$ rpki-client -vvf rpki.apnic.net/member_repository/A91872ED/ED8C96901D6C11E28A38A3AD08B02CD2/aPr52s4ZdoysPU7XuyQ3K_-m0Bg.mft File: aPr52s4ZdoysPU7XuyQ3K_-m0Bg.mft (raw, json) Hash identifier: 9hOASZpW1yLKoDgfepjgp825Vo5gobyqeTgG80l9otw= Subject key identifier: 1D:9D:E7:83:91:E0:26:1A:44:A0:A5:F6:95:7E:C6:26:40:52:B5:37 Authority key identifier: 68:FA:F9:DA:CE:19:76:8C:AC:3D:4E:D7:BB:24:37:2B:FF:A6:D0:18 Certificate issuer: /CN=A91872ED/serialNumber=68FAF9DACE19768CAC3D4ED7BB24372BFFA6D018 Certificate serial: 351C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aPr52s4ZdoysPU7XuyQ3K_-m0Bg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91872ED/ED8C96901D6C11E28A38A3AD08B02CD2/aPr52s4ZdoysPU7XuyQ3K_-m0Bg.mft Manifest number: 34CA Signing time: Mon 02 Jun 2025 14:18:35 +0000 Manifest this update: Mon 02 Jun 2025 14:18:35 +0000 Manifest next update: Mon 09 Jun 2025 14:18:35 +0000 Files and hashes: 1: aPr52s4ZdoysPU7XuyQ3K_-m0Bg.crl (hash: iCnKse5YEl1/tzTvcdlb+0S8Soo2RXeIFu/iTZ9ARvs=) 2: 73E75DA6F94711EF9B713B3AC4F9AE02.roa (hash: jqW67pSJSIsRiaBgE6s/DK3BAL3JeM6fk0sbod9Ihss=) 3: 797B4DEC293B11E8B187196DC4F9AE02.roa (hash: m0T5p+j/9s+rm9D6YdSh//2Alx2Eae+Du8lbaB1hR7Y=) 4: 1921C8926CDF11EAB92A3A24C4F9AE02.roa (hash: IkqW+PwyXlQ+AUTKEJ4fHo5q5mHtKj5Ve8Q8p0ADu48=) 5: 35415D50FA7711EFB598EF54C4F9AE02.roa (hash: tqonfMb2T4kEzGLFTTW3PK/xQqepl87jr8dA78s4VGI=) 6: 749BE0C8F94711EF9B713B3AC4F9AE02.roa (hash: D48/pxU7MzDuerY2hyHqIJz8Ni5AYoPlrPyxeWvQn8M=) 7: 6A18A5B0F88811EF9CB20317C4F9AE02.roa (hash: H76rrDZxK8h/g51b1krAIQ2ulCKuPO82m4joCbnFfEs=) 8: 19ACBFF66CDF11EAB92A3A24C4F9AE02.roa (hash: rb6m6NgtqMNqMVoEYBcUFewdPh6xLzsagwAw8cSDCbE=) 9: EDCDDF00FA7811EFAF0CDF57C4F9AE02.roa (hash: kN3zyoollwJXDugnYM0yHLk48cRpRCSo426eiI4jnbk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91872ED/ED8C96901D6C11E28A38A3AD08B02CD2/aPr52s4ZdoysPU7XuyQ3K_-m0Bg.crl rsync://rpki.apnic.net/member_repository/A91872ED/ED8C96901D6C11E28A38A3AD08B02CD2/aPr52s4ZdoysPU7XuyQ3K_-m0Bg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aPr52s4ZdoysPU7XuyQ3K_-m0Bg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 14:18:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13596 (0x351c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91872ED, serialNumber=68FAF9DACE19768CAC3D4ED7BB24372BFFA6D018 Validity Not Before: Jun 2 14:18:35 2025 GMT Not After : Jun 9 14:18:35 2025 GMT Subject: CN=683db2bb-b187 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:82:5c:69:86:ba:15:18:4b:3b:c0:48:ce:0d: bc:fb:15:23:59:42:85:ec:a8:16:e0:36:8c:d7:bc: ef:51:b1:0a:7f:f7:94:fe:0f:56:b3:dd:a1:60:fe: 28:3c:4b:ae:ba:77:16:9b:9d:ad:2d:a5:a1:f0:70: 5e:5f:e9:7c:d1:bd:92:8c:a4:66:30:15:5f:b9:2a: a1:ff:90:bc:b6:d1:66:16:c3:c1:d1:aa:70:ee:24: 64:be:fa:db:d4:97:4b:f6:22:22:af:07:c5:af:7a: df:2a:6e:a5:86:1e:2d:61:af:50:57:5e:28:01:0e: ef:9c:ae:2a:82:e6:c5:2a:19:56:ee:dd:43:6d:ad: 0e:8c:9c:f7:c6:4d:40:dc:0e:89:e1:76:66:32:62: 5c:53:c4:09:1a:59:f5:d3:2c:8a:50:76:b6:99:e6: e3:77:9a:8e:53:6f:2d:40:5b:ac:18:f0:86:ca:4b: 61:6c:b1:30:08:7c:09:41:1f:67:e7:3b:22:7c:03: 62:46:3a:ae:14:00:cd:8c:22:8c:77:42:ed:33:74: 36:ae:1a:12:4c:1c:a5:63:3c:1e:ea:5f:9e:ec:7b: c0:b1:6b:ed:70:7e:f0:43:38:bd:f5:9c:35:6c:1a: ab:f4:4f:cf:ba:6e:cd:0b:87:c7:42:c1:08:49:df: a0:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1D:9D:E7:83:91:E0:26:1A:44:A0:A5:F6:95:7E:C6:26:40:52:B5:37 X509v3 Authority Key Identifier: keyid:68:FA:F9:DA:CE:19:76:8C:AC:3D:4E:D7:BB:24:37:2B:FF:A6:D0:18 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91872ED/ED8C96901D6C11E28A38A3AD08B02CD2/aPr52s4ZdoysPU7XuyQ3K_-m0Bg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aPr52s4ZdoysPU7XuyQ3K_-m0Bg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91872ED/ED8C96901D6C11E28A38A3AD08B02CD2/aPr52s4ZdoysPU7XuyQ3K_-m0Bg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 14:68:81:71:20:09:30:8c:b2:c9:17:84:8c:f4:90:d4:e7:3c: 0f:14:5c:04:ee:80:26:27:52:19:21:14:a8:13:8c:b8:66:46: af:6b:05:7d:93:b6:8e:9a:c6:6e:ef:56:c8:d9:75:0d:e9:81: af:4f:64:2f:f5:2b:73:5b:f6:c1:e7:62:18:c2:d2:b3:5e:e6: f1:02:fd:2e:e2:a4:e6:88:e4:e9:12:de:b3:62:97:c6:a6:c1: e9:48:43:1e:fb:cb:96:61:0b:fb:49:03:e7:ea:ab:f0:e7:44: 4e:84:24:44:81:d3:2e:58:1b:0f:1b:6e:7c:a9:46:7c:b0:7e: 2f:99:ed:c6:98:a4:05:37:d9:3e:42:df:c7:da:7e:35:b6:3e: 0b:72:28:cd:ca:30:03:ca:95:7d:67:95:41:9b:4a:ce:af:0f: 05:e2:ba:ce:e6:5c:d7:9e:bc:00:3b:43:08:6f:78:97:60:dc: 32:c5:95:f4:ef:6b:94:49:06:77:5b:b9:d4:65:f6:25:c3:6f: cc:0b:91:31:b2:33:28:fc:90:fb:04:11:b0:42:ed:34:78:08: f8:be:d8:ea:38:a7:d4:8a:f4:a3:1c:aa:64:ea:d4:05:ef:5d: f2:98:b9:f4:88:8b:bd:0f:28:fe:ac:f0:ce:46:97:fe:4a:0f: d4:21:6f:5a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNRwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODcyRUQxMTAvBgNVBAUTKDY4RkFGOURBQ0UxOTc2OENBQzNENEVEN0JCMjQzNzJC RkZBNkQwMTgwHhcNMjUwNjAyMTQxODM1WhcNMjUwNjA5MTQxODM1WjAYMRYwFAYD VQQDEw02ODNkYjJiYi1iMTg3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvYJcaYa6FRhLO8BIzg28+xUjWUKF7KgW4DaM17zvUbEKf/eU/g9Ws92hYP4o PEuuuncWm52tLaWh8HBeX+l80b2SjKRmMBVfuSqh/5C8ttFmFsPB0apw7iRkvvrb 1JdL9iIirwfFr3rfKm6lhh4tYa9QV14oAQ7vnK4qgubFKhlW7t1Dba0OjJz3xk1A 3A6J4XZmMmJcU8QJGln10yyKUHa2mebjd5qOU28tQFusGPCGykthbLEwCHwJQR9n 5zsifANiRjquFADNjCKMd0LtM3Q2rhoSTBylYzwe6l+e7HvAsWvtcH7wQzi99Zw1 bBqr9E/Pum7NC4fHQsEISd+gvwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFB2d54OR 4CYaRKCl9pV+xiZAUrU3MB8GA1UdIwQYMBaAFGj6+drOGXaMrD1O17skNyv/ptAY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NzJFRC9FRDhDOTY5MDFE NkMxMUUyOEEzOEEzQUQwOEIwMkNEMi9hUHI1MnM0WmRveXNQVTdYdXlRM0tfLW0w QmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FQcjUyczRaZG95c1BVN1h1eVEzS18tbTBCZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NzJFRC9FRDhDOTY5MDFENkMxMUUyOEEzOEEzQUQwOEIwMkNEMi9hUHI1MnM0WmRv eXNQVTdYdXlRM0tfLW0wQmcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAUaIFxIAkwjLLJF4SM9JDU5zwPFFwE7oAmJ1IZIRSoE4y4ZkavawV9 k7aOmsZu71bI2XUN6YGvT2Qv9StzW/bB52IYwtKzXubxAv0u4qTmiOTpEt6zYpfG psHpSEMe+8uWYQv7SQPn6qvw50ROhCREgdMuWBsPG258qUZ8sH4vme3GmKQFN9k+ Qt/H2n41tj4LcijNyjADypV9Z5VBm0rOrw8F4rrO5lzXnrwAO0MIb3iXYNwyxZX0 72uUSQZ3W7nUZfYlw2/MC5ExsjMo/JD7BBGwQu00eAj4vtjqOKfUivSjHKpk6tQF 713ymLn0iIu9Dyj+rPDORpf+Sg/UIW9a -----END CERTIFICATE-----Generated at Tue Jun 3 23:46:54 2025 by rpki-client