$ rpki-client -vvf rpki.apnic.net/member_repository/A91E39B4/1EE1829E3DA111EA8B67E94FC4F9AE02/l7PdKrPIm8iiu8HbgDvOaOqlqhI.mft File: l7PdKrPIm8iiu8HbgDvOaOqlqhI.mft (raw, json) Hash identifier: kRSmZF4W7hoVN86YX/0fnGFNRe2GNX95uVVNn2J+ueo= Subject key identifier: 28:06:88:74:AD:C9:8F:6F:9E:4E:CA:AC:41:F9:95:B3:EB:00:6B:CC Authority key identifier: 97:B3:DD:2A:B3:C8:9B:C8:A2:BB:C1:DB:80:3B:CE:68:EA:A5:AA:12 Certificate issuer: /CN=A91E39B4/serialNumber=97B3DD2AB3C89BC8A2BBC1DB803BCE68EAA5AA12 Certificate serial: 0B46 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l7PdKrPIm8iiu8HbgDvOaOqlqhI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E39B4/1EE1829E3DA111EA8B67E94FC4F9AE02/l7PdKrPIm8iiu8HbgDvOaOqlqhI.mft Manifest number: 0B32 Signing time: Thu 12 Jun 2025 19:00:09 +0000 Manifest this update: Thu 12 Jun 2025 19:00:09 +0000 Manifest next update: Thu 19 Jun 2025 19:00:09 +0000 Files and hashes: 1: l7PdKrPIm8iiu8HbgDvOaOqlqhI.crl (hash: 7ywaNPlfHF4s8a2Ox1JsYYA2XIw+shrj0n/yPNC5Jok=) 2: 46F57CF8137B11EBA3B47E37C4F9AE02.roa (hash: 2qnnF6MVOAPWKTwVx6xcANvt7+ipRsuxDi1zcVsoM90=) 3: D968823E3DA111EA9A3FD550C4F9AE02.roa (hash: LHN9DyWzlGRcwkpXqFqZ90XaKLujDGwCFAysXhBXguc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E39B4/1EE1829E3DA111EA8B67E94FC4F9AE02/l7PdKrPIm8iiu8HbgDvOaOqlqhI.crl rsync://rpki.apnic.net/member_repository/A91E39B4/1EE1829E3DA111EA8B67E94FC4F9AE02/l7PdKrPIm8iiu8HbgDvOaOqlqhI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l7PdKrPIm8iiu8HbgDvOaOqlqhI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 19 Jun 2025 19:00:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2886 (0xb46) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E39B4, serialNumber=97B3DD2AB3C89BC8A2BBC1DB803BCE68EAA5AA12 Validity Not Before: Jun 12 19:00:09 2025 GMT Not After : Jun 19 19:00:09 2025 GMT Subject: CN=684b23b9-84ac Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:d9:68:68:5a:1d:c5:62:cc:d6:a7:82:33:4f: 81:0e:61:e7:29:06:82:cf:0b:f7:49:47:c0:81:b9: 8c:f8:38:fa:72:e7:76:96:27:d5:c2:f6:ec:ca:23: c6:db:93:cb:d7:03:fa:a4:39:7e:25:0c:46:09:a7: 10:38:09:fb:9a:88:6c:41:01:79:1e:1b:e4:84:70: 0e:1f:54:7f:a8:47:9a:78:69:59:e0:84:51:16:24: 7b:2e:da:37:e1:da:d0:a4:d2:0d:be:a4:11:34:35: 1d:53:0d:eb:5e:2e:c8:a9:25:6d:02:89:04:ff:c1: b5:4e:cc:93:6f:52:dc:b0:4c:49:4f:7d:e9:c9:06: 3d:c9:74:76:fe:38:6b:36:e8:f1:03:9e:2f:2e:5b: f5:64:cc:e7:d0:74:0f:eb:ec:00:ab:50:69:55:c2: 85:71:5e:e6:92:fc:17:e4:d7:0e:f6:83:e9:f7:4a: 3c:6d:3f:68:a1:5e:4f:d5:b1:5d:de:10:b9:2f:78: 74:28:84:bd:d9:8d:3f:28:c8:7c:bc:61:fb:a7:31: 02:1b:fb:be:65:a2:99:0a:1b:1d:30:cc:72:43:a6: 6d:aa:a6:92:98:52:39:7a:bc:09:71:9c:7a:d9:5d: 5c:b0:7d:f2:d6:95:c5:ce:37:ba:be:67:67:ff:b9: 21:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 28:06:88:74:AD:C9:8F:6F:9E:4E:CA:AC:41:F9:95:B3:EB:00:6B:CC X509v3 Authority Key Identifier: keyid:97:B3:DD:2A:B3:C8:9B:C8:A2:BB:C1:DB:80:3B:CE:68:EA:A5:AA:12 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E39B4/1EE1829E3DA111EA8B67E94FC4F9AE02/l7PdKrPIm8iiu8HbgDvOaOqlqhI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l7PdKrPIm8iiu8HbgDvOaOqlqhI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E39B4/1EE1829E3DA111EA8B67E94FC4F9AE02/l7PdKrPIm8iiu8HbgDvOaOqlqhI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 56:ff:dc:c9:fa:93:2a:7e:de:50:8c:e5:17:d4:40:45:9c:06: 83:0e:c7:2a:50:c2:82:83:11:55:9e:5c:f9:6c:b0:ea:ee:0d: b2:fc:d2:c1:2b:28:3c:09:d9:28:84:74:71:9a:56:ab:4b:fa: e7:5a:02:98:7d:3a:6e:36:b5:21:28:f0:ae:5a:10:a7:15:e4: 2a:db:02:4b:48:ca:dc:1c:bd:fb:d0:be:0f:c1:87:87:49:fd: cb:a0:04:3d:0b:62:62:45:28:2d:3b:d4:4c:54:c4:b8:ad:52: fb:ab:81:d7:c8:a4:47:10:77:43:67:15:4b:43:d0:c5:0b:7b: 89:9e:6b:62:f1:0d:68:da:63:c3:5d:41:04:2a:93:1d:f8:97: b2:fc:0d:8e:10:c8:dc:54:28:76:dc:7f:f2:08:96:c1:e2:2a: b4:27:25:80:0a:d5:46:b4:bc:94:95:86:d5:7b:85:d4:2f:fb: b6:85:dd:5a:48:bc:1c:d9:e0:ac:2c:55:f3:b0:c3:96:90:5e: 61:3a:1b:4d:8f:b1:e5:b0:66:49:48:94:08:0b:99:27:54:89: 11:b2:33:50:f1:69:63:ac:a8:30:a9:23:48:5a:3e:08:30:b2: 36:db:1b:02:c4:f0:6a:b4:48:4f:79:f9:a8:2b:72:a0:7c:fa: 59:8c:be:b7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC0YwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTM5QjQxMTAvBgNVBAUTKDk3QjNERDJBQjNDODlCQzhBMkJCQzFEQjgwM0JDRTY4 RUFBNUFBMTIwHhcNMjUwNjEyMTkwMDA5WhcNMjUwNjE5MTkwMDA5WjAYMRYwFAYD VQQDEw02ODRiMjNiOS04NGFjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx9loaFodxWLM1qeCM0+BDmHnKQaCzwv3SUfAgbmM+Dj6cud2lifVwvbsyiPG 25PL1wP6pDl+JQxGCacQOAn7mohsQQF5HhvkhHAOH1R/qEeaeGlZ4IRRFiR7Lto3 4drQpNINvqQRNDUdUw3rXi7IqSVtAokE/8G1TsyTb1LcsExJT33pyQY9yXR2/jhr NujxA54vLlv1ZMzn0HQP6+wAq1BpVcKFcV7mkvwX5NcO9oPp90o8bT9ooV5P1bFd 3hC5L3h0KIS92Y0/KMh8vGH7pzECG/u+ZaKZChsdMMxyQ6ZtqqaSmFI5erwJcZx6 2V1csH3y1pXFzje6vmdn/7khaQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCgGiHSt yY9vnk7KrEH5lbPrAGvMMB8GA1UdIwQYMBaAFJez3SqzyJvIorvB24A7zmjqpaoS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMzlCNC8xRUUxODI5RTNE QTExMUVBOEI2N0U5NEZDNEY5QUUwMi9sN1BkS3JQSW04aWl1OEhiZ0R2T2FPcWxx aEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2w3UGRLclBJbThpaXU4SGJnRHZPYU9xbHFoSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MzlCNC8xRUUxODI5RTNEQTExMUVBOEI2N0U5NEZDNEY5QUUwMi9sN1BkS3JQSW04 aWl1OEhiZ0R2T2FPcWxxaEkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBW/9zJ+pMqft5QjOUX1EBFnAaDDscqUMKCgxFVnlz5bLDq7g2y/NLB Kyg8CdkohHRxmlarS/rnWgKYfTpuNrUhKPCuWhCnFeQq2wJLSMrcHL370L4PwYeH Sf3LoAQ9C2JiRSgtO9RMVMS4rVL7q4HXyKRHEHdDZxVLQ9DFC3uJnmti8Q1o2mPD XUEEKpMd+Jey/A2OEMjcVCh23H/yCJbB4iq0JyWACtVGtLyUlYbVe4XUL/u2hd1a SLwc2eCsLFXzsMOWkF5hOhtNj7HlsGZJSJQIC5knVIkRsjNQ8WljrKgwqSNIWj4I MLI22xsCxPBqtEhPefmoK3KgfPpZjL63 -----END CERTIFICATE-----Generated at Sat Jun 14 19:22:08 2025 by rpki-client