$ rpki-client -vvf rpki.apnic.net/member_repository/A91CFD5A/2375B306B94511EEBB818834C4F9AE02/Soo5XlVsx_Garmqwav8GeUSVa0Y.mft File: Soo5XlVsx_Garmqwav8GeUSVa0Y.mft (raw, json) Hash identifier: WjIEcmyXnMuz0yn8HvvvDWXdMineeKW/iB88ypwE1Pw= Subject key identifier: D7:5B:C8:D4:5E:0A:DF:14:1B:6A:69:3B:F6:D4:09:27:50:D8:94:E8 Authority key identifier: 4A:8A:39:5E:55:6C:C7:F1:9A:AE:6A:B0:6A:FF:06:79:44:95:6B:46 Certificate issuer: /CN=A91CFD5A/serialNumber=4A8A395E556CC7F19AAE6AB06AFF067944956B46 Certificate serial: 010E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Soo5XlVsx_Garmqwav8GeUSVa0Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CFD5A/2375B306B94511EEBB818834C4F9AE02/Soo5XlVsx_Garmqwav8GeUSVa0Y.mft Manifest number: 010B Signing time: Sun 15 Jun 2025 04:12:30 +0000 Manifest this update: Sun 15 Jun 2025 04:12:29 +0000 Manifest next update: Sun 22 Jun 2025 04:12:29 +0000 Files and hashes: 1: Soo5XlVsx_Garmqwav8GeUSVa0Y.crl (hash: 1SSkSiMbnHCMCyvFlLOi8cp3MJ1KfyJ3WxMs+nqGM9A=) 2: D60B1BCCB9AF11EE97EEDB49C4F9AE02.roa (hash: VWW3LG8bH56OHxKp9a6acMJUcTvLWrd2aS1b8cisvbE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CFD5A/2375B306B94511EEBB818834C4F9AE02/Soo5XlVsx_Garmqwav8GeUSVa0Y.crl rsync://rpki.apnic.net/member_repository/A91CFD5A/2375B306B94511EEBB818834C4F9AE02/Soo5XlVsx_Garmqwav8GeUSVa0Y.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Soo5XlVsx_Garmqwav8GeUSVa0Y.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 22 Jun 2025 02:50:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 270 (0x10e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CFD5A, serialNumber=4A8A395E556CC7F19AAE6AB06AFF067944956B46 Validity Not Before: Jun 15 04:12:29 2025 GMT Not After : Jun 22 04:12:29 2025 GMT Subject: CN=684e482d-2f02 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:df:98:6b:a3:4a:3f:be:04:0d:66:f3:9c:b9: 72:f2:ba:dc:d2:8e:9c:e9:b9:f0:46:f0:60:e1:d7: fa:1b:58:fa:05:ad:7c:27:5d:ac:8a:bd:0d:64:8d: ac:9a:d0:db:d8:80:8b:12:db:af:7e:74:8e:de:65: c1:46:ef:e1:9b:b1:34:42:3c:a4:e2:5d:db:6b:54: 9e:40:62:c4:1e:ad:bd:92:23:5d:a5:e1:75:98:22: f9:53:57:86:27:8c:b2:e9:32:0d:c1:4f:5a:b9:c4: 17:5d:54:41:34:d5:eb:0c:01:a7:70:08:ed:fa:31: a2:65:05:54:5b:c3:19:61:e1:1d:cb:e9:a0:3c:c0: b9:5e:69:37:26:84:45:ee:d4:4a:49:d3:fc:33:bd: 39:d9:16:39:44:a1:ee:be:4c:2e:54:e3:8c:c4:b8: 0a:f6:ef:ae:50:bb:bc:58:4c:52:07:e5:62:e7:07: 87:19:38:e4:3c:f6:2a:cd:48:7c:57:3e:75:66:4b: ea:7d:80:e8:ef:52:60:71:a8:ec:06:cf:17:41:60: 36:59:b7:6b:3e:9e:1c:bd:3f:63:30:16:86:40:b1: e3:74:d9:41:14:e3:73:94:77:19:74:28:e1:7d:6b: 9a:4d:fc:ee:95:e1:35:3b:37:83:fc:d3:3a:f8:bb: 1c:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D7:5B:C8:D4:5E:0A:DF:14:1B:6A:69:3B:F6:D4:09:27:50:D8:94:E8 X509v3 Authority Key Identifier: keyid:4A:8A:39:5E:55:6C:C7:F1:9A:AE:6A:B0:6A:FF:06:79:44:95:6B:46 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CFD5A/2375B306B94511EEBB818834C4F9AE02/Soo5XlVsx_Garmqwav8GeUSVa0Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Soo5XlVsx_Garmqwav8GeUSVa0Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CFD5A/2375B306B94511EEBB818834C4F9AE02/Soo5XlVsx_Garmqwav8GeUSVa0Y.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 14:30:82:23:eb:b7:26:00:dd:ae:0e:c0:60:0b:2a:6c:61:73: 77:8f:44:a9:46:eb:3b:f5:ac:3e:b5:52:48:c6:11:3f:e7:15: 02:cd:78:fa:7f:0b:80:aa:33:9c:37:a4:6a:da:eb:d0:86:41: 9c:90:e8:36:bf:4d:f4:44:35:93:ed:9f:8e:d6:94:88:a2:c8: 8d:34:ac:d1:dc:5b:3d:d5:04:00:b0:83:46:16:b3:0c:fb:71: 17:a7:b5:e8:bf:c0:f6:65:82:f1:59:b2:75:a2:18:f0:48:3a: b9:3c:45:44:19:e5:22:e6:3d:80:c2:8e:31:c4:70:b0:78:6b: 8e:0f:75:8f:e8:2c:8b:b7:71:7e:f5:d3:c0:25:79:bf:c1:04: 8f:56:42:c6:ba:35:1e:a3:74:05:2f:bf:64:6b:0c:2f:1e:32: 77:72:8e:cc:08:57:78:de:b6:48:81:4f:ed:f5:34:5d:2c:02: 00:10:be:24:01:4a:9e:92:24:18:81:20:ff:80:19:a2:b7:f0: bd:de:61:59:ee:82:91:62:33:5e:e3:ef:92:0c:3a:82:61:df: 5d:c0:5d:7a:43:1d:c2:05:85:3d:f4:6a:39:31:f4:54:4f:5c: a2:2b:88:d7:52:a2:d8:0c:d3:d7:c0:fd:19:e6:c3:10:01:25: c5:12:00:dc -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAQ4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0ZENUExMTAvBgNVBAUTKDRBOEEzOTVFNTU2Q0M3RjE5QUFFNkFCMDZBRkYwNjc5 NDQ5NTZCNDYwHhcNMjUwNjE1MDQxMjI5WhcNMjUwNjIyMDQxMjI5WjAYMRYwFAYD VQQDEw02ODRlNDgyZC0yZjAyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAud+Ya6NKP74EDWbznLly8rrc0o6c6bnwRvBg4df6G1j6Ba18J12sir0NZI2s mtDb2ICLEtuvfnSO3mXBRu/hm7E0Qjyk4l3ba1SeQGLEHq29kiNdpeF1mCL5U1eG J4yy6TINwU9aucQXXVRBNNXrDAGncAjt+jGiZQVUW8MZYeEdy+mgPMC5Xmk3JoRF 7tRKSdP8M7052RY5RKHuvkwuVOOMxLgK9u+uULu8WExSB+Vi5weHGTjkPPYqzUh8 Vz51ZkvqfYDo71JgcajsBs8XQWA2WbdrPp4cvT9jMBaGQLHjdNlBFONzlHcZdCjh fWuaTfzuleE1OzeD/NM6+LscAwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNdbyNRe Ct8UG2ppO/bUCSdQ2JToMB8GA1UdIwQYMBaAFEqKOV5VbMfxmq5qsGr/BnlElWtG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRkQ1QS8yMzc1QjMwNkI5 NDUxMUVFQkI4MTg4MzRDNEY5QUUwMi9Tb281WGxWc3hfR2FybXF3YXY4R2VVU1Zh MFkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1NvbzVYbFZzeF9HYXJtcXdhdjhHZVVTVmEwWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RkQ1QS8yMzc1QjMwNkI5NDUxMUVFQkI4MTg4MzRDNEY5QUUwMi9Tb281WGxWc3hf R2FybXF3YXY4R2VVU1ZhMFkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAUMIIj67cmAN2uDsBgCypsYXN3j0SpRus79aw+tVJIxhE/5xUCzXj6 fwuAqjOcN6Rq2uvQhkGckOg2v030RDWT7Z+O1pSIosiNNKzR3Fs91QQAsINGFrMM +3EXp7Xov8D2ZYLxWbJ1ohjwSDq5PEVEGeUi5j2Awo4xxHCweGuOD3WP6CyLt3F+ 9dPAJXm/wQSPVkLGujUeo3QFL79kawwvHjJ3co7MCFd43rZIgU/t9TRdLAIAEL4k AUqekiQYgSD/gBmit/C93mFZ7oKRYjNe4++SDDqCYd9dwF16Qx3CBYU99Go5MfRU T1yiK4jXUqLYDNPXwP0Z5sMQASXFEgDc -----END CERTIFICATE-----Generated at Sun Jun 15 08:44:03 2025 by rpki-client