$ rpki-client -vvf rpki.apnic.net/member_repository/A91A31F5/A754D380D6EC11EFA2799C69C4F9AE02/SRNmdefiNOfS-IRZmOLGLbSIgso.mft File: SRNmdefiNOfS-IRZmOLGLbSIgso.mft (raw, json) Hash identifier: RUoc1k3hojZCUCCiRyBmfrHzi6boGIixPCXSbgXSycE= Subject key identifier: 75:F8:C4:F7:5D:22:77:FC:87:D8:3F:AC:B7:29:EA:31:E8:70:4D:5A Authority key identifier: 49:13:66:75:E7:E2:34:E7:D2:F8:84:59:98:E2:C6:2D:B4:88:82:CA Certificate issuer: /CN=A91A31F5/serialNumber=49136675E7E234E7D2F8845998E2C62DB48882CA Certificate serial: 56 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/SRNmdefiNOfS-IRZmOLGLbSIgso.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A31F5/A754D380D6EC11EFA2799C69C4F9AE02/SRNmdefiNOfS-IRZmOLGLbSIgso.mft Manifest number: 55 Signing time: Thu 03 Jul 2025 07:27:12 +0000 Manifest this update: Thu 03 Jul 2025 07:27:12 +0000 Manifest next update: Thu 10 Jul 2025 07:27:12 +0000 Files and hashes: 1: SRNmdefiNOfS-IRZmOLGLbSIgso.crl (hash: uy6YE8gnEJyKckazHQ2d2x0m/Ohd4lAo1tGwgzErrwc=) 2: A8A5C28ED6ED11EFB4D7876BC4F9AE02.roa (hash: XLgRz6Ys+AWKVb/kmctJ9W9xNxym6vJibxlk+kHS4Ys=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A31F5/A754D380D6EC11EFA2799C69C4F9AE02/SRNmdefiNOfS-IRZmOLGLbSIgso.crl rsync://rpki.apnic.net/member_repository/A91A31F5/A754D380D6EC11EFA2799C69C4F9AE02/SRNmdefiNOfS-IRZmOLGLbSIgso.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/SRNmdefiNOfS-IRZmOLGLbSIgso.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 86 (0x56) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A31F5, serialNumber=49136675E7E234E7D2F8845998E2C62DB48882CA Validity Not Before: Jul 3 07:27:12 2025 GMT Not After : Jul 10 07:27:12 2025 GMT Subject: CN=686630d0-252d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:59:a7:a3:01:2c:42:63:d6:f6:57:d8:48:82: ee:34:5a:87:a5:2b:59:a7:77:4b:32:74:a5:f9:be: 5d:0d:04:81:51:45:9b:0f:7f:b3:be:97:57:67:16: 21:e6:5d:c2:14:8d:43:25:1c:91:99:17:b3:0c:47: a9:2b:39:01:ef:e9:ea:0c:23:b0:39:64:b6:36:84: 87:92:95:07:50:e8:99:92:0f:0f:f4:04:c9:3e:f4: 50:3b:e7:87:28:d7:63:00:d4:6d:3a:89:da:8e:7a: 22:de:33:7b:1f:e2:cd:6f:35:a5:4b:74:86:21:df: a7:59:2f:db:5c:f6:5e:77:6c:19:b9:6c:90:f5:34: 3d:8a:80:62:0d:a1:a0:d5:c4:13:89:0f:ed:a1:61: 5e:a9:95:38:ea:0f:a3:12:72:b2:a0:67:ea:16:d0: 47:51:ac:3b:3e:67:95:9d:71:51:9a:88:3b:a9:96: b6:87:09:ba:8f:ef:e7:ac:d5:06:a2:99:2d:f7:fa: 2e:b4:f4:31:e4:41:8a:bd:24:58:d5:74:e7:2a:a5: f9:62:e2:e5:64:29:72:e5:ee:5b:af:59:13:b6:91: 8d:ed:fb:74:14:64:dd:ae:22:03:77:1c:82:99:48: 68:7e:d5:70:1d:23:ab:7f:31:90:03:41:f1:d5:0d: 11:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 75:F8:C4:F7:5D:22:77:FC:87:D8:3F:AC:B7:29:EA:31:E8:70:4D:5A X509v3 Authority Key Identifier: keyid:49:13:66:75:E7:E2:34:E7:D2:F8:84:59:98:E2:C6:2D:B4:88:82:CA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A31F5/A754D380D6EC11EFA2799C69C4F9AE02/SRNmdefiNOfS-IRZmOLGLbSIgso.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/SRNmdefiNOfS-IRZmOLGLbSIgso.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A31F5/A754D380D6EC11EFA2799C69C4F9AE02/SRNmdefiNOfS-IRZmOLGLbSIgso.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 55:21:ee:39:a8:6e:00:e2:8b:d0:8d:c5:a8:0e:42:7d:ff:8f: d8:57:58:ce:a5:69:92:70:10:f3:6b:d3:ef:2c:6d:8a:9d:d6: 88:cf:02:8c:d7:c2:fc:d2:0c:52:e9:b6:ba:ab:e6:de:06:e4: cf:87:70:19:fb:e4:8a:27:00:05:f8:da:9e:9d:54:82:bf:39: 49:23:8a:67:98:03:fc:c7:56:f7:16:9d:fd:89:5a:88:c0:10: a2:43:95:d9:7c:4f:e9:a8:21:6a:c0:da:eb:20:58:a1:3b:ed: f2:df:73:e6:39:d2:c4:8a:59:bf:64:e6:69:23:37:30:56:1e: b3:f8:64:24:ce:bb:0e:59:7a:5e:e4:47:f5:00:6e:fa:11:6b: 18:27:e3:7a:a5:10:51:36:21:c7:15:6b:c7:e5:df:05:6d:0b: be:60:74:f3:b8:66:3d:b2:93:11:56:1a:ef:94:0b:8c:29:f6: 23:35:73:ff:04:c8:73:a7:80:a5:04:93:91:f8:21:a5:0b:d4: c9:87:19:3d:90:8e:b7:ef:48:1f:a3:8c:48:a5:af:d9:77:1c: 41:e9:fb:18:f3:75:c7:71:24:01:2d:48:d2:41:3e:2d:43:08: a2:29:cc:25:f2:1b:b3:fd:d1:67:76:8a:1f:6f:70:aa:6e:12: 1b:c9:dc:7f -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBVjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFB MzFGNTExMC8GA1UEBRMoNDkxMzY2NzVFN0UyMzRFN0QyRjg4NDU5OThFMkM2MkRC NDg4ODJDQTAeFw0yNTA3MDMwNzI3MTJaFw0yNTA3MTAwNzI3MTJaMBgxFjAUBgNV BAMTDTY4NjYzMGQwLTI1MmQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDNWaejASxCY9b2V9hIgu40WoelK1mnd0sydKX5vl0NBIFRRZsPf7O+l1dnFiHm XcIUjUMlHJGZF7MMR6krOQHv6eoMI7A5ZLY2hIeSlQdQ6JmSDw/0BMk+9FA754co 12MA1G06idqOeiLeM3sf4s1vNaVLdIYh36dZL9tc9l53bBm5bJD1ND2KgGINoaDV xBOJD+2hYV6plTjqD6MScrKgZ+oW0EdRrDs+Z5WdcVGaiDuplraHCbqP7+es1Qai mS33+i609DHkQYq9JFjVdOcqpfli4uVkKXLl7luvWRO2kY3t+3QUZN2uIgN3HIKZ SGh+1XAdI6t/MZADQfHVDRF3AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUdfjE910i d/yH2D+stynqMehwTVowHwYDVR0jBBgwFoAUSRNmdefiNOfS+IRZmOLGLbSIgsow DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUEzMUY1L0E3NTREMzgwRDZF QzExRUZBMjc5OUM2OUM0RjlBRTAyL1NSTm1kZWZpTk9mUy1JUlptT0xHTGJTSWdz by5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvU1JObWRlZmlOT2ZTLUlSWm1PTEdMYlNJZ3NvLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUEz MUY1L0E3NTREMzgwRDZFQzExRUZBMjc5OUM2OUM0RjlBRTAyL1NSTm1kZWZpTk9m Uy1JUlptT0xHTGJTSWdzby5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAFUh7jmobgDii9CNxagOQn3/j9hXWM6laZJwEPNr0+8sbYqd1ojPAozX wvzSDFLptrqr5t4G5M+HcBn75IonAAX42p6dVIK/OUkjimeYA/zHVvcWnf2JWojA EKJDldl8T+moIWrA2usgWKE77fLfc+Y50sSKWb9k5mkjNzBWHrP4ZCTOuw5Zel7k R/UAbvoRaxgn43qlEFE2IccVa8fl3wVtC75gdPO4Zj2ykxFWGu+UC4wp9iM1c/8E yHOngKUEk5H4IaUL1MmHGT2QjrfvSB+jjEilr9l3HEHp+xjzdcdxJAEtSNJBPi1D CKIpzCXyG7P90Wd2ih9vcKpuEhvJ3H8= -----END CERTIFICATE-----Generated at Fri Jul 4 00:28:38 2025 by rpki-client