$ rpki-client -vvf rpki.apnic.net/member_repository/A91964B3/2A5940F24BB311E9AB151C17C4F9AE02/RkhU-1CpkDxSU0GMWD0PMbhB1Zc.mft File: RkhU-1CpkDxSU0GMWD0PMbhB1Zc.mft (raw, json) Hash identifier: NCbpWxcSIvtzxEk/HEI5JtdYebmlhouAeIhiD9dD7Ik= Subject key identifier: 52:CC:8B:6A:1A:3C:86:3C:DC:AB:45:89:B8:4F:B2:98:D9:C0:20:77 Authority key identifier: 46:48:54:FB:50:A9:90:3C:52:53:41:8C:58:3D:0F:31:B8:41:D5:97 Certificate issuer: /CN=A91964B3/serialNumber=464854FB50A9903C5253418C583D0F31B841D597 Certificate serial: 1022 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RkhU-1CpkDxSU0GMWD0PMbhB1Zc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91964B3/2A5940F24BB311E9AB151C17C4F9AE02/RkhU-1CpkDxSU0GMWD0PMbhB1Zc.mft Manifest number: 1012 Signing time: Mon 02 Jun 2025 14:25:38 +0000 Manifest this update: Mon 02 Jun 2025 14:25:38 +0000 Manifest next update: Mon 09 Jun 2025 14:25:38 +0000 Files and hashes: 1: RkhU-1CpkDxSU0GMWD0PMbhB1Zc.crl (hash: xMdvmhDf6SMGY1g3KYcjs9XFPEcd9obKKtAEsshFc68=) 2: 23B68638C5DD11EABC58FD24C4F9AE02.roa (hash: 7YuoX9OkBSRUQiHpsiuHEMGmDB7ygNEWHmpkRA4QfgE=) 3: 5D563164AF3411EFB5B51A57C4F9AE02.roa (hash: Mjf+9MFV/8wopOF7hLs3Tt14yZvRKLf5RcXcRhi35uI=) 4: 1396434EC90A11EF8577744AC4F9AE02.roa (hash: vv5/sNroDyn31EV1FuwDRkKZ1Ky/CQIEoorZo83v9h8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91964B3/2A5940F24BB311E9AB151C17C4F9AE02/RkhU-1CpkDxSU0GMWD0PMbhB1Zc.crl rsync://rpki.apnic.net/member_repository/A91964B3/2A5940F24BB311E9AB151C17C4F9AE02/RkhU-1CpkDxSU0GMWD0PMbhB1Zc.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RkhU-1CpkDxSU0GMWD0PMbhB1Zc.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 05:53:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4130 (0x1022) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91964B3, serialNumber=464854FB50A9903C5253418C583D0F31B841D597 Validity Not Before: Jun 2 14:25:38 2025 GMT Not After : Jun 9 14:25:38 2025 GMT Subject: CN=683db462-1c97 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:77:c4:ad:26:37:eb:42:24:c1:99:c5:25:55: 3b:46:5c:be:57:17:c2:e4:55:29:1e:bb:9b:f1:aa: c2:c6:3c:4b:42:b0:6b:3b:d4:b4:76:84:db:0e:17: a1:67:5d:08:09:f6:d2:c9:7e:11:75:c8:bf:af:49: f4:a0:f3:ba:02:f8:82:3f:cf:fd:80:52:d0:50:01: 1e:e1:fa:ed:7e:e5:df:0a:75:03:86:ef:ce:17:b6: f7:74:e2:48:b0:eb:d2:63:6c:50:41:87:53:76:7f: 50:66:29:90:bb:ff:62:8a:35:ed:e3:86:47:04:d9: 5e:e7:8c:41:d7:f8:5b:29:69:ee:b9:01:f3:cc:00: bf:de:93:83:a4:79:80:f2:0a:6d:3d:7a:33:42:71: b9:32:3c:55:eb:f8:f3:6c:ac:3f:be:98:8e:fd:72: 4e:9d:f3:61:e4:95:4c:1c:48:95:71:65:98:be:3f: 58:bb:b2:0b:ce:51:52:52:05:b6:ff:98:c6:a6:d4: 02:bf:94:66:67:1b:b6:59:c9:0d:15:b0:0d:60:88: 0a:4d:66:87:35:2a:c3:12:a5:96:04:01:80:d7:d8: 9a:30:1e:de:fa:6b:80:e6:fe:08:ea:9f:12:22:76: a3:05:3a:a8:0a:79:a9:f2:14:e1:cd:5e:68:e2:dc: fb:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 52:CC:8B:6A:1A:3C:86:3C:DC:AB:45:89:B8:4F:B2:98:D9:C0:20:77 X509v3 Authority Key Identifier: keyid:46:48:54:FB:50:A9:90:3C:52:53:41:8C:58:3D:0F:31:B8:41:D5:97 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91964B3/2A5940F24BB311E9AB151C17C4F9AE02/RkhU-1CpkDxSU0GMWD0PMbhB1Zc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RkhU-1CpkDxSU0GMWD0PMbhB1Zc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91964B3/2A5940F24BB311E9AB151C17C4F9AE02/RkhU-1CpkDxSU0GMWD0PMbhB1Zc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a9:39:3a:94:65:d0:c7:c8:23:1f:fc:8c:7e:f4:63:3c:ad:a0: 0a:8a:d4:77:a7:20:27:d8:61:1d:07:3e:81:f2:62:f8:b9:50: d6:96:6f:52:85:a2:38:46:eb:81:0c:25:b5:0c:b7:fd:71:f9: c5:84:e1:75:f1:1d:2a:a3:23:b5:20:2c:3c:f8:46:da:9a:0f: 18:1a:ae:ec:fa:59:b3:7c:97:0b:1e:2d:33:b0:85:49:1b:7b: ee:84:c4:f3:39:5e:08:f3:e0:4e:ad:27:06:fa:5a:e6:3a:00: c7:ce:66:70:a0:bf:87:87:a1:24:26:6a:3f:d2:da:18:fc:ec: c1:d0:42:a8:ee:76:b3:e4:f1:34:54:c8:fd:09:1a:4d:8e:54: 58:59:74:8e:b5:89:6d:47:57:c0:2b:1a:e5:b5:1c:4d:34:a6: 0a:b2:0b:46:f1:d3:b6:87:5f:32:02:95:35:1d:26:89:78:e4: a3:e6:a3:e2:9e:eb:a0:05:87:52:e6:cb:8f:25:20:4f:ce:a7: 83:4a:e2:d7:28:60:e7:35:6d:78:32:f1:bd:75:09:e0:41:e3: 27:e4:c8:e5:6c:84:7c:5b:15:38:f5:40:c0:ae:5d:26:0d:d6: 0e:fc:2f:80:f0:d4:af:f9:23:a1:e9:ba:07:95:92:6c:c0:d9: 6d:fe:16:69 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICECIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTY0QjMxMTAvBgNVBAUTKDQ2NDg1NEZCNTBBOTkwM0M1MjUzNDE4QzU4M0QwRjMx Qjg0MUQ1OTcwHhcNMjUwNjAyMTQyNTM4WhcNMjUwNjA5MTQyNTM4WjAYMRYwFAYD VQQDEw02ODNkYjQ2Mi0xYzk3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAm3fErSY360IkwZnFJVU7Rly+VxfC5FUpHrub8arCxjxLQrBrO9S0doTbDheh Z10ICfbSyX4Rdci/r0n0oPO6AviCP8/9gFLQUAEe4frtfuXfCnUDhu/OF7b3dOJI sOvSY2xQQYdTdn9QZimQu/9iijXt44ZHBNle54xB1/hbKWnuuQHzzAC/3pODpHmA 8gptPXozQnG5MjxV6/jzbKw/vpiO/XJOnfNh5JVMHEiVcWWYvj9Yu7ILzlFSUgW2 /5jGptQCv5RmZxu2WckNFbANYIgKTWaHNSrDEqWWBAGA19iaMB7e+muA5v4I6p8S InajBTqoCnmp8hThzV5o4tz70wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFLMi2oa PIY83KtFibhPspjZwCB3MB8GA1UdIwQYMBaAFEZIVPtQqZA8UlNBjFg9DzG4QdWX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NjRCMy8yQTU5NDBGMjRC QjMxMUU5QUIxNTFDMTdDNEY5QUUwMi9Sa2hVLTFDcGtEeFNVMEdNV0QwUE1iaEIx WmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1JraFUtMUNwa0R4U1UwR01XRDBQTWJoQjFaYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NjRCMy8yQTU5NDBGMjRCQjMxMUU5QUIxNTFDMTdDNEY5QUUwMi9Sa2hVLTFDcGtE eFNVMEdNV0QwUE1iaEIxWmMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCpOTqUZdDHyCMf/Ix+9GM8raAKitR3pyAn2GEdBz6B8mL4uVDWlm9S haI4RuuBDCW1DLf9cfnFhOF18R0qoyO1ICw8+Ebamg8YGq7s+lmzfJcLHi0zsIVJ G3vuhMTzOV4I8+BOrScG+lrmOgDHzmZwoL+Hh6EkJmo/0toY/OzB0EKo7naz5PE0 VMj9CRpNjlRYWXSOtYltR1fAKxrltRxNNKYKsgtG8dO2h18yApU1HSaJeOSj5qPi nuugBYdS5suPJSBPzqeDSuLXKGDnNW14MvG9dQngQeMn5MjlbIR8WxU49UDArl0m DdYO/C+A8NSv+SOh6boHlZJswNlt/hZp -----END CERTIFICATE-----Generated at Mon Jun 2 21:06:18 2025 by rpki-client