$ rpki-client -vvf rpki.apnic.net/member_repository/A91F7334/7A4049DA744B11ECB9AA8D74C4F9AE02/jM5ORhldFXBPtWKTLgq2Kg65iiY.mft File: jM5ORhldFXBPtWKTLgq2Kg65iiY.mft (raw, json) Hash identifier: t31bakbqHOjaOGZItc/fpFh76l8euEJTDPEFqnItMd8= Subject key identifier: 22:72:11:D7:81:8B:10:0E:31:49:C7:47:C2:11:9E:60:D5:5E:6B:BD Authority key identifier: 8C:CE:4E:46:19:5D:15:70:4F:B5:62:93:2E:0A:B6:2A:0E:B9:8A:26 Certificate issuer: /CN=A91F7334/serialNumber=8CCE4E46195D15704FB562932E0AB62A0EB98A26 Certificate serial: 0417 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jM5ORhldFXBPtWKTLgq2Kg65iiY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F7334/7A4049DA744B11ECB9AA8D74C4F9AE02/jM5ORhldFXBPtWKTLgq2Kg65iiY.mft Manifest number: 040A Signing time: Sun 15 Jun 2025 00:09:07 +0000 Manifest this update: Sun 15 Jun 2025 00:09:07 +0000 Manifest next update: Sun 22 Jun 2025 00:09:07 +0000 Files and hashes: 1: jM5ORhldFXBPtWKTLgq2Kg65iiY.crl (hash: onxCLEpn4+u504Nrbr+a7Vcu3/Ju1ny+//U7LdQ16as=) 2: 96F24818744F11ECBFE4A57DC4F9AE02.roa (hash: Jq+BJa5bIC2ga/tgIn6ID1FhPZxllAOIKx3OxJo/dLg=) 3: 8B8B954E6C9011ED9AAF427AC4F9AE02.roa (hash: h3fylE+2YBgfkc7GqGmNPtjnF3D2D39dQ6blUneghIY=) 4: 0B7C7B7C751311ECA43F7D3BC4F9AE02.roa (hash: Q81s5XKL5iVaVaoWayTQR37y4XfCEhNVP+1tJwtC+bU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F7334/7A4049DA744B11ECB9AA8D74C4F9AE02/jM5ORhldFXBPtWKTLgq2Kg65iiY.crl rsync://rpki.apnic.net/member_repository/A91F7334/7A4049DA744B11ECB9AA8D74C4F9AE02/jM5ORhldFXBPtWKTLgq2Kg65iiY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jM5ORhldFXBPtWKTLgq2Kg65iiY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 22 Jun 2025 00:09:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1047 (0x417) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F7334, serialNumber=8CCE4E46195D15704FB562932E0AB62A0EB98A26 Validity Not Before: Jun 15 00:09:07 2025 GMT Not After : Jun 22 00:09:07 2025 GMT Subject: CN=684e0f23-dcfb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:6c:d8:12:34:f2:08:c5:3d:ed:28:0d:9c:14: d6:72:12:80:e1:24:d7:9b:36:3e:98:ff:7a:d9:4e: 0f:2e:fc:a0:a7:c4:4e:58:e7:6d:58:83:ec:6f:15: ef:11:c3:dd:71:3e:35:48:0d:f4:a6:c3:25:2c:08: 23:2d:ab:41:eb:12:06:ed:1e:16:65:d8:9c:ba:bc: d4:f8:db:7f:c9:bf:e0:d0:46:03:59:69:94:85:5c: 80:6f:ed:2e:df:db:bd:15:f8:96:cf:35:03:2a:69: 2d:60:db:06:14:75:0c:33:73:12:74:1a:e3:52:43: f2:e4:76:ff:2f:43:df:ee:90:a2:d2:d1:27:a6:4a: a1:f8:8a:25:1e:be:62:99:e1:13:47:41:0e:17:2d: 49:d3:b5:39:db:fd:56:f4:13:e1:f4:c4:65:34:c5: 56:d0:2b:22:0d:cd:d9:41:df:2f:de:d8:75:27:d0: a9:1d:dc:4a:47:bc:00:68:6f:b3:b4:22:36:10:ff: f1:eb:6a:aa:f2:84:b0:b7:e2:3e:0d:5c:01:bc:b0: 21:0f:34:e7:12:35:2c:07:77:5a:0e:4b:c2:c8:db: aa:c1:fd:d2:09:b8:f6:28:cc:67:20:d6:d9:90:e3: db:b2:60:91:e1:bd:4e:fa:34:72:ab:c9:a3:b2:62: 5c:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 22:72:11:D7:81:8B:10:0E:31:49:C7:47:C2:11:9E:60:D5:5E:6B:BD X509v3 Authority Key Identifier: keyid:8C:CE:4E:46:19:5D:15:70:4F:B5:62:93:2E:0A:B6:2A:0E:B9:8A:26 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F7334/7A4049DA744B11ECB9AA8D74C4F9AE02/jM5ORhldFXBPtWKTLgq2Kg65iiY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jM5ORhldFXBPtWKTLgq2Kg65iiY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F7334/7A4049DA744B11ECB9AA8D74C4F9AE02/jM5ORhldFXBPtWKTLgq2Kg65iiY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8c:62:e6:18:6a:e8:16:52:25:7a:6f:d3:55:79:ac:e3:09:7a: 2a:38:43:b9:af:a2:2e:b6:bd:28:64:49:11:d5:c6:6b:be:e3: dc:74:8f:df:e4:0d:3d:27:e8:d8:af:52:83:e5:78:39:e8:35: c0:ee:fa:b6:0a:30:a9:14:47:f6:f5:e1:9e:d2:c7:4b:fd:4e: f7:63:1d:ba:07:38:e1:07:0f:54:41:6f:42:a3:32:4c:b4:f5: 3e:8b:28:4d:9d:36:f4:5f:64:23:a3:03:c7:8e:df:33:40:11: 46:c3:30:1c:c1:c5:90:63:f5:1a:e0:4a:34:fc:7e:28:5a:5d: b4:18:5a:36:3b:55:60:50:64:96:90:a2:d0:d9:2d:90:b0:67: e4:56:a5:d9:09:b5:f6:02:ba:7a:0a:ab:e2:45:51:fd:1c:39: 07:76:a0:d2:39:d2:2a:32:03:7f:ea:91:27:72:66:32:96:80: 79:7c:d1:3c:cf:dc:f0:0c:a7:3f:b2:48:32:8d:8d:51:cc:6a: dd:1e:3a:f1:a7:05:64:66:a3:7a:4e:63:0d:67:8d:f5:d8:5a: d0:43:80:d6:1b:39:50:20:3f:be:fa:ee:41:26:43:26:ff:cb: b0:79:ef:16:8f:d5:06:bb:05:da:4a:ba:30:46:4f:7c:e8:61: 3f:57:a3:d3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBBcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjczMzQxMTAvBgNVBAUTKDhDQ0U0RTQ2MTk1RDE1NzA0RkI1NjI5MzJFMEFCNjJB MEVCOThBMjYwHhcNMjUwNjE1MDAwOTA3WhcNMjUwNjIyMDAwOTA3WjAYMRYwFAYD VQQDEw02ODRlMGYyMy1kY2ZiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3mzYEjTyCMU97SgNnBTWchKA4STXmzY+mP962U4PLvygp8ROWOdtWIPsbxXv EcPdcT41SA30psMlLAgjLatB6xIG7R4WZdicurzU+Nt/yb/g0EYDWWmUhVyAb+0u 39u9FfiWzzUDKmktYNsGFHUMM3MSdBrjUkPy5Hb/L0Pf7pCi0tEnpkqh+IolHr5i meETR0EOFy1J07U52/1W9BPh9MRlNMVW0CsiDc3ZQd8v3th1J9CpHdxKR7wAaG+z tCI2EP/x62qq8oSwt+I+DVwBvLAhDzTnEjUsB3daDkvCyNuqwf3SCbj2KMxnINbZ kOPbsmCR4b1O+jRyq8mjsmJcBQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCJyEdeB ixAOMUnHR8IRnmDVXmu9MB8GA1UdIwQYMBaAFIzOTkYZXRVwT7Viky4KtioOuYom MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNzMzNC83QTQwNDlEQTc0 NEIxMUVDQjlBQThENzRDNEY5QUUwMi9qTTVPUmhsZEZYQlB0V0tUTGdxMktnNjVp aVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2pNNU9SaGxkRlhCUHRXS1RMZ3EyS2c2NWlpWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NzMzNC83QTQwNDlEQTc0NEIxMUVDQjlBQThENzRDNEY5QUUwMi9qTTVPUmhsZEZY QlB0V0tUTGdxMktnNjVpaVkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCMYuYYaugWUiV6b9NVeazjCXoqOEO5r6Iutr0oZEkR1cZrvuPcdI/f 5A09J+jYr1KD5Xg56DXA7vq2CjCpFEf29eGe0sdL/U73Yx26BzjhBw9UQW9CozJM tPU+iyhNnTb0X2QjowPHjt8zQBFGwzAcwcWQY/Ua4Eo0/H4oWl20GFo2O1VgUGSW kKLQ2S2QsGfkVqXZCbX2Arp6CqviRVH9HDkHdqDSOdIqMgN/6pEncmYyloB5fNE8 z9zwDKc/skgyjY1RzGrdHjrxpwVkZqN6TmMNZ4312FrQQ4DWGzlQID+++u5BJkMm /8uwee8Wj9UGuwXaSrowRk986GE/V6PT -----END CERTIFICATE-----Generated at Sun Jun 15 08:33:05 2025 by rpki-client