$ rpki-client -vvf rpki.apnic.net/member_repository/A91C0C0B/4459448C2C6A11EA9CECBF4AC4F9AE02/AShwXWnFHg4rB4rtuZiR5_GbTR8.mft File: AShwXWnFHg4rB4rtuZiR5_GbTR8.mft (raw, json) Hash identifier: 4GgJozrhxPwQphyKNYpwzxwaD7Nq9etj0w1ctrCNfBo= Subject key identifier: FB:92:BC:22:E8:94:BC:AE:10:C3:0A:21:6D:A9:9A:6B:C0:43:E4:4A Authority key identifier: 01:28:70:5D:69:C5:1E:0E:2B:07:8A:ED:B9:98:91:E7:F1:9B:4D:1F Certificate issuer: /CN=A91C0C0B/serialNumber=0128705D69C51E0E2B078AEDB99891E7F19B4D1F Certificate serial: 0B8D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AShwXWnFHg4rB4rtuZiR5_GbTR8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C0C0B/4459448C2C6A11EA9CECBF4AC4F9AE02/AShwXWnFHg4rB4rtuZiR5_GbTR8.mft Manifest number: 0B7F Signing time: Wed 04 Jun 2025 19:00:16 +0000 Manifest this update: Wed 04 Jun 2025 19:00:16 +0000 Manifest next update: Wed 11 Jun 2025 19:00:16 +0000 Files and hashes: 1: AShwXWnFHg4rB4rtuZiR5_GbTR8.crl (hash: HfwsvbwHCnf6zwoqlIK7z+Oc/kNTYI7pZt0Q0AGQ+dc=) 2: E85B23282DF211EAA63F5D60C4F9AE02.roa (hash: mo/NLmT3qTw906fWZIYD+HCMnaLWUZhtdPeHn3oqJ6A=) 3: 71E30CDCC4ED11EAA1C5766AC4F9AE02.roa (hash: vucacXYSTLw3pjicQM0MXD2U1//BsbEO3gpX4wVcXB8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C0C0B/4459448C2C6A11EA9CECBF4AC4F9AE02/AShwXWnFHg4rB4rtuZiR5_GbTR8.crl rsync://rpki.apnic.net/member_repository/A91C0C0B/4459448C2C6A11EA9CECBF4AC4F9AE02/AShwXWnFHg4rB4rtuZiR5_GbTR8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AShwXWnFHg4rB4rtuZiR5_GbTR8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 11 Jun 2025 19:00:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2957 (0xb8d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C0C0B, serialNumber=0128705D69C51E0E2B078AEDB99891E7F19B4D1F Validity Not Before: Jun 4 19:00:16 2025 GMT Not After : Jun 11 19:00:16 2025 GMT Subject: CN=684097c0-3096 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:81:5a:d2:b5:26:ee:e9:d2:ed:d6:3c:1e:5f: d4:dd:8d:d8:06:cd:d8:a1:d1:ab:3c:92:d7:d1:b0: d6:72:20:4e:04:1e:4d:fb:2a:80:02:6b:b9:86:3c: dd:fe:c1:dc:c2:ad:2e:13:3a:69:74:ae:15:5f:e3: 5a:f5:e0:c4:5f:ac:1d:6b:13:17:06:a3:66:0b:84: a2:a3:38:96:7c:1e:d6:fc:7d:77:c1:19:e3:13:b5: b0:77:16:7e:69:d0:a8:34:f4:da:47:35:9a:c2:0e: 66:3c:3d:5f:b2:40:87:b0:e7:bb:e5:e4:f7:c8:ff: 6e:64:84:9f:8e:52:38:bf:62:81:fd:3b:41:01:4d: b9:08:d8:fd:d2:cd:8d:da:15:c6:a1:f2:31:55:88: fb:5e:76:5b:56:08:f8:a1:f9:8b:5f:1a:df:df:94: 64:1f:b8:42:1a:5f:16:51:32:be:b9:cd:61:61:67: 23:2b:b4:81:a3:3e:5c:e2:ee:6c:97:88:c8:1f:0d: 99:91:2c:6a:40:c6:13:40:04:80:97:ce:0d:9d:ce: a8:2b:e6:87:af:0b:d9:eb:e0:cd:42:95:aa:3a:33: 9a:e0:11:78:61:fa:11:fc:01:38:ac:23:b0:f3:26: 88:bc:87:0b:22:70:84:e4:c2:f9:e3:42:84:89:bd: 9c:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FB:92:BC:22:E8:94:BC:AE:10:C3:0A:21:6D:A9:9A:6B:C0:43:E4:4A X509v3 Authority Key Identifier: keyid:01:28:70:5D:69:C5:1E:0E:2B:07:8A:ED:B9:98:91:E7:F1:9B:4D:1F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C0C0B/4459448C2C6A11EA9CECBF4AC4F9AE02/AShwXWnFHg4rB4rtuZiR5_GbTR8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AShwXWnFHg4rB4rtuZiR5_GbTR8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C0C0B/4459448C2C6A11EA9CECBF4AC4F9AE02/AShwXWnFHg4rB4rtuZiR5_GbTR8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 99:75:df:a0:64:d8:ae:e9:36:cd:1f:53:12:c1:c2:b1:03:d8: 23:c6:0d:12:a6:66:92:9c:2b:ca:38:e2:37:53:fb:c8:74:18: 85:20:64:7f:eb:84:17:7e:b8:c4:e9:ce:a5:d0:25:35:a2:ae: b5:66:56:54:d5:1d:59:93:c0:d1:a8:f0:48:8c:3b:42:a5:79: 1c:05:df:d3:f0:6c:ef:32:b3:ff:32:e7:ac:3a:36:25:a0:11: 3d:51:04:2d:b2:53:00:61:49:b2:ca:74:83:01:3c:b3:9f:e6: 73:24:80:cb:ba:5d:42:3a:af:0c:ca:38:b3:bb:30:ed:77:8f: 1f:06:e8:60:24:7e:9a:33:f3:79:4e:29:07:5c:ce:22:e8:37: bd:7f:28:72:80:53:06:77:2b:16:04:f9:d8:e5:74:90:e2:02: 5a:43:68:15:72:82:ff:62:1a:f3:53:9f:7f:c5:f5:d2:ed:4b: 0a:88:60:8b:04:44:6a:77:be:19:a9:ba:80:85:e5:48:06:70: a6:93:93:87:f8:82:a9:fa:05:cc:83:b6:7b:9b:b0:d6:a5:55: 28:3b:6d:4b:2c:f7:b3:5c:db:b4:d5:b8:73:1f:3f:3d:f3:bd: 53:02:f2:69:08:d0:8c:7d:27:4b:9d:6d:2b:7b:d6:39:a5:16: 66:6f:a1:0c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC40wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzBDMEIxMTAvBgNVBAUTKDAxMjg3MDVENjlDNTFFMEUyQjA3OEFFREI5OTg5MUU3 RjE5QjREMUYwHhcNMjUwNjA0MTkwMDE2WhcNMjUwNjExMTkwMDE2WjAYMRYwFAYD VQQDEw02ODQwOTdjMC0zMDk2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuoFa0rUm7unS7dY8Hl/U3Y3YBs3YodGrPJLX0bDWciBOBB5N+yqAAmu5hjzd /sHcwq0uEzppdK4VX+Na9eDEX6wdaxMXBqNmC4SioziWfB7W/H13wRnjE7WwdxZ+ adCoNPTaRzWawg5mPD1fskCHsOe75eT3yP9uZISfjlI4v2KB/TtBAU25CNj90s2N 2hXGofIxVYj7XnZbVgj4ofmLXxrf35RkH7hCGl8WUTK+uc1hYWcjK7SBoz5c4u5s l4jIHw2ZkSxqQMYTQASAl84Nnc6oK+aHrwvZ6+DNQpWqOjOa4BF4YfoR/AE4rCOw 8yaIvIcLInCE5ML540KEib2cRQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPuSvCLo lLyuEMMKIW2pmmvAQ+RKMB8GA1UdIwQYMBaAFAEocF1pxR4OKweK7bmYkefxm00f MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMEMwQi80NDU5NDQ4QzJD NkExMUVBOUNFQ0JGNEFDNEY5QUUwMi9BU2h3WFduRkhnNHJCNHJ0dVppUjVfR2JU UjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0FTaHdYV25GSGc0ckI0cnR1WmlSNV9HYlRSOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MEMwQi80NDU5NDQ4QzJDNkExMUVBOUNFQ0JGNEFDNEY5QUUwMi9BU2h3WFduRkhn NHJCNHJ0dVppUjVfR2JUUjgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCZdd+gZNiu6TbNH1MSwcKxA9gjxg0SpmaSnCvKOOI3U/vIdBiFIGR/ 64QXfrjE6c6l0CU1oq61ZlZU1R1Zk8DRqPBIjDtCpXkcBd/T8GzvMrP/MuesOjYl oBE9UQQtslMAYUmyynSDATyzn+ZzJIDLul1COq8MyjizuzDtd48fBuhgJH6aM/N5 TikHXM4i6De9fyhygFMGdysWBPnY5XSQ4gJaQ2gVcoL/YhrzU59/xfXS7UsKiGCL BERqd74ZqbqAheVIBnCmk5OH+IKp+gXMg7Z7m7DWpVUoO21LLPezXNu01bhzHz89 871TAvJpCNCMfSdLnW0re9Y5pRZmb6EM -----END CERTIFICATE-----Generated at Thu Jun 5 19:19:59 2025 by rpki-client