$ rpki-client -vvf rpki.apnic.net/member_repository/A91E46A5/0231C154006B11EA97C1BD5FC4F9AE02/su3iAzROnKc1AcVRQvmugWCeiYc.mft File: su3iAzROnKc1AcVRQvmugWCeiYc.mft (raw, json) Hash identifier: 5CoZ14+mERXItfFf0JubMoFK5i3IAJxTcT0M0NESGCE= Subject key identifier: 4B:02:AD:EA:76:AC:D7:5D:1A:84:2F:29:42:08:5A:54:01:ED:31:B8 Authority key identifier: B2:ED:E2:03:34:4E:9C:A7:35:01:C5:51:42:F9:AE:81:60:9E:89:87 Certificate issuer: /CN=A91E46A5/serialNumber=B2EDE203344E9CA73501C55142F9AE81609E8987 Certificate serial: 0C79 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/su3iAzROnKc1AcVRQvmugWCeiYc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E46A5/0231C154006B11EA97C1BD5FC4F9AE02/su3iAzROnKc1AcVRQvmugWCeiYc.mft Manifest number: 0C6C Signing time: Sat 14 Jun 2025 18:11:44 +0000 Manifest this update: Sat 14 Jun 2025 18:11:43 +0000 Manifest next update: Sat 21 Jun 2025 18:11:43 +0000 Files and hashes: 1: su3iAzROnKc1AcVRQvmugWCeiYc.crl (hash: DgId3clgdGXU83mMDTtyVo9B+nmgCKo6Ua3QCnQ8HIo=) 2: CE094B08006B11EAA2719060C4F9AE02.roa (hash: 3at8OHhr3TWPa09hDLUXiFFjg44cS/0xW9KQOVKngqA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E46A5/0231C154006B11EA97C1BD5FC4F9AE02/su3iAzROnKc1AcVRQvmugWCeiYc.crl rsync://rpki.apnic.net/member_repository/A91E46A5/0231C154006B11EA97C1BD5FC4F9AE02/su3iAzROnKc1AcVRQvmugWCeiYc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/su3iAzROnKc1AcVRQvmugWCeiYc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Jun 2025 18:11:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3193 (0xc79) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E46A5, serialNumber=B2EDE203344E9CA73501C55142F9AE81609E8987 Validity Not Before: Jun 14 18:11:43 2025 GMT Not After : Jun 21 18:11:43 2025 GMT Subject: CN=684dbb60-e1d1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:4f:f4:a4:e7:d4:1b:34:3f:33:45:0e:63:86: c7:76:5f:e7:6c:f6:6a:70:cf:ce:11:7b:27:f5:4e: d2:de:df:19:08:17:27:6a:80:95:c0:a3:b5:1b:a5: d2:9e:b5:27:5c:ae:b0:ea:b1:83:82:1f:25:d2:da: 8c:db:6d:56:df:16:e0:e0:d5:a7:47:f1:60:c9:ce: 81:fb:0c:58:1e:9b:2f:1a:b2:61:88:17:d6:cc:32: 5a:96:05:c7:45:f6:57:cb:10:5a:cd:32:4a:5a:6c: e2:05:65:a7:39:7d:2f:b2:73:13:a4:08:de:0f:5e: f5:7d:24:1e:64:d4:e8:74:a5:43:7c:0a:75:19:37: e9:25:1e:23:6e:d3:02:3d:b6:7c:a8:fd:b2:18:15: f2:00:23:19:03:ee:20:0a:0a:56:f4:80:19:18:4e: 8b:ae:3b:84:ab:97:14:2b:dd:5f:ba:a4:b8:84:81: 6a:09:01:6d:dc:2d:53:84:f8:6a:91:0c:40:29:93: e3:67:cd:4c:ff:f7:c0:78:a5:6b:40:c7:eb:15:dc: 88:71:bf:9f:e5:01:20:33:4b:a1:c9:12:d1:f5:05: 35:c7:5d:3b:af:4d:4a:de:f0:c3:33:ac:03:3e:e1: 11:5f:45:17:34:7b:36:a3:91:22:49:6d:19:97:42: 6f:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4B:02:AD:EA:76:AC:D7:5D:1A:84:2F:29:42:08:5A:54:01:ED:31:B8 X509v3 Authority Key Identifier: keyid:B2:ED:E2:03:34:4E:9C:A7:35:01:C5:51:42:F9:AE:81:60:9E:89:87 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E46A5/0231C154006B11EA97C1BD5FC4F9AE02/su3iAzROnKc1AcVRQvmugWCeiYc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/su3iAzROnKc1AcVRQvmugWCeiYc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E46A5/0231C154006B11EA97C1BD5FC4F9AE02/su3iAzROnKc1AcVRQvmugWCeiYc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 90:e1:ae:d0:0d:d5:aa:ce:7f:1b:3f:42:f9:70:07:cf:33:ee: 48:01:14:af:5f:2d:5d:48:97:2d:8a:d1:f0:23:b8:e0:f8:9c: 5e:22:c8:31:f3:2c:5f:19:3e:d0:97:68:5b:ea:74:28:41:f2: c7:e2:50:35:19:c7:8e:fe:24:66:98:8e:2d:40:d4:09:5d:cd: 26:46:d4:2a:51:1f:21:4f:28:c2:34:24:d3:56:fd:60:0a:c7: 33:c9:b4:d0:10:97:d1:b9:8a:3a:09:49:9a:1a:30:de:89:c9: 56:6e:06:da:93:71:16:70:cb:84:9f:bb:90:93:1a:7d:d4:b2: f1:3f:a4:60:4b:52:25:b7:63:31:44:a0:c8:b1:02:a6:90:e9: e9:1c:f8:78:6e:89:44:c9:df:9b:69:d9:92:55:66:d9:96:3a: 5e:c1:4d:fd:a9:2d:89:d7:34:72:bb:2e:7b:cf:e6:85:c9:7c: e7:2d:0e:0f:66:e3:0b:59:1c:66:17:0f:fa:c0:61:e2:09:3a: 85:e9:b4:bf:4c:a9:7a:85:c9:33:f6:f9:2f:d1:15:88:9e:69: 08:63:a3:bd:8f:96:5f:59:49:7b:25:af:f4:1b:e6:89:a2:86: e4:7e:bf:ce:66:7f:09:28:06:c9:8e:a6:dc:14:fa:ca:2e:cc: fb:bc:69:1d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDHkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTQ2QTUxMTAvBgNVBAUTKEIyRURFMjAzMzQ0RTlDQTczNTAxQzU1MTQyRjlBRTgx NjA5RTg5ODcwHhcNMjUwNjE0MTgxMTQzWhcNMjUwNjIxMTgxMTQzWjAYMRYwFAYD VQQDEw02ODRkYmI2MC1lMWQxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoU/0pOfUGzQ/M0UOY4bHdl/nbPZqcM/OEXsn9U7S3t8ZCBcnaoCVwKO1G6XS nrUnXK6w6rGDgh8l0tqM221W3xbg4NWnR/Fgyc6B+wxYHpsvGrJhiBfWzDJalgXH RfZXyxBazTJKWmziBWWnOX0vsnMTpAjeD171fSQeZNTodKVDfAp1GTfpJR4jbtMC PbZ8qP2yGBXyACMZA+4gCgpW9IAZGE6LrjuEq5cUK91fuqS4hIFqCQFt3C1ThPhq kQxAKZPjZ81M//fAeKVrQMfrFdyIcb+f5QEgM0uhyRLR9QU1x107r01K3vDDM6wD PuERX0UXNHs2o5EiSW0Zl0JvGwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEsCrep2 rNddGoQvKUIIWlQB7TG4MB8GA1UdIwQYMBaAFLLt4gM0TpynNQHFUUL5roFgnomH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNDZBNS8wMjMxQzE1NDAw NkIxMUVBOTdDMUJENUZDNEY5QUUwMi9zdTNpQXpST25LYzFBY1ZSUXZtdWdXQ2Vp WWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3N1M2lBelJPbktjMUFjVlJRdm11Z1dDZWlZYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NDZBNS8wMjMxQzE1NDAwNkIxMUVBOTdDMUJENUZDNEY5QUUwMi9zdTNpQXpST25L YzFBY1ZSUXZtdWdXQ2VpWWMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCQ4a7QDdWqzn8bP0L5cAfPM+5IARSvXy1dSJctitHwI7jg+JxeIsgx 8yxfGT7Ql2hb6nQoQfLH4lA1GceO/iRmmI4tQNQJXc0mRtQqUR8hTyjCNCTTVv1g CsczybTQEJfRuYo6CUmaGjDeiclWbgbak3EWcMuEn7uQkxp91LLxP6RgS1Ilt2Mx RKDIsQKmkOnpHPh4bolEyd+badmSVWbZljpewU39qS2J1zRyuy57z+aFyXznLQ4P ZuMLWRxmFw/6wGHiCTqF6bS/TKl6hckz9vkv0RWInmkIY6O9j5ZfWUl7Ja/0G+aJ oobkfr/OZn8JKAbJjqbcFPrKLsz7vGkd -----END CERTIFICATE-----Generated at Sun Jun 15 08:39:26 2025 by rpki-client