$ rpki-client -vvf rpki.apnic.net/member_repository/A91DC33B/B4C9FE9206F511E89618F42FC4F9AE02/S0Nd1JrBEcPde6D08IaF8hZRWFk.mft File: S0Nd1JrBEcPde6D08IaF8hZRWFk.mft (raw, json) Hash identifier: KocIjIj8vSlbRk4XUq2Dtt+jNCJbkjfGcaFVsbpU78I= Subject key identifier: 1D:61:A3:81:EF:FF:A1:B2:F0:0B:4A:3F:E4:BE:AE:77:A6:C3:4B:20 Authority key identifier: 4B:43:5D:D4:9A:C1:11:C3:DD:7B:A0:F4:F0:86:85:F2:16:51:58:59 Certificate issuer: /CN=A91DC33B/serialNumber=4B435DD49AC111C3DD7BA0F4F08685F216515859 Certificate serial: 167E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/S0Nd1JrBEcPde6D08IaF8hZRWFk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DC33B/B4C9FE9206F511E89618F42FC4F9AE02/S0Nd1JrBEcPde6D08IaF8hZRWFk.mft Manifest number: 1677 Signing time: Sat 28 Jun 2025 16:33:40 +0000 Manifest this update: Sat 28 Jun 2025 16:33:39 +0000 Manifest next update: Sat 05 Jul 2025 16:33:39 +0000 Files and hashes: 1: S0Nd1JrBEcPde6D08IaF8hZRWFk.crl (hash: XW2Jf/OnugFqnfTuqFq2JqrfOM+cR6cHwkDAoThtbxA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DC33B/B4C9FE9206F511E89618F42FC4F9AE02/S0Nd1JrBEcPde6D08IaF8hZRWFk.crl rsync://rpki.apnic.net/member_repository/A91DC33B/B4C9FE9206F511E89618F42FC4F9AE02/S0Nd1JrBEcPde6D08IaF8hZRWFk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/S0Nd1JrBEcPde6D08IaF8hZRWFk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 05 Jul 2025 16:33:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5758 (0x167e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DC33B, serialNumber=4B435DD49AC111C3DD7BA0F4F08685F216515859 Validity Not Before: Jun 28 16:33:39 2025 GMT Not After : Jul 5 16:33:39 2025 GMT Subject: CN=68601964-ee94 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:46:a5:f5:61:d9:3d:2f:03:32:90:fd:08:ba: 7f:70:e7:02:0b:78:0d:5b:9b:4b:67:32:a3:32:1a: ca:68:b4:fb:28:0c:10:53:47:18:e8:61:cf:68:7c: f4:8b:61:fc:62:6c:04:a2:ba:4e:87:63:b2:25:c1: 4d:09:7c:ba:9a:49:f5:20:5f:78:0a:ea:8a:94:97: 45:33:07:60:cc:79:8b:35:b5:40:d8:84:66:a4:66: d8:86:f5:4a:27:ad:0d:22:75:ff:90:bc:fe:f5:c7: 19:7c:c2:a0:4a:38:79:36:cd:a8:ed:7e:1a:19:5e: c9:ef:67:3a:87:03:6b:1d:0a:96:cf:94:fd:60:af: 2a:83:9d:6d:75:54:9f:17:33:11:10:42:90:62:10: fb:57:34:a5:6a:a8:e9:97:4b:2b:b0:79:10:fb:2d: 6c:f9:5a:76:63:8f:75:e3:64:c9:c4:9d:31:71:0b: 54:13:10:02:15:22:3d:61:ff:4a:f9:f1:93:4f:97: 89:00:4d:9f:3b:e8:e7:69:79:f6:e4:c2:c3:38:b7: 52:5e:1e:3f:2c:c3:fb:df:2f:10:02:67:9b:7a:b0: 83:dd:ef:95:ca:cb:a5:62:81:8e:cf:d7:e9:32:e8: 1a:2a:e3:02:c4:a9:24:af:0d:6c:fe:52:e7:37:99: 14:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1D:61:A3:81:EF:FF:A1:B2:F0:0B:4A:3F:E4:BE:AE:77:A6:C3:4B:20 X509v3 Authority Key Identifier: keyid:4B:43:5D:D4:9A:C1:11:C3:DD:7B:A0:F4:F0:86:85:F2:16:51:58:59 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DC33B/B4C9FE9206F511E89618F42FC4F9AE02/S0Nd1JrBEcPde6D08IaF8hZRWFk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/S0Nd1JrBEcPde6D08IaF8hZRWFk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DC33B/B4C9FE9206F511E89618F42FC4F9AE02/S0Nd1JrBEcPde6D08IaF8hZRWFk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a2:25:17:9f:28:7b:d4:3b:50:cd:f4:23:e2:2d:25:f6:ad:33: 18:b0:e5:e2:44:44:bd:62:72:be:44:eb:0c:2b:ca:8d:0d:0e: d4:1a:85:c0:9a:94:20:eb:68:42:9e:4c:1a:bb:2e:19:5f:0b: c9:1a:c1:80:e1:2a:5d:a4:e2:b9:ec:e5:b6:2d:95:36:f8:b7: b7:a0:cb:01:10:06:e7:9c:9c:bb:ba:ee:fe:f9:24:e3:1e:e7: 49:b0:ae:c6:9d:78:a0:40:02:2f:9a:b1:85:b0:5f:ca:9d:de: 89:1b:43:de:84:b8:e6:52:1a:1d:94:5c:14:36:52:f0:ea:ed: 0c:e6:95:0b:7e:f6:2b:b5:20:39:f8:4f:11:03:de:10:49:dc: 21:48:58:de:7e:57:ba:0c:2d:3c:2d:a5:61:00:36:4f:2a:b3: e9:7e:92:c5:6a:23:b7:6f:75:32:de:03:6c:fc:51:d9:41:40: a8:37:fa:01:84:25:ab:c5:5a:c0:fc:d6:5d:23:e2:18:0d:6d: 65:45:27:39:10:96:7b:fb:61:b8:94:77:30:13:28:20:38:df: cb:8c:5e:e4:7f:0f:6d:e7:b6:ab:a5:49:20:a9:17:7e:10:cb: db:6f:5a:5e:28:3a:bc:f0:ad:48:d8:ed:3e:3e:d7:b4:66:8e: 67:df:a5:9d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICFn4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REMzM0IxMTAvBgNVBAUTKDRCNDM1REQ0OUFDMTExQzNERDdCQTBGNEYwODY4NUYy MTY1MTU4NTkwHhcNMjUwNjI4MTYzMzM5WhcNMjUwNzA1MTYzMzM5WjAYMRYwFAYD VQQDEw02ODYwMTk2NC1lZTk0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwkal9WHZPS8DMpD9CLp/cOcCC3gNW5tLZzKjMhrKaLT7KAwQU0cY6GHPaHz0 i2H8YmwEorpOh2OyJcFNCXy6mkn1IF94CuqKlJdFMwdgzHmLNbVA2IRmpGbYhvVK J60NInX/kLz+9ccZfMKgSjh5Ns2o7X4aGV7J72c6hwNrHQqWz5T9YK8qg51tdVSf FzMREEKQYhD7VzSlaqjpl0srsHkQ+y1s+Vp2Y49142TJxJ0xcQtUExACFSI9Yf9K +fGTT5eJAE2fO+jnaXn25MLDOLdSXh4/LMP73y8QAmeberCD3e+VysulYoGOz9fp MugaKuMCxKkkrw1s/lLnN5kUzwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFB1ho4Hv /6Gy8AtKP+S+rnemw0sgMB8GA1UdIwQYMBaAFEtDXdSawRHD3Xug9PCGhfIWUVhZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQzMzQi9CNEM5RkU5MjA2 RjUxMUU4OTYxOEY0MkZDNEY5QUUwMi9TME5kMUpyQkVjUGRlNkQwOElhRjhoWlJX RmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1MwTmQxSnJCRWNQZGU2RDA4SWFGOGhaUldGay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QzMzQi9CNEM5RkU5MjA2RjUxMUU4OTYxOEY0MkZDNEY5QUUwMi9TME5kMUpyQkVj UGRlNkQwOElhRjhoWlJXRmsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCiJRefKHvUO1DN9CPiLSX2rTMYsOXiRES9YnK+ROsMK8qNDQ7UGoXA mpQg62hCnkwauy4ZXwvJGsGA4SpdpOK57OW2LZU2+Le3oMsBEAbnnJy7uu7++STj HudJsK7GnXigQAIvmrGFsF/Knd6JG0PehLjmUhodlFwUNlLw6u0M5pULfvYrtSA5 +E8RA94QSdwhSFjefle6DC08LaVhADZPKrPpfpLFaiO3b3Uy3gNs/FHZQUCoN/oB hCWrxVrA/NZdI+IYDW1lRSc5EJZ7+2G4lHcwEyggON/LjF7kfw9t57arpUkgqRd+ EMvbb1peKDq88K1I2O0+Pte0Zo5n36Wd -----END CERTIFICATE-----Generated at Sun Jun 29 18:42:06 2025 by rpki-client