$ rpki-client -vvf rpki.apnic.net/member_repository/A9185D6E/4CBFF4AEDFF111EB894F3067C4F9AE02/lSTqm4I8IPp4kjvmZn4U9sTDtH4.mft File: lSTqm4I8IPp4kjvmZn4U9sTDtH4.mft (raw, json) Hash identifier: 9J6iQ98CMcYLUKaEjp/Rj4LRUwt6iQ6kY54mESFevgg= Subject key identifier: E9:F6:13:66:C7:66:1E:5C:6F:30:7A:3D:08:99:BA:1E:1E:C6:70:22 Authority key identifier: 95:24:EA:9B:82:3C:20:FA:78:92:3B:E6:66:7E:14:F6:C4:C3:B4:7E Certificate issuer: /CN=A9185D6E/serialNumber=9524EA9B823C20FA78923BE6667E14F6C4C3B47E Certificate serial: 058C Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/lSTqm4I8IPp4kjvmZn4U9sTDtH4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9185D6E/4CBFF4AEDFF111EB894F3067C4F9AE02/lSTqm4I8IPp4kjvmZn4U9sTDtH4.mft Manifest number: 057D Signing time: Mon 02 Jun 2025 23:31:00 +0000 Manifest this update: Mon 02 Jun 2025 23:30:59 +0000 Manifest next update: Mon 09 Jun 2025 23:30:59 +0000 Files and hashes: 1: lSTqm4I8IPp4kjvmZn4U9sTDtH4.crl (hash: UmOau5eaQ53ZOxulHq9ihoLx/q5HtVd1isQU/85q7pk=) 2: 37F43E66A27311EFA8731822C4F9AE02.roa (hash: nZqxDtZBd3TKtOg41uHIOH+ht6vmrzVcqsB/4sKS7Lw=) 3: 229CD24AF9FB11EB8CFF5E7DC4F9AE02.roa (hash: Ad+xO92l20yDnJAF1r+RTCORzADKmBcytCe/7+C9evg=) 4: 53BCB840EA4211EB846B8757C4F9AE02.roa (hash: Qq7xLdmh4FD2aD1wbY5We4EWUzMXM2X7Q61tiyGnpuI=) 5: 368F5308A27311EFA8731822C4F9AE02.roa (hash: nF3bhaPZagyNLULkvS1a5+uROKF0zNPyL/4XlBSqH9Y=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9185D6E/4CBFF4AEDFF111EB894F3067C4F9AE02/lSTqm4I8IPp4kjvmZn4U9sTDtH4.crl rsync://rpki.apnic.net/member_repository/A9185D6E/4CBFF4AEDFF111EB894F3067C4F9AE02/lSTqm4I8IPp4kjvmZn4U9sTDtH4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/lSTqm4I8IPp4kjvmZn4U9sTDtH4.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 23:30:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1420 (0x58c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9185D6E, serialNumber=9524EA9B823C20FA78923BE6667E14F6C4C3B47E Validity Not Before: Jun 2 23:30:59 2025 GMT Not After : Jun 9 23:30:59 2025 GMT Subject: CN=683e3434-ba8f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f9:db:32:fd:b4:59:e0:75:1a:6c:64:05:b3:28: 39:37:f0:c2:a4:fd:9d:d7:77:e7:29:db:20:57:dc: 28:cd:95:31:a0:63:54:03:30:e1:4a:d8:0f:b7:99: 3c:2d:82:1f:e9:60:a0:2d:82:fb:41:4b:e1:69:53: b1:74:41:16:cd:d5:33:a3:60:5c:fc:ec:a1:2e:7d: 08:97:30:49:aa:23:91:06:92:0c:58:80:ce:5b:73: 26:db:0f:76:f9:e5:df:32:e7:35:f0:bb:5c:cc:6e: 28:62:f2:90:a6:c4:cb:d3:90:1d:41:98:dc:34:f0: 98:dd:8c:2a:24:bb:ae:b3:d8:18:4c:09:06:c4:e5: 8a:10:d8:12:21:67:44:62:10:53:fd:03:7a:b3:d3: e0:70:cd:e7:ea:2c:0c:b9:20:da:7e:5f:ff:78:eb: 1e:8b:cc:f8:c4:19:6f:74:2b:cf:e7:8a:c0:a6:56: c8:17:18:49:cf:87:93:19:28:48:14:66:b8:da:7b: 14:92:da:9e:f2:3c:92:b2:30:55:34:ed:72:1b:7e: b4:32:aa:0e:e1:be:0f:ca:84:2d:2c:f1:5e:4b:01: 78:2f:38:1a:f7:ba:80:5a:8b:9b:9a:b8:32:7a:3c: 69:7d:1d:b0:f0:fc:aa:c5:6e:99:52:de:94:da:f8: 39:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E9:F6:13:66:C7:66:1E:5C:6F:30:7A:3D:08:99:BA:1E:1E:C6:70:22 X509v3 Authority Key Identifier: keyid:95:24:EA:9B:82:3C:20:FA:78:92:3B:E6:66:7E:14:F6:C4:C3:B4:7E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9185D6E/4CBFF4AEDFF111EB894F3067C4F9AE02/lSTqm4I8IPp4kjvmZn4U9sTDtH4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/lSTqm4I8IPp4kjvmZn4U9sTDtH4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9185D6E/4CBFF4AEDFF111EB894F3067C4F9AE02/lSTqm4I8IPp4kjvmZn4U9sTDtH4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8c:63:81:f6:ff:49:d6:eb:3f:50:3e:d1:49:42:2b:77:1f:a4: 34:0a:2b:18:11:07:22:fa:70:6c:9a:36:5f:db:b8:13:6a:e5: 88:35:8f:c8:e1:46:3e:84:22:19:ee:e5:bb:b4:cd:d4:2c:0f: f5:c4:91:b2:a1:a8:a6:92:52:9e:91:f5:88:ff:76:2b:4a:44: 8b:3f:b3:85:f4:4d:7d:af:55:35:e9:ff:bc:b4:fd:62:a6:c9: 85:42:3a:bb:eb:00:eb:1b:64:b8:50:6d:62:79:62:32:bb:9b: de:e1:95:45:65:bb:f8:3b:dd:20:ad:ea:6a:ce:48:95:25:c8: b4:6c:77:0e:d4:b9:35:7b:11:f3:17:e7:8a:0a:89:3f:29:e3: 41:88:a0:71:e9:cd:31:ff:a4:a7:4f:44:79:cb:7d:7f:64:fb: 31:8d:4c:22:75:53:0a:f8:f0:94:6a:9d:6c:75:aa:5f:b6:24: 16:d9:c2:50:cf:9b:ba:ae:86:76:22:e1:09:14:e8:ea:95:be: 82:d2:59:03:f8:a1:94:a4:a9:b1:2e:74:de:cb:7e:81:06:f4: 50:de:55:c3:9e:b5:bc:e8:7a:b1:ee:c1:cc:9c:52:bd:0f:81: 47:cc:3e:45:28:54:35:95:6f:4f:ad:11:5a:22:e1:17:fb:18: 9a:3f:25:d4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBYwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODVENkUxMTAvBgNVBAUTKDk1MjRFQTlCODIzQzIwRkE3ODkyM0JFNjY2N0UxNEY2 QzRDM0I0N0UwHhcNMjUwNjAyMjMzMDU5WhcNMjUwNjA5MjMzMDU5WjAYMRYwFAYD VQQDEw02ODNlMzQzNC1iYThmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA+dsy/bRZ4HUabGQFsyg5N/DCpP2d13fnKdsgV9wozZUxoGNUAzDhStgPt5k8 LYIf6WCgLYL7QUvhaVOxdEEWzdUzo2Bc/OyhLn0IlzBJqiORBpIMWIDOW3Mm2w92 +eXfMuc18LtczG4oYvKQpsTL05AdQZjcNPCY3YwqJLuus9gYTAkGxOWKENgSIWdE YhBT/QN6s9PgcM3n6iwMuSDafl//eOsei8z4xBlvdCvP54rAplbIFxhJz4eTGShI FGa42nsUktqe8jySsjBVNO1yG360MqoO4b4PyoQtLPFeSwF4Lzga97qAWoubmrgy ejxpfR2w8PyqxW6ZUt6U2vg5ZwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOn2E2bH Zh5cbzB6PQiZuh4exnAiMB8GA1UdIwQYMBaAFJUk6puCPCD6eJI75mZ+FPbEw7R+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NUQ2RS80Q0JGRjRBRURG RjExMUVCODk0RjMwNjdDNEY5QUUwMi9sU1RxbTRJOElQcDRranZtWm40VTlzVER0 SDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2xTVHFtNEk4SVBwNGtqdm1abjRVOXNURHRINC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NUQ2RS80Q0JGRjRBRURGRjExMUVCODk0RjMwNjdDNEY5QUUwMi9sU1RxbTRJOElQ cDRranZtWm40VTlzVER0SDQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCMY4H2/0nW6z9QPtFJQit3H6Q0CisYEQci+nBsmjZf27gTauWINY/I 4UY+hCIZ7uW7tM3ULA/1xJGyoaimklKekfWI/3YrSkSLP7OF9E19r1U16f+8tP1i psmFQjq76wDrG2S4UG1ieWIyu5ve4ZVFZbv4O90grepqzkiVJci0bHcO1Lk1exHz F+eKCok/KeNBiKBx6c0x/6SnT0R5y31/ZPsxjUwidVMK+PCUap1sdapftiQW2cJQ z5u6roZ2IuEJFOjqlb6C0lkD+KGUpKmxLnTey36BBvRQ3lXDnrW86Hqx7sHMnFK9 D4FHzD5FKFQ1lW9PrRFaIuEX+xiaPyXU -----END CERTIFICATE-----Generated at Wed Jun 4 11:59:09 2025 by rpki-client