$ rpki-client -vvf rpki.apnic.net/member_repository/A912DF25/7F7B1DAC5AC711EF99EAFC43C4F9AE02/loNUUNMhwefEjKDF3NK6bB0tSPE.mft File: loNUUNMhwefEjKDF3NK6bB0tSPE.mft (raw, json) Hash identifier: 8Zh6YL/0PoBwPOyhjIxKoYNmM9F7zLPARh+LJAwJvR4= Subject key identifier: 3E:04:67:69:14:21:C3:59:5D:6A:5E:C9:89:01:55:BC:7E:22:6F:D3 Authority key identifier: 96:83:54:50:D3:21:C1:E7:C4:8C:A0:C5:DC:D2:BA:6C:1D:2D:48:F1 Certificate issuer: /CN=A912DF25/serialNumber=96835450D321C1E7C48CA0C5DCD2BA6C1D2D48F1 Certificate serial: 9A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/loNUUNMhwefEjKDF3NK6bB0tSPE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912DF25/7F7B1DAC5AC711EF99EAFC43C4F9AE02/loNUUNMhwefEjKDF3NK6bB0tSPE.mft Manifest number: 95 Signing time: Sat 31 May 2025 05:54:07 +0000 Manifest this update: Sat 31 May 2025 05:54:07 +0000 Manifest next update: Sat 07 Jun 2025 05:54:07 +0000 Files and hashes: 1: loNUUNMhwefEjKDF3NK6bB0tSPE.crl (hash: vtzEJLIJh61LsU2DLd2lPpJWF8G1pA2dcxYBDK4rVkQ=) 2: 050079585AC911EF9DF4275AC4F9AE02.roa (hash: FQoFMhaO39gGEcc2pn8CyPB8yz5sPKJ5LS8scOVr+nU=) 3: 06B76AE05AC911EF9DF4275AC4F9AE02.roa (hash: p2h51oKfWEnIrxeQceDN5JWcokM71oAHp5D24ePE5rk=) 4: 06237AC45AC911EF9DF4275AC4F9AE02.roa (hash: X3F/CNUdhflmAgi4adN4rn0epV3fDuvZOIzQJHOvlz4=) 5: 047C04705AC911EF9DF4275AC4F9AE02.roa (hash: UGCPOMHQWDHdKMVZEIClF1yCBQsAp0GOZkBRwsHoCKc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912DF25/7F7B1DAC5AC711EF99EAFC43C4F9AE02/loNUUNMhwefEjKDF3NK6bB0tSPE.crl rsync://rpki.apnic.net/member_repository/A912DF25/7F7B1DAC5AC711EF99EAFC43C4F9AE02/loNUUNMhwefEjKDF3NK6bB0tSPE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/loNUUNMhwefEjKDF3NK6bB0tSPE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 05:54:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 154 (0x9a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912DF25, serialNumber=96835450D321C1E7C48CA0C5DCD2BA6C1D2D48F1 Validity Not Before: May 31 05:54:07 2025 GMT Not After : Jun 7 05:54:07 2025 GMT Subject: CN=683a997f-f2f9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:42:ba:ac:69:c1:fa:89:41:85:75:15:b0:ba: e1:62:c9:f4:80:4a:d1:02:e7:b4:41:de:d4:a4:45: f7:53:38:6b:cc:a9:67:3c:4f:39:22:56:90:ec:47: 4e:e1:45:62:34:8c:a6:dc:c9:2d:6e:5f:30:06:4b: 2f:b8:c4:1e:84:66:cd:98:8c:8a:f3:aa:c3:12:e6: 6a:4f:3f:03:66:52:5c:f0:4c:fe:a6:cb:6c:6c:88: 3d:18:70:99:bb:59:c8:4d:8d:d7:7d:60:74:20:1c: 3f:39:04:2e:23:b6:94:9e:5c:92:73:46:f1:ee:23: d5:73:3c:1c:dc:ac:32:90:85:9d:ae:ab:04:29:0c: fe:63:27:15:80:88:d4:10:18:44:e8:82:55:84:a0: b3:43:70:26:0a:95:c2:ec:8f:03:e9:40:25:ad:33: 9b:6d:2d:c3:77:89:75:be:4f:45:39:fc:85:63:b0: 68:48:fd:f4:4f:3b:5b:49:bb:40:4e:f9:e5:ee:36: f1:91:80:77:23:6f:b0:9d:49:7d:5a:74:a4:1b:64: 5e:36:05:4a:93:c8:66:e7:fa:30:5c:2a:8f:ee:57: bc:02:04:b6:21:73:ed:10:a2:85:83:b8:6a:79:c7: 25:0a:51:3b:be:81:22:f9:1b:ea:65:e6:d7:c9:b9: 1f:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3E:04:67:69:14:21:C3:59:5D:6A:5E:C9:89:01:55:BC:7E:22:6F:D3 X509v3 Authority Key Identifier: keyid:96:83:54:50:D3:21:C1:E7:C4:8C:A0:C5:DC:D2:BA:6C:1D:2D:48:F1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912DF25/7F7B1DAC5AC711EF99EAFC43C4F9AE02/loNUUNMhwefEjKDF3NK6bB0tSPE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/loNUUNMhwefEjKDF3NK6bB0tSPE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912DF25/7F7B1DAC5AC711EF99EAFC43C4F9AE02/loNUUNMhwefEjKDF3NK6bB0tSPE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8d:05:a0:f1:51:95:55:58:bf:4b:c3:6c:a2:12:84:e6:01:1d: 55:19:8c:86:ff:83:33:9b:b4:52:4a:75:c9:50:84:b6:f4:45: c9:61:4d:9a:ec:3b:18:fb:ca:da:0f:6e:50:b5:bd:7c:86:86: 60:44:af:e3:7d:35:3d:87:d9:4b:e4:79:1c:91:cb:f4:b9:7d: 0d:43:7a:1a:c9:9d:fe:08:0c:7d:c8:e1:62:7a:b4:db:b3:9c: 46:76:ed:02:d6:95:21:20:f7:57:f7:14:e4:c2:34:a7:98:e5: 9c:96:15:e4:d2:ec:83:9a:29:ea:c6:44:f9:5a:5f:10:df:79: 5b:85:49:e1:df:18:ef:7f:0d:5a:d5:d3:3b:b5:61:45:5b:af: 26:d3:4d:03:95:62:4a:71:a3:f9:58:a0:bc:7a:36:25:69:c5: 7d:29:77:2b:3e:5a:ba:90:41:de:9e:48:3e:71:e6:a4:56:aa: 7e:5d:92:ed:aa:90:06:f5:68:3b:e5:08:5e:bf:f1:0e:38:3d: 43:af:8d:f3:58:48:32:1f:e3:bd:96:26:c7:8f:96:d5:6b:ab: 28:33:45:62:32:bf:74:00:c3:6d:83:61:c2:c3:cc:de:55:cf: cb:d6:40:c7:8c:78:bb:5d:b6:97:6e:f2:72:17:27:fa:d1:b1: 29:2d:4c:fc -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAJowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkRGMjUxMTAvBgNVBAUTKDk2ODM1NDUwRDMyMUMxRTdDNDhDQTBDNURDRDJCQTZD MUQyRDQ4RjEwHhcNMjUwNTMxMDU1NDA3WhcNMjUwNjA3MDU1NDA3WjAYMRYwFAYD VQQDEw02ODNhOTk3Zi1mMmY5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt0K6rGnB+olBhXUVsLrhYsn0gErRAue0Qd7UpEX3UzhrzKlnPE85IlaQ7EdO 4UViNIym3Mktbl8wBksvuMQehGbNmIyK86rDEuZqTz8DZlJc8Ez+pstsbIg9GHCZ u1nITY3XfWB0IBw/OQQuI7aUnlySc0bx7iPVczwc3KwykIWdrqsEKQz+YycVgIjU EBhE6IJVhKCzQ3AmCpXC7I8D6UAlrTObbS3Dd4l1vk9FOfyFY7BoSP30TztbSbtA Tvnl7jbxkYB3I2+wnUl9WnSkG2ReNgVKk8hm5/owXCqP7le8AgS2IXPtEKKFg7hq ecclClE7voEi+RvqZebXybkfxQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFD4EZ2kU IcNZXWpeyYkBVbx+Im/TMB8GA1UdIwQYMBaAFJaDVFDTIcHnxIygxdzSumwdLUjx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyREYyNS83RjdCMURBQzVB QzcxMUVGOTlFQUZDNDNDNEY5QUUwMi9sb05VVU5NaHdlZkVqS0RGM05LNmJCMHRT UEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xvTlVVTk1od2VmRWpLREYzTks2YkIwdFNQRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy REYyNS83RjdCMURBQzVBQzcxMUVGOTlFQUZDNDNDNEY5QUUwMi9sb05VVU5NaHdl ZkVqS0RGM05LNmJCMHRTUEUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCNBaDxUZVVWL9Lw2yiEoTmAR1VGYyG/4Mzm7RSSnXJUIS29EXJYU2a 7DsY+8raD25Qtb18hoZgRK/jfTU9h9lL5Hkckcv0uX0NQ3oayZ3+CAx9yOFierTb s5xGdu0C1pUhIPdX9xTkwjSnmOWclhXk0uyDminqxkT5Wl8Q33lbhUnh3xjvfw1a 1dM7tWFFW68m000DlWJKcaP5WKC8ejYlacV9KXcrPlq6kEHenkg+ceakVqp+XZLt qpAG9Wg75Qhev/EOOD1Dr43zWEgyH+O9libHj5bVa6soM0ViMr90AMNtg2HCw8ze Vc/L1kDHjHi7XbaXbvJyFyf60bEpLUz8 -----END CERTIFICATE-----Generated at Sat May 31 16:36:47 2025 by rpki-client