$ rpki-client -vvf rpki.apnic.net/member_repository/A91E4696/D6A11C4A90BF11ED8CC1E783C4F9AE02/J7hyLIWcpPbwPsHgYf3Uw7m0l-U.mft File: J7hyLIWcpPbwPsHgYf3Uw7m0l-U.mft (raw, json) Hash identifier: +4sa1b68+TU2QpzPruEooOfKyPw4gQEMKVhojCa1wWU= Subject key identifier: F8:4F:AC:48:DE:A9:35:AF:25:BA:70:8F:66:1F:34:71:BA:77:E1:CC Authority key identifier: 27:B8:72:2C:85:9C:A4:F6:F0:3E:C1:E0:61:FD:D4:C3:B9:B4:97:E5 Certificate issuer: /CN=A91E4696/serialNumber=27B8722C859CA4F6F03EC1E061FDD4C3B9B497E5 Certificate serial: 01D2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/J7hyLIWcpPbwPsHgYf3Uw7m0l-U.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E4696/D6A11C4A90BF11ED8CC1E783C4F9AE02/J7hyLIWcpPbwPsHgYf3Uw7m0l-U.mft Manifest number: 01CA Signing time: Fri 13 Jun 2025 02:01:49 +0000 Manifest this update: Fri 13 Jun 2025 02:01:49 +0000 Manifest next update: Fri 20 Jun 2025 02:01:49 +0000 Files and hashes: 1: J7hyLIWcpPbwPsHgYf3Uw7m0l-U.crl (hash: +HO6Upm8lXaZ16hc2z0Eurcpn89lPmzzqPponKaj/Mc=) 2: F04A74EC90C511EDA07C3025C4F9AE02.roa (hash: hWCgt4KmPIBt7/S3B9mMUj5grxgOnMh8nytxnRCNTBY=) 3: 63CC2AA80FEE11EEBCC6AE50C4F9AE02.roa (hash: 1lAGETSydBwVjG0hesN1/ViGN9eOR/26uzUYMFoxaT4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E4696/D6A11C4A90BF11ED8CC1E783C4F9AE02/J7hyLIWcpPbwPsHgYf3Uw7m0l-U.crl rsync://rpki.apnic.net/member_repository/A91E4696/D6A11C4A90BF11ED8CC1E783C4F9AE02/J7hyLIWcpPbwPsHgYf3Uw7m0l-U.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/J7hyLIWcpPbwPsHgYf3Uw7m0l-U.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 20 Jun 2025 02:01:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 466 (0x1d2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E4696, serialNumber=27B8722C859CA4F6F03EC1E061FDD4C3B9B497E5 Validity Not Before: Jun 13 02:01:49 2025 GMT Not After : Jun 20 02:01:49 2025 GMT Subject: CN=684b868d-6794 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:4f:e6:66:10:9e:6d:3b:f7:44:bb:1d:65:8c: 77:d5:6c:7a:b1:96:34:4c:bb:2d:8b:52:7c:12:83: 18:c0:28:f2:f8:48:e6:85:1b:cc:b2:df:dc:58:c9: 9f:8b:33:aa:79:ec:c9:7a:ca:83:c4:1b:f2:be:8a: e2:05:ef:d9:f9:9e:a9:fb:61:78:c7:31:70:67:8e: dd:ad:d7:f2:a6:be:69:b8:55:b1:60:51:4f:19:5b: d1:0e:92:93:74:29:51:4b:97:c6:48:aa:81:cd:c3: 0c:49:ef:a8:66:a0:fc:28:02:73:51:a9:fb:5d:19: e5:bf:8d:6e:0c:fe:61:7e:cc:e3:cd:4e:a8:0d:4e: 0c:cb:7d:0d:90:77:95:f8:97:71:a0:91:87:a7:5d: d1:51:c2:09:4e:db:a1:f4:a0:f3:02:cd:9a:ef:c6: 3c:dc:60:37:78:a0:f8:31:53:9b:da:3c:14:16:db: 9e:cb:35:b3:57:9f:d4:89:d5:f5:d6:11:d9:1c:bb: a4:32:8a:32:0e:ec:8d:6f:d3:20:5b:6b:fd:ff:7c: 78:7b:55:51:ac:df:5d:63:80:7d:6f:cb:e3:b3:e0: f9:4c:8f:c3:26:fd:bb:65:6d:f3:78:ff:48:c8:52: 4e:a4:7e:f2:ee:46:85:97:41:0c:44:e8:5c:5c:e5: d1:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F8:4F:AC:48:DE:A9:35:AF:25:BA:70:8F:66:1F:34:71:BA:77:E1:CC X509v3 Authority Key Identifier: keyid:27:B8:72:2C:85:9C:A4:F6:F0:3E:C1:E0:61:FD:D4:C3:B9:B4:97:E5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E4696/D6A11C4A90BF11ED8CC1E783C4F9AE02/J7hyLIWcpPbwPsHgYf3Uw7m0l-U.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/J7hyLIWcpPbwPsHgYf3Uw7m0l-U.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E4696/D6A11C4A90BF11ED8CC1E783C4F9AE02/J7hyLIWcpPbwPsHgYf3Uw7m0l-U.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 28:ed:58:18:53:9e:c9:fd:b3:7d:90:f9:f8:ec:a0:16:b1:85: 8c:ae:70:e4:0d:89:72:8f:75:8f:5b:8e:20:87:74:f4:3c:a6: cb:fc:44:00:05:36:43:77:d8:5b:e9:31:fc:32:fe:4d:f2:5a: 4e:86:ed:c3:62:c2:86:9e:a5:1d:09:a3:f0:ed:5f:53:dd:18: f1:d8:07:61:fe:4c:bb:4d:ce:b5:ea:d5:dd:24:6c:45:ee:93: 68:1e:67:c6:d9:7c:54:40:b9:72:26:08:c1:9a:e8:ac:a5:90: 66:be:5e:0b:0a:40:e9:22:d9:f6:09:02:ec:0d:d4:ea:32:33: 29:9e:a8:0b:17:58:64:62:b2:2e:57:88:4c:c8:62:dc:33:2e: de:36:ef:35:d1:06:a3:a7:19:dd:81:8d:88:9d:48:2f:ff:37: f0:a2:fc:26:f9:43:6a:8f:98:ca:09:72:9e:f3:19:fc:32:99: 08:40:b4:5d:9e:ff:61:95:5f:99:a7:e3:1c:72:06:d7:cc:12: 3c:a5:7c:2d:a2:be:1e:45:42:6a:14:72:42:f0:80:dc:43:40: df:c3:2b:7d:d6:97:97:ce:68:e6:fe:15:8b:d0:03:c4:7a:94: 7f:46:35:4e:d6:f2:58:13:6c:b1:b9:db:f8:b0:88:5e:96:92: 22:9f:82:94 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAdIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTQ2OTYxMTAvBgNVBAUTKDI3Qjg3MjJDODU5Q0E0RjZGMDNFQzFFMDYxRkRENEMz QjlCNDk3RTUwHhcNMjUwNjEzMDIwMTQ5WhcNMjUwNjIwMDIwMTQ5WjAYMRYwFAYD VQQDEw02ODRiODY4ZC02Nzk0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAm0/mZhCebTv3RLsdZYx31Wx6sZY0TLsti1J8EoMYwCjy+EjmhRvMst/cWMmf izOqeezJesqDxBvyvoriBe/Z+Z6p+2F4xzFwZ47drdfypr5puFWxYFFPGVvRDpKT dClRS5fGSKqBzcMMSe+oZqD8KAJzUan7XRnlv41uDP5hfszjzU6oDU4My30NkHeV +JdxoJGHp13RUcIJTtuh9KDzAs2a78Y83GA3eKD4MVOb2jwUFtueyzWzV5/UidX1 1hHZHLukMooyDuyNb9MgW2v9/3x4e1VRrN9dY4B9b8vjs+D5TI/DJv27ZW3zeP9I yFJOpH7y7kaFl0EMROhcXOXR6QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPhPrEje qTWvJbpwj2YfNHG6d+HMMB8GA1UdIwQYMBaAFCe4ciyFnKT28D7B4GH91MO5tJfl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNDY5Ni9ENkExMUM0QTkw QkYxMUVEOENDMUU3ODNDNEY5QUUwMi9KN2h5TElXY3BQYndQc0hnWWYzVXc3bTBs LVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0o3aHlMSVdjcFBid1BzSGdZZjNVdzdtMGwtVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NDY5Ni9ENkExMUM0QTkwQkYxMUVEOENDMUU3ODNDNEY5QUUwMi9KN2h5TElXY3BQ YndQc0hnWWYzVXc3bTBsLVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAo7VgYU57J/bN9kPn47KAWsYWMrnDkDYlyj3WPW44gh3T0PKbL/EQA BTZDd9hb6TH8Mv5N8lpOhu3DYsKGnqUdCaPw7V9T3Rjx2Adh/ky7Tc616tXdJGxF 7pNoHmfG2XxUQLlyJgjBmuispZBmvl4LCkDpItn2CQLsDdTqMjMpnqgLF1hkYrIu V4hMyGLcMy7eNu810QajpxndgY2InUgv/zfwovwm+UNqj5jKCXKe8xn8MpkIQLRd nv9hlV+Zp+MccgbXzBI8pXwtor4eRUJqFHJC8IDcQ0Dfwyt91peXzmjm/hWL0APE epR/RjVO1vJYE2yxudv4sIhelpIin4KU -----END CERTIFICATE-----Generated at Sat Jun 14 19:26:31 2025 by rpki-client