$ rpki-client -vvf rpki.apnic.net/member_repository/A91ED596/0DE23E165AE311EF932C232FC4F9AE02/ciYIDnxlJSNDlihmsxOfAjhyxAI.mft File: ciYIDnxlJSNDlihmsxOfAjhyxAI.mft (raw, json) Hash identifier: HPtwobWmMd1v7xHxBxyOkPj+S2LNOUfM5z6vMMKFMDQ= Subject key identifier: 88:C5:52:3B:B3:93:82:51:86:82:44:67:83:30:96:1E:A0:6E:AC:00 Authority key identifier: 72:26:08:0E:7C:65:25:23:43:96:28:66:B3:13:9F:02:38:72:C4:02 Certificate issuer: /CN=A91ED596/serialNumber=7226080E7C65252343962866B3139F023872C402 Certificate serial: 99 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ciYIDnxlJSNDlihmsxOfAjhyxAI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91ED596/0DE23E165AE311EF932C232FC4F9AE02/ciYIDnxlJSNDlihmsxOfAjhyxAI.mft Manifest number: 98 Signing time: Sat 07 Jun 2025 05:47:59 +0000 Manifest this update: Sat 07 Jun 2025 05:47:58 +0000 Manifest next update: Sat 14 Jun 2025 05:47:58 +0000 Files and hashes: 1: ciYIDnxlJSNDlihmsxOfAjhyxAI.crl (hash: DrzZnXoUKopxtmBCCHpUUCA2QsrI18uqyhtRa9Fq+dw=) 2: C0C401905AE311EF90924C30C4F9AE02.roa (hash: 7P9QGIuS2YxmoaQtTvokUjWFQu4qLuQF/pm4P1jB/wE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91ED596/0DE23E165AE311EF932C232FC4F9AE02/ciYIDnxlJSNDlihmsxOfAjhyxAI.crl rsync://rpki.apnic.net/member_repository/A91ED596/0DE23E165AE311EF932C232FC4F9AE02/ciYIDnxlJSNDlihmsxOfAjhyxAI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ciYIDnxlJSNDlihmsxOfAjhyxAI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 14 Jun 2025 05:47:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 153 (0x99) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91ED596, serialNumber=7226080E7C65252343962866B3139F023872C402 Validity Not Before: Jun 7 05:47:58 2025 GMT Not After : Jun 14 05:47:58 2025 GMT Subject: CN=6843d28e-7905 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:c1:59:4e:1e:de:78:e6:6b:bb:8c:14:d3:33: d1:31:19:64:5e:ce:c5:6a:18:36:fe:95:a0:34:01: 16:1a:c9:e4:51:f2:cb:c3:c9:ec:7c:e0:0c:fb:1d: 29:b4:67:e6:8a:ff:e9:ef:00:41:1b:be:ab:cb:85: 02:99:be:ab:54:a6:8b:07:5a:14:eb:c8:1f:4d:f9: 1a:2e:bb:92:28:b9:ff:53:d9:c0:14:94:49:75:43: ac:ab:a0:0d:57:9d:58:c4:fd:b1:d2:c2:21:01:af: 65:5c:01:c6:bb:b2:86:b4:ad:1f:16:ad:55:1e:2d: 21:bd:c9:f0:29:97:8a:62:5e:c9:3f:da:68:cb:58: 15:06:04:43:54:64:dc:7f:3e:ff:99:a7:9b:55:fb: 4d:ab:87:37:d4:d8:fa:ec:14:97:bc:09:9f:53:e2: 40:39:b5:35:e1:b5:8a:0c:c9:e3:07:16:23:dd:db: 53:56:1a:24:f4:f1:f8:cd:dd:fe:fb:b2:fc:c6:e7: 3c:35:38:38:11:8c:d7:87:0a:da:38:de:71:af:f7: cf:d4:03:6b:f0:f4:81:91:2d:26:1c:f4:6c:ea:59: 72:da:8a:be:5a:10:db:22:e5:bd:0f:18:98:07:79: 6c:c6:21:6d:a2:fa:ca:5b:d7:93:95:0e:19:60:a5: bf:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 88:C5:52:3B:B3:93:82:51:86:82:44:67:83:30:96:1E:A0:6E:AC:00 X509v3 Authority Key Identifier: keyid:72:26:08:0E:7C:65:25:23:43:96:28:66:B3:13:9F:02:38:72:C4:02 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91ED596/0DE23E165AE311EF932C232FC4F9AE02/ciYIDnxlJSNDlihmsxOfAjhyxAI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ciYIDnxlJSNDlihmsxOfAjhyxAI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91ED596/0DE23E165AE311EF932C232FC4F9AE02/ciYIDnxlJSNDlihmsxOfAjhyxAI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 15:ad:93:23:19:59:3f:ae:8b:13:9d:5e:73:c5:6a:ed:36:31: 03:99:87:6f:bb:44:a4:b4:4e:94:5c:09:86:12:91:e4:f2:b0: 05:b6:da:74:68:f3:22:c4:7f:29:ee:ae:01:8e:5f:e4:49:2d: bf:d7:09:da:72:07:e3:7f:45:ea:bf:94:46:bd:8b:9f:ec:89: 94:44:b9:c6:4a:90:7d:33:b7:02:da:f1:df:17:88:ca:a1:47: 2f:bd:4f:95:00:7a:75:82:5f:f9:55:81:6f:3b:22:e9:f2:bd: 8a:9a:1c:8c:0c:cd:81:81:64:b4:e7:01:18:e0:a1:73:35:72: c0:34:3a:5a:d3:a6:39:57:cd:59:61:8b:2c:80:c5:42:ba:ab: 2d:3e:b5:4d:8d:5d:b6:b6:df:34:dd:76:df:fa:8f:36:57:a0: 86:64:8c:ab:2c:fe:6e:ce:7c:60:d9:da:26:88:57:bd:47:e5: 0c:2f:6d:e8:f0:c7:da:19:00:13:a5:63:46:66:0c:b0:6c:97: a4:3e:66:71:eb:06:0a:91:5d:bf:17:25:b1:62:97:e5:b0:b2: 79:0f:29:a0:df:06:17:0d:e2:be:99:cf:20:3a:59:4f:cc:87: 30:34:2b:55:37:0f:9e:fc:5d:5d:b6:79:16:b9:e8:18:bf:ef: 0d:43:06:8c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAJkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUQ1OTYxMTAvBgNVBAUTKDcyMjYwODBFN0M2NTI1MjM0Mzk2Mjg2NkIzMTM5RjAy Mzg3MkM0MDIwHhcNMjUwNjA3MDU0NzU4WhcNMjUwNjE0MDU0NzU4WjAYMRYwFAYD VQQDEw02ODQzZDI4ZS03OTA1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvMFZTh7eeOZru4wU0zPRMRlkXs7Fahg2/pWgNAEWGsnkUfLLw8nsfOAM+x0p tGfmiv/p7wBBG76ry4UCmb6rVKaLB1oU68gfTfkaLruSKLn/U9nAFJRJdUOsq6AN V51YxP2x0sIhAa9lXAHGu7KGtK0fFq1VHi0hvcnwKZeKYl7JP9poy1gVBgRDVGTc fz7/maebVftNq4c31Nj67BSXvAmfU+JAObU14bWKDMnjBxYj3dtTVhok9PH4zd3+ +7L8xuc8NTg4EYzXhwraON5xr/fP1ANr8PSBkS0mHPRs6lly2oq+WhDbIuW9DxiY B3lsxiFtovrKW9eTlQ4ZYKW/kQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIjFUjuz k4JRhoJEZ4Mwlh6gbqwAMB8GA1UdIwQYMBaAFHImCA58ZSUjQ5YoZrMTnwI4csQC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFRDU5Ni8wREUyM0UxNjVB RTMxMUVGOTMyQzIzMkZDNEY5QUUwMi9jaVlJRG54bEpTTkRsaWhtc3hPZkFqaHl4 QUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NpWUlEbnhsSlNORGxpaG1zeE9mQWpoeXhBSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF RDU5Ni8wREUyM0UxNjVBRTMxMUVGOTMyQzIzMkZDNEY5QUUwMi9jaVlJRG54bEpT TkRsaWhtc3hPZkFqaHl4QUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAVrZMjGVk/rosTnV5zxWrtNjEDmYdvu0SktE6UXAmGEpHk8rAFttp0 aPMixH8p7q4Bjl/kSS2/1wnacgfjf0Xqv5RGvYuf7ImURLnGSpB9M7cC2vHfF4jK oUcvvU+VAHp1gl/5VYFvOyLp8r2KmhyMDM2BgWS05wEY4KFzNXLANDpa06Y5V81Z YYssgMVCuqstPrVNjV22tt803Xbf+o82V6CGZIyrLP5uznxg2domiFe9R+UML23o 8MfaGQATpWNGZgywbJekPmZx6wYKkV2/FyWxYpflsLJ5Dymg3wYXDeK+mc8gOllP zIcwNCtVNw+e/F1dtnkWuegYv+8NQwaM -----END CERTIFICATE-----Generated at Sun Jun 8 17:11:59 2025 by rpki-client