$ rpki-client -vvf rpki.apnic.net/member_repository/A91C1FCC/CDBC5986730911EAA8820030C4F9AE02/CNJW1CbKIXH86BfGRSP4MqNpF70.mft File: CNJW1CbKIXH86BfGRSP4MqNpF70.mft (raw, json) Hash identifier: 20pcZkHNAUMMrt0cVvJj70aqiqlhdTEU+F+3AmC/gZQ= Subject key identifier: 8D:48:4D:03:17:64:A9:F8:EF:21:F4:95:73:79:FB:14:7E:D7:C5:C4 Authority key identifier: 08:D2:56:D4:26:CA:21:71:FC:E8:17:C6:45:23:F8:32:A3:69:17:BD Certificate issuer: /CN=A91C1FCC/serialNumber=08D256D426CA2171FCE817C64523F832A36917BD Certificate serial: 0A55 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CNJW1CbKIXH86BfGRSP4MqNpF70.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C1FCC/CDBC5986730911EAA8820030C4F9AE02/CNJW1CbKIXH86BfGRSP4MqNpF70.mft Manifest number: 0A35 Signing time: Thu 12 Jun 2025 19:35:18 +0000 Manifest this update: Thu 12 Jun 2025 19:35:17 +0000 Manifest next update: Thu 19 Jun 2025 19:35:17 +0000 Files and hashes: 1: CNJW1CbKIXH86BfGRSP4MqNpF70.crl (hash: r20geAhs6hFqtHPTFBfw80TAtLnWUYBlh4k2euFU8h4=) 2: F15AD62031FA11EE96640F3EC4F9AE02.roa (hash: ZBqZrZzLa2IT8UIY6w09sQHwLL5zrRzqV4vns9/3wIc=) 3: 54098620A37B11EFAC4F8E3CC4F9AE02.roa (hash: hSui0ebWc4lkxLtGfFPvwezZYPnLWYoUQ7IH9/TNQXs=) 4: 8F12C9C8391F11EFB455E565C4F9AE02.roa (hash: RxQekEsAzfRoaXQlF9gfuPb3rEYz9GMB9M+EsFimH7E=) 5: C6671418A37A11EFBED1AE3BC4F9AE02.roa (hash: t7QLTmlrwRSdzxwkZ3ICKVh+ifH3BRpvn3KoSgjF9OI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C1FCC/CDBC5986730911EAA8820030C4F9AE02/CNJW1CbKIXH86BfGRSP4MqNpF70.crl rsync://rpki.apnic.net/member_repository/A91C1FCC/CDBC5986730911EAA8820030C4F9AE02/CNJW1CbKIXH86BfGRSP4MqNpF70.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CNJW1CbKIXH86BfGRSP4MqNpF70.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 19 Jun 2025 19:35:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2645 (0xa55) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C1FCC, serialNumber=08D256D426CA2171FCE817C64523F832A36917BD Validity Not Before: Jun 12 19:35:17 2025 GMT Not After : Jun 19 19:35:17 2025 GMT Subject: CN=684b2bf5-7f7d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:80:29:1a:84:0c:f9:dc:78:78:76:2e:58:7f: b5:09:d4:1f:55:70:1d:31:66:e2:8b:87:39:bc:d8: cb:37:74:66:22:1c:02:57:38:d2:51:e3:ca:f6:26: a2:ce:ea:2f:a0:8e:99:e3:99:06:46:ea:de:9b:07: 8a:b2:5a:4f:4d:8b:c8:cd:f6:0d:75:6f:71:8a:88: 7e:d0:17:bb:62:65:69:71:cd:32:94:e8:3b:d6:3e: 62:81:95:58:fd:01:05:bd:2a:fc:ac:25:16:a4:8f: 09:d8:7e:64:b1:a1:05:81:08:90:e4:22:3c:3f:6c: cb:77:e0:fb:63:ea:a4:9f:18:8c:1d:a1:37:ad:1d: b8:f9:cf:8e:98:dc:70:01:4a:b6:88:84:7d:0a:e4: 27:ea:40:e6:18:fc:55:49:46:bd:be:c1:c7:6f:54: 59:5b:c6:4d:f1:52:fd:b9:9a:9d:cd:42:ae:f3:54: 07:e3:d2:98:2f:bd:e3:f2:72:d5:b7:07:b8:c7:aa: a5:28:0b:64:a8:56:d8:40:60:b1:66:08:3c:bb:79: b1:e5:45:9c:66:32:6b:60:75:39:4e:59:14:68:89: 81:67:10:35:46:04:80:3b:77:f3:c6:25:84:84:b8: b6:f2:1d:d2:6e:b2:4c:95:c8:69:b9:4e:dd:f9:f7: 39:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8D:48:4D:03:17:64:A9:F8:EF:21:F4:95:73:79:FB:14:7E:D7:C5:C4 X509v3 Authority Key Identifier: keyid:08:D2:56:D4:26:CA:21:71:FC:E8:17:C6:45:23:F8:32:A3:69:17:BD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C1FCC/CDBC5986730911EAA8820030C4F9AE02/CNJW1CbKIXH86BfGRSP4MqNpF70.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CNJW1CbKIXH86BfGRSP4MqNpF70.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C1FCC/CDBC5986730911EAA8820030C4F9AE02/CNJW1CbKIXH86BfGRSP4MqNpF70.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 22:c5:8a:1c:d7:8c:0e:11:9c:9e:18:9f:89:05:63:9e:10:a7: 0f:d8:b4:b7:10:85:b4:8a:89:8e:d0:23:03:63:e3:c3:e3:a3: c4:43:08:cc:c6:03:d3:9d:81:20:f0:10:65:ce:5a:26:6b:44: 6f:07:b0:17:48:88:81:46:f3:78:64:a9:e7:ad:1e:d3:58:d8: cb:e7:a5:7e:96:c3:e9:c8:dc:04:58:d6:8b:79:0c:a6:17:4f: 30:07:05:55:f0:08:b5:1e:69:69:01:b8:03:1a:34:c0:a0:90: df:c6:39:43:4e:7f:08:ac:de:e8:05:a2:44:3f:f3:e8:1d:54: dd:21:b4:a3:c6:a6:72:b8:96:c6:5b:71:b2:70:53:1a:fc:35: af:f2:f6:08:70:f6:d3:11:38:e9:bd:dd:2c:89:d5:78:9b:3a: 83:a0:d4:d0:f3:5d:5b:ba:e2:2c:0e:1d:16:6c:1d:88:ee:26: dc:9f:5f:e7:b0:5e:85:cd:94:7f:02:dc:8c:3c:b2:26:27:ac: bb:79:05:7f:f1:56:5a:69:bd:d0:32:2a:48:33:9c:4f:47:00: 12:b8:10:6b:2d:0b:a8:d8:9f:01:89:1b:16:b0:74:ba:ac:82: 37:ab:80:65:b5:5a:e2:d8:ea:cd:8c:3d:bb:21:bd:22:8e:b9: d3:f1:5a:5d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICClUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzFGQ0MxMTAvBgNVBAUTKDA4RDI1NkQ0MjZDQTIxNzFGQ0U4MTdDNjQ1MjNGODMy QTM2OTE3QkQwHhcNMjUwNjEyMTkzNTE3WhcNMjUwNjE5MTkzNTE3WjAYMRYwFAYD VQQDEw02ODRiMmJmNS03ZjdkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtIApGoQM+dx4eHYuWH+1CdQfVXAdMWbii4c5vNjLN3RmIhwCVzjSUePK9iai zuovoI6Z45kGRuremweKslpPTYvIzfYNdW9xioh+0Be7YmVpcc0ylOg71j5igZVY /QEFvSr8rCUWpI8J2H5ksaEFgQiQ5CI8P2zLd+D7Y+qknxiMHaE3rR24+c+OmNxw AUq2iIR9CuQn6kDmGPxVSUa9vsHHb1RZW8ZN8VL9uZqdzUKu81QH49KYL73j8nLV twe4x6qlKAtkqFbYQGCxZgg8u3mx5UWcZjJrYHU5TlkUaImBZxA1RgSAO3fzxiWE hLi28h3SbrJMlchpuU7d+fc5OwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFI1ITQMX ZKn47yH0lXN5+xR+18XEMB8GA1UdIwQYMBaAFAjSVtQmyiFx/OgXxkUj+DKjaRe9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMUZDQy9DREJDNTk4Njcz MDkxMUVBQTg4MjAwMzBDNEY5QUUwMi9DTkpXMUNiS0lYSDg2QmZHUlNQNE1xTnBG NzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NOSlcxQ2JLSVhIODZCZkdSU1A0TXFOcEY3MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MUZDQy9DREJDNTk4NjczMDkxMUVBQTg4MjAwMzBDNEY5QUUwMi9DTkpXMUNiS0lY SDg2QmZHUlNQNE1xTnBGNzAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAixYoc14wOEZyeGJ+JBWOeEKcP2LS3EIW0iomO0CMDY+PD46PEQwjM xgPTnYEg8BBlzloma0RvB7AXSIiBRvN4ZKnnrR7TWNjL56V+lsPpyNwEWNaLeQym F08wBwVV8Ai1HmlpAbgDGjTAoJDfxjlDTn8IrN7oBaJEP/PoHVTdIbSjxqZyuJbG W3GycFMa/DWv8vYIcPbTETjpvd0sidV4mzqDoNTQ811buuIsDh0WbB2I7ibcn1/n sF6FzZR/AtyMPLImJ6y7eQV/8VZaab3QMipIM5xPRwASuBBrLQuo2J8BiRsWsHS6 rII3q4BltVri2OrNjD27Ib0ijrnT8Vpd -----END CERTIFICATE-----Generated at Sat Jun 14 17:39:00 2025 by rpki-client