$ rpki-client -vvf rpki.apnic.net/member_repository/A91D1623/410735CA149A11EEADF1C610C4F9AE02/phUHgOC6EeoK3ENK7Tg8i4Kolh0.mft File: phUHgOC6EeoK3ENK7Tg8i4Kolh0.mft (raw, json) Hash identifier: Q122OT2v+qHwVv6inGZyXjY5qd4zvGIp7WhBJfz5CBI= Subject key identifier: 30:EF:9F:1A:D6:30:9A:B5:15:FC:29:B8:57:E1:D9:0C:83:A2:73:E4 Authority key identifier: A6:15:07:80:E0:BA:11:EA:0A:DC:43:4A:ED:38:3C:8B:82:A8:96:1D Certificate issuer: /CN=A91D1623/serialNumber=A6150780E0BA11EA0ADC434AED383C8B82A8961D Certificate serial: 0178 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/phUHgOC6EeoK3ENK7Tg8i4Kolh0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D1623/410735CA149A11EEADF1C610C4F9AE02/phUHgOC6EeoK3ENK7Tg8i4Kolh0.mft Manifest number: 0173 Signing time: Mon 09 Jun 2025 02:54:22 +0000 Manifest this update: Mon 09 Jun 2025 02:54:22 +0000 Manifest next update: Mon 16 Jun 2025 02:54:22 +0000 Files and hashes: 1: phUHgOC6EeoK3ENK7Tg8i4Kolh0.crl (hash: M9F2Kb1jaHayCjlMdYVS7HxBJhQqQRsqutMWaVZgxLs=) 2: 7C9E449814B311EEB9CD302AC4F9AE02.roa (hash: JgXDvvb08AKpWtQFVgWoJSRrsvnpi7N5Npk5xtbR4bs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D1623/410735CA149A11EEADF1C610C4F9AE02/phUHgOC6EeoK3ENK7Tg8i4Kolh0.crl rsync://rpki.apnic.net/member_repository/A91D1623/410735CA149A11EEADF1C610C4F9AE02/phUHgOC6EeoK3ENK7Tg8i4Kolh0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/phUHgOC6EeoK3ENK7Tg8i4Kolh0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 16 Jun 2025 02:54:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 376 (0x178) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D1623, serialNumber=A6150780E0BA11EA0ADC434AED383C8B82A8961D Validity Not Before: Jun 9 02:54:22 2025 GMT Not After : Jun 16 02:54:22 2025 GMT Subject: CN=68464cde-3c44 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:86:68:e0:f4:b7:10:33:ae:b7:77:cc:c3:41: a3:cc:93:12:b5:b4:03:e9:c2:fc:15:d5:d9:98:b5: cb:d6:2f:88:52:d1:2c:f0:2d:a6:cc:ca:6a:41:f5: 24:58:66:f3:0b:02:86:aa:05:a5:46:c1:33:11:4a: 23:15:50:6d:04:11:2d:84:9f:4d:83:b7:de:81:0f: 24:4b:54:10:68:04:e9:77:27:34:f1:dd:38:49:cc: 0f:61:be:c8:38:22:92:79:bb:37:cd:12:50:27:62: b0:6d:e0:e4:08:fc:7c:0d:1e:50:ac:48:79:3d:24: df:70:e8:36:ea:e0:6a:81:88:2c:33:f9:38:34:f6: 2b:be:e2:e1:d9:bc:a6:ad:64:ea:b9:16:e3:b7:2f: 89:69:bf:15:53:14:30:9c:18:33:7b:35:c0:e5:ed: 82:66:6c:c4:a6:22:ec:39:d1:64:a5:24:99:2e:5f: 37:66:c9:15:1f:34:90:55:c1:42:0b:4e:17:48:03: 8a:ba:82:2e:9e:11:46:b1:ae:ce:45:6e:24:b4:73: bd:10:02:12:a1:c4:97:45:65:07:51:60:53:6f:42: 37:80:52:89:72:69:23:19:68:48:a3:3c:2d:b0:ff: 6a:c7:41:b9:a3:cd:a8:4a:ac:0e:18:e5:34:79:dd: 34:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 30:EF:9F:1A:D6:30:9A:B5:15:FC:29:B8:57:E1:D9:0C:83:A2:73:E4 X509v3 Authority Key Identifier: keyid:A6:15:07:80:E0:BA:11:EA:0A:DC:43:4A:ED:38:3C:8B:82:A8:96:1D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D1623/410735CA149A11EEADF1C610C4F9AE02/phUHgOC6EeoK3ENK7Tg8i4Kolh0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/phUHgOC6EeoK3ENK7Tg8i4Kolh0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D1623/410735CA149A11EEADF1C610C4F9AE02/phUHgOC6EeoK3ENK7Tg8i4Kolh0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 33:7a:54:5e:2b:6f:e3:ca:4e:f3:d7:3f:a4:43:47:c2:34:7b: 62:0d:48:5b:60:3f:f8:5c:63:d7:66:9b:74:02:c9:a7:03:55: 30:03:10:03:34:4c:e7:0d:bb:fa:ee:17:22:e2:c5:52:a7:5e: cd:a5:ab:3f:2d:54:55:04:8e:fc:a3:4d:ba:67:e8:72:33:c3: 0d:77:16:ea:93:29:80:23:2f:c9:00:f2:b1:e9:5f:60:ba:b6: 6f:52:99:a6:97:00:2b:73:c4:bc:38:e5:b9:9c:b9:14:df:eb: 47:4f:88:ce:d2:d0:b3:20:ac:2c:6a:33:aa:4c:6d:b5:8d:45: b0:9e:1e:53:66:eb:72:f9:84:c5:96:9a:b9:29:62:38:56:4d: 54:ad:39:e4:d2:74:44:0c:1c:d0:dc:88:09:7b:88:d4:f0:ce: 9c:84:d2:d1:82:7f:0e:b2:01:1e:09:dd:72:be:08:f5:df:27: e6:8e:29:25:74:90:b4:8f:e4:01:3b:5c:63:b5:fa:23:6a:eb: 72:9b:ea:9f:6f:e5:e7:26:ec:41:64:fb:92:f6:3e:f9:37:1d: 41:48:4f:9a:ba:c4:a8:28:2f:3f:be:33:c8:3b:cd:fd:d7:82: 14:fd:b1:c2:8d:91:ec:bb:90:45:66:a5:da:77:1f:70:9b:62: 16:de:81:28 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAXgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDE2MjMxMTAvBgNVBAUTKEE2MTUwNzgwRTBCQTExRUEwQURDNDM0QUVEMzgzQzhC ODJBODk2MUQwHhcNMjUwNjA5MDI1NDIyWhcNMjUwNjE2MDI1NDIyWjAYMRYwFAYD VQQDEw02ODQ2NGNkZS0zYzQ0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwYZo4PS3EDOut3fMw0GjzJMStbQD6cL8FdXZmLXL1i+IUtEs8C2mzMpqQfUk WGbzCwKGqgWlRsEzEUojFVBtBBEthJ9Ng7fegQ8kS1QQaATpdyc08d04ScwPYb7I OCKSebs3zRJQJ2KwbeDkCPx8DR5QrEh5PSTfcOg26uBqgYgsM/k4NPYrvuLh2bym rWTquRbjty+Jab8VUxQwnBgzezXA5e2CZmzEpiLsOdFkpSSZLl83ZskVHzSQVcFC C04XSAOKuoIunhFGsa7ORW4ktHO9EAISocSXRWUHUWBTb0I3gFKJcmkjGWhIozwt sP9qx0G5o82oSqwOGOU0ed00TwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDDvnxrW MJq1FfwpuFfh2QyDonPkMB8GA1UdIwQYMBaAFKYVB4DguhHqCtxDSu04PIuCqJYd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMTYyMy80MTA3MzVDQTE0 OUExMUVFQURGMUM2MTBDNEY5QUUwMi9waFVIZ09DNkVlb0szRU5LN1RnOGk0S29s aDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3BoVUhnT0M2RWVvSzNFTks3VGc4aTRLb2xoMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MTYyMy80MTA3MzVDQTE0OUExMUVFQURGMUM2MTBDNEY5QUUwMi9waFVIZ09DNkVl b0szRU5LN1RnOGk0S29saDAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAzelReK2/jyk7z1z+kQ0fCNHtiDUhbYD/4XGPXZpt0AsmnA1UwAxAD NEznDbv67hci4sVSp17Npas/LVRVBI78o026Z+hyM8MNdxbqkymAIy/JAPKx6V9g urZvUpmmlwArc8S8OOW5nLkU3+tHT4jO0tCzIKwsajOqTG21jUWwnh5TZuty+YTF lpq5KWI4Vk1UrTnk0nREDBzQ3IgJe4jU8M6chNLRgn8OsgEeCd1yvgj13yfmjikl dJC0j+QBO1xjtfojautym+qfb+XnJuxBZPuS9j75Nx1BSE+ausSoKC8/vjPIO839 14IU/bHCjZHsu5BFZqXadx9wm2IW3oEo -----END CERTIFICATE-----Generated at Mon Jun 9 12:00:45 2025 by rpki-client