$ rpki-client -vvf rpki.apnic.net/member_repository/A91A8A52/FB7E4BDE70B511ED93F0DD16C4F9AE02/cS61otcGnxjunGXzsBMnGtvx9UA.mft File: cS61otcGnxjunGXzsBMnGtvx9UA.mft (raw, json) Hash identifier: 4B5dRsFHfrR+9uGw91nPQ1JcOIvJUDKmPNyWiEcsyOg= Subject key identifier: 67:41:C2:6C:ED:57:20:E0:5C:7B:DA:40:60:66:09:BD:8E:F1:7F:53 Authority key identifier: 71:2E:B5:A2:D7:06:9F:18:EE:9C:65:F3:B0:13:27:1A:DB:F1:F5:40 Certificate issuer: /CN=A91A8A52/serialNumber=712EB5A2D7069F18EE9C65F3B013271ADBF1F540 Certificate serial: 01F8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cS61otcGnxjunGXzsBMnGtvx9UA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A8A52/FB7E4BDE70B511ED93F0DD16C4F9AE02/cS61otcGnxjunGXzsBMnGtvx9UA.mft Manifest number: 01EC Signing time: Thu 03 Jul 2025 02:43:52 +0000 Manifest this update: Thu 03 Jul 2025 02:43:51 +0000 Manifest next update: Thu 10 Jul 2025 02:43:51 +0000 Files and hashes: 1: cS61otcGnxjunGXzsBMnGtvx9UA.crl (hash: fk/3V/vv199iuNtJAC0XsHYRtQ9pVJzg+S9KO5GNyIk=) 2: 655B85F0225B11EFADDE6F63C4F9AE02.roa (hash: n2zLDtDaPNL3Ye6qBkwU/zpDC2mfhiqQ0N3aGF+8gOs=) 3: 8F14EDAA70B911EDB6E1F81BC4F9AE02.roa (hash: KwJcRfcCHNm1/1H4hZVLWjzBmRVSuYEae2GuTglAJm0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A8A52/FB7E4BDE70B511ED93F0DD16C4F9AE02/cS61otcGnxjunGXzsBMnGtvx9UA.crl rsync://rpki.apnic.net/member_repository/A91A8A52/FB7E4BDE70B511ED93F0DD16C4F9AE02/cS61otcGnxjunGXzsBMnGtvx9UA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cS61otcGnxjunGXzsBMnGtvx9UA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 02:43:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 504 (0x1f8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A8A52, serialNumber=712EB5A2D7069F18EE9C65F3B013271ADBF1F540 Validity Not Before: Jul 3 02:43:51 2025 GMT Not After : Jul 10 02:43:51 2025 GMT Subject: CN=6865ee68-8179 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:ee:e9:31:21:70:26:0f:b1:60:15:7e:eb:35: 04:ca:4e:be:04:8b:0f:de:ed:36:10:e4:76:03:d0: d5:c3:59:85:a4:17:f7:d2:2a:a3:41:ec:72:b8:51: 1f:88:25:5b:67:e1:a4:c9:22:9f:56:88:3d:03:4e: f2:df:6b:a5:09:fa:1f:7c:3f:b5:27:c3:bb:16:18: c3:01:87:ea:47:6d:72:60:f9:cc:62:2a:2d:5b:fc: 68:13:20:a9:b6:eb:a5:b1:96:05:9e:5f:00:04:d2: e8:8e:29:e9:64:c1:b7:d1:82:fd:3c:5a:d6:bb:ff: 42:60:5f:5b:b7:4a:bc:dd:09:34:cc:d3:40:af:52: 49:0a:35:75:46:6a:17:f2:40:90:b5:6c:dd:bd:d4: 23:3b:92:ca:93:71:4c:5f:af:07:23:7c:2b:75:1f: f0:c2:8c:35:cd:93:5f:7a:c7:8b:82:db:b8:53:af: 6e:44:dc:01:65:6c:e4:7a:17:2c:9f:e2:4c:73:5e: cb:da:5a:9d:d9:b9:09:d9:c8:70:0d:e4:1a:d5:17: 99:d2:8e:b6:da:82:59:f4:3d:f7:f3:f5:5c:a3:54: 9c:3a:cb:64:41:e3:22:45:84:ce:f2:b6:48:94:fd: 1d:83:d4:a2:a4:9c:a6:82:7e:de:40:0c:fc:d2:b5: d3:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:41:C2:6C:ED:57:20:E0:5C:7B:DA:40:60:66:09:BD:8E:F1:7F:53 X509v3 Authority Key Identifier: keyid:71:2E:B5:A2:D7:06:9F:18:EE:9C:65:F3:B0:13:27:1A:DB:F1:F5:40 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A8A52/FB7E4BDE70B511ED93F0DD16C4F9AE02/cS61otcGnxjunGXzsBMnGtvx9UA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cS61otcGnxjunGXzsBMnGtvx9UA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A8A52/FB7E4BDE70B511ED93F0DD16C4F9AE02/cS61otcGnxjunGXzsBMnGtvx9UA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a8:3c:94:ba:b1:4c:54:00:a4:30:ac:19:cb:e7:d2:f9:05:02: 75:f4:41:1d:b2:c2:6c:c1:a5:e6:0c:93:7b:e4:58:65:4a:10: cb:11:3e:5b:a1:d0:13:94:62:f3:e6:7a:55:c7:ce:b2:9e:6b: 2e:bf:74:0f:ef:bb:f1:b8:d2:7d:a6:3d:f1:06:6e:18:22:c3: 3b:58:65:f3:64:34:cb:91:90:14:8e:2f:97:e1:01:0a:5c:c8: 2b:bf:a1:00:55:9a:62:0c:e9:33:fd:46:4a:5a:d2:14:a0:e0: cb:26:4c:f0:eb:f3:d8:9e:d2:8c:e1:57:5b:e7:61:11:0f:28: 30:1a:09:58:42:ee:35:f1:83:ab:3a:4a:55:1a:9a:6d:00:2d: 24:38:ed:0d:80:11:d8:60:8a:51:7c:0b:05:ae:2f:08:52:dd: a4:63:f1:df:88:08:47:51:02:84:d3:66:ef:b2:94:9f:39:58: cb:d8:c8:03:62:2a:21:7b:51:e7:ca:24:46:74:a8:3d:d7:1f: 50:5f:68:c2:12:1b:65:3d:76:98:03:1b:95:30:09:0c:94:1d: bb:11:3d:f8:12:54:4d:80:c7:8a:67:e2:78:55:9a:a4:c4:78: 97:4e:0b:59:df:d7:d7:09:cc:15:bb:86:26:25:a1:38:a0:08: 0c:f7:41:44 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAfgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QThBNTIxMTAvBgNVBAUTKDcxMkVCNUEyRDcwNjlGMThFRTlDNjVGM0IwMTMyNzFB REJGMUY1NDAwHhcNMjUwNzAzMDI0MzUxWhcNMjUwNzEwMDI0MzUxWjAYMRYwFAYD VQQDEw02ODY1ZWU2OC04MTc5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAne7pMSFwJg+xYBV+6zUEyk6+BIsP3u02EOR2A9DVw1mFpBf30iqjQexyuFEf iCVbZ+GkySKfVog9A07y32ulCfoffD+1J8O7FhjDAYfqR21yYPnMYiotW/xoEyCp tuulsZYFnl8ABNLojinpZMG30YL9PFrWu/9CYF9bt0q83Qk0zNNAr1JJCjV1RmoX 8kCQtWzdvdQjO5LKk3FMX68HI3wrdR/wwow1zZNfeseLgtu4U69uRNwBZWzkehcs n+JMc17L2lqd2bkJ2chwDeQa1ReZ0o622oJZ9D338/Vco1ScOstkQeMiRYTO8rZI lP0dg9SipJymgn7eQAz80rXTSwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGdBwmzt VyDgXHvaQGBmCb2O8X9TMB8GA1UdIwQYMBaAFHEutaLXBp8Y7pxl87ATJxrb8fVA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBOEE1Mi9GQjdFNEJERTcw QjUxMUVEOTNGMEREMTZDNEY5QUUwMi9jUzYxb3RjR254anVuR1h6c0JNbkd0dng5 VUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NTNjFvdGNHbnhqdW5HWHpzQk1uR3R2eDlVQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB OEE1Mi9GQjdFNEJERTcwQjUxMUVEOTNGMEREMTZDNEY5QUUwMi9jUzYxb3RjR254 anVuR1h6c0JNbkd0dng5VUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCoPJS6sUxUAKQwrBnL59L5BQJ19EEdssJswaXmDJN75FhlShDLET5b odATlGLz5npVx86ynmsuv3QP77vxuNJ9pj3xBm4YIsM7WGXzZDTLkZAUji+X4QEK XMgrv6EAVZpiDOkz/UZKWtIUoODLJkzw6/PYntKM4Vdb52ERDygwGglYQu418YOr OkpVGpptAC0kOO0NgBHYYIpRfAsFri8IUt2kY/HfiAhHUQKE02bvspSfOVjL2MgD Yiohe1HnyiRGdKg91x9QX2jCEhtlPXaYAxuVMAkMlB27ET34ElRNgMeKZ+J4VZqk xHiXTgtZ39fXCcwVu4YmJaE4oAgM90FE -----END CERTIFICATE-----Generated at Thu Jul 3 23:31:51 2025 by rpki-client