$ rpki-client -vvf rpki.apnic.net/member_repository/A91A4B1A/B45F3FC4819A11ED8D61BA2BC4F9AE02/mFjOS0vHLnbmaMR9RImMCQiWq-s.mft File: mFjOS0vHLnbmaMR9RImMCQiWq-s.mft (raw, json) Hash identifier: 9SVAj/2Adkn45/+UoiABwCpvZSI+xo26Ghoj9W4GFQY= Subject key identifier: 2C:43:82:57:02:9A:5A:FD:55:A5:C6:67:23:C3:00:4B:A8:7F:DD:6B Authority key identifier: 98:58:CE:4B:4B:C7:2E:76:E6:68:C4:7D:44:89:8C:09:08:96:AB:EB Certificate issuer: /CN=A91A4B1A/serialNumber=9858CE4B4BC72E76E668C47D44898C090896ABEB Certificate serial: 01DF Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/mFjOS0vHLnbmaMR9RImMCQiWq-s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A4B1A/B45F3FC4819A11ED8D61BA2BC4F9AE02/mFjOS0vHLnbmaMR9RImMCQiWq-s.mft Manifest number: 01D9 Signing time: Mon 02 Jun 2025 16:16:19 +0000 Manifest this update: Mon 02 Jun 2025 16:16:18 +0000 Manifest next update: Mon 09 Jun 2025 16:16:18 +0000 Files and hashes: 1: mFjOS0vHLnbmaMR9RImMCQiWq-s.crl (hash: IZM3ePZWFf6p4Y3pTnhaD7wtq9fTzrvFQrAsva8Uih4=) 2: 4C3A869614DF11EEAB46A86DC4F9AE02.roa (hash: lu38CDRBmX2eL86FuDGblRO37V7hVT/nMCfbmUIJkQk=) 3: 4BC4F6A614DF11EEAB46A86DC4F9AE02.roa (hash: UFLmIYqMMQZsSlXO+J3Nx0+Pb9WqTG32RlxuAiHOUdE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A4B1A/B45F3FC4819A11ED8D61BA2BC4F9AE02/mFjOS0vHLnbmaMR9RImMCQiWq-s.crl rsync://rpki.apnic.net/member_repository/A91A4B1A/B45F3FC4819A11ED8D61BA2BC4F9AE02/mFjOS0vHLnbmaMR9RImMCQiWq-s.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/mFjOS0vHLnbmaMR9RImMCQiWq-s.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 16:16:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 479 (0x1df) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A4B1A, serialNumber=9858CE4B4BC72E76E668C47D44898C090896ABEB Validity Not Before: Jun 2 16:16:18 2025 GMT Not After : Jun 9 16:16:18 2025 GMT Subject: CN=683dce52-385c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:32:70:b9:5c:a9:c2:93:38:71:fa:4d:14:dd: 09:aa:6b:84:d4:bb:fd:4f:00:10:51:85:bf:5c:2e: d8:be:2f:45:7c:98:b4:a7:0f:10:dd:74:e5:10:cd: 74:d9:53:4d:fc:7f:0e:94:fc:30:37:82:34:a6:e5: b1:22:a4:fb:e3:c8:27:a6:33:57:1d:65:f8:98:38: 01:00:68:6a:24:4b:45:e5:e6:41:58:c1:b1:6a:b7: bd:15:f2:11:c4:a1:54:11:2e:4f:b7:5a:8b:1e:d8: 0d:5f:ba:38:0e:12:e3:e5:72:77:6a:0b:cc:91:92: f1:4c:b4:0e:14:65:59:da:47:4a:cd:16:bb:5a:47: eb:3a:16:6d:72:bf:dd:6b:dc:fa:f7:0d:a1:9f:24: 07:13:b0:64:37:48:95:20:bc:7d:ba:f6:46:4f:c4: ae:83:cb:e8:5b:47:f8:7d:2f:a0:0f:0a:81:a3:cd: 0f:9f:3b:68:87:c3:ee:70:33:33:41:89:25:ed:69: d9:a2:2b:73:3b:2f:34:88:02:3b:f2:50:4f:7e:29: bd:48:68:43:1a:ae:98:bb:ac:f3:34:d7:96:28:16: fa:ab:f8:36:f3:0a:9d:26:7b:d1:ea:e3:df:1a:92: d4:24:c1:d2:9c:ee:5b:3e:b4:21:ff:7a:c5:54:6f: 10:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2C:43:82:57:02:9A:5A:FD:55:A5:C6:67:23:C3:00:4B:A8:7F:DD:6B X509v3 Authority Key Identifier: keyid:98:58:CE:4B:4B:C7:2E:76:E6:68:C4:7D:44:89:8C:09:08:96:AB:EB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A4B1A/B45F3FC4819A11ED8D61BA2BC4F9AE02/mFjOS0vHLnbmaMR9RImMCQiWq-s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/mFjOS0vHLnbmaMR9RImMCQiWq-s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A4B1A/B45F3FC4819A11ED8D61BA2BC4F9AE02/mFjOS0vHLnbmaMR9RImMCQiWq-s.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 34:51:03:0d:48:72:b2:d4:1f:e9:ee:6f:cd:7a:c5:c7:2e:40: 65:e5:ba:bb:d8:c2:9c:3b:f4:64:8e:6d:28:4d:f0:bd:95:5f: b7:34:e4:ff:09:c1:5d:bb:bf:a2:f4:dd:43:2c:04:de:4a:e5: 62:27:1d:30:21:f1:fb:ff:cf:ea:3b:fa:46:a7:93:41:18:4a: 9b:b8:c7:46:22:fd:7f:ae:10:95:13:76:1e:c8:da:3c:e5:6d: 54:16:a9:55:38:aa:ca:fd:5e:c4:5f:04:2a:23:90:51:84:c7: 32:a1:4f:e0:29:9e:4b:47:37:4c:00:f9:cc:ec:af:74:a8:9c: f2:c5:61:2d:e4:a0:b1:16:21:c3:e0:fd:5e:5e:e7:44:0f:f9: 87:ab:d1:13:b1:6b:97:ef:bf:b0:a0:0a:7d:81:4c:1e:92:6b: ac:c6:b8:33:ec:42:23:1e:f5:4e:78:9d:2c:43:ba:37:d9:5b: 9a:48:46:e0:9f:d7:8b:61:65:99:a4:5b:c6:11:82:01:d0:0c: 4d:80:37:1d:e5:42:3a:08:ea:0f:2c:e6:af:94:e2:06:26:46: 2f:c0:93:eb:4b:5e:34:62:55:9f:4e:ef:ad:21:78:b2:8e:6d: 36:45:6c:b2:88:03:13:88:b9:3f:87:df:de:2b:aa:4d:38:48: 32:eb:11:c9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAd8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTRCMUExMTAvBgNVBAUTKDk4NThDRTRCNEJDNzJFNzZFNjY4QzQ3RDQ0ODk4QzA5 MDg5NkFCRUIwHhcNMjUwNjAyMTYxNjE4WhcNMjUwNjA5MTYxNjE4WjAYMRYwFAYD VQQDEw02ODNkY2U1Mi0zODVjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1jJwuVypwpM4cfpNFN0JqmuE1Lv9TwAQUYW/XC7Yvi9FfJi0pw8Q3XTlEM10 2VNN/H8OlPwwN4I0puWxIqT748gnpjNXHWX4mDgBAGhqJEtF5eZBWMGxare9FfIR xKFUES5Pt1qLHtgNX7o4DhLj5XJ3agvMkZLxTLQOFGVZ2kdKzRa7WkfrOhZtcr/d a9z69w2hnyQHE7BkN0iVILx9uvZGT8Sug8voW0f4fS+gDwqBo80Pnztoh8PucDMz QYkl7WnZoitzOy80iAI78lBPfim9SGhDGq6Yu6zzNNeWKBb6q/g28wqdJnvR6uPf GpLUJMHSnO5bPrQh/3rFVG8QAwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCxDglcC mlr9VaXGZyPDAEuof91rMB8GA1UdIwQYMBaAFJhYzktLxy525mjEfUSJjAkIlqvr MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNEIxQS9CNDVGM0ZDNDgx OUExMUVEOEQ2MUJBMkJDNEY5QUUwMi9tRmpPUzB2SExuYm1hTVI5UkltTUNRaVdx LXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL21Gak9TMHZITG5ibWFNUjlSSW1NQ1FpV3Etcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NEIxQS9CNDVGM0ZDNDgxOUExMUVEOEQ2MUJBMkJDNEY5QUUwMi9tRmpPUzB2SExu Ym1hTVI5UkltTUNRaVdxLXMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA0UQMNSHKy1B/p7m/NesXHLkBl5bq72MKcO/Rkjm0oTfC9lV+3NOT/ CcFdu7+i9N1DLATeSuViJx0wIfH7/8/qO/pGp5NBGEqbuMdGIv1/rhCVE3YeyNo8 5W1UFqlVOKrK/V7EXwQqI5BRhMcyoU/gKZ5LRzdMAPnM7K90qJzyxWEt5KCxFiHD 4P1eXudED/mHq9ETsWuX77+woAp9gUwekmusxrgz7EIjHvVOeJ0sQ7o32VuaSEbg n9eLYWWZpFvGEYIB0AxNgDcd5UI6COoPLOavlOIGJkYvwJPrS140YlWfTu+tIXiy jm02RWyyiAMTiLk/h9/eK6pNOEgy6xHJ -----END CERTIFICATE-----Generated at Tue Jun 3 23:44:39 2025 by rpki-client