$ rpki-client -vvf rpki.apnic.net/member_repository/A91CBDC8/669763F018E011EAA0C38E7BC4F9AE02/m2fIchTtmWVAcRkL688LjZ-hr04.mft File: m2fIchTtmWVAcRkL688LjZ-hr04.mft (raw, json) Hash identifier: 2cIkXs32wT0bHImIdE3QueBkMPb/92452Aga9Mtx+hM= Subject key identifier: 46:CD:00:C0:52:3A:98:CD:5F:C8:2C:8F:15:9F:D3:BB:04:0E:D5:89 Authority key identifier: 9B:67:C8:72:14:ED:99:65:40:71:19:0B:EB:CF:0B:8D:9F:A1:AF:4E Certificate issuer: /CN=A91CBDC8/serialNumber=9B67C87214ED99654071190BEBCF0B8D9FA1AF4E Certificate serial: 0C0B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m2fIchTtmWVAcRkL688LjZ-hr04.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CBDC8/669763F018E011EAA0C38E7BC4F9AE02/m2fIchTtmWVAcRkL688LjZ-hr04.mft Manifest number: 0BF4 Signing time: Fri 06 Jun 2025 18:50:55 +0000 Manifest this update: Fri 06 Jun 2025 18:50:54 +0000 Manifest next update: Fri 13 Jun 2025 18:50:54 +0000 Files and hashes: 1: m2fIchTtmWVAcRkL688LjZ-hr04.crl (hash: qnMGSQ6F/Ry6mU+Esagv3M+O6rE33/A6zcreV8xgXrA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CBDC8/669763F018E011EAA0C38E7BC4F9AE02/m2fIchTtmWVAcRkL688LjZ-hr04.crl rsync://rpki.apnic.net/member_repository/A91CBDC8/669763F018E011EAA0C38E7BC4F9AE02/m2fIchTtmWVAcRkL688LjZ-hr04.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m2fIchTtmWVAcRkL688LjZ-hr04.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 13 Jun 2025 18:50:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3083 (0xc0b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CBDC8, serialNumber=9B67C87214ED99654071190BEBCF0B8D9FA1AF4E Validity Not Before: Jun 6 18:50:54 2025 GMT Not After : Jun 13 18:50:54 2025 GMT Subject: CN=6843388f-f601 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:8b:63:11:2b:61:75:02:f0:36:90:44:3a:31: 6d:6c:83:02:9b:92:05:8c:54:b4:55:31:3b:94:6a: 82:36:da:10:03:04:bd:13:7c:d6:8a:e2:8a:bd:a9: ee:d8:ed:66:0a:c8:1d:86:74:19:86:bf:fa:90:ff: b5:eb:57:a5:75:9d:f4:13:18:cd:00:6a:32:29:f5: 9e:f0:1f:68:81:1f:2f:44:30:b2:e9:e8:04:80:8f: d6:43:84:e6:c5:4f:02:4b:b3:fd:40:70:33:57:bd: 57:57:a5:c9:01:15:97:3b:74:b3:4b:c5:58:26:72: 86:b7:5a:e7:44:48:4e:27:65:16:ce:c1:65:c0:68: 3b:fb:6b:eb:cf:89:3d:a8:ad:20:92:20:39:40:d6: 21:18:db:27:f4:ea:2c:6e:e4:e0:dc:da:dd:b2:99: 94:65:a9:38:75:57:94:18:a3:ee:ee:a0:b2:e8:59: ac:c9:f1:ff:53:86:a7:43:fb:e8:7c:b4:ad:06:48: 3f:4c:e4:c9:40:96:73:50:2e:ac:56:4c:e4:26:e7: cd:d7:9d:83:51:e4:df:10:75:fa:70:e9:55:fa:19: 5f:6d:ca:44:5e:01:f6:f7:50:57:f3:91:5e:dd:59: 66:10:85:a4:e0:ca:b0:78:47:9b:5c:e3:e6:31:46: f5:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 46:CD:00:C0:52:3A:98:CD:5F:C8:2C:8F:15:9F:D3:BB:04:0E:D5:89 X509v3 Authority Key Identifier: keyid:9B:67:C8:72:14:ED:99:65:40:71:19:0B:EB:CF:0B:8D:9F:A1:AF:4E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CBDC8/669763F018E011EAA0C38E7BC4F9AE02/m2fIchTtmWVAcRkL688LjZ-hr04.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m2fIchTtmWVAcRkL688LjZ-hr04.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CBDC8/669763F018E011EAA0C38E7BC4F9AE02/m2fIchTtmWVAcRkL688LjZ-hr04.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5c:af:69:83:ff:5a:a4:52:d7:c1:78:a0:b3:2e:00:02:01:57: 0f:40:88:8f:b6:42:37:10:e1:0d:91:16:3b:a9:2d:9b:9c:fd: e9:45:44:75:da:4c:03:2c:d6:b0:ed:c2:aa:98:0d:c9:55:f3: e8:6a:da:74:c5:96:92:7b:8f:05:18:53:d2:44:75:03:1e:6b: a5:db:8b:fb:26:e1:ba:1b:c9:ce:1e:d1:55:14:f9:e5:8d:e9: fe:e0:c8:df:1b:50:a2:e8:11:76:47:53:b1:e6:c4:b2:fc:0b: b5:4b:09:f6:15:4b:ce:7e:a6:b1:9c:ae:f6:18:3a:0e:8d:71: 66:b1:05:5d:95:76:d7:b7:06:51:3c:ab:c7:16:37:4d:cc:2e: a4:be:82:bd:e4:b0:54:dc:c6:52:aa:fd:7b:cc:6a:be:fe:71: 9a:a0:a0:7f:75:00:31:c3:5c:e3:c3:10:04:6a:2f:7d:c3:a7: f0:5e:b0:db:6d:ef:f3:44:4a:6f:32:a9:cf:03:4b:cf:3c:fa: 75:60:93:5f:92:0c:39:65:66:ac:4e:92:b8:f5:a3:de:30:1c: ea:90:6e:03:af:2c:9f:f2:cb:7f:71:9b:44:a0:08:6f:77:2b: 83:98:c0:ba:ba:af:8d:cb:33:d0:1f:a8:cd:05:a1:68:2a:18: 8f:58:20:50 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDAswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0JEQzgxMTAvBgNVBAUTKDlCNjdDODcyMTRFRDk5NjU0MDcxMTkwQkVCQ0YwQjhE OUZBMUFGNEUwHhcNMjUwNjA2MTg1MDU0WhcNMjUwNjEzMTg1MDU0WjAYMRYwFAYD VQQDEw02ODQzMzg4Zi1mNjAxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsotjESthdQLwNpBEOjFtbIMCm5IFjFS0VTE7lGqCNtoQAwS9E3zWiuKKvanu 2O1mCsgdhnQZhr/6kP+161eldZ30ExjNAGoyKfWe8B9ogR8vRDCy6egEgI/WQ4Tm xU8CS7P9QHAzV71XV6XJARWXO3SzS8VYJnKGt1rnREhOJ2UWzsFlwGg7+2vrz4k9 qK0gkiA5QNYhGNsn9OosbuTg3NrdspmUZak4dVeUGKPu7qCy6FmsyfH/U4anQ/vo fLStBkg/TOTJQJZzUC6sVkzkJufN152DUeTfEHX6cOlV+hlfbcpEXgH291BX85Fe 3VlmEIWk4MqweEebXOPmMUb1vwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEbNAMBS OpjNX8gsjxWf07sEDtWJMB8GA1UdIwQYMBaAFJtnyHIU7ZllQHEZC+vPC42foa9O MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDQkRDOC82Njk3NjNGMDE4 RTAxMUVBQTBDMzhFN0JDNEY5QUUwMi9tMmZJY2hUdG1XVkFjUmtMNjg4TGpaLWhy MDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL20yZkljaFR0bVdWQWNSa0w2ODhMalotaHIwNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD QkRDOC82Njk3NjNGMDE4RTAxMUVBQTBDMzhFN0JDNEY5QUUwMi9tMmZJY2hUdG1X VkFjUmtMNjg4TGpaLWhyMDQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBcr2mD/1qkUtfBeKCzLgACAVcPQIiPtkI3EOENkRY7qS2bnP3pRUR1 2kwDLNaw7cKqmA3JVfPoatp0xZaSe48FGFPSRHUDHmul24v7JuG6G8nOHtFVFPnl jen+4MjfG1Ci6BF2R1Ox5sSy/Au1Swn2FUvOfqaxnK72GDoOjXFmsQVdlXbXtwZR PKvHFjdNzC6kvoK95LBU3MZSqv17zGq+/nGaoKB/dQAxw1zjwxAEai99w6fwXrDb be/zREpvMqnPA0vPPPp1YJNfkgw5ZWasTpK49aPeMBzqkG4Dryyf8st/cZtEoAhv dyuDmMC6uq+NyzPQH6jNBaFoKhiPWCBQ -----END CERTIFICATE-----Generated at Sun Jun 8 19:22:01 2025 by rpki-client