$ rpki-client -vvf rpki.apnic.net/member_repository/A91E38C1/E75AC2621D9711E28EF8928108B02CD2/M4vXge0h5dsUBXs3uQOipAjiQgI.mft File: M4vXge0h5dsUBXs3uQOipAjiQgI.mft (raw, json) Hash identifier: Sxq9cRScQfRekDPl2yT2WWrOZ2BWdOIJr3vZio3qnkU= Subject key identifier: 31:DC:E7:7E:28:61:0D:E5:5E:06:4B:64:22:D1:CE:6A:A9:8D:43:6E Authority key identifier: 33:8B:D7:81:ED:21:E5:DB:14:05:7B:37:B9:03:A2:A4:08:E2:42:02 Certificate issuer: /CN=A91E38C1/serialNumber=338BD781ED21E5DB14057B37B903A2A408E24202 Certificate serial: 34CC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/M4vXge0h5dsUBXs3uQOipAjiQgI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E38C1/E75AC2621D9711E28EF8928108B02CD2/M4vXge0h5dsUBXs3uQOipAjiQgI.mft Manifest number: 34A5 Signing time: Thu 12 Jun 2025 14:50:09 +0000 Manifest this update: Thu 12 Jun 2025 14:50:08 +0000 Manifest next update: Thu 19 Jun 2025 14:50:08 +0000 Files and hashes: 1: M4vXge0h5dsUBXs3uQOipAjiQgI.crl (hash: Zo91yKeH3bbvoIDYOMRcu6Q37oR7PWtIaHCAw9ZAJx4=) 2: 5F114FB2C28811EB8BB7245FC4F9AE02.roa (hash: NTEzu1pSF4sdWy2GcCcEDp/gqX9S2zLnxs3jJP1dXh4=) 3: 5DF144D4C28811EB8BB7245FC4F9AE02.roa (hash: MtAXGpGxLYC9TQTRbnJyAY8nZ+XjjJVEjf45TgfTD7c=) 4: 5CD84EBCC28811EB8BB7245FC4F9AE02.roa (hash: +MuzD9gM5AUhBlmI5x0tCQas+CPjWTVYziN5P4guwtA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E38C1/E75AC2621D9711E28EF8928108B02CD2/M4vXge0h5dsUBXs3uQOipAjiQgI.crl rsync://rpki.apnic.net/member_repository/A91E38C1/E75AC2621D9711E28EF8928108B02CD2/M4vXge0h5dsUBXs3uQOipAjiQgI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/M4vXge0h5dsUBXs3uQOipAjiQgI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 19 Jun 2025 14:50:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13516 (0x34cc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E38C1, serialNumber=338BD781ED21E5DB14057B37B903A2A408E24202 Validity Not Before: Jun 12 14:50:08 2025 GMT Not After : Jun 19 14:50:08 2025 GMT Subject: CN=684ae920-b0af Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:ee:ab:f2:58:15:79:61:9f:54:f7:03:bb:3f: 02:f5:66:4a:c2:09:c8:da:f2:1d:1e:f5:40:8f:36: e4:49:ef:b2:c7:07:cb:be:fd:bd:a4:43:2f:dd:9c: f4:79:f2:16:bb:5c:d4:ee:36:58:cc:1f:ef:b2:d2: 55:5d:d1:e3:96:f2:2d:5a:9f:37:81:d2:8f:64:98: c5:e1:d3:1b:bb:54:01:90:4b:93:f0:2b:ac:eb:bb: 6e:a0:8c:1d:18:a0:27:32:1a:2e:85:59:c4:eb:23: 4c:17:59:79:eb:b3:df:59:a3:e2:84:b1:63:0c:51: 56:ce:8a:23:dd:6a:e5:62:26:ef:cc:9a:e2:e8:33: f9:f8:fc:4a:fd:c3:75:d6:d7:31:2c:fe:24:f6:7f: c8:57:40:84:d2:b8:ed:5d:3f:aa:22:8c:9e:36:d9: 68:0d:90:aa:7c:71:39:6d:8f:53:cb:1f:7c:20:af: 18:fb:ea:4d:40:3f:e8:df:5e:9e:74:67:df:89:2f: 7c:8a:48:f0:02:76:f4:0c:58:2d:92:5d:6c:7c:fb: 52:f0:c9:27:67:44:65:0c:d5:20:21:12:d7:21:af: e8:35:cd:f4:70:8c:be:9a:df:cd:e2:0b:a5:69:b9: 0b:0a:9c:84:eb:d1:3d:f0:03:c6:48:6d:d8:09:06: fe:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 31:DC:E7:7E:28:61:0D:E5:5E:06:4B:64:22:D1:CE:6A:A9:8D:43:6E X509v3 Authority Key Identifier: keyid:33:8B:D7:81:ED:21:E5:DB:14:05:7B:37:B9:03:A2:A4:08:E2:42:02 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E38C1/E75AC2621D9711E28EF8928108B02CD2/M4vXge0h5dsUBXs3uQOipAjiQgI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/M4vXge0h5dsUBXs3uQOipAjiQgI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E38C1/E75AC2621D9711E28EF8928108B02CD2/M4vXge0h5dsUBXs3uQOipAjiQgI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 14:db:38:f4:56:a3:e9:b8:5c:a7:4b:86:bc:b7:0b:27:4c:b3: 95:3f:2f:af:68:ed:a3:b6:4f:10:ab:70:ae:46:5d:d2:ff:e8: 64:4b:cd:93:c0:75:d2:77:4f:d8:10:d8:0d:af:de:4e:01:b1: e3:97:d1:fc:ca:90:27:b5:f5:30:1d:59:64:b3:5b:fd:4b:6b: 50:c7:2a:78:c2:08:37:57:88:45:46:fa:b8:dd:9f:28:45:63: a9:27:3f:05:0b:a3:18:5f:ad:4b:11:9d:2f:cd:78:3b:6f:e4: bf:dd:01:f1:8d:a4:a4:26:a1:ef:6d:c7:2d:8e:39:89:63:b6: 6d:8c:d8:cf:a9:4d:ed:40:6a:7f:bb:ac:42:9e:93:eb:03:ac: f0:06:66:bb:1d:90:fa:79:4d:bb:dc:fa:e7:69:be:3d:68:4d: 3d:9f:cf:b0:2f:6b:46:3c:d0:81:9a:76:cf:e8:e0:a9:23:0b: d6:5b:ec:30:27:9f:09:d4:9b:15:0b:90:1b:f0:42:32:a6:a7: d7:24:6c:7c:30:e2:9e:59:b1:50:1c:34:d9:2e:bf:45:89:93: 4f:41:38:87:cc:90:bd:a3:cc:3d:80:d7:c1:6a:31:57:88:ea: 14:50:7b:71:31:68:96:a0:0c:09:6b:21:f5:35:f7:ac:3b:a1: 71:b1:7f:d7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNMwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTM4QzExMTAvBgNVBAUTKDMzOEJENzgxRUQyMUU1REIxNDA1N0IzN0I5MDNBMkE0 MDhFMjQyMDIwHhcNMjUwNjEyMTQ1MDA4WhcNMjUwNjE5MTQ1MDA4WjAYMRYwFAYD VQQDEw02ODRhZTkyMC1iMGFmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAse6r8lgVeWGfVPcDuz8C9WZKwgnI2vIdHvVAjzbkSe+yxwfLvv29pEMv3Zz0 efIWu1zU7jZYzB/vstJVXdHjlvItWp83gdKPZJjF4dMbu1QBkEuT8Cus67tuoIwd GKAnMhouhVnE6yNMF1l567PfWaPihLFjDFFWzooj3WrlYibvzJri6DP5+PxK/cN1 1tcxLP4k9n/IV0CE0rjtXT+qIoyeNtloDZCqfHE5bY9Tyx98IK8Y++pNQD/o316e dGffiS98ikjwAnb0DFgtkl1sfPtS8MknZ0RlDNUgIRLXIa/oNc30cIy+mt/N4gul abkLCpyE69E98APGSG3YCQb+kwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDHc534o YQ3lXgZLZCLRzmqpjUNuMB8GA1UdIwQYMBaAFDOL14HtIeXbFAV7N7kDoqQI4kIC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMzhDMS9FNzVBQzI2MjFE OTcxMUUyOEVGODkyODEwOEIwMkNEMi9NNHZYZ2UwaDVkc1VCWHMzdVFPaXBBamlR Z0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL000dlhnZTBoNWRzVUJYczN1UU9pcEFqaVFnSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MzhDMS9FNzVBQzI2MjFEOTcxMUUyOEVGODkyODEwOEIwMkNEMi9NNHZYZ2UwaDVk c1VCWHMzdVFPaXBBamlRZ0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAU2zj0VqPpuFynS4a8twsnTLOVPy+vaO2jtk8Qq3CuRl3S/+hkS82T wHXSd0/YENgNr95OAbHjl9H8ypAntfUwHVlks1v9S2tQxyp4wgg3V4hFRvq43Z8o RWOpJz8FC6MYX61LEZ0vzXg7b+S/3QHxjaSkJqHvbcctjjmJY7ZtjNjPqU3tQGp/ u6xCnpPrA6zwBma7HZD6eU273Prnab49aE09n8+wL2tGPNCBmnbP6OCpIwvWW+ww J58J1JsVC5Ab8EIypqfXJGx8MOKeWbFQHDTZLr9FiZNPQTiHzJC9o8w9gNfBajFX iOoUUHtxMWiWoAwJayH1NfesO6FxsX/X -----END CERTIFICATE-----Generated at Fri Jun 13 09:24:37 2025 by rpki-client