$ rpki-client -vvf rpki.apnic.net/member_repository/A91B428B/3A0B6C0C847711EAB3B43680C4F9AE02/D-jKZIcKPWORHI0tZRuinKztDso.mft File: D-jKZIcKPWORHI0tZRuinKztDso.mft (raw, json) Hash identifier: Sqa7cBxgZtlurlTaQZu6CXXs+RINUMxRBxfgCdY3ZvY= Subject key identifier: 37:FA:A4:22:E0:63:B3:40:E8:05:B8:80:CB:74:87:AA:63:A3:23:89 Authority key identifier: 0F:E8:CA:64:87:0A:3D:63:91:1C:8D:2D:65:1B:A2:9C:AC:ED:0E:CA Certificate issuer: /CN=A91B428B/serialNumber=0FE8CA64870A3D63911C8D2D651BA29CACED0ECA Certificate serial: 09C3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D-jKZIcKPWORHI0tZRuinKztDso.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B428B/3A0B6C0C847711EAB3B43680C4F9AE02/D-jKZIcKPWORHI0tZRuinKztDso.mft Manifest number: 09BC Signing time: Thu 12 Jun 2025 19:47:32 +0000 Manifest this update: Thu 12 Jun 2025 19:47:31 +0000 Manifest next update: Thu 19 Jun 2025 19:47:31 +0000 Files and hashes: 1: D-jKZIcKPWORHI0tZRuinKztDso.crl (hash: A7lPp/FEIYgvV4hDXQ8VL5Vt/0Rfx9mp9wv+GI31oQc=) 2: 319DF660847811EA8EE07E81C4F9AE02.roa (hash: ZlFR2HTwg3fDW4lClQanT4TaI4rdoCBr8+QBrXHDB9w=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B428B/3A0B6C0C847711EAB3B43680C4F9AE02/D-jKZIcKPWORHI0tZRuinKztDso.crl rsync://rpki.apnic.net/member_repository/A91B428B/3A0B6C0C847711EAB3B43680C4F9AE02/D-jKZIcKPWORHI0tZRuinKztDso.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D-jKZIcKPWORHI0tZRuinKztDso.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 19 Jun 2025 19:47:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2499 (0x9c3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B428B, serialNumber=0FE8CA64870A3D63911C8D2D651BA29CACED0ECA Validity Not Before: Jun 12 19:47:31 2025 GMT Not After : Jun 19 19:47:31 2025 GMT Subject: CN=684b2ed3-3b87 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:4a:f4:a2:21:48:6f:01:d8:b9:5c:48:85:26: 83:17:46:5c:8b:cd:90:7a:39:9c:f5:0c:e0:4c:9f: 87:3c:45:99:a5:5f:bb:c0:26:99:fd:39:75:e2:c8: 2c:48:31:98:2e:4d:78:aa:86:fc:ef:81:67:b8:8f: 4e:c1:07:21:73:87:e3:7f:ab:67:bf:e5:67:80:e4: 28:b6:e3:e2:35:a3:ec:75:8a:36:c9:18:90:c4:2f: de:55:98:f6:52:93:c3:3d:13:85:42:f5:a1:db:e7: 72:37:fd:17:37:5f:39:8e:7e:22:95:08:39:3a:f5: ff:a2:77:04:8e:02:63:c8:24:ec:e8:21:e1:22:3c: 0f:3f:6c:a6:4e:52:70:70:7d:a0:52:81:0b:48:f0: d2:24:ae:fd:ef:6a:73:36:f6:e6:04:e8:c2:79:76: f9:5b:ff:bd:7d:4d:69:4c:f6:73:b9:98:b7:ee:02: dc:84:61:f1:29:1f:c1:29:a3:9e:74:97:5d:59:bd: 3b:ba:d2:ba:b4:bd:5a:f1:1b:34:df:cf:32:87:37: c2:04:13:22:3a:fa:1b:88:5a:10:4e:14:77:e2:61: 86:24:be:21:0b:09:c2:e6:0a:aa:c3:fb:0d:25:a5: dd:f9:fc:37:fc:1a:31:63:c7:07:a1:b4:11:7c:d8: 87:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 37:FA:A4:22:E0:63:B3:40:E8:05:B8:80:CB:74:87:AA:63:A3:23:89 X509v3 Authority Key Identifier: keyid:0F:E8:CA:64:87:0A:3D:63:91:1C:8D:2D:65:1B:A2:9C:AC:ED:0E:CA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B428B/3A0B6C0C847711EAB3B43680C4F9AE02/D-jKZIcKPWORHI0tZRuinKztDso.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D-jKZIcKPWORHI0tZRuinKztDso.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B428B/3A0B6C0C847711EAB3B43680C4F9AE02/D-jKZIcKPWORHI0tZRuinKztDso.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8a:75:07:7d:64:5a:10:73:02:1a:f0:b6:bc:ae:1a:a3:00:f8: ea:5a:e5:1b:6a:17:c4:e3:04:26:b2:5f:cf:76:f5:7e:e8:6e: cc:43:e6:f2:b6:63:ee:0f:e8:02:14:c9:0c:65:73:7d:ed:9f: 8e:41:50:09:0f:ec:ed:5a:e4:16:ed:12:05:e3:5b:8d:7d:fe: 0e:76:d9:13:04:69:48:c0:fb:91:51:7f:04:84:f7:20:9c:e6: 03:85:32:02:a0:a3:3a:f8:6e:aa:5c:98:23:b7:b1:1d:90:60: 36:b1:a6:f6:6a:10:97:49:2c:97:17:48:91:af:82:28:25:74: 05:68:ff:30:dc:5f:6d:11:36:d6:12:96:dc:73:53:88:e0:5f: 31:41:2e:e6:9a:1f:98:0d:b8:49:78:8e:db:18:1d:f8:53:0e: 45:0e:ad:d6:98:cb:04:ee:2a:15:78:50:71:96:35:28:7c:3b: 5a:2d:6b:fc:e8:bf:5c:7c:0d:a8:d7:07:66:cd:70:4d:8a:51: 87:9b:41:5f:91:ad:f7:f1:f2:e4:ed:e7:3d:1a:b9:f0:17:8a: e8:97:18:7a:68:16:c4:4f:23:4a:c8:7c:cb:4f:a7:b5:89:5a: 3d:9b:53:d1:79:1b:a4:17:80:04:f9:fa:79:d2:4c:3c:0d:3d: d9:4e:1e:77 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCcMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjQyOEIxMTAvBgNVBAUTKDBGRThDQTY0ODcwQTNENjM5MTFDOEQyRDY1MUJBMjlD QUNFRDBFQ0EwHhcNMjUwNjEyMTk0NzMxWhcNMjUwNjE5MTk0NzMxWjAYMRYwFAYD VQQDEw02ODRiMmVkMy0zYjg3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvUr0oiFIbwHYuVxIhSaDF0Zci82Qejmc9QzgTJ+HPEWZpV+7wCaZ/Tl14sgs SDGYLk14qob874FnuI9OwQchc4fjf6tnv+VngOQotuPiNaPsdYo2yRiQxC/eVZj2 UpPDPROFQvWh2+dyN/0XN185jn4ilQg5OvX/oncEjgJjyCTs6CHhIjwPP2ymTlJw cH2gUoELSPDSJK7972pzNvbmBOjCeXb5W/+9fU1pTPZzuZi37gLchGHxKR/BKaOe dJddWb07utK6tL1a8Rs0388yhzfCBBMiOvobiFoQThR34mGGJL4hCwnC5gqqw/sN JaXd+fw3/BoxY8cHobQRfNiHpQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDf6pCLg Y7NA6AW4gMt0h6pjoyOJMB8GA1UdIwQYMBaAFA/oymSHCj1jkRyNLWUbopys7Q7K MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNDI4Qi8zQTBCNkMwQzg0 NzcxMUVBQjNCNDM2ODBDNEY5QUUwMi9ELWpLWkljS1BXT1JISTB0WlJ1aW5LenRE c28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0QtaktaSWNLUFdPUkhJMHRaUnVpbkt6dERzby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NDI4Qi8zQTBCNkMwQzg0NzcxMUVBQjNCNDM2ODBDNEY5QUUwMi9ELWpLWkljS1BX T1JISTB0WlJ1aW5LenREc28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCKdQd9ZFoQcwIa8La8rhqjAPjqWuUbahfE4wQmsl/PdvV+6G7MQ+by tmPuD+gCFMkMZXN97Z+OQVAJD+ztWuQW7RIF41uNff4OdtkTBGlIwPuRUX8EhPcg nOYDhTICoKM6+G6qXJgjt7EdkGA2sab2ahCXSSyXF0iRr4IoJXQFaP8w3F9tETbW Epbcc1OI4F8xQS7mmh+YDbhJeI7bGB34Uw5FDq3WmMsE7ioVeFBxljUofDtaLWv8 6L9cfA2o1wdmzXBNilGHm0Ffka338fLk7ec9GrnwF4rolxh6aBbETyNKyHzLT6e1 iVo9m1PReRukF4AE+fp50kw8DT3ZTh53 -----END CERTIFICATE-----Generated at Sat Jun 14 19:32:21 2025 by rpki-client