$ rpki-client -vvf rpki.apnic.net/member_repository/A91C2CC7/791C6A347B3811E9BC0D3B32C4F9AE02/d0hrYQ0zOuvajyVcUBQRsB8Y_0k.mft File: d0hrYQ0zOuvajyVcUBQRsB8Y_0k.mft (raw, json) Hash identifier: 7UDsrMZBozTOItO6tSY8eESlQVSGkJotLgtBVBIOSPI= Subject key identifier: A2:9B:26:AB:8A:AF:EB:E1:AD:14:65:B7:D5:75:B3:24:37:C6:B6:AE Authority key identifier: 77:48:6B:61:0D:33:3A:EB:DA:8F:25:5C:50:14:11:B0:1F:18:FF:49 Certificate issuer: /CN=A91C2CC7/serialNumber=77486B610D333AEBDA8F255C501411B01F18FF49 Certificate serial: 0FCB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/d0hrYQ0zOuvajyVcUBQRsB8Y_0k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C2CC7/791C6A347B3811E9BC0D3B32C4F9AE02/d0hrYQ0zOuvajyVcUBQRsB8Y_0k.mft Manifest number: 0F58 Signing time: Sat 14 Jun 2025 17:33:45 +0000 Manifest this update: Sat 14 Jun 2025 17:33:45 +0000 Manifest next update: Sat 21 Jun 2025 17:33:45 +0000 Files and hashes: 1: d0hrYQ0zOuvajyVcUBQRsB8Y_0k.crl (hash: 4N5IujHEqDfoOHvQvdzclsSyp2nakUHUJkFsnBuQxPk=) 2: B35E5B46334111EF9770A542C4F9AE02.roa (hash: UPuDmnzuzvNsFm0+p8zRrUqRDIqQAuxYTPJw8nD+iQM=) 3: 931E0F7681C911EFA5B1D80BC4F9AE02.roa (hash: HvCeCNMd3cDYBcsUNmnAZgRE0yTF+p8FgFeiy4l06fs=) 4: B1F39E9C334111EF9770A542C4F9AE02.roa (hash: gH07d0tdWpzxCvfeG7l6D2uFfEY6tpwzzgDCtY/pYyE=) 5: 6AB0F2A2892611EEB5E27D69C4F9AE02.roa (hash: nicSmvXStk5YSg3xIJcJaFbSV0F719Jx8dhmknr9Hs0=) 6: B2A71CE2334111EF9770A542C4F9AE02.roa (hash: pfS5+RaNkCZt3S0EiNJ59HEgMt0xojAMbKbcs9rYZR4=) 7: B431D7F0334111EF9770A542C4F9AE02.roa (hash: xTikHJ/TFdvmPXV1CWU8Y1J+6HX1EdWOaYbA1B5GtDI=) 8: 7BD12E3A480811EE8C512B0DC4F9AE02.roa (hash: PTHJR1ja6PHKnchzMzvjSZlwBo+yBYxt/AqG4ozJw5A=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C2CC7/791C6A347B3811E9BC0D3B32C4F9AE02/d0hrYQ0zOuvajyVcUBQRsB8Y_0k.crl rsync://rpki.apnic.net/member_repository/A91C2CC7/791C6A347B3811E9BC0D3B32C4F9AE02/d0hrYQ0zOuvajyVcUBQRsB8Y_0k.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/d0hrYQ0zOuvajyVcUBQRsB8Y_0k.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Jun 2025 17:13:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4043 (0xfcb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C2CC7, serialNumber=77486B610D333AEBDA8F255C501411B01F18FF49 Validity Not Before: Jun 14 17:33:45 2025 GMT Not After : Jun 21 17:33:45 2025 GMT Subject: CN=684db279-acfd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:0a:57:2f:26:31:bd:59:6a:65:b1:45:b4:94: 77:2c:6d:a8:31:e8:0c:ff:2b:55:c4:42:1c:34:53: ac:d0:68:c5:d8:d4:7f:01:25:f9:c4:3f:5e:b8:b8: e0:98:3b:54:49:ae:00:37:bb:6b:87:ed:9b:02:59: aa:23:05:93:15:5e:3f:bd:5d:9b:bf:12:5a:4f:51: e3:ef:d0:7f:1b:84:3b:a8:ee:21:8c:90:cd:89:12: 88:f4:f3:06:a3:21:30:e0:f4:ff:7f:97:87:71:1e: eb:ec:00:a0:0b:66:41:5b:fa:84:9d:86:7b:d8:1c: 29:2c:e0:02:48:b7:b4:ef:31:d6:46:68:05:d5:d3: 97:52:5f:d4:43:57:58:8f:7d:5c:57:85:af:80:08: e4:e9:07:f2:4f:95:17:3b:20:c6:57:2b:df:81:22: c2:fd:69:a4:c3:61:f3:3e:38:20:13:78:c3:3c:8f: 75:4b:f1:6b:dd:3b:3e:88:c3:2f:6c:76:82:17:93: e4:28:88:01:bb:c6:ae:6f:e3:84:ce:f8:f0:fc:18: 83:b0:94:64:19:c0:89:a1:36:df:5b:f9:c8:3a:46: ff:6c:1e:9c:ca:53:2b:c9:d1:8a:c3:f1:db:32:8b: 46:e2:fa:44:65:30:cd:18:5a:e9:60:cb:b4:b6:ce: 8c:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A2:9B:26:AB:8A:AF:EB:E1:AD:14:65:B7:D5:75:B3:24:37:C6:B6:AE X509v3 Authority Key Identifier: keyid:77:48:6B:61:0D:33:3A:EB:DA:8F:25:5C:50:14:11:B0:1F:18:FF:49 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C2CC7/791C6A347B3811E9BC0D3B32C4F9AE02/d0hrYQ0zOuvajyVcUBQRsB8Y_0k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/d0hrYQ0zOuvajyVcUBQRsB8Y_0k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C2CC7/791C6A347B3811E9BC0D3B32C4F9AE02/d0hrYQ0zOuvajyVcUBQRsB8Y_0k.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption cb:3e:b5:3a:11:9b:94:22:39:a6:5d:e2:0e:51:9c:fd:83:45: d5:60:e8:ca:22:e1:fe:b9:dd:dc:82:14:da:47:30:5e:e4:e6: d7:0a:43:53:98:9d:1f:00:7c:69:7b:06:12:58:a0:2f:f7:39: a3:40:22:d7:98:36:c0:ab:b3:da:e4:e5:47:15:c9:85:11:2b: d8:f7:9c:30:c8:64:ce:4f:3f:71:21:96:16:8f:96:da:c0:eb: 9f:75:82:e9:7b:d5:a1:61:bd:07:11:fb:cc:5e:b8:68:6f:1e: d3:71:a0:ad:ec:7b:a6:8a:90:39:f3:03:03:ff:f1:32:50:1b: ab:30:eb:92:09:92:34:f0:63:9a:a8:92:e0:07:d9:69:81:4b: 68:98:ee:83:64:3c:ae:d9:ba:36:db:ca:53:3f:00:86:ff:a1: cd:9e:f5:66:31:c1:84:1a:96:c3:10:f5:b9:6f:d6:f9:3f:3a: e4:6b:e8:35:5f:84:65:6c:88:7c:21:4e:c1:c8:50:92:3a:2a: 58:7b:9b:f1:53:73:68:3c:83:fd:69:52:b7:4b:8f:40:5f:a0: 49:12:92:88:3d:b7:0e:9a:5a:8e:0a:38:db:6a:fc:56:64:5c: 28:cb:bb:b6:86:a5:f0:18:1d:42:a6:44:12:1b:23:0d:81:0a: ea:b0:2a:59 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICD8swDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzJDQzcxMTAvBgNVBAUTKDc3NDg2QjYxMEQzMzNBRUJEQThGMjU1QzUwMTQxMUIw MUYxOEZGNDkwHhcNMjUwNjE0MTczMzQ1WhcNMjUwNjIxMTczMzQ1WjAYMRYwFAYD VQQDEw02ODRkYjI3OS1hY2ZkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzQpXLyYxvVlqZbFFtJR3LG2oMegM/ytVxEIcNFOs0GjF2NR/ASX5xD9euLjg mDtUSa4AN7trh+2bAlmqIwWTFV4/vV2bvxJaT1Hj79B/G4Q7qO4hjJDNiRKI9PMG oyEw4PT/f5eHcR7r7ACgC2ZBW/qEnYZ72BwpLOACSLe07zHWRmgF1dOXUl/UQ1dY j31cV4WvgAjk6QfyT5UXOyDGVyvfgSLC/Wmkw2HzPjggE3jDPI91S/Fr3Ts+iMMv bHaCF5PkKIgBu8aub+OEzvjw/BiDsJRkGcCJoTbfW/nIOkb/bB6cylMrydGKw/Hb MotG4vpEZTDNGFrpYMu0ts6MJwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKKbJquK r+vhrRRlt9V1syQ3xrauMB8GA1UdIwQYMBaAFHdIa2ENMzrr2o8lXFAUEbAfGP9J MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMkNDNy83OTFDNkEzNDdC MzgxMUU5QkMwRDNCMzJDNEY5QUUwMi9kMGhyWVEwek91dmFqeVZjVUJRUnNCOFlf MGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2QwaHJZUTB6T3V2YWp5VmNVQlFSc0I4WV8way5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MkNDNy83OTFDNkEzNDdCMzgxMUU5QkMwRDNCMzJDNEY5QUUwMi9kMGhyWVEwek91 dmFqeVZjVUJRUnNCOFlfMGsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDLPrU6EZuUIjmmXeIOUZz9g0XVYOjKIuH+ud3cghTaRzBe5ObXCkNT mJ0fAHxpewYSWKAv9zmjQCLXmDbAq7Pa5OVHFcmFESvY95wwyGTOTz9xIZYWj5ba wOufdYLpe9WhYb0HEfvMXrhobx7TcaCt7HumipA58wMD//EyUBurMOuSCZI08GOa qJLgB9lpgUtomO6DZDyu2bo228pTPwCG/6HNnvVmMcGEGpbDEPW5b9b5Pzrka+g1 X4RlbIh8IU7ByFCSOipYe5vxU3NoPIP9aVK3S49AX6BJEpKIPbcOmlqOCjjbavxW ZFwoy7u2hqXwGB1CpkQSGyMNgQrqsCpZ -----END CERTIFICATE-----Generated at Sat Jun 14 19:37:59 2025 by rpki-client