$ rpki-client -vvf rpki.apnic.net/member_repository/A91FC43D/EDB28E7EA48011E583378886C4F9AE02/rI34tAewexNnm3HFASus3eJQHnE.mft File: rI34tAewexNnm3HFASus3eJQHnE.mft (raw, json) Hash identifier: rHh3TaFeq7MWuDCXyeAoA1CYG7BB6ULfLiU2GiMbAgM= Subject key identifier: 83:88:24:4E:7C:3A:F8:84:93:45:17:39:D9:68:93:7E:7D:74:6F:E5 Authority key identifier: AC:8D:F8:B4:07:B0:7B:13:67:9B:71:C5:01:2B:AC:DD:E2:50:1E:71 Certificate issuer: /CN=A91FC43D/serialNumber=AC8DF8B407B07B13679B71C5012BACDDE2501E71 Certificate serial: 22AF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rI34tAewexNnm3HFASus3eJQHnE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FC43D/EDB28E7EA48011E583378886C4F9AE02/rI34tAewexNnm3HFASus3eJQHnE.mft Manifest number: 22A1 Signing time: Sat 14 Jun 2025 15:49:53 +0000 Manifest this update: Sat 14 Jun 2025 15:49:52 +0000 Manifest next update: Sat 21 Jun 2025 15:49:52 +0000 Files and hashes: 1: rI34tAewexNnm3HFASus3eJQHnE.crl (hash: cRg9cDgar8MZ4cfS5eQBhxMBAV+E1WXWMKhtymGH4GQ=) 2: 2D55F42CB0F611E5B464E359C4F9AE02.roa (hash: 8mIOCO6QpDE7EtPouAHKOU6jLmPWkYnpnE1kJgri2NI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FC43D/EDB28E7EA48011E583378886C4F9AE02/rI34tAewexNnm3HFASus3eJQHnE.crl rsync://rpki.apnic.net/member_repository/A91FC43D/EDB28E7EA48011E583378886C4F9AE02/rI34tAewexNnm3HFASus3eJQHnE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rI34tAewexNnm3HFASus3eJQHnE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Jun 2025 15:49:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8879 (0x22af) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FC43D, serialNumber=AC8DF8B407B07B13679B71C5012BACDDE2501E71 Validity Not Before: Jun 14 15:49:52 2025 GMT Not After : Jun 21 15:49:52 2025 GMT Subject: CN=684d9a21-0f01 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:ae:b7:fa:d3:47:c7:10:f8:00:09:9d:79:a4: 4c:95:d6:85:1a:60:9b:7f:fa:1f:f6:ff:30:03:5f: f1:1f:7b:6e:c0:3f:7f:32:af:e9:3b:d4:21:bb:f8: 2e:2f:ca:6d:bc:6f:81:08:9a:bf:91:0d:f6:96:46: e1:33:64:5f:3e:99:24:db:df:09:3e:69:0b:c5:59: a7:72:a5:34:f7:8f:1c:b2:92:98:ff:3f:5d:56:69: 4f:bc:0d:b6:0a:48:b0:0c:4b:e5:98:6d:ad:3f:b1: 27:f8:35:40:54:4e:b5:9f:f6:ad:2e:9e:7c:8b:71: 49:8e:07:9a:cd:0a:c3:d3:2d:13:44:27:cc:11:9c: 54:11:bc:89:d1:0c:00:96:3e:d5:58:54:2b:61:d3: 7a:c2:d3:5b:e1:c4:25:94:2a:a5:e0:89:cd:0a:ae: 67:ff:d6:15:8d:a2:c4:e9:74:77:e6:88:78:ee:5e: a1:66:84:db:59:47:b2:d7:a3:bd:71:c9:a3:99:f3: a9:f4:8a:3d:6f:48:e4:54:25:8a:97:80:76:65:6a: 03:0d:bd:f4:94:00:72:17:56:89:7c:f4:1a:92:90: fc:34:d8:5a:58:ae:e4:03:9c:4f:87:87:6a:ca:94: e7:f1:8f:6e:a9:af:19:98:ee:2a:ed:67:fb:63:a8: 94:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 83:88:24:4E:7C:3A:F8:84:93:45:17:39:D9:68:93:7E:7D:74:6F:E5 X509v3 Authority Key Identifier: keyid:AC:8D:F8:B4:07:B0:7B:13:67:9B:71:C5:01:2B:AC:DD:E2:50:1E:71 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FC43D/EDB28E7EA48011E583378886C4F9AE02/rI34tAewexNnm3HFASus3eJQHnE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rI34tAewexNnm3HFASus3eJQHnE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FC43D/EDB28E7EA48011E583378886C4F9AE02/rI34tAewexNnm3HFASus3eJQHnE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 78:a3:4e:5d:b0:f1:20:10:e7:97:97:18:43:6d:90:53:57:d1: c2:86:6a:f1:3e:0e:4e:c1:b3:9f:00:b4:8b:18:95:92:2e:9f: 84:db:c5:6e:37:8d:6c:bf:de:ae:5f:0e:cc:5f:6d:56:ad:4c: 8c:d2:23:36:b4:11:58:11:7b:1c:a6:9d:cd:61:8e:ab:93:85: 98:4e:d1:df:d7:6a:4c:36:68:95:7a:2d:13:fa:00:8e:fd:b1: 02:a6:3b:31:f4:8b:79:09:ac:3e:0e:44:0d:23:ab:ce:2a:52: 89:f1:09:02:0e:e8:9e:eb:c6:af:22:96:f9:e3:8e:c7:a2:90: 13:13:85:3f:1c:e4:ab:22:3f:7a:4a:ba:d0:54:6e:64:fd:2e: a7:9c:7b:c5:b8:fa:b4:57:ad:22:02:da:e7:5e:4c:90:c0:50: 39:df:68:54:53:bb:e7:21:a7:46:a9:34:5f:e8:7c:85:9a:7b: f0:12:e8:a4:3e:a6:cb:02:4d:b2:ac:88:82:0e:72:d9:17:e2: 49:67:01:07:b9:f9:a3:73:54:64:7d:05:70:e4:ba:12:0d:0b: ff:45:76:a2:3e:db:1e:9f:3c:79:e1:43:d3:5a:9d:4c:67:d7: 18:25:4b:79:54:c4:55:57:97:a0:1b:12:08:d2:64:75:29:c3: 4b:4b:09:f7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICIq8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkM0M0QxMTAvBgNVBAUTKEFDOERGOEI0MDdCMDdCMTM2NzlCNzFDNTAxMkJBQ0RE RTI1MDFFNzEwHhcNMjUwNjE0MTU0OTUyWhcNMjUwNjIxMTU0OTUyWjAYMRYwFAYD VQQDEw02ODRkOWEyMS0wZjAxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsa63+tNHxxD4AAmdeaRMldaFGmCbf/of9v8wA1/xH3tuwD9/Mq/pO9Qhu/gu L8ptvG+BCJq/kQ32lkbhM2RfPpkk298JPmkLxVmncqU0948cspKY/z9dVmlPvA22 CkiwDEvlmG2tP7En+DVAVE61n/atLp58i3FJjgeazQrD0y0TRCfMEZxUEbyJ0QwA lj7VWFQrYdN6wtNb4cQllCql4InNCq5n/9YVjaLE6XR35oh47l6hZoTbWUey16O9 ccmjmfOp9Io9b0jkVCWKl4B2ZWoDDb30lAByF1aJfPQakpD8NNhaWK7kA5xPh4dq ypTn8Y9uqa8ZmO4q7Wf7Y6iUTwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIOIJE58 OviEk0UXOdlok359dG/lMB8GA1UdIwQYMBaAFKyN+LQHsHsTZ5txxQErrN3iUB5x MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQzQzRC9FREIyOEU3RUE0 ODAxMUU1ODMzNzg4ODZDNEY5QUUwMi9ySTM0dEFld2V4Tm5tM0hGQVN1czNlSlFI bkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JJMzR0QWV3ZXhObm0zSEZBU3VzM2VKUUhuRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG QzQzRC9FREIyOEU3RUE0ODAxMUU1ODMzNzg4ODZDNEY5QUUwMi9ySTM0dEFld2V4 Tm5tM0hGQVN1czNlSlFIbkUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB4o05dsPEgEOeXlxhDbZBTV9HChmrxPg5OwbOfALSLGJWSLp+E28Vu N41sv96uXw7MX21WrUyM0iM2tBFYEXscpp3NYY6rk4WYTtHf12pMNmiVei0T+gCO /bECpjsx9It5Caw+DkQNI6vOKlKJ8QkCDuie68avIpb5447HopATE4U/HOSrIj96 SrrQVG5k/S6nnHvFuPq0V60iAtrnXkyQwFA532hUU7vnIadGqTRf6HyFmnvwEuik PqbLAk2yrIiCDnLZF+JJZwEHufmjc1RkfQVw5LoSDQv/RXaiPtsenzx54UPTWp1M Z9cYJUt5VMRVV5egGxII0mR1KcNLSwn3 -----END CERTIFICATE-----Generated at Sun Jun 15 09:33:43 2025 by rpki-client