$ rpki-client -vvf rpki.apnic.net/member_repository/A91B31CE/6B05607A7CCD11EBAEC6A974C4F9AE02/S0fJxk08IyF6Fd2rh0fDncMBhPI.mft File: S0fJxk08IyF6Fd2rh0fDncMBhPI.mft (raw, json) Hash identifier: 8GSCfVG8CqWNHaPD1bhBsEq9mB3p0x+rIIMeX58wx+g= Subject key identifier: 1F:7A:3B:06:B4:35:2F:26:9D:82:FC:D3:60:E0:48:93:91:10:6E:F3 Authority key identifier: 4B:47:C9:C6:4D:3C:23:21:7A:15:DD:AB:87:47:C3:9D:C3:01:84:F2 Certificate issuer: /CN=A91B31CE/serialNumber=4B47C9C64D3C23217A15DDAB8747C39DC30184F2 Certificate serial: 0699 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/S0fJxk08IyF6Fd2rh0fDncMBhPI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B31CE/6B05607A7CCD11EBAEC6A974C4F9AE02/S0fJxk08IyF6Fd2rh0fDncMBhPI.mft Manifest number: 0690 Signing time: Sat 28 Jun 2025 21:55:25 +0000 Manifest this update: Sat 28 Jun 2025 21:55:25 +0000 Manifest next update: Sat 05 Jul 2025 21:55:25 +0000 Files and hashes: 1: S0fJxk08IyF6Fd2rh0fDncMBhPI.crl (hash: mEzUoy84nvX13P8UAgy9WlC8qqT8FrfMDabLvG+eF9U=) 2: AA51390A822B11EE8B95E475C4F9AE02.roa (hash: iVoQ4DzarwOJUrSELiNWak+s+ohZp/LfOai+uGXnZZw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B31CE/6B05607A7CCD11EBAEC6A974C4F9AE02/S0fJxk08IyF6Fd2rh0fDncMBhPI.crl rsync://rpki.apnic.net/member_repository/A91B31CE/6B05607A7CCD11EBAEC6A974C4F9AE02/S0fJxk08IyF6Fd2rh0fDncMBhPI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/S0fJxk08IyF6Fd2rh0fDncMBhPI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 05 Jul 2025 21:55:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1689 (0x699) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B31CE, serialNumber=4B47C9C64D3C23217A15DDAB8747C39DC30184F2 Validity Not Before: Jun 28 21:55:25 2025 GMT Not After : Jul 5 21:55:25 2025 GMT Subject: CN=686064cd-39b5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:d7:e0:1a:c3:bf:2a:ac:07:c9:e4:8c:0e:45: 99:31:a9:02:dc:5a:36:d5:aa:94:93:cf:71:31:05: f2:9e:a5:c7:17:ae:26:cc:ec:be:3b:2e:27:fe:c2: 78:ec:2c:3b:71:6e:83:61:ec:25:b0:9c:ad:7a:12: 1a:51:60:ef:0b:e1:11:65:92:f8:05:89:8f:9a:4b: e7:e7:d9:80:f7:29:02:17:10:c9:a7:a0:7f:c6:e1: e9:23:85:40:89:5a:72:67:bd:40:12:8c:58:35:d4: 3c:99:52:3b:db:d7:0b:4e:3b:80:81:98:71:c7:81: a1:38:14:42:aa:fd:c2:95:c1:77:be:ea:a6:3a:b3: ca:ff:ef:14:2f:04:81:d1:48:8f:cd:06:bf:23:78: 81:4b:6d:51:12:3c:6f:b6:e6:a9:c1:2c:be:b4:e1: 63:cd:a9:fd:00:44:f9:b6:8b:43:d3:6e:78:9f:c1: fd:61:f0:71:60:9b:bd:0e:b7:9c:cb:d6:02:4d:46: a6:40:8a:18:46:3b:ba:a5:35:7b:e2:69:d4:59:70: df:2b:85:1a:80:a3:67:f0:c7:ab:b4:7f:90:6b:93: 0a:c0:a3:62:cb:89:8c:3a:17:e1:ad:9f:e6:4d:aa: 8c:fb:37:18:fd:0a:b6:03:eb:43:3d:9d:29:44:d5: 52:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1F:7A:3B:06:B4:35:2F:26:9D:82:FC:D3:60:E0:48:93:91:10:6E:F3 X509v3 Authority Key Identifier: keyid:4B:47:C9:C6:4D:3C:23:21:7A:15:DD:AB:87:47:C3:9D:C3:01:84:F2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B31CE/6B05607A7CCD11EBAEC6A974C4F9AE02/S0fJxk08IyF6Fd2rh0fDncMBhPI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/S0fJxk08IyF6Fd2rh0fDncMBhPI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B31CE/6B05607A7CCD11EBAEC6A974C4F9AE02/S0fJxk08IyF6Fd2rh0fDncMBhPI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5d:f1:6c:1f:33:dc:25:a8:13:35:32:6e:bb:a9:fa:59:53:94: ce:cf:29:ae:f7:c0:e0:aa:5a:c8:62:e7:4e:b5:09:95:09:da: e5:35:a8:c6:f2:3c:77:d4:63:5d:1b:f3:47:88:28:76:9e:90: 6f:b0:79:95:3e:c9:6a:9b:aa:5b:49:88:0a:1f:d3:d3:a8:97: 85:15:1a:70:0e:aa:f3:58:e8:7c:ff:c2:57:76:11:00:5d:07: 08:a3:c7:21:1e:d6:30:a1:a6:c1:22:b1:d0:e5:f7:9d:f9:e8: 2e:e6:31:08:e2:38:3f:fd:4b:69:b1:34:c3:07:37:91:23:b5: 03:b6:e3:d1:5c:7e:a3:fb:a2:42:62:ee:2d:98:76:cc:46:c4: 28:cd:e2:7a:0d:57:a5:6e:d4:9d:3a:b7:40:c8:5c:9d:ec:1a: 18:67:58:3e:9a:ef:4f:6c:c5:ba:fe:23:78:eb:38:79:9e:e7: 12:79:92:1b:15:8e:19:c3:10:66:85:5f:b8:86:11:4f:11:11: fc:36:9c:19:3d:82:cb:50:52:6f:8d:9d:e2:76:25:75:82:86: 97:2d:51:f4:fe:a4:d0:69:73:86:69:55:7b:e0:63:a2:10:63: 2a:84:35:75:45:76:b6:94:01:92:24:5c:8f:ab:e3:c3:ad:7e: ef:8f:7b:5b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBpkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjMxQ0UxMTAvBgNVBAUTKDRCNDdDOUM2NEQzQzIzMjE3QTE1RERBQjg3NDdDMzlE QzMwMTg0RjIwHhcNMjUwNjI4MjE1NTI1WhcNMjUwNzA1MjE1NTI1WjAYMRYwFAYD VQQDEw02ODYwNjRjZC0zOWI1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxtfgGsO/KqwHyeSMDkWZMakC3Fo21aqUk89xMQXynqXHF64mzOy+Oy4n/sJ4 7Cw7cW6DYewlsJytehIaUWDvC+ERZZL4BYmPmkvn59mA9ykCFxDJp6B/xuHpI4VA iVpyZ71AEoxYNdQ8mVI729cLTjuAgZhxx4GhOBRCqv3ClcF3vuqmOrPK/+8ULwSB 0UiPzQa/I3iBS21REjxvtuapwSy+tOFjzan9AET5totD0254n8H9YfBxYJu9Drec y9YCTUamQIoYRju6pTV74mnUWXDfK4UagKNn8MertH+Qa5MKwKNiy4mMOhfhrZ/m TaqM+zcY/Qq2A+tDPZ0pRNVSPQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFB96Owa0 NS8mnYL802DgSJOREG7zMB8GA1UdIwQYMBaAFEtHycZNPCMhehXdq4dHw53DAYTy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMzFDRS82QjA1NjA3QTdD Q0QxMUVCQUVDNkE5NzRDNEY5QUUwMi9TMGZKeGswOEl5RjZGZDJyaDBmRG5jTUJo UEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1MwZkp4azA4SXlGNkZkMnJoMGZEbmNNQmhQSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC MzFDRS82QjA1NjA3QTdDQ0QxMUVCQUVDNkE5NzRDNEY5QUUwMi9TMGZKeGswOEl5 RjZGZDJyaDBmRG5jTUJoUEkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBd8WwfM9wlqBM1Mm67qfpZU5TOzymu98DgqlrIYudOtQmVCdrlNajG 8jx31GNdG/NHiCh2npBvsHmVPslqm6pbSYgKH9PTqJeFFRpwDqrzWOh8/8JXdhEA XQcIo8chHtYwoabBIrHQ5fed+egu5jEI4jg//UtpsTTDBzeRI7UDtuPRXH6j+6JC Yu4tmHbMRsQozeJ6DVelbtSdOrdAyFyd7BoYZ1g+mu9PbMW6/iN46zh5nucSeZIb FY4ZwxBmhV+4hhFPERH8NpwZPYLLUFJvjZ3idiV1goaXLVH0/qTQaXOGaVV74GOi EGMqhDV1RXa2lAGSJFyPq+PDrX7vj3tb -----END CERTIFICATE-----Generated at Sun Jun 29 17:52:38 2025 by rpki-client