$ rpki-client -vvf rpki.apnic.net/member_repository/A91EC225/C9447FF0BEF911EFBCF68944C4F9AE02/IsfsPNntTFDolKEbzXDQMQzV-Fk.mft File: IsfsPNntTFDolKEbzXDQMQzV-Fk.mft (raw, json) Hash identifier: Cn090APVECFaaMDKm+qdkAdVuYEMQA6ELLD+J4sxdkE= Subject key identifier: 36:FA:D2:76:29:56:FC:FC:02:D1:56:6A:8C:AF:9F:C2:2E:E7:D8:3A Authority key identifier: 22:C7:EC:3C:D9:ED:4C:50:E8:94:A1:1B:CD:70:D0:31:0C:D5:F8:59 Certificate issuer: /CN=A91EC225/serialNumber=22C7EC3CD9ED4C50E894A11BCD70D0310CD5F859 Certificate serial: 58 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/IsfsPNntTFDolKEbzXDQMQzV-Fk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EC225/C9447FF0BEF911EFBCF68944C4F9AE02/IsfsPNntTFDolKEbzXDQMQzV-Fk.mft Manifest number: 57 Signing time: Wed 04 Jun 2025 17:40:36 +0000 Manifest this update: Wed 04 Jun 2025 17:40:36 +0000 Manifest next update: Wed 11 Jun 2025 17:40:36 +0000 Files and hashes: 1: IsfsPNntTFDolKEbzXDQMQzV-Fk.crl (hash: 4SY0+mgxXqbGLjva0mPvROLVGWkx3BAAstBCeEfef6M=) 2: 25D2B94CDECD11EFA79E4065C4F9AE02.roa (hash: AoCtdlkJJmrM0z3AC3jCQKm47jbQAWLBDnBBfT5EtYM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EC225/C9447FF0BEF911EFBCF68944C4F9AE02/IsfsPNntTFDolKEbzXDQMQzV-Fk.crl rsync://rpki.apnic.net/member_repository/A91EC225/C9447FF0BEF911EFBCF68944C4F9AE02/IsfsPNntTFDolKEbzXDQMQzV-Fk.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/IsfsPNntTFDolKEbzXDQMQzV-Fk.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 11 Jun 2025 17:40:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 88 (0x58) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EC225, serialNumber=22C7EC3CD9ED4C50E894A11BCD70D0310CD5F859 Validity Not Before: Jun 4 17:40:36 2025 GMT Not After : Jun 11 17:40:36 2025 GMT Subject: CN=68408514-fe9e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:b5:6e:d1:de:3e:49:3d:97:d6:11:d0:69:8e: 0e:83:33:52:12:35:a9:06:99:19:6a:2a:96:08:6f: b2:4a:4f:ca:4d:d5:1f:cb:9f:15:b6:2a:0b:08:c7: 0e:76:44:e5:77:15:4b:f8:ae:f6:98:3f:4c:00:e2: f7:3c:f3:7c:91:c0:c2:8e:f8:7f:d1:e5:68:4f:0b: c0:5b:44:01:db:14:b2:74:ec:90:d5:26:b0:7e:85: c2:99:d4:1f:36:9f:48:f6:61:ee:85:eb:36:64:c0: cc:1e:fc:36:51:11:5d:24:57:e3:7c:36:62:3d:0a: 41:bb:4d:40:4e:9e:e8:43:36:2f:59:d4:d7:e3:4f: 98:f3:cc:fd:74:74:f4:25:1d:17:3b:d7:4b:6b:d7: 26:ed:58:81:a8:37:ea:2e:3b:aa:25:9f:6b:2b:cf: 17:56:b1:57:cf:2e:94:f1:96:cd:77:96:89:74:fe: 31:47:61:60:0b:6f:b4:6a:68:c5:48:f9:34:9c:4f: 90:c5:c1:e7:d0:14:07:df:9a:1e:07:da:35:bd:aa: 21:ea:d7:19:b8:14:2b:39:8c:4e:31:69:d3:a9:6f: 7c:d1:12:2f:0c:69:d6:4f:e2:50:58:b9:fa:47:13: 36:09:6e:60:83:8d:9e:85:84:b1:e9:bc:16:42:4e: a0:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 36:FA:D2:76:29:56:FC:FC:02:D1:56:6A:8C:AF:9F:C2:2E:E7:D8:3A X509v3 Authority Key Identifier: keyid:22:C7:EC:3C:D9:ED:4C:50:E8:94:A1:1B:CD:70:D0:31:0C:D5:F8:59 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EC225/C9447FF0BEF911EFBCF68944C4F9AE02/IsfsPNntTFDolKEbzXDQMQzV-Fk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/IsfsPNntTFDolKEbzXDQMQzV-Fk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EC225/C9447FF0BEF911EFBCF68944C4F9AE02/IsfsPNntTFDolKEbzXDQMQzV-Fk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 98:9a:40:9d:77:0a:82:29:d4:ad:0e:28:ca:68:a8:be:47:e5: d3:c8:73:92:d1:e3:06:01:24:bf:03:3f:53:07:e6:3b:ce:11: 1b:3c:1d:df:4e:0e:e3:a2:32:7d:3b:c6:18:82:60:ef:e2:4b: 81:aa:82:e7:05:86:7d:c3:46:61:c2:63:37:93:cc:29:6d:80: 89:10:f7:08:1f:79:f6:79:36:19:d7:d8:28:4a:03:b7:97:e8: 1d:f3:39:0d:8c:3b:c5:c1:2e:d3:24:87:15:81:8e:95:5f:66: fb:f0:75:9d:4f:ed:d0:2d:c1:87:d0:c4:73:93:64:13:8a:6c: 7b:38:10:f4:80:d4:49:82:7f:9a:55:04:a3:ff:24:50:08:25: 0d:65:18:87:93:62:a7:5a:22:4b:e5:9a:a6:fa:c1:f4:20:d0: 53:d1:e7:da:6a:3f:53:23:23:24:1d:ef:af:40:26:bd:1d:5b: 63:02:6d:c1:4a:bd:53:49:ba:4b:39:32:95:d3:8f:f4:b8:f8: 13:32:b6:68:8f:fb:10:ee:ca:6b:c1:8d:73:2e:0a:8a:54:18: 47:83:fa:05:58:bc:34:1e:58:a3:6c:0a:65:d3:2b:c8:24:d8: 3a:65:00:3e:15:ca:aa:ac:2f:0e:4d:97:e7:97:7f:17:e6:b4: 08:5f:02:7c -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBWDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFF QzIyNTExMC8GA1UEBRMoMjJDN0VDM0NEOUVENEM1MEU4OTRBMTFCQ0Q3MEQwMzEw Q0Q1Rjg1OTAeFw0yNTA2MDQxNzQwMzZaFw0yNTA2MTExNzQwMzZaMBgxFjAUBgNV BAMTDTY4NDA4NTE0LWZlOWUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDptW7R3j5JPZfWEdBpjg6DM1ISNakGmRlqKpYIb7JKT8pN1R/LnxW2KgsIxw52 ROV3FUv4rvaYP0wA4vc883yRwMKO+H/R5WhPC8BbRAHbFLJ07JDVJrB+hcKZ1B82 n0j2Ye6F6zZkwMwe/DZREV0kV+N8NmI9CkG7TUBOnuhDNi9Z1NfjT5jzzP10dPQl HRc710tr1ybtWIGoN+ouO6oln2srzxdWsVfPLpTxls13lol0/jFHYWALb7RqaMVI +TScT5DFwefQFAffmh4H2jW9qiHq1xm4FCs5jE4xadOpb3zREi8MadZP4lBYufpH EzYJbmCDjZ6FhLHpvBZCTqBlAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUNvrSdilW /PwC0VZqjK+fwi7n2DowHwYDVR0jBBgwFoAUIsfsPNntTFDolKEbzXDQMQzV+Fkw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUVDMjI1L0M5NDQ3RkYwQkVG OTExRUZCQ0Y2ODk0NEM0RjlBRTAyL0lzZnNQTm50VEZEb2xLRWJ6WERRTVF6Vi1G ay5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvSXNmc1BObnRURkRvbEtFYnpYRFFNUXpWLUZrLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUVD MjI1L0M5NDQ3RkYwQkVGOTExRUZCQ0Y2ODk0NEM0RjlBRTAyL0lzZnNQTm50VEZE b2xLRWJ6WERRTVF6Vi1Gay5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAJiaQJ13CoIp1K0OKMpoqL5H5dPIc5LR4wYBJL8DP1MH5jvOERs8Hd9O DuOiMn07xhiCYO/iS4GqgucFhn3DRmHCYzeTzCltgIkQ9wgfefZ5NhnX2ChKA7eX 6B3zOQ2MO8XBLtMkhxWBjpVfZvvwdZ1P7dAtwYfQxHOTZBOKbHs4EPSA1EmCf5pV BKP/JFAIJQ1lGIeTYqdaIkvlmqb6wfQg0FPR59pqP1MjIyQd769AJr0dW2MCbcFK vVNJuks5MpXTj/S4+BMytmiP+xDuymvBjXMuCopUGEeD+gVYvDQeWKNsCmXTK8gk 2DplAD4VyqqsLw5Nl+eXfxfmtAhfAnw= -----END CERTIFICATE-----Generated at Thu Jun 5 19:21:00 2025 by rpki-client