$ rpki-client -vvf rpki.apnic.net/member_repository/A91CE814/8C57F15A4A3011EFA8307719C4F9AE02/EY2b3jF1T5hUy1VHQKKZ8TfiQeI.mft File: EY2b3jF1T5hUy1VHQKKZ8TfiQeI.mft (raw, json) Hash identifier: U8kl0cXIROEie0ZAdKxSf/sCWjvc6ka2Wja7Z5KDh3c= Subject key identifier: F6:8D:4D:DD:2D:A8:66:3D:FF:30:64:DC:FC:96:BB:67:26:C3:81:7F Authority key identifier: 11:8D:9B:DE:31:75:4F:98:54:CB:55:47:40:A2:99:F1:37:E2:41:E2 Certificate issuer: /CN=A91CE814/serialNumber=118D9BDE31754F9854CB554740A299F137E241E2 Certificate serial: AA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EY2b3jF1T5hUy1VHQKKZ8TfiQeI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CE814/8C57F15A4A3011EFA8307719C4F9AE02/EY2b3jF1T5hUy1VHQKKZ8TfiQeI.mft Manifest number: A8 Signing time: Sun 15 Jun 2025 05:16:31 +0000 Manifest this update: Sun 15 Jun 2025 05:16:31 +0000 Manifest next update: Sun 22 Jun 2025 05:16:31 +0000 Files and hashes: 1: EY2b3jF1T5hUy1VHQKKZ8TfiQeI.crl (hash: vu5lvdpDYtJC90UybOBGGS+F+hCmm261ensyIqyvELg=) 2: CA8007604A3011EFB101441AC4F9AE02.roa (hash: tG+xEb4Bj22fmRv5Ap5El7N6H/BamXJAvudixhV4S5A=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CE814/8C57F15A4A3011EFA8307719C4F9AE02/EY2b3jF1T5hUy1VHQKKZ8TfiQeI.crl rsync://rpki.apnic.net/member_repository/A91CE814/8C57F15A4A3011EFA8307719C4F9AE02/EY2b3jF1T5hUy1VHQKKZ8TfiQeI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EY2b3jF1T5hUy1VHQKKZ8TfiQeI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 22 Jun 2025 02:50:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 170 (0xaa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CE814, serialNumber=118D9BDE31754F9854CB554740A299F137E241E2 Validity Not Before: Jun 15 05:16:31 2025 GMT Not After : Jun 22 05:16:31 2025 GMT Subject: CN=684e572f-9b61 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:3a:90:6f:76:f2:95:e2:f7:d8:e2:7b:46:73: 1d:dc:2b:9d:56:cd:42:fc:ec:2f:7e:88:1c:da:a7: ce:a2:46:1f:e7:41:3f:45:88:8f:e1:3c:79:67:8d: 0b:51:7e:73:cf:3f:3b:5a:d3:10:95:2d:ef:0d:fd: 04:a5:ff:71:c0:6f:5a:0d:2b:1e:a4:6f:49:3b:57: 8b:0d:57:7c:07:e3:46:bb:44:50:af:bd:09:ea:94: 58:56:66:d8:03:29:fd:e8:c4:50:24:35:2a:b0:7f: 72:1c:59:8a:eb:aa:36:1b:46:92:60:43:f3:f3:77: 81:c4:4d:0c:8b:6a:9b:2e:f5:01:ea:c3:6e:cc:b0: 7a:08:5c:04:7d:70:1f:f2:c0:d7:93:a4:d4:61:eb: aa:cf:3c:c3:46:72:b2:83:cd:14:e1:0d:b4:7d:97: b7:ef:23:1d:c3:f8:c8:e3:07:b7:83:3b:6b:32:10: 47:57:a4:d8:9d:dc:6b:af:0c:19:09:cc:be:b4:4a: 13:40:18:02:55:85:4e:db:1e:5e:19:39:09:d5:09: b7:3f:dd:6f:c1:89:f1:3c:2b:11:74:3d:d8:db:97: 88:5c:38:e2:98:0d:84:ba:00:9c:df:a6:9e:87:2a: fd:cf:02:32:93:12:15:ca:55:ac:3e:aa:87:0e:81: 09:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F6:8D:4D:DD:2D:A8:66:3D:FF:30:64:DC:FC:96:BB:67:26:C3:81:7F X509v3 Authority Key Identifier: keyid:11:8D:9B:DE:31:75:4F:98:54:CB:55:47:40:A2:99:F1:37:E2:41:E2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CE814/8C57F15A4A3011EFA8307719C4F9AE02/EY2b3jF1T5hUy1VHQKKZ8TfiQeI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EY2b3jF1T5hUy1VHQKKZ8TfiQeI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CE814/8C57F15A4A3011EFA8307719C4F9AE02/EY2b3jF1T5hUy1VHQKKZ8TfiQeI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 00:88:51:6e:f6:a0:4e:c1:92:4f:4d:ba:43:f3:c9:cb:28:f2: 53:3f:71:ea:ff:4b:e1:04:b4:1c:88:cc:55:11:8f:fc:9f:36: e4:f0:c9:c1:86:82:1e:8b:df:16:7e:59:93:04:a8:07:0c:94: e2:f5:1c:2e:bf:6f:46:09:98:0e:3d:74:fe:60:30:7a:2d:e6: 9d:28:5f:3f:99:4d:5e:ef:e6:71:9d:12:55:e2:0b:73:f8:ee: 1d:52:58:02:a4:94:fb:f7:20:c4:6c:f8:29:ad:2a:62:14:5c: e0:04:82:ca:db:e9:d9:4a:bb:1a:11:c7:c8:a7:b6:ff:ff:e3: 56:72:04:df:7c:00:b2:d3:38:c0:8e:3e:97:75:92:27:a1:89: 96:ef:0a:99:e1:34:a4:3c:55:40:e7:c2:82:cc:d3:d4:9d:6d: d5:27:ce:5a:a4:e1:73:e0:ab:05:b5:11:6a:55:99:cf:d0:96: 82:fb:a7:4a:fe:b0:3b:f2:75:88:80:bb:c8:8e:25:a5:79:b2: ef:d2:8f:5a:86:e2:57:bb:f7:b8:87:c1:b4:02:3b:e6:09:f1: 32:ea:2b:4b:8e:44:bd:7f:8f:ef:d3:8e:3b:f2:48:7b:aa:23: e4:8e:b2:0c:10:32:52:f1:ac:92:3e:21:a2:44:e6:ab:cc:62: ca:79:65:ef -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAKowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0U4MTQxMTAvBgNVBAUTKDExOEQ5QkRFMzE3NTRGOTg1NENCNTU0NzQwQTI5OUYx MzdFMjQxRTIwHhcNMjUwNjE1MDUxNjMxWhcNMjUwNjIyMDUxNjMxWjAYMRYwFAYD VQQDEw02ODRlNTcyZi05YjYxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3TqQb3byleL32OJ7RnMd3CudVs1C/Owvfogc2qfOokYf50E/RYiP4Tx5Z40L UX5zzz87WtMQlS3vDf0Epf9xwG9aDSsepG9JO1eLDVd8B+NGu0RQr70J6pRYVmbY Ayn96MRQJDUqsH9yHFmK66o2G0aSYEPz83eBxE0Mi2qbLvUB6sNuzLB6CFwEfXAf 8sDXk6TUYeuqzzzDRnKyg80U4Q20fZe37yMdw/jI4we3gztrMhBHV6TYndxrrwwZ Ccy+tEoTQBgCVYVO2x5eGTkJ1Qm3P91vwYnxPCsRdD3Y25eIXDjimA2EugCc36ae hyr9zwIykxIVylWsPqqHDoEJGwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPaNTd0t qGY9/zBk3PyWu2cmw4F/MB8GA1UdIwQYMBaAFBGNm94xdU+YVMtVR0CimfE34kHi MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRTgxNC84QzU3RjE1QTRB MzAxMUVGQTgzMDc3MTlDNEY5QUUwMi9FWTJiM2pGMVQ1aFV5MVZIUUtLWjhUZmlR ZUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0VZMmIzakYxVDVoVXkxVkhRS0taOFRmaVFlSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RTgxNC84QzU3RjE1QTRBMzAxMUVGQTgzMDc3MTlDNEY5QUUwMi9FWTJiM2pGMVQ1 aFV5MVZIUUtLWjhUZmlRZUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAAiFFu9qBOwZJPTbpD88nLKPJTP3Hq/0vhBLQciMxVEY/8nzbk8MnB hoIei98WflmTBKgHDJTi9Rwuv29GCZgOPXT+YDB6LeadKF8/mU1e7+ZxnRJV4gtz +O4dUlgCpJT79yDEbPgprSpiFFzgBILK2+nZSrsaEcfIp7b//+NWcgTffACy0zjA jj6XdZInoYmW7wqZ4TSkPFVA58KCzNPUnW3VJ85apOFz4KsFtRFqVZnP0JaC+6dK /rA78nWIgLvIjiWlebLv0o9ahuJXu/e4h8G0AjvmCfEy6itLjkS9f4/v04478kh7 qiPkjrIMEDJS8aySPiGiROarzGLKeWXv -----END CERTIFICATE-----Generated at Sun Jun 15 09:38:47 2025 by rpki-client