$ rpki-client -vvf rpki.apnic.net/member_repository/A91E8BAF/32D8E22E1DAB11E2A97D23A908B02CD2/JI2x_uVRDIpq-F6sgQ7EzK6L-Q0.mft File: JI2x_uVRDIpq-F6sgQ7EzK6L-Q0.mft (raw, json) Hash identifier: vozo4bTjMixO/s08xwQvF4Y8/OeA6TbOESnAXQXBF5U= Subject key identifier: 4F:E8:25:DB:BD:7F:60:7C:5E:40:C8:84:93:C3:72:EE:72:A2:4C:F3 Authority key identifier: 24:8D:B1:FE:E5:51:0C:8A:6A:F8:5E:AC:81:0E:C4:CC:AE:8B:F9:0D Certificate issuer: /CN=A91E8BAF/serialNumber=248DB1FEE5510C8A6AF85EAC810EC4CCAE8BF90D Certificate serial: 34AB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JI2x_uVRDIpq-F6sgQ7EzK6L-Q0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E8BAF/32D8E22E1DAB11E2A97D23A908B02CD2/JI2x_uVRDIpq-F6sgQ7EzK6L-Q0.mft Manifest number: 349A Signing time: Sat 14 Jun 2025 15:17:34 +0000 Manifest this update: Sat 14 Jun 2025 15:17:33 +0000 Manifest next update: Sat 21 Jun 2025 15:17:33 +0000 Files and hashes: 1: JI2x_uVRDIpq-F6sgQ7EzK6L-Q0.crl (hash: fg1kG0QGriPvSph7MQqCQ35/Mu06tFqPpwACFCv9PQc=) 2: 2417A16240D111EEB97F9366C4F9AE02.roa (hash: 5HxbfCADS0YE8zgWBNeHaLAjeMofIFQYhkC/UJjBOds=) 3: F87DB8B440C811EEB681DC40C4F9AE02.roa (hash: qoJIoB5IZhCrFKoONH6w1qM5F//MbDhtykwiUAx2/AY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E8BAF/32D8E22E1DAB11E2A97D23A908B02CD2/JI2x_uVRDIpq-F6sgQ7EzK6L-Q0.crl rsync://rpki.apnic.net/member_repository/A91E8BAF/32D8E22E1DAB11E2A97D23A908B02CD2/JI2x_uVRDIpq-F6sgQ7EzK6L-Q0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JI2x_uVRDIpq-F6sgQ7EzK6L-Q0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Jun 2025 15:17:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13483 (0x34ab) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E8BAF, serialNumber=248DB1FEE5510C8A6AF85EAC810EC4CCAE8BF90D Validity Not Before: Jun 14 15:17:33 2025 GMT Not After : Jun 21 15:17:33 2025 GMT Subject: CN=684d928e-0a99 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:a2:ab:fe:cc:f3:c3:19:25:26:c1:b2:c1:71: 5f:18:3b:ee:99:6a:40:4c:30:8a:a8:03:96:cb:c1: ac:52:61:0a:f0:3b:5d:00:33:94:21:5f:70:72:e1: a5:dc:91:2f:2b:5a:15:0f:00:92:17:58:4b:44:92: 52:a4:15:ff:b7:be:ae:ff:60:f4:2b:82:b6:0c:f4: b2:82:09:b7:4d:5b:e6:33:17:20:f9:56:06:8d:28: f4:9a:d0:05:6f:31:43:df:a5:2d:00:b4:ca:1b:1c: e5:4b:3f:be:50:47:55:47:be:de:fb:71:d8:7d:07: c3:50:7b:25:de:c2:37:9e:9e:19:a0:74:37:aa:db: 8e:cd:27:5d:ce:8e:bc:92:e4:15:b2:cf:e3:20:42: 0c:56:e6:b0:62:c1:e3:eb:69:a4:d9:e7:33:7d:42: eb:d3:56:5f:c1:5c:67:15:87:d7:de:0d:e1:9b:a6: 0f:70:ad:bf:f6:c4:4e:c8:4e:f3:48:fe:58:b3:7f: 82:1f:b8:49:08:e6:67:a5:e0:77:10:15:8f:b5:ef: 85:66:93:3d:14:3f:5f:6b:e7:44:98:62:aa:94:3f: 1b:97:dd:d0:4d:69:64:f5:88:40:87:23:b1:5f:5a: e2:80:33:65:17:c4:d9:6d:8f:38:5f:46:7d:42:b9: 16:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4F:E8:25:DB:BD:7F:60:7C:5E:40:C8:84:93:C3:72:EE:72:A2:4C:F3 X509v3 Authority Key Identifier: keyid:24:8D:B1:FE:E5:51:0C:8A:6A:F8:5E:AC:81:0E:C4:CC:AE:8B:F9:0D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E8BAF/32D8E22E1DAB11E2A97D23A908B02CD2/JI2x_uVRDIpq-F6sgQ7EzK6L-Q0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JI2x_uVRDIpq-F6sgQ7EzK6L-Q0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E8BAF/32D8E22E1DAB11E2A97D23A908B02CD2/JI2x_uVRDIpq-F6sgQ7EzK6L-Q0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ce:e9:81:39:2b:3b:ed:82:9b:42:a2:b2:6a:74:ce:cb:83:84: f6:47:ac:91:1f:2b:8d:70:aa:f2:13:8e:f5:12:86:87:ab:8e: 2c:a7:78:cf:87:c1:ef:35:4b:f8:db:cd:32:a1:42:10:b4:59: b0:58:1e:73:55:bb:ca:10:94:b3:7b:57:63:42:18:ed:1f:c1: 80:82:44:41:5c:d0:6a:56:5c:16:81:16:0c:a0:2f:5b:2c:87: e6:63:de:e6:64:9e:2c:0e:b9:6d:b7:83:f9:2a:61:9c:b1:9b: 03:f2:57:f8:5e:74:82:13:9c:70:21:e6:5c:91:58:90:f4:5a: 19:8d:60:de:4f:6d:33:98:94:74:1f:70:dd:2f:4d:59:c4:30: d7:3f:2c:05:73:f5:e3:05:b1:00:6f:1f:5f:80:18:f4:33:b5: 47:62:55:da:c0:17:b0:47:f0:f0:66:dc:3b:66:62:13:31:00: b1:69:d4:9f:4b:23:f0:ba:26:78:e7:2e:56:d4:06:32:32:aa: 4f:0b:66:c2:e7:9a:eb:ba:e7:4c:90:cd:16:14:f4:04:84:53: 14:f2:47:83:e3:47:7c:8c:51:43:f7:4c:2d:fe:51:24:88:c2: 83:c6:84:55:58:7c:a5:60:13:77:7c:a7:d3:b7:0d:a2:ad:68: 7f:7a:03:13 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNKswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RThCQUYxMTAvBgNVBAUTKDI0OERCMUZFRTU1MTBDOEE2QUY4NUVBQzgxMEVDNEND QUU4QkY5MEQwHhcNMjUwNjE0MTUxNzMzWhcNMjUwNjIxMTUxNzMzWjAYMRYwFAYD VQQDEw02ODRkOTI4ZS0wYTk5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs6Kr/szzwxklJsGywXFfGDvumWpATDCKqAOWy8GsUmEK8DtdADOUIV9wcuGl 3JEvK1oVDwCSF1hLRJJSpBX/t76u/2D0K4K2DPSyggm3TVvmMxcg+VYGjSj0mtAF bzFD36UtALTKGxzlSz++UEdVR77e+3HYfQfDUHsl3sI3np4ZoHQ3qtuOzSddzo68 kuQVss/jIEIMVuawYsHj62mk2eczfULr01ZfwVxnFYfX3g3hm6YPcK2/9sROyE7z SP5Ys3+CH7hJCOZnpeB3EBWPte+FZpM9FD9fa+dEmGKqlD8bl93QTWlk9YhAhyOx X1rigDNlF8TZbY84X0Z9QrkWewIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFE/oJdu9 f2B8XkDIhJPDcu5yokzzMB8GA1UdIwQYMBaAFCSNsf7lUQyKavherIEOxMyui/kN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFOEJBRi8zMkQ4RTIyRTFE QUIxMUUyQTk3RDIzQTkwOEIwMkNEMi9KSTJ4X3VWUkRJcHEtRjZzZ1E3RXpLNkwt UTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0pJMnhfdVZSRElwcS1GNnNnUTdFeks2TC1RMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF OEJBRi8zMkQ4RTIyRTFEQUIxMUUyQTk3RDIzQTkwOEIwMkNEMi9KSTJ4X3VWUkRJ cHEtRjZzZ1E3RXpLNkwtUTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDO6YE5KzvtgptCorJqdM7Lg4T2R6yRHyuNcKryE471EoaHq44sp3jP h8HvNUv4280yoUIQtFmwWB5zVbvKEJSze1djQhjtH8GAgkRBXNBqVlwWgRYMoC9b LIfmY97mZJ4sDrltt4P5KmGcsZsD8lf4XnSCE5xwIeZckViQ9FoZjWDeT20zmJR0 H3DdL01ZxDDXPywFc/XjBbEAbx9fgBj0M7VHYlXawBewR/DwZtw7ZmITMQCxadSf SyPwuiZ45y5W1AYyMqpPC2bC55rruudMkM0WFPQEhFMU8keD40d8jFFD90wt/lEk iMKDxoRVWHylYBN3fKfTtw2irWh/egMT -----END CERTIFICATE-----Generated at Sun Jun 15 07:19:31 2025 by rpki-client