIMnS+NUWzZyBt4= Subject key identifier: 6B:F4:B2:E4:40:CF:C2:70:62:61:9F:F6:AC:03:6B:FE:36:CA:CD:5A Authority key identifier: 01:28:70:5D:69:C5:1E:0E:2B:07:8A:ED:B9:98:91:E7:F1:9B:4D:1F Certificate issuer: /CN=A91C0C0B/serialNumber=0128705D69C51E0E2B078AEDB99891E7F19B4D1F Certificate serial: 0B94 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AShwXWnFHg4rB4rtuZiR5_GbTR8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C0C0B/4459448C2C6A11EA9CECBF4AC4F9AE02/AShwXWnFHg4rB4rtuZiR5_GbTR8.mft Manifest number: 0B86 Signing time: Wed 18 Jun 2025 18:55:15 +0000 Manifest this update: Wed 18 Jun 2025 18:55:15 +0000 Manifest next update: Wed 25 Jun 2025 18:55:15 +0000 Files and hashes: 1: AShwXWnFHg4rB4rtuZiR5_GbTR8.crl (hash: 1003p9q0JDqPqDAL97pGv1HmB/wUAZxyIY2YvYm79mQ=) 2: E85B23282DF211EAA63F5D60C4F9AE02.roa (hash: mo/NLmT3qTw906fWZIYD+HCMnaLWUZhtdPeHn3oqJ6A=) 3: 71E30CDCC4ED11EAA1C5766AC4F9AE02.roa (hash: vucacXYSTLw3pjicQM0MXD2U1//BsbEO3gpX4wVcXB8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C0C0B/4459448C2C6A11EA9CECBF4AC4F9AE02/AShwXWnFHg4rB4rtuZiR5_GbTR8.crl rsync://rpki.apnic.net/member_repository/A91C0C0B/4459448C2C6A11EA9CECBF4AC4F9AE02/AShwXWnFHg4rB4rtuZiR5_GbTR8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AShwXWnFHg4rB4rtuZiR5_GbTR8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 25 Jun 2025 18:55:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2964 (0xb94) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C0C0B, serialNumber=0128705D69C51E0E2B078AEDB99891E7F19B4D1F Validity Not Before: Jun 18 18:55:15 2025 GMT Not After : Jun 25 18:55:15 2025 GMT Subject: CN=68530b93-5cc6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:3e:38:92:43:bc:07:dd:96:4e:3e:b7:19:68: bc:d5:29:59:04:8e:e7:99:ff:a3:96:e7:2e:40:bc: 55:26:2c:28:78:de:d1:8e:47:c6:00:cf:d8:b7:86: 99:1a:73:32:ed:c3:f5:a8:29:7d:69:d2:41:26:75: a3:34:d8:63:a9:b7:d6:fe:e6:44:da:72:60:9b:f1: bf:ef:e4:24:1d:e8:d8:da:38:f3:79:34:7a:78:14: c7:d1:00:34:8b:c9:1a:e7:c4:8b:2d:8a:5e:2f:90: 4f:95:98:68:82:a0:34:c2:c3:0e:b2:9f:65:ec:6d: 9f:0d:d5:8b:0e:7e:2a:2f:01:a8:b9:4c:22:90:60: 7b:3e:be:80:30:be:b3:36:67:da:f0:ad:2d:8a:a8: 14:a5:b1:4b:4a:bb:77:31:27:e3:b5:c9:1a:5e:4c: ca:33:cf:42:29:5f:e5:ec:4e:f3:2c:04:60:0f:94: 0b:33:ad:22:7f:1f:a8:32:b7:77:63:db:0a:81:91: 07:0c:92:76:86:d0:78:dd:fa:79:9d:d4:4d:d0:eb: 80:aa:be:43:05:83:7a:ee:32:41:df:b2:5d:c5:95: 92:33:0e:34:92:70:1c:44:55:36:9a:95:30:25:cf: 02:01:7a:40:14:bd:d3:c2:6e:c3:d9:6f:e5:cd:02: da:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6B:F4:B2:E4:40:CF:C2:70:62:61:9F:F6:AC:03:6B:FE:36:CA:CD:5A X509v3 Authority Key Identifier: keyid:01:28:70:5D:69:C5:1E:0E:2B:07:8A:ED:B9:98:91:E7:F1:9B:4D:1F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C0C0B/4459448C2C6A11EA9CECBF4AC4F9AE02/AShwXWnFHg4rB4rtuZiR5_GbTR8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AShwXWnFHg4rB4rtuZiR5_GbTR8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C0C0B/4459448C2C6A11EA9CECBF4AC4F9AE02/AShwXWnFHg4rB4rtuZiR5_GbTR8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 48:02:5d:c2:7a:fe:e8:6e:e7:22:21:bd:91:78:41:c4:12:ba: ac:04:16:e6:4b:ad:27:33:75:b7:88:12:0e:2d:65:b7:b3:db: 21:b7:49:98:a4:d0:4d:96:b2:c0:79:80:96:f5:67:b5:ce:89: 11:c8:2d:ab:79:c4:06:ea:86:43:40:08:f6:ac:86:fa:e1:97: 4e:da:30:1b:3e:95:2d:76:e4:bc:ce:ce:25:e4:30:79:61:f7: c8:77:e7:81:f8:e8:f1:23:d9:98:55:34:e7:7a:0e:e8:6b:77: 3f:76:90:c0:be:02:18:f8:73:61:b8:ac:a5:4d:32:6a:db:75: d5:75:75:d4:e8:3b:0a:38:ee:42:a6:c2:0e:84:73:2a:86:6b: b2:11:17:53:02:9f:93:75:56:10:ee:77:00:4e:bc:82:53:7e: de:86:e3:bd:5a:89:a8:aa:96:33:25:1d:86:aa:6e:50:bb:23: 13:3f:96:e9:bb:a2:c7:d8:9e:05:e0:11:23:04:f6:81:30:7a: 4b:a7:8b:6c:d1:b2:87:27:c6:e8:ed:81:d9:0e:79:fb:6b:6e: 96:e8:d0:eb:c8:84:f3:74:53:b0:96:24:f5:f5:53:a9:de:ca: db:6a:15:d7:ec:55:f2:74:59:ab:71:b3:33:81:ca:1b:63:39: f0:32:52:77 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC5QwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzBDMEIxMTAvBgNVBAUTKDAxMjg3MDVENjlDNTFFMEUyQjA3OEFFREI5OTg5MUU3 RjE5QjREMUYwHhcNMjUwNjE4MTg1NTE1WhcNMjUwNjI1MTg1NTE1WjAYMRYwFAYD VQQDEw02ODUzMGI5My01Y2M2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmj44kkO8B92WTj63GWi81SlZBI7nmf+jlucuQLxVJiwoeN7RjkfGAM/Yt4aZ GnMy7cP1qCl9adJBJnWjNNhjqbfW/uZE2nJgm/G/7+QkHejY2jjzeTR6eBTH0QA0 i8ka58SLLYpeL5BPlZhogqA0wsMOsp9l7G2fDdWLDn4qLwGouUwikGB7Pr6AML6z Nmfa8K0tiqgUpbFLSrt3MSfjtckaXkzKM89CKV/l7E7zLARgD5QLM60ifx+oMrd3 Y9sKgZEHDJJ2htB43fp5ndRN0OuAqr5DBYN67jJB37JdxZWSMw40knAcRFU2mpUw Jc8CAXpAFL3Twm7D2W/lzQLaDQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGv0suRA z8JwYmGf9qwDa/42ys1aMB8GA1UdIwQYMBaAFAEocF1pxR4OKweK7bmYkefxm00f MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMEMwQi80NDU5NDQ4QzJD NkExMUVBOUNFQ0JGNEFDNEY5QUUwMi9BU2h3WFduRkhnNHJCNHJ0dVppUjVfR2JU UjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0FTaHdYV25GSGc0ckI0cnR1WmlSNV9HYlRSOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MEMwQi80NDU5NDQ4QzJDNkExMUVBOUNFQ0JGNEFDNEY5QUUwMi9BU2h3WFduRkhn NHJCNHJ0dVppUjVfR2JUUjgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBIAl3Cev7obuciIb2ReEHEErqsBBbmS60nM3W3iBIOLWW3s9sht0mY pNBNlrLAeYCW9We1zokRyC2recQG6oZDQAj2rIb64ZdO2jAbPpUtduS8zs4l5DB5 YffId+eB+OjxI9mYVTTneg7oa3c/dpDAvgIY+HNhuKylTTJq23XVdXXU6DsKOO5C psIOhHMqhmuyERdTAp+TdVYQ7ncATryCU37ehuO9WomoqpYzJR2Gqm5QuyMTP5bp u6LH2J4F4BEjBPaBMHpLp4ts0bKHJ8bo7YHZDnn7a26W6NDryITzdFOwliT19VOp 3srbahXX7FXydFmrcbMzgcobYznwMlJ3 -----END CERTIFICATE-----Generated at Fri Jun 20 03:00:40 2025 by rpki-client