$ rpki-client -vvf rpki.apnic.net/member_repository/A91AA897/E1D1177095BA11EBB2812371C4F9AE02/1o1BGtA-cxTxSS0GLbDZGU6fUJU.mft File: 1o1BGtA-cxTxSS0GLbDZGU6fUJU.mft (raw, json) Hash identifier: i/yPto5B/Q+AkO0MdM5dv818iFNwY8xzEU63DQyFtpY= Subject key identifier: B0:CD:E5:A8:BE:CA:27:5B:65:DC:E2:05:F5:18:65:C3:DA:4F:D4:4F Authority key identifier: D6:8D:41:1A:D0:3E:73:14:F1:49:2D:06:2D:B0:D9:19:4E:9F:50:95 Certificate issuer: /CN=A91AA897/serialNumber=D68D411AD03E7314F1492D062DB0D9194E9F5095 Certificate serial: 064A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1o1BGtA-cxTxSS0GLbDZGU6fUJU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AA897/E1D1177095BA11EBB2812371C4F9AE02/1o1BGtA-cxTxSS0GLbDZGU6fUJU.mft Manifest number: 063D Signing time: Sat 14 Jun 2025 22:23:36 +0000 Manifest this update: Sat 14 Jun 2025 22:23:36 +0000 Manifest next update: Sat 21 Jun 2025 22:23:36 +0000 Files and hashes: 1: 1o1BGtA-cxTxSS0GLbDZGU6fUJU.crl (hash: gJCd1oDFCYvHtW8SK5PQqnT9FtnhSe8CSXQT8HbfS6c=) 2: D78A16ECCAC311EC910B8C20C4F9AE02.roa (hash: oJo0EldVtMJvTJnA4FpJe7JGIUD/xhTk+VY6Q3vUpoY=) 3: D6692528CAC311EC910B8C20C4F9AE02.roa (hash: ZgaT6NUPSJGrS2FDGhXNf1URQXdcMTQg5TCptCSVeas=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AA897/E1D1177095BA11EBB2812371C4F9AE02/1o1BGtA-cxTxSS0GLbDZGU6fUJU.crl rsync://rpki.apnic.net/member_repository/A91AA897/E1D1177095BA11EBB2812371C4F9AE02/1o1BGtA-cxTxSS0GLbDZGU6fUJU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1o1BGtA-cxTxSS0GLbDZGU6fUJU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Jun 2025 22:23:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1610 (0x64a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AA897, serialNumber=D68D411AD03E7314F1492D062DB0D9194E9F5095 Validity Not Before: Jun 14 22:23:36 2025 GMT Not After : Jun 21 22:23:36 2025 GMT Subject: CN=684df668-151a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:db:60:43:83:af:5a:86:9f:98:1c:89:9c:3c: 98:32:d3:4b:fb:5a:b3:93:c2:91:9b:83:7a:20:67: 72:f9:05:33:aa:62:8b:7d:7e:05:5e:d2:f1:f2:a1: df:ed:64:a3:20:5b:cf:8c:4d:b8:a7:28:01:d7:7f: 4a:41:48:db:86:b7:0c:7c:2a:41:9c:fa:3c:38:1c: dc:98:7b:50:66:f2:4c:21:f3:20:eb:62:09:eb:bc: 9a:69:d4:67:d7:5b:47:88:27:9d:18:e8:ac:5d:a9: 3b:98:1b:da:3f:1d:79:36:4b:c9:1a:60:d7:51:3d: 6e:1b:b3:ed:58:bb:f0:7b:c3:4b:2e:44:8d:c9:f3: f6:71:5d:d7:bb:97:bd:48:02:0a:3c:45:aa:6c:a7: a4:12:ab:cb:50:6a:57:8f:ab:00:15:86:c7:34:b3: a0:14:ee:9f:35:d8:20:9e:b8:9d:7c:04:84:ac:e7: 8e:3b:f8:04:dc:b2:f3:57:36:47:e8:e2:1d:bc:b8: 69:38:12:e3:4f:c1:9e:ea:80:98:cf:43:bb:22:45: 4d:fd:c1:17:c1:18:6a:b5:22:71:63:0b:31:61:4d: 09:3f:27:be:ec:82:bb:ce:95:0e:9f:a4:f8:c7:19: b5:28:46:98:77:ef:f3:16:67:06:11:ff:a6:13:b6: c9:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B0:CD:E5:A8:BE:CA:27:5B:65:DC:E2:05:F5:18:65:C3:DA:4F:D4:4F X509v3 Authority Key Identifier: keyid:D6:8D:41:1A:D0:3E:73:14:F1:49:2D:06:2D:B0:D9:19:4E:9F:50:95 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AA897/E1D1177095BA11EBB2812371C4F9AE02/1o1BGtA-cxTxSS0GLbDZGU6fUJU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1o1BGtA-cxTxSS0GLbDZGU6fUJU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AA897/E1D1177095BA11EBB2812371C4F9AE02/1o1BGtA-cxTxSS0GLbDZGU6fUJU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 04:f8:e5:ec:4f:32:dd:50:1e:a9:37:4d:0e:6e:ef:07:96:e1: 12:a1:d2:84:3c:45:c9:03:40:66:e7:3a:b3:c0:56:12:da:2a: 3a:6f:95:47:39:01:7d:66:22:82:f4:f2:e0:0b:23:ce:d4:f2: 8f:19:93:9d:c1:19:14:72:6b:66:e9:a1:27:13:56:db:78:7e: c1:28:c7:16:11:03:5c:9a:96:9c:ac:ab:eb:dc:74:5f:39:94: ec:91:70:e8:f0:25:91:91:06:2e:4d:33:c5:f6:18:b1:2a:9a: 46:d3:3a:d7:d2:5f:4e:f7:f6:ed:a7:b7:8c:c2:13:7e:20:cd: a2:ca:09:2c:c4:46:95:2e:d9:16:53:3b:53:d1:78:53:67:2e: ff:62:c1:d3:9e:fa:26:b0:b7:fd:05:d1:78:ff:61:3d:02:05: bb:10:b1:75:4d:9e:64:7c:96:63:8f:40:eb:01:ea:b0:c7:77: da:de:2f:a8:f3:6f:56:12:04:b8:0d:b7:8a:a7:21:29:d0:dc: ee:8e:a1:4c:79:02:30:8d:4c:d9:41:0c:87:5b:26:68:12:54: 6c:58:89:aa:78:e5:ae:ac:b8:6d:26:f6:81:24:02:de:d9:49: 16:87:7c:f2:fc:5d:f4:5e:fe:d2:56:96:c9:33:f9:cc:29:a0: 53:f0:22:e1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBkowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUE4OTcxMTAvBgNVBAUTKEQ2OEQ0MTFBRDAzRTczMTRGMTQ5MkQwNjJEQjBEOTE5 NEU5RjUwOTUwHhcNMjUwNjE0MjIyMzM2WhcNMjUwNjIxMjIyMzM2WjAYMRYwFAYD VQQDEw02ODRkZjY2OC0xNTFhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5NtgQ4OvWoafmByJnDyYMtNL+1qzk8KRm4N6IGdy+QUzqmKLfX4FXtLx8qHf 7WSjIFvPjE24pygB139KQUjbhrcMfCpBnPo8OBzcmHtQZvJMIfMg62IJ67yaadRn 11tHiCedGOisXak7mBvaPx15NkvJGmDXUT1uG7PtWLvwe8NLLkSNyfP2cV3Xu5e9 SAIKPEWqbKekEqvLUGpXj6sAFYbHNLOgFO6fNdggnridfASErOeOO/gE3LLzVzZH 6OIdvLhpOBLjT8Ge6oCYz0O7IkVN/cEXwRhqtSJxYwsxYU0JPye+7IK7zpUOn6T4 xxm1KEaYd+/zFmcGEf+mE7bJlQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLDN5ai+ yidbZdziBfUYZcPaT9RPMB8GA1UdIwQYMBaAFNaNQRrQPnMU8UktBi2w2RlOn1CV MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQTg5Ny9FMUQxMTc3MDk1 QkExMUVCQjI4MTIzNzFDNEY5QUUwMi8xbzFCR3RBLWN4VHhTUzBHTGJEWkdVNmZV SlUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFvMUJHdEEtY3hUeFNTMEdMYkRaR1U2ZlVKVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB QTg5Ny9FMUQxMTc3MDk1QkExMUVCQjI4MTIzNzFDNEY5QUUwMi8xbzFCR3RBLWN4 VHhTUzBHTGJEWkdVNmZVSlUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAE+OXsTzLdUB6pN00Obu8HluESodKEPEXJA0Bm5zqzwFYS2io6b5VH OQF9ZiKC9PLgCyPO1PKPGZOdwRkUcmtm6aEnE1bbeH7BKMcWEQNcmpacrKvr3HRf OZTskXDo8CWRkQYuTTPF9hixKppG0zrX0l9O9/btp7eMwhN+IM2iygksxEaVLtkW UztT0XhTZy7/YsHTnvomsLf9BdF4/2E9AgW7ELF1TZ5kfJZjj0DrAeqwx3fa3i+o 829WEgS4DbeKpyEp0NzujqFMeQIwjUzZQQyHWyZoElRsWImqeOWurLhtJvaBJALe 2UkWh3zy/F30Xv7SVpbJM/nMKaBT8CLh -----END CERTIFICATE-----Generated at Sun Jun 15 09:45:04 2025 by rpki-client