$ rpki-client -vvf rpki.apnic.net/member_repository/A91CD40B/741A1E2C855B11EFB0576D40C4F9AE02/aLMj2oThIFRmzrWv19YHcmdbBTE.mft File: aLMj2oThIFRmzrWv19YHcmdbBTE.mft (raw, json) Hash identifier: iO6n5Xmc9YWO689PC4fumxqieycNZXpzIl/tbPqZYCE= Subject key identifier: DC:53:73:3C:78:A8:1E:0B:C9:CC:0F:27:0A:0B:85:5C:B5:CD:F3:40 Authority key identifier: 68:B3:23:DA:84:E1:20:54:66:CE:B5:AF:D7:D6:07:72:67:5B:05:31 Certificate issuer: /CN=A91CD40B/serialNumber=68B323DA84E1205466CEB5AFD7D60772675B0531 Certificate serial: 80 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aLMj2oThIFRmzrWv19YHcmdbBTE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CD40B/741A1E2C855B11EFB0576D40C4F9AE02/aLMj2oThIFRmzrWv19YHcmdbBTE.mft Manifest number: 80 Signing time: Fri 13 Jun 2025 05:33:29 +0000 Manifest this update: Fri 13 Jun 2025 05:33:28 +0000 Manifest next update: Fri 20 Jun 2025 05:33:28 +0000 Files and hashes: 1: aLMj2oThIFRmzrWv19YHcmdbBTE.crl (hash: FwBLy09mpO5bECb1btmB5UvcYCXk6fePboGUvgLxSdE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CD40B/741A1E2C855B11EFB0576D40C4F9AE02/aLMj2oThIFRmzrWv19YHcmdbBTE.crl rsync://rpki.apnic.net/member_repository/A91CD40B/741A1E2C855B11EFB0576D40C4F9AE02/aLMj2oThIFRmzrWv19YHcmdbBTE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aLMj2oThIFRmzrWv19YHcmdbBTE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 20 Jun 2025 05:33:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 128 (0x80) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CD40B, serialNumber=68B323DA84E1205466CEB5AFD7D60772675B0531 Validity Not Before: Jun 13 05:33:28 2025 GMT Not After : Jun 20 05:33:28 2025 GMT Subject: CN=684bb828-5f16 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:83:c2:5b:e6:13:93:3c:ae:0d:43:2c:a4:3e: b9:8f:bb:ac:3c:14:24:f3:55:26:b5:6c:6a:6f:75: ed:83:fa:38:bb:2a:ba:3d:f3:4f:d3:d9:a6:90:07: 92:22:5f:13:a0:e3:88:73:86:ca:19:50:95:b1:02: a2:cd:e5:b0:7e:e8:04:ae:07:60:2a:3c:4c:b5:e8: 49:78:5d:2f:f6:fe:f6:29:10:b4:b2:92:e5:2e:40: da:30:91:72:79:0e:0a:6a:3e:8f:b2:2e:de:bf:eb: e0:fa:91:7d:c1:79:c4:c5:7a:89:60:e9:d2:f5:32: de:b2:99:71:a9:98:93:81:9b:c0:5b:36:64:f0:7f: 6a:8e:2e:3a:4e:f6:95:d0:3b:a4:93:a1:73:ca:08: 5d:35:0f:4e:c0:2b:80:c4:bb:08:a3:e3:c9:d3:10: e1:7c:dc:ab:6a:78:59:58:66:50:02:02:59:e5:7f: 51:44:63:9b:78:8f:34:43:1c:f7:ec:0d:4e:82:ca: 0f:9f:58:16:51:bb:58:71:58:4d:d2:82:e6:65:a9: 7e:d0:9a:ae:49:95:8d:99:51:28:90:cd:40:56:f9: 39:0e:cc:8e:37:b7:3c:7e:ce:37:93:cc:78:8f:63: de:fd:10:e8:1b:e8:f7:f9:91:ef:67:0a:fe:16:4f: 83:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DC:53:73:3C:78:A8:1E:0B:C9:CC:0F:27:0A:0B:85:5C:B5:CD:F3:40 X509v3 Authority Key Identifier: keyid:68:B3:23:DA:84:E1:20:54:66:CE:B5:AF:D7:D6:07:72:67:5B:05:31 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CD40B/741A1E2C855B11EFB0576D40C4F9AE02/aLMj2oThIFRmzrWv19YHcmdbBTE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aLMj2oThIFRmzrWv19YHcmdbBTE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CD40B/741A1E2C855B11EFB0576D40C4F9AE02/aLMj2oThIFRmzrWv19YHcmdbBTE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7b:ca:14:59:f2:c2:f7:11:a2:91:ff:c0:c9:b2:10:82:31:4e: a0:8e:1b:b4:b7:e8:1a:25:8e:6a:08:7b:64:48:0c:ee:2e:e3: 4b:6e:9e:fa:d3:14:68:71:a0:7a:a1:18:07:66:35:7f:32:34: eb:80:60:75:b9:d4:89:6e:46:42:41:ea:f8:76:7c:7e:6f:04: 36:42:26:5b:da:39:b8:70:5b:6b:89:5c:a4:76:f2:bc:4b:d3: ee:ef:00:f9:a1:54:ce:19:e1:3e:65:de:dd:ff:57:db:c1:ce: 90:e1:25:f5:4d:79:8d:09:fe:a2:fb:e0:2e:b9:e7:b9:db:a1: 78:2f:d3:cf:ad:8d:6c:3e:ec:a3:43:26:5f:45:bb:dc:61:c5: 9a:82:60:ea:b3:2d:fe:89:b4:56:13:d1:32:07:5d:c1:e0:93: bb:18:fd:32:3c:13:bd:1d:60:4e:a6:7f:51:23:46:13:cf:e6: 44:44:09:49:9f:fc:43:5a:12:75:4c:b9:9d:06:23:74:30:6a: 90:71:c9:5a:7e:69:a0:6a:d8:60:94:19:02:9b:f9:9d:3c:a9: 4c:40:a8:37:c8:a1:86:6c:d7:f5:dc:69:3d:e3:35:43:c6:8e: e7:44:a0:a8:82:80:51:7c:fe:37:de:03:ab:c5:83:ee:9e:3f: 7a:91:ad:fe -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAIAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0Q0MEIxMTAvBgNVBAUTKDY4QjMyM0RBODRFMTIwNTQ2NkNFQjVBRkQ3RDYwNzcy Njc1QjA1MzEwHhcNMjUwNjEzMDUzMzI4WhcNMjUwNjIwMDUzMzI4WjAYMRYwFAYD VQQDEw02ODRiYjgyOC01ZjE2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxYPCW+YTkzyuDUMspD65j7usPBQk81UmtWxqb3Xtg/o4uyq6PfNP09mmkAeS Il8ToOOIc4bKGVCVsQKizeWwfugErgdgKjxMtehJeF0v9v72KRC0spLlLkDaMJFy eQ4Kaj6Psi7ev+vg+pF9wXnExXqJYOnS9TLesplxqZiTgZvAWzZk8H9qji46TvaV 0Dukk6FzyghdNQ9OwCuAxLsIo+PJ0xDhfNyranhZWGZQAgJZ5X9RRGObeI80Qxz3 7A1OgsoPn1gWUbtYcVhN0oLmZal+0JquSZWNmVEokM1AVvk5DsyON7c8fs43k8x4 j2Pe/RDoG+j3+ZHvZwr+Fk+DxwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNxTczx4 qB4LycwPJwoLhVy1zfNAMB8GA1UdIwQYMBaAFGizI9qE4SBUZs61r9fWB3JnWwUx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRDQwQi83NDFBMUUyQzg1 NUIxMUVGQjA1NzZENDBDNEY5QUUwMi9hTE1qMm9UaElGUm16cld2MTlZSGNtZGJC VEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FMTWoyb1RoSUZSbXpyV3YxOVlIY21kYkJURS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RDQwQi83NDFBMUUyQzg1NUIxMUVGQjA1NzZENDBDNEY5QUUwMi9hTE1qMm9UaElG Um16cld2MTlZSGNtZGJCVEUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB7yhRZ8sL3EaKR/8DJshCCMU6gjhu0t+gaJY5qCHtkSAzuLuNLbp76 0xRocaB6oRgHZjV/MjTrgGB1udSJbkZCQer4dnx+bwQ2QiZb2jm4cFtriVykdvK8 S9Pu7wD5oVTOGeE+Zd7d/1fbwc6Q4SX1TXmNCf6i++Auuee526F4L9PPrY1sPuyj QyZfRbvcYcWagmDqsy3+ibRWE9EyB13B4JO7GP0yPBO9HWBOpn9RI0YTz+ZERAlJ n/xDWhJ1TLmdBiN0MGqQcclafmmgathglBkCm/mdPKlMQKg3yKGGbNf13Gk94zVD xo7nRKCogoBRfP433gOrxYPunj96ka3+ -----END CERTIFICATE-----Generated at Sat Jun 14 18:38:11 2025 by rpki-client