$ rpki-client -vvf rpki.apnic.net/member_repository/A91C23FE/825CE9AAF9EB11E6BDE7A968C4F9AE02/4vB0KtgKnbsodRhO4N1elN11eEs.mft File: 4vB0KtgKnbsodRhO4N1elN11eEs.mft (raw, json) Hash identifier: VypTYYMAz5vSsVJXY17oactmtSL9FrDKTIPS7ztUQno= Subject key identifier: 96:6C:51:6A:2B:0D:D4:72:26:A7:FD:AA:B7:B9:C0:A5:15:C0:E9:31 Authority key identifier: E2:F0:74:2A:D8:0A:9D:BB:28:75:18:4E:E0:DD:5E:94:DD:75:78:4B Certificate issuer: /CN=A91C23FE/serialNumber=E2F0742AD80A9DBB2875184EE0DD5E94DD75784B Certificate serial: 1BE6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4vB0KtgKnbsodRhO4N1elN11eEs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C23FE/825CE9AAF9EB11E6BDE7A968C4F9AE02/4vB0KtgKnbsodRhO4N1elN11eEs.mft Manifest number: 1BDC Signing time: Sat 14 Jun 2025 16:12:01 +0000 Manifest this update: Sat 14 Jun 2025 16:12:01 +0000 Manifest next update: Sat 21 Jun 2025 16:12:01 +0000 Files and hashes: 1: 4vB0KtgKnbsodRhO4N1elN11eEs.crl (hash: VC3PNMegJOOly71SaRSpWcXqZhNaOep8Iyth7P5Wdj0=) 2: A88F22ECCC7011ED931BD15FC4F9AE02.roa (hash: BCcYD/VfHPlrE1idB6qMcYHXBoKVsq99H3ysbvhT4uw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C23FE/825CE9AAF9EB11E6BDE7A968C4F9AE02/4vB0KtgKnbsodRhO4N1elN11eEs.crl rsync://rpki.apnic.net/member_repository/A91C23FE/825CE9AAF9EB11E6BDE7A968C4F9AE02/4vB0KtgKnbsodRhO4N1elN11eEs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4vB0KtgKnbsodRhO4N1elN11eEs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Jun 2025 16:12:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7142 (0x1be6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C23FE, serialNumber=E2F0742AD80A9DBB2875184EE0DD5E94DD75784B Validity Not Before: Jun 14 16:12:01 2025 GMT Not After : Jun 21 16:12:01 2025 GMT Subject: CN=684d9f51-bd84 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:e5:0a:8e:3b:28:e0:a6:ee:69:48:3f:2c:ed: e3:ce:9f:5c:58:52:43:38:d5:48:87:71:16:9c:0a: 45:95:fe:67:46:94:ab:b4:33:82:45:5b:79:d9:62: d4:01:f8:92:66:ff:55:45:1b:23:1b:9a:2b:8e:57: be:b7:21:46:0a:a9:bf:b4:e5:97:5b:54:f6:d5:ff: f0:13:ff:62:f2:0c:6d:70:ad:27:e7:59:d6:e8:5f: 74:d0:13:98:89:dd:9b:a1:b8:69:94:cd:3c:9d:7b: a9:58:69:56:50:0d:4d:0b:e4:e2:95:07:3a:dd:66: a1:3d:5a:eb:b5:21:0d:e1:77:d2:24:a4:61:83:67: b3:58:1d:0b:da:56:71:4b:1e:21:aa:d2:f6:07:ed: 0f:9d:3f:b0:ba:37:00:79:80:8c:83:05:0f:c9:dc: ba:2c:da:db:8b:74:39:d1:33:20:34:b8:3a:ce:01: 37:b6:b9:b7:c2:39:9c:2a:de:44:e4:3a:6e:6b:eb: eb:fd:13:b7:47:5c:a3:3c:6d:fe:43:20:17:cf:5b: dd:a2:79:8e:ff:a7:c7:a2:f2:6e:9d:d1:45:63:ed: e6:c4:36:33:15:aa:64:26:30:8c:dd:1c:ec:6b:37: 56:a9:2e:25:fc:92:98:d7:33:5a:0d:af:31:09:f0: 11:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 96:6C:51:6A:2B:0D:D4:72:26:A7:FD:AA:B7:B9:C0:A5:15:C0:E9:31 X509v3 Authority Key Identifier: keyid:E2:F0:74:2A:D8:0A:9D:BB:28:75:18:4E:E0:DD:5E:94:DD:75:78:4B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C23FE/825CE9AAF9EB11E6BDE7A968C4F9AE02/4vB0KtgKnbsodRhO4N1elN11eEs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4vB0KtgKnbsodRhO4N1elN11eEs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C23FE/825CE9AAF9EB11E6BDE7A968C4F9AE02/4vB0KtgKnbsodRhO4N1elN11eEs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 42:c9:95:11:f8:91:27:6a:27:73:a7:22:2f:93:37:87:c5:68: 16:83:78:bc:5d:ac:68:fd:38:8c:e1:5d:40:b4:3a:50:a0:fa: cc:5e:a1:cd:c0:d6:ca:ca:4e:f2:4d:2c:a7:2d:ca:f2:9b:b9: a1:f5:56:62:a7:50:9e:30:7f:d8:af:e6:3b:f4:70:b7:32:0a: 36:71:f3:81:c7:9d:95:61:69:7b:df:8f:b3:96:62:c5:b0:c2: 2e:ce:c3:cb:0a:14:41:cb:64:25:29:9a:84:88:c7:67:a4:5a: a8:60:59:7f:f6:fc:77:e1:b7:cc:78:6a:b3:2c:b7:84:f9:e4: 1c:d1:a8:f7:97:58:43:44:5b:74:ff:8e:ea:94:13:80:84:af: b4:d0:07:62:74:06:d8:31:03:6f:0f:76:67:c5:cc:a4:cd:dd: 32:57:76:c2:14:37:d0:58:8c:44:e1:cf:48:b2:1d:cc:91:d0: 48:76:ab:cd:e9:49:76:33:69:73:c4:6b:ba:33:1b:76:8e:bf: 92:4a:49:d8:e6:62:a5:dc:05:da:72:f0:ab:d6:ed:01:82:5a: 03:6a:70:47:e4:da:7b:67:67:2b:de:e3:eb:ed:2d:91:3e:d3: 6b:0a:b2:1c:42:06:a9:0b:06:9b:13:34:5a:54:c7:1c:a4:31: 0f:41:ad:e8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICG+YwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzIzRkUxMTAvBgNVBAUTKEUyRjA3NDJBRDgwQTlEQkIyODc1MTg0RUUwREQ1RTk0 REQ3NTc4NEIwHhcNMjUwNjE0MTYxMjAxWhcNMjUwNjIxMTYxMjAxWjAYMRYwFAYD VQQDEw02ODRkOWY1MS1iZDg0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6OUKjjso4KbuaUg/LO3jzp9cWFJDONVIh3EWnApFlf5nRpSrtDOCRVt52WLU AfiSZv9VRRsjG5orjle+tyFGCqm/tOWXW1T21f/wE/9i8gxtcK0n51nW6F900BOY id2bobhplM08nXupWGlWUA1NC+TilQc63WahPVrrtSEN4XfSJKRhg2ezWB0L2lZx Sx4hqtL2B+0PnT+wujcAeYCMgwUPydy6LNrbi3Q50TMgNLg6zgE3trm3wjmcKt5E 5Dpua+vr/RO3R1yjPG3+QyAXz1vdonmO/6fHovJundFFY+3mxDYzFapkJjCM3Rzs azdWqS4l/JKY1zNaDa8xCfARYQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJZsUWor DdRyJqf9qre5wKUVwOkxMB8GA1UdIwQYMBaAFOLwdCrYCp27KHUYTuDdXpTddXhL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMjNGRS84MjVDRTlBQUY5 RUIxMUU2QkRFN0E5NjhDNEY5QUUwMi80dkIwS3RnS25ic29kUmhPNE4xZWxOMTFl RXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzR2QjBLdGdLbmJzb2RSaE80TjFlbE4xMWVFcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MjNGRS84MjVDRTlBQUY5RUIxMUU2QkRFN0E5NjhDNEY5QUUwMi80dkIwS3RnS25i c29kUmhPNE4xZWxOMTFlRXMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBCyZUR+JEnaidzpyIvkzeHxWgWg3i8Xaxo/TiM4V1AtDpQoPrMXqHN wNbKyk7yTSynLcrym7mh9VZip1CeMH/Yr+Y79HC3Mgo2cfOBx52VYWl734+zlmLF sMIuzsPLChRBy2QlKZqEiMdnpFqoYFl/9vx34bfMeGqzLLeE+eQc0aj3l1hDRFt0 /47qlBOAhK+00AdidAbYMQNvD3Znxcykzd0yV3bCFDfQWIxE4c9Ish3MkdBIdqvN 6Ul2M2lzxGu6Mxt2jr+SSknY5mKl3AXacvCr1u0BgloDanBH5Np7Z2cr3uPr7S2R PtNrCrIcQgapCwabEzRaVMccpDEPQa3o -----END CERTIFICATE-----Generated at Sun Jun 15 08:51:04 2025 by rpki-client