$ rpki-client -vvf rpki.apnic.net/member_repository/A91F7C21/3BCD0074F5AE11EB8E3EFB33C4F9AE02/vC2jXLVlE6lKaLWR3Sx2xR2BETQ.mft File: vC2jXLVlE6lKaLWR3Sx2xR2BETQ.mft (raw, json) Hash identifier: hlnwgHLF5vS3dq3cqUZftiN4dhD+/l41+5djKVtXH+8= Subject key identifier: 89:A2:86:B8:B4:26:87:98:2C:5C:99:62:50:0B:13:FF:D3:27:DC:57 Authority key identifier: BC:2D:A3:5C:B5:65:13:A9:4A:68:B5:91:DD:2C:76:C5:1D:81:11:34 Certificate issuer: /CN=A91F7C21/serialNumber=BC2DA35CB56513A94A68B591DD2C76C51D811134 Certificate serial: 054A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vC2jXLVlE6lKaLWR3Sx2xR2BETQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F7C21/3BCD0074F5AE11EB8E3EFB33C4F9AE02/vC2jXLVlE6lKaLWR3Sx2xR2BETQ.mft Manifest number: 0540 Signing time: Wed 04 Jun 2025 23:18:54 +0000 Manifest this update: Wed 04 Jun 2025 23:18:53 +0000 Manifest next update: Wed 11 Jun 2025 23:18:53 +0000 Files and hashes: 1: vC2jXLVlE6lKaLWR3Sx2xR2BETQ.crl (hash: Q0Zx24AljINg0QMNzjjDlBtEQKm5egsIO/WsusaG1Zg=) 2: 7FBF284EF5B211EB8419A23AC4F9AE02.roa (hash: F1yI/TsRKRhHW6oPEGF67PMGcvjA0TRHWq4d5ykeYdI=) 3: 0EF4DA3A38D011EC936A8C4FC4F9AE02.roa (hash: oeOjTuSdHmJNxJZBHkzGR+nKwmbuVyglKsBg5lLfOOw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F7C21/3BCD0074F5AE11EB8E3EFB33C4F9AE02/vC2jXLVlE6lKaLWR3Sx2xR2BETQ.crl rsync://rpki.apnic.net/member_repository/A91F7C21/3BCD0074F5AE11EB8E3EFB33C4F9AE02/vC2jXLVlE6lKaLWR3Sx2xR2BETQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vC2jXLVlE6lKaLWR3Sx2xR2BETQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 11 Jun 2025 23:18:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1354 (0x54a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F7C21, serialNumber=BC2DA35CB56513A94A68B591DD2C76C51D811134 Validity Not Before: Jun 4 23:18:53 2025 GMT Not After : Jun 11 23:18:53 2025 GMT Subject: CN=6840d45d-bb60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:1d:27:9e:40:3d:51:42:bd:ac:88:e7:1b:82: bb:ee:e3:ce:d4:20:97:62:82:59:60:7b:93:74:84: f6:51:31:c2:78:94:d9:40:22:54:a3:c4:1c:16:f5: 3c:7d:08:5f:0b:0b:00:c8:d7:5e:1c:61:18:46:c4: fa:f8:3d:a8:c1:02:51:d0:6b:a9:7e:fe:33:d6:37: 09:59:f8:98:a6:94:fb:13:34:7f:e8:c0:32:60:25: a0:9d:41:d8:d9:35:69:ac:53:3e:03:69:58:7d:fe: 83:3f:3e:ea:74:b3:2e:71:7e:31:b4:22:d1:fc:dc: 25:d5:e0:53:d9:28:1c:29:fd:8c:42:fe:56:94:d8: 66:c6:e8:d7:b4:0d:f9:d8:39:18:c7:a0:04:03:d8: a8:e4:db:3e:92:25:50:56:ec:4c:a8:22:d9:66:17: f0:c0:47:f5:a8:1e:49:ba:c0:ec:d9:b8:5c:54:71: 86:60:4c:d7:0f:63:d2:df:ae:cb:21:dd:0c:ad:be: e0:08:f6:1a:9e:e7:6b:e4:d4:99:04:64:ab:07:e2: 66:ed:e6:fc:f2:4f:fb:3c:9f:d9:29:e3:fb:22:02: 9e:15:50:56:dd:9b:1e:3f:38:ba:a7:74:a1:46:ba: 1c:a2:6a:3e:45:35:8a:e1:1c:01:04:80:78:21:08: b4:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 89:A2:86:B8:B4:26:87:98:2C:5C:99:62:50:0B:13:FF:D3:27:DC:57 X509v3 Authority Key Identifier: keyid:BC:2D:A3:5C:B5:65:13:A9:4A:68:B5:91:DD:2C:76:C5:1D:81:11:34 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F7C21/3BCD0074F5AE11EB8E3EFB33C4F9AE02/vC2jXLVlE6lKaLWR3Sx2xR2BETQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vC2jXLVlE6lKaLWR3Sx2xR2BETQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F7C21/3BCD0074F5AE11EB8E3EFB33C4F9AE02/vC2jXLVlE6lKaLWR3Sx2xR2BETQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7a:06:6c:f1:8f:30:b9:cd:75:01:43:a6:73:da:2c:e7:57:37: e5:08:f9:50:59:eb:b5:87:1b:3b:ee:36:21:fe:77:59:12:7a: 97:15:97:c5:97:ed:24:06:39:02:5c:bf:e7:ae:14:5a:b6:01: 3b:24:c7:b7:af:8e:cc:a0:f2:35:90:e7:b6:f6:c3:35:23:51: 88:3c:b3:82:96:5a:90:8d:56:4b:35:32:1c:b2:9e:6b:b4:d1: 38:5b:46:7b:0e:0d:ee:9d:8b:1f:94:32:51:c1:47:1c:1e:2a: 80:fa:d4:d5:d3:c9:4a:f7:6c:8b:69:13:d3:51:fc:db:1c:87: 94:ca:4a:c3:e8:7b:10:d0:3d:2a:c8:65:30:40:d4:92:c1:13: 35:3c:54:6a:00:b6:93:87:39:dc:b5:f7:ba:58:69:87:c7:65: 36:7e:88:02:fb:19:ad:08:27:34:aa:10:89:a3:ef:e1:0d:d0: ac:98:c9:9a:c4:e8:e2:7f:a4:cd:b4:0d:30:29:d1:26:c5:01: 02:38:42:b9:e3:a3:53:04:b3:b0:72:c2:43:74:7c:d9:77:20: 43:bb:29:dd:90:75:ff:2c:d8:7f:3f:f3:2b:45:d6:b2:84:55: 59:69:0f:74:66:65:9f:17:f6:e9:ec:bb:6b:52:a8:d7:06:b5: 7f:28:2b:fe -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBUowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjdDMjExMTAvBgNVBAUTKEJDMkRBMzVDQjU2NTEzQTk0QTY4QjU5MUREMkM3NkM1 MUQ4MTExMzQwHhcNMjUwNjA0MjMxODUzWhcNMjUwNjExMjMxODUzWjAYMRYwFAYD VQQDEw02ODQwZDQ1ZC1iYjYwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3B0nnkA9UUK9rIjnG4K77uPO1CCXYoJZYHuTdIT2UTHCeJTZQCJUo8QcFvU8 fQhfCwsAyNdeHGEYRsT6+D2owQJR0Gupfv4z1jcJWfiYppT7EzR/6MAyYCWgnUHY 2TVprFM+A2lYff6DPz7qdLMucX4xtCLR/Nwl1eBT2SgcKf2MQv5WlNhmxujXtA35 2DkYx6AEA9io5Ns+kiVQVuxMqCLZZhfwwEf1qB5JusDs2bhcVHGGYEzXD2PS367L Id0Mrb7gCPYanudr5NSZBGSrB+Jm7eb88k/7PJ/ZKeP7IgKeFVBW3ZsePzi6p3Sh Rrocomo+RTWK4RwBBIB4IQi0dwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFImihri0 JoeYLFyZYlALE//TJ9xXMB8GA1UdIwQYMBaAFLwto1y1ZROpSmi1kd0sdsUdgRE0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGN0MyMS8zQkNEMDA3NEY1 QUUxMUVCOEUzRUZCMzNDNEY5QUUwMi92QzJqWExWbEU2bEthTFdSM1N4MnhSMkJF VFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3ZDMmpYTFZsRTZsS2FMV1IzU3gyeFIyQkVUUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG N0MyMS8zQkNEMDA3NEY1QUUxMUVCOEUzRUZCMzNDNEY5QUUwMi92QzJqWExWbEU2 bEthTFdSM1N4MnhSMkJFVFEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB6BmzxjzC5zXUBQ6Zz2iznVzflCPlQWeu1hxs77jYh/ndZEnqXFZfF l+0kBjkCXL/nrhRatgE7JMe3r47MoPI1kOe29sM1I1GIPLOCllqQjVZLNTIcsp5r tNE4W0Z7Dg3unYsflDJRwUccHiqA+tTV08lK92yLaRPTUfzbHIeUykrD6HsQ0D0q yGUwQNSSwRM1PFRqALaThznctfe6WGmHx2U2fogC+xmtCCc0qhCJo+/hDdCsmMma xOjif6TNtA0wKdEmxQECOEK546NTBLOwcsJDdHzZdyBDuyndkHX/LNh/P/MrRday hFVZaQ90ZmWfF/bp7LtrUqjXBrV/KCv+ -----END CERTIFICATE-----Generated at Thu Jun 5 20:06:28 2025 by rpki-client