$ rpki-client -vvf rpki.apnic.net/member_repository/A91C3A74/753D71EE3AB511E7B8609F1CC4F9AE02/jhH8tOi9Y9J7hOstUmcMoXT5xDw.mft File: jhH8tOi9Y9J7hOstUmcMoXT5xDw.mft (raw, json) Hash identifier: 3jsZMd3Qm3f1VEw5YhqGaHgwZVkGhsMTA0nQtvW19eY= Subject key identifier: 86:E1:92:92:8C:74:05:37:96:A1:45:7F:B3:F1:6D:42:77:01:B4:55 Authority key identifier: 8E:11:FC:B4:E8:BD:63:D2:7B:84:EB:2D:52:67:0C:A1:74:F9:C4:3C Certificate issuer: /CN=A91C3A74/serialNumber=8E11FCB4E8BD63D27B84EB2D52670CA174F9C43C Certificate serial: 1A8F Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/jhH8tOi9Y9J7hOstUmcMoXT5xDw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C3A74/753D71EE3AB511E7B8609F1CC4F9AE02/jhH8tOi9Y9J7hOstUmcMoXT5xDw.mft Manifest number: 1A88 Signing time: Fri 20 Jun 2025 15:45:15 +0000 Manifest this update: Fri 20 Jun 2025 15:45:14 +0000 Manifest next update: Fri 27 Jun 2025 15:45:14 +0000 Files and hashes: 1: jhH8tOi9Y9J7hOstUmcMoXT5xDw.crl (hash: Rpt3+p/2bxQytImuEYCaE0bCet4sRz/VgVEWWKnnc7Y=) 2: AFA37450139811EA807F1A26C4F9AE02.roa (hash: EvR5gfpmDfAVmSaNBVyf31LRk9wTqTU6OTSsCqxA5UQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C3A74/753D71EE3AB511E7B8609F1CC4F9AE02/jhH8tOi9Y9J7hOstUmcMoXT5xDw.crl rsync://rpki.apnic.net/member_repository/A91C3A74/753D71EE3AB511E7B8609F1CC4F9AE02/jhH8tOi9Y9J7hOstUmcMoXT5xDw.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/jhH8tOi9Y9J7hOstUmcMoXT5xDw.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 27 Jun 2025 15:45:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6799 (0x1a8f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C3A74, serialNumber=8E11FCB4E8BD63D27B84EB2D52670CA174F9C43C Validity Not Before: Jun 20 15:45:14 2025 GMT Not After : Jun 27 15:45:14 2025 GMT Subject: CN=6855820a-150b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:72:4a:e7:05:f9:d4:ad:da:e9:b4:68:6a:28: 68:a4:e6:e6:52:2e:9e:04:3b:93:7c:41:c4:78:93: 74:48:7a:39:50:29:6f:26:3a:9a:00:0f:f0:70:bf: 53:68:12:35:6f:60:ca:14:39:72:d1:96:01:0d:3c: 40:fb:38:c3:9a:bc:da:92:30:3f:4d:5d:23:02:73: 07:ba:15:2a:e5:2b:7d:d1:7a:da:35:c9:67:9f:f8: 9e:3c:c2:ee:9c:d8:eb:92:08:02:0e:56:f3:de:14: 34:c3:a6:59:9c:47:5c:5a:a2:9b:dd:3b:42:67:64: 5e:3c:37:79:4c:e1:bd:1f:97:9f:2b:9e:2a:dc:6e: 32:60:b6:6d:6d:65:73:4a:68:22:24:73:2e:86:9b: 8d:6b:5f:21:b5:12:c6:21:70:f7:28:b3:32:f1:d1: 6b:4d:f2:53:85:11:2f:86:83:24:8b:be:0d:68:bc: 22:30:1b:a9:c5:da:53:69:45:e2:09:96:ad:dc:88: 94:5f:9b:5d:b0:30:ce:f7:ea:e4:f0:f9:23:be:46: 2d:5f:06:01:2e:66:b1:45:e8:f6:d9:96:ce:dd:ff: 4c:7e:f1:99:df:06:f6:6f:de:5b:5d:0b:2c:c2:bb: 50:8d:d7:da:96:a7:0b:9f:65:fa:e4:6f:c6:ba:bb: 43:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 86:E1:92:92:8C:74:05:37:96:A1:45:7F:B3:F1:6D:42:77:01:B4:55 X509v3 Authority Key Identifier: keyid:8E:11:FC:B4:E8:BD:63:D2:7B:84:EB:2D:52:67:0C:A1:74:F9:C4:3C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C3A74/753D71EE3AB511E7B8609F1CC4F9AE02/jhH8tOi9Y9J7hOstUmcMoXT5xDw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/jhH8tOi9Y9J7hOstUmcMoXT5xDw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C3A74/753D71EE3AB511E7B8609F1CC4F9AE02/jhH8tOi9Y9J7hOstUmcMoXT5xDw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption d4:1e:27:3d:d4:fe:7f:01:b8:92:00:03:82:51:40:56:d6:07: 16:50:25:98:ad:79:ae:d6:04:69:89:16:ec:e7:5b:cc:af:c6: 3b:72:61:4c:c4:ee:b1:1a:2d:0b:a6:68:1d:47:89:50:b8:87: ef:9f:d1:1f:5a:bb:0a:8c:6f:f3:11:cc:fc:cb:88:66:0a:f1: 05:46:81:eb:b1:c0:36:45:9d:c9:e0:d9:6a:02:4a:55:a7:a3: 82:d3:f4:0a:aa:41:66:53:45:7e:5d:f4:eb:58:99:29:8f:f7: 01:34:61:08:eb:ec:bb:7e:a2:8b:6b:35:ae:68:4c:3c:5e:b9: d4:b5:6a:17:99:b2:dd:26:47:7a:dc:eb:55:9b:41:12:58:48: 0d:5c:ac:72:e0:62:32:ea:ad:91:29:af:2e:c0:0a:35:01:6f: 2f:be:09:11:5b:ac:a9:8c:99:fb:3d:e2:f7:fb:2d:c7:d4:98: eb:1d:df:88:bd:80:39:d9:f5:7a:05:25:cc:93:15:96:90:ea: 94:73:cf:81:0f:45:6e:d5:5e:5c:18:ca:6d:7d:2d:a7:ae:8f: 3c:8a:62:01:48:63:7a:c5:ec:f3:6d:42:c9:e0:5e:ad:c5:07: fb:91:1a:a1:4f:56:1e:46:12:45:ed:a2:29:c4:71:19:da:91: e5:99:63:0a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICGo8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzNBNzQxMTAvBgNVBAUTKDhFMTFGQ0I0RThCRDYzRDI3Qjg0RUIyRDUyNjcwQ0Ex NzRGOUM0M0MwHhcNMjUwNjIwMTU0NTE0WhcNMjUwNjI3MTU0NTE0WjAYMRYwFAYD VQQDEw02ODU1ODIwYS0xNTBiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3HJK5wX51K3a6bRoaihopObmUi6eBDuTfEHEeJN0SHo5UClvJjqaAA/wcL9T aBI1b2DKFDly0ZYBDTxA+zjDmrzakjA/TV0jAnMHuhUq5St90XraNclnn/iePMLu nNjrkggCDlbz3hQ0w6ZZnEdcWqKb3TtCZ2RePDd5TOG9H5efK54q3G4yYLZtbWVz SmgiJHMuhpuNa18htRLGIXD3KLMy8dFrTfJThREvhoMki74NaLwiMBupxdpTaUXi CZat3IiUX5tdsDDO9+rk8PkjvkYtXwYBLmaxRej22ZbO3f9MfvGZ3wb2b95bXQss wrtQjdfalqcLn2X65G/GurtDTwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIbhkpKM dAU3lqFFf7PxbUJ3AbRVMB8GA1UdIwQYMBaAFI4R/LTovWPSe4TrLVJnDKF0+cQ8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDM0E3NC83NTNENzFFRTNB QjUxMUU3Qjg2MDlGMUNDNEY5QUUwMi9qaEg4dE9pOVk5SjdoT3N0VW1jTW9YVDV4 RHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL2poSDh0T2k5WTlKN2hPc3RVbWNNb1hUNXhEdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD M0E3NC83NTNENzFFRTNBQjUxMUU3Qjg2MDlGMUNDNEY5QUUwMi9qaEg4dE9pOVk5 SjdoT3N0VW1jTW9YVDV4RHcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDUHic91P5/AbiSAAOCUUBW1gcWUCWYrXmu1gRpiRbs51vMr8Y7cmFM xO6xGi0LpmgdR4lQuIfvn9EfWrsKjG/zEcz8y4hmCvEFRoHrscA2RZ3J4NlqAkpV p6OC0/QKqkFmU0V+XfTrWJkpj/cBNGEI6+y7fqKLazWuaEw8XrnUtWoXmbLdJkd6 3OtVm0ESWEgNXKxy4GIy6q2RKa8uwAo1AW8vvgkRW6ypjJn7PeL3+y3H1JjrHd+I vYA52fV6BSXMkxWWkOqUc8+BD0Vu1V5cGMptfS2nro88imIBSGN6xezzbULJ4F6t xQf7kRqhT1YeRhJF7aIpxHEZ2pHlmWMK -----END CERTIFICATE-----Generated at Sat Jun 21 01:43:21 2025 by rpki-client