$ rpki-client -vvf rpki.apnic.net/member_repository/A91A9B1B/4B3864D80E0B11EDA8D12E58C4F9AE02/S0QUrmheSI9CsbZH7qAd67DE86A.mft File: S0QUrmheSI9CsbZH7qAd67DE86A.mft (raw, json) Hash identifier: mGdpiqTbCs43uF/fqwvvOT55O8MneGqvR7vpwGbIHgE= Subject key identifier: 46:53:67:A7:92:1E:29:4B:B5:1F:0B:B6:89:C0:3C:AB:08:EB:E3:93 Authority key identifier: 4B:44:14:AE:68:5E:48:8F:42:B1:B6:47:EE:A0:1D:EB:B0:C4:F3:A0 Certificate issuer: /CN=A91A9B1B/serialNumber=4B4414AE685E488F42B1B647EEA01DEBB0C4F3A0 Certificate serial: 028B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/S0QUrmheSI9CsbZH7qAd67DE86A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A9B1B/4B3864D80E0B11EDA8D12E58C4F9AE02/S0QUrmheSI9CsbZH7qAd67DE86A.mft Manifest number: 0285 Signing time: Thu 03 Jul 2025 02:03:02 +0000 Manifest this update: Thu 03 Jul 2025 02:03:02 +0000 Manifest next update: Thu 10 Jul 2025 02:03:02 +0000 Files and hashes: 1: S0QUrmheSI9CsbZH7qAd67DE86A.crl (hash: s1W1HXYnb7DLjU+0E7psi50uVxPq+9oerbOhVoY+3GY=) 2: B3F935160E0F11ED89E89675C4F9AE02.roa (hash: FlIBDcsCI6hEzE/Hsl8Oo4AgNaxmcJbVTdpEo3OVvJM=) 3: B4A58FE60E0F11ED89E89675C4F9AE02.roa (hash: xbGvdrnN3RARHETkrmNSzdVV6UQzyx3squYg0aDBmMc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A9B1B/4B3864D80E0B11EDA8D12E58C4F9AE02/S0QUrmheSI9CsbZH7qAd67DE86A.crl rsync://rpki.apnic.net/member_repository/A91A9B1B/4B3864D80E0B11EDA8D12E58C4F9AE02/S0QUrmheSI9CsbZH7qAd67DE86A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/S0QUrmheSI9CsbZH7qAd67DE86A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 02:03:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 651 (0x28b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A9B1B, serialNumber=4B4414AE685E488F42B1B647EEA01DEBB0C4F3A0 Validity Not Before: Jul 3 02:03:02 2025 GMT Not After : Jul 10 02:03:02 2025 GMT Subject: CN=6865e4d6-d667 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:e9:59:a2:ac:c4:67:ad:7b:1c:77:c1:cf:ef: b3:fd:81:ed:d6:68:99:44:3d:31:19:0f:8f:fa:05: 96:a6:4b:70:61:bb:89:f9:7c:b9:e2:63:73:cd:9b: fa:fe:68:a5:f1:53:d0:5a:ee:67:8e:20:74:c9:10: 9a:0e:03:8d:0b:33:10:b8:78:e0:15:b9:4c:e9:8e: 12:fb:d8:14:1c:4a:27:63:4c:3c:2a:30:00:a7:16: e5:fa:8f:6e:15:a2:0a:55:02:53:81:0b:82:98:93: 61:c4:4a:7a:e3:f5:58:52:ee:84:4b:8c:18:a3:60: b6:62:c9:87:8c:4d:41:fe:17:f9:e6:a3:43:d2:92: 03:0a:0c:41:2d:9a:aa:2e:9c:a6:98:8e:29:fd:1a: 24:80:cc:db:ea:eb:81:13:22:a8:4e:38:93:4e:8f: 6f:72:d6:53:1c:9e:ec:42:52:d8:ad:f4:1a:36:b3: 00:8c:88:7a:ab:2e:cc:ce:04:4a:79:f6:d4:1d:51: c6:49:3d:6b:50:4f:35:8a:e2:c5:66:ca:91:c1:1c: f9:84:bd:62:10:a1:ce:f8:1a:bd:3f:b9:50:8b:27: 61:12:5b:7a:85:32:48:77:ce:e4:d2:65:6d:2c:32: 08:31:49:27:18:2b:b1:a7:27:5c:f4:11:6c:cc:b2: eb:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 46:53:67:A7:92:1E:29:4B:B5:1F:0B:B6:89:C0:3C:AB:08:EB:E3:93 X509v3 Authority Key Identifier: keyid:4B:44:14:AE:68:5E:48:8F:42:B1:B6:47:EE:A0:1D:EB:B0:C4:F3:A0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A9B1B/4B3864D80E0B11EDA8D12E58C4F9AE02/S0QUrmheSI9CsbZH7qAd67DE86A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/S0QUrmheSI9CsbZH7qAd67DE86A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A9B1B/4B3864D80E0B11EDA8D12E58C4F9AE02/S0QUrmheSI9CsbZH7qAd67DE86A.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4c:7f:93:85:89:9c:aa:4d:a4:6f:ed:e5:cd:24:f4:dd:4b:b5: e0:1d:73:d7:f3:21:c3:a9:74:dd:bc:9e:b0:ec:e1:54:41:98: 5d:2e:38:ef:6c:a5:ff:bd:b3:33:15:b4:6a:15:b9:18:01:92: 3d:6c:dd:68:8f:76:0d:f6:11:55:e2:58:9f:d9:f0:1c:40:fe: 83:64:14:c4:39:90:3b:e4:71:9c:e9:33:d7:df:0a:6e:4c:cd: a8:cc:39:bd:58:25:58:85:e3:a2:16:3c:25:8f:42:3f:f8:33: a0:61:21:52:2b:fc:91:79:7c:98:41:64:dc:ed:d5:eb:a0:a8: c7:8e:1b:e9:78:98:84:16:25:9d:87:fc:bb:08:df:4a:05:dc: 75:88:1e:3e:1f:13:af:1f:cd:27:64:b1:64:f8:cb:39:c5:0e: ce:e6:6a:55:4c:73:e1:f3:fc:2e:88:b9:f4:58:df:76:c9:f4: 78:70:30:98:14:32:ce:07:26:d9:08:5c:fd:3c:a8:41:d1:89: 8c:9b:cb:3e:24:da:ec:4c:b0:07:af:5f:7b:c1:ac:c6:9a:8a: 48:c1:5a:e5:c2:76:94:ef:53:fe:9d:5b:2e:0c:11:72:3e:6b: e0:17:b9:2b:75:73:c2:13:8d:b8:13:9a:6e:a8:6a:5e:f0:80: 01:4e:d3:60 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAoswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTlCMUIxMTAvBgNVBAUTKDRCNDQxNEFFNjg1RTQ4OEY0MkIxQjY0N0VFQTAxREVC QjBDNEYzQTAwHhcNMjUwNzAzMDIwMzAyWhcNMjUwNzEwMDIwMzAyWjAYMRYwFAYD VQQDEw02ODY1ZTRkNi1kNjY3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1ulZoqzEZ617HHfBz++z/YHt1miZRD0xGQ+P+gWWpktwYbuJ+Xy54mNzzZv6 /mil8VPQWu5njiB0yRCaDgONCzMQuHjgFblM6Y4S+9gUHEonY0w8KjAApxbl+o9u FaIKVQJTgQuCmJNhxEp64/VYUu6ES4wYo2C2YsmHjE1B/hf55qND0pIDCgxBLZqq LpymmI4p/RokgMzb6uuBEyKoTjiTTo9vctZTHJ7sQlLYrfQaNrMAjIh6qy7MzgRK efbUHVHGST1rUE81iuLFZsqRwRz5hL1iEKHO+Bq9P7lQiydhElt6hTJId87k0mVt LDIIMUknGCuxpydc9BFszLLr9QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEZTZ6eS HilLtR8LtonAPKsI6+OTMB8GA1UdIwQYMBaAFEtEFK5oXkiPQrG2R+6gHeuwxPOg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBOUIxQi80QjM4NjREODBF MEIxMUVEQThEMTJFNThDNEY5QUUwMi9TMFFVcm1oZVNJOUNzYlpIN3FBZDY3REU4 NkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1MwUVVybWhlU0k5Q3NiWkg3cUFkNjdERTg2QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB OUIxQi80QjM4NjREODBFMEIxMUVEQThEMTJFNThDNEY5QUUwMi9TMFFVcm1oZVNJ OUNzYlpIN3FBZDY3REU4NkEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBMf5OFiZyqTaRv7eXNJPTdS7XgHXPX8yHDqXTdvJ6w7OFUQZhdLjjv bKX/vbMzFbRqFbkYAZI9bN1oj3YN9hFV4lif2fAcQP6DZBTEOZA75HGc6TPX3wpu TM2ozDm9WCVYheOiFjwlj0I/+DOgYSFSK/yReXyYQWTc7dXroKjHjhvpeJiEFiWd h/y7CN9KBdx1iB4+HxOvH80nZLFk+Ms5xQ7O5mpVTHPh8/wuiLn0WN92yfR4cDCY FDLOBybZCFz9PKhB0YmMm8s+JNrsTLAHr197wazGmopIwVrlwnaU71P+nVsuDBFy PmvgF7krdXPCE424E5puqGpe8IABTtNg -----END CERTIFICATE-----Generated at Sat Jul 5 02:53:10 2025 by rpki-client