$ rpki-client -vvf rpki.apnic.net/member_repository/A91ECC52/652836E8138A11EB97AEB420C4F9AE02/S4Vn-zh7_XQHa1CXcAEyx6yG5iA.mft File: S4Vn-zh7_XQHa1CXcAEyx6yG5iA.mft (raw, json) Hash identifier: uIOlLlb96OUttEh1TBouHyi54URzWoyhcwJobxecL8A= Subject key identifier: 55:FC:9A:E6:BA:EA:87:DF:3F:C9:47:77:44:66:3C:34:62:81:45:08 Authority key identifier: 4B:85:67:FB:38:7B:FD:74:07:6B:50:97:70:01:32:C7:AC:86:E6:20 Certificate issuer: /CN=A91ECC52/serialNumber=4B8567FB387BFD74076B5097700132C7AC86E620 Certificate serial: 0787 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/S4Vn-zh7_XQHa1CXcAEyx6yG5iA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91ECC52/652836E8138A11EB97AEB420C4F9AE02/S4Vn-zh7_XQHa1CXcAEyx6yG5iA.mft Manifest number: 0782 Signing time: Sat 14 Jun 2025 21:11:29 +0000 Manifest this update: Sat 14 Jun 2025 21:11:28 +0000 Manifest next update: Sat 21 Jun 2025 21:11:28 +0000 Files and hashes: 1: S4Vn-zh7_XQHa1CXcAEyx6yG5iA.crl (hash: /AjmOo7k6kcyUbYgCd2YsFDLEH18fkmcnlm15S5hdVc=) 2: 65D706B213FA11EB92A6FE61C4F9AE02.roa (hash: HDw255HT5Qq+WExObAcGQTxVC/IMJorhiCibpd+wpAY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91ECC52/652836E8138A11EB97AEB420C4F9AE02/S4Vn-zh7_XQHa1CXcAEyx6yG5iA.crl rsync://rpki.apnic.net/member_repository/A91ECC52/652836E8138A11EB97AEB420C4F9AE02/S4Vn-zh7_XQHa1CXcAEyx6yG5iA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/S4Vn-zh7_XQHa1CXcAEyx6yG5iA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Jun 2025 21:11:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1927 (0x787) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91ECC52, serialNumber=4B8567FB387BFD74076B5097700132C7AC86E620 Validity Not Before: Jun 14 21:11:28 2025 GMT Not After : Jun 21 21:11:28 2025 GMT Subject: CN=684de580-7c04 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:f1:44:d1:3c:45:77:29:d6:4f:4f:52:49:4a: f6:91:92:9a:ee:6c:7a:da:a8:28:7f:20:b0:0c:a2: 1d:63:a7:72:f0:91:b9:a9:b6:b8:30:a5:ac:0b:88: 35:7d:f5:34:f6:60:a7:e6:1a:e7:87:94:0f:39:24: cf:87:f7:cc:6d:8c:9d:27:28:03:61:3d:d0:f7:a5: d0:ed:98:82:8c:ea:06:cd:3e:a0:aa:b4:e0:b4:9d: 76:6c:3a:73:26:18:c4:d4:c2:ce:7c:95:fd:96:ae: 7d:b6:54:5f:ab:24:90:51:71:65:52:34:37:dc:ed: 3c:3c:6c:df:01:82:8d:59:e7:3f:ac:48:d5:87:5a: df:59:84:3f:13:c5:04:61:6a:45:e1:1d:55:a8:b0: 4c:5c:0a:33:58:21:32:eb:a0:3c:fc:dc:91:fe:41: 60:d7:b5:49:82:5b:f2:de:fc:e4:c4:9d:f9:1c:c6: 48:a9:cc:87:d2:b2:80:b2:44:f0:5e:73:f7:af:bd: d3:57:36:68:68:c5:75:a2:58:d6:f5:10:3f:05:ea: 9a:8d:fc:59:1d:55:70:9c:c0:0d:f1:ff:f2:87:87: 92:33:69:3e:9d:34:2d:a8:28:28:a2:05:bc:85:7c: 73:d3:7e:6a:64:d6:d5:6f:32:f5:19:12:f8:9d:2e: 05:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 55:FC:9A:E6:BA:EA:87:DF:3F:C9:47:77:44:66:3C:34:62:81:45:08 X509v3 Authority Key Identifier: keyid:4B:85:67:FB:38:7B:FD:74:07:6B:50:97:70:01:32:C7:AC:86:E6:20 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91ECC52/652836E8138A11EB97AEB420C4F9AE02/S4Vn-zh7_XQHa1CXcAEyx6yG5iA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/S4Vn-zh7_XQHa1CXcAEyx6yG5iA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91ECC52/652836E8138A11EB97AEB420C4F9AE02/S4Vn-zh7_XQHa1CXcAEyx6yG5iA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 67:3f:a5:4f:7e:a3:35:83:b4:51:bb:0c:e7:7b:0c:7a:f3:0e: 0b:b6:86:09:ee:3c:bf:f6:d3:c2:7a:03:ff:57:c8:2a:f9:3f: 44:6e:97:33:f2:4e:7c:91:e5:3b:bb:f7:cc:a5:4d:f7:e7:92: fe:6b:26:45:54:cd:53:a1:6e:3f:a2:bb:b2:93:47:b6:ad:05: 89:a3:3a:38:ac:d5:5d:24:d9:f9:43:36:46:d5:63:07:88:73: f7:84:79:ee:97:a4:f8:69:04:32:1b:5c:dc:e9:c2:4b:d3:b9: f0:be:8c:49:50:19:2c:c0:d9:9f:74:6d:6f:5b:cc:ea:a5:13: da:3f:1a:7a:8c:77:7c:1f:85:e5:b4:df:56:b3:bc:b9:c7:07: 26:47:1d:02:b4:05:ed:5c:4f:04:6a:19:55:ed:46:8c:93:bd: ef:a2:16:82:ff:3d:51:71:77:1a:f6:34:5b:c7:2a:fb:a4:9e: 93:72:d8:2c:6b:ba:fe:ad:95:89:0e:a2:ff:88:aa:46:62:a8: ec:1b:af:87:98:00:91:39:34:ee:de:1a:03:61:2e:e8:77:d2: 1a:1d:58:c3:1f:21:e4:e5:8d:3e:23:1b:b4:2c:c9:fb:76:6b: b5:12:77:57:40:b3:67:a7:28:c9:2e:3f:71:d0:e5:cc:58:23: 7f:cb:b1:0f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB4cwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUNDNTIxMTAvBgNVBAUTKDRCODU2N0ZCMzg3QkZENzQwNzZCNTA5NzcwMDEzMkM3 QUM4NkU2MjAwHhcNMjUwNjE0MjExMTI4WhcNMjUwNjIxMjExMTI4WjAYMRYwFAYD VQQDEw02ODRkZTU4MC03YzA0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5fFE0TxFdynWT09SSUr2kZKa7mx62qgofyCwDKIdY6dy8JG5qba4MKWsC4g1 ffU09mCn5hrnh5QPOSTPh/fMbYydJygDYT3Q96XQ7ZiCjOoGzT6gqrTgtJ12bDpz JhjE1MLOfJX9lq59tlRfqySQUXFlUjQ33O08PGzfAYKNWec/rEjVh1rfWYQ/E8UE YWpF4R1VqLBMXAozWCEy66A8/NyR/kFg17VJglvy3vzkxJ35HMZIqcyH0rKAskTw XnP3r73TVzZoaMV1oljW9RA/BeqajfxZHVVwnMAN8f/yh4eSM2k+nTQtqCgoogW8 hXxz035qZNbVbzL1GRL4nS4FtQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFX8mua6 6offP8lHd0RmPDRigUUIMB8GA1UdIwQYMBaAFEuFZ/s4e/10B2tQl3ABMseshuYg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQ0M1Mi82NTI4MzZFODEz OEExMUVCOTdBRUI0MjBDNEY5QUUwMi9TNFZuLXpoN19YUUhhMUNYY0FFeXg2eUc1 aUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1M0Vm4temg3X1hRSGExQ1hjQUV5eDZ5RzVpQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF Q0M1Mi82NTI4MzZFODEzOEExMUVCOTdBRUI0MjBDNEY5QUUwMi9TNFZuLXpoN19Y UUhhMUNYY0FFeXg2eUc1aUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBnP6VPfqM1g7RRuwznewx68w4LtoYJ7jy/9tPCegP/V8gq+T9Ebpcz 8k58keU7u/fMpU3355L+ayZFVM1ToW4/oruyk0e2rQWJozo4rNVdJNn5QzZG1WMH iHP3hHnul6T4aQQyG1zc6cJL07nwvoxJUBkswNmfdG1vW8zqpRPaPxp6jHd8H4Xl tN9Ws7y5xwcmRx0CtAXtXE8EahlV7UaMk73vohaC/z1RcXca9jRbxyr7pJ6Tctgs a7r+rZWJDqL/iKpGYqjsG6+HmACROTTu3hoDYS7od9IaHVjDHyHk5Y0+Ixu0LMn7 dmu1EndXQLNnpyjJLj9x0OXMWCN/y7EP -----END CERTIFICATE-----Generated at Sun Jun 15 10:03:28 2025 by rpki-client