$ rpki-client -vvf rpki.apnic.net/member_repository/A91B1C73/C491BA4EAC0D11EF9879926EC4F9AE02/64mHxSCv7Nwk9ByG_Gut08Fvpio.mft File: 64mHxSCv7Nwk9ByG_Gut08Fvpio.mft (raw, json) Hash identifier: 8IqW0NGLKu1vbUmWkGdNtDTJvBMav2d0YIiJc/4cfaQ= Subject key identifier: D0:49:F3:0D:AC:7B:02:45:8E:E8:55:A5:70:04:22:D9:CA:C6:6E:26 Authority key identifier: EB:89:87:C5:20:AF:EC:DC:24:F4:1C:86:FC:6B:AD:D3:C1:6F:A6:2A Certificate issuer: /CN=A91B1C73/serialNumber=EB8987C520AFECDC24F41C86FC6BADD3C16FA62A Certificate serial: 68 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/64mHxSCv7Nwk9ByG_Gut08Fvpio.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B1C73/C491BA4EAC0D11EF9879926EC4F9AE02/64mHxSCv7Nwk9ByG_Gut08Fvpio.mft Manifest number: 68 Signing time: Sun 15 Jun 2025 06:05:13 +0000 Manifest this update: Sun 15 Jun 2025 06:05:13 +0000 Manifest next update: Sun 22 Jun 2025 06:05:13 +0000 Files and hashes: 1: 64mHxSCv7Nwk9ByG_Gut08Fvpio.crl (hash: Yx3vexDbWsR48Xyf1ewmVzK06lcAZCP6dvxpW2a/3Ns=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B1C73/C491BA4EAC0D11EF9879926EC4F9AE02/64mHxSCv7Nwk9ByG_Gut08Fvpio.crl rsync://rpki.apnic.net/member_repository/A91B1C73/C491BA4EAC0D11EF9879926EC4F9AE02/64mHxSCv7Nwk9ByG_Gut08Fvpio.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/64mHxSCv7Nwk9ByG_Gut08Fvpio.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 22 Jun 2025 02:50:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 104 (0x68) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B1C73, serialNumber=EB8987C520AFECDC24F41C86FC6BADD3C16FA62A Validity Not Before: Jun 15 06:05:13 2025 GMT Not After : Jun 22 06:05:13 2025 GMT Subject: CN=684e6299-6118 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:8d:42:a5:06:5e:84:7c:81:95:ef:15:fa:4d: c8:45:84:02:8e:36:70:f6:e7:69:01:9f:9b:2a:2c: 1e:b1:32:10:01:29:fb:46:8e:36:be:e8:1e:66:20: d6:8f:b7:12:0d:2a:3c:6e:c6:43:58:1a:b4:8c:ed: d0:96:a4:f4:1e:42:99:67:3d:74:f0:0f:b4:2b:fc: c9:ff:ca:c2:2a:cf:a4:00:16:aa:4c:1c:10:90:20: 19:3c:0a:23:f6:ca:be:76:56:42:20:ca:c6:e6:0d: ee:69:5e:29:87:68:ea:d9:f3:80:04:e9:52:4b:30: 6e:7a:dc:38:ee:a1:bf:5c:72:40:53:e1:2b:d2:6d: 70:10:48:32:44:ce:ef:04:a4:5e:54:b5:0b:ed:f6: 0d:f0:40:06:0c:a2:68:79:7f:6f:c4:7f:1c:ce:dd: e6:9e:12:a8:e2:6a:e4:c6:84:81:60:5a:c3:67:be: 75:b5:ed:b3:c9:92:f8:50:69:89:f0:89:e3:1a:0a: c1:aa:e7:8c:36:3e:f3:ee:10:e6:c5:93:3f:b0:ff: 78:05:f3:71:7c:a7:0b:60:41:ba:c8:85:a9:2f:3e: 73:08:51:1d:5f:54:34:07:3b:77:a4:ce:77:0f:bb: c8:60:77:bd:2e:5a:13:f3:9f:d6:5d:a8:e9:6b:3d: d0:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D0:49:F3:0D:AC:7B:02:45:8E:E8:55:A5:70:04:22:D9:CA:C6:6E:26 X509v3 Authority Key Identifier: keyid:EB:89:87:C5:20:AF:EC:DC:24:F4:1C:86:FC:6B:AD:D3:C1:6F:A6:2A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B1C73/C491BA4EAC0D11EF9879926EC4F9AE02/64mHxSCv7Nwk9ByG_Gut08Fvpio.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/64mHxSCv7Nwk9ByG_Gut08Fvpio.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B1C73/C491BA4EAC0D11EF9879926EC4F9AE02/64mHxSCv7Nwk9ByG_Gut08Fvpio.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8e:ad:df:65:10:02:b7:b5:75:1f:4c:e8:ad:b2:d0:37:bd:bd: 34:f1:76:82:f7:9a:bb:57:d3:3b:16:a3:fc:c6:de:ea:25:62: 64:99:5c:8e:14:6b:a4:a0:7a:4c:8d:21:88:1a:fa:4a:db:f8: 87:ff:95:34:de:85:8d:7d:ad:e6:13:31:e2:ba:fc:54:ee:57: 49:49:42:74:b4:09:22:6a:c3:9a:97:ec:63:f7:42:0e:4d:5d: 16:69:58:89:d1:1d:d5:c3:b2:09:92:17:e0:1d:f0:2d:d0:84: a0:b7:5e:0e:5d:14:f6:71:cd:af:32:b1:90:6d:37:4d:ed:1b: dd:51:31:f7:20:21:b8:d0:21:a6:aa:b7:6a:71:25:80:54:a7: 80:97:73:0d:27:5a:d5:1a:59:b0:b6:eb:48:64:a1:df:a1:ce: cf:e2:de:1d:ee:0a:15:94:74:b4:16:3f:77:a7:73:04:af:22: e8:ed:5d:cc:40:75:b9:27:ea:8e:94:19:a8:80:d0:17:5f:83: f1:2e:5a:bf:a2:6b:53:f8:9f:6d:ee:24:94:51:9c:d4:2b:a2: 21:7a:6d:b7:e7:7b:ca:32:91:57:6a:06:67:fa:d0:bf:94:8d: 15:a5:32:54:e1:84:fa:1e:cf:1e:84:e1:bd:bd:b4:50:74:b5: ea:a8:ad:03 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBaDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC MUM3MzExMC8GA1UEBRMoRUI4OTg3QzUyMEFGRUNEQzI0RjQxQzg2RkM2QkFERDND MTZGQTYyQTAeFw0yNTA2MTUwNjA1MTNaFw0yNTA2MjIwNjA1MTNaMBgxFjAUBgNV BAMTDTY4NGU2Mjk5LTYxMTgwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC0jUKlBl6EfIGV7xX6TchFhAKONnD252kBn5sqLB6xMhABKftGjja+6B5mINaP txINKjxuxkNYGrSM7dCWpPQeQplnPXTwD7Qr/Mn/ysIqz6QAFqpMHBCQIBk8CiP2 yr52VkIgysbmDe5pXimHaOrZ84AE6VJLMG563Djuob9cckBT4SvSbXAQSDJEzu8E pF5UtQvt9g3wQAYMomh5f2/EfxzO3eaeEqjiauTGhIFgWsNnvnW17bPJkvhQaYnw ieMaCsGq54w2PvPuEObFkz+w/3gF83F8pwtgQbrIhakvPnMIUR1fVDQHO3ekzncP u8hgd70uWhPzn9ZdqOlrPdADAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU0EnzDax7 AkWO6FWlcAQi2crGbiYwHwYDVR0jBBgwFoAU64mHxSCv7Nwk9ByG/Gut08Fvpiow DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUIxQzczL0M0OTFCQTRFQUMw RDExRUY5ODc5OTI2RUM0RjlBRTAyLzY0bUh4U0N2N053azlCeUdfR3V0MDhGdnBp by5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvNjRtSHhTQ3Y3TndrOUJ5R19HdXQwOEZ2cGlvLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUIx QzczL0M0OTFCQTRFQUMwRDExRUY5ODc5OTI2RUM0RjlBRTAyLzY0bUh4U0N2N053 azlCeUdfR3V0MDhGdnBpby5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAI6t32UQAre1dR9M6K2y0De9vTTxdoL3mrtX0zsWo/zG3uolYmSZXI4U a6SgekyNIYga+krb+If/lTTehY19reYTMeK6/FTuV0lJQnS0CSJqw5qX7GP3Qg5N XRZpWInRHdXDsgmSF+Ad8C3QhKC3Xg5dFPZxza8ysZBtN03tG91RMfcgIbjQIaaq t2pxJYBUp4CXcw0nWtUaWbC260hkod+hzs/i3h3uChWUdLQWP3encwSvIujtXcxA dbkn6o6UGaiA0Bdfg/EuWr+ia1P4n23uJJRRnNQroiF6bbfne8oykVdqBmf60L+U jRWlMlThhPoezx6E4b29tFB0teqorQM= -----END CERTIFICATE-----Generated at Sun Jun 15 10:04:40 2025 by rpki-client