$ rpki-client -vvf rpki.apnic.net/member_repository/A91A560A/B9953DBA1D8A11E2A387D0E408B02CD2/httX5pD30wkpOii6fFX7ivN9Xb0.mft File: httX5pD30wkpOii6fFX7ivN9Xb0.mft (raw, json) Hash identifier: 4uT6C4rtVm4RCZh+HbtOGArmx4EWWktm0YmlWr/8VLM= Subject key identifier: 6E:E8:41:4A:7E:7A:3B:BD:D9:31:8A:2F:E0:0E:D5:45:63:50:F7:6C Authority key identifier: 86:DB:57:E6:90:F7:D3:09:29:3A:28:BA:7C:55:FB:8A:F3:7D:5D:BD Certificate issuer: /CN=A91A560A/serialNumber=86DB57E690F7D309293A28BA7C55FB8AF37D5DBD Certificate serial: 367C Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/httX5pD30wkpOii6fFX7ivN9Xb0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A560A/B9953DBA1D8A11E2A387D0E408B02CD2/httX5pD30wkpOii6fFX7ivN9Xb0.mft Manifest number: 367B Signing time: Fri 06 Jun 2025 14:36:11 +0000 Manifest this update: Fri 06 Jun 2025 14:36:10 +0000 Manifest next update: Fri 13 Jun 2025 14:36:10 +0000 Files and hashes: 1: httX5pD30wkpOii6fFX7ivN9Xb0.crl (hash: 1+hXhdyZmn4c0xm13Zel4nG+qK81HoWTSa3K73MnW+k=) 2: 3B8DEC18F67C11EFA12FD55AC4F9AE02.roa (hash: nh94eTTHYj6LF33H1WS71VdzV0Cak2sfzem+EZwjKa8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A560A/B9953DBA1D8A11E2A387D0E408B02CD2/httX5pD30wkpOii6fFX7ivN9Xb0.crl rsync://rpki.apnic.net/member_repository/A91A560A/B9953DBA1D8A11E2A387D0E408B02CD2/httX5pD30wkpOii6fFX7ivN9Xb0.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/httX5pD30wkpOii6fFX7ivN9Xb0.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 13 Jun 2025 02:50:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13948 (0x367c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A560A, serialNumber=86DB57E690F7D309293A28BA7C55FB8AF37D5DBD Validity Not Before: Jun 6 14:36:10 2025 GMT Not After : Jun 13 14:36:10 2025 GMT Subject: CN=6842fcda-5ded Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:3b:c1:9c:71:c4:8e:9b:1e:04:b7:8a:4a:62: 9e:20:d3:d8:2a:8c:60:71:4b:b4:11:0b:7e:92:a1: f3:45:1f:38:87:18:24:cc:09:9d:78:ae:48:bb:1c: 16:b9:b3:68:3b:93:17:c1:a8:65:04:7c:39:57:a8: fd:60:d2:e5:4f:7a:e9:dc:8d:a7:cb:b8:6d:2c:1c: b0:b3:f2:40:59:38:25:8f:4b:59:a9:1e:7c:4b:b5: 0d:47:bf:27:8f:29:f8:18:a9:8c:39:d7:61:c3:75: 8c:6f:1a:dd:d1:c0:ae:0f:ce:a8:f2:f5:2a:70:16: 7f:73:c1:0a:0d:4f:6e:4f:0e:4a:7b:dd:85:82:9b: cc:66:38:47:1b:dc:be:ce:e1:f2:b3:80:b4:3f:95: da:15:27:e0:7a:1e:2b:b1:80:17:e0:ff:6e:15:2a: c9:86:49:3f:f9:37:ee:a5:f3:8c:f3:44:2c:f6:32: 77:20:5e:dd:c7:d9:32:c0:81:e7:6f:bf:19:88:93: 6e:43:b1:79:ff:f4:bf:79:ad:8a:20:b6:da:a7:aa: 93:64:53:92:15:42:14:6e:9c:f3:38:61:eb:95:e6: 9b:91:4e:66:11:82:c1:b2:2f:b7:64:c4:ed:23:a3: ef:16:9b:3d:03:6d:c2:67:14:ec:11:97:77:24:13: 71:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6E:E8:41:4A:7E:7A:3B:BD:D9:31:8A:2F:E0:0E:D5:45:63:50:F7:6C X509v3 Authority Key Identifier: keyid:86:DB:57:E6:90:F7:D3:09:29:3A:28:BA:7C:55:FB:8A:F3:7D:5D:BD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A560A/B9953DBA1D8A11E2A387D0E408B02CD2/httX5pD30wkpOii6fFX7ivN9Xb0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/httX5pD30wkpOii6fFX7ivN9Xb0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A560A/B9953DBA1D8A11E2A387D0E408B02CD2/httX5pD30wkpOii6fFX7ivN9Xb0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ca:c3:e5:97:94:61:be:7b:11:5f:a1:ea:77:ca:05:e0:bf:0c: 1c:10:ef:94:7d:2b:bb:1e:a7:b3:35:dd:17:06:a5:b4:f7:de: 42:85:af:8f:69:e3:f2:90:a6:15:5d:e4:a9:d2:6b:5e:38:ea: b8:26:38:d1:2f:76:03:72:2c:27:88:93:6f:d6:39:c6:a5:6c: d5:89:39:39:bd:2f:af:5e:b3:7b:01:e4:c1:74:a0:c4:0f:1d: 0a:79:fd:c7:c9:43:89:a9:b1:af:a9:89:10:c1:5d:c5:16:13: 5d:6e:e0:cd:6d:3b:56:c9:b9:d5:07:92:3a:2f:4e:2e:71:9f: 61:2c:99:7a:35:10:9c:dd:1d:ee:b9:dc:14:0c:c2:cf:34:43: a7:94:41:5f:e6:df:70:e8:10:d2:6f:4e:1b:e4:2e:e1:46:9d: 9a:0b:3e:77:16:c3:02:4e:14:8d:32:77:c8:38:db:ef:72:d8: 1d:7c:f2:2b:6b:4a:b0:53:82:de:c7:d6:1b:6c:0e:0c:17:7b: a2:19:b7:6f:04:c0:dc:38:1e:13:eb:6f:d5:62:21:7d:ad:ec: 9f:b2:9e:91:20:65:3c:1d:2f:5e:3f:50:94:c9:4b:d6:00:6e: bc:3a:51:fd:01:5a:96:99:ad:c0:7d:fb:ca:23:cd:28:e5:12: 9c:f9:82:c4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNnwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU2MEExMTAvBgNVBAUTKDg2REI1N0U2OTBGN0QzMDkyOTNBMjhCQTdDNTVGQjhB RjM3RDVEQkQwHhcNMjUwNjA2MTQzNjEwWhcNMjUwNjEzMTQzNjEwWjAYMRYwFAYD VQQDEw02ODQyZmNkYS01ZGVkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvTvBnHHEjpseBLeKSmKeINPYKoxgcUu0EQt+kqHzRR84hxgkzAmdeK5IuxwW ubNoO5MXwahlBHw5V6j9YNLlT3rp3I2ny7htLByws/JAWTglj0tZqR58S7UNR78n jyn4GKmMOddhw3WMbxrd0cCuD86o8vUqcBZ/c8EKDU9uTw5Ke92FgpvMZjhHG9y+ zuHys4C0P5XaFSfgeh4rsYAX4P9uFSrJhkk/+TfupfOM80Qs9jJ3IF7dx9kywIHn b78ZiJNuQ7F5//S/ea2KILbap6qTZFOSFUIUbpzzOGHrleabkU5mEYLBsi+3ZMTt I6PvFps9A23CZxTsEZd3JBNxVwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFG7oQUp+ eju92TGKL+AO1UVjUPdsMB8GA1UdIwQYMBaAFIbbV+aQ99MJKToounxV+4rzfV29 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTYwQS9COTk1M0RCQTFE OEExMUUyQTM4N0QwRTQwOEIwMkNEMi9odHRYNXBEMzB3a3BPaWk2ZkZYN2l2TjlY YjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL2h0dFg1cEQzMHdrcE9paTZmRlg3aXZOOVhiMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NTYwQS9COTk1M0RCQTFEOEExMUUyQTM4N0QwRTQwOEIwMkNEMi9odHRYNXBEMzB3 a3BPaWk2ZkZYN2l2TjlYYjAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDKw+WXlGG+exFfoep3ygXgvwwcEO+UfSu7HqezNd0XBqW0995Cha+P aePykKYVXeSp0mteOOq4JjjRL3YDciwniJNv1jnGpWzViTk5vS+vXrN7AeTBdKDE Dx0Kef3HyUOJqbGvqYkQwV3FFhNdbuDNbTtWybnVB5I6L04ucZ9hLJl6NRCc3R3u udwUDMLPNEOnlEFf5t9w6BDSb04b5C7hRp2aCz53FsMCThSNMnfIONvvctgdfPIr a0qwU4Lex9YbbA4MF3uiGbdvBMDcOB4T62/VYiF9reyfsp6RIGU8HS9eP1CUyUvW AG68OlH9AVqWma3AffvKI80o5RKc+YLE -----END CERTIFICATE-----Generated at Fri Jun 6 16:59:10 2025 by rpki-client