$ rpki-client -vvf rpki.apnic.net/member_repository/A91FD378/632FA8CE51EA11EAB6A5CD86C4F9AE02/mb4IXRxpbLwhtnj5GI7M5dvN1Mo.mft File: mb4IXRxpbLwhtnj5GI7M5dvN1Mo.mft (raw, json) Hash identifier: jURw+pPeagQCqchMmq/XOTOK8oj54h8LYN4MR2nYaCo= Subject key identifier: 12:CB:0B:39:91:E1:AB:6D:B5:71:B6:72:20:24:3D:83:A4:1B:B2:B5 Authority key identifier: 99:BE:08:5D:1C:69:6C:BC:21:B6:78:F9:18:8E:CC:E5:DB:CD:D4:CA Certificate issuer: /CN=A91FD378/serialNumber=99BE085D1C696CBC21B678F9188ECCE5DBCDD4CA Certificate serial: 0ACE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mb4IXRxpbLwhtnj5GI7M5dvN1Mo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FD378/632FA8CE51EA11EAB6A5CD86C4F9AE02/mb4IXRxpbLwhtnj5GI7M5dvN1Mo.mft Manifest number: 0AC3 Signing time: Thu 12 Jun 2025 19:17:00 +0000 Manifest this update: Thu 12 Jun 2025 19:17:00 +0000 Manifest next update: Thu 19 Jun 2025 19:17:00 +0000 Files and hashes: 1: mb4IXRxpbLwhtnj5GI7M5dvN1Mo.crl (hash: QSaaykqWBFM+aW5X8tm6OIru67TBQHTdLA1rEegAWOg=) 2: EF44A44E51EB11EABC11800DC4F9AE02.roa (hash: wVjOHBRTAFBzywxmlgqw2C8A1H3crVXb96hs+TBB5RU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FD378/632FA8CE51EA11EAB6A5CD86C4F9AE02/mb4IXRxpbLwhtnj5GI7M5dvN1Mo.crl rsync://rpki.apnic.net/member_repository/A91FD378/632FA8CE51EA11EAB6A5CD86C4F9AE02/mb4IXRxpbLwhtnj5GI7M5dvN1Mo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mb4IXRxpbLwhtnj5GI7M5dvN1Mo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 19 Jun 2025 19:16:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2766 (0xace) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FD378, serialNumber=99BE085D1C696CBC21B678F9188ECCE5DBCDD4CA Validity Not Before: Jun 12 19:17:00 2025 GMT Not After : Jun 19 19:17:00 2025 GMT Subject: CN=684b27ac-f6f3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:5a:7d:6d:8b:e0:9f:ba:7b:6e:81:70:e3:06: 2a:3a:7d:79:3a:8d:ac:dd:81:28:bc:f4:09:3d:d3: b1:27:83:5c:a2:af:f6:ec:01:41:25:21:e1:4a:2b: 63:74:b1:e6:00:78:2b:46:89:5c:0b:7f:9f:f0:d4: f7:35:48:56:ca:9b:98:97:4f:66:d5:b9:51:bb:b5: e0:0b:90:6d:c0:5b:0d:42:66:08:f0:f1:10:be:43: b1:53:a7:38:11:78:fa:5c:e8:50:99:6e:80:ab:00: 4d:6c:c2:af:5f:33:61:02:56:e7:1c:66:95:5a:48: fb:39:c4:8b:ab:62:08:b9:36:fb:97:12:87:f0:8d: d1:c8:d9:10:f4:d7:fe:14:5f:48:a3:40:fa:1d:15: ac:34:02:0f:15:ed:a4:45:17:3f:0c:56:26:61:3b: ee:49:12:4e:cd:fc:d8:67:ba:18:66:7a:f2:81:8c: 79:f0:d5:2c:b0:6e:28:9f:8b:d4:24:c4:da:74:e4: 61:4e:a4:03:7c:19:66:a0:2c:de:30:5f:af:2a:21: 31:16:46:24:12:18:4e:3f:b3:92:d6:60:f1:5a:ea: 28:2e:53:86:fe:d0:f5:34:70:39:d3:19:e3:6d:ee: 09:ee:2b:a1:28:b5:c7:6b:a5:f9:33:8b:03:bc:aa: 0c:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 12:CB:0B:39:91:E1:AB:6D:B5:71:B6:72:20:24:3D:83:A4:1B:B2:B5 X509v3 Authority Key Identifier: keyid:99:BE:08:5D:1C:69:6C:BC:21:B6:78:F9:18:8E:CC:E5:DB:CD:D4:CA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FD378/632FA8CE51EA11EAB6A5CD86C4F9AE02/mb4IXRxpbLwhtnj5GI7M5dvN1Mo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mb4IXRxpbLwhtnj5GI7M5dvN1Mo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FD378/632FA8CE51EA11EAB6A5CD86C4F9AE02/mb4IXRxpbLwhtnj5GI7M5dvN1Mo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6d:ef:d0:37:8d:3f:26:b9:1f:34:1b:ca:b9:f2:18:e9:eb:29: a2:9b:4b:69:fa:3d:e4:e7:9f:e3:70:0f:5c:41:f2:da:c5:f5: 88:f6:77:21:c1:7a:6b:e9:e3:92:34:b4:a8:47:f6:4f:67:5b: 14:48:c5:13:1b:52:d1:ba:b9:64:4d:cc:22:d0:b5:a2:5c:90: 01:5a:65:e0:07:22:b5:c0:1b:00:4e:1f:75:a5:b2:5d:bb:73: cb:6d:f6:9c:1f:22:fa:19:bf:24:b2:dc:0a:31:5e:8d:bf:1f: 95:fd:7b:e5:12:2b:85:b9:40:c9:3e:88:f1:8a:2c:91:f4:8e: de:52:8d:86:d6:2f:be:c6:46:24:a5:88:6f:54:0b:d7:c8:ec: 00:21:74:fa:f5:57:45:f1:7a:69:8c:a3:3c:ec:8d:84:1f:2b: 00:79:78:8b:fa:75:8a:36:b7:4a:11:e3:1d:9b:85:f0:83:cf: 5c:ab:e5:07:25:44:f2:37:4f:ed:b7:df:20:c7:7b:92:b8:82: 22:34:ca:5d:ba:f9:b8:83:81:e1:b0:39:de:36:bb:9f:17:e9: fb:63:9a:44:45:13:2a:0f:dc:3c:1e:bf:5a:55:ab:ef:ef:b0: 5b:ea:01:13:e6:49:ab:0d:e5:f0:66:7a:1d:8a:d6:1e:63:0d: 5d:a1:85:8f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCs4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkQzNzgxMTAvBgNVBAUTKDk5QkUwODVEMUM2OTZDQkMyMUI2NzhGOTE4OEVDQ0U1 REJDREQ0Q0EwHhcNMjUwNjEyMTkxNzAwWhcNMjUwNjE5MTkxNzAwWjAYMRYwFAYD VQQDEw02ODRiMjdhYy1mNmYzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0Fp9bYvgn7p7boFw4wYqOn15Oo2s3YEovPQJPdOxJ4Ncoq/27AFBJSHhSitj dLHmAHgrRolcC3+f8NT3NUhWypuYl09m1blRu7XgC5BtwFsNQmYI8PEQvkOxU6c4 EXj6XOhQmW6AqwBNbMKvXzNhAlbnHGaVWkj7OcSLq2IIuTb7lxKH8I3RyNkQ9Nf+ FF9Io0D6HRWsNAIPFe2kRRc/DFYmYTvuSRJOzfzYZ7oYZnrygYx58NUssG4on4vU JMTadORhTqQDfBlmoCzeMF+vKiExFkYkEhhOP7OS1mDxWuooLlOG/tD1NHA50xnj be4J7iuhKLXHa6X5M4sDvKoM2wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBLLCzmR 4atttXG2ciAkPYOkG7K1MB8GA1UdIwQYMBaAFJm+CF0caWy8IbZ4+RiOzOXbzdTK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGRDM3OC82MzJGQThDRTUx RUExMUVBQjZBNUNEODZDNEY5QUUwMi9tYjRJWFJ4cGJMd2h0bmo1R0k3TTVkdk4x TW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL21iNElYUnhwYkx3aHRuajVHSTdNNWR2TjFNby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG RDM3OC82MzJGQThDRTUxRUExMUVBQjZBNUNEODZDNEY5QUUwMi9tYjRJWFJ4cGJM d2h0bmo1R0k3TTVkdk4xTW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBt79A3jT8muR80G8q58hjp6ymim0tp+j3k55/jcA9cQfLaxfWI9nch wXpr6eOSNLSoR/ZPZ1sUSMUTG1LRurlkTcwi0LWiXJABWmXgByK1wBsATh91pbJd u3PLbfacHyL6Gb8kstwKMV6Nvx+V/XvlEiuFuUDJPojxiiyR9I7eUo2G1i++xkYk pYhvVAvXyOwAIXT69VdF8XppjKM87I2EHysAeXiL+nWKNrdKEeMdm4Xwg89cq+UH JUTyN0/tt98gx3uSuIIiNMpduvm4g4HhsDneNrufF+n7Y5pERRMqD9w8Hr9aVavv 77Bb6gET5kmrDeXwZnoditYeYw1doYWP -----END CERTIFICATE-----Generated at Sat Jun 14 18:01:23 2025 by rpki-client