$ rpki-client -vvf rpki.apnic.net/member_repository/A91754C0/FEDF572ECCBB11EE8A0F7748C4F9AE02/0PiwBllsfAN8tUkwWzlpAACq6KQ.mft File: 0PiwBllsfAN8tUkwWzlpAACq6KQ.mft (raw, json) Hash identifier: VtEy5JCVPSwilFZ1lD2Zb3qIvUFjuwC93TpCLdtP/f0= Subject key identifier: 1F:EC:08:A1:A5:9E:FC:48:18:4E:13:26:CB:50:75:05:72:11:70:1F Authority key identifier: D0:F8:B0:06:59:6C:7C:03:7C:B5:49:30:5B:39:69:00:00:AA:E8:A4 Certificate issuer: /CN=A91754C0/serialNumber=D0F8B006596C7C037CB549305B39690000AAE8A4 Certificate serial: F6 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/0PiwBllsfAN8tUkwWzlpAACq6KQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91754C0/FEDF572ECCBB11EE8A0F7748C4F9AE02/0PiwBllsfAN8tUkwWzlpAACq6KQ.mft Manifest number: F2 Signing time: Sun 01 Jun 2025 04:57:20 +0000 Manifest this update: Sun 01 Jun 2025 04:57:19 +0000 Manifest next update: Sun 08 Jun 2025 04:57:19 +0000 Files and hashes: 1: 0PiwBllsfAN8tUkwWzlpAACq6KQ.crl (hash: 1udDVvbVxrSYl/3JWUz7wCon3uSEN7BnhdYCiL9iTcQ=) 2: D0CB00D4CCBD11EEAC4BCD4BC4F9AE02.roa (hash: tE5MO0yGqfdQRPhR9mD7EUVj7T64niX8BINnA3y1Amk=) 3: 6BA3FEA4CCBD11EEBADDFC4AC4F9AE02.roa (hash: qBQp3vvSD9elb8dQbwCPuGirBXWWVwR3GT0tS3LqEZA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91754C0/FEDF572ECCBB11EE8A0F7748C4F9AE02/0PiwBllsfAN8tUkwWzlpAACq6KQ.crl rsync://rpki.apnic.net/member_repository/A91754C0/FEDF572ECCBB11EE8A0F7748C4F9AE02/0PiwBllsfAN8tUkwWzlpAACq6KQ.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/0PiwBllsfAN8tUkwWzlpAACq6KQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Jun 2025 04:57:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 246 (0xf6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91754C0, serialNumber=D0F8B006596C7C037CB549305B39690000AAE8A4 Validity Not Before: Jun 1 04:57:19 2025 GMT Not After : Jun 8 04:57:19 2025 GMT Subject: CN=683bddaf-9c3e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:75:7e:77:74:57:0b:02:cd:e5:52:74:0c:98: 7c:15:39:c1:b8:22:b0:7c:5d:95:d4:41:3e:77:96: 34:cb:d6:8f:ec:a3:86:aa:10:05:51:4e:06:bf:5b: 3c:57:10:ca:19:b6:9c:7a:5b:fe:ba:cb:ba:7f:79: ff:73:8a:51:75:d9:6a:9d:8d:59:1f:90:ed:99:c8: e2:dd:d9:93:02:56:4a:d5:c4:54:39:84:80:19:05: 83:42:10:52:51:55:f7:e6:02:b7:32:0a:a2:3c:b6: de:64:0d:57:1b:7d:2c:bc:16:d5:52:8c:3b:83:43: a1:9b:85:8f:eb:ab:58:6e:be:d7:bd:4d:a3:b7:74: c3:f9:cc:e4:b1:f4:4a:ac:30:df:ef:9e:da:1c:cf: 79:2a:58:90:15:55:8e:38:15:dc:ad:9a:5d:26:48: 54:ea:34:5e:25:90:d2:b5:07:b3:62:66:86:e0:06: 75:9a:0c:94:8f:be:b5:d9:44:2e:b0:2e:83:d4:80: 78:f3:35:ad:a1:83:13:f6:4d:57:df:08:a9:e8:f1: d1:56:8b:55:7a:50:7e:e1:86:19:63:3c:07:e2:b3: 38:a0:af:d3:a9:46:5c:08:e9:db:38:0c:ca:86:f5: 44:07:2b:c0:bc:46:f6:a8:fe:e6:b8:4f:88:77:d0: 0e:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1F:EC:08:A1:A5:9E:FC:48:18:4E:13:26:CB:50:75:05:72:11:70:1F X509v3 Authority Key Identifier: keyid:D0:F8:B0:06:59:6C:7C:03:7C:B5:49:30:5B:39:69:00:00:AA:E8:A4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91754C0/FEDF572ECCBB11EE8A0F7748C4F9AE02/0PiwBllsfAN8tUkwWzlpAACq6KQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/0PiwBllsfAN8tUkwWzlpAACq6KQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91754C0/FEDF572ECCBB11EE8A0F7748C4F9AE02/0PiwBllsfAN8tUkwWzlpAACq6KQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5f:13:0e:90:63:9d:b5:5d:d6:b9:28:2b:44:98:1b:d1:0f:9a: 3c:2f:b4:6d:26:e7:a5:a8:a0:9d:f2:8d:57:77:00:55:3f:03: 6f:5b:99:33:0b:a1:6c:cf:29:9b:82:de:9b:6b:c4:9d:14:e2: ea:52:25:1b:cf:9e:16:8f:de:4c:99:9a:b1:36:9e:b5:02:71: 1c:5f:4c:8c:d5:fd:18:bb:3a:31:94:04:d3:85:d7:73:55:71: 7a:ce:37:88:ca:99:0a:47:bf:0c:70:24:80:40:2f:a2:c4:c8: 9c:d0:58:20:0b:3c:f8:5e:f5:ec:4b:3c:6d:bd:21:ce:57:9a: 01:f6:d4:f5:2d:9b:46:d2:e7:99:7d:9f:f4:9a:71:53:af:25: d8:82:a6:8f:85:59:2a:09:6c:a7:43:ac:05:7b:6e:81:2a:26: dc:0c:a1:39:af:e1:85:e3:28:68:0f:ce:94:b4:ec:28:74:59: ab:4c:af:c6:c4:eb:45:e5:c5:f0:22:3e:06:5f:ca:34:29:ba: b6:bf:06:bd:83:4b:d5:ae:0c:7c:11:42:72:6f:0a:10:74:20: b7:55:2a:3a:43:da:97:fc:bc:66:e6:a1:84:4d:8b:6c:bc:93: 01:44:eb:26:94:c0:ac:4e:4a:69:78:7a:7b:20:09:8c:07:67: c8:b9:6c:65 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAPYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzU0QzAxMTAvBgNVBAUTKEQwRjhCMDA2NTk2QzdDMDM3Q0I1NDkzMDVCMzk2OTAw MDBBQUU4QTQwHhcNMjUwNjAxMDQ1NzE5WhcNMjUwNjA4MDQ1NzE5WjAYMRYwFAYD VQQDEw02ODNiZGRhZi05YzNlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArXV+d3RXCwLN5VJ0DJh8FTnBuCKwfF2V1EE+d5Y0y9aP7KOGqhAFUU4Gv1s8 VxDKGbacelv+usu6f3n/c4pRddlqnY1ZH5Dtmcji3dmTAlZK1cRUOYSAGQWDQhBS UVX35gK3MgqiPLbeZA1XG30svBbVUow7g0Ohm4WP66tYbr7XvU2jt3TD+czksfRK rDDf757aHM95KliQFVWOOBXcrZpdJkhU6jReJZDStQezYmaG4AZ1mgyUj7612UQu sC6D1IB48zWtoYMT9k1X3wip6PHRVotVelB+4YYZYzwH4rM4oK/TqUZcCOnbOAzK hvVEByvAvEb2qP7muE+Id9AOfQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFB/sCKGl nvxIGE4TJstQdQVyEXAfMB8GA1UdIwQYMBaAFND4sAZZbHwDfLVJMFs5aQAAquik MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NTRDMC9GRURGNTcyRUND QkIxMUVFOEEwRjc3NDhDNEY5QUUwMi8wUGl3Qmxsc2ZBTjh0VWt3V3pscEFBQ3E2 S1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzBQaXdCbGxzZkFOOHRVa3dXemxwQUFDcTZLUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 NTRDMC9GRURGNTcyRUNDQkIxMUVFOEEwRjc3NDhDNEY5QUUwMi8wUGl3Qmxsc2ZB Tjh0VWt3V3pscEFBQ3E2S1EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBfEw6QY521Xda5KCtEmBvRD5o8L7RtJuelqKCd8o1XdwBVPwNvW5kz C6Fszymbgt6ba8SdFOLqUiUbz54Wj95MmZqxNp61AnEcX0yM1f0YuzoxlATThddz VXF6zjeIypkKR78McCSAQC+ixMic0FggCzz4XvXsSzxtvSHOV5oB9tT1LZtG0ueZ fZ/0mnFTryXYgqaPhVkqCWynQ6wFe26BKibcDKE5r+GF4yhoD86UtOwodFmrTK/G xOtF5cXwIj4GX8o0Kbq2vwa9g0vVrgx8EUJybwoQdCC3VSo6Q9qX/Lxm5qGETYts vJMBROsmlMCsTkppeHp7IAmMB2fIuWxl -----END CERTIFICATE-----Generated at Mon Jun 2 20:40:57 2025 by rpki-client