$ rpki-client -vvf rpki.apnic.net/member_repository/A91E9BC4/92E821F0A46011E9810A5C0BC4F9AE02/g86FOnpm6rnh8jNGcR09yX1XWXg.mft File: g86FOnpm6rnh8jNGcR09yX1XWXg.mft (raw, json) Hash identifier: o2C+rxrR3mzZSmTbaTMe+Fj7p7YwUSVGOyXQTlckIUI= Subject key identifier: B6:CF:55:07:B1:99:20:AD:F9:9E:5A:E2:7D:65:D4:93:FD:04:03:8F Authority key identifier: 83:CE:85:3A:7A:66:EA:B9:E1:F2:33:46:71:1D:3D:C9:7D:57:59:78 Certificate issuer: /CN=A91E9BC4/serialNumber=83CE853A7A66EAB9E1F23346711D3DC97D575978 Certificate serial: 0E3E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g86FOnpm6rnh8jNGcR09yX1XWXg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E9BC4/92E821F0A46011E9810A5C0BC4F9AE02/g86FOnpm6rnh8jNGcR09yX1XWXg.mft Manifest number: 0E34 Signing time: Sat 14 Jun 2025 17:41:56 +0000 Manifest this update: Sat 14 Jun 2025 17:41:56 +0000 Manifest next update: Sat 21 Jun 2025 17:41:56 +0000 Files and hashes: 1: g86FOnpm6rnh8jNGcR09yX1XWXg.crl (hash: xNXkMlKk4MYyE0AxiidV+GK8o8KuKLpRauacOouxv68=) 2: 3B495FFCA46211E9B730310FC4F9AE02.roa (hash: pWiGa9e3CsBZCkEfjYxSv/AY6FwzKhNWqEBfC5Rt5as=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E9BC4/92E821F0A46011E9810A5C0BC4F9AE02/g86FOnpm6rnh8jNGcR09yX1XWXg.crl rsync://rpki.apnic.net/member_repository/A91E9BC4/92E821F0A46011E9810A5C0BC4F9AE02/g86FOnpm6rnh8jNGcR09yX1XWXg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g86FOnpm6rnh8jNGcR09yX1XWXg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Jun 2025 17:13:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3646 (0xe3e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E9BC4, serialNumber=83CE853A7A66EAB9E1F23346711D3DC97D575978 Validity Not Before: Jun 14 17:41:56 2025 GMT Not After : Jun 21 17:41:56 2025 GMT Subject: CN=684db464-0ba1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f0:bd:bb:40:52:2e:17:5f:84:08:6d:37:c1:26: 38:81:e7:62:5d:f8:65:66:e9:e0:3d:98:01:17:d0: fb:f5:39:c0:f7:b2:78:bb:a7:bc:f3:fd:82:a9:c7: 6c:0f:da:58:60:35:2c:8f:76:85:d8:74:b2:70:48: 87:29:0c:c4:91:7f:a9:27:68:bb:1e:ae:cc:8e:8c: 51:fd:a7:db:f7:5d:01:4e:4e:3d:39:6d:a8:15:9a: 97:92:6d:c6:c4:d8:86:a0:2a:1b:11:0a:d6:43:58: a3:af:9d:9f:d9:99:df:68:7a:95:15:ad:86:ac:8c: b6:de:85:1c:73:2c:d6:8d:b6:11:1a:57:74:8e:48: 7d:c4:9f:be:c9:25:06:a3:51:b3:3d:06:bd:6b:77: 72:3c:b7:ba:ac:16:0f:f9:36:81:aa:d4:be:1c:86: 37:c9:8d:1f:2b:94:6b:12:48:cf:03:11:ba:d0:e8: 1b:b0:5a:05:5b:36:db:fd:b4:48:9e:2e:e0:38:16: 24:1f:ed:0d:25:ce:17:fc:ac:49:62:51:8e:71:96: 83:5e:91:80:3e:bf:e5:f4:2f:04:dd:4c:f9:14:5c: d7:92:72:3f:3e:36:be:6f:41:3c:d2:19:5b:e7:e8: 64:89:ce:ed:ed:b3:b0:06:4a:14:97:22:2a:3f:56: 45:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B6:CF:55:07:B1:99:20:AD:F9:9E:5A:E2:7D:65:D4:93:FD:04:03:8F X509v3 Authority Key Identifier: keyid:83:CE:85:3A:7A:66:EA:B9:E1:F2:33:46:71:1D:3D:C9:7D:57:59:78 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E9BC4/92E821F0A46011E9810A5C0BC4F9AE02/g86FOnpm6rnh8jNGcR09yX1XWXg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g86FOnpm6rnh8jNGcR09yX1XWXg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E9BC4/92E821F0A46011E9810A5C0BC4F9AE02/g86FOnpm6rnh8jNGcR09yX1XWXg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 20:ea:2a:a4:c7:34:1a:25:ec:1f:7a:41:54:af:a1:dd:c0:45: 94:d2:16:f2:7c:d9:33:04:3c:ba:e5:44:97:ec:63:f7:b2:8c: eb:82:7c:21:54:96:3d:4f:59:15:1a:1f:e8:1b:9a:a0:b9:e0: f1:39:d2:d3:1a:a7:db:67:fb:73:e5:f2:44:29:81:d1:9e:1f: a9:82:3b:2c:a5:14:fc:7c:9c:d8:f4:c8:6a:bd:1f:9f:30:62: 9b:d6:ea:15:bb:e6:12:c0:bc:11:f9:3a:40:cd:50:68:7b:db: 6e:06:b1:bc:bb:c0:e8:c3:10:01:6e:a1:11:35:7e:8e:5f:99: 67:33:81:c1:a9:12:42:d0:1e:14:72:ec:96:a4:4a:99:52:90: f9:ca:22:50:2d:df:7c:cd:92:01:85:b4:af:c9:5d:f5:ac:9d: 3a:8b:24:8f:38:da:e5:cc:b1:34:3b:26:67:48:6e:59:5b:79: e3:a8:19:a1:b3:cf:44:63:22:99:36:8a:5e:6f:d6:60:ea:32: 89:d4:b9:df:c4:c2:6a:df:7a:08:0c:3f:61:74:7b:66:52:c3: a4:67:ad:59:49:7d:ce:e3:fa:b1:5d:e3:c3:b8:a2:a6:f0:7e: f4:43:6c:6e:5b:11:58:e5:95:d3:24:82:8a:3c:b6:cf:47:e6: b1:0e:fa:84 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDj4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTlCQzQxMTAvBgNVBAUTKDgzQ0U4NTNBN0E2NkVBQjlFMUYyMzM0NjcxMUQzREM5 N0Q1NzU5NzgwHhcNMjUwNjE0MTc0MTU2WhcNMjUwNjIxMTc0MTU2WjAYMRYwFAYD VQQDEw02ODRkYjQ2NC0wYmExMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8L27QFIuF1+ECG03wSY4gediXfhlZungPZgBF9D79TnA97J4u6e88/2Cqcds D9pYYDUsj3aF2HSycEiHKQzEkX+pJ2i7Hq7MjoxR/afb910BTk49OW2oFZqXkm3G xNiGoCobEQrWQ1ijr52f2ZnfaHqVFa2GrIy23oUccyzWjbYRGld0jkh9xJ++ySUG o1GzPQa9a3dyPLe6rBYP+TaBqtS+HIY3yY0fK5RrEkjPAxG60OgbsFoFWzbb/bRI ni7gOBYkH+0NJc4X/KxJYlGOcZaDXpGAPr/l9C8E3Uz5FFzXknI/Pja+b0E80hlb 5+hkic7t7bOwBkoUlyIqP1ZFmwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLbPVQex mSCt+Z5a4n1l1JP9BAOPMB8GA1UdIwQYMBaAFIPOhTp6Zuq54fIzRnEdPcl9V1l4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFOUJDNC85MkU4MjFGMEE0 NjAxMUU5ODEwQTVDMEJDNEY5QUUwMi9nODZGT25wbTZybmg4ak5HY1IwOXlYMVhX WGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2c4NkZPbnBtNnJuaDhqTkdjUjA5eVgxWFdYZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF OUJDNC85MkU4MjFGMEE0NjAxMUU5ODEwQTVDMEJDNEY5QUUwMi9nODZGT25wbTZy bmg4ak5HY1IwOXlYMVhXWGcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAg6iqkxzQaJewfekFUr6HdwEWU0hbyfNkzBDy65USX7GP3sozrgnwh VJY9T1kVGh/oG5qgueDxOdLTGqfbZ/tz5fJEKYHRnh+pgjsspRT8fJzY9MhqvR+f MGKb1uoVu+YSwLwR+TpAzVBoe9tuBrG8u8DowxABbqERNX6OX5lnM4HBqRJC0B4U cuyWpEqZUpD5yiJQLd98zZIBhbSvyV31rJ06iySPONrlzLE0OyZnSG5ZW3njqBmh s89EYyKZNopeb9Zg6jKJ1LnfxMJq33oIDD9hdHtmUsOkZ61ZSX3O4/qxXePDuKKm 8H70Q2xuWxFY5ZXTJIKKPLbPR+axDvqE -----END CERTIFICATE-----Generated at Sat Jun 14 19:37:24 2025 by rpki-client