$ rpki-client -vvf rpki.apnic.net/member_repository/A91144C9/7BA3E70C0EC911F0A26FF144C4F9AE02/sNUl6pnUyOx1YHEmpJ72cHvW9K0.mft File: sNUl6pnUyOx1YHEmpJ72cHvW9K0.mft (raw, json) Hash identifier: l4kCF6qSn6A0Wr8iaPo3g0dJVygBBjUs1349BeJI6lw= Subject key identifier: 20:E2:3C:60:60:DF:CC:83:DF:F1:9E:B3:03:B1:3F:2D:86:23:A5:73 Authority key identifier: B0:D5:25:EA:99:D4:C8:EC:75:60:71:26:A4:9E:F6:70:7B:D6:F4:AD Certificate issuer: /CN=A91144C9/serialNumber=B0D525EA99D4C8EC75607126A49EF6707BD6F4AD Certificate serial: 22 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/sNUl6pnUyOx1YHEmpJ72cHvW9K0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91144C9/7BA3E70C0EC911F0A26FF144C4F9AE02/sNUl6pnUyOx1YHEmpJ72cHvW9K0.mft Manifest number: 21 Signing time: Thu 05 Jun 2025 07:15:48 +0000 Manifest this update: Thu 05 Jun 2025 07:15:48 +0000 Manifest next update: Thu 12 Jun 2025 07:15:48 +0000 Files and hashes: 1: sNUl6pnUyOx1YHEmpJ72cHvW9K0.crl (hash: biqdTwMo27C1+UpWQEeld8PSkQdzUtsIOY8EYnrF4xQ=) 2: 9F25E6340ECA11F0BAAE344AC4F9AE02.roa (hash: ctz1y0Mr+YfqZCN/LBNWAf/NG7xW8jY2ZkFpiLOFBtc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91144C9/7BA3E70C0EC911F0A26FF144C4F9AE02/sNUl6pnUyOx1YHEmpJ72cHvW9K0.crl rsync://rpki.apnic.net/member_repository/A91144C9/7BA3E70C0EC911F0A26FF144C4F9AE02/sNUl6pnUyOx1YHEmpJ72cHvW9K0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/sNUl6pnUyOx1YHEmpJ72cHvW9K0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 12 Jun 2025 07:15:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 34 (0x22) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91144C9, serialNumber=B0D525EA99D4C8EC75607126A49EF6707BD6F4AD Validity Not Before: Jun 5 07:15:48 2025 GMT Not After : Jun 12 07:15:48 2025 GMT Subject: CN=68414424-3aa2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:f9:f7:da:55:bd:55:fa:1e:38:24:75:e2:68: 11:a4:ae:e9:04:f2:0a:66:89:fb:88:5a:fc:52:ed: 95:d1:96:f3:9f:d7:19:d3:52:2c:3e:6a:76:34:ae: 0e:84:7f:68:35:e7:a4:d5:e3:8f:f0:20:84:5c:26: 31:ce:ba:ec:db:cc:55:2a:f8:e5:47:a3:eb:09:97: 6d:aa:51:a2:db:5d:d9:cf:96:d5:01:40:bf:96:d9: 04:bf:65:c6:a1:12:f6:fb:d3:a6:01:ed:c0:5e:e2: 02:b8:c5:45:b7:a4:0e:c6:7d:7f:82:69:b2:4c:51: bf:36:07:68:fa:bb:0b:4d:73:ed:d9:9c:b9:60:cc: 1d:92:b1:70:c9:32:05:d2:43:37:ba:37:96:2f:eb: c8:e9:bc:f9:d6:d1:3e:8f:bc:58:47:48:ec:a3:2b: 1a:a2:4e:07:e4:c9:47:13:d5:78:b3:b4:b1:dd:66: 02:5c:54:af:4b:23:07:4b:73:ad:fd:9a:8e:2c:72: b7:ea:29:0d:87:3f:73:22:fe:c4:d6:ed:62:1a:d3: a8:3b:85:17:72:3d:83:e1:d3:f4:04:78:05:d7:e0: af:0d:58:cc:cc:b0:8b:59:81:b1:07:1d:76:dc:9c: 4a:1a:fe:45:64:58:51:6b:51:f4:9a:27:d2:3d:6b: 5c:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 20:E2:3C:60:60:DF:CC:83:DF:F1:9E:B3:03:B1:3F:2D:86:23:A5:73 X509v3 Authority Key Identifier: keyid:B0:D5:25:EA:99:D4:C8:EC:75:60:71:26:A4:9E:F6:70:7B:D6:F4:AD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91144C9/7BA3E70C0EC911F0A26FF144C4F9AE02/sNUl6pnUyOx1YHEmpJ72cHvW9K0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/sNUl6pnUyOx1YHEmpJ72cHvW9K0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91144C9/7BA3E70C0EC911F0A26FF144C4F9AE02/sNUl6pnUyOx1YHEmpJ72cHvW9K0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6d:ab:c5:ce:c0:59:1a:82:12:ad:d7:e3:a9:3c:16:2f:23:64: 88:f4:41:e6:7f:c1:a4:59:9e:89:60:46:0b:05:60:d6:a1:59: 3a:33:36:f6:57:7e:45:1c:6d:23:46:2e:27:5f:ec:cb:e8:12: 1b:56:1b:bf:93:15:23:d9:91:2d:70:95:e6:f1:78:f2:7d:14: 91:0e:bc:6c:f5:da:6d:1a:11:86:46:82:2d:62:ba:56:40:cf: a2:ec:c8:d6:a5:eb:6a:c7:36:11:d8:4d:ee:30:27:af:7c:10: 9e:fe:f5:0d:e7:85:cf:16:0c:51:44:29:34:ae:6a:86:cb:80: ac:ef:4b:17:0d:34:4d:3d:eb:27:42:ae:5a:e5:1e:0a:5a:01: 82:46:ce:b4:b9:51:4c:10:97:ef:e7:ff:60:06:5c:96:16:3f: 6a:a8:73:63:1b:5c:04:37:c1:d4:69:70:55:31:c8:10:58:19: ae:c2:99:93:5d:5c:1c:d4:14:f2:2a:cf:3f:2f:15:4c:e3:f4: 77:1a:23:a1:5a:aa:08:e8:73:f0:5e:bc:26:56:ac:82:80:49: 78:b8:1d:54:e1:ac:ad:d5:06:bf:2d:61:2c:6c:18:b7:ac:a2: 3c:b2:33:fd:1b:f0:45:24:3c:3e:a0:d0:f1:b6:ac:4d:a2:74: 90:ac:82:dc -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBIjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEx NDRDOTExMC8GA1UEBRMoQjBENTI1RUE5OUQ0QzhFQzc1NjA3MTI2QTQ5RUY2NzA3 QkQ2RjRBRDAeFw0yNTA2MDUwNzE1NDhaFw0yNTA2MTIwNzE1NDhaMBgxFjAUBgNV BAMTDTY4NDE0NDI0LTNhYTIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDC+ffaVb1V+h44JHXiaBGkrukE8gpmifuIWvxS7ZXRlvOf1xnTUiw+anY0rg6E f2g156TV44/wIIRcJjHOuuzbzFUq+OVHo+sJl22qUaLbXdnPltUBQL+W2QS/Zcah Evb706YB7cBe4gK4xUW3pA7GfX+CabJMUb82B2j6uwtNc+3ZnLlgzB2SsXDJMgXS Qze6N5Yv68jpvPnW0T6PvFhHSOyjKxqiTgfkyUcT1XiztLHdZgJcVK9LIwdLc639 mo4scrfqKQ2HP3Mi/sTW7WIa06g7hRdyPYPh0/QEeAXX4K8NWMzMsItZgbEHHXbc nEoa/kVkWFFrUfSaJ9I9a1wBAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUIOI8YGDf zIPf8Z6zA7E/LYYjpXMwHwYDVR0jBBgwFoAUsNUl6pnUyOx1YHEmpJ72cHvW9K0w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTE0NEM5LzdCQTNFNzBDMEVD OTExRjBBMjZGRjE0NEM0RjlBRTAyL3NOVWw2cG5VeU94MVlIRW1wSjcyY0h2VzlL MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvc05VbDZwblV5T3gxWUhFbXBKNzJjSHZXOUswLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTE0 NEM5LzdCQTNFNzBDMEVDOTExRjBBMjZGRjE0NEM0RjlBRTAyL3NOVWw2cG5VeU94 MVlIRW1wSjcyY0h2VzlLMC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAG2rxc7AWRqCEq3X46k8Fi8jZIj0QeZ/waRZnolgRgsFYNahWTozNvZX fkUcbSNGLidf7MvoEhtWG7+TFSPZkS1wlebxePJ9FJEOvGz12m0aEYZGgi1iulZA z6LsyNal62rHNhHYTe4wJ698EJ7+9Q3nhc8WDFFEKTSuaobLgKzvSxcNNE096ydC rlrlHgpaAYJGzrS5UUwQl+/n/2AGXJYWP2qoc2MbXAQ3wdRpcFUxyBBYGa7CmZNd XBzUFPIqzz8vFUzj9HcaI6Faqgjoc/BevCZWrIKASXi4HVThrK3VBr8tYSxsGLes ojyyM/0b8EUkPD6g0PG2rE2idJCsgtw= -----END CERTIFICATE-----Generated at Fri Jun 6 16:56:25 2025 by rpki-client