$ rpki-client -vvf rpki.apnic.net/member_repository/A91FAFBA/D4420E90C1F511EBAB77977BC4F9AE02/o93avj1GtEgCYdq75SmgZrYgXYs.mft File: o93avj1GtEgCYdq75SmgZrYgXYs.mft (raw, json) Hash identifier: LHalGSt9bdYn5iLq8kDkZ9HdlRFgpVo3ivdio50VfGY= Subject key identifier: 58:1F:FD:A9:3F:FA:38:ED:FF:17:63:41:7C:7F:BD:3D:80:A5:11:0E Authority key identifier: A3:DD:DA:BE:3D:46:B4:48:02:61:DA:BB:E5:29:A0:66:B6:20:5D:8B Certificate issuer: /CN=A91FAFBA/serialNumber=A3DDDABE3D46B4480261DABBE529A066B6205D8B Certificate serial: 05CE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o93avj1GtEgCYdq75SmgZrYgXYs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FAFBA/D4420E90C1F511EBAB77977BC4F9AE02/o93avj1GtEgCYdq75SmgZrYgXYs.mft Manifest number: 05C9 Signing time: Thu 12 Jun 2025 22:41:30 +0000 Manifest this update: Thu 12 Jun 2025 22:41:30 +0000 Manifest next update: Thu 19 Jun 2025 22:41:30 +0000 Files and hashes: 1: o93avj1GtEgCYdq75SmgZrYgXYs.crl (hash: 5llPizDl8L6TuMxNtXQQszFArgvP7Wsc/OOL7ujsvyI=) 2: 416E569CC1F911EB91796381C4F9AE02.roa (hash: KmV3A66uHX2ovCCHWTgN+6Kx1zjXxXnhW11qwJ7+Kek=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FAFBA/D4420E90C1F511EBAB77977BC4F9AE02/o93avj1GtEgCYdq75SmgZrYgXYs.crl rsync://rpki.apnic.net/member_repository/A91FAFBA/D4420E90C1F511EBAB77977BC4F9AE02/o93avj1GtEgCYdq75SmgZrYgXYs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o93avj1GtEgCYdq75SmgZrYgXYs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 19 Jun 2025 22:41:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1486 (0x5ce) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FAFBA, serialNumber=A3DDDABE3D46B4480261DABBE529A066B6205D8B Validity Not Before: Jun 12 22:41:30 2025 GMT Not After : Jun 19 22:41:30 2025 GMT Subject: CN=684b579a-d51d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:79:5b:46:d4:32:18:15:c1:99:0b:0f:10:cd: b7:9f:2f:85:48:58:00:9b:d7:5c:d6:80:15:8c:d5: b0:ba:c5:6d:bc:30:6d:95:96:5c:10:7a:e6:17:2a: 24:24:54:af:84:7c:cd:f8:69:aa:d3:28:10:db:c0: d2:c5:50:30:ee:33:8a:33:75:86:67:37:be:ee:a4: 1e:98:60:91:9f:39:1c:2e:e7:03:9f:2e:df:04:d4: 1b:cc:37:5c:82:de:0d:5f:56:d9:f0:94:ba:c4:10: 06:a9:2e:8c:47:a6:19:47:58:12:6e:98:05:bb:d6: ea:9a:da:53:61:3b:5d:4a:69:ae:ca:7a:d4:7a:ca: 24:ed:f2:17:b2:be:38:d4:f0:91:9c:86:d6:d2:e4: 22:5a:e4:55:84:b3:39:d4:11:6a:f1:ef:8a:67:b6: dc:32:cf:2c:24:04:af:3d:c4:36:1a:69:c0:ac:3f: 1d:6a:bb:ac:a6:79:92:0f:e1:6e:38:c9:b5:5b:ab: 0d:8a:66:53:4d:cb:54:9e:6c:59:59:3a:b5:ab:f1: b4:30:7f:64:54:46:10:8f:93:3c:21:db:cb:46:25: 69:3f:d5:79:6d:c4:a4:42:8f:1c:82:b7:6f:02:1b: 1d:57:ef:24:98:60:8d:a2:92:4a:57:89:3d:d0:03: ea:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 58:1F:FD:A9:3F:FA:38:ED:FF:17:63:41:7C:7F:BD:3D:80:A5:11:0E X509v3 Authority Key Identifier: keyid:A3:DD:DA:BE:3D:46:B4:48:02:61:DA:BB:E5:29:A0:66:B6:20:5D:8B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FAFBA/D4420E90C1F511EBAB77977BC4F9AE02/o93avj1GtEgCYdq75SmgZrYgXYs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o93avj1GtEgCYdq75SmgZrYgXYs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FAFBA/D4420E90C1F511EBAB77977BC4F9AE02/o93avj1GtEgCYdq75SmgZrYgXYs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 74:4c:13:3a:d2:f3:f9:5c:7f:da:49:5a:7f:ab:56:13:28:f0: 4c:9b:b7:42:97:f5:21:1b:50:c6:e3:b9:54:7f:d5:91:7a:8d: 92:fd:ce:45:a8:fb:6a:1c:f4:a5:81:65:fb:b0:38:ad:13:bf: 00:02:66:31:54:23:b0:85:9d:e8:fb:7e:a2:57:ae:40:f2:67: 89:0f:13:bd:b5:f7:8a:76:32:d0:83:d0:66:0e:95:52:4f:b8: eb:68:4f:fc:f0:9e:40:91:6b:4f:14:87:b7:9c:9f:0f:1d:35: 11:51:5c:57:b8:d3:b2:ae:f8:16:98:86:49:32:78:33:ff:b6: 2e:00:13:3b:9e:6e:01:98:9b:c6:88:57:25:2b:d2:68:b8:69: 76:04:2e:57:b6:05:70:81:bc:b8:13:7f:7b:ac:58:fe:a8:28: 74:79:61:b8:b2:4f:37:19:fb:65:52:b5:ea:f0:fd:8d:a8:35: 16:0c:dd:0a:0a:37:a7:02:74:b6:39:c7:b7:6f:ab:22:dd:2c: f2:ce:56:dc:0f:14:28:c4:4d:d5:11:d3:8a:78:e5:b7:aa:63: 54:74:0a:8c:4c:30:41:ba:8d:c7:2d:94:42:1f:50:25:2f:9d: c1:cc:08:eb:dd:87:cf:e3:7c:0e:94:92:f2:72:ae:1c:20:27: 4b:3c:13:64 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBc4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkFGQkExMTAvBgNVBAUTKEEzREREQUJFM0Q0NkI0NDgwMjYxREFCQkU1MjlBMDY2 QjYyMDVEOEIwHhcNMjUwNjEyMjI0MTMwWhcNMjUwNjE5MjI0MTMwWjAYMRYwFAYD VQQDEw02ODRiNTc5YS1kNTFkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAq3lbRtQyGBXBmQsPEM23ny+FSFgAm9dc1oAVjNWwusVtvDBtlZZcEHrmFyok JFSvhHzN+Gmq0ygQ28DSxVAw7jOKM3WGZze+7qQemGCRnzkcLucDny7fBNQbzDdc gt4NX1bZ8JS6xBAGqS6MR6YZR1gSbpgFu9bqmtpTYTtdSmmuynrUesok7fIXsr44 1PCRnIbW0uQiWuRVhLM51BFq8e+KZ7bcMs8sJASvPcQ2GmnArD8daruspnmSD+Fu OMm1W6sNimZTTctUnmxZWTq1q/G0MH9kVEYQj5M8IdvLRiVpP9V5bcSkQo8cgrdv AhsdV+8kmGCNopJKV4k90APqHQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFgf/ak/ +jjt/xdjQXx/vT2ApREOMB8GA1UdIwQYMBaAFKPd2r49RrRIAmHau+UpoGa2IF2L MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQUZCQS9ENDQyMEU5MEMx RjUxMUVCQUI3Nzk3N0JDNEY5QUUwMi9vOTNhdmoxR3RFZ0NZZHE3NVNtZ1pyWWdY WXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL285M2F2ajFHdEVnQ1lkcTc1U21nWnJZZ1hZcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG QUZCQS9ENDQyMEU5MEMxRjUxMUVCQUI3Nzk3N0JDNEY5QUUwMi9vOTNhdmoxR3RF Z0NZZHE3NVNtZ1pyWWdYWXMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB0TBM60vP5XH/aSVp/q1YTKPBMm7dCl/UhG1DG47lUf9WReo2S/c5F qPtqHPSlgWX7sDitE78AAmYxVCOwhZ3o+36iV65A8meJDxO9tfeKdjLQg9BmDpVS T7jraE/88J5AkWtPFIe3nJ8PHTURUVxXuNOyrvgWmIZJMngz/7YuABM7nm4BmJvG iFclK9JouGl2BC5XtgVwgby4E397rFj+qCh0eWG4sk83GftlUrXq8P2NqDUWDN0K CjenAnS2Oce3b6si3SzyzlbcDxQoxE3VEdOKeOW3qmNUdAqMTDBBuo3HLZRCH1Al L53BzAjr3YfP43wOlJLycq4cICdLPBNk -----END CERTIFICATE-----Generated at Sat Jun 14 19:35:20 2025 by rpki-client