$ rpki-client -vvf rpki.apnic.net/member_repository/A91F85CD/8A505588DD1911EA94D26011C4F9AE02/4hHNheByVQ4z5MyGpj-8360dNTI.mft File: 4hHNheByVQ4z5MyGpj-8360dNTI.mft (raw, json) Hash identifier: Pdw5c6CAr7Xc+EGd3WtnMfdYa4yUbtNQ0GKgQJJtDbI= Subject key identifier: 0F:38:E7:36:D9:94:7D:11:22:83:07:06:41:3A:E4:D8:FC:88:21:E3 Authority key identifier: E2:11:CD:85:E0:72:55:0E:33:E4:CC:86:A6:3F:BC:DF:AD:1D:35:32 Certificate issuer: /CN=A91F85CD/serialNumber=E211CD85E072550E33E4CC86A63FBCDFAD1D3532 Certificate serial: 0816 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4hHNheByVQ4z5MyGpj-8360dNTI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F85CD/8A505588DD1911EA94D26011C4F9AE02/4hHNheByVQ4z5MyGpj-8360dNTI.mft Manifest number: 080E Signing time: Sat 14 Jun 2025 20:39:01 +0000 Manifest this update: Sat 14 Jun 2025 20:39:01 +0000 Manifest next update: Sat 21 Jun 2025 20:39:01 +0000 Files and hashes: 1: 4hHNheByVQ4z5MyGpj-8360dNTI.crl (hash: FvuQO+exR6T2UGP/oKFPSOd9f7DMtG/aimrhfTr52jE=) 2: 624086E2E99611EA930A5B74C4F9AE02.roa (hash: ZdmpHgIkxt7GWbnQ6LOR1kcULfHlPHaLzEsc6YKJVc0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F85CD/8A505588DD1911EA94D26011C4F9AE02/4hHNheByVQ4z5MyGpj-8360dNTI.crl rsync://rpki.apnic.net/member_repository/A91F85CD/8A505588DD1911EA94D26011C4F9AE02/4hHNheByVQ4z5MyGpj-8360dNTI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4hHNheByVQ4z5MyGpj-8360dNTI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Jun 2025 20:39:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2070 (0x816) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F85CD, serialNumber=E211CD85E072550E33E4CC86A63FBCDFAD1D3532 Validity Not Before: Jun 14 20:39:01 2025 GMT Not After : Jun 21 20:39:01 2025 GMT Subject: CN=684ddde5-94d6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:3c:42:93:dc:bd:b5:db:05:80:b7:3f:d1:94: d6:c6:03:8e:8e:ce:98:0f:a5:df:65:26:17:7e:90: 9d:56:15:ed:eb:ae:37:46:fe:0a:b1:f8:51:7a:b5: 26:5f:db:43:8b:63:86:67:57:08:69:33:17:83:ab: 9f:ec:a5:ca:f1:73:43:23:12:c9:f5:f4:45:0a:e1: 60:42:f2:21:af:35:67:b9:e7:59:25:c2:a6:68:d5: b8:14:6e:a7:16:d3:7c:e7:16:ab:6d:4a:ed:83:de: a2:d2:42:72:cb:0f:fd:49:f0:1a:d8:c6:f7:e7:f4: 98:7b:72:12:a3:e5:9d:da:69:4c:b9:3c:cd:84:ba: 57:a0:b6:1a:93:4e:40:06:a7:8f:5d:0e:75:68:64: 12:32:77:91:95:00:41:c3:03:78:a0:02:15:88:09: b6:26:ba:c4:18:3c:04:15:b1:3f:88:c5:8a:b4:38: d9:3a:cd:c8:28:73:26:3e:96:bf:47:f8:ce:ac:3f: d4:cc:8d:6e:1c:55:19:5a:f6:65:b7:d5:2f:b4:d3: 24:1b:e3:f2:ff:38:03:05:a6:be:e4:dc:1a:2d:cf: 12:a7:02:8b:4f:86:0f:4f:1f:4e:37:97:55:36:74: 45:85:de:aa:a6:c2:74:72:6e:de:5d:0a:3f:05:24: 6c:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0F:38:E7:36:D9:94:7D:11:22:83:07:06:41:3A:E4:D8:FC:88:21:E3 X509v3 Authority Key Identifier: keyid:E2:11:CD:85:E0:72:55:0E:33:E4:CC:86:A6:3F:BC:DF:AD:1D:35:32 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F85CD/8A505588DD1911EA94D26011C4F9AE02/4hHNheByVQ4z5MyGpj-8360dNTI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4hHNheByVQ4z5MyGpj-8360dNTI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F85CD/8A505588DD1911EA94D26011C4F9AE02/4hHNheByVQ4z5MyGpj-8360dNTI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4b:65:1e:62:e9:09:0b:d6:2d:52:de:08:ac:fe:25:5a:ba:18: f3:47:69:2e:fe:ff:6c:d3:23:4a:43:3a:5c:02:5d:d0:d0:5b: 10:7f:29:7b:f7:11:e2:02:ae:d8:4e:8e:7b:ff:3d:db:22:d7: a5:bf:ae:46:25:4d:8f:09:fb:71:f8:ac:33:f6:aa:b3:d4:57: 94:14:f8:37:b9:32:74:47:33:54:2a:15:4e:f4:bd:c0:4c:63: 77:26:c2:15:d4:18:78:25:10:f8:86:1b:bc:27:32:e2:fe:4f: 8b:94:36:60:96:aa:fc:0a:bb:60:a6:09:ac:2d:b4:8e:12:c5: a5:76:17:c5:57:bc:79:ce:3c:0e:35:d4:48:90:fc:08:e9:4b: 14:5e:8d:4f:64:7d:f7:d8:c9:e3:10:84:04:6a:f1:54:eb:9c: b3:83:54:ee:1f:98:60:61:84:9d:d0:93:9e:fd:30:cf:87:ea: 6f:25:ec:f5:c9:de:b0:b7:8c:7c:89:ca:60:04:03:35:20:c4: 4e:18:04:8d:4f:6f:0b:db:9a:7b:32:17:a0:00:1b:cc:cf:53: 8b:f8:76:24:45:8c:22:e7:e9:95:69:2d:0a:a2:1d:79:96:58: 42:f4:26:ca:0b:e3:b8:7f:6d:24:57:10:53:61:3a:e6:a7:b1: 06:51:56:b8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCBYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Rjg1Q0QxMTAvBgNVBAUTKEUyMTFDRDg1RTA3MjU1MEUzM0U0Q0M4NkE2M0ZCQ0RG QUQxRDM1MzIwHhcNMjUwNjE0MjAzOTAxWhcNMjUwNjIxMjAzOTAxWjAYMRYwFAYD VQQDEw02ODRkZGRlNS05NGQ2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApzxCk9y9tdsFgLc/0ZTWxgOOjs6YD6XfZSYXfpCdVhXt6643Rv4KsfhRerUm X9tDi2OGZ1cIaTMXg6uf7KXK8XNDIxLJ9fRFCuFgQvIhrzVnuedZJcKmaNW4FG6n FtN85xarbUrtg96i0kJyyw/9SfAa2Mb35/SYe3ISo+Wd2mlMuTzNhLpXoLYak05A BqePXQ51aGQSMneRlQBBwwN4oAIViAm2JrrEGDwEFbE/iMWKtDjZOs3IKHMmPpa/ R/jOrD/UzI1uHFUZWvZlt9UvtNMkG+Py/zgDBaa+5NwaLc8SpwKLT4YPTx9ON5dV NnRFhd6qpsJ0cm7eXQo/BSRsUQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFA845zbZ lH0RIoMHBkE65Nj8iCHjMB8GA1UdIwQYMBaAFOIRzYXgclUOM+TMhqY/vN+tHTUy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGODVDRC84QTUwNTU4OERE MTkxMUVBOTREMjYwMTFDNEY5QUUwMi80aEhOaGVCeVZRNHo1TXlHcGotODM2MGRO VEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRoSE5oZUJ5VlE0ejVNeUdwai04MzYwZE5USS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG ODVDRC84QTUwNTU4OEREMTkxMUVBOTREMjYwMTFDNEY5QUUwMi80aEhOaGVCeVZR NHo1TXlHcGotODM2MGROVEkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBLZR5i6QkL1i1S3gis/iVauhjzR2ku/v9s0yNKQzpcAl3Q0FsQfyl7 9xHiAq7YTo57/z3bItelv65GJU2PCftx+Kwz9qqz1FeUFPg3uTJ0RzNUKhVO9L3A TGN3JsIV1Bh4JRD4hhu8JzLi/k+LlDZglqr8CrtgpgmsLbSOEsWldhfFV7x5zjwO NdRIkPwI6UsUXo1PZH332MnjEIQEavFU65yzg1TuH5hgYYSd0JOe/TDPh+pvJez1 yd6wt4x8icpgBAM1IMROGASNT28L25p7MhegABvMz1OL+HYkRYwi5+mVaS0Koh15 llhC9CbKC+O4f20kVxBTYTrmp7EGUVa4 -----END CERTIFICATE-----Generated at Sun Jun 15 08:24:49 2025 by rpki-client