$ rpki-client -vvf rpki.apnic.net/member_repository/A91AF83D/A3D52FB8C85011EDAF5BBA87C4F9AE02/f7FuQPo8p3_OJMTJpGRWg8OeihE.mft File: f7FuQPo8p3_OJMTJpGRWg8OeihE.mft (raw, json) Hash identifier: LsDoPW6aTZYhvqeRy+CEvv0I+6y0Q5WoXF+t8v49i/Q= Subject key identifier: EB:81:3D:25:6D:9F:5F:F4:AA:55:0D:DF:DC:25:7D:B1:1B:73:A1:55 Authority key identifier: 7F:B1:6E:40:FA:3C:A7:7F:CE:24:C4:C9:A4:64:56:83:C3:9E:8A:11 Certificate issuer: /CN=A91AF83D/serialNumber=7FB16E40FA3CA77FCE24C4C9A4645683C39E8A11 Certificate serial: 01A5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/f7FuQPo8p3_OJMTJpGRWg8OeihE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AF83D/A3D52FB8C85011EDAF5BBA87C4F9AE02/f7FuQPo8p3_OJMTJpGRWg8OeihE.mft Manifest number: 01A2 Signing time: Fri 13 Jun 2025 02:20:12 +0000 Manifest this update: Fri 13 Jun 2025 02:20:11 +0000 Manifest next update: Fri 20 Jun 2025 02:20:11 +0000 Files and hashes: 1: f7FuQPo8p3_OJMTJpGRWg8OeihE.crl (hash: X1RrcMp2Wb2Rj1gRmsJuus164dNLxmfR5PBe2Zoxk+U=) 2: AB3814CEC85411EDAE5D9322C4F9AE02.roa (hash: hP+l6tFfGRtL/s3PVotLK1C45PriZjz7pB5mLcbuaqE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AF83D/A3D52FB8C85011EDAF5BBA87C4F9AE02/f7FuQPo8p3_OJMTJpGRWg8OeihE.crl rsync://rpki.apnic.net/member_repository/A91AF83D/A3D52FB8C85011EDAF5BBA87C4F9AE02/f7FuQPo8p3_OJMTJpGRWg8OeihE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/f7FuQPo8p3_OJMTJpGRWg8OeihE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 20 Jun 2025 02:20:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 421 (0x1a5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AF83D, serialNumber=7FB16E40FA3CA77FCE24C4C9A4645683C39E8A11 Validity Not Before: Jun 13 02:20:11 2025 GMT Not After : Jun 20 02:20:11 2025 GMT Subject: CN=684b8adb-8949 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:4b:58:36:a0:61:b4:97:b0:75:6a:41:2f:79: e2:70:05:19:4c:b8:f3:83:bf:08:81:60:81:0c:9a: 63:3e:17:b6:05:95:e0:32:de:0b:48:cd:6a:b7:f0: 46:c2:51:2c:46:c9:91:66:c1:48:a9:2d:8d:01:b3: 96:3d:f9:c4:df:84:21:65:bc:0c:12:f3:b9:a0:df: 40:55:ed:eb:83:7f:a8:19:8f:72:4d:28:d4:17:bd: d7:83:e3:cc:c4:ac:b7:e2:f7:56:dd:eb:0c:36:5c: 0e:b0:c8:b1:b2:47:97:da:c8:54:6b:df:fe:39:74: 53:1e:f1:e7:03:62:3a:8f:a9:2a:9c:55:ea:43:ec: dc:fa:e9:6c:83:53:26:1e:59:e0:17:59:d3:d8:e4: 3a:c0:ba:90:b7:2a:1e:88:dd:cc:fb:d7:1c:6d:8f: 5c:93:6a:cc:59:c6:8a:b0:67:81:1d:39:bf:56:2d: fb:a5:03:ae:87:07:6a:d1:7c:80:f7:f1:e0:37:ed: 82:fa:4f:0b:c2:aa:7d:61:e7:99:43:36:d3:3e:21: ff:bd:ca:4f:90:37:54:4a:b2:df:43:a5:7e:5f:dc: ae:1a:e7:9d:89:30:ea:80:91:6c:01:c9:35:8b:1c: 69:b2:b0:62:01:51:e0:2d:e7:70:58:e7:d0:57:0a: 09:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EB:81:3D:25:6D:9F:5F:F4:AA:55:0D:DF:DC:25:7D:B1:1B:73:A1:55 X509v3 Authority Key Identifier: keyid:7F:B1:6E:40:FA:3C:A7:7F:CE:24:C4:C9:A4:64:56:83:C3:9E:8A:11 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AF83D/A3D52FB8C85011EDAF5BBA87C4F9AE02/f7FuQPo8p3_OJMTJpGRWg8OeihE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/f7FuQPo8p3_OJMTJpGRWg8OeihE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AF83D/A3D52FB8C85011EDAF5BBA87C4F9AE02/f7FuQPo8p3_OJMTJpGRWg8OeihE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 91:93:23:11:b9:06:30:b9:3a:ad:d7:87:e4:bd:42:5a:40:a7: fe:a0:3f:33:15:c2:f6:05:2e:26:48:4f:0c:61:88:ed:d9:c0: 99:dd:08:fa:59:92:f8:df:4a:b1:38:d8:09:66:5f:24:a1:2f: 64:17:d1:88:d8:16:bf:12:b2:56:b3:c6:f5:40:d0:0e:4a:54: df:ae:93:ec:fe:c6:cc:71:fd:29:2a:1f:a3:28:ee:04:c4:82: 9f:1a:82:b1:d8:94:3e:d4:d8:82:0c:a5:e8:86:39:60:c0:6c: bc:ef:3b:3a:7a:2f:6a:e3:6e:9f:a2:5d:01:c1:3b:5b:42:38: f3:09:7f:11:b4:3f:d6:07:bd:bd:84:25:6e:c0:88:2f:e5:61: 95:2a:41:90:7b:b8:e3:5e:ed:60:50:57:50:f4:a1:1b:5a:0b: 1a:66:ee:f4:f4:c8:bc:45:f2:f3:57:91:38:ab:5c:a3:b6:b1: 0a:98:89:40:b3:c3:8a:0d:1f:f3:c1:be:40:bb:ac:72:27:b0: 1e:1d:6c:5e:d3:6f:d8:24:99:fd:a5:d3:17:26:92:18:c2:33: 7c:80:f3:a5:47:87:4a:3e:c2:c8:02:52:6a:5f:34:eb:93:cb: 4e:c7:d1:1f:ca:42:4f:ca:53:98:03:1d:d3:35:98:a9:31:c9: 4e:5d:e1:16 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAaUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUY4M0QxMTAvBgNVBAUTKDdGQjE2RTQwRkEzQ0E3N0ZDRTI0QzRDOUE0NjQ1Njgz QzM5RThBMTEwHhcNMjUwNjEzMDIyMDExWhcNMjUwNjIwMDIyMDExWjAYMRYwFAYD VQQDEw02ODRiOGFkYi04OTQ5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmEtYNqBhtJewdWpBL3nicAUZTLjzg78IgWCBDJpjPhe2BZXgMt4LSM1qt/BG wlEsRsmRZsFIqS2NAbOWPfnE34QhZbwMEvO5oN9AVe3rg3+oGY9yTSjUF73Xg+PM xKy34vdW3esMNlwOsMixskeX2shUa9/+OXRTHvHnA2I6j6kqnFXqQ+zc+ulsg1Mm HlngF1nT2OQ6wLqQtyoeiN3M+9ccbY9ck2rMWcaKsGeBHTm/Vi37pQOuhwdq0XyA 9/HgN+2C+k8Lwqp9YeeZQzbTPiH/vcpPkDdUSrLfQ6V+X9yuGuediTDqgJFsAck1 ixxpsrBiAVHgLedwWOfQVwoJVwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOuBPSVt n1/0qlUN39wlfbEbc6FVMB8GA1UdIwQYMBaAFH+xbkD6PKd/ziTEyaRkVoPDnooR MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBRjgzRC9BM0Q1MkZCOEM4 NTAxMUVEQUY1QkJBODdDNEY5QUUwMi9mN0Z1UVBvOHAzX09KTVRKcEdSV2c4T2Vp aEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2Y3RnVRUG84cDNfT0pNVEpwR1JXZzhPZWloRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB RjgzRC9BM0Q1MkZCOEM4NTAxMUVEQUY1QkJBODdDNEY5QUUwMi9mN0Z1UVBvOHAz X09KTVRKcEdSV2c4T2VpaEUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCRkyMRuQYwuTqt14fkvUJaQKf+oD8zFcL2BS4mSE8MYYjt2cCZ3Qj6 WZL430qxONgJZl8koS9kF9GI2Ba/ErJWs8b1QNAOSlTfrpPs/sbMcf0pKh+jKO4E xIKfGoKx2JQ+1NiCDKXohjlgwGy87zs6ei9q426fol0BwTtbQjjzCX8RtD/WB729 hCVuwIgv5WGVKkGQe7jjXu1gUFdQ9KEbWgsaZu709Mi8RfLzV5E4q1yjtrEKmIlA s8OKDR/zwb5Au6xyJ7AeHWxe02/YJJn9pdMXJpIYwjN8gPOlR4dKPsLIAlJqXzTr k8tOx9EfykJPylOYAx3TNZipMclOXeEW -----END CERTIFICATE-----Generated at Sat Jun 14 18:51:08 2025 by rpki-client