$ rpki-client -vvf rpki.apnic.net/member_repository/A91E6134/57B3E0BCC2A811EAA7918A2EC4F9AE02/mnPxqRn79GyHLjiAWxZQtfiCdtM.mft File: mnPxqRn79GyHLjiAWxZQtfiCdtM.mft (raw, json) Hash identifier: 1kFbEW0ui8iQwdkrwXLFXQRTkLzRNv451qQjXZlMFQU= Subject key identifier: CA:A0:59:D1:8E:76:7C:80:96:9A:69:6A:2A:3C:51:45:83:EA:0E:4C Authority key identifier: 9A:73:F1:A9:19:FB:F4:6C:87:2E:38:80:5B:16:50:B5:F8:82:76:D3 Certificate issuer: /CN=A91E6134/serialNumber=9A73F1A919FBF46C872E38805B1650B5F88276D3 Certificate serial: 1102 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/mnPxqRn79GyHLjiAWxZQtfiCdtM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E6134/57B3E0BCC2A811EAA7918A2EC4F9AE02/mnPxqRn79GyHLjiAWxZQtfiCdtM.mft Manifest number: 0CC2 Signing time: Mon 02 Jun 2025 21:07:41 +0000 Manifest this update: Mon 02 Jun 2025 21:07:41 +0000 Manifest next update: Mon 09 Jun 2025 21:07:41 +0000 Files and hashes: 1: mnPxqRn79GyHLjiAWxZQtfiCdtM.crl (hash: s00m/y5KTE92xDVS+mPEQicemuRF+TVelKxX0N6mDgw=) 2: 1DF0A186321E11F08839AD4FC4F9AE02.roa (hash: scqtxwpbVl5pi/9CaB8OC2vDdt2kGGP5wDNyaIXBbaQ=) 3: A173B894112711F0845DF16FC4F9AE02.roa (hash: 3CENOgG8lzvvc7h19xhkGA0RtKWssC6nuSD3IRmHv+U=) 4: 24B754BA9B7911EFBA9A2A42C4F9AE02.roa (hash: OE0GQmtT1oUSAp1PhOfnIVxi4IcaA0X4EOEnweGkcfk=) 5: EE9F1FB41AAA11F099EC1E37C4F9AE02.roa (hash: 3h3IIH+ggZFH2qx8kOY/QLivgOIrMNBBpc5Fba+/FR8=) 6: BE7E4E9891F911EF86353E28C4F9AE02.roa (hash: 0eKMiuybEL3RZ9M1FJ5oQARMsUnxdeLLyfCZMIEzPk8=) 7: 40F0E4DC75AB11EFB897AF69C4F9AE02.roa (hash: WCuc9qJqnxpfRfNQbHsddCwyv+cwN0Cozp4Ow30c0Cs=) 8: FA9BC95A548711EF89E24A18C4F9AE02.roa (hash: Lh2x2UhtnOihYNKj9Kn76/xvcicNSKGJ9zs/lJzF/lU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E6134/57B3E0BCC2A811EAA7918A2EC4F9AE02/mnPxqRn79GyHLjiAWxZQtfiCdtM.crl rsync://rpki.apnic.net/member_repository/A91E6134/57B3E0BCC2A811EAA7918A2EC4F9AE02/mnPxqRn79GyHLjiAWxZQtfiCdtM.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/mnPxqRn79GyHLjiAWxZQtfiCdtM.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 21:07:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4354 (0x1102) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E6134, serialNumber=9A73F1A919FBF46C872E38805B1650B5F88276D3 Validity Not Before: Jun 2 21:07:41 2025 GMT Not After : Jun 9 21:07:41 2025 GMT Subject: CN=683e129d-d5f4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:66:5d:bc:86:88:5b:60:d7:38:b1:56:f9:3e: 3c:43:d5:2b:a9:f2:d7:9a:70:e0:86:e8:48:eb:fc: bc:41:d8:bf:ce:fd:75:e1:f9:3a:e0:6b:56:a8:c6: f1:7b:5a:fe:52:3f:ff:87:57:cc:f7:ac:5a:1f:43: 7c:92:df:ed:d7:93:1d:1c:30:22:52:72:d9:6a:3b: ea:b9:3a:70:0c:dd:01:8b:2f:e4:99:d7:07:a0:eb: 10:ad:1b:f8:0c:e2:25:2c:f5:47:1a:0d:cb:0e:a0: 1c:e7:9d:bb:1a:af:d3:39:06:28:15:9c:cf:a7:6f: ab:d8:90:19:33:b0:22:86:3b:d9:b3:09:50:93:1d: a0:a8:94:8b:0b:0c:9b:85:02:5e:38:b7:12:fd:a6: 1b:1a:80:a5:38:76:56:24:63:d2:c2:20:3c:8b:21: 7c:7f:ca:d5:3b:2c:bc:e8:78:cd:7e:a2:13:f6:af: 8e:44:13:03:4f:8c:fb:e0:22:44:91:c3:74:04:88: ab:2b:5a:ec:e0:16:d0:c8:89:9e:d9:27:b0:f8:6e: a8:58:14:98:90:c4:59:5d:29:e4:08:92:34:19:34: 3c:7d:de:8a:f0:26:53:31:64:a3:a7:6f:8c:8a:7d: 3f:55:4c:e6:a3:a2:31:27:ec:26:20:11:46:35:35: bf:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CA:A0:59:D1:8E:76:7C:80:96:9A:69:6A:2A:3C:51:45:83:EA:0E:4C X509v3 Authority Key Identifier: keyid:9A:73:F1:A9:19:FB:F4:6C:87:2E:38:80:5B:16:50:B5:F8:82:76:D3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E6134/57B3E0BCC2A811EAA7918A2EC4F9AE02/mnPxqRn79GyHLjiAWxZQtfiCdtM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/mnPxqRn79GyHLjiAWxZQtfiCdtM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E6134/57B3E0BCC2A811EAA7918A2EC4F9AE02/mnPxqRn79GyHLjiAWxZQtfiCdtM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4e:57:cb:fb:d3:d7:99:90:68:c3:82:ce:a6:60:eb:17:13:60: f6:7a:d0:fb:20:5c:ae:a9:c9:7c:25:6c:5e:c1:4e:5f:f7:93: 89:39:c1:ab:55:33:46:45:49:f2:c5:bf:3b:b1:9b:1c:5c:bd: 2c:45:6d:7e:22:ba:c8:da:f1:40:e0:68:fa:db:a0:a4:d2:6b: 37:88:7c:e4:d5:ce:c4:ea:4c:cd:1f:79:75:9d:aa:85:f9:1e: d8:61:c6:b5:90:2a:74:85:3c:ed:ee:82:79:a4:d5:0f:54:53: 16:16:c1:2f:e0:3c:66:26:81:4b:44:06:15:1c:3e:db:ba:47: a6:cf:ef:ad:eb:8f:96:bb:34:0a:84:a4:29:0b:51:54:a3:b2: 55:a5:e1:c8:9d:67:8f:83:03:2b:74:42:2a:af:1d:96:3a:88: cd:db:ab:3f:7a:22:4a:9a:a7:a2:01:60:d1:ca:74:99:f8:7e: 4d:07:fa:c0:12:8d:42:79:1b:8e:fe:a7:bf:5f:ec:1d:ee:b6: 3f:29:c5:4c:6f:57:96:99:ce:90:71:b9:3a:f0:35:07:15:d7: 27:07:8d:31:3f:1f:34:ae:26:00:f3:17:ed:ed:f5:10:da:54: 26:81:b7:d0:49:d7:27:11:e3:16:63:03:fe:05:e8:b0:fb:9a: 04:ec:b0:21 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEQIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTYxMzQxMTAvBgNVBAUTKDlBNzNGMUE5MTlGQkY0NkM4NzJFMzg4MDVCMTY1MEI1 Rjg4Mjc2RDMwHhcNMjUwNjAyMjEwNzQxWhcNMjUwNjA5MjEwNzQxWjAYMRYwFAYD VQQDEw02ODNlMTI5ZC1kNWY0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3mZdvIaIW2DXOLFW+T48Q9UrqfLXmnDghuhI6/y8Qdi/zv114fk64GtWqMbx e1r+Uj//h1fM96xaH0N8kt/t15MdHDAiUnLZajvquTpwDN0Biy/kmdcHoOsQrRv4 DOIlLPVHGg3LDqAc5527Gq/TOQYoFZzPp2+r2JAZM7AihjvZswlQkx2gqJSLCwyb hQJeOLcS/aYbGoClOHZWJGPSwiA8iyF8f8rVOyy86HjNfqIT9q+ORBMDT4z74CJE kcN0BIirK1rs4BbQyIme2Sew+G6oWBSYkMRZXSnkCJI0GTQ8fd6K8CZTMWSjp2+M in0/VUzmo6IxJ+wmIBFGNTW/gwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMqgWdGO dnyAlpppaio8UUWD6g5MMB8GA1UdIwQYMBaAFJpz8akZ+/Rshy44gFsWULX4gnbT MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNjEzNC81N0IzRTBCQ0My QTgxMUVBQTc5MThBMkVDNEY5QUUwMi9tblB4cVJuNzlHeUhMamlBV3haUXRmaUNk dE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL21uUHhxUm43OUd5SExqaUFXeFpRdGZpQ2R0TS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NjEzNC81N0IzRTBCQ0MyQTgxMUVBQTc5MThBMkVDNEY5QUUwMi9tblB4cVJuNzlH eUhMamlBV3haUXRmaUNkdE0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBOV8v709eZkGjDgs6mYOsXE2D2etD7IFyuqcl8JWxewU5f95OJOcGr VTNGRUnyxb87sZscXL0sRW1+IrrI2vFA4Gj626Ck0ms3iHzk1c7E6kzNH3l1naqF +R7YYca1kCp0hTzt7oJ5pNUPVFMWFsEv4DxmJoFLRAYVHD7bukemz++t64+WuzQK hKQpC1FUo7JVpeHInWePgwMrdEIqrx2WOojN26s/eiJKmqeiAWDRynSZ+H5NB/rA Eo1CeRuO/qe/X+wd7rY/KcVMb1eWmc6Qcbk68DUHFdcnB40xPx80riYA8xft7fUQ 2lQmgbfQSdcnEeMWYwP+Beiw+5oE7LAh -----END CERTIFICATE-----Generated at Tue Jun 3 23:48:40 2025 by rpki-client