$ rpki-client -vvf rpki.apnic.net/member_repository/A91777B9/D27C915C75B611EFB8E21514C4F9AE02/jdQUSFkXzUyAFnvaGdcklkawZyU.mft File: jdQUSFkXzUyAFnvaGdcklkawZyU.mft (raw, json) Hash identifier: xRkFVTI5AGCNk/zzxjj4g0ugc9g/etIxtivE9OieFtc= Subject key identifier: 61:13:D1:12:B5:ED:FA:BF:0E:FB:E8:58:6F:7E:A2:65:A5:79:1F:B9 Authority key identifier: 8D:D4:14:48:59:17:CD:4C:80:16:7B:DA:19:D7:24:96:46:B0:67:25 Certificate issuer: /CN=A91777B9/serialNumber=8DD414485917CD4C80167BDA19D7249646B06725 Certificate serial: 93 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/jdQUSFkXzUyAFnvaGdcklkawZyU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91777B9/D27C915C75B611EFB8E21514C4F9AE02/jdQUSFkXzUyAFnvaGdcklkawZyU.mft Manifest number: 91 Signing time: Sat 21 Jun 2025 05:32:03 +0000 Manifest this update: Sat 21 Jun 2025 05:32:02 +0000 Manifest next update: Sat 28 Jun 2025 05:32:02 +0000 Files and hashes: 1: jdQUSFkXzUyAFnvaGdcklkawZyU.crl (hash: nG2qLuLzI1lIhf7C8VFwhP1pftKDTnGKFOO7XA07JLM=) 2: FF3D553675B711EF83FAAE42C4F9AE02.roa (hash: /HTBqf5H3Uz657hsatlKZqGr2vioW9ZJotjtVpnDq5Y=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91777B9/D27C915C75B611EFB8E21514C4F9AE02/jdQUSFkXzUyAFnvaGdcklkawZyU.crl rsync://rpki.apnic.net/member_repository/A91777B9/D27C915C75B611EFB8E21514C4F9AE02/jdQUSFkXzUyAFnvaGdcklkawZyU.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/jdQUSFkXzUyAFnvaGdcklkawZyU.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Jun 2025 05:32:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 147 (0x93) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91777B9, serialNumber=8DD414485917CD4C80167BDA19D7249646B06725 Validity Not Before: Jun 21 05:32:02 2025 GMT Not After : Jun 28 05:32:02 2025 GMT Subject: CN=685643d3-07ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:03:ea:6f:f5:93:2b:14:01:68:64:ba:9c:bf: 08:19:4e:44:11:1c:b1:f2:10:c7:7a:21:9b:53:32: 3f:1f:ec:ef:9b:c8:a5:b8:07:35:f0:32:ba:32:92: f2:46:e0:6c:c1:2c:3a:b2:64:ce:f6:eb:9d:68:d7: 32:24:aa:45:38:21:50:46:0a:d1:8d:cb:ba:b1:1e: 53:a7:f4:c3:e4:db:f4:e1:bc:df:31:26:c6:8e:41: dc:59:b1:80:12:cb:b9:b8:9e:5a:2a:33:53:80:0e: 0a:c9:19:0f:13:97:29:c4:fb:bc:32:47:74:75:9b: 94:2f:b4:d5:79:6a:0b:83:d1:9c:1a:87:79:ff:c8: 3f:ae:cb:41:2e:3d:99:01:76:a6:8c:57:6b:2d:b2: 0b:89:94:aa:9f:2d:60:fb:cc:9d:f0:d3:9f:1e:f3: 75:92:43:38:16:60:9f:c1:37:c7:89:f7:b2:f3:d7: 19:51:db:9c:ed:15:ed:ea:b2:e4:39:ea:c2:f0:51: c9:15:66:35:1f:b5:82:bb:dd:23:14:6e:e0:5a:8c: 3a:3a:4a:ab:fd:b5:90:b6:36:58:6c:5c:42:da:4b: 88:f6:b4:ee:25:3e:0a:85:5a:3b:49:74:d3:2c:d1: 49:2f:e8:e1:e4:10:93:a4:f3:fc:8f:48:57:bc:99: e9:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 61:13:D1:12:B5:ED:FA:BF:0E:FB:E8:58:6F:7E:A2:65:A5:79:1F:B9 X509v3 Authority Key Identifier: keyid:8D:D4:14:48:59:17:CD:4C:80:16:7B:DA:19:D7:24:96:46:B0:67:25 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91777B9/D27C915C75B611EFB8E21514C4F9AE02/jdQUSFkXzUyAFnvaGdcklkawZyU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/jdQUSFkXzUyAFnvaGdcklkawZyU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91777B9/D27C915C75B611EFB8E21514C4F9AE02/jdQUSFkXzUyAFnvaGdcklkawZyU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 00:40:16:ba:c8:d8:a8:9f:4e:3c:cf:77:70:aa:50:d4:0b:31: 76:79:6b:cf:d7:73:33:97:8a:9e:51:94:4f:98:aa:a7:13:4b: d1:f9:bf:8c:44:0d:f5:d3:63:22:4d:cb:55:6a:ef:78:73:06: 99:45:79:ab:ad:62:08:30:77:39:40:91:81:3c:29:a9:04:af: d1:d3:f8:fc:a7:2f:72:95:06:2f:e9:e1:90:a0:f2:9b:0d:13: 30:64:9d:96:40:12:7e:72:70:e1:c0:76:ff:00:0f:e3:ee:33: 65:42:ff:04:f4:92:22:5e:cf:23:db:ba:ce:db:be:26:9d:37: 65:ff:d4:6e:e8:74:15:4f:7f:53:69:a8:77:66:db:de:f7:d3: 5b:f2:6e:bd:49:d2:70:53:d2:7c:72:db:7f:5b:88:9e:5c:b3: 2d:cc:05:58:58:e7:8e:02:41:83:d1:63:e8:0b:c1:ad:2c:6e: 68:cb:bc:ae:0f:54:e7:67:6b:34:fa:33:b9:b7:0e:be:71:4a: c2:57:b8:0e:03:69:45:f1:ba:d1:f8:2b:30:95:97:a3:07:e3: 77:c0:f0:2f:24:2e:67:cf:00:81:d5:2b:e6:63:c7:4f:b5:60: 92:b9:c2:70:f9:95:65:30:06:5b:f3:4b:cf:a0:c5:04:33:f9: 47:30:46:b8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAJMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Nzc3QjkxMTAvBgNVBAUTKDhERDQxNDQ4NTkxN0NENEM4MDE2N0JEQTE5RDcyNDk2 NDZCMDY3MjUwHhcNMjUwNjIxMDUzMjAyWhcNMjUwNjI4MDUzMjAyWjAYMRYwFAYD VQQDEw02ODU2NDNkMy0wN2ZmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0wPqb/WTKxQBaGS6nL8IGU5EERyx8hDHeiGbUzI/H+zvm8iluAc18DK6MpLy RuBswSw6smTO9uudaNcyJKpFOCFQRgrRjcu6sR5Tp/TD5Nv04bzfMSbGjkHcWbGA Esu5uJ5aKjNTgA4KyRkPE5cpxPu8Mkd0dZuUL7TVeWoLg9GcGod5/8g/rstBLj2Z AXamjFdrLbILiZSqny1g+8yd8NOfHvN1kkM4FmCfwTfHifey89cZUduc7RXt6rLk OerC8FHJFWY1H7WCu90jFG7gWow6Okqr/bWQtjZYbFxC2kuI9rTuJT4KhVo7SXTT LNFJL+jh5BCTpPP8j0hXvJnp4wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGET0RK1 7fq/DvvoWG9+omWleR+5MB8GA1UdIwQYMBaAFI3UFEhZF81MgBZ72hnXJJZGsGcl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NzdCOS9EMjdDOTE1Qzc1 QjYxMUVGQjhFMjE1MTRDNEY5QUUwMi9qZFFVU0ZrWHpVeUFGbnZhR2Rja2xrYXda eVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2pkUVVTRmtYelV5QUZudmFHZGNrbGthd1p5VS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 NzdCOS9EMjdDOTE1Qzc1QjYxMUVGQjhFMjE1MTRDNEY5QUUwMi9qZFFVU0ZrWHpV eUFGbnZhR2Rja2xrYXdaeVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAAQBa6yNion048z3dwqlDUCzF2eWvP13Mzl4qeUZRPmKqnE0vR+b+M RA3102MiTctVau94cwaZRXmrrWIIMHc5QJGBPCmpBK/R0/j8py9ylQYv6eGQoPKb DRMwZJ2WQBJ+cnDhwHb/AA/j7jNlQv8E9JIiXs8j27rO274mnTdl/9Ru6HQVT39T aah3Ztve99Nb8m69SdJwU9J8ctt/W4ieXLMtzAVYWOeOAkGD0WPoC8GtLG5oy7yu D1TnZ2s0+jO5tw6+cUrCV7gOA2lF8brR+CswlZejB+N3wPAvJC5nzwCB1SvmY8dP tWCSucJw+ZVlMAZb80vPoMUEM/lHMEa4 -----END CERTIFICATE-----Generated at Sun Jun 22 21:58:32 2025 by rpki-client