$ rpki-client -vvf rpki.apnic.net/member_repository/A91C5D53/05FFC00EAC8411EF8214972BC4F9AE02/1icW92HxiNVvoRf53JS-QUEEpoE.mft File: 1icW92HxiNVvoRf53JS-QUEEpoE.mft (raw, json) Hash identifier: r3kvZa6CfPnOtABZqFrKiMQvd5NBKWQWI8PXnWAkF9g= Subject key identifier: 74:51:F8:1B:DB:AB:48:B0:5C:D3:3E:DB:2B:E6:29:32:09:3D:E1:1E Authority key identifier: D6:27:16:F7:61:F1:88:D5:6F:A1:17:F9:DC:94:BE:41:41:04:A6:81 Certificate issuer: /CN=A91C5D53/serialNumber=D62716F761F188D56FA117F9DC94BE414104A681 Certificate serial: 69 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1icW92HxiNVvoRf53JS-QUEEpoE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C5D53/05FFC00EAC8411EF8214972BC4F9AE02/1icW92HxiNVvoRf53JS-QUEEpoE.mft Manifest number: 68 Signing time: Sun 15 Jun 2025 06:05:51 +0000 Manifest this update: Sun 15 Jun 2025 06:05:50 +0000 Manifest next update: Sun 22 Jun 2025 06:05:50 +0000 Files and hashes: 1: 1icW92HxiNVvoRf53JS-QUEEpoE.crl (hash: 0qCPBs6dKeJpGusQW1qWkq3NIe47Jegib3B113cu3VE=) 2: BB5954CE241111F094390A32C4F9AE02.roa (hash: amE47EhnSit+US/UtKoH9NH2bYhuMwqLRibNnGMwK/Q=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C5D53/05FFC00EAC8411EF8214972BC4F9AE02/1icW92HxiNVvoRf53JS-QUEEpoE.crl rsync://rpki.apnic.net/member_repository/A91C5D53/05FFC00EAC8411EF8214972BC4F9AE02/1icW92HxiNVvoRf53JS-QUEEpoE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1icW92HxiNVvoRf53JS-QUEEpoE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 22 Jun 2025 02:50:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 105 (0x69) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C5D53, serialNumber=D62716F761F188D56FA117F9DC94BE414104A681 Validity Not Before: Jun 15 06:05:50 2025 GMT Not After : Jun 22 06:05:50 2025 GMT Subject: CN=684e62be-4990 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:51:1c:7d:ec:01:76:50:4f:69:65:12:87:bb: 88:e5:a5:bf:a6:72:58:c4:47:85:5c:5e:97:15:62: 8e:5f:8a:0b:3a:94:be:0f:2e:94:df:c1:72:07:17: 53:18:72:95:70:dc:7e:07:b4:22:b4:dc:00:7b:fb: 30:91:28:fe:c0:1a:06:89:6e:0f:b0:40:83:de:f1: 2c:5f:90:6f:87:d7:ba:bb:cc:e1:a4:f6:d2:24:f9: 38:55:36:14:87:ec:5d:9b:cb:df:9e:e8:60:3a:7d: f3:21:ca:21:68:40:e0:a2:d1:8e:1c:1a:fb:ce:f9: 8f:b7:9c:95:10:53:b1:53:2c:18:a5:9e:f6:aa:aa: ae:c7:b6:47:62:18:95:02:54:3c:94:39:16:66:43: a8:5b:47:b5:1b:94:5b:db:da:37:b2:67:56:03:35: e3:4a:8b:2c:a8:ff:2d:a4:be:76:3b:72:11:b8:a7: e7:c7:9f:f5:07:8a:a3:1c:2d:e2:f9:1e:c3:91:e4: 29:54:ad:a6:20:5a:bc:c1:b8:96:02:54:8c:88:da: 15:35:05:18:fb:45:37:0a:1e:04:2e:33:ed:94:7f: 86:19:4d:5a:32:ab:79:05:d6:26:3c:5b:a8:55:18: 1e:fd:73:2b:13:c7:df:9e:76:50:50:4f:cc:49:8e: 6a:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 74:51:F8:1B:DB:AB:48:B0:5C:D3:3E:DB:2B:E6:29:32:09:3D:E1:1E X509v3 Authority Key Identifier: keyid:D6:27:16:F7:61:F1:88:D5:6F:A1:17:F9:DC:94:BE:41:41:04:A6:81 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C5D53/05FFC00EAC8411EF8214972BC4F9AE02/1icW92HxiNVvoRf53JS-QUEEpoE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1icW92HxiNVvoRf53JS-QUEEpoE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C5D53/05FFC00EAC8411EF8214972BC4F9AE02/1icW92HxiNVvoRf53JS-QUEEpoE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a4:7d:08:9d:e8:ec:2c:cf:4a:8d:e3:27:8a:2a:83:e7:bd:0b: 0d:24:4b:9d:0e:3b:87:8c:ca:48:91:30:19:94:38:a3:91:f4: 11:fb:b2:1a:a1:d6:20:27:e3:e1:5a:a6:bb:d9:78:9e:d5:4b: bd:ba:0a:38:89:5b:86:1d:30:ca:25:e5:a0:1d:9b:5b:1a:9a: da:6c:7e:be:c6:fa:9b:9c:9b:89:44:cd:19:bd:2c:2a:53:db: 07:be:9d:69:84:66:4a:d2:48:b5:9b:a6:fb:1f:37:86:02:04: 7e:b5:2a:47:ab:ab:da:a6:50:f2:41:8c:d0:19:50:8d:56:bd: 8d:04:ac:3b:42:62:b5:63:f9:f1:00:14:37:73:fc:a4:0e:e6: cf:c4:bd:07:5d:b8:33:9b:ea:75:92:14:51:cb:4c:9a:75:fb: d9:ae:a4:ed:75:1a:5b:32:6c:2d:bf:08:a2:67:92:91:a8:e3: bc:cb:dc:68:ba:67:55:89:6e:3b:77:c5:33:f1:ff:7a:24:a2: 1e:06:0c:a1:70:22:39:77:c1:ef:8c:86:28:94:45:8a:f3:4b: 5d:6f:63:d7:c8:7b:fc:10:de:d0:de:51:4c:fb:81:35:e4:05: 7e:49:f9:3f:f3:7e:e0:5a:9e:2c:9f:96:74:53:9a:8c:9b:3b: 42:8d:f8:c8 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBaTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFD NUQ1MzExMC8GA1UEBRMoRDYyNzE2Rjc2MUYxODhENTZGQTExN0Y5REM5NEJFNDE0 MTA0QTY4MTAeFw0yNTA2MTUwNjA1NTBaFw0yNTA2MjIwNjA1NTBaMBgxFjAUBgNV BAMTDTY4NGU2MmJlLTQ5OTAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDJURx97AF2UE9pZRKHu4jlpb+mcljER4VcXpcVYo5figs6lL4PLpTfwXIHF1MY cpVw3H4HtCK03AB7+zCRKP7AGgaJbg+wQIPe8SxfkG+H17q7zOGk9tIk+ThVNhSH 7F2by9+e6GA6ffMhyiFoQOCi0Y4cGvvO+Y+3nJUQU7FTLBilnvaqqq7HtkdiGJUC VDyUORZmQ6hbR7UblFvb2jeyZ1YDNeNKiyyo/y2kvnY7chG4p+fHn/UHiqMcLeL5 HsOR5ClUraYgWrzBuJYCVIyI2hU1BRj7RTcKHgQuM+2Uf4YZTVoyq3kF1iY8W6hV GB79cysTx9+edlBQT8xJjmqzAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUdFH4G9ur SLBc0z7bK+YpMgk94R4wHwYDVR0jBBgwFoAU1icW92HxiNVvoRf53JS+QUEEpoEw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUM1RDUzLzA1RkZDMDBFQUM4 NDExRUY4MjE0OTcyQkM0RjlBRTAyLzFpY1c5Mkh4aU5Wdm9SZjUzSlMtUVVFRXBv RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvMWljVzkySHhpTlZ2b1JmNTNKUy1RVUVFcG9FLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUM1 RDUzLzA1RkZDMDBFQUM4NDExRUY4MjE0OTcyQkM0RjlBRTAyLzFpY1c5Mkh4aU5W dm9SZjUzSlMtUVVFRXBvRS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAKR9CJ3o7CzPSo3jJ4oqg+e9Cw0kS50OO4eMykiRMBmUOKOR9BH7shqh 1iAn4+FaprvZeJ7VS726CjiJW4YdMMol5aAdm1samtpsfr7G+pucm4lEzRm9LCpT 2we+nWmEZkrSSLWbpvsfN4YCBH61Kkerq9qmUPJBjNAZUI1WvY0ErDtCYrVj+fEA FDdz/KQO5s/EvQdduDOb6nWSFFHLTJp1+9mupO11GlsybC2/CKJnkpGo47zL3Gi6 Z1WJbjt3xTPx/3okoh4GDKFwIjl3we+MhiiURYrzS11vY9fIe/wQ3tDeUUz7gTXk BX5J+T/zfuBaniyflnRTmoybO0KN+Mg= -----END CERTIFICATE-----Generated at Sun Jun 15 08:38:11 2025 by rpki-client