$ rpki-client -vvf rpki.apnic.net/member_repository/A91FF7FC/4E23B39C2A6211ECA9A67C30C4F9AE02/CNn0g-RUIVj2LL5wWGnr7Xf7kn8.mft File: CNn0g-RUIVj2LL5wWGnr7Xf7kn8.mft (raw, json) Hash identifier: Wh1Hl62izNh5Y/6vSSRBBCabirJ3IO7aKncDh+OfLPc= Subject key identifier: 87:76:76:F8:2E:86:EB:16:94:75:AD:23:29:69:25:A2:56:56:4E:E1 Authority key identifier: 08:D9:F4:83:E4:54:21:58:F6:2C:BE:70:58:69:EB:ED:77:FB:92:7F Certificate issuer: /CN=A91FF7FC/serialNumber=08D9F483E4542158F62CBE705869EBED77FB927F Certificate serial: 04C7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CNn0g-RUIVj2LL5wWGnr7Xf7kn8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FF7FC/4E23B39C2A6211ECA9A67C30C4F9AE02/CNn0g-RUIVj2LL5wWGnr7Xf7kn8.mft Manifest number: 04C2 Signing time: Thu 12 Jun 2025 23:25:15 +0000 Manifest this update: Thu 12 Jun 2025 23:25:14 +0000 Manifest next update: Thu 19 Jun 2025 23:25:14 +0000 Files and hashes: 1: CNn0g-RUIVj2LL5wWGnr7Xf7kn8.crl (hash: TZYCPOKcMvoMwSrTm4jM5dNPu6UTwlPSX3hfYVfLNw4=) 2: 5CA72CF82A6911EC94518740C4F9AE02.roa (hash: DNv6RERe4SqIzEBmNx3Q6xCWL7cpJvtrVCrMm/mBf0c=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FF7FC/4E23B39C2A6211ECA9A67C30C4F9AE02/CNn0g-RUIVj2LL5wWGnr7Xf7kn8.crl rsync://rpki.apnic.net/member_repository/A91FF7FC/4E23B39C2A6211ECA9A67C30C4F9AE02/CNn0g-RUIVj2LL5wWGnr7Xf7kn8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CNn0g-RUIVj2LL5wWGnr7Xf7kn8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 19 Jun 2025 23:25:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1223 (0x4c7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FF7FC, serialNumber=08D9F483E4542158F62CBE705869EBED77FB927F Validity Not Before: Jun 12 23:25:14 2025 GMT Not After : Jun 19 23:25:14 2025 GMT Subject: CN=684b61da-2ac6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:87:17:8e:3e:fb:cc:18:42:fd:0c:1b:43:1f: d3:ce:63:a8:ef:95:d6:f2:68:0b:1c:f1:86:b7:46: 74:9c:78:29:53:ab:9f:66:c9:e3:0e:7d:4a:02:3a: d4:34:76:98:c4:b7:c3:b3:3a:55:16:4e:e5:e7:f2: 91:7a:ff:a1:74:b2:df:6b:d1:02:71:b6:27:6d:fb: 86:92:7e:3a:3c:9d:50:f5:9a:b5:70:03:3e:7a:c7: 4b:e0:40:13:6a:2b:b2:86:13:13:ea:bc:29:34:ca: 4d:8e:2b:90:9c:1d:9d:15:43:47:ec:28:89:ba:22: ad:b6:8e:85:8e:5b:f9:22:f0:cb:f3:e0:8f:36:1e: 5e:a2:e7:b0:66:f7:b7:71:ec:fd:df:36:54:9c:b3: 06:d7:ee:cc:df:cd:5c:d3:0a:b9:27:26:33:58:af: c4:d6:1a:89:89:ad:e9:4a:96:0e:d3:77:dd:e3:3e: 50:ab:c9:aa:dc:4f:00:2b:45:fe:25:8b:8c:c7:fa: 28:22:e3:93:af:49:2b:28:55:b9:96:2f:30:e8:2c: 31:54:42:ea:18:12:d5:64:2c:2a:b0:7d:a2:ed:f2: 97:53:c0:09:2c:46:71:03:e5:b9:f4:a9:92:69:14: ec:69:48:8b:27:c7:80:8e:66:ee:95:39:80:ca:7d: 83:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 87:76:76:F8:2E:86:EB:16:94:75:AD:23:29:69:25:A2:56:56:4E:E1 X509v3 Authority Key Identifier: keyid:08:D9:F4:83:E4:54:21:58:F6:2C:BE:70:58:69:EB:ED:77:FB:92:7F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FF7FC/4E23B39C2A6211ECA9A67C30C4F9AE02/CNn0g-RUIVj2LL5wWGnr7Xf7kn8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CNn0g-RUIVj2LL5wWGnr7Xf7kn8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FF7FC/4E23B39C2A6211ECA9A67C30C4F9AE02/CNn0g-RUIVj2LL5wWGnr7Xf7kn8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 00:b6:b0:82:29:97:e3:7c:01:b1:4b:83:97:8c:52:f4:00:99: aa:ba:39:8a:b4:24:b1:c0:91:08:99:09:63:e1:23:30:0a:ba: b3:ac:cc:8f:9b:35:fc:a1:6d:d8:d6:e8:53:b5:5f:43:0c:3b: 2f:0b:83:fd:ad:4f:f1:46:58:d5:33:3d:05:c4:15:7a:70:b8: cf:ed:96:b0:6e:14:f8:4b:d5:a6:2e:47:bd:d0:fd:2e:b7:08: 22:37:01:e1:dc:cb:61:1f:92:ea:5d:1a:fb:0d:d9:47:7b:80: 3c:a5:21:2c:7f:42:4a:03:90:3b:9e:f2:d2:80:6b:3d:02:83: 89:50:86:fd:82:5e:ea:0b:1b:8e:57:47:08:61:bc:7c:9c:3b: 0b:f2:da:bc:e2:4d:95:b2:34:3f:8b:85:b0:67:3d:a5:bb:21: 50:e0:6d:73:67:f9:24:04:ef:52:11:3f:b4:5c:03:02:6d:8f: 5d:5a:d7:74:fe:a7:8c:27:bd:bc:8c:f2:2f:56:20:db:7b:bf: e1:a5:84:8b:67:89:95:b4:88:5f:72:61:a9:94:a7:53:b4:12: 62:ef:b8:4c:ca:8e:66:d8:f9:6a:50:98:69:f9:eb:89:b1:2b: 79:5f:2f:d6:67:a4:ef:85:c1:43:40:16:3b:27:6b:73:4d:d4: 7d:71:d8:7f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBMcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkY3RkMxMTAvBgNVBAUTKDA4RDlGNDgzRTQ1NDIxNThGNjJDQkU3MDU4NjlFQkVE NzdGQjkyN0YwHhcNMjUwNjEyMjMyNTE0WhcNMjUwNjE5MjMyNTE0WjAYMRYwFAYD VQQDEw02ODRiNjFkYS0yYWM2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA34cXjj77zBhC/QwbQx/TzmOo75XW8mgLHPGGt0Z0nHgpU6ufZsnjDn1KAjrU NHaYxLfDszpVFk7l5/KRev+hdLLfa9ECcbYnbfuGkn46PJ1Q9Zq1cAM+esdL4EAT aiuyhhMT6rwpNMpNjiuQnB2dFUNH7CiJuiKtto6Fjlv5IvDL8+CPNh5eouewZve3 cez93zZUnLMG1+7M381c0wq5JyYzWK/E1hqJia3pSpYO03fd4z5Qq8mq3E8AK0X+ JYuMx/ooIuOTr0krKFW5li8w6CwxVELqGBLVZCwqsH2i7fKXU8AJLEZxA+W59KmS aRTsaUiLJ8eAjmbulTmAyn2DFQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFId2dvgu husWlHWtIylpJaJWVk7hMB8GA1UdIwQYMBaAFAjZ9IPkVCFY9iy+cFhp6+13+5J/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGRjdGQy80RTIzQjM5QzJB NjIxMUVDQTlBNjdDMzBDNEY5QUUwMi9DTm4wZy1SVUlWajJMTDV3V0ducjdYZjdr bjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NObjBnLVJVSVZqMkxMNXdXR25yN1hmN2tuOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG RjdGQy80RTIzQjM5QzJBNjIxMUVDQTlBNjdDMzBDNEY5QUUwMi9DTm4wZy1SVUlW ajJMTDV3V0ducjdYZjdrbjgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAAtrCCKZfjfAGxS4OXjFL0AJmqujmKtCSxwJEImQlj4SMwCrqzrMyP mzX8oW3Y1uhTtV9DDDsvC4P9rU/xRljVMz0FxBV6cLjP7ZawbhT4S9WmLke90P0u twgiNwHh3MthH5LqXRr7DdlHe4A8pSEsf0JKA5A7nvLSgGs9AoOJUIb9gl7qCxuO V0cIYbx8nDsL8tq84k2VsjQ/i4WwZz2luyFQ4G1zZ/kkBO9SET+0XAMCbY9dWtd0 /qeMJ728jPIvViDbe7/hpYSLZ4mVtIhfcmGplKdTtBJi77hMyo5m2PlqUJhp+euJ sSt5Xy/WZ6TvhcFDQBY7J2tzTdR9cdh/ -----END CERTIFICATE-----Generated at Sat Jun 14 19:27:37 2025 by rpki-client