$ rpki-client -vvf rpki.apnic.net/member_repository/A91C941B/69F6B7DE1A8311EC8C922229C4F9AE02/CAJbm0Tu2K4LdvEeA3LOlhh3rZ8.mft File: CAJbm0Tu2K4LdvEeA3LOlhh3rZ8.mft (raw, json) Hash identifier: paD66mK04WVmrMoF9GwxmnG4v8qU25T4R168VVN0HCc= Subject key identifier: 84:F1:67:93:CE:07:E7:B0:5A:40:0B:5F:14:FE:D5:19:41:81:58:D7 Authority key identifier: 08:02:5B:9B:44:EE:D8:AE:0B:76:F1:1E:03:72:CE:96:18:77:AD:9F Certificate issuer: /CN=A91C941B/serialNumber=08025B9B44EED8AE0B76F11E0372CE961877AD9F Certificate serial: 04F8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CAJbm0Tu2K4LdvEeA3LOlhh3rZ8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C941B/69F6B7DE1A8311EC8C922229C4F9AE02/CAJbm0Tu2K4LdvEeA3LOlhh3rZ8.mft Manifest number: 04EB Signing time: Sat 14 Jun 2025 23:27:21 +0000 Manifest this update: Sat 14 Jun 2025 23:27:21 +0000 Manifest next update: Sat 21 Jun 2025 23:27:21 +0000 Files and hashes: 1: CAJbm0Tu2K4LdvEeA3LOlhh3rZ8.crl (hash: 8jT0wk2iCV06mO+7rDIQVOZ97XJcBuw15mTPSWctCTM=) 2: B3883EE61A8C11ECBD6CCF18C4F9AE02.roa (hash: eZkG1iVHjA07zqibQCS20vDKvxGWhApC6gs+W5wfJ9g=) 3: F719961A1A8611ECB908E939C4F9AE02.roa (hash: 8CERVYgkltWj4G95QfjHRAzhZOs/2MofXT3PQbZreQ8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C941B/69F6B7DE1A8311EC8C922229C4F9AE02/CAJbm0Tu2K4LdvEeA3LOlhh3rZ8.crl rsync://rpki.apnic.net/member_repository/A91C941B/69F6B7DE1A8311EC8C922229C4F9AE02/CAJbm0Tu2K4LdvEeA3LOlhh3rZ8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CAJbm0Tu2K4LdvEeA3LOlhh3rZ8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Jun 2025 23:27:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1272 (0x4f8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C941B, serialNumber=08025B9B44EED8AE0B76F11E0372CE961877AD9F Validity Not Before: Jun 14 23:27:21 2025 GMT Not After : Jun 21 23:27:21 2025 GMT Subject: CN=684e0559-2995 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:ff:b3:d0:ce:35:fd:07:8c:70:a7:6a:b6:30: 01:b6:62:7c:17:6f:ef:a9:5e:8d:4f:60:ed:6a:7e: 67:5e:38:9d:92:98:d1:91:6e:41:16:98:79:62:c4: 64:20:96:41:6b:7e:9f:59:10:12:a7:0b:2b:27:4b: 01:65:9a:f6:52:3b:30:97:a4:72:e5:56:79:a9:3e: d7:b2:e5:fa:9c:98:40:e3:53:8e:77:e0:0b:f9:6a: 20:50:3a:e3:f7:19:b2:bd:f8:9b:fb:63:97:fe:ea: 0a:90:75:e7:a4:be:64:b8:37:bf:8c:20:62:4c:1b: 51:dc:e5:a9:7a:ff:b8:b7:2c:c8:b7:f5:6b:ad:fb: 43:65:0f:83:75:d3:d0:8a:a8:dc:81:dd:24:39:97: 0b:aa:a4:c0:9a:69:99:98:87:df:fe:22:e7:fe:f3: a0:3e:83:44:15:a9:99:dc:8e:0f:44:0d:41:02:f1: d7:54:1c:15:23:4e:6d:35:0b:0d:cf:60:c1:7f:51: 2a:ad:0a:e1:03:ed:c8:91:a4:99:2c:73:92:27:37: bd:81:51:c8:0b:ed:36:30:a2:a4:b6:89:a8:87:03: 19:6a:25:01:14:7d:62:5e:8c:a1:07:78:5c:58:d6: 7b:d0:97:78:ce:22:b6:86:95:72:23:d3:05:02:a1: ea:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 84:F1:67:93:CE:07:E7:B0:5A:40:0B:5F:14:FE:D5:19:41:81:58:D7 X509v3 Authority Key Identifier: keyid:08:02:5B:9B:44:EE:D8:AE:0B:76:F1:1E:03:72:CE:96:18:77:AD:9F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C941B/69F6B7DE1A8311EC8C922229C4F9AE02/CAJbm0Tu2K4LdvEeA3LOlhh3rZ8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CAJbm0Tu2K4LdvEeA3LOlhh3rZ8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C941B/69F6B7DE1A8311EC8C922229C4F9AE02/CAJbm0Tu2K4LdvEeA3LOlhh3rZ8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 95:08:be:56:b5:81:4c:ba:6c:c6:39:96:61:df:7c:d2:89:4f: 85:00:71:c6:69:af:dd:32:ed:11:39:fe:5a:d5:89:3b:ea:11: 7c:22:42:c8:f5:6f:ae:ca:d9:ce:7d:ba:ac:d4:a0:ee:ff:a3: 01:29:79:56:67:56:58:47:e2:68:c0:c4:42:38:9b:3b:07:ce: 6a:4a:ad:e7:32:4e:28:72:d4:44:62:46:e4:f3:7a:fe:d4:fa: b3:9d:2e:77:7a:7b:53:52:84:6e:91:cd:ea:5f:5d:21:db:ee: 25:cf:af:7f:f4:97:43:88:ed:26:0e:27:49:10:ed:83:48:4f: 0a:19:90:4d:cb:c6:3b:6c:d8:bb:1b:cd:aa:67:df:18:6f:b8: 1f:2b:60:4a:78:d1:fe:5a:9d:cb:27:a9:55:79:78:3e:1c:8f: 6d:8f:a1:4c:83:5a:8f:40:c1:cb:08:47:7a:c2:2c:7a:5f:d9: 8a:4f:2c:ee:bd:09:49:27:31:84:c7:69:02:df:2f:9b:b9:bb: 4b:de:6b:3c:96:9b:a6:fb:23:45:ab:f0:ca:5d:9e:36:4d:bd: a7:54:9f:24:48:f5:21:09:dd:f3:7d:22:23:a4:a2:e6:c5:f2: 51:42:97:ee:68:62:6e:7b:ea:15:b1:40:26:17:28:76:1f:ca: 46:df:20:3f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBPgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Qzk0MUIxMTAvBgNVBAUTKDA4MDI1QjlCNDRFRUQ4QUUwQjc2RjExRTAzNzJDRTk2 MTg3N0FEOUYwHhcNMjUwNjE0MjMyNzIxWhcNMjUwNjIxMjMyNzIxWjAYMRYwFAYD VQQDEw02ODRlMDU1OS0yOTk1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxv+z0M41/QeMcKdqtjABtmJ8F2/vqV6NT2Dtan5nXjidkpjRkW5BFph5YsRk IJZBa36fWRASpwsrJ0sBZZr2Ujswl6Ry5VZ5qT7XsuX6nJhA41OOd+AL+WogUDrj 9xmyvfib+2OX/uoKkHXnpL5kuDe/jCBiTBtR3OWpev+4tyzIt/VrrftDZQ+DddPQ iqjcgd0kOZcLqqTAmmmZmIff/iLn/vOgPoNEFamZ3I4PRA1BAvHXVBwVI05tNQsN z2DBf1EqrQrhA+3IkaSZLHOSJze9gVHIC+02MKKktomohwMZaiUBFH1iXoyhB3hc WNZ70Jd4ziK2hpVyI9MFAqHqqwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFITxZ5PO B+ewWkALXxT+1RlBgVjXMB8GA1UdIwQYMBaAFAgCW5tE7tiuC3bxHgNyzpYYd62f MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDOTQxQi82OUY2QjdERTFB ODMxMUVDOEM5MjIyMjlDNEY5QUUwMi9DQUpibTBUdTJLNExkdkVlQTNMT2xoaDNy WjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NBSmJtMFR1Mks0TGR2RWVBM0xPbGhoM3JaOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD OTQxQi82OUY2QjdERTFBODMxMUVDOEM5MjIyMjlDNEY5QUUwMi9DQUpibTBUdTJL NExkdkVlQTNMT2xoaDNyWjgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCVCL5WtYFMumzGOZZh33zSiU+FAHHGaa/dMu0ROf5a1Yk76hF8IkLI 9W+uytnOfbqs1KDu/6MBKXlWZ1ZYR+JowMRCOJs7B85qSq3nMk4octREYkbk83r+ 1PqznS53entTUoRukc3qX10h2+4lz69/9JdDiO0mDidJEO2DSE8KGZBNy8Y7bNi7 G82qZ98Yb7gfK2BKeNH+Wp3LJ6lVeXg+HI9tj6FMg1qPQMHLCEd6wix6X9mKTyzu vQlJJzGEx2kC3y+bubtL3ms8lpum+yNFq/DKXZ42Tb2nVJ8kSPUhCd3zfSIjpKLm xfJRQpfuaGJue+oVsUAmFyh2H8pG3yA/ -----END CERTIFICATE-----Generated at Sun Jun 15 09:38:09 2025 by rpki-client