$ rpki-client -vvf rpki.apnic.net/member_repository/A91B2A6F/CADFF2FE6E3611EAA10EFF76C4F9AE02/jFqJl_ylvwJw6vhu6MDLZVGrl9E.mft File: jFqJl_ylvwJw6vhu6MDLZVGrl9E.mft (raw, json) Hash identifier: uHsMaXk6mKsgSwXpYW4AEOHWhbl2amtqJZB6Npop6Hg= Subject key identifier: 06:C6:62:DB:D2:F9:51:20:42:E1:F2:CB:83:DB:81:0B:5B:92:1A:09 Authority key identifier: 8C:5A:89:97:FC:A5:BF:02:70:EA:F8:6E:E8:C0:CB:65:51:AB:97:D1 Certificate issuer: /CN=A91B2A6F/serialNumber=8C5A8997FCA5BF0270EAF86EE8C0CB6551AB97D1 Certificate serial: 0A3D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jFqJl_ylvwJw6vhu6MDLZVGrl9E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B2A6F/CADFF2FE6E3611EAA10EFF76C4F9AE02/jFqJl_ylvwJw6vhu6MDLZVGrl9E.mft Manifest number: 0A34 Signing time: Sat 14 Jun 2025 19:35:01 +0000 Manifest this update: Sat 14 Jun 2025 19:35:00 +0000 Manifest next update: Sat 21 Jun 2025 19:35:00 +0000 Files and hashes: 1: jFqJl_ylvwJw6vhu6MDLZVGrl9E.crl (hash: bI0vABQ2sMXK41qJOi/p4ufhIqNqgykVTL10K+cIYzk=) 2: BDC0899A1FF511ECAE74F266C4F9AE02.roa (hash: EkYTFmKjanasajMVGUVTZ322q1F+k60qJOC2SSq8q9Q=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B2A6F/CADFF2FE6E3611EAA10EFF76C4F9AE02/jFqJl_ylvwJw6vhu6MDLZVGrl9E.crl rsync://rpki.apnic.net/member_repository/A91B2A6F/CADFF2FE6E3611EAA10EFF76C4F9AE02/jFqJl_ylvwJw6vhu6MDLZVGrl9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jFqJl_ylvwJw6vhu6MDLZVGrl9E.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Jun 2025 19:35:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2621 (0xa3d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B2A6F, serialNumber=8C5A8997FCA5BF0270EAF86EE8C0CB6551AB97D1 Validity Not Before: Jun 14 19:35:00 2025 GMT Not After : Jun 21 19:35:00 2025 GMT Subject: CN=684dcee5-0742 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:13:92:bb:b9:5c:90:d6:c4:97:15:83:28:9f: 33:75:0c:ba:50:bf:dd:4a:03:1a:3e:e4:c1:39:dc: ed:cd:34:4b:75:ba:56:3a:7f:0f:cf:8c:fc:ef:d0: ab:b3:5c:b0:82:6a:23:63:11:15:c6:0b:66:ac:ad: cb:f8:d7:00:6f:27:3f:64:b0:7c:e3:9c:63:63:15: d0:9e:f9:4d:3d:4c:91:85:c4:bd:79:26:0b:dc:ed: bc:a7:f5:f9:44:19:b2:97:14:a1:29:04:3e:19:4e: 0a:58:61:02:82:9a:b1:01:94:2d:e6:5d:c1:8d:d4: 58:22:09:03:aa:6e:0c:82:45:72:87:db:a7:87:b3: 7b:04:16:d3:d5:ec:da:bc:78:58:13:a3:21:29:a8: d5:79:fd:ae:d0:b2:9a:ed:31:8f:d7:24:64:df:9a: 4b:22:3a:ca:11:81:8e:f2:cb:1a:1e:ea:d4:86:da: a0:82:35:d3:13:82:07:1e:c1:72:9a:40:77:60:ed: 4f:98:1d:d7:11:1b:bf:ba:81:bb:46:6d:85:60:65: 96:13:3f:44:c2:20:e2:62:a0:b7:78:07:e5:df:f7: 18:18:8e:91:9a:1c:2e:28:23:3a:31:f8:25:c7:fc: d1:81:fe:a7:34:3c:09:a0:ef:2c:53:bf:12:c3:d4: d6:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 06:C6:62:DB:D2:F9:51:20:42:E1:F2:CB:83:DB:81:0B:5B:92:1A:09 X509v3 Authority Key Identifier: keyid:8C:5A:89:97:FC:A5:BF:02:70:EA:F8:6E:E8:C0:CB:65:51:AB:97:D1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B2A6F/CADFF2FE6E3611EAA10EFF76C4F9AE02/jFqJl_ylvwJw6vhu6MDLZVGrl9E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jFqJl_ylvwJw6vhu6MDLZVGrl9E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B2A6F/CADFF2FE6E3611EAA10EFF76C4F9AE02/jFqJl_ylvwJw6vhu6MDLZVGrl9E.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7f:9a:50:c9:4f:80:6d:4f:b5:9f:a9:87:a7:d4:d4:31:f7:8b: 41:ef:1c:dc:10:5e:ee:1f:b0:d5:9d:9c:61:f6:02:b7:d4:0f: 4f:c6:a0:5a:f6:bb:6a:47:7a:d3:ee:3c:1b:d1:7c:ce:b0:f3: 5d:c0:76:6f:0d:f7:69:2d:d8:29:9f:a3:55:85:d7:8d:fb:d6: 09:1f:2b:b2:9d:9d:f1:a5:f8:3c:58:b2:23:29:87:1a:26:0b: fe:a2:36:bf:80:c8:1b:6e:cd:d3:43:c4:86:80:57:38:0e:db: 8c:76:eb:3b:48:11:4c:13:9b:82:43:47:6c:30:f0:3f:e8:07: 3e:e0:10:ad:e1:c0:f8:41:ba:f4:36:2f:ee:41:62:e2:c0:87: 22:8f:d0:81:e8:c9:d3:62:b6:61:c3:af:14:55:24:cf:b2:83: 8e:58:70:e0:22:2b:76:65:cc:84:62:74:be:8a:7b:e8:bc:c2: d4:68:89:d3:3e:47:32:a6:4a:c1:af:9e:57:b4:95:6b:2e:8d: 4d:1c:6c:48:93:53:8d:1e:34:51:79:e4:e2:4b:2e:f5:48:9d: 21:54:fe:5f:c7:6b:90:7a:36:0d:00:6d:d2:26:ff:df:e1:b2: 90:ac:01:d7:62:0e:4c:03:b7:84:eb:5d:a0:21:78:64:3b:bc: 41:56:d9:86 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCj0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjJBNkYxMTAvBgNVBAUTKDhDNUE4OTk3RkNBNUJGMDI3MEVBRjg2RUU4QzBDQjY1 NTFBQjk3RDEwHhcNMjUwNjE0MTkzNTAwWhcNMjUwNjIxMTkzNTAwWjAYMRYwFAYD VQQDEw02ODRkY2VlNS0wNzQyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6hOSu7lckNbElxWDKJ8zdQy6UL/dSgMaPuTBOdztzTRLdbpWOn8Pz4z879Cr s1ywgmojYxEVxgtmrK3L+NcAbyc/ZLB845xjYxXQnvlNPUyRhcS9eSYL3O28p/X5 RBmylxShKQQ+GU4KWGECgpqxAZQt5l3BjdRYIgkDqm4MgkVyh9unh7N7BBbT1eza vHhYE6MhKajVef2u0LKa7TGP1yRk35pLIjrKEYGO8ssaHurUhtqggjXTE4IHHsFy mkB3YO1PmB3XERu/uoG7Rm2FYGWWEz9EwiDiYqC3eAfl3/cYGI6RmhwuKCM6Mfgl x/zRgf6nNDwJoO8sU78Sw9TWewIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAbGYtvS +VEgQuHyy4PbgQtbkhoJMB8GA1UdIwQYMBaAFIxaiZf8pb8CcOr4bujAy2VRq5fR MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMkE2Ri9DQURGRjJGRTZF MzYxMUVBQTEwRUZGNzZDNEY5QUUwMi9qRnFKbF95bHZ3Snc2dmh1Nk1ETFpWR3Js OUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2pGcUpsX3lsdndKdzZ2aHU2TURMWlZHcmw5RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC MkE2Ri9DQURGRjJGRTZFMzYxMUVBQTEwRUZGNzZDNEY5QUUwMi9qRnFKbF95bHZ3 Snc2dmh1Nk1ETFpWR3JsOUUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB/mlDJT4BtT7WfqYen1NQx94tB7xzcEF7uH7DVnZxh9gK31A9PxqBa 9rtqR3rT7jwb0XzOsPNdwHZvDfdpLdgpn6NVhdeN+9YJHyuynZ3xpfg8WLIjKYca Jgv+oja/gMgbbs3TQ8SGgFc4DtuMdus7SBFME5uCQ0dsMPA/6Ac+4BCt4cD4Qbr0 Ni/uQWLiwIcij9CB6MnTYrZhw68UVSTPsoOOWHDgIit2ZcyEYnS+invovMLUaInT PkcypkrBr55XtJVrLo1NHGxIk1ONHjRReeTiSy71SJ0hVP5fx2uQejYNAG3SJv/f 4bKQrAHXYg5MA7eE612gIXhkO7xBVtmG -----END CERTIFICATE-----Generated at Sun Jun 15 09:45:07 2025 by rpki-client