$ rpki-client -vvf rpki.apnic.net/member_repository/A91CC561/86C30482E73411E99D8EAF47C4F9AE02/4idah1qSyusBBPicRvSlhbet9bY.mft File: 4idah1qSyusBBPicRvSlhbet9bY.mft (raw, json) Hash identifier: LhwQec2zxISovfN81R6hqZmbORNoKMG5Yo77cBGY4tg= Subject key identifier: 7C:DB:E8:D1:98:AD:50:58:D9:69:F4:58:42:0B:5D:77:EA:91:AE:92 Authority key identifier: E2:27:5A:87:5A:92:CA:EB:01:04:F8:9C:46:F4:A5:85:B7:AD:F5:B6 Certificate issuer: /CN=A91CC561/serialNumber=E2275A875A92CAEB0104F89C46F4A585B7ADF5B6 Certificate serial: 0CF7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4idah1qSyusBBPicRvSlhbet9bY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CC561/86C30482E73411E99D8EAF47C4F9AE02/4idah1qSyusBBPicRvSlhbet9bY.mft Manifest number: 0CEB Signing time: Sat 14 Jun 2025 18:00:15 +0000 Manifest this update: Sat 14 Jun 2025 18:00:14 +0000 Manifest next update: Sat 21 Jun 2025 18:00:14 +0000 Files and hashes: 1: 4idah1qSyusBBPicRvSlhbet9bY.crl (hash: BZR8k81Qza80S+4UKE4xuuTG0ei5+YWFHswyQzf2mgk=) 2: 5A395E26E2DB11EB8608EA87C4F9AE02.roa (hash: qxCxFSPkCJMsK7i3RHMxc9Lr9Tcp57aZA1WThFY3ZFw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CC561/86C30482E73411E99D8EAF47C4F9AE02/4idah1qSyusBBPicRvSlhbet9bY.crl rsync://rpki.apnic.net/member_repository/A91CC561/86C30482E73411E99D8EAF47C4F9AE02/4idah1qSyusBBPicRvSlhbet9bY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4idah1qSyusBBPicRvSlhbet9bY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Jun 2025 17:13:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3319 (0xcf7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CC561, serialNumber=E2275A875A92CAEB0104F89C46F4A585B7ADF5B6 Validity Not Before: Jun 14 18:00:14 2025 GMT Not After : Jun 21 18:00:14 2025 GMT Subject: CN=684db8af-5c07 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:60:ac:e2:7a:54:42:f5:5f:f1:8c:5e:5b:6f: 3c:ea:c9:df:a9:df:72:62:85:b1:3f:79:ff:39:99: 43:62:30:09:fd:1c:f5:90:50:93:46:0e:88:9c:f0: 9e:bf:27:47:ea:dd:8b:f2:1f:6a:33:b3:13:2f:19: 87:b7:3a:95:83:b3:c3:aa:92:a8:a9:89:de:d9:eb: b2:e8:87:3e:4d:e2:30:a0:99:e6:b8:7a:6d:6c:24: 35:0c:52:29:5a:75:c7:db:3e:85:32:d9:ed:64:7e: a4:77:b7:f8:76:bb:79:00:f4:90:15:59:53:d0:af: 2b:66:73:fe:f8:6d:64:a3:bd:da:da:8d:03:d1:e6: 93:f8:36:b7:76:b2:12:1a:8a:6c:a7:07:4a:4c:20: 73:5e:62:5c:ab:4b:bc:0d:a1:be:f1:60:59:b3:42: 5c:44:67:0d:32:cf:51:13:c7:cf:ae:35:7b:2e:df: 56:08:98:8d:91:67:ce:42:d3:b1:e8:3d:94:71:0c: d6:70:10:07:11:c8:11:d3:c3:ae:94:d5:11:4b:40: e8:6b:65:19:59:cf:21:82:c7:3f:76:94:25:a0:5a: d8:36:f5:07:d5:88:49:cf:c4:38:2d:e5:f6:e8:bd: da:83:8e:21:42:44:1d:58:53:ac:0f:92:df:fc:0f: c9:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7C:DB:E8:D1:98:AD:50:58:D9:69:F4:58:42:0B:5D:77:EA:91:AE:92 X509v3 Authority Key Identifier: keyid:E2:27:5A:87:5A:92:CA:EB:01:04:F8:9C:46:F4:A5:85:B7:AD:F5:B6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CC561/86C30482E73411E99D8EAF47C4F9AE02/4idah1qSyusBBPicRvSlhbet9bY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4idah1qSyusBBPicRvSlhbet9bY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CC561/86C30482E73411E99D8EAF47C4F9AE02/4idah1qSyusBBPicRvSlhbet9bY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 57:50:4a:a1:88:74:ac:69:7f:51:12:f7:70:34:a0:c2:63:df: a6:f2:af:b5:00:fb:a4:10:c0:0c:9a:9d:b8:38:52:d9:7f:6c: 25:f2:51:ea:a8:15:e5:2f:17:04:82:97:32:81:84:d3:89:a1: e2:13:7d:d4:b4:43:2e:2d:84:27:2d:17:66:2d:2c:26:fc:27: 6d:d2:4a:01:0f:8b:83:67:35:57:56:a7:70:d4:0f:a9:6e:03: ed:c1:75:1b:38:30:e7:d8:35:3e:89:88:55:94:73:d2:59:e4: 2c:a4:91:15:37:0b:eb:8f:92:47:1a:ff:e9:1a:fe:94:43:77: 01:86:15:29:b3:4f:b8:4b:77:bd:a1:af:46:86:b9:88:8a:82: 52:d3:f0:39:b4:f4:17:37:30:09:af:01:cf:1c:07:c5:d7:4e: b7:47:8a:44:a9:96:44:f8:22:5d:14:30:9d:61:74:6f:fe:4e: 96:57:ae:4b:4b:6c:67:81:56:ad:07:d0:72:78:27:fe:c5:c2: d7:4a:d3:1f:e1:82:3f:16:82:bd:32:93:69:81:71:cd:b9:d8: 1f:bc:e0:c6:00:21:20:1a:11:a2:a3:30:38:80:bf:40:0d:1c: 42:22:69:71:31:22:2b:93:35:47:64:b6:c1:59:f7:1e:ba:c9: 46:04:7b:1e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDPcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0M1NjExMTAvBgNVBAUTKEUyMjc1QTg3NUE5MkNBRUIwMTA0Rjg5QzQ2RjRBNTg1 QjdBREY1QjYwHhcNMjUwNjE0MTgwMDE0WhcNMjUwNjIxMTgwMDE0WjAYMRYwFAYD VQQDEw02ODRkYjhhZi01YzA3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAomCs4npUQvVf8YxeW2886snfqd9yYoWxP3n/OZlDYjAJ/Rz1kFCTRg6InPCe vydH6t2L8h9qM7MTLxmHtzqVg7PDqpKoqYne2euy6Ic+TeIwoJnmuHptbCQ1DFIp WnXH2z6FMtntZH6kd7f4drt5APSQFVlT0K8rZnP++G1ko73a2o0D0eaT+Da3drIS GopspwdKTCBzXmJcq0u8DaG+8WBZs0JcRGcNMs9RE8fPrjV7Lt9WCJiNkWfOQtOx 6D2UcQzWcBAHEcgR08OulNURS0Doa2UZWc8hgsc/dpQloFrYNvUH1YhJz8Q4LeX2 6L3ag44hQkQdWFOsD5Lf/A/JewIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHzb6NGY rVBY2Wn0WEILXXfqka6SMB8GA1UdIwQYMBaAFOInWodaksrrAQT4nEb0pYW3rfW2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDQzU2MS84NkMzMDQ4MkU3 MzQxMUU5OUQ4RUFGNDdDNEY5QUUwMi80aWRhaDFxU3l1c0JCUGljUnZTbGhiZXQ5 YlkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRpZGFoMXFTeXVzQkJQaWNSdlNsaGJldDliWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD QzU2MS84NkMzMDQ4MkU3MzQxMUU5OUQ4RUFGNDdDNEY5QUUwMi80aWRhaDFxU3l1 c0JCUGljUnZTbGhiZXQ5YlkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBXUEqhiHSsaX9REvdwNKDCY9+m8q+1APukEMAMmp24OFLZf2wl8lHq qBXlLxcEgpcygYTTiaHiE33UtEMuLYQnLRdmLSwm/Cdt0koBD4uDZzVXVqdw1A+p bgPtwXUbODDn2DU+iYhVlHPSWeQspJEVNwvrj5JHGv/pGv6UQ3cBhhUps0+4S3e9 oa9GhrmIioJS0/A5tPQXNzAJrwHPHAfF1063R4pEqZZE+CJdFDCdYXRv/k6WV65L S2xngVatB9ByeCf+xcLXStMf4YI/FoK9MpNpgXHNudgfvODGACEgGhGiozA4gL9A DRxCImlxMSIrkzVHZLbBWfceuslGBHse -----END CERTIFICATE-----Generated at Sat Jun 14 19:37:58 2025 by rpki-client