$ rpki-client -vvf rpki.apnic.net/member_repository/A91C21C7/54222FD08FAB11E39362EF355911EA32/0rwrzA84njpcUzzEc6fENrsbdNk.mft File: 0rwrzA84njpcUzzEc6fENrsbdNk.mft (raw, json) Hash identifier: Zr0JkzpZW51c9B7b9N4l3sY+kslDIOQVQqn+LwrR1aE= Subject key identifier: 0E:62:19:1A:87:CB:7A:68:FA:02:32:B9:50:98:24:B0:40:80:A4:A1 Authority key identifier: D2:BC:2B:CC:0F:38:9E:3A:5C:53:3C:C4:73:A7:C4:36:BB:1B:74:D9 Certificate issuer: /CN=A91C21C7/serialNumber=D2BC2BCC0F389E3A5C533CC473A7C436BB1B74D9 Certificate serial: 2D73 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0rwrzA84njpcUzzEc6fENrsbdNk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C21C7/54222FD08FAB11E39362EF355911EA32/0rwrzA84njpcUzzEc6fENrsbdNk.mft Manifest number: 2D4E Signing time: Sat 14 Jun 2025 15:29:52 +0000 Manifest this update: Sat 14 Jun 2025 15:29:51 +0000 Manifest next update: Sat 21 Jun 2025 15:29:51 +0000 Files and hashes: 1: 0rwrzA84njpcUzzEc6fENrsbdNk.crl (hash: lHcrEPKvSLA+9yEY+wazkTG75XKwkE00PqcwndMetOw=) 2: E2AD90E813E811E9B287C144C4F9AE02.roa (hash: CwjqOoJS53tpi81tzFuwu956lUr2HE8GT6aAkGCmQ3k=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C21C7/54222FD08FAB11E39362EF355911EA32/0rwrzA84njpcUzzEc6fENrsbdNk.crl rsync://rpki.apnic.net/member_repository/A91C21C7/54222FD08FAB11E39362EF355911EA32/0rwrzA84njpcUzzEc6fENrsbdNk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0rwrzA84njpcUzzEc6fENrsbdNk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Jun 2025 15:29:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11635 (0x2d73) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C21C7, serialNumber=D2BC2BCC0F389E3A5C533CC473A7C436BB1B74D9 Validity Not Before: Jun 14 15:29:51 2025 GMT Not After : Jun 21 15:29:51 2025 GMT Subject: CN=684d956f-e335 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:aa:8e:42:7f:e6:f3:ca:ca:63:81:76:bb:c0: 52:de:95:b3:fe:7b:27:02:b6:65:d8:93:c6:ae:cd: d6:2a:ec:b9:ca:a3:75:f2:f0:d6:6c:01:27:b3:6f: fb:87:0b:eb:b1:3e:64:55:46:d0:40:ca:82:e7:82: b2:1a:b9:ce:1d:64:0a:40:e4:ca:69:4d:ca:90:98: 21:6f:b7:c0:1c:5c:59:32:9d:75:b4:79:26:92:15: 83:62:d1:1b:0f:8b:08:95:42:9e:9e:15:6b:06:93: b5:09:ca:17:8b:3b:3f:df:1e:83:9e:50:67:7b:4b: f6:28:37:78:40:7c:eb:2f:2b:ac:2c:c5:59:17:16: 9f:a4:fa:4a:bc:d3:37:82:fe:52:77:84:bc:93:cb: 23:b5:ab:99:4f:93:29:0b:1e:93:e6:51:a5:0c:a1: 7e:85:85:7c:f1:1d:a2:39:21:56:12:cb:76:fd:59: c2:99:2f:50:05:86:a7:f6:6d:57:73:de:fe:f9:b0: e3:c2:ad:5e:a8:78:99:85:09:59:8f:9a:7c:e0:62: 95:01:f8:0c:09:2d:8c:42:5a:2d:59:b4:ee:9d:5e: ae:45:e1:85:a9:db:be:97:a1:8a:c4:60:06:f8:24: 5c:bf:66:a9:f9:da:04:30:f8:e1:8d:33:41:83:b8: dd:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0E:62:19:1A:87:CB:7A:68:FA:02:32:B9:50:98:24:B0:40:80:A4:A1 X509v3 Authority Key Identifier: keyid:D2:BC:2B:CC:0F:38:9E:3A:5C:53:3C:C4:73:A7:C4:36:BB:1B:74:D9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C21C7/54222FD08FAB11E39362EF355911EA32/0rwrzA84njpcUzzEc6fENrsbdNk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0rwrzA84njpcUzzEc6fENrsbdNk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C21C7/54222FD08FAB11E39362EF355911EA32/0rwrzA84njpcUzzEc6fENrsbdNk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 81:b5:cf:1e:2e:62:f7:99:27:79:77:5d:4c:da:12:b4:79:e3: e3:0d:01:f4:79:b9:c6:28:26:e4:e0:15:04:a4:cc:a9:55:58: bd:1e:94:37:a7:54:89:d0:40:0d:81:ac:ed:93:98:a9:a3:cf: 96:13:00:62:37:fd:78:ae:12:37:df:d4:27:98:4a:7d:c3:09: 4e:e5:a9:8e:80:de:d3:76:de:53:77:58:91:97:cb:b1:fb:e6: ad:a0:71:9f:9e:4e:86:85:0b:8e:76:80:80:77:6b:97:b0:c2: 06:b1:37:6b:31:86:4f:e6:16:6b:ac:c1:8f:f1:77:3c:42:81: 53:67:c1:c2:e7:c3:be:0b:29:0e:1e:9f:3f:73:e2:54:0a:16: 31:b3:89:6a:ee:2f:9e:11:04:e9:11:ef:27:fc:87:a3:c0:68: c7:15:6e:03:ca:ec:b8:0a:13:f6:b4:63:c1:94:41:6c:bd:91: c3:7b:c3:16:e4:08:de:9a:ce:bf:00:d7:c7:6b:bc:b8:38:af: 90:9e:63:3e:fe:42:ac:8b:48:2d:c2:1e:de:36:6c:3b:89:c0: d8:f8:31:27:b8:b5:5e:31:2b:36:e4:55:49:23:18:61:22:9d: ea:c4:7a:47:49:f0:de:c1:41:18:a5:ad:d8:a7:d1:0d:57:01: 1d:62:66:b2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICLXMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzIxQzcxMTAvBgNVBAUTKEQyQkMyQkNDMEYzODlFM0E1QzUzM0NDNDczQTdDNDM2 QkIxQjc0RDkwHhcNMjUwNjE0MTUyOTUxWhcNMjUwNjIxMTUyOTUxWjAYMRYwFAYD VQQDEw02ODRkOTU2Zi1lMzM1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwKqOQn/m88rKY4F2u8BS3pWz/nsnArZl2JPGrs3WKuy5yqN18vDWbAEns2/7 hwvrsT5kVUbQQMqC54KyGrnOHWQKQOTKaU3KkJghb7fAHFxZMp11tHkmkhWDYtEb D4sIlUKenhVrBpO1CcoXizs/3x6DnlBne0v2KDd4QHzrLyusLMVZFxafpPpKvNM3 gv5Sd4S8k8sjtauZT5MpCx6T5lGlDKF+hYV88R2iOSFWEst2/VnCmS9QBYan9m1X c97++bDjwq1eqHiZhQlZj5p84GKVAfgMCS2MQlotWbTunV6uReGFqdu+l6GKxGAG +CRcv2ap+doEMPjhjTNBg7jdnQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFA5iGRqH y3po+gIyuVCYJLBAgKShMB8GA1UdIwQYMBaAFNK8K8wPOJ46XFM8xHOnxDa7G3TZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMjFDNy81NDIyMkZEMDhG QUIxMUUzOTM2MkVGMzU1OTExRUEzMi8wcndyekE4NG5qcGNVenpFYzZmRU5yc2Jk TmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzByd3J6QTg0bmpwY1V6ekVjNmZFTnJzYmROay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MjFDNy81NDIyMkZEMDhGQUIxMUUzOTM2MkVGMzU1OTExRUEzMi8wcndyekE4NG5q cGNVenpFYzZmRU5yc2JkTmsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCBtc8eLmL3mSd5d11M2hK0eePjDQH0ebnGKCbk4BUEpMypVVi9HpQ3 p1SJ0EANgaztk5ipo8+WEwBiN/14rhI339QnmEp9wwlO5amOgN7Tdt5Td1iRl8ux ++atoHGfnk6GhQuOdoCAd2uXsMIGsTdrMYZP5hZrrMGP8Xc8QoFTZ8HC58O+CykO Hp8/c+JUChYxs4lq7i+eEQTpEe8n/IejwGjHFW4Dyuy4ChP2tGPBlEFsvZHDe8MW 5Ajems6/ANfHa7y4OK+QnmM+/kKsi0gtwh7eNmw7icDY+DEnuLVeMSs25FVJIxhh Ip3qxHpHSfDewUEYpa3Yp9ENVwEdYmay -----END CERTIFICATE-----Generated at Sun Jun 15 09:56:41 2025 by rpki-client