$ rpki-client -vvf rpki.apnic.net/member_repository/A91D8EAF/10B0E3D004EA11EABEDC8161C4F9AE02/8dIEca4xiTbXk7RttEgiB9lyRYs.mft File: 8dIEca4xiTbXk7RttEgiB9lyRYs.mft (raw, json) Hash identifier: iJSQTavprZ1WdX6cW2aKugePGp0TzLatHGK47utaYq4= Subject key identifier: 3C:0E:67:2C:BE:0F:D3:71:19:84:FD:DB:04:C9:C7:7E:E3:37:B5:8B Authority key identifier: F1:D2:04:71:AE:31:89:36:D7:93:B4:6D:B4:48:22:07:D9:72:45:8B Certificate issuer: /CN=A91D8EAF/serialNumber=F1D20471AE318936D793B46DB4482207D972458B Certificate serial: 0C67 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8dIEca4xiTbXk7RttEgiB9lyRYs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D8EAF/10B0E3D004EA11EABEDC8161C4F9AE02/8dIEca4xiTbXk7RttEgiB9lyRYs.mft Manifest number: 0C54 Signing time: Fri 06 Jun 2025 18:26:24 +0000 Manifest this update: Fri 06 Jun 2025 18:26:23 +0000 Manifest next update: Fri 13 Jun 2025 18:26:23 +0000 Files and hashes: 1: 8dIEca4xiTbXk7RttEgiB9lyRYs.crl (hash: vPvvq/LEg60VW8iUV4DvVtXVmYH0O3KgKsffF0vbCfE=) 2: F4C2F7F604FF11EABFF6E022C4F9AE02.roa (hash: hMRVZDPhI9uQhHlcLsQL6+B9hhuCOLqR+jjUlDn3sAQ=) 3: 168AD09A04EF11EA9060B76BC4F9AE02.roa (hash: s3U0q40HWyXJCTwtjWa8KKHr421/tnOx6JMPLRqROA8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D8EAF/10B0E3D004EA11EABEDC8161C4F9AE02/8dIEca4xiTbXk7RttEgiB9lyRYs.crl rsync://rpki.apnic.net/member_repository/A91D8EAF/10B0E3D004EA11EABEDC8161C4F9AE02/8dIEca4xiTbXk7RttEgiB9lyRYs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8dIEca4xiTbXk7RttEgiB9lyRYs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 13 Jun 2025 18:26:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3175 (0xc67) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D8EAF, serialNumber=F1D20471AE318936D793B46DB4482207D972458B Validity Not Before: Jun 6 18:26:23 2025 GMT Not After : Jun 13 18:26:23 2025 GMT Subject: CN=684332d0-bf93 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:85:9e:bc:30:45:10:f5:dc:40:3a:0a:fd:dd: e3:85:b0:3c:92:05:7f:25:c6:05:98:19:6f:fe:61: 0a:89:96:8e:4a:39:e1:2b:e9:90:75:f5:4a:8f:dc: aa:cc:1e:91:4c:dc:a4:08:99:01:b0:04:b5:b9:89: 40:29:6d:78:65:f0:16:57:9c:62:54:f3:2d:0c:72: 9f:62:a5:aa:7c:a8:52:19:27:70:fc:ff:03:2f:e1: 85:2f:55:a2:1b:73:59:31:5d:e2:1f:d4:e3:93:55: df:d8:be:de:64:5a:03:e7:8b:09:d8:68:0f:14:8f: 07:48:42:6f:26:6f:c9:1c:98:16:ea:a6:a0:8e:c0: ba:84:23:80:63:d1:c1:a4:d6:96:97:d1:c9:86:74: 26:63:d1:79:a8:33:27:e8:f3:89:7f:11:ce:4e:7f: d2:d9:df:2c:02:af:03:fc:92:68:31:eb:97:a7:4d: bc:f3:ca:f2:87:41:df:f4:3d:75:31:2e:fc:f6:65: 89:90:88:f1:5d:cb:f7:aa:bd:26:0a:65:95:11:de: 74:47:1e:4e:a7:bd:b5:9a:0f:ce:cf:5c:5b:2b:93: 3c:6d:12:32:69:a8:b9:3b:8a:be:b8:2e:b4:c2:96: d1:52:21:20:46:53:5d:57:a5:d7:9f:05:96:42:03: c8:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3C:0E:67:2C:BE:0F:D3:71:19:84:FD:DB:04:C9:C7:7E:E3:37:B5:8B X509v3 Authority Key Identifier: keyid:F1:D2:04:71:AE:31:89:36:D7:93:B4:6D:B4:48:22:07:D9:72:45:8B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D8EAF/10B0E3D004EA11EABEDC8161C4F9AE02/8dIEca4xiTbXk7RttEgiB9lyRYs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8dIEca4xiTbXk7RttEgiB9lyRYs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D8EAF/10B0E3D004EA11EABEDC8161C4F9AE02/8dIEca4xiTbXk7RttEgiB9lyRYs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 38:4b:ea:2e:6b:0c:21:5b:f3:8c:11:bc:81:64:0f:5a:ae:cb: 05:4d:7c:51:92:e2:07:af:c8:cb:37:e0:e3:d5:ee:08:0b:e0: 33:65:59:d5:52:4b:48:c5:e4:ce:4e:e1:e4:be:2b:a1:21:1b: 52:d3:a6:8a:3a:23:ad:3a:16:d4:43:8c:ed:84:86:7f:6c:a0: 8e:fe:8d:c0:b5:7d:93:25:ce:ca:ae:1f:4d:fc:2b:2f:70:93: 5e:54:70:71:72:f5:69:9f:36:db:fc:64:24:75:67:bf:19:3f: 11:9b:36:a9:7a:01:98:7c:14:2a:cf:02:85:89:3f:8e:93:1f: cb:26:50:ea:2b:ad:62:e8:8e:80:45:b6:bf:33:de:0c:02:5a: f6:d3:fb:be:0f:2f:8e:8e:dc:ce:25:bb:72:5f:40:5f:d3:d7: a3:78:97:54:09:67:05:ce:2c:91:86:07:88:36:09:a9:34:77: 06:71:e1:76:0e:ab:37:ae:06:1f:54:59:84:95:67:03:e6:e1: 71:53:2c:d5:5d:28:b6:f3:03:9c:66:a3:a4:be:08:ea:4c:01: af:15:68:14:da:f1:7c:39:71:6d:b5:4b:f1:73:ce:c0:bb:1c: 39:16:29:7b:b3:69:66:29:5c:20:bc:27:83:f0:7c:02:84:f8: 6c:e4:6e:4e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDGcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDhFQUYxMTAvBgNVBAUTKEYxRDIwNDcxQUUzMTg5MzZENzkzQjQ2REI0NDgyMjA3 RDk3MjQ1OEIwHhcNMjUwNjA2MTgyNjIzWhcNMjUwNjEzMTgyNjIzWjAYMRYwFAYD VQQDEw02ODQzMzJkMC1iZjkzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyYWevDBFEPXcQDoK/d3jhbA8kgV/JcYFmBlv/mEKiZaOSjnhK+mQdfVKj9yq zB6RTNykCJkBsAS1uYlAKW14ZfAWV5xiVPMtDHKfYqWqfKhSGSdw/P8DL+GFL1Wi G3NZMV3iH9Tjk1Xf2L7eZFoD54sJ2GgPFI8HSEJvJm/JHJgW6qagjsC6hCOAY9HB pNaWl9HJhnQmY9F5qDMn6POJfxHOTn/S2d8sAq8D/JJoMeuXp02888ryh0Hf9D11 MS789mWJkIjxXcv3qr0mCmWVEd50Rx5Op721mg/Oz1xbK5M8bRIyaai5O4q+uC60 wpbRUiEgRlNdV6XXnwWWQgPIKwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDwOZyy+ D9NxGYT92wTJx37jN7WLMB8GA1UdIwQYMBaAFPHSBHGuMYk215O0bbRIIgfZckWL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEOEVBRi8xMEIwRTNEMDA0 RUExMUVBQkVEQzgxNjFDNEY5QUUwMi84ZElFY2E0eGlUYlhrN1J0dEVnaUI5bHlS WXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzhkSUVjYTR4aVRiWGs3UnR0RWdpQjlseVJZcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE OEVBRi8xMEIwRTNEMDA0RUExMUVBQkVEQzgxNjFDNEY5QUUwMi84ZElFY2E0eGlU YlhrN1J0dEVnaUI5bHlSWXMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA4S+ouawwhW/OMEbyBZA9arssFTXxRkuIHr8jLN+Dj1e4IC+AzZVnV UktIxeTOTuHkviuhIRtS06aKOiOtOhbUQ4zthIZ/bKCO/o3AtX2TJc7Krh9N/Csv cJNeVHBxcvVpnzbb/GQkdWe/GT8RmzapegGYfBQqzwKFiT+Okx/LJlDqK61i6I6A Rba/M94MAlr20/u+Dy+OjtzOJbtyX0Bf09ejeJdUCWcFziyRhgeINgmpNHcGceF2 Dqs3rgYfVFmElWcD5uFxUyzVXSi28wOcZqOkvgjqTAGvFWgU2vF8OXFttUvxc87A uxw5Fil7s2lmKVwgvCeD8HwChPhs5G5O -----END CERTIFICATE-----Generated at Sat Jun 7 06:36:24 2025 by rpki-client