$ rpki-client -vvf rpki.apnic.net/member_repository/A91C8DD5/D5A1A1C612A711E7ADB4DE4DC4F9AE02/1sP4E3joVAB4unmUQu7b7HgOD3s.mft File: 1sP4E3joVAB4unmUQu7b7HgOD3s.mft (raw, json) Hash identifier: uHyLb8YINCa8zCl7FV05Nu9h8ByUxmcsw2JbV6kZfps= Subject key identifier: 44:9D:BF:FA:A0:33:50:B8:CF:E0:38:54:11:5A:22:72:06:53:1E:B8 Authority key identifier: D6:C3:F8:13:78:E8:54:00:78:BA:79:94:42:EE:DB:EC:78:0E:0F:7B Certificate issuer: /CN=A91C8DD5/serialNumber=D6C3F81378E8540078BA799442EEDBEC780E0F7B Certificate serial: 1B55 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1sP4E3joVAB4unmUQu7b7HgOD3s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C8DD5/D5A1A1C612A711E7ADB4DE4DC4F9AE02/1sP4E3joVAB4unmUQu7b7HgOD3s.mft Manifest number: 1B4B Signing time: Sat 14 Jun 2025 16:14:25 +0000 Manifest this update: Sat 14 Jun 2025 16:14:25 +0000 Manifest next update: Sat 21 Jun 2025 16:14:25 +0000 Files and hashes: 1: 1sP4E3joVAB4unmUQu7b7HgOD3s.crl (hash: ip7FzA3xTbTsRP63lJNE0MCExfX4XBuyjV1yHzAJIGE=) 2: 020A31F812B011E7A7C42661C4F9AE02.roa (hash: XaEt+47rBdBuIr1qA7i6V/F+AJaSo/IaiolwteWY5gM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C8DD5/D5A1A1C612A711E7ADB4DE4DC4F9AE02/1sP4E3joVAB4unmUQu7b7HgOD3s.crl rsync://rpki.apnic.net/member_repository/A91C8DD5/D5A1A1C612A711E7ADB4DE4DC4F9AE02/1sP4E3joVAB4unmUQu7b7HgOD3s.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1sP4E3joVAB4unmUQu7b7HgOD3s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Jun 2025 16:13:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6997 (0x1b55) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C8DD5, serialNumber=D6C3F81378E8540078BA799442EEDBEC780E0F7B Validity Not Before: Jun 14 16:14:25 2025 GMT Not After : Jun 21 16:14:25 2025 GMT Subject: CN=684d9fe1-3b87 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:87:8a:28:d2:c0:d8:15:11:63:29:cf:de:e4: 0d:bf:86:68:74:1e:9f:5c:da:81:8d:01:fd:97:83: 86:86:56:38:41:20:c0:2d:71:b1:ed:2b:e4:c7:b4: 70:34:8d:e4:f0:df:28:70:bd:8e:24:d6:f4:97:28: 7e:66:0e:ce:01:a4:0c:31:ba:45:d2:e4:9e:6e:eb: 3d:ac:f1:0a:33:4b:fe:72:f1:81:fb:e9:70:ec:c9: 54:a3:93:19:dd:f9:14:0b:3d:a6:1b:66:62:2b:57: af:5e:50:67:6d:22:a0:79:cb:15:8f:e3:3b:42:82: 7a:bb:3d:29:c8:c8:a7:1f:4b:1b:b9:4b:27:98:40: e3:9b:df:ce:9d:8a:e4:16:e2:2d:53:7a:b7:e6:4e: 34:f0:35:ae:02:38:4f:ec:80:42:d0:57:75:dc:46: b2:28:ee:4d:c0:51:15:11:db:a2:4b:e8:f0:b2:a3: c9:1f:04:3d:28:69:66:06:6b:17:40:14:93:ea:5f: 25:6d:c5:26:88:d2:df:de:48:dc:2f:db:b0:b9:de: ba:2e:5d:3c:2f:ff:9f:a6:24:d5:e2:99:72:84:9e: 68:c2:3c:49:10:4a:55:1a:f9:94:58:95:99:0c:f6: 86:5c:b0:d2:91:00:6b:8c:57:74:d1:16:20:36:39: 66:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 44:9D:BF:FA:A0:33:50:B8:CF:E0:38:54:11:5A:22:72:06:53:1E:B8 X509v3 Authority Key Identifier: keyid:D6:C3:F8:13:78:E8:54:00:78:BA:79:94:42:EE:DB:EC:78:0E:0F:7B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C8DD5/D5A1A1C612A711E7ADB4DE4DC4F9AE02/1sP4E3joVAB4unmUQu7b7HgOD3s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1sP4E3joVAB4unmUQu7b7HgOD3s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C8DD5/D5A1A1C612A711E7ADB4DE4DC4F9AE02/1sP4E3joVAB4unmUQu7b7HgOD3s.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1c:c0:90:63:0d:8b:27:fe:de:2f:18:e6:e0:36:ab:ce:9b:eb: 15:b4:31:6c:b7:44:b7:2a:14:bc:8e:46:52:99:56:1f:b5:51: 5c:25:de:d2:e9:f7:9c:19:83:84:c1:91:09:ec:95:d6:2d:ab: 4a:64:3d:fe:16:c6:15:06:c6:4b:ea:93:e0:43:61:ec:36:f6: b4:41:8b:21:ff:dc:9c:f4:84:b1:84:6c:6a:37:e6:0f:ad:3e: 13:0a:5d:66:ea:a7:57:f4:fa:40:4e:85:55:7d:e1:34:5f:8b: db:45:1e:46:2a:80:15:bf:4f:8d:c2:01:9b:23:11:c1:70:62: e2:68:ea:49:22:76:a2:4d:1d:a8:de:df:47:d8:5d:f7:1f:ea: 2d:dd:aa:ea:d0:0a:02:5f:b0:3d:a8:cd:f3:5e:5d:24:fe:c2: c7:8b:0e:5e:52:7b:b3:80:70:0b:f7:ec:ae:b3:68:05:ae:94: 7e:08:5d:26:30:34:1c:7d:8b:30:0a:fb:8e:69:1c:fd:04:af: 38:c9:3b:7b:b8:ef:5d:23:3d:7b:f7:1c:27:a1:01:3d:7a:65: 2b:84:6a:24:5a:d0:2f:bb:6b:a4:7b:9e:77:f5:73:3d:15:2e: 65:27:82:e0:99:ab:4d:32:37:27:70:fe:25:4d:68:3a:fa:da: 8f:05:f1:7d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICG1UwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzhERDUxMTAvBgNVBAUTKEQ2QzNGODEzNzhFODU0MDA3OEJBNzk5NDQyRUVEQkVD NzgwRTBGN0IwHhcNMjUwNjE0MTYxNDI1WhcNMjUwNjIxMTYxNDI1WjAYMRYwFAYD VQQDEw02ODRkOWZlMS0zYjg3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0oeKKNLA2BURYynP3uQNv4ZodB6fXNqBjQH9l4OGhlY4QSDALXGx7Svkx7Rw NI3k8N8ocL2OJNb0lyh+Zg7OAaQMMbpF0uSebus9rPEKM0v+cvGB++lw7MlUo5MZ 3fkUCz2mG2ZiK1evXlBnbSKgecsVj+M7QoJ6uz0pyMinH0sbuUsnmEDjm9/OnYrk FuItU3q35k408DWuAjhP7IBC0Fd13EayKO5NwFEVEduiS+jwsqPJHwQ9KGlmBmsX QBST6l8lbcUmiNLf3kjcL9uwud66Ll08L/+fpiTV4plyhJ5owjxJEEpVGvmUWJWZ DPaGXLDSkQBrjFd00RYgNjlmlwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFESdv/qg M1C4z+A4VBFaInIGUx64MB8GA1UdIwQYMBaAFNbD+BN46FQAeLp5lELu2+x4Dg97 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDOERENS9ENUExQTFDNjEy QTcxMUU3QURCNERFNERDNEY5QUUwMi8xc1A0RTNqb1ZBQjR1bm1VUXU3YjdIZ09E M3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFzUDRFM2pvVkFCNHVubVVRdTdiN0hnT0Qzcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD OERENS9ENUExQTFDNjEyQTcxMUU3QURCNERFNERDNEY5QUUwMi8xc1A0RTNqb1ZB QjR1bm1VUXU3YjdIZ09EM3MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAcwJBjDYsn/t4vGObgNqvOm+sVtDFst0S3KhS8jkZSmVYftVFcJd7S 6fecGYOEwZEJ7JXWLatKZD3+FsYVBsZL6pPgQ2HsNva0QYsh/9yc9ISxhGxqN+YP rT4TCl1m6qdX9PpAToVVfeE0X4vbRR5GKoAVv0+NwgGbIxHBcGLiaOpJInaiTR2o 3t9H2F33H+ot3arq0AoCX7A9qM3zXl0k/sLHiw5eUnuzgHAL9+yus2gFrpR+CF0m MDQcfYswCvuOaRz9BK84yTt7uO9dIz179xwnoQE9emUrhGokWtAvu2uke5539XM9 FS5lJ4LgmatNMjcncP4lTWg6+tqPBfF9 -----END CERTIFICATE-----Generated at Sat Jun 14 18:55:06 2025 by rpki-client