$ rpki-client -vvf rpki.apnic.net/member_repository/A91E0AAD/0DE5B40E79E211ECB5013148C4F9AE02/ABc0faPzW3U5Ub30sbB_dh49nr8.mft File: ABc0faPzW3U5Ub30sbB_dh49nr8.mft (raw, json) Hash identifier: QQlcc0vbNhZZcoLCKIXUlrEMhslXwAVhqQUifzh16qo= Subject key identifier: B7:A5:04:94:EE:DD:F7:2E:56:88:11:07:94:64:6F:2E:33:52:CF:DB Authority key identifier: 00:17:34:7D:A3:F3:5B:75:39:51:BD:F4:B1:B0:7F:76:1E:3D:9E:BF Certificate issuer: /CN=A91E0AAD/serialNumber=0017347DA3F35B753951BDF4B1B07F761E3D9EBF Certificate serial: 0411 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ABc0faPzW3U5Ub30sbB_dh49nr8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E0AAD/0DE5B40E79E211ECB5013148C4F9AE02/ABc0faPzW3U5Ub30sbB_dh49nr8.mft Manifest number: 0406 Signing time: Fri 13 Jun 2025 00:01:57 +0000 Manifest this update: Fri 13 Jun 2025 00:01:57 +0000 Manifest next update: Fri 20 Jun 2025 00:01:57 +0000 Files and hashes: 1: ABc0faPzW3U5Ub30sbB_dh49nr8.crl (hash: b5NDi/ZPz/b2Ls7b6ZsuMmEEpdZbsjhIpQ98DC3h3OQ=) 2: 0BE6F39E79E611EC99DA1B51C4F9AE02.roa (hash: NrKkQ4m5nwAN210bjbYrFUQAukjqo41a6Baomfs4idw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E0AAD/0DE5B40E79E211ECB5013148C4F9AE02/ABc0faPzW3U5Ub30sbB_dh49nr8.crl rsync://rpki.apnic.net/member_repository/A91E0AAD/0DE5B40E79E211ECB5013148C4F9AE02/ABc0faPzW3U5Ub30sbB_dh49nr8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ABc0faPzW3U5Ub30sbB_dh49nr8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 20 Jun 2025 00:01:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1041 (0x411) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E0AAD, serialNumber=0017347DA3F35B753951BDF4B1B07F761E3D9EBF Validity Not Before: Jun 13 00:01:57 2025 GMT Not After : Jun 20 00:01:57 2025 GMT Subject: CN=684b6a75-df73 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:06:fc:df:8e:cb:1c:62:8b:99:85:fe:52:70: 4f:32:72:07:51:d0:68:b7:de:66:7c:09:a5:86:1b: 32:64:7a:84:95:41:66:22:d8:79:64:a4:37:2c:db: 99:44:5a:ac:23:f0:7c:7b:95:ea:e9:1e:0c:f1:0f: b4:61:29:6a:bc:4f:96:db:e3:ab:1a:cc:75:a3:b7: bb:3d:0a:23:62:22:21:ec:d3:23:60:bd:d7:4e:78: 4d:cb:5b:aa:be:1d:f9:b8:89:08:ce:cd:f0:cf:0e: f0:7b:5f:d3:78:d4:36:9a:ae:f0:f1:2f:5e:5f:2b: 2a:41:35:ff:62:74:b6:29:8a:58:92:e3:6d:99:c2: fa:cd:4b:13:9f:3f:71:2f:26:e9:b9:77:96:c7:ac: 50:4c:dc:f1:af:d4:27:ac:86:e6:e6:89:d0:98:c7: b6:04:00:a6:63:e4:37:12:22:ba:9c:a2:84:51:3c: 82:09:8c:7a:4a:dc:c4:71:e4:aa:6e:74:4b:9e:6f: 9b:f6:ab:10:8b:20:66:b6:74:30:a8:e4:5f:ac:51: b2:70:43:ef:71:98:c7:12:c4:55:e7:7e:10:7d:22: c4:63:f9:7f:3d:04:ef:b6:c9:47:07:16:e4:74:bd: 5e:57:72:13:f0:e8:fd:98:f2:e0:b5:63:a2:cd:73: b3:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B7:A5:04:94:EE:DD:F7:2E:56:88:11:07:94:64:6F:2E:33:52:CF:DB X509v3 Authority Key Identifier: keyid:00:17:34:7D:A3:F3:5B:75:39:51:BD:F4:B1:B0:7F:76:1E:3D:9E:BF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E0AAD/0DE5B40E79E211ECB5013148C4F9AE02/ABc0faPzW3U5Ub30sbB_dh49nr8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ABc0faPzW3U5Ub30sbB_dh49nr8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E0AAD/0DE5B40E79E211ECB5013148C4F9AE02/ABc0faPzW3U5Ub30sbB_dh49nr8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4e:c6:f7:c5:0d:eb:48:3e:05:2d:c7:b9:f9:0e:c3:93:04:61: 96:e1:11:6f:5f:63:92:7a:7f:b9:1f:11:a9:10:c2:15:94:15: 5e:f5:cf:cf:af:64:eb:64:3f:3b:dd:00:88:d7:0b:d9:07:b3: 51:d2:71:45:3b:08:de:e9:37:4d:5d:08:27:19:a3:d1:9f:8b: 0f:5e:4c:74:c7:1b:70:73:f9:4c:4d:6d:ff:9d:6c:58:f5:08: 25:2f:26:f0:ce:a1:20:6c:8f:91:4d:ca:72:9b:79:ef:be:40: 85:97:6d:93:27:4c:91:6c:e5:5d:9e:02:48:35:1e:1a:fa:9d: 6f:6b:1b:86:48:6e:25:6e:59:20:e6:d2:11:be:79:de:70:7d: 39:f8:94:7e:fe:2d:f5:e5:0c:45:9a:01:6a:b7:f5:a7:f8:aa: 51:56:83:85:3c:17:06:c5:c6:f2:0f:d2:b2:38:33:a7:48:89: d9:5e:02:ae:5c:77:c3:4f:85:7a:7e:ca:1a:f5:d9:c1:03:96: a4:68:4f:dd:ec:9d:a0:25:6c:a0:95:9c:3f:da:cd:79:07:a9: a9:0b:2f:fe:ed:e2:39:68:52:a0:39:38:95:40:ba:25:ec:87: 1d:b6:b4:87:c8:ad:cd:d7:7e:8c:1b:ce:60:b6:b4:6a:e8:4f: 36:e4:ce:b6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBBEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTBBQUQxMTAvBgNVBAUTKDAwMTczNDdEQTNGMzVCNzUzOTUxQkRGNEIxQjA3Rjc2 MUUzRDlFQkYwHhcNMjUwNjEzMDAwMTU3WhcNMjUwNjIwMDAwMTU3WjAYMRYwFAYD VQQDEw02ODRiNmE3NS1kZjczMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0Ab8347LHGKLmYX+UnBPMnIHUdBot95mfAmlhhsyZHqElUFmIth5ZKQ3LNuZ RFqsI/B8e5Xq6R4M8Q+0YSlqvE+W2+OrGsx1o7e7PQojYiIh7NMjYL3XTnhNy1uq vh35uIkIzs3wzw7we1/TeNQ2mq7w8S9eXysqQTX/YnS2KYpYkuNtmcL6zUsTnz9x LybpuXeWx6xQTNzxr9QnrIbm5onQmMe2BACmY+Q3EiK6nKKEUTyCCYx6StzEceSq bnRLnm+b9qsQiyBmtnQwqORfrFGycEPvcZjHEsRV534QfSLEY/l/PQTvtslHBxbk dL1eV3IT8Oj9mPLgtWOizXOzXQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLelBJTu 3fcuVogRB5Rkby4zUs/bMB8GA1UdIwQYMBaAFAAXNH2j81t1OVG99LGwf3YePZ6/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMEFBRC8wREU1QjQwRTc5 RTIxMUVDQjUwMTMxNDhDNEY5QUUwMi9BQmMwZmFQelczVTVVYjMwc2JCX2RoNDlu cjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0FCYzBmYVB6VzNVNVViMzBzYkJfZGg0OW5yOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MEFBRC8wREU1QjQwRTc5RTIxMUVDQjUwMTMxNDhDNEY5QUUwMi9BQmMwZmFQelcz VTVVYjMwc2JCX2RoNDlucjgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBOxvfFDetIPgUtx7n5DsOTBGGW4RFvX2OSen+5HxGpEMIVlBVe9c/P r2TrZD873QCI1wvZB7NR0nFFOwje6TdNXQgnGaPRn4sPXkx0xxtwc/lMTW3/nWxY 9QglLybwzqEgbI+RTcpym3nvvkCFl22TJ0yRbOVdngJINR4a+p1vaxuGSG4lblkg 5tIRvnnecH05+JR+/i315QxFmgFqt/Wn+KpRVoOFPBcGxcbyD9KyODOnSInZXgKu XHfDT4V6fsoa9dnBA5akaE/d7J2gJWyglZw/2s15B6mpCy/+7eI5aFKgOTiVQLol 7IcdtrSHyK3N136MG85gtrRq6E825M62 -----END CERTIFICATE-----Generated at Sat Jun 14 18:10:31 2025 by rpki-client