$ rpki-client -vvf rpki.apnic.net/member_repository/A91E1CB1/3F4A5A2EEA0811EF9D339B29C4F9AE02/Bj4BJ0cqfipvhHBAnJuCOQX6_o4.mft File: Bj4BJ0cqfipvhHBAnJuCOQX6_o4.mft (raw, json) Hash identifier: 6C4foPPkidzkr8Ocd5x9SmSi6xiPZg7azJZWnYI+x5k= Subject key identifier: 91:90:E3:61:00:5A:E0:F8:55:3A:81:73:3E:81:4F:A1:4E:9D:65:77 Authority key identifier: 06:3E:01:27:47:2A:7E:2A:6F:84:70:40:9C:9B:82:39:05:FA:FE:8E Certificate issuer: /CN=A91E1CB1/serialNumber=063E0127472A7E2A6F8470409C9B823905FAFE8E Certificate serial: 45 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Bj4BJ0cqfipvhHBAnJuCOQX6_o4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E1CB1/3F4A5A2EEA0811EF9D339B29C4F9AE02/Bj4BJ0cqfipvhHBAnJuCOQX6_o4.mft Manifest number: 41 Signing time: Sun 15 Jun 2025 06:33:57 +0000 Manifest this update: Sun 15 Jun 2025 06:33:56 +0000 Manifest next update: Sun 22 Jun 2025 06:33:56 +0000 Files and hashes: 1: Bj4BJ0cqfipvhHBAnJuCOQX6_o4.crl (hash: n77upDw45G5dHs6v+cX1EffxI+duCYnbInbv90km5lw=) 2: 8291E388EA0811EFB385192AC4F9AE02.roa (hash: Ca2pEWIV/EJ5w4q8uyfY/09SxRF8GtoaKpWxctigiRA=) 3: 8322D244EA0811EFB385192AC4F9AE02.roa (hash: oTDfgY49fmT+y8+2GJaPDtK7EdeEE+LjLlZzrGykmgw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E1CB1/3F4A5A2EEA0811EF9D339B29C4F9AE02/Bj4BJ0cqfipvhHBAnJuCOQX6_o4.crl rsync://rpki.apnic.net/member_repository/A91E1CB1/3F4A5A2EEA0811EF9D339B29C4F9AE02/Bj4BJ0cqfipvhHBAnJuCOQX6_o4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Bj4BJ0cqfipvhHBAnJuCOQX6_o4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 22 Jun 2025 02:50:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 69 (0x45) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E1CB1, serialNumber=063E0127472A7E2A6F8470409C9B823905FAFE8E Validity Not Before: Jun 15 06:33:56 2025 GMT Not After : Jun 22 06:33:56 2025 GMT Subject: CN=684e6954-4145 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ef:75:5e:6d:e1:28:f9:47:6f:4b:a6:ad:82:fb: f4:46:d6:40:d4:d4:ce:74:6e:0d:0d:07:35:27:6a: b0:db:9d:d7:da:0a:26:9d:1d:da:a4:a4:19:f9:13: 22:89:31:c8:fa:74:6a:02:a6:b1:86:91:e3:3b:01: b2:83:a8:52:b8:61:b0:66:78:bb:0f:46:79:ad:9c: c1:74:8b:a5:b4:7e:31:94:93:28:78:fb:c7:b7:f2: 6b:a6:39:ab:05:53:08:c6:d4:1b:c5:25:9e:8f:14: 35:6e:7e:4c:72:7f:a2:59:c4:b4:24:1c:fe:31:c9: 6e:6d:91:7e:bb:2d:fb:7a:a0:99:29:77:ea:a6:28: 48:2e:ff:cd:18:f5:b9:67:4e:33:a1:19:fb:94:0c: 83:a7:9c:80:50:f1:55:e8:b0:f1:ca:e4:f1:79:02: 72:66:ff:94:ca:62:50:b7:fb:de:7e:bd:f0:87:0e: 81:4b:c3:0c:77:3a:3e:fd:40:34:08:91:98:ac:ad: b3:25:3e:af:22:02:ee:11:de:a7:b3:e1:af:aa:d7: 81:50:10:cd:2f:d3:f8:77:bf:dc:0a:77:5d:e5:9a: 3f:0d:01:f7:6e:0c:d7:26:10:41:ba:ca:69:75:dc: 57:55:36:04:0e:71:20:01:3f:3f:4e:ee:e2:67:84: c0:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 91:90:E3:61:00:5A:E0:F8:55:3A:81:73:3E:81:4F:A1:4E:9D:65:77 X509v3 Authority Key Identifier: keyid:06:3E:01:27:47:2A:7E:2A:6F:84:70:40:9C:9B:82:39:05:FA:FE:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E1CB1/3F4A5A2EEA0811EF9D339B29C4F9AE02/Bj4BJ0cqfipvhHBAnJuCOQX6_o4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Bj4BJ0cqfipvhHBAnJuCOQX6_o4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E1CB1/3F4A5A2EEA0811EF9D339B29C4F9AE02/Bj4BJ0cqfipvhHBAnJuCOQX6_o4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 38:db:1a:dd:e4:fb:9f:2a:29:72:00:b5:cf:c5:e6:5a:6f:0c: 12:8f:58:db:d7:f6:2e:9a:ca:7d:8b:4b:65:f2:f7:71:16:ec: 0f:e2:c4:6a:78:b5:16:cb:b1:19:9f:aa:d8:d5:37:8e:f3:85: fd:be:5f:3a:39:c1:13:f5:94:80:05:c9:d6:3d:46:58:ea:21: 99:92:47:12:39:a6:cd:08:eb:5f:e5:3c:72:b4:da:3f:86:84: 5e:5a:2a:43:b2:47:73:44:a9:11:c5:a4:ed:15:07:ca:53:f3: 37:e7:27:e2:47:0e:14:f2:af:07:23:6d:bb:2d:0a:89:82:c6: a3:dd:20:27:21:af:75:c8:89:9a:64:0f:ac:2a:fe:68:95:96: cb:35:78:0c:f9:0e:d4:28:8d:5f:bb:4c:41:fd:f9:66:e7:e2: 00:32:2e:8a:ba:9a:9a:b9:75:ab:52:f5:82:99:4d:14:0a:ba: 4b:7a:59:6b:4b:cf:9d:c3:d8:1d:ce:a0:4d:16:50:51:49:4f: 20:81:20:46:77:e7:a9:16:24:f6:3b:24:f7:81:bf:32:00:c6: 50:19:a5:78:92:50:e1:1d:45:dc:92:d1:29:0d:9b:bb:e5:df: 8b:ff:6e:04:06:cd:98:ab:18:25:77:8d:a2:d4:b1:e6:2b:d9: 3b:ff:bf:36 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBRTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFF MUNCMTExMC8GA1UEBRMoMDYzRTAxMjc0NzJBN0UyQTZGODQ3MDQwOUM5QjgyMzkw NUZBRkU4RTAeFw0yNTA2MTUwNjMzNTZaFw0yNTA2MjIwNjMzNTZaMBgxFjAUBgNV BAMTDTY4NGU2OTU0LTQxNDUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDvdV5t4Sj5R29Lpq2C+/RG1kDU1M50bg0NBzUnarDbndfaCiadHdqkpBn5EyKJ Mcj6dGoCprGGkeM7AbKDqFK4YbBmeLsPRnmtnMF0i6W0fjGUkyh4+8e38mumOasF UwjG1BvFJZ6PFDVufkxyf6JZxLQkHP4xyW5tkX67Lft6oJkpd+qmKEgu/80Y9bln TjOhGfuUDIOnnIBQ8VXosPHK5PF5AnJm/5TKYlC3+95+vfCHDoFLwwx3Oj79QDQI kZisrbMlPq8iAu4R3qez4a+q14FQEM0v0/h3v9wKd13lmj8NAfduDNcmEEG6yml1 3FdVNgQOcSABPz9O7uJnhMBPAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUkZDjYQBa 4PhVOoFzPoFPoU6dZXcwHwYDVR0jBBgwFoAUBj4BJ0cqfipvhHBAnJuCOQX6/o4w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUUxQ0IxLzNGNEE1QTJFRUEw ODExRUY5RDMzOUIyOUM0RjlBRTAyL0JqNEJKMGNxZmlwdmhIQkFuSnVDT1FYNl9v NC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvQmo0QkowY3FmaXB2aEhCQW5KdUNPUVg2X280LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUUx Q0IxLzNGNEE1QTJFRUEwODExRUY5RDMzOUIyOUM0RjlBRTAyL0JqNEJKMGNxZmlw dmhIQkFuSnVDT1FYNl9vNC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBADjbGt3k+58qKXIAtc/F5lpvDBKPWNvX9i6ayn2LS2Xy93EW7A/ixGp4 tRbLsRmfqtjVN47zhf2+Xzo5wRP1lIAFydY9RljqIZmSRxI5ps0I61/lPHK02j+G hF5aKkOyR3NEqRHFpO0VB8pT8zfnJ+JHDhTyrwcjbbstComCxqPdICchr3XIiZpk D6wq/miVlss1eAz5DtQojV+7TEH9+Wbn4gAyLoq6mpq5datS9YKZTRQKukt6WWtL z53D2B3OoE0WUFFJTyCBIEZ356kWJPY7JPeBvzIAxlAZpXiSUOEdRdyS0SkNm7vl 34v/bgQGzZirGCV3jaLUseYr2Tv/vzY= -----END CERTIFICATE-----Generated at Sun Jun 15 10:07:26 2025 by rpki-client