$ rpki-client -vvf rpki.apnic.net/member_repository/A91EC46B/F685BC9C7FC211EBA714542AC4F9AE02/5P3k1jhc-jqHPsReepFHztMJvAI.mft File: 5P3k1jhc-jqHPsReepFHztMJvAI.mft (raw, json) Hash identifier: 1tKnRJOcv+lS8tJ+8x8NBHVy8tEN0Mv/Jj9+fxO0R70= Subject key identifier: BF:40:85:FF:F2:EE:47:B8:B9:16:DA:8D:00:FF:9D:8B:B5:44:D1:DF Authority key identifier: E4:FD:E4:D6:38:5C:FA:3A:87:3E:C4:5E:7A:91:47:CE:D3:09:BC:02 Certificate issuer: /CN=A91EC46B/serialNumber=E4FDE4D6385CFA3A873EC45E7A9147CED309BC02 Certificate serial: 067A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5P3k1jhc-jqHPsReepFHztMJvAI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EC46B/F685BC9C7FC211EBA714542AC4F9AE02/5P3k1jhc-jqHPsReepFHztMJvAI.mft Manifest number: 0672 Signing time: Sat 14 Jun 2025 22:06:41 +0000 Manifest this update: Sat 14 Jun 2025 22:06:40 +0000 Manifest next update: Sat 21 Jun 2025 22:06:40 +0000 Files and hashes: 1: 5P3k1jhc-jqHPsReepFHztMJvAI.crl (hash: KWOTz/0u70jyCkGA2Mi7WEqq8b5PVGteCtWZ9tpE3VM=) 2: 18ED6F18862211EB99005123C4F9AE02.roa (hash: rr8gNUqLqDSNabGr8QuJud25OZUwhJk+lADOj5yViNQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EC46B/F685BC9C7FC211EBA714542AC4F9AE02/5P3k1jhc-jqHPsReepFHztMJvAI.crl rsync://rpki.apnic.net/member_repository/A91EC46B/F685BC9C7FC211EBA714542AC4F9AE02/5P3k1jhc-jqHPsReepFHztMJvAI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5P3k1jhc-jqHPsReepFHztMJvAI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Jun 2025 22:06:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1658 (0x67a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EC46B, serialNumber=E4FDE4D6385CFA3A873EC45E7A9147CED309BC02 Validity Not Before: Jun 14 22:06:40 2025 GMT Not After : Jun 21 22:06:40 2025 GMT Subject: CN=684df270-f24d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:4f:11:c4:76:45:73:fc:50:5a:8b:7b:1f:f8: 33:ca:a5:96:a6:30:1c:27:9b:55:b3:04:c1:bb:3d: 28:6a:f0:c0:5f:9e:b9:9f:f6:d8:a2:d8:91:47:0a: d9:8f:90:4f:8b:f1:50:f1:7d:dd:de:b5:aa:ef:2c: 10:fe:8c:4b:83:b2:73:f2:e3:48:ab:46:65:79:70: 20:a4:ac:1e:bc:2a:1c:06:c7:1a:ea:3d:3c:f0:ae: 7f:75:3e:fc:f1:b2:89:a5:07:e0:2c:0a:6d:0a:47: 68:73:2d:c0:a6:1e:e4:6e:98:f0:3c:0a:14:03:b0: 39:7a:08:a9:2f:aa:96:50:38:bb:84:de:56:3c:0e: f6:40:ed:a7:70:82:2a:fe:66:e9:5c:a9:7f:89:41: fd:97:21:2a:2c:0d:e8:6b:91:31:1c:12:43:78:22: 69:bf:91:b0:a5:ff:1b:97:fc:36:c6:51:2e:93:02: ae:d9:ad:fc:ea:9e:49:c2:8f:31:be:a4:4a:7a:09: 59:87:ca:d7:5a:3a:72:5c:d0:53:5b:7a:c7:bb:35: 90:d5:5b:59:ca:03:b5:01:34:88:87:6e:ad:58:20: 94:d5:da:56:bd:d6:37:c7:80:20:ea:76:ff:ab:a2: 8f:d1:2b:ea:53:8d:3a:65:24:59:09:ab:3a:d5:38: cb:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BF:40:85:FF:F2:EE:47:B8:B9:16:DA:8D:00:FF:9D:8B:B5:44:D1:DF X509v3 Authority Key Identifier: keyid:E4:FD:E4:D6:38:5C:FA:3A:87:3E:C4:5E:7A:91:47:CE:D3:09:BC:02 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EC46B/F685BC9C7FC211EBA714542AC4F9AE02/5P3k1jhc-jqHPsReepFHztMJvAI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5P3k1jhc-jqHPsReepFHztMJvAI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EC46B/F685BC9C7FC211EBA714542AC4F9AE02/5P3k1jhc-jqHPsReepFHztMJvAI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption bd:28:d3:56:90:af:43:f3:a5:93:ee:54:3d:5f:83:ce:4d:ca: 13:9b:68:69:72:81:d5:cd:84:4c:2f:e1:35:26:97:13:9c:ba: 1a:a9:df:61:a2:26:c5:cf:9e:a2:9a:69:fd:f4:6b:40:5e:5f: 17:5d:4a:ea:29:5f:9d:ca:1f:1c:c4:3e:2b:6f:0d:6c:a8:1d: 0e:58:32:95:59:7d:d0:a3:81:a6:f4:92:f5:79:7d:35:c8:8f: 91:9c:99:e3:25:bc:f2:f4:cd:02:5f:60:f8:71:a1:70:4f:05: 76:90:59:bb:b5:89:87:86:85:fd:b4:da:ce:b0:37:76:f4:a0: 78:5f:8d:d1:9a:38:a7:b6:9f:98:d9:5d:80:a5:3d:0f:7e:59: e3:df:36:2f:41:df:e5:c6:5e:f5:72:f4:2b:3e:ff:25:d9:c7: 22:b2:94:5b:77:0a:07:e6:86:43:61:22:00:f0:a5:f2:6b:39: 33:c5:41:d7:c3:bb:36:06:6b:ba:03:0b:3f:0e:67:db:dc:e9: 96:3a:58:4b:9d:d1:0b:c9:43:52:c3:54:33:b0:21:d1:3a:ec: 08:61:47:6e:46:e4:ce:92:89:5d:bc:bf:b3:7e:96:d9:3e:f0: 32:e0:40:1c:85:e2:95:a4:27:3f:81:1a:65:a8:13:83:8e:3b: c5:27:36:94 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBnowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUM0NkIxMTAvBgNVBAUTKEU0RkRFNEQ2Mzg1Q0ZBM0E4NzNFQzQ1RTdBOTE0N0NF RDMwOUJDMDIwHhcNMjUwNjE0MjIwNjQwWhcNMjUwNjIxMjIwNjQwWjAYMRYwFAYD VQQDEw02ODRkZjI3MC1mMjRkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyE8RxHZFc/xQWot7H/gzyqWWpjAcJ5tVswTBuz0oavDAX565n/bYotiRRwrZ j5BPi/FQ8X3d3rWq7ywQ/oxLg7Jz8uNIq0ZleXAgpKwevCocBsca6j088K5/dT78 8bKJpQfgLAptCkdocy3Aph7kbpjwPAoUA7A5egipL6qWUDi7hN5WPA72QO2ncIIq /mbpXKl/iUH9lyEqLA3oa5ExHBJDeCJpv5Gwpf8bl/w2xlEukwKu2a386p5Jwo8x vqRKeglZh8rXWjpyXNBTW3rHuzWQ1VtZygO1ATSIh26tWCCU1dpWvdY3x4Ag6nb/ q6KP0SvqU406ZSRZCas61TjLXQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFL9Ahf/y 7ke4uRbajQD/nYu1RNHfMB8GA1UdIwQYMBaAFOT95NY4XPo6hz7EXnqRR87TCbwC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQzQ2Qi9GNjg1QkM5QzdG QzIxMUVCQTcxNDU0MkFDNEY5QUUwMi81UDNrMWpoYy1qcUhQc1JlZXBGSHp0TUp2 QUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzVQM2sxamhjLWpxSFBzUmVlcEZIenRNSnZBSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QzQ2Qi9GNjg1QkM5QzdGQzIxMUVCQTcxNDU0MkFDNEY5QUUwMi81UDNrMWpoYy1q cUhQc1JlZXBGSHp0TUp2QUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC9KNNWkK9D86WT7lQ9X4POTcoTm2hpcoHVzYRML+E1JpcTnLoaqd9h oibFz56immn99GtAXl8XXUrqKV+dyh8cxD4rbw1sqB0OWDKVWX3Qo4Gm9JL1eX01 yI+RnJnjJbzy9M0CX2D4caFwTwV2kFm7tYmHhoX9tNrOsDd29KB4X43Rmjintp+Y 2V2ApT0Pflnj3zYvQd/lxl71cvQrPv8l2ccispRbdwoH5oZDYSIA8KXyazkzxUHX w7s2Bmu6Aws/Dmfb3OmWOlhLndELyUNSw1QzsCHROuwIYUduRuTOkoldvL+zfpbZ PvAy4EAcheKVpCc/gRplqBODjjvFJzaU -----END CERTIFICATE-----Generated at Sun Jun 15 04:46:25 2025 by rpki-client