$ rpki-client -vvf rpki.apnic.net/member_repository/A91E8EAD/3C24DAD28FAD11EA92D1F642C4F9AE02/83YJDdec9qJZrioXAgNy6eYWC7Y.mft File: 83YJDdec9qJZrioXAgNy6eYWC7Y.mft (raw, json) Hash identifier: j2qLCegWve5jzM6uLx6TzpDaLRGTjQSr29GG/xlJbfc= Subject key identifier: 83:D1:6D:31:E9:33:64:EB:AB:E2:2F:69:8E:1C:73:EC:3D:BA:1F:19 Authority key identifier: F3:76:09:0D:D7:9C:F6:A2:59:AE:2A:17:02:03:72:E9:E6:16:0B:B6 Certificate issuer: /CN=A91E8EAD/serialNumber=F376090DD79CF6A259AE2A17020372E9E6160BB6 Certificate serial: 098A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/83YJDdec9qJZrioXAgNy6eYWC7Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E8EAD/3C24DAD28FAD11EA92D1F642C4F9AE02/83YJDdec9qJZrioXAgNy6eYWC7Y.mft Manifest number: 0982 Signing time: Sat 14 Jun 2025 19:56:43 +0000 Manifest this update: Sat 14 Jun 2025 19:56:42 +0000 Manifest next update: Sat 21 Jun 2025 19:56:42 +0000 Files and hashes: 1: 83YJDdec9qJZrioXAgNy6eYWC7Y.crl (hash: RbsXHGHDosgAuUdUdWi2lQljN9q1uy4wm6OVuYC1syA=) 2: 16F7FB3E8FAF11EA96738C46C4F9AE02.roa (hash: FDVevWofhV4OBWCY3mCV+bPsuc2xoyahcfyBo3UC3vE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E8EAD/3C24DAD28FAD11EA92D1F642C4F9AE02/83YJDdec9qJZrioXAgNy6eYWC7Y.crl rsync://rpki.apnic.net/member_repository/A91E8EAD/3C24DAD28FAD11EA92D1F642C4F9AE02/83YJDdec9qJZrioXAgNy6eYWC7Y.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/83YJDdec9qJZrioXAgNy6eYWC7Y.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Jun 2025 19:56:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2442 (0x98a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E8EAD, serialNumber=F376090DD79CF6A259AE2A17020372E9E6160BB6 Validity Not Before: Jun 14 19:56:42 2025 GMT Not After : Jun 21 19:56:42 2025 GMT Subject: CN=684dd3fb-216d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:57:39:f7:1f:02:32:a1:5b:e2:0a:4e:1e:64: cd:9c:9e:d8:f9:fd:34:8e:8b:5f:ff:6e:a4:35:56: f2:c7:6f:45:65:15:5e:b8:7d:eb:bb:c7:7c:9c:0e: ce:b2:bd:e8:d1:83:81:17:01:93:29:08:a1:a5:62: 33:a0:69:79:9d:09:8e:cb:fb:e8:d6:dd:b7:a9:5a: 0e:73:15:24:58:9d:20:84:1a:04:ff:0b:bc:71:47: cb:27:21:0d:84:a0:4a:be:81:e6:02:b3:24:9a:60: e3:93:60:bd:0a:df:05:6a:b8:e6:3e:87:c9:7f:5e: 48:22:f1:0b:21:63:97:56:a9:7f:83:26:07:33:e5: a2:ff:b6:fb:63:c8:d8:4c:70:23:74:57:cd:36:1d: 5f:4c:b3:5f:a1:55:f4:4c:f1:db:4d:56:99:21:ac: e2:5e:ff:de:30:91:1a:f5:97:42:f3:12:53:2f:ef: e6:fc:a4:90:a4:2e:bd:4e:28:28:5e:11:3a:7c:b8: b0:ae:7f:7e:c9:7a:a1:83:bb:52:2c:0c:fd:05:04: 55:7d:35:5c:ae:11:a1:08:0d:67:5d:34:9b:24:0e: 18:86:8a:e3:a4:d3:86:0b:dd:d3:e8:d3:67:de:08: 34:9c:da:5f:95:a3:83:ed:9e:84:4d:a8:b5:2b:17: ee:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 83:D1:6D:31:E9:33:64:EB:AB:E2:2F:69:8E:1C:73:EC:3D:BA:1F:19 X509v3 Authority Key Identifier: keyid:F3:76:09:0D:D7:9C:F6:A2:59:AE:2A:17:02:03:72:E9:E6:16:0B:B6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E8EAD/3C24DAD28FAD11EA92D1F642C4F9AE02/83YJDdec9qJZrioXAgNy6eYWC7Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/83YJDdec9qJZrioXAgNy6eYWC7Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E8EAD/3C24DAD28FAD11EA92D1F642C4F9AE02/83YJDdec9qJZrioXAgNy6eYWC7Y.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption bb:b6:54:fd:ac:56:72:81:9b:74:ac:67:5e:88:63:e9:19:53: 26:f0:e9:06:0a:8a:9d:51:c8:cf:1e:d4:ef:17:75:8a:93:4f: 48:13:74:a7:75:f7:b2:77:1b:05:5d:aa:c3:d2:52:a1:fb:3a: 91:c8:87:82:1f:4b:02:3a:b3:f6:f2:60:a9:fc:26:db:bd:69: f9:90:62:66:ce:29:38:1d:b7:18:56:d0:f8:39:bf:2f:00:0a: 9f:76:4b:82:5b:62:83:06:de:eb:f7:c5:08:a2:ca:56:5d:76: 72:83:99:f4:06:0c:8e:db:50:aa:68:b3:8e:82:e1:87:6c:7d: 75:00:9a:91:f3:4b:2a:fc:53:f6:86:74:15:47:f2:ee:e7:36: 76:87:7b:2c:14:08:19:b6:8a:d2:f1:b7:8b:dc:84:ab:4c:a6: a4:09:22:77:36:77:5b:4f:5b:0f:9d:4d:84:1d:61:c7:92:e1: d7:51:8a:a0:80:05:f3:22:80:ca:e0:71:3e:4c:e3:c9:11:92: b1:9f:d9:a2:9d:6b:8b:eb:b6:6d:ab:5d:2c:1b:c4:92:1f:c2: 55:82:69:99:47:0d:3d:f9:e0:7d:41:58:d7:89:6e:43:8d:56: e7:0b:1b:cd:05:9b:71:29:72:20:9a:b6:1f:00:24:f7:ea:3a: 4e:7d:32:91 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCYowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RThFQUQxMTAvBgNVBAUTKEYzNzYwOTBERDc5Q0Y2QTI1OUFFMkExNzAyMDM3MkU5 RTYxNjBCQjYwHhcNMjUwNjE0MTk1NjQyWhcNMjUwNjIxMTk1NjQyWjAYMRYwFAYD VQQDEw02ODRkZDNmYi0yMTZkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5Vc59x8CMqFb4gpOHmTNnJ7Y+f00jotf/26kNVbyx29FZRVeuH3ru8d8nA7O sr3o0YOBFwGTKQihpWIzoGl5nQmOy/vo1t23qVoOcxUkWJ0ghBoE/wu8cUfLJyEN hKBKvoHmArMkmmDjk2C9Ct8FarjmPofJf15IIvELIWOXVql/gyYHM+Wi/7b7Y8jY THAjdFfNNh1fTLNfoVX0TPHbTVaZIaziXv/eMJEa9ZdC8xJTL+/m/KSQpC69Tigo XhE6fLiwrn9+yXqhg7tSLAz9BQRVfTVcrhGhCA1nXTSbJA4YhorjpNOGC93T6NNn 3gg0nNpflaOD7Z6ETai1KxfucQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIPRbTHp M2Trq+IvaY4cc+w9uh8ZMB8GA1UdIwQYMBaAFPN2CQ3XnPaiWa4qFwIDcunmFgu2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFOEVBRC8zQzI0REFEMjhG QUQxMUVBOTJEMUY2NDJDNEY5QUUwMi84M1lKRGRlYzlxSlpyaW9YQWdOeTZlWVdD N1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzgzWUpEZGVjOXFKWnJpb1hBZ055NmVZV0M3WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF OEVBRC8zQzI0REFEMjhGQUQxMUVBOTJEMUY2NDJDNEY5QUUwMi84M1lKRGRlYzlx SlpyaW9YQWdOeTZlWVdDN1kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC7tlT9rFZygZt0rGdeiGPpGVMm8OkGCoqdUcjPHtTvF3WKk09IE3Sn dfeydxsFXarD0lKh+zqRyIeCH0sCOrP28mCp/CbbvWn5kGJmzik4HbcYVtD4Ob8v AAqfdkuCW2KDBt7r98UIospWXXZyg5n0BgyO21CqaLOOguGHbH11AJqR80sq/FP2 hnQVR/Lu5zZ2h3ssFAgZtorS8beL3ISrTKakCSJ3NndbT1sPnU2EHWHHkuHXUYqg gAXzIoDK4HE+TOPJEZKxn9minWuL67Ztq10sG8SSH8JVgmmZRw09+eB9QVjXiW5D jVbnCxvNBZtxKXIgmrYfACT36jpOfTKR -----END CERTIFICATE-----Generated at Sun Jun 15 08:29:37 2025 by rpki-client