$ rpki-client -vvf rpki.apnic.net/member_repository/A91D51C1/D92E69AAC1EE11EBBFD57E2AC4F9AE02/l7tUs9I8N8PdPgFpypdNJ9up8FA.mft File: l7tUs9I8N8PdPgFpypdNJ9up8FA.mft (raw, json) Hash identifier: BVLUU+PeN2S4jqXfm3cDI8Sy9PqGWtS6aeUq6nyfuVA= Subject key identifier: 75:35:18:EA:D9:FF:D2:93:30:0B:FA:1A:F3:8E:65:F4:9A:38:8F:83 Authority key identifier: 97:BB:54:B3:D2:3C:37:C3:DD:3E:01:69:CA:97:4D:27:DB:A9:F0:50 Certificate issuer: /CN=A91D51C1/serialNumber=97BB54B3D23C37C3DD3E0169CA974D27DBA9F050 Certificate serial: 05D3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l7tUs9I8N8PdPgFpypdNJ9up8FA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D51C1/D92E69AAC1EE11EBBFD57E2AC4F9AE02/l7tUs9I8N8PdPgFpypdNJ9up8FA.mft Manifest number: 05CB Signing time: Thu 12 Jun 2025 22:41:17 +0000 Manifest this update: Thu 12 Jun 2025 22:41:16 +0000 Manifest next update: Thu 19 Jun 2025 22:41:16 +0000 Files and hashes: 1: l7tUs9I8N8PdPgFpypdNJ9up8FA.crl (hash: 76N5pq7YdKeoCDQ2olOv6frPoBhjAAxBLluyiSiPlfE=) 2: 1E8ADFD0C1F211EBA984726AC4F9AE02.roa (hash: bWn5aFY6Kg9nqE6Xd5cFT5I+I/vhYdu828/JrK8jyYg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D51C1/D92E69AAC1EE11EBBFD57E2AC4F9AE02/l7tUs9I8N8PdPgFpypdNJ9up8FA.crl rsync://rpki.apnic.net/member_repository/A91D51C1/D92E69AAC1EE11EBBFD57E2AC4F9AE02/l7tUs9I8N8PdPgFpypdNJ9up8FA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l7tUs9I8N8PdPgFpypdNJ9up8FA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 19 Jun 2025 22:41:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1491 (0x5d3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D51C1, serialNumber=97BB54B3D23C37C3DD3E0169CA974D27DBA9F050 Validity Not Before: Jun 12 22:41:16 2025 GMT Not After : Jun 19 22:41:16 2025 GMT Subject: CN=684b578c-3954 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:13:16:8e:af:03:6f:b6:55:dd:cb:e7:d4:5d: 88:3e:8e:70:c8:5b:fb:90:84:81:55:87:31:f1:b5: b7:cd:47:15:96:14:39:b6:0f:7e:92:3a:54:63:93: 40:de:de:2e:9c:74:01:6c:04:bc:5d:df:88:98:b6: 66:9c:f1:56:ae:44:fd:85:15:53:11:aa:7c:fa:67: c9:38:ee:d2:71:d3:a7:f8:4b:76:40:42:da:44:39: 2b:f8:41:2b:f7:11:71:f1:87:fc:52:83:fe:21:d8: d6:d4:a7:2a:bd:bd:63:c4:99:c9:21:da:36:68:2a: 89:6b:76:ae:e6:95:1c:30:cd:4c:6d:a4:f7:7d:2f: a7:38:24:1f:54:3f:db:40:8c:8a:d4:46:52:29:2f: 57:f5:83:25:bd:f7:b1:9e:9b:6f:f0:c1:0b:49:be: b7:f8:dc:4f:c4:5a:0f:74:01:63:30:23:04:24:31: 26:86:cf:99:f7:64:c4:a1:0b:ac:dc:cc:d5:6a:10: 58:c7:c7:c8:a2:be:d6:6c:fc:a2:58:01:5f:e8:ee: e5:19:dd:46:79:a8:7c:2c:a7:08:97:4c:91:08:bb: 5d:ac:0c:f8:1d:b2:9b:8f:14:2e:47:5c:d9:63:0d: c7:cb:90:93:9d:c9:ce:53:3f:ae:8a:bd:dd:7c:db: dc:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 75:35:18:EA:D9:FF:D2:93:30:0B:FA:1A:F3:8E:65:F4:9A:38:8F:83 X509v3 Authority Key Identifier: keyid:97:BB:54:B3:D2:3C:37:C3:DD:3E:01:69:CA:97:4D:27:DB:A9:F0:50 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D51C1/D92E69AAC1EE11EBBFD57E2AC4F9AE02/l7tUs9I8N8PdPgFpypdNJ9up8FA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l7tUs9I8N8PdPgFpypdNJ9up8FA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D51C1/D92E69AAC1EE11EBBFD57E2AC4F9AE02/l7tUs9I8N8PdPgFpypdNJ9up8FA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9b:d9:44:96:66:f9:34:a5:9c:74:fb:38:2f:96:c6:84:67:e9: 0c:d5:04:da:f6:55:87:c5:34:cc:76:96:6e:4b:72:58:65:36: 7c:b1:8a:84:8c:97:6c:34:d9:ff:6d:f4:dc:11:f5:4c:c0:82: 15:41:e8:ff:21:a7:83:a0:bf:a7:14:3a:6f:7a:5f:2b:75:52: ba:c9:53:2b:f2:a2:62:6a:e8:ef:a6:3c:fe:52:35:cc:be:f3: 33:9f:61:32:60:4a:8f:c6:57:fd:3c:e6:55:15:e0:29:62:99: cf:99:b3:84:be:58:36:1b:69:8e:4c:3c:89:db:f6:43:19:2c: 40:e4:95:64:8c:f8:a4:62:2c:bb:7e:fe:e0:e2:cb:08:f6:22: 21:87:cd:a9:80:aa:fd:7d:7f:57:44:99:a4:bf:4e:5b:ac:7c: 66:48:e7:14:02:dc:19:0c:89:66:ab:8d:72:b6:c9:06:6c:46: 56:be:d0:e5:52:7e:dc:10:62:0f:e4:40:70:b7:65:f2:cc:5d: 51:87:1e:ae:0c:b8:d6:35:fe:5d:c7:57:53:ae:0e:f6:68:74: e5:85:25:62:49:b0:f6:ee:d1:9c:54:df:76:01:5a:bc:10:e0: a1:56:52:70:c8:3a:82:fb:ee:08:64:c8:35:75:81:c5:a6:e3: 3d:62:5d:5b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBdMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDUxQzExMTAvBgNVBAUTKDk3QkI1NEIzRDIzQzM3QzNERDNFMDE2OUNBOTc0RDI3 REJBOUYwNTAwHhcNMjUwNjEyMjI0MTE2WhcNMjUwNjE5MjI0MTE2WjAYMRYwFAYD VQQDEw02ODRiNTc4Yy0zOTU0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyhMWjq8Db7ZV3cvn1F2IPo5wyFv7kISBVYcx8bW3zUcVlhQ5tg9+kjpUY5NA 3t4unHQBbAS8Xd+ImLZmnPFWrkT9hRVTEap8+mfJOO7ScdOn+Et2QELaRDkr+EEr 9xFx8Yf8UoP+IdjW1Kcqvb1jxJnJIdo2aCqJa3au5pUcMM1MbaT3fS+nOCQfVD/b QIyK1EZSKS9X9YMlvfexnptv8MELSb63+NxPxFoPdAFjMCMEJDEmhs+Z92TEoQus 3MzVahBYx8fIor7WbPyiWAFf6O7lGd1Geah8LKcIl0yRCLtdrAz4HbKbjxQuR1zZ Yw3Hy5CTncnOUz+uir3dfNvcfwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHU1GOrZ /9KTMAv6GvOOZfSaOI+DMB8GA1UdIwQYMBaAFJe7VLPSPDfD3T4BacqXTSfbqfBQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENTFDMS9EOTJFNjlBQUMx RUUxMUVCQkZENTdFMkFDNEY5QUUwMi9sN3RVczlJOE44UGRQZ0ZweXBkTko5dXA4 RkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2w3dFVzOUk4TjhQZFBnRnB5cGROSjl1cDhGQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NTFDMS9EOTJFNjlBQUMxRUUxMUVCQkZENTdFMkFDNEY5QUUwMi9sN3RVczlJOE44 UGRQZ0ZweXBkTko5dXA4RkEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCb2USWZvk0pZx0+zgvlsaEZ+kM1QTa9lWHxTTMdpZuS3JYZTZ8sYqE jJdsNNn/bfTcEfVMwIIVQej/IaeDoL+nFDpvel8rdVK6yVMr8qJiaujvpjz+UjXM vvMzn2EyYEqPxlf9POZVFeApYpnPmbOEvlg2G2mOTDyJ2/ZDGSxA5JVkjPikYiy7 fv7g4ssI9iIhh82pgKr9fX9XRJmkv05brHxmSOcUAtwZDIlmq41ytskGbEZWvtDl Un7cEGIP5EBwt2XyzF1Rhx6uDLjWNf5dx1dTrg72aHTlhSViSbD27tGcVN92AVq8 EOChVlJwyDqC++4IZMg1dYHFpuM9Yl1b -----END CERTIFICATE-----Generated at Sat Jun 14 17:39:01 2025 by rpki-client