$ rpki-client -vvf rpki.apnic.net/member_repository/A91C8F27/7F5229A8B09211EAB5DBEC58C4F9AE02/0aNs2O0jVQgnYaPbE-3TDf2iz9A.mft File: 0aNs2O0jVQgnYaPbE-3TDf2iz9A.mft (raw, json) Hash identifier: j+YFY71S9QtlzUHitzFbs9zQoIxggS4xysBGcYK6D/I= Subject key identifier: F4:E1:D9:FB:13:DA:71:35:B7:02:EB:1B:4B:DA:82:A6:D4:D6:79:7E Authority key identifier: D1:A3:6C:D8:ED:23:55:08:27:61:A3:DB:13:ED:D3:0D:FD:A2:CF:D0 Certificate issuer: /CN=A91C8F27/serialNumber=D1A36CD8ED2355082761A3DB13EDD30DFDA2CFD0 Certificate serial: 095E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0aNs2O0jVQgnYaPbE-3TDf2iz9A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C8F27/7F5229A8B09211EAB5DBEC58C4F9AE02/0aNs2O0jVQgnYaPbE-3TDf2iz9A.mft Manifest number: 0919 Signing time: Thu 12 Jun 2025 20:11:08 +0000 Manifest this update: Thu 12 Jun 2025 20:11:08 +0000 Manifest next update: Thu 19 Jun 2025 20:11:08 +0000 Files and hashes: 1: 0aNs2O0jVQgnYaPbE-3TDf2iz9A.crl (hash: hO8SvmlZyA0jNiFZkS3ZQlv0Lt0qm8v6ER1P41EJ04Y=) 2: BDB203466B5D11EF84E04577C4F9AE02.roa (hash: BOBDyoF9n7xbx3TtkofAs1yOLOgU9o92r9+fjg3ExtE=) 3: A02B90EA479311F0BBFADC27C4F9AE02.roa (hash: FSGba/ksTfUcD5c5nTx4WizNyHeIp3OO4bcFqqjagGE=) 4: 2857F2E4111A11EF86332415C4F9AE02.roa (hash: yNiSqyUgGq7X2OqvzLvfoSJUstp1wz+ZN5+bLrhI6IQ=) 5: 51B031C80E8D11EE89A0B128C4F9AE02.roa (hash: 4OgZKWzHSPDUQ7eYlV4agiNuq4N/lgNw19COSO6Bfk8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C8F27/7F5229A8B09211EAB5DBEC58C4F9AE02/0aNs2O0jVQgnYaPbE-3TDf2iz9A.crl rsync://rpki.apnic.net/member_repository/A91C8F27/7F5229A8B09211EAB5DBEC58C4F9AE02/0aNs2O0jVQgnYaPbE-3TDf2iz9A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0aNs2O0jVQgnYaPbE-3TDf2iz9A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 19 Jun 2025 20:11:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2398 (0x95e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C8F27, serialNumber=D1A36CD8ED2355082761A3DB13EDD30DFDA2CFD0 Validity Not Before: Jun 12 20:11:08 2025 GMT Not After : Jun 19 20:11:08 2025 GMT Subject: CN=684b345c-279e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:3c:ec:c1:e1:f6:f3:77:af:9a:42:fe:4a:4a: 93:54:f8:f1:20:13:e2:14:5a:bb:9c:c7:19:17:59: 33:b4:20:0b:43:7c:fe:b6:65:3b:fe:ac:bb:a0:e0: 21:82:18:50:3d:78:06:85:b7:81:6d:ec:a9:ab:88: 8e:4c:40:41:b2:6d:61:e5:60:4b:0e:78:3b:d4:27: f3:52:dc:b8:7a:28:d9:f1:c3:bb:85:3b:ca:81:82: 6a:e9:fd:48:6b:0e:5d:98:c3:c8:66:45:7e:28:87: 41:fe:7d:69:a8:ab:55:00:be:45:e5:11:94:ab:48: b3:3f:71:ee:28:a3:95:5d:47:1c:8d:a7:bf:0d:18: f1:d5:da:20:2d:2d:04:f7:e0:98:70:9b:88:2c:68: 6b:c9:ba:0b:6b:64:3a:b6:cb:d7:8a:de:a5:3a:d3: cd:cc:d4:39:70:e8:fa:fd:af:49:3a:ee:e3:de:e4: e6:72:79:24:d9:0f:c0:52:97:07:9c:e8:62:39:e1: 1a:26:9d:25:41:de:6d:5d:c1:b3:53:99:3d:b5:3b: 29:22:e2:ce:48:a1:10:6e:4e:91:09:87:43:f8:c6: 97:7c:61:b1:74:8f:9d:08:fc:26:d0:d5:c3:73:f1: 58:26:ff:8d:ae:b5:1f:80:92:36:40:65:bf:78:bf: dd:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F4:E1:D9:FB:13:DA:71:35:B7:02:EB:1B:4B:DA:82:A6:D4:D6:79:7E X509v3 Authority Key Identifier: keyid:D1:A3:6C:D8:ED:23:55:08:27:61:A3:DB:13:ED:D3:0D:FD:A2:CF:D0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C8F27/7F5229A8B09211EAB5DBEC58C4F9AE02/0aNs2O0jVQgnYaPbE-3TDf2iz9A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0aNs2O0jVQgnYaPbE-3TDf2iz9A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C8F27/7F5229A8B09211EAB5DBEC58C4F9AE02/0aNs2O0jVQgnYaPbE-3TDf2iz9A.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption af:8e:5d:0f:6d:34:35:33:d3:a6:df:3d:c0:2b:74:99:a3:ac: 97:3c:5e:49:04:fd:d3:a0:14:ac:49:65:f0:49:81:6c:1c:68: 78:43:2c:ec:9f:f4:c6:65:64:1e:63:59:49:97:e6:d6:fd:1b: 2c:86:3a:1c:5f:2f:da:63:c1:c8:78:f2:ec:da:3e:bb:c0:f7: 44:f4:39:1e:80:7a:48:64:12:05:fb:41:83:25:e5:28:75:8b: 34:29:66:70:20:78:cb:26:ba:b1:46:f4:20:1b:e8:b9:46:61: 8d:b7:d9:e4:25:46:55:e3:eb:94:86:dc:94:bb:48:bd:62:85: 13:8c:b0:1a:c3:4f:a2:ca:dd:23:30:8f:e8:3e:d7:29:51:ed: cb:5b:38:70:6d:0c:15:ab:0a:3f:3e:2e:b3:b2:a6:09:c8:48: fe:50:77:21:98:cc:97:05:b5:a6:d5:dc:d7:82:36:00:03:79: 63:f2:90:81:be:44:56:41:14:08:c7:61:89:14:cd:05:8c:1e: f7:7d:36:20:c2:b6:ae:ea:94:56:96:eb:86:a7:39:dd:c6:34: d6:9c:0d:96:b0:12:ed:c2:62:d5:c8:5c:df:6a:b3:64:3b:96: 56:60:e2:82:ba:cb:9b:41:9a:3c:4e:4e:27:19:66:c2:6b:42: e0:cd:f0:30 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCV4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzhGMjcxMTAvBgNVBAUTKEQxQTM2Q0Q4RUQyMzU1MDgyNzYxQTNEQjEzRUREMzBE RkRBMkNGRDAwHhcNMjUwNjEyMjAxMTA4WhcNMjUwNjE5MjAxMTA4WjAYMRYwFAYD VQQDEw02ODRiMzQ1Yy0yNzllMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqzzsweH283evmkL+SkqTVPjxIBPiFFq7nMcZF1kztCALQ3z+tmU7/qy7oOAh ghhQPXgGhbeBbeypq4iOTEBBsm1h5WBLDng71CfzUty4eijZ8cO7hTvKgYJq6f1I aw5dmMPIZkV+KIdB/n1pqKtVAL5F5RGUq0izP3HuKKOVXUccjae/DRjx1dogLS0E 9+CYcJuILGhryboLa2Q6tsvXit6lOtPNzNQ5cOj6/a9JOu7j3uTmcnkk2Q/AUpcH nOhiOeEaJp0lQd5tXcGzU5k9tTspIuLOSKEQbk6RCYdD+MaXfGGxdI+dCPwm0NXD c/FYJv+NrrUfgJI2QGW/eL/dHwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPTh2fsT 2nE1twLrG0vagqbU1nl+MB8GA1UdIwQYMBaAFNGjbNjtI1UIJ2Gj2xPt0w39os/Q MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDOEYyNy83RjUyMjlBOEIw OTIxMUVBQjVEQkVDNThDNEY5QUUwMi8wYU5zMk8walZRZ25ZYVBiRS0zVERmMml6 OUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzBhTnMyTzBqVlFnbllhUGJFLTNURGYyaXo5QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD OEYyNy83RjUyMjlBOEIwOTIxMUVBQjVEQkVDNThDNEY5QUUwMi8wYU5zMk8walZR Z25ZYVBiRS0zVERmMml6OUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCvjl0PbTQ1M9Om3z3AK3SZo6yXPF5JBP3ToBSsSWXwSYFsHGh4Qyzs n/TGZWQeY1lJl+bW/RsshjocXy/aY8HIePLs2j67wPdE9DkegHpIZBIF+0GDJeUo dYs0KWZwIHjLJrqxRvQgG+i5RmGNt9nkJUZV4+uUhtyUu0i9YoUTjLAaw0+iyt0j MI/oPtcpUe3LWzhwbQwVqwo/Pi6zsqYJyEj+UHchmMyXBbWm1dzXgjYAA3lj8pCB vkRWQRQIx2GJFM0FjB73fTYgwrau6pRWluuGpzndxjTWnA2WsBLtwmLVyFzfarNk O5ZWYOKCusubQZo8Tk4nGWbCa0LgzfAw -----END CERTIFICATE-----Generated at Sat Jun 14 18:54:02 2025 by rpki-client