$ rpki-client -vvf rpki.apnic.net/member_repository/A91D4636/2C9BC33C979911ECBE725A3CC4F9AE02/tGhODWIsua_RLLX6PkiF382FAE0.mft File: tGhODWIsua_RLLX6PkiF382FAE0.mft (raw, json) Hash identifier: MiQWQJ2ZCfr1yyFYrKIxyx6TiVW3zf0X59XflBbvenQ= Subject key identifier: E3:DC:E1:99:DB:17:11:37:FA:EB:5C:8E:19:38:89:64:D8:56:5C:B1 Authority key identifier: B4:68:4E:0D:62:2C:B9:AF:D1:2C:B5:FA:3E:48:85:DF:CD:85:00:4D Certificate issuer: /CN=A91D4636/serialNumber=B4684E0D622CB9AFD12CB5FA3E4885DFCD85004D Certificate serial: 03B6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tGhODWIsua_RLLX6PkiF382FAE0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D4636/2C9BC33C979911ECBE725A3CC4F9AE02/tGhODWIsua_RLLX6PkiF382FAE0.mft Manifest number: 03AE Signing time: Wed 11 Jun 2025 00:38:23 +0000 Manifest this update: Wed 11 Jun 2025 00:38:22 +0000 Manifest next update: Wed 18 Jun 2025 00:38:22 +0000 Files and hashes: 1: tGhODWIsua_RLLX6PkiF382FAE0.crl (hash: aSKYRUR+5wzNcEzTTgsXxnZ8bxnejJELz1Bt5SksJsI=) 2: C458350E979C11EC8E769C43C4F9AE02.roa (hash: eviaeNHpTyeX/nwMhD0qRHeqmHQSy0IY0Lvxy4hMeV0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D4636/2C9BC33C979911ECBE725A3CC4F9AE02/tGhODWIsua_RLLX6PkiF382FAE0.crl rsync://rpki.apnic.net/member_repository/A91D4636/2C9BC33C979911ECBE725A3CC4F9AE02/tGhODWIsua_RLLX6PkiF382FAE0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tGhODWIsua_RLLX6PkiF382FAE0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 18 Jun 2025 00:38:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 950 (0x3b6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D4636, serialNumber=B4684E0D622CB9AFD12CB5FA3E4885DFCD85004D Validity Not Before: Jun 11 00:38:22 2025 GMT Not After : Jun 18 00:38:22 2025 GMT Subject: CN=6848cffe-9aec Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:06:b1:f9:92:5b:a0:4c:40:11:37:94:d0:01: 78:70:41:04:60:e5:00:59:d2:54:fd:93:65:f6:46: e1:ab:40:3f:a4:1d:3c:8a:18:54:b6:e7:58:84:ee: 88:95:1f:18:21:28:af:c4:40:d5:62:b0:1c:71:00: 4e:07:59:69:09:bd:67:95:ea:65:70:94:9e:04:6d: 18:34:aa:69:c0:b0:6d:74:3c:e5:de:6b:0a:fd:00: e9:9f:b6:af:ec:d3:a2:b7:6d:29:41:56:a9:00:6d: c7:7c:a2:15:cd:27:46:4a:ed:46:92:a1:4a:7d:5c: 4f:1d:cd:3a:15:26:d8:93:0c:0d:75:22:ce:bc:4a: dd:e8:ec:0b:74:7e:d1:9c:8e:9c:d3:47:84:3b:28: e3:3c:11:cd:05:79:be:6a:d4:f7:24:71:81:1d:2e: e0:70:40:b3:46:39:20:c4:6e:19:b4:75:70:fe:3e: c6:71:09:96:ee:b9:ab:b6:50:84:06:57:32:7f:e9: 20:82:d7:89:c4:45:d5:43:a7:c2:9c:a2:7a:f0:29: 92:b2:f9:e2:f3:75:6a:8a:b0:b1:4b:68:1f:eb:14: d3:3d:47:74:94:62:25:15:55:60:9a:aa:f5:56:67: 76:50:17:d4:14:fe:d5:b3:01:22:0e:c7:4d:6f:c0: 5d:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E3:DC:E1:99:DB:17:11:37:FA:EB:5C:8E:19:38:89:64:D8:56:5C:B1 X509v3 Authority Key Identifier: keyid:B4:68:4E:0D:62:2C:B9:AF:D1:2C:B5:FA:3E:48:85:DF:CD:85:00:4D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D4636/2C9BC33C979911ECBE725A3CC4F9AE02/tGhODWIsua_RLLX6PkiF382FAE0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tGhODWIsua_RLLX6PkiF382FAE0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D4636/2C9BC33C979911ECBE725A3CC4F9AE02/tGhODWIsua_RLLX6PkiF382FAE0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 14:ea:d0:67:fc:3e:2f:bc:eb:ba:37:e3:5b:ba:e3:c8:f4:b1: f4:8e:44:e0:6a:e5:f2:59:bf:75:51:fe:19:6e:20:0b:6f:e9: 1f:21:9c:dc:7f:90:74:05:d3:e0:d2:21:59:71:4c:b1:e6:28: 06:95:c9:3f:61:af:cb:45:54:3b:98:99:14:8e:d7:f6:a1:19: 86:22:d6:f6:83:77:21:2b:91:04:aa:e8:74:48:fb:62:2b:cd: 8c:43:fc:d4:13:14:86:ec:fd:d0:31:35:52:2a:b9:e9:15:df: a0:66:f7:3e:6c:f4:09:1d:2f:c1:00:65:5f:3a:c0:2f:1a:34: 0a:fc:40:72:97:44:02:96:15:7f:83:a8:23:38:f8:4e:05:40: f9:6c:9a:1a:47:6d:94:2c:71:c0:67:b1:01:ae:ba:52:8e:23: 77:6d:b3:2d:70:d7:2b:6c:ce:03:bf:45:6b:3c:3a:7e:31:27: 7c:07:fd:0b:22:14:48:ff:3b:29:10:1b:95:a6:a2:a9:9e:a7: 40:16:f1:d7:1d:30:01:c7:dd:50:db:0c:0d:46:96:65:78:0f: 06:2e:43:47:46:74:3d:a4:46:08:03:36:7a:06:b2:3c:c7:f8: 3e:c1:e3:51:ed:50:ff:eb:c0:bd:7a:11:3e:7a:56:c9:0a:09: 22:d3:8b:75 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA7YwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDQ2MzYxMTAvBgNVBAUTKEI0Njg0RTBENjIyQ0I5QUZEMTJDQjVGQTNFNDg4NURG Q0Q4NTAwNEQwHhcNMjUwNjExMDAzODIyWhcNMjUwNjE4MDAzODIyWjAYMRYwFAYD VQQDEw02ODQ4Y2ZmZS05YWVjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAngax+ZJboExAETeU0AF4cEEEYOUAWdJU/ZNl9kbhq0A/pB08ihhUtudYhO6I lR8YISivxEDVYrAccQBOB1lpCb1nleplcJSeBG0YNKppwLBtdDzl3msK/QDpn7av 7NOit20pQVapAG3HfKIVzSdGSu1GkqFKfVxPHc06FSbYkwwNdSLOvErd6OwLdH7R nI6c00eEOyjjPBHNBXm+atT3JHGBHS7gcECzRjkgxG4ZtHVw/j7GcQmW7rmrtlCE Blcyf+kggteJxEXVQ6fCnKJ68CmSsvni83VqirCxS2gf6xTTPUd0lGIlFVVgmqr1 Vmd2UBfUFP7VswEiDsdNb8BdCQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOPc4Znb FxE3+utcjhk4iWTYVlyxMB8GA1UdIwQYMBaAFLRoTg1iLLmv0Sy1+j5Ihd/NhQBN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENDYzNi8yQzlCQzMzQzk3 OTkxMUVDQkU3MjVBM0NDNEY5QUUwMi90R2hPRFdJc3VhX1JMTFg2UGtpRjM4MkZB RTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RHaE9EV0lzdWFfUkxMWDZQa2lGMzgyRkFFMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NDYzNi8yQzlCQzMzQzk3OTkxMUVDQkU3MjVBM0NDNEY5QUUwMi90R2hPRFdJc3Vh X1JMTFg2UGtpRjM4MkZBRTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAU6tBn/D4vvOu6N+NbuuPI9LH0jkTgauXyWb91Uf4ZbiALb+kfIZzc f5B0BdPg0iFZcUyx5igGlck/Ya/LRVQ7mJkUjtf2oRmGItb2g3chK5EEquh0SPti K82MQ/zUExSG7P3QMTVSKrnpFd+gZvc+bPQJHS/BAGVfOsAvGjQK/EByl0QClhV/ g6gjOPhOBUD5bJoaR22ULHHAZ7EBrrpSjiN3bbMtcNcrbM4Dv0VrPDp+MSd8B/0L IhRI/zspEBuVpqKpnqdAFvHXHTABx91Q2wwNRpZleA8GLkNHRnQ9pEYIAzZ6BrI8 x/g+weNR7VD/68C9ehE+elbJCgki04t1 -----END CERTIFICATE-----Generated at Thu Jun 12 00:25:34 2025 by rpki-client