$ rpki-client -vvf rpki.apnic.net/member_repository/A91E38C1/E75AC2621D9711E28EF8928108B02CD2/M4vXge0h5dsUBXs3uQOipAjiQgI.mft File: M4vXge0h5dsUBXs3uQOipAjiQgI.mft (raw, json) Hash identifier: LKXlbmPxC6Wu6dWrdg6t/nQ8dQE0IzL4hXMebxCEBM0= Subject key identifier: 8C:84:78:94:8B:4D:31:0D:FB:A1:9E:3D:C4:3B:D2:CA:C0:4E:7A:25 Authority key identifier: 33:8B:D7:81:ED:21:E5:DB:14:05:7B:37:B9:03:A2:A4:08:E2:42:02 Certificate issuer: /CN=A91E38C1/serialNumber=338BD781ED21E5DB14057B37B903A2A408E24202 Certificate serial: 34D0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/M4vXge0h5dsUBXs3uQOipAjiQgI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E38C1/E75AC2621D9711E28EF8928108B02CD2/M4vXge0h5dsUBXs3uQOipAjiQgI.mft Manifest number: 34A9 Signing time: Fri 20 Jun 2025 14:53:27 +0000 Manifest this update: Fri 20 Jun 2025 14:53:27 +0000 Manifest next update: Fri 27 Jun 2025 14:53:26 +0000 Files and hashes: 1: M4vXge0h5dsUBXs3uQOipAjiQgI.crl (hash: E/7EUnvi009GeWJlzlQBkk4WyVxiDv9Z2aOq80+uI1I=) 2: 5F114FB2C28811EB8BB7245FC4F9AE02.roa (hash: NTEzu1pSF4sdWy2GcCcEDp/gqX9S2zLnxs3jJP1dXh4=) 3: 5DF144D4C28811EB8BB7245FC4F9AE02.roa (hash: MtAXGpGxLYC9TQTRbnJyAY8nZ+XjjJVEjf45TgfTD7c=) 4: 5CD84EBCC28811EB8BB7245FC4F9AE02.roa (hash: +MuzD9gM5AUhBlmI5x0tCQas+CPjWTVYziN5P4guwtA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E38C1/E75AC2621D9711E28EF8928108B02CD2/M4vXge0h5dsUBXs3uQOipAjiQgI.crl rsync://rpki.apnic.net/member_repository/A91E38C1/E75AC2621D9711E28EF8928108B02CD2/M4vXge0h5dsUBXs3uQOipAjiQgI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/M4vXge0h5dsUBXs3uQOipAjiQgI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 27 Jun 2025 14:53:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13520 (0x34d0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E38C1, serialNumber=338BD781ED21E5DB14057B37B903A2A408E24202 Validity Not Before: Jun 20 14:53:27 2025 GMT Not After : Jun 27 14:53:26 2025 GMT Subject: CN=685575e7-a81c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:11:d2:05:13:5d:6b:af:42:cc:2d:03:2b:3b: 7f:1f:e7:7f:43:82:8e:0e:ae:aa:34:0b:91:e2:6f: 5b:6c:48:a1:90:67:97:ae:ea:5c:dd:4d:ed:30:7f: d0:2b:24:af:4b:e1:70:8b:0f:92:22:47:93:73:d2: b2:aa:c6:71:de:1b:a8:6c:19:9e:0e:e3:b6:bd:97: ae:b2:ba:f7:0c:1f:b9:52:b0:d7:70:11:08:30:26: 76:df:fd:57:eb:cb:82:75:6f:16:eb:64:29:44:92: 77:89:9f:c9:78:aa:8e:3c:a6:36:f0:3f:7e:75:fe: 4e:6d:f1:67:53:4f:ad:56:7c:4b:45:f9:85:6e:33: d2:35:1f:47:47:58:de:16:a8:6c:b7:df:04:f3:6f: 28:1a:bc:b9:78:b2:cf:b4:77:e5:20:dc:af:a7:c4: 54:2d:e9:42:79:57:a3:e8:94:61:52:ec:2f:78:a7: bf:e5:a9:ea:fb:06:02:69:25:0c:1c:6e:bc:0f:1f: 90:59:02:53:05:bf:b3:1b:2b:56:81:6f:50:4c:f8: e7:bb:df:01:f2:e0:63:6b:ba:35:f9:8b:b1:44:b0: 00:1a:7a:0f:5d:c5:07:4e:04:26:bf:65:2d:ac:4a: b5:92:47:00:90:5a:50:f3:4c:22:44:4e:6d:c4:1a: 01:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8C:84:78:94:8B:4D:31:0D:FB:A1:9E:3D:C4:3B:D2:CA:C0:4E:7A:25 X509v3 Authority Key Identifier: keyid:33:8B:D7:81:ED:21:E5:DB:14:05:7B:37:B9:03:A2:A4:08:E2:42:02 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E38C1/E75AC2621D9711E28EF8928108B02CD2/M4vXge0h5dsUBXs3uQOipAjiQgI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/M4vXge0h5dsUBXs3uQOipAjiQgI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E38C1/E75AC2621D9711E28EF8928108B02CD2/M4vXge0h5dsUBXs3uQOipAjiQgI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 61:99:36:62:26:0f:32:d8:90:a0:30:d3:2e:0f:a9:f2:13:c9: ff:13:88:0b:97:a8:31:cb:9f:4c:44:53:df:56:07:57:01:1a: 39:49:16:4b:46:7b:7c:47:36:9c:19:ca:cb:54:de:33:d2:a9: f6:e4:49:50:eb:2a:99:87:c7:ef:cf:71:ce:48:77:29:06:47: 46:eb:32:ee:e7:65:05:88:76:13:2f:9b:63:60:57:98:2a:01: 1f:48:7e:d2:49:cc:f8:61:a3:6f:f3:bd:af:23:c3:db:42:c7: f2:23:e6:24:cd:5c:24:b1:59:71:0d:2b:7c:5b:89:82:4a:5c: a8:1e:de:fa:5b:3f:04:07:70:52:3f:53:a3:d8:b0:9a:9c:be: 4d:a4:69:d9:58:fe:c1:7d:11:cb:26:37:8f:2d:5b:20:2d:96: 01:ad:c8:46:47:2d:a8:7b:d9:da:85:48:00:e9:fa:a8:7e:15: b1:d1:0b:7a:0b:d5:80:61:8a:a9:f3:6a:d7:2d:7b:f1:de:5a: 4c:73:9d:c9:45:1e:83:44:51:2f:ab:45:f5:33:49:75:17:b4: d4:c7:fe:1b:02:67:0f:40:71:78:4a:fb:c5:29:d9:b1:54:ad: 5a:fd:97:3f:a1:f3:87:a3:59:2d:25:84:bc:e3:28:3a:43:79: 6a:94:4c:62 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNNAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTM4QzExMTAvBgNVBAUTKDMzOEJENzgxRUQyMUU1REIxNDA1N0IzN0I5MDNBMkE0 MDhFMjQyMDIwHhcNMjUwNjIwMTQ1MzI3WhcNMjUwNjI3MTQ1MzI2WjAYMRYwFAYD VQQDEw02ODU1NzVlNy1hODFjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyhHSBRNda69CzC0DKzt/H+d/Q4KODq6qNAuR4m9bbEihkGeXrupc3U3tMH/Q KySvS+Fwiw+SIkeTc9KyqsZx3huobBmeDuO2vZeusrr3DB+5UrDXcBEIMCZ23/1X 68uCdW8W62QpRJJ3iZ/JeKqOPKY28D9+df5ObfFnU0+tVnxLRfmFbjPSNR9HR1je Fqhst98E828oGry5eLLPtHflINyvp8RULelCeVej6JRhUuwveKe/5anq+wYCaSUM HG68Dx+QWQJTBb+zGytWgW9QTPjnu98B8uBja7o1+YuxRLAAGnoPXcUHTgQmv2Ut rEq1kkcAkFpQ80wiRE5txBoBKwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIyEeJSL TTEN+6GePcQ70srATnolMB8GA1UdIwQYMBaAFDOL14HtIeXbFAV7N7kDoqQI4kIC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMzhDMS9FNzVBQzI2MjFE OTcxMUUyOEVGODkyODEwOEIwMkNEMi9NNHZYZ2UwaDVkc1VCWHMzdVFPaXBBamlR Z0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL000dlhnZTBoNWRzVUJYczN1UU9pcEFqaVFnSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MzhDMS9FNzVBQzI2MjFEOTcxMUUyOEVGODkyODEwOEIwMkNEMi9NNHZYZ2UwaDVk c1VCWHMzdVFPaXBBamlRZ0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBhmTZiJg8y2JCgMNMuD6nyE8n/E4gLl6gxy59MRFPfVgdXARo5SRZL Rnt8RzacGcrLVN4z0qn25ElQ6yqZh8fvz3HOSHcpBkdG6zLu52UFiHYTL5tjYFeY KgEfSH7SScz4YaNv872vI8PbQsfyI+YkzVwksVlxDSt8W4mCSlyoHt76Wz8EB3BS P1Oj2LCanL5NpGnZWP7BfRHLJjePLVsgLZYBrchGRy2oe9nahUgA6fqofhWx0Qt6 C9WAYYqp82rXLXvx3lpMc53JRR6DRFEvq0X1M0l1F7TUx/4bAmcPQHF4SvvFKdmx VK1a/Zc/ofOHo1ktJYS84yg6Q3lqlExi -----END CERTIFICATE-----Generated at Sat Jun 21 09:20:51 2025 by rpki-client