$ rpki-client -vvf rpki.apnic.net/member_repository/A91D4D97/1F6146E0567811EC922A3567C4F9AE02/cn1G1OfHecpnYSxgtGVS68IZkPs.mft File: cn1G1OfHecpnYSxgtGVS68IZkPs.mft (raw, json) Hash identifier: zL4BXIMS5KFiXsdPGt2Bzjlpe0gRjv5jpRoDLxlgrsQ= Subject key identifier: 68:F4:0E:1D:7F:45:E3:0D:94:87:33:25:B5:76:59:B2:7C:93:56:96 Authority key identifier: 72:7D:46:D4:E7:C7:79:CA:67:61:2C:60:B4:65:52:EB:C2:19:90:FB Certificate issuer: /CN=A91D4D97/serialNumber=727D46D4E7C779CA67612C60B46552EBC21990FB Certificate serial: 0455 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cn1G1OfHecpnYSxgtGVS68IZkPs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D4D97/1F6146E0567811EC922A3567C4F9AE02/cn1G1OfHecpnYSxgtGVS68IZkPs.mft Manifest number: 0451 Signing time: Thu 12 Jun 2025 23:46:51 +0000 Manifest this update: Thu 12 Jun 2025 23:46:50 +0000 Manifest next update: Thu 19 Jun 2025 23:46:50 +0000 Files and hashes: 1: cn1G1OfHecpnYSxgtGVS68IZkPs.crl (hash: oRI9NLQGv5RXZMTWPWXL6Vyetr9ZA9GJ/y/Gh6mpxUI=) 2: A9E2BE54567B11ECB346816BC4F9AE02.roa (hash: TPVU1s6exIqwh/rpq/ezgL4ll5z3zJFyVmt+0YWYn8g=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D4D97/1F6146E0567811EC922A3567C4F9AE02/cn1G1OfHecpnYSxgtGVS68IZkPs.crl rsync://rpki.apnic.net/member_repository/A91D4D97/1F6146E0567811EC922A3567C4F9AE02/cn1G1OfHecpnYSxgtGVS68IZkPs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cn1G1OfHecpnYSxgtGVS68IZkPs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 19 Jun 2025 23:46:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1109 (0x455) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D4D97, serialNumber=727D46D4E7C779CA67612C60B46552EBC21990FB Validity Not Before: Jun 12 23:46:50 2025 GMT Not After : Jun 19 23:46:50 2025 GMT Subject: CN=684b66eb-6eb7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:5c:38:05:2b:32:32:e6:ce:11:93:54:3a:57: b3:5c:a6:39:2d:41:a1:68:5e:2c:b7:8d:57:f1:00: bc:f4:5f:71:22:03:1a:47:4e:4a:b3:7f:ce:4d:d6: fe:12:27:10:3b:50:bb:24:f0:ea:fe:dc:a3:3c:57: ef:be:ce:d5:5d:56:9c:58:c7:4d:f5:0d:89:73:25: d1:4c:ce:b1:88:c0:09:2d:2a:be:cf:b5:7d:b3:9f: ad:98:10:07:b8:b4:45:f2:4d:67:38:da:0d:2a:fc: f0:b1:68:23:99:c5:ae:7a:c1:61:a2:a6:17:1f:b2: 78:3c:46:c5:b9:74:0a:19:a6:78:ad:3b:af:5c:52: 35:35:64:94:07:c3:a1:ff:34:81:35:d3:8d:8b:c1: 50:36:9b:34:e3:7d:f5:73:39:e1:ac:c8:3b:a9:5f: d0:3c:c6:12:87:de:9d:49:ab:7c:65:08:f5:34:65: 92:86:51:c8:47:1d:22:44:42:c7:44:25:8b:c7:31: 1b:4a:08:18:4f:c1:1d:d9:21:64:5b:b3:cc:fb:7d: 36:a4:a9:6d:8f:c8:6d:94:8f:3d:3d:19:f0:77:9e: a8:8a:aa:bb:3c:3d:16:19:b2:82:dd:4d:12:a7:0a: 46:d0:73:73:3b:2b:79:ad:e2:36:af:f7:28:29:88: cb:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 68:F4:0E:1D:7F:45:E3:0D:94:87:33:25:B5:76:59:B2:7C:93:56:96 X509v3 Authority Key Identifier: keyid:72:7D:46:D4:E7:C7:79:CA:67:61:2C:60:B4:65:52:EB:C2:19:90:FB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D4D97/1F6146E0567811EC922A3567C4F9AE02/cn1G1OfHecpnYSxgtGVS68IZkPs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cn1G1OfHecpnYSxgtGVS68IZkPs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D4D97/1F6146E0567811EC922A3567C4F9AE02/cn1G1OfHecpnYSxgtGVS68IZkPs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6b:c9:38:02:6b:c1:07:47:a3:8b:0b:ff:d8:38:45:6d:6b:ab: e2:61:17:a2:a3:64:da:ef:e9:ac:ed:e7:df:eb:13:96:12:cb: 01:82:59:72:0a:73:84:31:d3:3c:77:41:ae:61:94:88:fc:da: 70:14:f8:46:26:37:b3:31:f1:07:3d:8d:c5:cd:54:16:36:55: bc:a4:d8:f1:4e:7f:7f:e1:31:1f:81:98:b1:bb:6e:74:c3:d6: 79:a0:7c:f5:92:70:f2:06:82:e8:75:46:5e:43:87:49:21:ce: 1b:9f:67:26:1c:51:72:e5:dc:1c:93:d4:3f:38:b7:b5:4b:64: 92:59:ad:db:f7:59:b2:aa:90:1e:40:43:65:a8:2a:28:63:6a: f0:72:04:70:fa:2f:cc:5f:95:f9:98:90:78:76:fa:4b:4f:f9: 3c:5a:7c:21:1d:de:1e:27:6c:9f:13:ba:b8:fd:94:76:89:4d: 78:9f:fe:45:c1:34:47:2b:f8:00:61:cd:c4:ed:e9:44:3c:0a: 1b:26:b6:97:c2:63:e7:66:01:e9:34:a0:f7:81:fe:35:eb:77: 1a:da:0a:7e:ab:18:25:e5:0c:07:12:37:11:c2:c6:2d:bb:55: 33:2f:9c:bc:43:a4:32:68:c1:05:b1:3b:8f:0b:ce:c9:08:33: 67:37:e3:07 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBFUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDREOTcxMTAvBgNVBAUTKDcyN0Q0NkQ0RTdDNzc5Q0E2NzYxMkM2MEI0NjU1MkVC QzIxOTkwRkIwHhcNMjUwNjEyMjM0NjUwWhcNMjUwNjE5MjM0NjUwWjAYMRYwFAYD VQQDEw02ODRiNjZlYi02ZWI3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAplw4BSsyMubOEZNUOlezXKY5LUGhaF4st41X8QC89F9xIgMaR05Ks3/OTdb+ EicQO1C7JPDq/tyjPFfvvs7VXVacWMdN9Q2JcyXRTM6xiMAJLSq+z7V9s5+tmBAH uLRF8k1nONoNKvzwsWgjmcWuesFhoqYXH7J4PEbFuXQKGaZ4rTuvXFI1NWSUB8Oh /zSBNdONi8FQNps04331cznhrMg7qV/QPMYSh96dSat8ZQj1NGWShlHIRx0iRELH RCWLxzEbSggYT8Ed2SFkW7PM+302pKltj8htlI89PRnwd56oiqq7PD0WGbKC3U0S pwpG0HNzOyt5reI2r/coKYjLJwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGj0Dh1/ ReMNlIczJbV2WbJ8k1aWMB8GA1UdIwQYMBaAFHJ9RtTnx3nKZ2EsYLRlUuvCGZD7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENEQ5Ny8xRjYxNDZFMDU2 NzgxMUVDOTIyQTM1NjdDNEY5QUUwMi9jbjFHMU9mSGVjcG5ZU3hndEdWUzY4SVpr UHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NuMUcxT2ZIZWNwbllTeGd0R1ZTNjhJWmtQcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NEQ5Ny8xRjYxNDZFMDU2NzgxMUVDOTIyQTM1NjdDNEY5QUUwMi9jbjFHMU9mSGVj cG5ZU3hndEdWUzY4SVprUHMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBryTgCa8EHR6OLC//YOEVta6viYReio2Ta7+ms7eff6xOWEssBglly CnOEMdM8d0GuYZSI/NpwFPhGJjezMfEHPY3FzVQWNlW8pNjxTn9/4TEfgZixu250 w9Z5oHz1knDyBoLodUZeQ4dJIc4bn2cmHFFy5dwck9Q/OLe1S2SSWa3b91myqpAe QENlqCooY2rwcgRw+i/MX5X5mJB4dvpLT/k8WnwhHd4eJ2yfE7q4/ZR2iU14n/5F wTRHK/gAYc3E7elEPAobJraXwmPnZgHpNKD3gf4163ca2gp+qxgl5QwHEjcRwsYt u1UzL5y8Q6QyaMEFsTuPC87JCDNnN+MH -----END CERTIFICATE-----Generated at Sat Jun 14 19:25:10 2025 by rpki-client