$ rpki-client -vvf rpki.apnic.net/member_repository/A91DDDA7/3C95319C8D5411EB9840E05FC4F9AE02/bj9qTL0sdlG0kOtkkEu_8fRiAdU.mft File: bj9qTL0sdlG0kOtkkEu_8fRiAdU.mft (raw, json) Hash identifier: Vkx6s5v0tVGyDdd0QJttK8TIytaNrb8T1RKBUuyt03w= Subject key identifier: 01:98:B9:FA:9D:FF:22:8E:85:01:0A:6D:B9:BE:A9:1A:0E:49:91:71 Authority key identifier: 6E:3F:6A:4C:BD:2C:76:51:B4:90:EB:64:90:4B:BF:F1:F4:62:01:D5 Certificate issuer: /CN=A91DDDA7/serialNumber=6E3F6A4CBD2C7651B490EB64904BBFF1F46201D5 Certificate serial: 065C Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/bj9qTL0sdlG0kOtkkEu_8fRiAdU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DDDA7/3C95319C8D5411EB9840E05FC4F9AE02/bj9qTL0sdlG0kOtkkEu_8fRiAdU.mft Manifest number: 0656 Signing time: Mon 16 Jun 2025 20:07:16 +0000 Manifest this update: Mon 16 Jun 2025 20:07:15 +0000 Manifest next update: Mon 23 Jun 2025 20:07:15 +0000 Files and hashes: 1: bj9qTL0sdlG0kOtkkEu_8fRiAdU.crl (hash: /CZEIoA3B4MAFHxetxgETzza/BirC1GgSlG9b7arVic=) 2: 815931708D5411EB9DA31875C4F9AE02.roa (hash: LyuoMJXz1NyXM9pSNW11Fa6fRcMflVH6LhgfRij1kVg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DDDA7/3C95319C8D5411EB9840E05FC4F9AE02/bj9qTL0sdlG0kOtkkEu_8fRiAdU.crl rsync://rpki.apnic.net/member_repository/A91DDDA7/3C95319C8D5411EB9840E05FC4F9AE02/bj9qTL0sdlG0kOtkkEu_8fRiAdU.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/bj9qTL0sdlG0kOtkkEu_8fRiAdU.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 23 Jun 2025 20:07:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1628 (0x65c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DDDA7, serialNumber=6E3F6A4CBD2C7651B490EB64904BBFF1F46201D5 Validity Not Before: Jun 16 20:07:15 2025 GMT Not After : Jun 23 20:07:15 2025 GMT Subject: CN=68507973-35cd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:cb:ae:6c:d4:51:4f:ec:c5:6a:dd:d7:87:5b: 4e:f2:ae:08:b2:80:dc:fc:0a:27:a5:a5:93:0c:f0: 31:3e:0f:92:c2:4a:84:7a:0c:03:c7:58:35:4d:12: 44:87:0b:1e:bd:17:1e:ac:e1:e3:cd:e8:cb:da:4f: 98:0b:b4:86:9c:b2:76:0c:03:2b:cf:ba:c9:c3:05: 88:b3:7b:60:99:27:53:e8:1a:09:ce:00:50:9b:44: 77:64:96:4e:f2:50:35:f7:31:83:b4:c3:e5:e1:62: 8b:0c:ed:97:a2:78:4d:a1:fd:1a:4b:16:5b:32:33: ca:dd:6b:25:de:a1:7d:63:83:4f:31:46:c4:0e:56: f3:07:79:c3:f2:61:43:8b:ba:05:33:84:55:77:02: 58:ab:f9:3f:f0:55:f4:8d:1d:bb:cf:08:f3:dd:18: bd:74:90:cb:d2:bb:41:b1:2b:13:5f:8b:0f:c6:a9: 32:7a:2e:44:f5:8c:16:6a:4d:c6:5b:d8:04:0c:e5: 0e:34:c8:64:ea:af:78:11:35:dd:94:a8:1d:3e:e2: eb:0c:12:d5:dc:8f:cc:7a:4b:14:e7:23:73:d0:fa: 3e:5d:1d:0c:e0:ae:fa:9d:d0:9a:51:c4:af:b0:07: 64:21:3f:8b:5f:1d:ab:98:58:c8:2f:b4:b2:44:63: 55:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 01:98:B9:FA:9D:FF:22:8E:85:01:0A:6D:B9:BE:A9:1A:0E:49:91:71 X509v3 Authority Key Identifier: keyid:6E:3F:6A:4C:BD:2C:76:51:B4:90:EB:64:90:4B:BF:F1:F4:62:01:D5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DDDA7/3C95319C8D5411EB9840E05FC4F9AE02/bj9qTL0sdlG0kOtkkEu_8fRiAdU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/bj9qTL0sdlG0kOtkkEu_8fRiAdU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DDDA7/3C95319C8D5411EB9840E05FC4F9AE02/bj9qTL0sdlG0kOtkkEu_8fRiAdU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 04:f7:fa:2f:c5:61:af:54:b8:58:3e:b5:88:a3:40:f8:a4:91: 16:15:89:4f:56:63:72:ae:d5:e4:da:c0:62:75:3a:fe:99:95: a5:cb:89:18:61:3b:6d:85:40:9a:d9:b4:48:68:ef:a6:27:94: 45:78:e8:4c:cb:b5:35:55:83:af:e4:77:d4:b4:b0:76:d7:6c: 0b:a5:33:ac:e9:c3:78:f2:ab:1d:9f:3e:f7:8f:8c:da:d7:2a: cb:29:74:12:31:94:d0:04:68:9f:af:dc:8a:ca:cc:80:ce:3e: 9b:56:f8:3e:2a:7b:b0:ee:ab:d5:cc:7b:91:d6:22:43:75:29: c4:c8:b1:30:29:dd:e1:de:37:de:10:27:34:ff:b4:f7:11:f2: 2b:76:26:b8:02:41:ed:2f:15:f7:26:a2:c9:c8:45:c8:de:1f: bf:f4:bf:86:d1:25:f1:4d:31:2d:69:8a:00:40:f2:1e:f0:8a: 8e:e2:6a:90:a9:dd:b2:42:bf:0c:ab:51:11:15:9a:52:55:79: 43:a2:2f:37:d9:48:8e:b0:a6:70:4b:a6:c6:90:a3:8b:ed:17: 37:bd:a0:0d:d2:dc:ed:1d:2c:4d:51:9f:94:db:9c:df:64:b9: e7:ce:be:bb:17:97:bc:a0:81:0f:fe:1b:0f:ac:a6:a2:da:72: 07:2a:5b:6e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBlwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REREQTcxMTAvBgNVBAUTKDZFM0Y2QTRDQkQyQzc2NTFCNDkwRUI2NDkwNEJCRkYx RjQ2MjAxRDUwHhcNMjUwNjE2MjAwNzE1WhcNMjUwNjIzMjAwNzE1WjAYMRYwFAYD VQQDEw02ODUwNzk3My0zNWNkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0cuubNRRT+zFat3Xh1tO8q4IsoDc/AonpaWTDPAxPg+SwkqEegwDx1g1TRJE hwsevRcerOHjzejL2k+YC7SGnLJ2DAMrz7rJwwWIs3tgmSdT6BoJzgBQm0R3ZJZO 8lA19zGDtMPl4WKLDO2XonhNof0aSxZbMjPK3Wsl3qF9Y4NPMUbEDlbzB3nD8mFD i7oFM4RVdwJYq/k/8FX0jR27zwjz3Ri9dJDL0rtBsSsTX4sPxqkyei5E9YwWak3G W9gEDOUONMhk6q94ETXdlKgdPuLrDBLV3I/MeksU5yNz0Po+XR0M4K76ndCaUcSv sAdkIT+LXx2rmFjIL7SyRGNVNQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAGYufqd /yKOhQEKbbm+qRoOSZFxMB8GA1UdIwQYMBaAFG4/aky9LHZRtJDrZJBLv/H0YgHV MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERERBNy8zQzk1MzE5QzhE NTQxMUVCOTg0MEUwNUZDNEY5QUUwMi9iajlxVEwwc2RsRzBrT3Rra0V1XzhmUmlB ZFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2JqOXFUTDBzZGxHMGtPdGtrRXVfOGZSaUFkVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE RERBNy8zQzk1MzE5QzhENTQxMUVCOTg0MEUwNUZDNEY5QUUwMi9iajlxVEwwc2Rs RzBrT3Rra0V1XzhmUmlBZFUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAE9/ovxWGvVLhYPrWIo0D4pJEWFYlPVmNyrtXk2sBidTr+mZWly4kY YTtthUCa2bRIaO+mJ5RFeOhMy7U1VYOv5HfUtLB212wLpTOs6cN48qsdnz73j4za 1yrLKXQSMZTQBGifr9yKysyAzj6bVvg+Knuw7qvVzHuR1iJDdSnEyLEwKd3h3jfe ECc0/7T3EfIrdia4AkHtLxX3JqLJyEXI3h+/9L+G0SXxTTEtaYoAQPIe8IqO4mqQ qd2yQr8Mq1ERFZpSVXlDoi832UiOsKZwS6bGkKOL7Rc3vaAN0tztHSxNUZ+U25zf ZLnnzr67F5e8oIEP/hsPrKai2nIHKltu -----END CERTIFICATE-----Generated at Wed Jun 18 17:51:23 2025 by rpki-client