$ rpki-client -vvf rpki.apnic.net/member_repository/A91C65E8/A1F23A641D9911E295EB528608B02CD2/vNzosG8FliNAMAycR0e1olGiGcQ.mft File: vNzosG8FliNAMAycR0e1olGiGcQ.mft (raw, json) Hash identifier: txyhGo18OPi71iyHQnA31SGg3k748azJYHVT6E0dKHA= Subject key identifier: 3F:79:C0:1F:B5:81:4E:BD:1F:AF:76:14:A4:BF:C4:EF:0B:FC:ED:F4 Authority key identifier: BC:DC:E8:B0:6F:05:96:23:40:30:0C:9C:47:47:B5:A2:51:A2:19:C4 Certificate issuer: /CN=A91C65E8/serialNumber=BCDCE8B06F05962340300C9C4747B5A251A219C4 Certificate serial: 34AE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vNzosG8FliNAMAycR0e1olGiGcQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C65E8/A1F23A641D9911E295EB528608B02CD2/vNzosG8FliNAMAycR0e1olGiGcQ.mft Manifest number: 349E Signing time: Sat 14 Jun 2025 14:53:50 +0000 Manifest this update: Sat 14 Jun 2025 14:53:50 +0000 Manifest next update: Sat 21 Jun 2025 14:53:50 +0000 Files and hashes: 1: vNzosG8FliNAMAycR0e1olGiGcQ.crl (hash: 0I8xd1NeGeEz+lQnTbNz0wiQkUAn5kbgLn+9QwQnJY4=) 2: 3FEFA562483D11EC82E81112C4F9AE02.roa (hash: rK0c8XECyvN9kLfaJ8Yz0Teq8RiIt0v2rBtEKSM98ow=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C65E8/A1F23A641D9911E295EB528608B02CD2/vNzosG8FliNAMAycR0e1olGiGcQ.crl rsync://rpki.apnic.net/member_repository/A91C65E8/A1F23A641D9911E295EB528608B02CD2/vNzosG8FliNAMAycR0e1olGiGcQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vNzosG8FliNAMAycR0e1olGiGcQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Jun 2025 14:53:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13486 (0x34ae) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C65E8, serialNumber=BCDCE8B06F05962340300C9C4747B5A251A219C4 Validity Not Before: Jun 14 14:53:50 2025 GMT Not After : Jun 21 14:53:50 2025 GMT Subject: CN=684d8cfe-91a3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:08:3b:ff:42:47:42:f0:b7:b6:0a:e9:0e:e3: 94:49:b0:60:75:21:ef:4d:9c:02:2f:26:52:80:0e: 63:12:1b:71:e2:f9:22:9d:3d:00:f6:08:6b:1c:26: 82:b5:4c:19:e1:0c:0f:3a:10:da:83:cd:bb:eb:5e: 43:a8:fe:03:bf:a4:c2:75:5a:a8:f4:e6:e9:18:d2: 1b:be:35:81:37:dd:3f:52:be:4d:dd:c6:a3:93:ee: 7f:d0:a9:a7:02:fc:1f:2d:37:63:03:5d:df:cd:6c: 22:ed:0e:75:87:bc:9d:fc:ab:66:28:44:ca:70:e5: 64:af:82:a7:92:e2:c0:ce:a6:05:31:a5:45:37:9d: b3:d7:17:d2:11:62:21:0d:e8:ed:49:ca:cb:c2:d7: 10:a5:5d:f6:b2:d6:11:2f:8e:9b:b5:69:ab:e3:68: 46:60:fd:95:48:0d:cc:0f:50:31:48:c6:1c:3a:af: 2c:ab:be:10:8e:f8:fb:59:84:a7:29:0d:2f:a5:26: 60:6b:1f:e2:ed:d8:d1:4e:e6:e8:be:24:69:00:4b: d0:4b:33:e0:62:85:11:76:ee:a2:4a:28:d8:64:c4: eb:95:af:fc:1e:c5:1a:34:98:51:7e:cb:51:01:78: e0:0b:16:75:50:2b:2a:94:b4:be:a2:3b:b6:f4:ea: 4b:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3F:79:C0:1F:B5:81:4E:BD:1F:AF:76:14:A4:BF:C4:EF:0B:FC:ED:F4 X509v3 Authority Key Identifier: keyid:BC:DC:E8:B0:6F:05:96:23:40:30:0C:9C:47:47:B5:A2:51:A2:19:C4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C65E8/A1F23A641D9911E295EB528608B02CD2/vNzosG8FliNAMAycR0e1olGiGcQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vNzosG8FliNAMAycR0e1olGiGcQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C65E8/A1F23A641D9911E295EB528608B02CD2/vNzosG8FliNAMAycR0e1olGiGcQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 48:5c:e4:4f:c5:92:c5:1e:67:a9:d7:2c:08:91:ed:7b:13:e0: e1:cd:cc:87:25:5b:70:10:84:2e:5c:f6:85:f9:6c:64:59:e3: 86:0d:f2:b2:1a:e1:ab:63:21:79:10:15:cc:6a:09:b1:be:6b: 68:7a:59:a7:65:73:3b:77:49:a7:f9:30:30:4a:cc:2c:f2:34: f7:11:91:4d:ce:c7:31:80:a8:3b:c1:7a:01:83:0d:29:b4:6a: 09:38:45:bb:2c:f2:34:5b:e6:dd:8f:c1:11:fd:6a:ff:6e:40: d1:0e:a5:da:8d:ad:2d:b2:aa:89:73:20:96:bb:06:12:a5:01: 79:ec:d6:ed:32:4a:83:f7:43:f3:4a:3f:f2:9b:d9:7f:b7:32: f5:2a:81:08:fd:ea:df:56:db:94:9b:4f:8c:5f:29:23:15:8a: c2:db:a8:78:7e:5c:74:34:15:d3:0d:6e:ab:b6:79:62:30:07: eb:03:b4:29:ab:1e:f1:68:06:8b:c8:a5:90:51:62:36:78:b2: dd:21:69:e8:08:58:ea:c2:2c:bc:d9:f5:e9:cd:28:f8:58:a5: 21:70:57:31:e0:f4:86:54:ae:c6:b0:bc:e9:a4:b2:96:93:d9: 98:65:d3:53:5c:9c:d6:7b:40:f6:f7:a1:70:ee:76:d1:f8:49: a9:15:16:4b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNK4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzY1RTgxMTAvBgNVBAUTKEJDRENFOEIwNkYwNTk2MjM0MDMwMEM5QzQ3NDdCNUEy NTFBMjE5QzQwHhcNMjUwNjE0MTQ1MzUwWhcNMjUwNjIxMTQ1MzUwWjAYMRYwFAYD VQQDEw02ODRkOGNmZS05MWEzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1wg7/0JHQvC3tgrpDuOUSbBgdSHvTZwCLyZSgA5jEhtx4vkinT0A9ghrHCaC tUwZ4QwPOhDag827615DqP4Dv6TCdVqo9ObpGNIbvjWBN90/Ur5N3cajk+5/0Kmn AvwfLTdjA13fzWwi7Q51h7yd/KtmKETKcOVkr4KnkuLAzqYFMaVFN52z1xfSEWIh DejtScrLwtcQpV32stYRL46btWmr42hGYP2VSA3MD1AxSMYcOq8sq74Qjvj7WYSn KQ0vpSZgax/i7djRTuboviRpAEvQSzPgYoURdu6iSijYZMTrla/8HsUaNJhRfstR AXjgCxZ1UCsqlLS+oju29OpLjQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFD95wB+1 gU69H692FKS/xO8L/O30MB8GA1UdIwQYMBaAFLzc6LBvBZYjQDAMnEdHtaJRohnE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNjVFOC9BMUYyM0E2NDFE OTkxMUUyOTVFQjUyODYwOEIwMkNEMi92Tnpvc0c4RmxpTkFNQXljUjBlMW9sR2lH Y1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3ZOem9zRzhGbGlOQU1BeWNSMGUxb2xHaUdjUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD NjVFOC9BMUYyM0E2NDFEOTkxMUUyOTVFQjUyODYwOEIwMkNEMi92Tnpvc0c4Rmxp TkFNQXljUjBlMW9sR2lHY1EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBIXORPxZLFHmep1ywIke17E+DhzcyHJVtwEIQuXPaF+WxkWeOGDfKy GuGrYyF5EBXMagmxvmtoelmnZXM7d0mn+TAwSsws8jT3EZFNzscxgKg7wXoBgw0p tGoJOEW7LPI0W+bdj8ER/Wr/bkDRDqXaja0tsqqJcyCWuwYSpQF57NbtMkqD90Pz Sj/ym9l/tzL1KoEI/erfVtuUm0+MXykjFYrC26h4flx0NBXTDW6rtnliMAfrA7Qp qx7xaAaLyKWQUWI2eLLdIWnoCFjqwiy82fXpzSj4WKUhcFcx4PSGVK7GsLzppLKW k9mYZdNTXJzWe0D296Fw7nbR+EmpFRZL -----END CERTIFICATE-----Generated at Sun Jun 15 08:39:14 2025 by rpki-client