$ rpki-client -vvf rpki.apnic.net/member_repository/A91ED073/F4B4CA5264A411EDA0876B16C4F9AE02/CK7T4dy27XdCMDzv9H3gLZKz7eU.mft File: CK7T4dy27XdCMDzv9H3gLZKz7eU.mft (raw, json) Hash identifier: 4zWXYDlxqBAhEAzCW/OXr88icvIB+1OiNkp0xc+M3vY= Subject key identifier: C2:B4:D9:BA:7D:66:C9:F4:07:83:A7:90:84:9A:80:31:C5:97:A4:99 Authority key identifier: 08:AE:D3:E1:DC:B6:ED:77:42:30:3C:EF:F4:7D:E0:2D:92:B3:ED:E5 Certificate issuer: /CN=A91ED073/serialNumber=08AED3E1DCB6ED7742303CEFF47DE02D92B3EDE5 Certificate serial: 01EA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CK7T4dy27XdCMDzv9H3gLZKz7eU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91ED073/F4B4CA5264A411EDA0876B16C4F9AE02/CK7T4dy27XdCMDzv9H3gLZKz7eU.mft Manifest number: 01E3 Signing time: Fri 13 Jun 2025 01:42:55 +0000 Manifest this update: Fri 13 Jun 2025 01:42:55 +0000 Manifest next update: Fri 20 Jun 2025 01:42:55 +0000 Files and hashes: 1: CK7T4dy27XdCMDzv9H3gLZKz7eU.crl (hash: p1eLy56xDyPUwYfScVCXBOKTQ27WeiAf1O7Rhbb/F8Q=) 2: 6DDD4756EEC411EEA4BB703CC4F9AE02.roa (hash: 8+VuZ7fIxTmaLVYpnHMJUk/ecoQHiqToC0QiVIOWMis=) 3: 6EB41DC6EEC411EEA4BB703CC4F9AE02.roa (hash: UKZjo7nlv5xaEfM2Q5iGETEP+0bko/kMccsOgiKgCVA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91ED073/F4B4CA5264A411EDA0876B16C4F9AE02/CK7T4dy27XdCMDzv9H3gLZKz7eU.crl rsync://rpki.apnic.net/member_repository/A91ED073/F4B4CA5264A411EDA0876B16C4F9AE02/CK7T4dy27XdCMDzv9H3gLZKz7eU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CK7T4dy27XdCMDzv9H3gLZKz7eU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 20 Jun 2025 01:42:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 490 (0x1ea) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91ED073, serialNumber=08AED3E1DCB6ED7742303CEFF47DE02D92B3EDE5 Validity Not Before: Jun 13 01:42:55 2025 GMT Not After : Jun 20 01:42:55 2025 GMT Subject: CN=684b821f-1b31 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:4d:55:8f:03:39:97:aa:1e:cc:6c:cf:4f:13: 3c:16:f6:5e:c8:40:e1:74:05:fc:1c:0c:35:39:7e: 4a:ea:08:18:ce:ae:91:fd:1c:66:ad:0b:ba:6d:83: e6:3d:7e:58:61:21:18:05:74:64:43:a2:91:17:c7: 6f:54:51:ca:46:c5:b3:af:26:d7:b5:12:38:9e:bb: 03:f5:83:a7:22:be:48:81:b6:ed:80:34:d2:a1:99: ca:3c:08:67:9a:44:f6:f2:43:73:51:74:82:f4:bf: 1d:5a:47:bd:fa:e2:9f:8c:90:f3:64:7e:ed:59:51: c0:6f:37:53:d5:e7:8a:4a:40:92:51:8b:96:72:42: 6d:ee:49:fe:23:d4:55:3b:d9:eb:51:8a:19:e9:fa: a1:22:db:10:7e:ec:1d:5f:ff:f5:e2:bf:c3:8d:72: 2b:79:bd:ff:11:ad:56:5d:5f:3c:f8:9c:ed:09:df: 2c:a1:a3:58:ef:27:76:08:4d:aa:a4:6f:65:8c:46: ea:b7:29:1d:41:1f:f9:8c:df:8f:84:76:e2:c2:74: 4e:e4:e5:2f:aa:94:b4:2e:e9:9b:bf:c5:63:20:e2: 50:0f:b7:f1:22:4d:0d:2f:e3:f5:6c:38:69:17:1b: dd:83:be:98:79:75:67:1b:f6:1e:dd:d0:9e:34:f9: ef:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C2:B4:D9:BA:7D:66:C9:F4:07:83:A7:90:84:9A:80:31:C5:97:A4:99 X509v3 Authority Key Identifier: keyid:08:AE:D3:E1:DC:B6:ED:77:42:30:3C:EF:F4:7D:E0:2D:92:B3:ED:E5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91ED073/F4B4CA5264A411EDA0876B16C4F9AE02/CK7T4dy27XdCMDzv9H3gLZKz7eU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CK7T4dy27XdCMDzv9H3gLZKz7eU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91ED073/F4B4CA5264A411EDA0876B16C4F9AE02/CK7T4dy27XdCMDzv9H3gLZKz7eU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 82:05:c9:a9:ed:ff:b2:78:12:3f:1b:45:80:34:ca:fe:51:3f: ad:a1:e3:5c:b8:03:44:6f:8e:23:0f:c5:4e:ac:0a:03:e4:14: f1:5a:f5:e8:e3:40:05:86:6d:d9:f8:97:81:ce:4e:4c:82:7a: 9b:a3:d2:e6:5f:64:0c:cd:73:54:d2:45:50:dd:98:b8:7e:0a: 38:e9:29:f0:24:5f:3b:c1:3c:e7:69:77:de:b0:10:5c:81:fb: c0:98:80:33:7c:ac:ae:9b:80:c9:cb:09:fe:bb:93:71:f2:09: 2e:e5:e6:08:61:d7:48:f2:51:a4:6b:99:e7:ab:12:00:db:92: 85:74:91:c3:ff:cb:f8:75:9d:f7:e4:4a:34:27:f8:46:d7:c2: 4a:3b:21:95:b9:cb:e7:95:13:75:c8:b0:a4:df:19:a6:98:c4: 80:01:79:14:d7:dc:39:b8:30:b9:ab:7c:8c:da:42:67:ac:54: 7d:0a:d0:3f:d3:73:51:78:91:59:b2:f6:ac:64:f4:36:24:28: b7:69:8f:82:f6:e3:a1:e5:c0:dc:93:53:95:60:8d:e6:01:1d: 73:59:a1:f3:38:db:f2:b0:cf:f3:0f:98:c2:ef:85:f5:17:ac: 0b:eb:a1:51:f7:0a:a5:44:2c:0d:b8:36:1d:f2:e8:c1:1c:ce: 32:19:f4:2c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAeowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUQwNzMxMTAvBgNVBAUTKDA4QUVEM0UxRENCNkVENzc0MjMwM0NFRkY0N0RFMDJE OTJCM0VERTUwHhcNMjUwNjEzMDE0MjU1WhcNMjUwNjIwMDE0MjU1WjAYMRYwFAYD VQQDEw02ODRiODIxZi0xYjMxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5U1VjwM5l6oezGzPTxM8FvZeyEDhdAX8HAw1OX5K6ggYzq6R/RxmrQu6bYPm PX5YYSEYBXRkQ6KRF8dvVFHKRsWzrybXtRI4nrsD9YOnIr5IgbbtgDTSoZnKPAhn mkT28kNzUXSC9L8dWke9+uKfjJDzZH7tWVHAbzdT1eeKSkCSUYuWckJt7kn+I9RV O9nrUYoZ6fqhItsQfuwdX//14r/DjXIreb3/Ea1WXV88+JztCd8soaNY7yd2CE2q pG9ljEbqtykdQR/5jN+PhHbiwnRO5OUvqpS0Lumbv8VjIOJQD7fxIk0NL+P1bDhp Fxvdg76YeXVnG/Ye3dCeNPnvcwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMK02bp9 Zsn0B4OnkISagDHFl6SZMB8GA1UdIwQYMBaAFAiu0+Hctu13QjA87/R94C2Ss+3l MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFRDA3My9GNEI0Q0E1MjY0 QTQxMUVEQTA4NzZCMTZDNEY5QUUwMi9DSzdUNGR5MjdYZENNRHp2OUgzZ0xaS3o3 ZVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NLN1Q0ZHkyN1hkQ01EenY5SDNnTFpLejdlVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF RDA3My9GNEI0Q0E1MjY0QTQxMUVEQTA4NzZCMTZDNEY5QUUwMi9DSzdUNGR5MjdY ZENNRHp2OUgzZ0xaS3o3ZVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCCBcmp7f+yeBI/G0WANMr+UT+toeNcuANEb44jD8VOrAoD5BTxWvXo 40AFhm3Z+JeBzk5Mgnqbo9LmX2QMzXNU0kVQ3Zi4fgo46SnwJF87wTznaXfesBBc gfvAmIAzfKyum4DJywn+u5Nx8gku5eYIYddI8lGka5nnqxIA25KFdJHD/8v4dZ33 5Eo0J/hG18JKOyGVucvnlRN1yLCk3xmmmMSAAXkU19w5uDC5q3yM2kJnrFR9CtA/ 03NReJFZsvasZPQ2JCi3aY+C9uOh5cDck1OVYI3mAR1zWaHzONvysM/zD5jC74X1 F6wL66FR9wqlRCwNuDYd8ujBHM4yGfQs -----END CERTIFICATE-----Generated at Sat Jun 14 19:38:02 2025 by rpki-client