$ rpki-client -vvf rpki.apnic.net/member_repository/A91EAB64/9B44EB748F2911ECB6A6996CC4F9AE02/IO0KqyB1C4snqG35iadUv1cm3X4.mft File: IO0KqyB1C4snqG35iadUv1cm3X4.mft (raw, json) Hash identifier: XGaTCBqnk8ynrDMfUZIY2PwB1kkdYW7jWWrBRUEWeBk= Subject key identifier: A6:B7:90:8E:F2:5D:BE:75:85:9E:6F:E3:35:EA:5E:13:CC:8A:E8:41 Authority key identifier: 20:ED:0A:AB:20:75:0B:8B:27:A8:6D:F9:89:A7:54:BF:57:26:DD:7E Certificate issuer: /CN=A91EAB64/serialNumber=20ED0AAB20750B8B27A86DF989A754BF5726DD7E Certificate serial: 01A7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IO0KqyB1C4snqG35iadUv1cm3X4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EAB64/9B44EB748F2911ECB6A6996CC4F9AE02/IO0KqyB1C4snqG35iadUv1cm3X4.mft Manifest number: 0556 Signing time: Fri 13 Jun 2025 00:12:52 +0000 Manifest this update: Fri 13 Jun 2025 00:12:52 +0000 Manifest next update: Fri 20 Jun 2025 00:12:52 +0000 Files and hashes: 1: IO0KqyB1C4snqG35iadUv1cm3X4.crl (hash: xKAaJI9kaa4WFpHDj86M/H3rXUx4SWXGYXTRuweQ0P4=) 2: 13C17EAE203211F09B9D141CC4F9AE02.roa (hash: HS1vi6nnSZ7fbVowIGS+cC1MW1aBR9pLwV7kayJA9l4=) 3: 0064309A203211F091C0061CC4F9AE02.roa (hash: CxjM8nT+6zqXXcEsv5r6YYN/NOjb/oMb5HsHrJLUpqw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EAB64/9B44EB748F2911ECB6A6996CC4F9AE02/IO0KqyB1C4snqG35iadUv1cm3X4.crl rsync://rpki.apnic.net/member_repository/A91EAB64/9B44EB748F2911ECB6A6996CC4F9AE02/IO0KqyB1C4snqG35iadUv1cm3X4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IO0KqyB1C4snqG35iadUv1cm3X4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 20 Jun 2025 00:12:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 423 (0x1a7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EAB64, serialNumber=20ED0AAB20750B8B27A86DF989A754BF5726DD7E Validity Not Before: Jun 13 00:12:52 2025 GMT Not After : Jun 20 00:12:52 2025 GMT Subject: CN=684b6d04-0fae Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:5c:49:ad:c0:56:ec:86:12:36:70:47:ff:fc: 05:a3:f2:ec:c5:67:50:60:8a:6c:28:c7:b3:88:e7: 98:6e:1d:db:88:a4:2e:b5:c4:4a:81:64:d2:61:db: 95:b4:cf:a3:6b:60:37:54:b3:c4:47:b6:9f:12:cc: 8b:71:ee:a0:b3:21:22:d7:c3:af:a1:8d:b4:a6:1d: 6e:4d:bb:3e:40:bb:79:1d:4d:9d:a4:81:5e:bf:fe: 18:75:8d:5e:62:39:3c:3d:91:66:3a:a5:d4:de:47: b3:d4:36:50:2f:9e:5d:98:03:ac:01:a3:5f:37:81: ad:9b:eb:3f:29:23:c3:df:2c:76:0c:48:f6:3b:5d: c4:e7:0a:7e:00:13:eb:29:10:f0:b8:13:5a:a2:8d: 41:3b:d4:94:9d:b0:e7:cc:91:4d:aa:3b:13:49:e3: 7e:05:90:dc:c8:22:dc:12:cf:55:c3:16:4e:3f:d4: bf:84:a3:e1:1f:af:a2:22:08:88:e8:82:ec:89:73: ce:d2:70:12:82:b6:77:63:01:5e:f6:30:a5:4a:a5: 4d:29:9c:3e:40:d2:48:eb:9a:b5:b1:9a:3c:30:63: d5:9e:8c:18:2c:0c:e1:8b:00:09:dd:9f:4c:87:ba: d8:9f:1d:88:00:8a:e9:bd:4d:e4:35:80:ce:7d:75: 97:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A6:B7:90:8E:F2:5D:BE:75:85:9E:6F:E3:35:EA:5E:13:CC:8A:E8:41 X509v3 Authority Key Identifier: keyid:20:ED:0A:AB:20:75:0B:8B:27:A8:6D:F9:89:A7:54:BF:57:26:DD:7E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EAB64/9B44EB748F2911ECB6A6996CC4F9AE02/IO0KqyB1C4snqG35iadUv1cm3X4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IO0KqyB1C4snqG35iadUv1cm3X4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EAB64/9B44EB748F2911ECB6A6996CC4F9AE02/IO0KqyB1C4snqG35iadUv1cm3X4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 25:a3:ed:6e:54:dc:e4:c2:0f:c5:32:dd:39:f2:f3:51:38:8b: 2c:42:9e:85:2c:95:a7:7f:76:00:87:62:4e:b3:e9:ce:f9:c7: d5:08:a4:6f:65:01:5e:88:09:8e:0b:ef:cd:42:c5:eb:81:03: e2:7f:58:0a:30:4c:b2:58:da:a6:51:5a:0a:11:35:81:12:a6: d5:82:4c:55:8c:a7:d6:0d:54:d8:2a:49:60:24:b1:61:31:74: 24:a4:ba:63:9c:b9:93:b7:43:63:b8:f0:95:dc:a3:a6:ed:f3: b6:c6:a9:ac:6c:ba:67:76:54:38:59:06:67:e0:33:28:bc:df: 11:30:88:b3:6e:59:d0:fe:0f:1a:71:f6:24:a2:47:cf:ee:d4: 1e:2a:1b:44:2a:f7:b9:71:0c:cb:2a:f2:46:3c:bc:d3:f5:2c: 92:e8:c8:8a:23:bf:0e:0c:77:89:7e:1a:8e:52:2c:18:7c:bc: 9f:10:85:62:1b:3b:1d:89:63:95:88:43:bd:86:fc:aa:26:87: 3d:f7:92:72:46:bb:09:ef:57:d0:bb:4a:9b:f4:ea:90:d8:ac: 90:d2:1f:46:69:a1:56:b9:6c:ad:75:a8:46:e9:22:15:bf:ca: 45:fd:bb:9d:8c:c5:54:1c:70:34:8a:9c:04:6c:ae:72:3e:44: a0:2d:a3:a7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAacwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUFCNjQxMTAvBgNVBAUTKDIwRUQwQUFCMjA3NTBCOEIyN0E4NkRGOTg5QTc1NEJG NTcyNkREN0UwHhcNMjUwNjEzMDAxMjUyWhcNMjUwNjIwMDAxMjUyWjAYMRYwFAYD VQQDEw02ODRiNmQwNC0wZmFlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqlxJrcBW7IYSNnBH//wFo/LsxWdQYIpsKMeziOeYbh3biKQutcRKgWTSYduV tM+ja2A3VLPER7afEsyLce6gsyEi18OvoY20ph1uTbs+QLt5HU2dpIFev/4YdY1e Yjk8PZFmOqXU3kez1DZQL55dmAOsAaNfN4Gtm+s/KSPD3yx2DEj2O13E5wp+ABPr KRDwuBNaoo1BO9SUnbDnzJFNqjsTSeN+BZDcyCLcEs9VwxZOP9S/hKPhH6+iIgiI 6ILsiXPO0nASgrZ3YwFe9jClSqVNKZw+QNJI65q1sZo8MGPVnowYLAzhiwAJ3Z9M h7rYnx2IAIrpvU3kNYDOfXWXVQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKa3kI7y Xb51hZ5v4zXqXhPMiuhBMB8GA1UdIwQYMBaAFCDtCqsgdQuLJ6ht+YmnVL9XJt1+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQUI2NC85QjQ0RUI3NDhG MjkxMUVDQjZBNjk5NkNDNEY5QUUwMi9JTzBLcXlCMUM0c25xRzM1aWFkVXYxY20z WDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lPMEtxeUIxQzRzbnFHMzVpYWRVdjFjbTNYNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QUI2NC85QjQ0RUI3NDhGMjkxMUVDQjZBNjk5NkNDNEY5QUUwMi9JTzBLcXlCMUM0 c25xRzM1aWFkVXYxY20zWDQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAlo+1uVNzkwg/FMt058vNROIssQp6FLJWnf3YAh2JOs+nO+cfVCKRv ZQFeiAmOC+/NQsXrgQPif1gKMEyyWNqmUVoKETWBEqbVgkxVjKfWDVTYKklgJLFh MXQkpLpjnLmTt0NjuPCV3KOm7fO2xqmsbLpndlQ4WQZn4DMovN8RMIizblnQ/g8a cfYkokfP7tQeKhtEKve5cQzLKvJGPLzT9SyS6MiKI78ODHeJfhqOUiwYfLyfEIVi GzsdiWOViEO9hvyqJoc995JyRrsJ71fQu0qb9OqQ2KyQ0h9GaaFWuWytdahG6SIV v8pF/budjMVUHHA0ipwEbK5yPkSgLaOn -----END CERTIFICATE-----Generated at Sat Jun 14 19:26:56 2025 by rpki-client