$ rpki-client -vvf rpki.apnic.net/member_repository/A91D671F/1EDC10BC171E11E8856BC443C4F9AE02/s8j34GTam1qm6nlgF-xg0okDeCo.mft File: s8j34GTam1qm6nlgF-xg0okDeCo.mft (raw, json) Hash identifier: vA2qBDWmBWuRcA3Lyn88tu0cTSzH84gwMhh5WngpZws= Subject key identifier: 3C:11:77:B8:E7:1D:01:CA:E5:0D:05:3C:08:81:67:96:8C:D5:73:AC Authority key identifier: B3:C8:F7:E0:64:DA:9B:5A:A6:EA:79:60:17:EC:60:D2:89:03:78:2A Certificate issuer: /CN=A91D671F/serialNumber=B3C8F7E064DA9B5AA6EA796017EC60D28903782A Certificate serial: 1627 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/s8j34GTam1qm6nlgF-xg0okDeCo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D671F/1EDC10BC171E11E8856BC443C4F9AE02/s8j34GTam1qm6nlgF-xg0okDeCo.mft Manifest number: 1612 Signing time: Sat 14 Jun 2025 16:41:45 +0000 Manifest this update: Sat 14 Jun 2025 16:41:45 +0000 Manifest next update: Sat 21 Jun 2025 16:41:45 +0000 Files and hashes: 1: s8j34GTam1qm6nlgF-xg0okDeCo.crl (hash: Uzngzx4k88opA3NdP/CfTs+o0NZqXTjJTwDMX5jDttw=) 2: A135DDD4162211EC9B4B6F77C4F9AE02.roa (hash: CGg33H9/VkhPgziJXWcA6Qz7BN3epjzI9EHcIP++h+Y=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D671F/1EDC10BC171E11E8856BC443C4F9AE02/s8j34GTam1qm6nlgF-xg0okDeCo.crl rsync://rpki.apnic.net/member_repository/A91D671F/1EDC10BC171E11E8856BC443C4F9AE02/s8j34GTam1qm6nlgF-xg0okDeCo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/s8j34GTam1qm6nlgF-xg0okDeCo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Jun 2025 16:41:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5671 (0x1627) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D671F, serialNumber=B3C8F7E064DA9B5AA6EA796017EC60D28903782A Validity Not Before: Jun 14 16:41:45 2025 GMT Not After : Jun 21 16:41:45 2025 GMT Subject: CN=684da649-c382 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:4c:d7:f9:19:51:17:5e:47:bb:58:a1:95:56: c8:60:ba:c5:3a:85:31:c4:b2:35:93:db:7f:48:68: fb:00:0b:e3:1f:4d:a1:80:ac:c0:40:4e:fa:3c:29: dc:c0:44:e6:63:9f:aa:59:17:4a:1a:d8:c1:b3:de: 1e:c7:cc:11:fc:4d:75:e7:b6:b2:33:9c:c7:c1:98: 46:ca:19:80:a9:8e:61:90:53:da:fd:83:e7:36:15: e4:78:2f:4c:12:27:eb:d4:d4:4d:55:e1:9f:55:89: 21:b5:a4:4d:c4:d3:6d:d4:db:5d:1f:a4:ae:74:17: c6:2e:c6:9a:7c:7c:1b:8c:60:b5:2b:b8:37:9d:f8: db:e1:d3:a1:7b:a1:50:ec:36:0a:1c:c1:d0:ba:df: 29:4b:ad:7b:f6:ea:2f:3c:a9:40:c8:89:f2:fe:08: aa:94:91:66:79:7b:a8:8b:38:a7:cf:4a:2c:2f:ce: 4b:61:d7:26:a0:26:d3:2c:c1:88:2c:ac:76:69:4e: 60:fa:fe:b4:71:63:53:a5:97:db:66:bc:62:7d:52: 90:39:4c:9a:e2:c4:94:dc:59:3f:5b:95:fb:19:ee: 3d:2e:b5:ee:4e:2c:0a:c8:c8:ab:cd:97:bb:ea:06: 38:05:36:91:78:22:46:76:44:52:f5:6d:7b:5e:61: e5:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3C:11:77:B8:E7:1D:01:CA:E5:0D:05:3C:08:81:67:96:8C:D5:73:AC X509v3 Authority Key Identifier: keyid:B3:C8:F7:E0:64:DA:9B:5A:A6:EA:79:60:17:EC:60:D2:89:03:78:2A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D671F/1EDC10BC171E11E8856BC443C4F9AE02/s8j34GTam1qm6nlgF-xg0okDeCo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/s8j34GTam1qm6nlgF-xg0okDeCo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D671F/1EDC10BC171E11E8856BC443C4F9AE02/s8j34GTam1qm6nlgF-xg0okDeCo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 62:b5:b5:1f:62:b9:56:29:6f:76:3b:a7:db:b0:b1:fd:67:ad: 0f:f6:fc:35:79:49:fb:8a:22:d8:cf:01:88:ea:9b:35:f7:92: b3:c4:f0:3a:96:26:ab:7b:63:41:5d:27:69:90:a3:8f:3d:c7: 9b:f3:3a:29:da:71:84:8f:15:df:f2:15:8c:28:fc:53:b5:ac: f3:1d:40:8b:31:57:f5:7f:83:a6:fa:6b:83:d8:bd:75:03:ab: 2a:1e:9e:3d:9d:89:75:c3:8b:c5:58:4b:ad:e7:46:e5:da:05: e0:50:a0:61:0e:7f:40:fd:19:3c:31:47:11:38:63:1c:51:2f: d7:0d:e7:4c:34:45:d6:33:44:5f:e7:f6:5a:61:26:4b:29:3d: 77:99:ec:4c:76:e7:dc:5a:26:46:c7:9a:44:67:0a:b5:6f:ef: 38:58:6e:9c:8f:c6:a8:38:08:80:26:e3:63:cf:85:ad:93:b0: 69:db:19:fe:b1:cb:cc:2a:b7:49:c9:74:8c:bb:4b:64:1f:b5: 19:1a:76:70:4d:0c:ac:1f:83:a1:17:20:1b:ce:ec:ff:2f:da: e4:8b:63:76:4b:6b:c4:56:db:3d:9d:79:22:b3:64:70:7e:b7: 9d:80:ac:bc:50:49:93:f7:64:da:4f:f4:7c:be:13:bd:6b:62: 88:4c:3d:75 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICFicwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDY3MUYxMTAvBgNVBAUTKEIzQzhGN0UwNjREQTlCNUFBNkVBNzk2MDE3RUM2MEQy ODkwMzc4MkEwHhcNMjUwNjE0MTY0MTQ1WhcNMjUwNjIxMTY0MTQ1WjAYMRYwFAYD VQQDEw02ODRkYTY0OS1jMzgyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtUzX+RlRF15Hu1ihlVbIYLrFOoUxxLI1k9t/SGj7AAvjH02hgKzAQE76PCnc wETmY5+qWRdKGtjBs94ex8wR/E1157ayM5zHwZhGyhmAqY5hkFPa/YPnNhXkeC9M Eifr1NRNVeGfVYkhtaRNxNNt1NtdH6SudBfGLsaafHwbjGC1K7g3nfjb4dOhe6FQ 7DYKHMHQut8pS6179uovPKlAyIny/giqlJFmeXuoizinz0osL85LYdcmoCbTLMGI LKx2aU5g+v60cWNTpZfbZrxifVKQOUya4sSU3Fk/W5X7Ge49LrXuTiwKyMirzZe7 6gY4BTaReCJGdkRS9W17XmHlkQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDwRd7jn HQHK5Q0FPAiBZ5aM1XOsMB8GA1UdIwQYMBaAFLPI9+Bk2ptapup5YBfsYNKJA3gq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENjcxRi8xRURDMTBCQzE3 MUUxMUU4ODU2QkM0NDNDNEY5QUUwMi9zOGozNEdUYW0xcW02bmxnRi14ZzBva0Rl Q28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3M4ajM0R1RhbTFxbTZubGdGLXhnMG9rRGVDby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NjcxRi8xRURDMTBCQzE3MUUxMUU4ODU2QkM0NDNDNEY5QUUwMi9zOGozNEdUYW0x cW02bmxnRi14ZzBva0RlQ28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBitbUfYrlWKW92O6fbsLH9Z60P9vw1eUn7iiLYzwGI6ps195KzxPA6 liare2NBXSdpkKOPPceb8zop2nGEjxXf8hWMKPxTtazzHUCLMVf1f4Om+muD2L11 A6sqHp49nYl1w4vFWEut50bl2gXgUKBhDn9A/Rk8MUcROGMcUS/XDedMNEXWM0Rf 5/ZaYSZLKT13mexMdufcWiZGx5pEZwq1b+84WG6cj8aoOAiAJuNjz4Wtk7Bp2xn+ scvMKrdJyXSMu0tkH7UZGnZwTQysH4OhFyAbzuz/L9rki2N2S2vEVts9nXkis2Rw fredgKy8UEmT92TaT/R8vhO9a2KITD11 -----END CERTIFICATE-----Generated at Sun Jun 15 05:29:43 2025 by rpki-client