$ rpki-client -vvf rpki.apnic.net/member_repository/A91612FE/491D694CA25511EFB2CA782AC4F9AE02/1H75KB4xQx3ljjR8aX45vydCkRk.mft File: 1H75KB4xQx3ljjR8aX45vydCkRk.mft (raw, json) Hash identifier: ZF+UsGoebG5OhdzAz9KaC4uq0VFPJQjxyofahopKPws= Subject key identifier: CF:19:8D:B8:A3:11:28:49:0E:A3:05:9E:A4:75:56:AA:8D:6B:E6:9C Authority key identifier: D4:7E:F9:28:1E:31:43:1D:E5:8E:34:7C:69:7E:39:BF:27:42:91:19 Certificate issuer: /CN=A91612FE/serialNumber=D47EF9281E31431DE58E347C697E39BF27429119 Certificate serial: 6E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1H75KB4xQx3ljjR8aX45vydCkRk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91612FE/491D694CA25511EFB2CA782AC4F9AE02/1H75KB4xQx3ljjR8aX45vydCkRk.mft Manifest number: 6E Signing time: Sun 15 Jun 2025 05:59:52 +0000 Manifest this update: Sun 15 Jun 2025 05:59:51 +0000 Manifest next update: Sun 22 Jun 2025 05:59:51 +0000 Files and hashes: 1: 1H75KB4xQx3ljjR8aX45vydCkRk.crl (hash: 7a/uuCwHcVORMLcmD09hcDfWRBJqKvGR+SUXER/b55c=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91612FE/491D694CA25511EFB2CA782AC4F9AE02/1H75KB4xQx3ljjR8aX45vydCkRk.crl rsync://rpki.apnic.net/member_repository/A91612FE/491D694CA25511EFB2CA782AC4F9AE02/1H75KB4xQx3ljjR8aX45vydCkRk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1H75KB4xQx3ljjR8aX45vydCkRk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 22 Jun 2025 02:50:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 110 (0x6e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91612FE, serialNumber=D47EF9281E31431DE58E347C697E39BF27429119 Validity Not Before: Jun 15 05:59:51 2025 GMT Not After : Jun 22 05:59:51 2025 GMT Subject: CN=684e6157-8789 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:5f:54:41:3b:08:fe:b1:dd:30:ce:04:2a:8e: b1:d2:cb:b1:8a:49:e6:3c:fa:a2:d5:57:c5:b7:ce: 84:6f:21:b3:a7:cf:9a:02:2b:05:80:40:6f:5c:0d: 26:17:3e:1c:54:3e:da:e9:23:cb:03:2c:7a:3d:16: 44:dd:fc:40:7c:4c:af:74:95:d1:01:96:f5:fb:36: f2:4e:b5:8b:d0:95:9d:c2:db:9a:8b:9f:c7:a8:3c: 97:15:52:f6:d9:98:ce:14:76:be:cd:49:4e:b0:9c: 93:98:12:fa:5d:f7:f2:c0:fb:e0:8a:df:e7:d7:cb: e3:c6:24:04:02:69:5d:68:b2:ca:21:e5:62:b9:b8: f6:16:26:81:9a:8b:49:d5:8f:d5:09:e4:e0:be:78: 47:f7:d7:62:ff:e4:96:74:35:10:ea:f1:51:dd:dd: 64:f6:ab:00:41:2a:a7:15:13:db:09:4b:c7:7c:57: 73:77:63:f7:ad:65:8f:39:8a:ce:4d:32:3d:9e:55: 64:a5:00:fa:f8:13:8b:b4:89:d1:35:b6:bb:ea:f2: 13:43:2b:9a:fb:46:12:e8:98:e7:66:5f:5b:5e:5e: 71:1c:09:71:9f:c5:be:58:1e:a7:8e:5c:e6:4e:8b: 16:66:fc:d2:bf:96:d3:bc:a8:b1:c1:d4:62:4b:69: a3:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CF:19:8D:B8:A3:11:28:49:0E:A3:05:9E:A4:75:56:AA:8D:6B:E6:9C X509v3 Authority Key Identifier: keyid:D4:7E:F9:28:1E:31:43:1D:E5:8E:34:7C:69:7E:39:BF:27:42:91:19 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91612FE/491D694CA25511EFB2CA782AC4F9AE02/1H75KB4xQx3ljjR8aX45vydCkRk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1H75KB4xQx3ljjR8aX45vydCkRk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91612FE/491D694CA25511EFB2CA782AC4F9AE02/1H75KB4xQx3ljjR8aX45vydCkRk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 20:1c:35:a4:9e:82:76:3b:cd:60:76:62:af:40:06:c3:12:d7: 71:2b:8c:b9:fc:17:32:66:b7:f1:9f:f3:d9:4f:10:34:dd:5f: f5:e8:24:82:ba:b4:56:77:15:64:18:f9:10:32:e8:2b:7d:8a: c2:b8:95:af:b0:5c:b4:0c:0f:7f:30:c3:e5:b4:0f:17:14:de: da:8f:1e:e1:c5:55:bf:31:fa:36:d9:c7:90:b3:97:12:b0:f2: 2b:73:46:9c:54:96:04:4b:9e:99:34:a1:90:4d:48:80:fb:97: ad:25:c1:60:fe:ea:1a:b4:dc:67:ea:69:b0:1e:47:1d:b8:ec: 0b:cd:b9:a9:6e:d9:bb:9b:74:00:ea:34:0f:e5:df:18:f6:72: 25:8c:02:b6:33:75:3a:b7:70:47:ca:f7:15:c2:21:e2:d1:10: f3:af:d6:c3:69:d5:c7:a0:9e:c4:8c:d8:3b:b8:4d:3a:e2:54: 03:be:3e:2d:f1:8d:0c:5d:4b:48:55:8e:b8:88:c3:3b:37:ae: 2a:f3:8e:0f:21:96:76:88:61:5a:6d:58:c1:6b:11:ab:ba:e5: 16:d1:b5:e1:7e:ac:46:f8:4b:58:90:0a:03:94:c7:0b:26:93: 11:ee:7e:97:0a:0c:7f:4c:96:55:a7:60:79:15:3e:d2:8b:28: ac:57:6b:1c -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBbjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE2 MTJGRTExMC8GA1UEBRMoRDQ3RUY5MjgxRTMxNDMxREU1OEUzNDdDNjk3RTM5QkYy NzQyOTExOTAeFw0yNTA2MTUwNTU5NTFaFw0yNTA2MjIwNTU5NTFaMBgxFjAUBgNV BAMTDTY4NGU2MTU3LTg3ODkwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDlX1RBOwj+sd0wzgQqjrHSy7GKSeY8+qLVV8W3zoRvIbOnz5oCKwWAQG9cDSYX PhxUPtrpI8sDLHo9FkTd/EB8TK90ldEBlvX7NvJOtYvQlZ3C25qLn8eoPJcVUvbZ mM4Udr7NSU6wnJOYEvpd9/LA++CK3+fXy+PGJAQCaV1ossoh5WK5uPYWJoGai0nV j9UJ5OC+eEf312L/5JZ0NRDq8VHd3WT2qwBBKqcVE9sJS8d8V3N3Y/etZY85is5N Mj2eVWSlAPr4E4u0idE1trvq8hNDK5r7RhLomOdmX1teXnEcCXGfxb5YHqeOXOZO ixZm/NK/ltO8qLHB1GJLaaP7AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUzxmNuKMR KEkOowWepHVWqo1r5pwwHwYDVR0jBBgwFoAU1H75KB4xQx3ljjR8aX45vydCkRkw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTYxMkZFLzQ5MUQ2OTRDQTI1 NTExRUZCMkNBNzgyQUM0RjlBRTAyLzFINzVLQjR4UXgzbGpqUjhhWDQ1dnlkQ2tS ay5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvMUg3NUtCNHhReDNsampSOGFYNDV2eWRDa1JrLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTYx MkZFLzQ5MUQ2OTRDQTI1NTExRUZCMkNBNzgyQUM0RjlBRTAyLzFINzVLQjR4UXgz bGpqUjhhWDQ1dnlkQ2tSay5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBACAcNaSegnY7zWB2Yq9ABsMS13ErjLn8FzJmt/Gf89lPEDTdX/XoJIK6 tFZ3FWQY+RAy6Ct9isK4la+wXLQMD38ww+W0DxcU3tqPHuHFVb8x+jbZx5CzlxKw 8itzRpxUlgRLnpk0oZBNSID7l60lwWD+6hq03GfqabAeRx247AvNualu2bubdADq NA/l3xj2ciWMArYzdTq3cEfK9xXCIeLREPOv1sNp1cegnsSM2Du4TTriVAO+Pi3x jQxdS0hVjriIwzs3rirzjg8hlnaIYVptWMFrEau65RbRteF+rEb4S1iQCgOUxwsm kxHufpcKDH9MllWnYHkVPtKLKKxXaxw= -----END CERTIFICATE-----Generated at Sun Jun 15 09:42:53 2025 by rpki-client