$ rpki-client -vvf rpki.apnic.net/member_repository/A91FCABC/C551641205B911EEA9130B37C4F9AE02/l85Wj2RoJWRz-Es4s84D6jVJ64k.mft File: l85Wj2RoJWRz-Es4s84D6jVJ64k.mft (raw, json) Hash identifier: nufYO4+55+cXgiEE74TV6HbUqNenFDdcoVsSPoy20Ks= Subject key identifier: 04:5A:C9:5F:74:08:13:EE:95:7B:71:2F:F5:65:8B:83:34:B2:7E:7F Authority key identifier: 97:CE:56:8F:64:68:25:64:73:F8:4B:38:B3:CE:03:EA:35:49:EB:89 Certificate issuer: /CN=A91FCABC/serialNumber=97CE568F6468256473F84B38B3CE03EA3549EB89 Certificate serial: 0177 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/l85Wj2RoJWRz-Es4s84D6jVJ64k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FCABC/C551641205B911EEA9130B37C4F9AE02/l85Wj2RoJWRz-Es4s84D6jVJ64k.mft Manifest number: 0174 Signing time: Tue 03 Jun 2025 03:33:08 +0000 Manifest this update: Tue 03 Jun 2025 03:33:08 +0000 Manifest next update: Tue 10 Jun 2025 03:33:08 +0000 Files and hashes: 1: l85Wj2RoJWRz-Es4s84D6jVJ64k.crl (hash: pgeIAzxxigTTyU900O2+sAUPzZ3rgf3SAB0eWvMIqGk=) 2: 35BBCFB005C111EEA3A8584CC4F9AE02.roa (hash: HMZ69Vk7ZS0Jv78BueT5h2a9dKdT1kZJMuqKYnjLHLY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FCABC/C551641205B911EEA9130B37C4F9AE02/l85Wj2RoJWRz-Es4s84D6jVJ64k.crl rsync://rpki.apnic.net/member_repository/A91FCABC/C551641205B911EEA9130B37C4F9AE02/l85Wj2RoJWRz-Es4s84D6jVJ64k.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/l85Wj2RoJWRz-Es4s84D6jVJ64k.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 10 Jun 2025 03:33:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 375 (0x177) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FCABC, serialNumber=97CE568F6468256473F84B38B3CE03EA3549EB89 Validity Not Before: Jun 3 03:33:08 2025 GMT Not After : Jun 10 03:33:08 2025 GMT Subject: CN=683e6cf4-2fc1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:4d:47:63:e8:28:66:0a:f8:38:55:cc:6d:45: 11:fd:d3:54:c0:73:d8:3f:36:71:f7:75:3a:cb:50: 92:d3:c2:09:1e:45:88:b5:2e:45:5e:76:8e:d9:81: 99:27:15:0e:40:95:95:ee:4b:cf:83:a3:e3:25:41: 5d:5a:12:69:a4:65:5d:c8:7c:8e:b9:09:50:50:93: 47:44:4d:e0:55:2c:78:49:b1:b2:7c:6c:a0:bc:29: 32:8f:60:66:db:89:e9:66:22:aa:56:93:81:89:96: d7:0e:b1:e2:3a:a3:47:ae:ec:27:52:61:ab:ee:f9: 5d:eb:85:78:e8:b9:26:34:35:75:14:76:b2:f2:b9: e3:7f:17:e7:9f:40:b7:9a:35:b7:4c:a9:5a:fe:b3: 05:d7:c0:cd:53:d6:e1:ca:fe:58:43:06:af:69:56: b9:c2:e2:42:94:f4:05:7e:a9:a8:76:d1:7f:f4:53: 8a:09:16:b6:cd:0a:32:74:2f:71:8c:a2:c3:dc:31: 0a:9c:fe:63:78:a7:84:d4:99:b9:01:12:f3:03:ea: 9a:40:c5:75:04:19:07:ce:44:50:19:b6:c7:3f:9b: 6a:87:e2:16:f8:3c:24:26:32:e2:0e:5c:76:bb:13: 74:60:38:3c:32:09:76:3c:f3:e2:e9:4c:10:f2:4b: 43:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 04:5A:C9:5F:74:08:13:EE:95:7B:71:2F:F5:65:8B:83:34:B2:7E:7F X509v3 Authority Key Identifier: keyid:97:CE:56:8F:64:68:25:64:73:F8:4B:38:B3:CE:03:EA:35:49:EB:89 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FCABC/C551641205B911EEA9130B37C4F9AE02/l85Wj2RoJWRz-Es4s84D6jVJ64k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/l85Wj2RoJWRz-Es4s84D6jVJ64k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FCABC/C551641205B911EEA9130B37C4F9AE02/l85Wj2RoJWRz-Es4s84D6jVJ64k.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c0:60:b8:d1:a1:85:fb:60:7d:0b:e2:08:2f:9d:cd:13:22:41: 7d:59:c1:3c:ba:01:14:0c:cc:b0:8d:06:c3:5d:5c:53:4f:e5: 00:30:16:b5:8d:40:7a:5e:ed:51:dc:53:6d:07:34:60:61:80: be:2c:5f:8e:90:70:e0:fd:4a:0e:88:e9:e3:6d:84:9e:07:d7: 28:7a:f1:f8:bc:5d:55:e4:ef:1a:dd:92:4f:8a:09:e2:fd:67: 38:d1:14:1a:1b:88:46:3f:1f:84:14:83:7c:ed:fc:87:f2:b9: 1c:70:a7:4f:09:ea:7c:f5:63:68:28:50:4a:80:3c:f6:3c:91: c4:b1:b2:6e:2f:da:1a:82:41:7b:75:bf:13:40:10:a7:f1:75: 69:0c:53:5b:61:10:a3:1c:48:66:1e:39:73:01:04:32:65:21: 81:1a:07:12:18:bf:a2:98:1f:ef:c5:d2:65:09:a3:49:c4:e5: 30:8d:2a:35:43:5c:e0:5d:f4:3b:8e:e7:c9:f8:1c:d9:eb:4f: 3e:87:31:73:c8:e0:62:8f:dc:45:df:19:0e:f9:8a:46:d1:4e: 8d:85:ca:63:1d:5a:37:ea:92:e3:f3:36:17:68:42:d1:f1:ae: 3c:c4:81:fc:d4:da:aa:3c:81:6f:d4:43:8d:98:24:13:80:71: b9:e3:54:1a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAXcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkNBQkMxMTAvBgNVBAUTKDk3Q0U1NjhGNjQ2ODI1NjQ3M0Y4NEIzOEIzQ0UwM0VB MzU0OUVCODkwHhcNMjUwNjAzMDMzMzA4WhcNMjUwNjEwMDMzMzA4WjAYMRYwFAYD VQQDEw02ODNlNmNmNC0yZmMxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvE1HY+goZgr4OFXMbUUR/dNUwHPYPzZx93U6y1CS08IJHkWItS5FXnaO2YGZ JxUOQJWV7kvPg6PjJUFdWhJppGVdyHyOuQlQUJNHRE3gVSx4SbGyfGygvCkyj2Bm 24npZiKqVpOBiZbXDrHiOqNHruwnUmGr7vld64V46LkmNDV1FHay8rnjfxfnn0C3 mjW3TKla/rMF18DNU9bhyv5YQwavaVa5wuJClPQFfqmodtF/9FOKCRa2zQoydC9x jKLD3DEKnP5jeKeE1Jm5ARLzA+qaQMV1BBkHzkRQGbbHP5tqh+IW+DwkJjLiDlx2 uxN0YDg8Mgl2PPPi6UwQ8ktDnwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFARayV90 CBPulXtxL/Vli4M0sn5/MB8GA1UdIwQYMBaAFJfOVo9kaCVkc/hLOLPOA+o1SeuJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQ0FCQy9DNTUxNjQxMjA1 QjkxMUVFQTkxMzBCMzdDNEY5QUUwMi9sODVXajJSb0pXUnotRXM0czg0RDZqVko2 NGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2w4NVdqMlJvSldSei1FczRzODRENmpWSjY0ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG Q0FCQy9DNTUxNjQxMjA1QjkxMUVFQTkxMzBCMzdDNEY5QUUwMi9sODVXajJSb0pX UnotRXM0czg0RDZqVko2NGsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDAYLjRoYX7YH0L4ggvnc0TIkF9WcE8ugEUDMywjQbDXVxTT+UAMBa1 jUB6Xu1R3FNtBzRgYYC+LF+OkHDg/UoOiOnjbYSeB9coevH4vF1V5O8a3ZJPigni /Wc40RQaG4hGPx+EFIN87fyH8rkccKdPCep89WNoKFBKgDz2PJHEsbJuL9oagkF7 db8TQBCn8XVpDFNbYRCjHEhmHjlzAQQyZSGBGgcSGL+imB/vxdJlCaNJxOUwjSo1 Q1zgXfQ7jufJ+BzZ608+hzFzyOBij9xF3xkO+YpG0U6NhcpjHVo36pLj8zYXaELR 8a48xIH81NqqPIFv1EONmCQTgHG541Qa -----END CERTIFICATE-----Generated at Wed Jun 4 00:04:13 2025 by rpki-client