$ rpki-client -vvf rpki.apnic.net/member_repository/A91D6792/DBF1C77221ED11ECBE9C9A1CC4F9AE02/8XiofFRzBDe6WfqpzhhP-HkP5PE.mft File: 8XiofFRzBDe6WfqpzhhP-HkP5PE.mft (raw, json) Hash identifier: k340Fd/mznf/SS+yMP8T0A8AjvELBXNlsHhlBtxmwyY= Subject key identifier: ED:34:F0:E7:B0:43:E3:C8:93:61:E3:9A:26:9D:35:09:6C:6F:45:47 Authority key identifier: F1:78:A8:7C:54:73:04:37:BA:59:FA:A9:CE:18:4F:F8:79:0F:E4:F1 Certificate issuer: /CN=A91D6792/serialNumber=F178A87C54730437BA59FAA9CE184FF8790FE4F1 Certificate serial: 04D9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8XiofFRzBDe6WfqpzhhP-HkP5PE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D6792/DBF1C77221ED11ECBE9C9A1CC4F9AE02/8XiofFRzBDe6WfqpzhhP-HkP5PE.mft Manifest number: 04D4 Signing time: Wed 04 Jun 2025 23:39:36 +0000 Manifest this update: Wed 04 Jun 2025 23:39:35 +0000 Manifest next update: Wed 11 Jun 2025 23:39:35 +0000 Files and hashes: 1: 8XiofFRzBDe6WfqpzhhP-HkP5PE.crl (hash: kLARz+qMgO79YLxJhEgKhghwMfodBxoC67kxpq4gwfU=) 2: CB89040A73EA11EC8A823312C4F9AE02.roa (hash: 6pWGQwdhpFKj5uyRVvtM8M7iiAHBMFerXsGqI0l0KTo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D6792/DBF1C77221ED11ECBE9C9A1CC4F9AE02/8XiofFRzBDe6WfqpzhhP-HkP5PE.crl rsync://rpki.apnic.net/member_repository/A91D6792/DBF1C77221ED11ECBE9C9A1CC4F9AE02/8XiofFRzBDe6WfqpzhhP-HkP5PE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8XiofFRzBDe6WfqpzhhP-HkP5PE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 11 Jun 2025 23:39:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1241 (0x4d9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D6792, serialNumber=F178A87C54730437BA59FAA9CE184FF8790FE4F1 Validity Not Before: Jun 4 23:39:35 2025 GMT Not After : Jun 11 23:39:35 2025 GMT Subject: CN=6840d938-d7e9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:73:bb:0c:a6:76:7a:b4:14:96:2e:8e:87:38: 43:15:66:b9:8c:94:35:04:43:b5:70:f0:a3:75:05: 59:75:c3:75:0a:81:51:00:ef:c9:58:55:bc:77:fc: 48:e1:47:81:8d:99:6b:f6:26:9f:0c:d5:6d:77:9d: 7a:77:48:6f:6f:16:dc:10:08:09:91:5e:dc:75:88: ac:3d:31:67:9a:32:aa:9b:c7:06:d6:24:01:99:90: 62:2f:f4:64:26:2f:19:a0:6d:47:9a:09:57:82:22: 20:44:fa:80:ad:1d:90:38:7a:fb:f6:93:fa:8d:23: 95:8d:3f:5b:1c:95:81:06:b5:03:45:b3:bc:3f:98: 25:ce:46:2d:a6:ef:29:13:45:ce:51:96:37:7c:1a: ad:a4:af:6f:cd:ac:79:8c:b6:17:85:5e:f4:80:02: 96:b5:28:b1:e5:37:a0:2c:01:29:74:1a:20:2e:b4: 25:b6:ed:91:7d:e6:58:29:3b:dd:6f:08:a5:f8:b9: d5:00:d4:9e:de:90:88:b2:06:25:9e:6a:54:98:a4: d4:71:27:b6:b1:6a:39:dd:ec:b1:fc:07:57:46:3d: f8:1b:21:82:7b:f9:05:81:bc:09:0b:a6:08:32:57: e9:98:b6:f6:a3:a3:e8:2f:e8:6e:69:a5:e9:28:86: 3d:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: ED:34:F0:E7:B0:43:E3:C8:93:61:E3:9A:26:9D:35:09:6C:6F:45:47 X509v3 Authority Key Identifier: keyid:F1:78:A8:7C:54:73:04:37:BA:59:FA:A9:CE:18:4F:F8:79:0F:E4:F1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D6792/DBF1C77221ED11ECBE9C9A1CC4F9AE02/8XiofFRzBDe6WfqpzhhP-HkP5PE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8XiofFRzBDe6WfqpzhhP-HkP5PE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D6792/DBF1C77221ED11ECBE9C9A1CC4F9AE02/8XiofFRzBDe6WfqpzhhP-HkP5PE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b0:99:35:69:94:c7:3d:57:b1:30:9e:83:76:91:8d:ec:51:37: 45:b5:09:2e:f7:7f:40:90:9c:01:4c:2a:5e:0b:92:15:e9:2b: 8a:d7:28:af:17:69:f6:c8:5a:7c:b1:49:1e:c7:89:ae:73:6b: c1:64:82:24:8d:ed:8f:c6:e9:e8:c6:f0:4d:af:7d:d0:f4:da: 5a:11:ba:d0:ff:6f:3e:f2:73:43:68:65:f7:f0:1c:4a:a6:45: eb:b9:41:19:cf:63:85:10:92:7b:34:c5:66:10:67:68:b6:8f: cb:3c:21:9d:51:71:6a:49:62:47:29:df:f5:5e:86:65:1d:18: 59:60:c2:33:48:b5:59:35:ac:95:ae:30:ea:72:2d:7d:ff:cb: f0:94:0b:f4:ce:b6:b9:b7:3f:8f:81:e8:fc:fe:9c:65:23:d0: 6d:97:2a:7b:9e:a0:66:54:a5:d4:e6:a2:63:0c:ed:01:63:14: 72:cc:15:4f:c6:c7:72:c7:c0:49:41:a6:0b:57:99:64:3f:9d: 8c:9e:4e:7a:91:63:04:26:9d:5e:e9:12:76:84:a6:73:22:5d: 07:92:be:7f:17:35:64:60:d5:6d:48:49:7b:fb:f5:2a:08:9a: 09:c6:97:52:ee:39:95:44:13:6a:7c:94:13:ce:81:93:c4:be: 95:d6:7d:f2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBNkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDY3OTIxMTAvBgNVBAUTKEYxNzhBODdDNTQ3MzA0MzdCQTU5RkFBOUNFMTg0RkY4 NzkwRkU0RjEwHhcNMjUwNjA0MjMzOTM1WhcNMjUwNjExMjMzOTM1WjAYMRYwFAYD VQQDEw02ODQwZDkzOC1kN2U5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAq3O7DKZ2erQUli6OhzhDFWa5jJQ1BEO1cPCjdQVZdcN1CoFRAO/JWFW8d/xI 4UeBjZlr9iafDNVtd516d0hvbxbcEAgJkV7cdYisPTFnmjKqm8cG1iQBmZBiL/Rk Ji8ZoG1HmglXgiIgRPqArR2QOHr79pP6jSOVjT9bHJWBBrUDRbO8P5glzkYtpu8p E0XOUZY3fBqtpK9vzax5jLYXhV70gAKWtSix5TegLAEpdBogLrQltu2RfeZYKTvd bwil+LnVANSe3pCIsgYlnmpUmKTUcSe2sWo53eyx/AdXRj34GyGCe/kFgbwJC6YI MlfpmLb2o6PoL+huaaXpKIY9lQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFO008Oew Q+PIk2HjmiadNQlsb0VHMB8GA1UdIwQYMBaAFPF4qHxUcwQ3uln6qc4YT/h5D+Tx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENjc5Mi9EQkYxQzc3MjIx RUQxMUVDQkU5QzlBMUNDNEY5QUUwMi84WGlvZkZSekJEZTZXZnFwemhoUC1Ia1A1 UEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzhYaW9mRlJ6QkRlNldmcXB6aGhQLUhrUDVQRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE Njc5Mi9EQkYxQzc3MjIxRUQxMUVDQkU5QzlBMUNDNEY5QUUwMi84WGlvZkZSekJE ZTZXZnFwemhoUC1Ia1A1UEUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCwmTVplMc9V7EwnoN2kY3sUTdFtQku939AkJwBTCpeC5IV6SuK1yiv F2n2yFp8sUkex4muc2vBZIIkje2PxunoxvBNr33Q9NpaEbrQ/28+8nNDaGX38BxK pkXruUEZz2OFEJJ7NMVmEGdoto/LPCGdUXFqSWJHKd/1XoZlHRhZYMIzSLVZNayV rjDqci19/8vwlAv0zra5tz+Pgej8/pxlI9Btlyp7nqBmVKXU5qJjDO0BYxRyzBVP xsdyx8BJQaYLV5lkP52Mnk56kWMEJp1e6RJ2hKZzIl0Hkr5/FzVkYNVtSEl7+/Uq CJoJxpdS7jmVRBNqfJQTzoGTxL6V1n3y -----END CERTIFICATE-----Generated at Fri Jun 6 16:58:28 2025 by rpki-client