$ rpki-client -vvf rpki.apnic.net/member_repository/A91E9D0C/814F6D041A1A11EC9D1CDF1EC4F9AE02/Cd4ZZ-lS7o4bLdYPiPY7omBXU-8.mft File: Cd4ZZ-lS7o4bLdYPiPY7omBXU-8.mft (raw, json) Hash identifier: UzEWudaGoO/bgFlFu00MRY6Rbgq5JqA7VPZmmOYomK0= Subject key identifier: 90:CA:BF:C6:D0:39:63:32:17:60:22:67:5F:45:92:CD:DE:05:D1:76 Authority key identifier: 09:DE:19:67:E9:52:EE:8E:1B:2D:D6:0F:88:F6:3B:A2:60:57:53:EF Certificate issuer: /CN=A91E9D0C/serialNumber=09DE1967E952EE8E1B2DD60F88F63BA2605753EF Certificate serial: 04F3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Cd4ZZ-lS7o4bLdYPiPY7omBXU-8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E9D0C/814F6D041A1A11EC9D1CDF1EC4F9AE02/Cd4ZZ-lS7o4bLdYPiPY7omBXU-8.mft Manifest number: 04ED Signing time: Sat 14 Jun 2025 23:26:58 +0000 Manifest this update: Sat 14 Jun 2025 23:26:57 +0000 Manifest next update: Sat 21 Jun 2025 23:26:57 +0000 Files and hashes: 1: Cd4ZZ-lS7o4bLdYPiPY7omBXU-8.crl (hash: KSn7pa89XkYZlt8NhCZkgq5KCoGt+rihGsPlaAlLi4M=) 2: 630BCB6E1A1D11EC99B84C20C4F9AE02.roa (hash: DgUDwmkN0T0UntF7QmQLHNafJtdHs9vt+l0U9HNHmvY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E9D0C/814F6D041A1A11EC9D1CDF1EC4F9AE02/Cd4ZZ-lS7o4bLdYPiPY7omBXU-8.crl rsync://rpki.apnic.net/member_repository/A91E9D0C/814F6D041A1A11EC9D1CDF1EC4F9AE02/Cd4ZZ-lS7o4bLdYPiPY7omBXU-8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Cd4ZZ-lS7o4bLdYPiPY7omBXU-8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Jun 2025 23:26:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1267 (0x4f3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E9D0C, serialNumber=09DE1967E952EE8E1B2DD60F88F63BA2605753EF Validity Not Before: Jun 14 23:26:57 2025 GMT Not After : Jun 21 23:26:57 2025 GMT Subject: CN=684e0542-09a0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:b3:1f:3b:0c:e1:fa:b3:b2:f6:4a:8a:11:1b: a7:84:a3:cf:e7:5d:2a:43:8e:cd:10:40:3e:d9:1e: bc:6d:2b:52:c6:8f:73:2f:a3:06:82:63:08:f7:79: b6:60:67:15:c1:b2:8d:8a:54:38:b8:8d:2a:23:8f: b8:38:d0:13:ce:d9:37:21:ad:41:53:bd:73:19:57: de:01:58:f5:dc:9e:78:67:d7:99:16:e7:b9:37:84: bd:1e:17:2a:16:c8:71:95:f2:ea:66:46:1d:93:05: 7a:a4:4a:23:35:88:2b:72:38:cb:56:f0:54:74:39: 63:0f:44:94:df:5c:2a:e0:c0:ed:9f:21:06:d3:1d: 0c:a4:6c:6a:7a:d1:71:40:44:5b:4b:92:15:c7:fe: b7:8d:4b:ce:9d:16:db:83:84:5e:61:a9:fc:a2:6e: a6:ab:cc:b9:45:97:b5:77:95:f6:45:3b:7c:c6:34: f1:74:8e:3b:ce:9b:62:a0:fe:72:31:27:a6:61:b6: b9:a0:34:c6:95:5e:63:38:26:72:89:48:0c:b9:24: 6b:4c:08:89:c0:27:36:54:57:11:95:e6:3e:0a:55: 11:b6:65:cb:1b:33:2a:4e:77:ff:50:0c:b5:39:52: ce:a3:8a:1a:00:c5:08:9e:f0:e0:11:71:99:c4:71: 91:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 90:CA:BF:C6:D0:39:63:32:17:60:22:67:5F:45:92:CD:DE:05:D1:76 X509v3 Authority Key Identifier: keyid:09:DE:19:67:E9:52:EE:8E:1B:2D:D6:0F:88:F6:3B:A2:60:57:53:EF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E9D0C/814F6D041A1A11EC9D1CDF1EC4F9AE02/Cd4ZZ-lS7o4bLdYPiPY7omBXU-8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Cd4ZZ-lS7o4bLdYPiPY7omBXU-8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E9D0C/814F6D041A1A11EC9D1CDF1EC4F9AE02/Cd4ZZ-lS7o4bLdYPiPY7omBXU-8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 12:f2:25:da:7a:85:17:9f:96:80:58:5f:c6:26:81:32:59:d6: 4b:67:bf:cb:b3:20:d2:de:3d:81:8d:5d:dd:93:86:55:e1:8b: 56:a3:35:23:a4:b2:f2:59:ac:49:cd:b6:ad:47:4d:fb:98:0b: 32:98:ea:a1:2e:90:13:a4:29:bd:3b:69:0f:01:e8:8f:9a:49: 25:43:11:53:fb:70:c0:be:d2:26:7e:bc:8f:e0:6f:ef:4f:da: eb:28:4b:a6:28:00:08:7e:d1:4f:27:c3:2b:aa:3e:44:59:fb: 7b:70:5a:e6:e4:f8:bc:e3:b2:83:2e:a4:08:5a:00:45:01:26: 87:a4:9e:44:12:64:c2:b9:41:c4:0b:f2:6d:a7:5e:5e:e7:29: 6a:b8:a8:a6:c1:e6:ee:29:75:07:5e:21:93:4b:b0:52:bb:6f: 77:1d:ef:44:48:7b:7c:59:ed:2e:fe:31:74:5f:2a:69:1d:fd: 3e:97:bf:45:9b:45:61:bb:1a:6a:72:72:ea:ce:72:73:42:f3: df:1b:b3:07:78:d0:ed:6a:4b:89:e9:f3:a0:f2:ea:11:42:41: 7e:45:8c:c9:f0:48:0e:07:a2:2e:ea:a8:86:7a:96:24:82:56: 25:ff:e5:ad:70:47:cd:71:94:0c:12:0d:a0:72:c1:d2:57:55: d1:43:eb:54 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBPMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTlEMEMxMTAvBgNVBAUTKDA5REUxOTY3RTk1MkVFOEUxQjJERDYwRjg4RjYzQkEy NjA1NzUzRUYwHhcNMjUwNjE0MjMyNjU3WhcNMjUwNjIxMjMyNjU3WjAYMRYwFAYD VQQDEw02ODRlMDU0Mi0wOWEwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAz7MfOwzh+rOy9kqKERunhKPP510qQ47NEEA+2R68bStSxo9zL6MGgmMI93m2 YGcVwbKNilQ4uI0qI4+4ONATztk3Ia1BU71zGVfeAVj13J54Z9eZFue5N4S9Hhcq FshxlfLqZkYdkwV6pEojNYgrcjjLVvBUdDljD0SU31wq4MDtnyEG0x0MpGxqetFx QERbS5IVx/63jUvOnRbbg4ReYan8om6mq8y5RZe1d5X2RTt8xjTxdI47zptioP5y MSemYba5oDTGlV5jOCZyiUgMuSRrTAiJwCc2VFcRleY+ClURtmXLGzMqTnf/UAy1 OVLOo4oaAMUInvDgEXGZxHGRdQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJDKv8bQ OWMyF2AiZ19Fks3eBdF2MB8GA1UdIwQYMBaAFAneGWfpUu6OGy3WD4j2O6JgV1Pv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFOUQwQy84MTRGNkQwNDFB MUExMUVDOUQxQ0RGMUVDNEY5QUUwMi9DZDRaWi1sUzdvNGJMZFlQaVBZN29tQlhV LTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NkNFpaLWxTN280YkxkWVBpUFk3b21CWFUtOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF OUQwQy84MTRGNkQwNDFBMUExMUVDOUQxQ0RGMUVDNEY5QUUwMi9DZDRaWi1sUzdv NGJMZFlQaVBZN29tQlhVLTgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAS8iXaeoUXn5aAWF/GJoEyWdZLZ7/LsyDS3j2BjV3dk4ZV4YtWozUj pLLyWaxJzbatR037mAsymOqhLpATpCm9O2kPAeiPmkklQxFT+3DAvtImfryP4G/v T9rrKEumKAAIftFPJ8Mrqj5EWft7cFrm5Pi847KDLqQIWgBFASaHpJ5EEmTCuUHE C/Jtp15e5ylquKimwebuKXUHXiGTS7BSu293He9ESHt8We0u/jF0XyppHf0+l79F m0VhuxpqcnLqznJzQvPfG7MHeNDtakuJ6fOg8uoRQkF+RYzJ8EgOB6Iu6qiGepYk glYl/+WtcEfNcZQMEg2gcsHSV1XRQ+tU -----END CERTIFICATE-----Generated at Sun Jun 15 05:22:48 2025 by rpki-client