$ rpki-client -vvf rpki.apnic.net/member_repository/A91CE558/3DF14F08539411EABF6B4F5FC4F9AE02/s2uXFySjur2JC3VFmJM3IPly_q8.mft File: s2uXFySjur2JC3VFmJM3IPly_q8.mft (raw, json) Hash identifier: mdjGcXsMd3vaY/bvbVT9+bmyF+iQPxHiwOoXMYLTiuo= Subject key identifier: F8:24:FB:F3:4E:22:91:E9:08:F4:83:5A:A0:40:B8:B2:F9:B7:77:DE Authority key identifier: B3:6B:97:17:24:A3:BA:BD:89:0B:75:45:98:93:37:20:F9:72:FE:AF Certificate issuer: /CN=A91CE558/serialNumber=B36B971724A3BABD890B754598933720F972FEAF Certificate serial: 0B6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/s2uXFySjur2JC3VFmJM3IPly_q8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CE558/3DF14F08539411EABF6B4F5FC4F9AE02/s2uXFySjur2JC3VFmJM3IPly_q8.mft Manifest number: 0B14 Signing time: Mon 30 Jun 2025 19:37:37 +0000 Manifest this update: Mon 30 Jun 2025 19:37:37 +0000 Manifest next update: Mon 07 Jul 2025 19:37:37 +0000 Files and hashes: 1: s2uXFySjur2JC3VFmJM3IPly_q8.crl (hash: xNAWrXPVZYjF3fsKp0/k2rDY6BA64A1KMp//p04n7jQ=) 2: 466891560ADA11ECBFAECB29C4F9AE02.roa (hash: NDMWr6ROve032HDCvpKDnE+3M7NstRNL4WiBRR7Uc9w=) 3: F1EB46D2717F11EEB3FA0A5EC4F9AE02.roa (hash: /I1TFcJCz5aMzQNmIqNgkjKowqxPj9xlaCCXIBXOcD0=) 4: A7470BFC33A711EBA4313B36C4F9AE02.roa (hash: Z21inXGgFSeaHgz7iITM/kziF7zP/P4QOKxWDnYdlJ8=) 5: D992FDD49B4811EFA17EB17FC4F9AE02.roa (hash: 1gtmRzqYdhmA8CchuwScykbthJY4rmebTYSAnt6uzqg=) 6: B66F0C58817111EFB121970CC4F9AE02.roa (hash: lkpsOB7nfXsffwnZ1aU9Jr6eTZNpX/TpTJZNQqUrOs8=) 7: C1ACB1E819EF11EC84DBF462C4F9AE02.roa (hash: dhvSYCoAete6HzssYv/JSdKEV/Z2KYxpkGxKw9YFSAY=) 8: 966FD4648D2411EF9914EF63C4F9AE02.roa (hash: dGWItSoIfDWTw5ONmMmmwGOtu0hUpDaFw6KptrVVUfk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CE558/3DF14F08539411EABF6B4F5FC4F9AE02/s2uXFySjur2JC3VFmJM3IPly_q8.crl rsync://rpki.apnic.net/member_repository/A91CE558/3DF14F08539411EABF6B4F5FC4F9AE02/s2uXFySjur2JC3VFmJM3IPly_q8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/s2uXFySjur2JC3VFmJM3IPly_q8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Jul 2025 19:37:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2923 (0xb6b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CE558, serialNumber=B36B971724A3BABD890B754598933720F972FEAF Validity Not Before: Jun 30 19:37:37 2025 GMT Not After : Jul 7 19:37:37 2025 GMT Subject: CN=6862e781-5ad9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:2a:09:95:93:e7:33:0e:d1:91:05:56:78:18: 8a:07:4f:03:fe:34:20:9d:87:d0:15:b2:22:a8:93: 6a:2b:c5:24:24:f0:78:5f:0c:41:fe:b9:4f:f6:d7: 36:44:38:d9:3a:1c:cf:66:60:30:83:ad:a5:3d:0f: f1:83:1b:35:5c:a9:74:b0:15:cd:7a:46:26:9a:c8: 87:44:12:8e:80:28:5c:a5:75:cd:2e:82:68:45:85: ae:d5:bd:9c:9c:5c:f9:52:16:6e:5b:72:da:60:f5: cf:ab:6a:6c:cb:91:1c:fa:25:ef:31:96:7b:c1:91: 38:bd:b8:8f:5b:ad:ef:9f:55:d0:86:d4:c5:cd:99: e0:d2:b6:6d:7d:5b:43:5d:54:a8:4b:3b:e4:9c:cf: 8c:d2:d0:11:a6:b9:83:73:b1:4b:7e:87:3f:34:37: 48:2d:2b:40:68:3e:8f:97:45:63:5b:62:63:3c:05: cf:93:b3:5a:ae:e5:69:72:c3:16:cb:1a:a9:89:cd: b6:98:47:b3:d3:c4:aa:d6:d0:d1:f4:91:23:a2:6d: 80:47:c8:5c:58:14:76:e3:da:88:d5:f3:ca:51:5d: 9f:5f:08:41:6c:1b:60:28:62:da:28:dd:79:83:26: a3:f6:cc:97:39:be:15:62:a4:97:20:71:a7:29:33: 9f:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F8:24:FB:F3:4E:22:91:E9:08:F4:83:5A:A0:40:B8:B2:F9:B7:77:DE X509v3 Authority Key Identifier: keyid:B3:6B:97:17:24:A3:BA:BD:89:0B:75:45:98:93:37:20:F9:72:FE:AF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CE558/3DF14F08539411EABF6B4F5FC4F9AE02/s2uXFySjur2JC3VFmJM3IPly_q8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/s2uXFySjur2JC3VFmJM3IPly_q8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CE558/3DF14F08539411EABF6B4F5FC4F9AE02/s2uXFySjur2JC3VFmJM3IPly_q8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2f:14:3c:69:7e:85:e1:1b:c8:b9:de:91:0d:9d:90:bd:94:02: ff:a3:55:60:0a:d9:93:49:23:f1:d8:32:dd:5c:fb:e9:e5:59: 78:cb:b4:59:05:37:3a:0c:a4:3e:1d:a7:90:19:c4:38:44:d2: 04:84:8f:55:8c:54:a4:ef:8d:c4:86:0a:9f:ea:8b:e8:5c:da: 31:62:4b:e1:4b:21:c1:4e:78:4d:a5:e2:0b:e8:e2:ca:46:b7: 79:27:6c:15:8f:79:b8:a4:7b:b2:05:8f:df:e5:af:92:fb:64: b6:35:27:6a:12:9a:54:c7:14:c9:ff:9a:dd:3e:18:ba:29:eb: 23:f9:d7:d1:bd:65:9b:be:e2:b1:3f:99:78:42:5d:25:64:c7: 9b:c7:8f:98:9b:5d:58:43:2d:65:ae:a5:a2:92:69:af:12:78: 97:30:1e:fe:30:02:58:b2:fe:10:01:2c:51:5e:58:87:53:2a: 2c:6a:1b:17:ee:97:75:e2:7c:94:98:e6:c9:30:8c:68:ea:15: c2:63:a1:aa:2c:0a:a9:67:21:8b:8d:b6:b9:3f:2f:3a:81:d8: b0:bf:cb:8a:59:5c:88:80:e0:69:e7:3a:34:e1:a5:36:e5:3a: c4:06:c4:95:8e:29:ed:94:b4:aa:5d:3b:e1:54:56:07:71:03: a2:25:d1:7c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC2swDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0U1NTgxMTAvBgNVBAUTKEIzNkI5NzE3MjRBM0JBQkQ4OTBCNzU0NTk4OTMzNzIw Rjk3MkZFQUYwHhcNMjUwNjMwMTkzNzM3WhcNMjUwNzA3MTkzNzM3WjAYMRYwFAYD VQQDEw02ODYyZTc4MS01YWQ5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwyoJlZPnMw7RkQVWeBiKB08D/jQgnYfQFbIiqJNqK8UkJPB4XwxB/rlP9tc2 RDjZOhzPZmAwg62lPQ/xgxs1XKl0sBXNekYmmsiHRBKOgChcpXXNLoJoRYWu1b2c nFz5UhZuW3LaYPXPq2psy5Ec+iXvMZZ7wZE4vbiPW63vn1XQhtTFzZng0rZtfVtD XVSoSzvknM+M0tARprmDc7FLfoc/NDdILStAaD6Pl0VjW2JjPAXPk7NaruVpcsMW yxqpic22mEez08Sq1tDR9JEjom2AR8hcWBR249qI1fPKUV2fXwhBbBtgKGLaKN15 gyaj9syXOb4VYqSXIHGnKTOfOQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPgk+/NO IpHpCPSDWqBAuLL5t3feMB8GA1UdIwQYMBaAFLNrlxcko7q9iQt1RZiTNyD5cv6v MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRTU1OC8zREYxNEYwODUz OTQxMUVBQkY2QjRGNUZDNEY5QUUwMi9zMnVYRnlTanVyMkpDM1ZGbUpNM0lQbHlf cTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3MydVhGeVNqdXIySkMzVkZtSk0zSVBseV9xOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RTU1OC8zREYxNEYwODUzOTQxMUVBQkY2QjRGNUZDNEY5QUUwMi9zMnVYRnlTanVy MkpDM1ZGbUpNM0lQbHlfcTgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAvFDxpfoXhG8i53pENnZC9lAL/o1VgCtmTSSPx2DLdXPvp5Vl4y7RZ BTc6DKQ+HaeQGcQ4RNIEhI9VjFSk743Ehgqf6ovoXNoxYkvhSyHBTnhNpeIL6OLK Rrd5J2wVj3m4pHuyBY/f5a+S+2S2NSdqEppUxxTJ/5rdPhi6Kesj+dfRvWWbvuKx P5l4Ql0lZMebx4+Ym11YQy1lrqWikmmvEniXMB7+MAJYsv4QASxRXliHUyosahsX 7pd14nyUmObJMIxo6hXCY6GqLAqpZyGLjba5Py86gdiwv8uKWVyIgOBp5zo04aU2 5TrEBsSVjintlLSqXTvhVFYHcQOiJdF8 -----END CERTIFICATE-----Generated at Tue Jul 1 12:39:48 2025 by rpki-client