$ rpki-client -vvf rpki.apnic.net/member_repository/A91BBCAF/0F61886A6B3211EE9B522053C4F9AE02/J7LmYpFIIhNrCWLbtbpEfCU_Uhs.mft File: J7LmYpFIIhNrCWLbtbpEfCU_Uhs.mft (raw, json) Hash identifier: 8kcRjoz6ugErqATsXBhmMpaJDlm/f2kz/OPjvCx7BiE= Subject key identifier: AE:67:64:29:E5:69:3A:26:54:96:79:D7:D4:49:52:E8:BB:A1:70:B4 Authority key identifier: 27:B2:E6:62:91:48:22:13:6B:09:62:DB:B5:BA:44:7C:25:3F:52:1B Certificate issuer: /CN=A91BBCAF/serialNumber=27B2E662914822136B0962DBB5BA447C253F521B Certificate serial: 013F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/J7LmYpFIIhNrCWLbtbpEfCU_Uhs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BBCAF/0F61886A6B3211EE9B522053C4F9AE02/J7LmYpFIIhNrCWLbtbpEfCU_Uhs.mft Manifest number: 013B Signing time: Fri 13 Jun 2025 03:24:15 +0000 Manifest this update: Fri 13 Jun 2025 03:24:14 +0000 Manifest next update: Fri 20 Jun 2025 03:24:14 +0000 Files and hashes: 1: J7LmYpFIIhNrCWLbtbpEfCU_Uhs.crl (hash: 03q2iKqsQcmTU8/YmUOgUsmzUmPsTZ38CFFZWnL35aM=) 2: D2FA5DBE6C1E11EEBB9EAB7AC4F9AE02.roa (hash: VxCtnEbF2p63KawOX+Ec2pPAYcngxsY5VpNi8SAFc50=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BBCAF/0F61886A6B3211EE9B522053C4F9AE02/J7LmYpFIIhNrCWLbtbpEfCU_Uhs.crl rsync://rpki.apnic.net/member_repository/A91BBCAF/0F61886A6B3211EE9B522053C4F9AE02/J7LmYpFIIhNrCWLbtbpEfCU_Uhs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/J7LmYpFIIhNrCWLbtbpEfCU_Uhs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 20 Jun 2025 03:24:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 319 (0x13f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BBCAF, serialNumber=27B2E662914822136B0962DBB5BA447C253F521B Validity Not Before: Jun 13 03:24:14 2025 GMT Not After : Jun 20 03:24:14 2025 GMT Subject: CN=684b99df-6ae6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:9d:a3:94:f8:fa:79:e9:a7:79:d2:12:a4:20: 1e:b4:da:70:41:7b:42:05:af:73:7b:e6:e9:6a:88: 01:b5:75:3c:9e:15:d4:9e:34:0a:32:ff:87:e5:d5: 78:78:01:83:7c:86:14:45:68:0e:d8:61:7e:b7:3d: f1:99:bc:1f:8a:fe:21:98:cb:df:10:09:8c:a8:f3: 81:83:c9:7e:d9:f4:c5:29:aa:59:83:00:64:3c:d8: 26:35:87:5f:b9:cf:04:81:c6:1b:12:33:80:33:77: f5:48:70:dd:5a:fb:98:a0:74:68:1b:72:8b:ab:8a: 42:e9:cc:78:89:f8:8f:7e:12:37:f7:db:8d:58:d4: 6f:ed:39:88:5e:26:b9:06:f5:a4:b5:4f:bf:14:35: aa:9e:36:2a:63:9a:34:69:a7:49:25:22:6c:f9:ce: ba:d7:ea:3d:d3:fe:a5:5d:58:e6:13:d0:08:57:30: c0:c8:52:ab:3f:e5:70:e4:0b:71:ce:66:b2:12:bf: e6:27:96:b6:df:57:f7:d3:58:d1:d6:7e:04:67:35: 97:ee:32:f9:fa:c8:ab:40:45:77:1a:6f:df:38:5c: 74:e2:7a:58:e7:fa:f8:ca:bc:36:13:00:64:56:13: 2e:eb:17:2c:5e:5d:33:cf:00:51:ad:42:e6:2b:63: 58:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AE:67:64:29:E5:69:3A:26:54:96:79:D7:D4:49:52:E8:BB:A1:70:B4 X509v3 Authority Key Identifier: keyid:27:B2:E6:62:91:48:22:13:6B:09:62:DB:B5:BA:44:7C:25:3F:52:1B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BBCAF/0F61886A6B3211EE9B522053C4F9AE02/J7LmYpFIIhNrCWLbtbpEfCU_Uhs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/J7LmYpFIIhNrCWLbtbpEfCU_Uhs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BBCAF/0F61886A6B3211EE9B522053C4F9AE02/J7LmYpFIIhNrCWLbtbpEfCU_Uhs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4d:c1:24:91:73:5b:b3:d6:fa:1e:9e:1b:f6:26:25:cd:ba:ce: 5e:af:7c:30:1b:47:9f:29:e4:85:3b:66:33:cd:b4:a3:cd:a8: a5:56:54:3a:c6:f5:5c:a3:39:69:16:56:ff:c4:9b:4f:20:ee: d3:d9:0c:75:44:5a:b9:4c:b4:6f:65:ce:03:fd:40:88:32:17: b5:0f:c5:c5:fc:89:b1:a5:6c:80:89:cb:05:7a:6c:a7:94:02: 82:67:0d:50:28:dc:07:db:20:46:c7:86:fe:2c:5a:68:5d:71: ca:72:68:f0:d7:7d:4d:a9:a0:8e:9a:03:ce:b5:d7:9e:1b:8f: 1e:56:8d:7c:bb:f1:9c:38:ad:02:ec:50:1a:97:a2:de:3d:10: 11:ae:5d:8f:52:8b:09:36:79:ed:53:53:d8:ce:ed:43:37:83: 8e:5f:ef:ee:c7:52:76:f3:74:54:70:4c:b6:2a:76:0a:37:73: ea:f9:f1:e1:d7:8c:fb:e0:86:29:05:27:a7:ba:f8:30:e5:4c: 5f:b3:c4:85:16:50:25:51:15:ab:eb:eb:29:4e:79:7c:0e:6a: 13:ea:8e:11:1e:8c:32:b9:49:9d:fd:df:76:e1:9c:aa:d4:7a: 4c:c3:fb:d6:65:f2:18:4e:74:38:e5:ce:a8:f3:fa:a2:47:15: 84:9a:a5:85 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAT8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkJDQUYxMTAvBgNVBAUTKDI3QjJFNjYyOTE0ODIyMTM2QjA5NjJEQkI1QkE0NDdD MjUzRjUyMUIwHhcNMjUwNjEzMDMyNDE0WhcNMjUwNjIwMDMyNDE0WjAYMRYwFAYD VQQDEw02ODRiOTlkZi02YWU2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqJ2jlPj6eemnedISpCAetNpwQXtCBa9ze+bpaogBtXU8nhXUnjQKMv+H5dV4 eAGDfIYURWgO2GF+tz3xmbwfiv4hmMvfEAmMqPOBg8l+2fTFKapZgwBkPNgmNYdf uc8EgcYbEjOAM3f1SHDdWvuYoHRoG3KLq4pC6cx4ifiPfhI399uNWNRv7TmIXia5 BvWktU+/FDWqnjYqY5o0aadJJSJs+c661+o90/6lXVjmE9AIVzDAyFKrP+Vw5Atx zmayEr/mJ5a231f301jR1n4EZzWX7jL5+sirQEV3Gm/fOFx04npY5/r4yrw2EwBk VhMu6xcsXl0zzwBRrULmK2NY+wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFK5nZCnl aTomVJZ519RJUui7oXC0MB8GA1UdIwQYMBaAFCey5mKRSCITawli27W6RHwlP1Ib MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQkNBRi8wRjYxODg2QTZC MzIxMUVFOUI1MjIwNTNDNEY5QUUwMi9KN0xtWXBGSUloTnJDV0xidGJwRWZDVV9V aHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0o3TG1ZcEZJSWhOckNXTGJ0YnBFZkNVX1Vocy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC QkNBRi8wRjYxODg2QTZCMzIxMUVFOUI1MjIwNTNDNEY5QUUwMi9KN0xtWXBGSUlo TnJDV0xidGJwRWZDVV9VaHMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBNwSSRc1uz1voenhv2JiXNus5er3wwG0efKeSFO2YzzbSjzailVlQ6 xvVcozlpFlb/xJtPIO7T2Qx1RFq5TLRvZc4D/UCIMhe1D8XF/ImxpWyAicsFemyn lAKCZw1QKNwH2yBGx4b+LFpoXXHKcmjw131NqaCOmgPOtdeeG48eVo18u/GcOK0C 7FAal6LePRARrl2PUosJNnntU1PYzu1DN4OOX+/ux1J283RUcEy2KnYKN3Pq+fHh 14z74IYpBSenuvgw5Uxfs8SFFlAlURWr6+spTnl8DmoT6o4RHowyuUmd/d924Zyq 1HpMw/vWZfIYTnQ45c6o8/qiRxWEmqWF -----END CERTIFICATE-----Generated at Sat Jun 14 17:20:03 2025 by rpki-client