$ rpki-client -vvf rpki.apnic.net/member_repository/A91C2610/BFD3E92EA1E411EFB98B0C4EC4F9AE02/J8h7XjCwPCwVCiLmxCpeBpnJC_w.mft File: J8h7XjCwPCwVCiLmxCpeBpnJC_w.mft (raw, json) Hash identifier: H1tMVML8BgNqQ0reIGMuXO28tLGJr0hCcwu0e6e63XI= Subject key identifier: 49:9A:69:FB:85:35:D0:22:57:66:9E:00:8A:39:4C:CB:0F:FF:AA:EB Authority key identifier: 27:C8:7B:5E:30:B0:3C:2C:15:0A:22:E6:C4:2A:5E:06:99:C9:0B:FC Certificate issuer: /CN=A91C2610/serialNumber=27C87B5E30B03C2C150A22E6C42A5E0699C90BFC Certificate serial: 70 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/J8h7XjCwPCwVCiLmxCpeBpnJC_w.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C2610/BFD3E92EA1E411EFB98B0C4EC4F9AE02/J8h7XjCwPCwVCiLmxCpeBpnJC_w.mft Manifest number: 70 Signing time: Fri 13 Jun 2025 05:48:46 +0000 Manifest this update: Fri 13 Jun 2025 05:48:46 +0000 Manifest next update: Fri 20 Jun 2025 05:48:46 +0000 Files and hashes: 1: J8h7XjCwPCwVCiLmxCpeBpnJC_w.crl (hash: FtCZVDtrfj6fchrlWBxXKUX0bDtxqSBAn58XldUrtqI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C2610/BFD3E92EA1E411EFB98B0C4EC4F9AE02/J8h7XjCwPCwVCiLmxCpeBpnJC_w.crl rsync://rpki.apnic.net/member_repository/A91C2610/BFD3E92EA1E411EFB98B0C4EC4F9AE02/J8h7XjCwPCwVCiLmxCpeBpnJC_w.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/J8h7XjCwPCwVCiLmxCpeBpnJC_w.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 20 Jun 2025 05:48:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 112 (0x70) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C2610, serialNumber=27C87B5E30B03C2C150A22E6C42A5E0699C90BFC Validity Not Before: Jun 13 05:48:46 2025 GMT Not After : Jun 20 05:48:46 2025 GMT Subject: CN=684bbbbe-b170 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:cb:dd:90:6e:15:2e:d6:dd:6c:60:3f:d0:2c: f9:88:03:3c:e6:35:d8:90:87:c7:e5:aa:bf:00:a5: 26:c7:74:e9:15:09:53:9f:ba:b5:79:d1:b5:fc:03: 05:07:d0:10:2f:79:e1:d1:b4:50:48:7c:35:99:12: 79:a2:a2:9e:60:dc:be:52:b4:a5:73:46:2f:6d:f5: a4:cb:ce:3a:1a:f0:99:f3:3f:ad:02:e0:80:37:da: 92:f6:e6:68:4c:47:ea:dd:02:5f:0c:0d:4a:f1:da: e6:e5:8b:04:43:86:bc:c1:2c:b8:89:99:41:0a:3d: 68:3c:71:6a:43:c9:c4:c3:6d:40:4a:32:6c:cc:c9: 76:37:35:ae:90:b2:59:d6:f0:07:cd:34:24:fc:00: bf:85:0c:9a:78:b8:ed:59:20:4c:5c:7c:49:0d:21: cf:7d:95:c0:9e:06:c8:9b:6b:b4:c0:f0:be:8f:6c: 52:94:19:cf:6d:0b:ae:07:a7:f2:a5:b2:f4:86:c6: 3c:c1:86:b5:98:53:a3:51:6d:da:62:51:c4:d8:49: 8d:f9:fc:3b:36:1c:60:6b:e4:fa:10:ad:b2:60:e1: 99:b1:14:24:63:f5:b8:1f:e1:96:d6:28:0d:43:b7: 21:f9:f4:21:ef:0a:12:31:a4:b1:81:30:8f:04:12: 10:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 49:9A:69:FB:85:35:D0:22:57:66:9E:00:8A:39:4C:CB:0F:FF:AA:EB X509v3 Authority Key Identifier: keyid:27:C8:7B:5E:30:B0:3C:2C:15:0A:22:E6:C4:2A:5E:06:99:C9:0B:FC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C2610/BFD3E92EA1E411EFB98B0C4EC4F9AE02/J8h7XjCwPCwVCiLmxCpeBpnJC_w.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/J8h7XjCwPCwVCiLmxCpeBpnJC_w.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C2610/BFD3E92EA1E411EFB98B0C4EC4F9AE02/J8h7XjCwPCwVCiLmxCpeBpnJC_w.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1a:a4:c3:8d:0a:df:e2:0e:9a:a3:08:75:b4:2b:2f:9a:3e:0f: ba:9f:45:71:cb:32:b4:ee:a3:32:14:ae:d6:43:03:f1:07:18: 88:fe:77:36:bb:06:40:3d:1f:36:ff:40:1b:81:82:a0:d5:dd: 03:2d:87:9d:d2:05:0b:8a:99:1d:ca:13:70:dd:7f:7b:fa:9e: d4:5a:b4:52:42:03:b7:d7:bc:24:2d:4e:e1:71:2d:f6:a7:e1: 67:4e:f0:36:a4:4e:de:73:e2:c2:a0:87:bc:ac:22:68:10:b8: bf:27:66:2f:01:e8:57:9a:ce:c2:df:30:ea:46:f7:f5:e6:ae: 90:6c:70:23:5a:27:8a:af:4a:36:da:de:80:b1:61:13:23:e4: ad:ec:ac:48:98:07:73:5a:05:f9:b8:ce:5e:31:f6:e4:63:e1: 18:b3:76:a0:a4:1a:cd:47:d3:1e:c3:9c:e9:2f:f1:e0:9d:62: c6:0b:86:be:40:94:15:06:a7:9a:4a:d1:8e:f4:e7:e9:fd:fa: 44:63:8e:a3:3d:8c:6c:62:01:61:47:b8:7b:87:2f:84:fd:c0: be:2f:1b:46:66:89:81:d1:69:ff:bc:9b:a8:49:39:f6:25:95: e6:98:a7:7e:ee:76:e0:27:4b:3b:c6:44:2d:cc:86:3f:5d:ae: a7:29:5f:07 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBcDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFD MjYxMDExMC8GA1UEBRMoMjdDODdCNUUzMEIwM0MyQzE1MEEyMkU2QzQyQTVFMDY5 OUM5MEJGQzAeFw0yNTA2MTMwNTQ4NDZaFw0yNTA2MjAwNTQ4NDZaMBgxFjAUBgNV BAMTDTY4NGJiYmJlLWIxNzAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDGy92QbhUu1t1sYD/QLPmIAzzmNdiQh8flqr8ApSbHdOkVCVOfurV50bX8AwUH 0BAveeHRtFBIfDWZEnmiop5g3L5StKVzRi9t9aTLzjoa8JnzP60C4IA32pL25mhM R+rdAl8MDUrx2ubliwRDhrzBLLiJmUEKPWg8cWpDycTDbUBKMmzMyXY3Na6QslnW 8AfNNCT8AL+FDJp4uO1ZIExcfEkNIc99lcCeBsiba7TA8L6PbFKUGc9tC64Hp/Kl svSGxjzBhrWYU6NRbdpiUcTYSY35/Ds2HGBr5PoQrbJg4ZmxFCRj9bgf4ZbWKA1D tyH59CHvChIxpLGBMI8EEhDZAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUSZpp+4U1 0CJXZp4AijlMyw//quswHwYDVR0jBBgwFoAUJ8h7XjCwPCwVCiLmxCpeBpnJC/ww DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUMyNjEwL0JGRDNFOTJFQTFF NDExRUZCOThCMEM0RUM0RjlBRTAyL0o4aDdYakN3UEN3VkNpTG14Q3BlQnBuSkNf dy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvSjhoN1hqQ3dQQ3dWQ2lMbXhDcGVCcG5KQ193LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUMy NjEwL0JGRDNFOTJFQTFFNDExRUZCOThCMEM0RUM0RjlBRTAyL0o4aDdYakN3UEN3 VkNpTG14Q3BlQnBuSkNfdy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBABqkw40K3+IOmqMIdbQrL5o+D7qfRXHLMrTuozIUrtZDA/EHGIj+dza7 BkA9Hzb/QBuBgqDV3QMth53SBQuKmR3KE3Ddf3v6ntRatFJCA7fXvCQtTuFxLfan 4WdO8DakTt5z4sKgh7ysImgQuL8nZi8B6FeazsLfMOpG9/XmrpBscCNaJ4qvSjba 3oCxYRMj5K3srEiYB3NaBfm4zl4x9uRj4RizdqCkGs1H0x7DnOkv8eCdYsYLhr5A lBUGp5pK0Y705+n9+kRjjqM9jGxiAWFHuHuHL4T9wL4vG0ZmiYHRaf+8m6hJOfYl leaYp37uduAnSzvGRC3Mhj9drqcpXwc= -----END CERTIFICATE-----Generated at Sat Jun 14 17:09:33 2025 by rpki-client