$ rpki-client -vvf rpki.apnic.net/member_repository/A91E6C4E/3448652CF3CB11E5AE366062C4F9AE02/_0Md-OE71_7FHntTUHtFOan5ZWY.mft File: _0Md-OE71_7FHntTUHtFOan5ZWY.mft (raw, json) Hash identifier: +ps5IRvlEi7bRd3O8+g2U9UUG7SWOpXWUIe//EpTygs= Subject key identifier: C4:CB:B7:0F:6C:E5:B3:9F:E2:59:B6:68:BC:14:E1:4A:56:9A:1A:28 Authority key identifier: FF:43:1D:F8:E1:3B:D7:FE:C5:1E:7B:53:50:7B:45:39:A9:F9:65:66 Certificate issuer: /CN=A91E6C4E/serialNumber=FF431DF8E13BD7FEC51E7B53507B4539A9F96566 Certificate serial: 210F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_0Md-OE71_7FHntTUHtFOan5ZWY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E6C4E/3448652CF3CB11E5AE366062C4F9AE02/_0Md-OE71_7FHntTUHtFOan5ZWY.mft Manifest number: 2103 Signing time: Sat 14 Jun 2025 15:54:42 +0000 Manifest this update: Sat 14 Jun 2025 15:54:41 +0000 Manifest next update: Sat 21 Jun 2025 15:54:41 +0000 Files and hashes: 1: _0Md-OE71_7FHntTUHtFOan5ZWY.crl (hash: nWAZpdP14OWdnDP7C5Wr+DYd6TnKMgMwNfIC9eo6aYs=) 2: 5F0B20081CBF11EAA5FCAC86C4F9AE02.roa (hash: BjqwppR+NMle1n/1OCoqadfW2SGArIC17ShPvDamqQc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E6C4E/3448652CF3CB11E5AE366062C4F9AE02/_0Md-OE71_7FHntTUHtFOan5ZWY.crl rsync://rpki.apnic.net/member_repository/A91E6C4E/3448652CF3CB11E5AE366062C4F9AE02/_0Md-OE71_7FHntTUHtFOan5ZWY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_0Md-OE71_7FHntTUHtFOan5ZWY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Jun 2025 15:54:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8463 (0x210f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E6C4E, serialNumber=FF431DF8E13BD7FEC51E7B53507B4539A9F96566 Validity Not Before: Jun 14 15:54:41 2025 GMT Not After : Jun 21 15:54:41 2025 GMT Subject: CN=684d9b41-c5fa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:f8:f8:57:29:76:a8:6f:38:e6:0f:eb:9e:05: 33:8f:1a:e9:74:30:37:ee:29:e2:fd:97:09:bb:89: b5:a1:e2:4f:5e:44:b5:bf:3c:9c:4b:6a:2d:2f:a5: cd:fd:00:c0:2f:ce:5b:be:d3:21:f6:b2:a6:46:e6: 3a:2f:c5:eb:b6:4f:f4:40:8a:c7:23:d1:aa:46:74: a4:9c:27:e3:b9:ba:a3:ff:90:51:e8:12:a6:6d:16: fc:ee:ad:e1:cf:42:b4:fc:b9:4f:b8:70:5b:87:7f: 64:a7:22:a9:d8:55:69:f2:5e:96:77:72:bb:e5:d8: 6d:78:31:c1:3d:05:c6:2b:3f:cd:4a:fa:b6:7e:65: 57:2e:72:2a:be:28:57:4b:29:b6:cc:90:f9:c9:6e: 6c:c9:2f:48:97:df:9d:bc:a2:fe:28:80:ac:f4:f8: 09:0f:43:49:42:07:f9:fb:6a:c5:61:59:17:c0:83: 2d:5a:d7:cd:69:b3:fe:a4:6e:21:61:44:58:09:64: fd:4c:bf:7b:20:6b:a3:38:55:19:21:db:3e:eb:70: fb:43:d8:d1:4a:ea:19:3c:aa:f4:96:44:f7:4c:da: a8:78:1d:3d:37:09:ad:13:f3:f2:a5:4e:93:f4:0d: 4a:c6:a1:9e:c1:4b:05:89:c3:14:a7:e0:6b:77:b0: bc:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C4:CB:B7:0F:6C:E5:B3:9F:E2:59:B6:68:BC:14:E1:4A:56:9A:1A:28 X509v3 Authority Key Identifier: keyid:FF:43:1D:F8:E1:3B:D7:FE:C5:1E:7B:53:50:7B:45:39:A9:F9:65:66 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E6C4E/3448652CF3CB11E5AE366062C4F9AE02/_0Md-OE71_7FHntTUHtFOan5ZWY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_0Md-OE71_7FHntTUHtFOan5ZWY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E6C4E/3448652CF3CB11E5AE366062C4F9AE02/_0Md-OE71_7FHntTUHtFOan5ZWY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5a:b0:1c:4d:ff:97:24:ac:af:95:64:5c:1c:e0:08:73:a8:b1: a3:e8:b8:98:8a:17:12:d3:c3:97:19:85:a2:f1:04:f0:47:58: bf:44:15:97:88:85:af:5c:c4:1e:a4:48:d8:9a:72:99:5f:f1: 35:22:0d:aa:b8:7e:c1:bf:0c:25:a7:14:af:73:58:f3:79:a4: 19:2d:63:48:50:c3:0d:ab:bf:5e:b3:0b:54:34:6e:f7:03:62: 48:27:34:46:64:26:40:da:83:af:05:8c:f3:d4:17:d6:f4:4a: 52:d6:0e:f6:ac:02:7a:bb:49:f8:d7:bb:53:7d:87:ec:e6:b7: 50:c4:01:bf:39:db:3b:bc:f4:fb:ac:b2:2c:0f:ad:e6:ab:5a: 95:9d:01:77:c7:3c:62:24:bc:6a:9d:26:e7:e9:03:7a:7e:bf: b3:88:1f:41:35:15:3e:16:f2:24:28:c9:fb:b9:16:82:cc:f3: cd:4f:6d:b1:96:08:f5:f4:a9:17:86:61:17:cc:13:dc:88:7b: ed:5b:dc:73:8a:4c:b7:7f:09:08:0f:81:6f:35:15:07:8d:92: c6:61:67:ac:cf:67:2f:74:12:4e:ec:9c:20:1c:9c:31:c7:76: d2:34:dd:de:32:1c:45:17:46:5e:68:c7:33:53:ed:90:08:31: 17:23:90:86 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICIQ8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTZDNEUxMTAvBgNVBAUTKEZGNDMxREY4RTEzQkQ3RkVDNTFFN0I1MzUwN0I0NTM5 QTlGOTY1NjYwHhcNMjUwNjE0MTU1NDQxWhcNMjUwNjIxMTU1NDQxWjAYMRYwFAYD VQQDEw02ODRkOWI0MS1jNWZhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4/j4Vyl2qG845g/rngUzjxrpdDA37ini/ZcJu4m1oeJPXkS1vzycS2otL6XN /QDAL85bvtMh9rKmRuY6L8Xrtk/0QIrHI9GqRnSknCfjubqj/5BR6BKmbRb87q3h z0K0/LlPuHBbh39kpyKp2FVp8l6Wd3K75dhteDHBPQXGKz/NSvq2fmVXLnIqvihX Sym2zJD5yW5syS9Il9+dvKL+KICs9PgJD0NJQgf5+2rFYVkXwIMtWtfNabP+pG4h YURYCWT9TL97IGujOFUZIds+63D7Q9jRSuoZPKr0lkT3TNqoeB09NwmtE/PypU6T 9A1KxqGewUsFicMUp+Brd7C8jwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMTLtw9s 5bOf4lm2aLwU4UpWmhooMB8GA1UdIwQYMBaAFP9DHfjhO9f+xR57U1B7RTmp+WVm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNkM0RS8zNDQ4NjUyQ0Yz Q0IxMUU1QUUzNjYwNjJDNEY5QUUwMi9fME1kLU9FNzFfN0ZIbnRUVUh0Rk9hbjVa V1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL18wTWQtT0U3MV83RkhudFRVSHRGT2FuNVpXWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NkM0RS8zNDQ4NjUyQ0YzQ0IxMUU1QUUzNjYwNjJDNEY5QUUwMi9fME1kLU9FNzFf N0ZIbnRUVUh0Rk9hbjVaV1kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBasBxN/5ckrK+VZFwc4AhzqLGj6LiYihcS08OXGYWi8QTwR1i/RBWX iIWvXMQepEjYmnKZX/E1Ig2quH7BvwwlpxSvc1jzeaQZLWNIUMMNq79eswtUNG73 A2JIJzRGZCZA2oOvBYzz1BfW9EpS1g72rAJ6u0n417tTfYfs5rdQxAG/Ods7vPT7 rLIsD63mq1qVnQF3xzxiJLxqnSbn6QN6fr+ziB9BNRU+FvIkKMn7uRaCzPPNT22x lgj19KkXhmEXzBPciHvtW9xziky3fwkID4FvNRUHjZLGYWesz2cvdBJO7JwgHJwx x3bSNN3eMhxFF0ZeaMczU+2QCDEXI5CG -----END CERTIFICATE-----Generated at Sat Jun 14 19:35:12 2025 by rpki-client