$ rpki-client -vvf rpki.apnic.net/member_repository/A91FDE13/151FE47E2A5611F0B84F5220C4F9AE02/Sf0z1vUa1qSYhEafo5_vBDIzb4E.mft File: Sf0z1vUa1qSYhEafo5_vBDIzb4E.mft (raw, json) Hash identifier: cOAXL5CJMuq8jKm27zAHqSRBiDlaV1FfK13N8rMcLFM= Subject key identifier: 80:F7:D7:0A:27:FA:10:01:45:6F:86:97:CD:BE:F6:B7:90:09:6B:9F Authority key identifier: 49:FD:33:D6:F5:1A:D6:A4:98:84:46:9F:A3:9F:EF:04:32:33:6F:81 Certificate issuer: /CN=A91FDE13/serialNumber=49FD33D6F51AD6A49884469FA39FEF0432336F81 Certificate serial: 2E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Sf0z1vUa1qSYhEafo5_vBDIzb4E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FDE13/151FE47E2A5611F0B84F5220C4F9AE02/Sf0z1vUa1qSYhEafo5_vBDIzb4E.mft Manifest number: 27 Signing time: Tue 01 Jul 2025 09:23:53 +0000 Manifest this update: Tue 01 Jul 2025 09:23:52 +0000 Manifest next update: Tue 08 Jul 2025 09:23:52 +0000 Files and hashes: 1: Sf0z1vUa1qSYhEafo5_vBDIzb4E.crl (hash: CIyR166gQsTu/VGfEdmWl7B6aV3qwNs8p5jN3XErRVo=) 2: 189D8FCE565D11F0B381417EC4F9AE02.roa (hash: cj52P7EVA7EzNB+cRXY75TfIttWbZ7w7qirjXKEDn/Y=) 3: 5B45D97C2A5611F0B7C8BB20C4F9AE02.roa (hash: UkjJv6j01kk67tAR7WvPOWkiQImQuY607Dwbp++ebI8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FDE13/151FE47E2A5611F0B84F5220C4F9AE02/Sf0z1vUa1qSYhEafo5_vBDIzb4E.crl rsync://rpki.apnic.net/member_repository/A91FDE13/151FE47E2A5611F0B84F5220C4F9AE02/Sf0z1vUa1qSYhEafo5_vBDIzb4E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Sf0z1vUa1qSYhEafo5_vBDIzb4E.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Jul 2025 09:23:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 46 (0x2e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FDE13, serialNumber=49FD33D6F51AD6A49884469FA39FEF0432336F81 Validity Not Before: Jul 1 09:23:52 2025 GMT Not After : Jul 8 09:23:52 2025 GMT Subject: CN=6863a928-1e93 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:ee:e3:b2:8f:04:af:78:6e:31:2a:78:9c:76: 07:1f:b4:55:b5:09:65:5d:db:95:c7:3b:f4:a2:9d: c6:0c:cf:b8:30:7c:79:29:d0:05:dd:83:17:bf:06: bc:0c:00:24:31:18:19:6a:8a:a2:ec:77:1b:7b:71: fe:24:ab:1d:2d:c4:c8:5d:85:3a:6c:b7:c1:da:fb: 81:6c:e3:4a:1f:58:43:d6:f1:36:9c:85:dc:4b:3e: ec:24:3d:c5:fb:ba:c7:b3:45:29:8b:ac:1c:d5:83: 24:60:15:b6:b1:ee:dc:8a:ca:55:3b:c3:76:7d:5e: 00:20:02:f0:ce:3e:f0:51:c1:a3:0c:4d:63:cf:dc: 6e:db:3b:4b:2f:a2:4f:ce:04:ea:b0:ce:d4:c9:d9: c3:6e:ba:a2:37:8e:56:91:17:89:91:40:ed:56:f9: 71:be:e9:ae:ba:36:4e:b5:8e:39:8c:59:60:15:41: 24:e9:da:43:69:68:9d:dc:a7:81:ee:a0:e1:56:4d: 17:44:05:e3:7b:ba:1e:6b:07:50:52:77:45:a8:e2: dd:1d:78:52:e0:90:d2:c6:fa:0a:64:68:e5:9d:a3: 63:ad:18:6e:98:8a:77:71:fb:a1:a2:b3:1e:76:7a: e3:36:6b:2d:d3:86:8e:f2:67:41:5c:da:e1:d3:73: 9f:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 80:F7:D7:0A:27:FA:10:01:45:6F:86:97:CD:BE:F6:B7:90:09:6B:9F X509v3 Authority Key Identifier: keyid:49:FD:33:D6:F5:1A:D6:A4:98:84:46:9F:A3:9F:EF:04:32:33:6F:81 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FDE13/151FE47E2A5611F0B84F5220C4F9AE02/Sf0z1vUa1qSYhEafo5_vBDIzb4E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Sf0z1vUa1qSYhEafo5_vBDIzb4E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FDE13/151FE47E2A5611F0B84F5220C4F9AE02/Sf0z1vUa1qSYhEafo5_vBDIzb4E.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 43:3c:c4:76:ad:e8:a1:f7:56:a3:33:05:36:6c:e8:2d:9b:c8: 15:61:09:b4:fe:1b:51:52:fb:ca:42:10:5f:85:17:8c:41:e6: 1a:8c:68:4d:1b:82:96:75:f7:98:b6:95:f8:fe:dc:6c:e1:86: ea:b3:fb:1b:83:71:fa:78:dd:fc:d3:97:eb:e7:a0:7f:32:da: f5:54:96:49:69:c4:01:98:5e:88:3d:85:2b:1c:2e:9b:4e:4a: ab:f4:a6:5e:e7:5a:13:61:df:64:f3:3e:23:64:d3:07:da:8e: b0:35:17:8f:dc:5c:1c:5d:a5:59:9f:20:5f:89:bb:76:2a:a0: bb:1a:97:86:26:18:55:ae:6f:58:35:5d:f4:5a:cb:17:57:90: c6:fb:a0:74:b1:8a:3f:a0:59:45:cb:fc:16:7d:2d:09:48:b0: ac:82:fc:c0:55:b7:82:f4:17:96:2f:2a:a6:5e:62:a3:0e:2c: fe:45:8a:57:2a:aa:4e:35:70:4d:4f:d3:e8:ed:0f:ff:28:46: 22:90:16:f9:e1:78:32:7c:1b:b0:b7:af:5b:cf:87:26:56:b7: 77:1a:e9:0b:d8:6e:61:22:02:37:71:a8:f8:63:ee:41:f5:90: 42:f1:c9:00:cd:32:64:4a:a9:c7:4e:65:75:ea:65:b0:e1:75: d9:d9:9d:5b -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBLjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFG REUxMzExMC8GA1UEBRMoNDlGRDMzRDZGNTFBRDZBNDk4ODQ0NjlGQTM5RkVGMDQz MjMzNkY4MTAeFw0yNTA3MDEwOTIzNTJaFw0yNTA3MDgwOTIzNTJaMBgxFjAUBgNV BAMTDTY4NjNhOTI4LTFlOTMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDX7uOyjwSveG4xKnicdgcftFW1CWVd25XHO/SincYMz7gwfHkp0AXdgxe/BrwM ACQxGBlqiqLsdxt7cf4kqx0txMhdhTpst8Ha+4Fs40ofWEPW8TachdxLPuwkPcX7 usezRSmLrBzVgyRgFbax7tyKylU7w3Z9XgAgAvDOPvBRwaMMTWPP3G7bO0svok/O BOqwztTJ2cNuuqI3jlaRF4mRQO1W+XG+6a66Nk61jjmMWWAVQSTp2kNpaJ3cp4Hu oOFWTRdEBeN7uh5rB1BSd0Wo4t0deFLgkNLG+gpkaOWdo2OtGG6Yindx+6Gisx52 euM2ay3Tho7yZ0Fc2uHTc5/3AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUgPfXCif6 EAFFb4aXzb72t5AJa58wHwYDVR0jBBgwFoAUSf0z1vUa1qSYhEafo5/vBDIzb4Ew DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUZERTEzLzE1MUZFNDdFMkE1 NjExRjBCODRGNTIyMEM0RjlBRTAyL1NmMHoxdlVhMXFTWWhFYWZvNV92QkRJemI0 RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvU2YwejF2VWExcVNZaEVhZm81X3ZCREl6YjRFLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUZE RTEzLzE1MUZFNDdFMkE1NjExRjBCODRGNTIyMEM0RjlBRTAyL1NmMHoxdlVhMXFT WWhFYWZvNV92QkRJemI0RS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAEM8xHat6KH3VqMzBTZs6C2byBVhCbT+G1FS+8pCEF+FF4xB5hqMaE0b gpZ195i2lfj+3Gzhhuqz+xuDcfp43fzTl+vnoH8y2vVUlklpxAGYXog9hSscLptO Sqv0pl7nWhNh32TzPiNk0wfajrA1F4/cXBxdpVmfIF+Ju3YqoLsal4YmGFWub1g1 XfRayxdXkMb7oHSxij+gWUXL/BZ9LQlIsKyC/MBVt4L0F5YvKqZeYqMOLP5Filcq qk41cE1P0+jtD/8oRiKQFvnheDJ8G7C3r1vPhyZWt3ca6QvYbmEiAjdxqPhj7kH1 kELxyQDNMmRKqcdOZXXqZbDhddnZnVs= -----END CERTIFICATE-----Generated at Tue Jul 1 22:32:32 2025 by rpki-client