$ rpki-client -vvf rpki.apnic.net/member_repository/A91EE96E/23D2F16EEC2111EFA355605FC4F9AE02/JCmj7lCI89RTcqjjs2g0x16ubSk.mft File: JCmj7lCI89RTcqjjs2g0x16ubSk.mft (raw, json) Hash identifier: FfgUVzd+EchY4/w3FbulBMnfZbn3voqFEDUDV84GoZs= Subject key identifier: 40:97:34:0C:59:A6:5E:28:45:68:4A:89:AE:48:9D:5F:CC:E6:CA:11 Authority key identifier: 24:29:A3:EE:50:88:F3:D4:53:72:A8:E3:B3:68:34:C7:5E:AE:6D:29 Certificate issuer: /CN=A91EE96E/serialNumber=2429A3EE5088F3D45372A8E3B36834C75EAE6D29 Certificate serial: 46 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JCmj7lCI89RTcqjjs2g0x16ubSk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EE96E/23D2F16EEC2111EFA355605FC4F9AE02/JCmj7lCI89RTcqjjs2g0x16ubSk.mft Manifest number: 42 Signing time: Sun 15 Jun 2025 06:35:34 +0000 Manifest this update: Sun 15 Jun 2025 06:35:33 +0000 Manifest next update: Sun 22 Jun 2025 06:35:33 +0000 Files and hashes: 1: JCmj7lCI89RTcqjjs2g0x16ubSk.crl (hash: JIhSq9O2/g6zE0mOLsoXJnSoVFlm4xyOEkbXp2pckS8=) 2: 92B377C82CB011F0A2E86B16C4F9AE02.roa (hash: jOhNPwVgr8IgRDHfIrJJZGVjc3Pfqrjw7RoDj2c/Y0o=) 3: 7F639A182CB011F08B722116C4F9AE02.roa (hash: spTkb5xEKtj6kOvbsLtYV5brzWGqrgveZXxT4s0PHa4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EE96E/23D2F16EEC2111EFA355605FC4F9AE02/JCmj7lCI89RTcqjjs2g0x16ubSk.crl rsync://rpki.apnic.net/member_repository/A91EE96E/23D2F16EEC2111EFA355605FC4F9AE02/JCmj7lCI89RTcqjjs2g0x16ubSk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JCmj7lCI89RTcqjjs2g0x16ubSk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 22 Jun 2025 06:35:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 70 (0x46) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EE96E, serialNumber=2429A3EE5088F3D45372A8E3B36834C75EAE6D29 Validity Not Before: Jun 15 06:35:33 2025 GMT Not After : Jun 22 06:35:33 2025 GMT Subject: CN=684e69b5-9f21 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:33:95:ce:a0:b9:dd:83:55:98:de:b7:48:b7: 43:4d:ce:58:2c:26:16:f3:d0:02:6f:c3:1f:35:58: a5:7f:21:ed:18:2c:32:31:e5:c5:84:7c:de:ad:bf: 87:61:0c:f1:00:91:c3:0f:67:d7:f3:8f:b4:2d:6f: 12:a1:6c:44:b9:19:f1:d1:06:13:04:94:0e:10:bb: 6e:f7:83:d2:55:95:f9:12:d9:34:f0:87:f9:81:91: d6:cf:20:55:58:da:c4:0d:80:88:e0:56:b2:52:32: cb:d8:e6:4d:7d:16:dd:6a:a6:8b:0a:43:4e:9e:1a: 60:c0:f6:cb:aa:27:a5:2d:90:2e:8d:76:d9:47:ae: af:93:37:d0:e0:28:f0:9f:32:83:55:7d:05:b5:9d: e4:0e:ce:d3:93:8f:91:00:b3:73:16:08:59:69:3f: 3a:1d:d3:1b:66:1d:10:b8:dc:65:00:eb:c6:99:2a: f6:c6:af:8a:e2:3f:ea:1f:29:85:ad:a4:c3:c0:3e: 46:0a:cb:36:73:47:73:3a:1a:ab:5b:e5:1d:40:74: e3:04:d1:e7:3c:2f:7b:95:a6:12:df:a0:f8:11:8f: ed:da:27:39:2f:83:f5:37:31:99:02:e4:4c:df:90: 18:ef:68:5d:32:0f:0a:07:3c:b0:19:ab:d3:62:d9: 08:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 40:97:34:0C:59:A6:5E:28:45:68:4A:89:AE:48:9D:5F:CC:E6:CA:11 X509v3 Authority Key Identifier: keyid:24:29:A3:EE:50:88:F3:D4:53:72:A8:E3:B3:68:34:C7:5E:AE:6D:29 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EE96E/23D2F16EEC2111EFA355605FC4F9AE02/JCmj7lCI89RTcqjjs2g0x16ubSk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JCmj7lCI89RTcqjjs2g0x16ubSk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EE96E/23D2F16EEC2111EFA355605FC4F9AE02/JCmj7lCI89RTcqjjs2g0x16ubSk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 48:ea:5b:bc:1f:68:7d:c1:32:41:07:36:0b:c7:03:49:b0:f1: f8:a6:52:08:41:7e:ea:17:29:75:68:c0:54:e9:d1:31:7a:6d: 3b:c9:3d:d2:63:ad:45:9f:4c:87:c0:3d:6f:7d:8f:e7:03:1e: 04:c4:d1:97:95:9d:e4:78:31:f5:79:1f:51:1d:1d:8e:d3:5b: 92:61:3d:f4:68:5b:12:1a:71:93:53:63:47:7f:c8:fb:67:a7: b2:0c:cd:c2:2e:e2:7b:95:88:24:e3:43:f1:45:14:a9:0d:5c: e4:59:41:f3:40:22:25:9c:5b:0c:68:37:41:de:b7:ad:38:c1: 96:f0:48:95:e1:a3:29:3f:72:4a:b1:82:aa:e5:b9:ff:36:06: 12:4d:e9:86:de:c6:c8:c8:e7:68:35:16:f4:1f:a8:04:00:74: 18:90:35:44:3c:d2:ad:8f:84:80:05:65:b7:d3:d0:74:4f:5b: 0d:f6:d0:63:09:da:79:d7:ff:67:c1:67:a7:28:c3:8d:02:1e: e6:55:ce:3a:f6:8e:b7:0c:8f:00:df:73:27:ed:64:63:e5:70: 59:10:e7:b4:8c:0b:c6:82:a9:96:a3:17:d1:78:19:58:69:87: e4:ff:a4:23:9d:4c:72:24:48:06:50:76:ec:9d:68:5f:99:8a: 75:7d:bf:ab -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBRjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFF RTk2RTExMC8GA1UEBRMoMjQyOUEzRUU1MDg4RjNENDUzNzJBOEUzQjM2ODM0Qzc1 RUFFNkQyOTAeFw0yNTA2MTUwNjM1MzNaFw0yNTA2MjIwNjM1MzNaMBgxFjAUBgNV BAMTDTY4NGU2OWI1LTlmMjEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDsM5XOoLndg1WY3rdIt0NNzlgsJhbz0AJvwx81WKV/Ie0YLDIx5cWEfN6tv4dh DPEAkcMPZ9fzj7QtbxKhbES5GfHRBhMElA4Qu273g9JVlfkS2TTwh/mBkdbPIFVY 2sQNgIjgVrJSMsvY5k19Ft1qposKQ06eGmDA9suqJ6UtkC6NdtlHrq+TN9DgKPCf MoNVfQW1neQOztOTj5EAs3MWCFlpPzod0xtmHRC43GUA68aZKvbGr4riP+ofKYWt pMPAPkYKyzZzR3M6Gqtb5R1AdOME0ec8L3uVphLfoPgRj+3aJzkvg/U3MZkC5Ezf kBjvaF0yDwoHPLAZq9Ni2QjdAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUQJc0DFmm XihFaEqJrkidX8zmyhEwHwYDVR0jBBgwFoAUJCmj7lCI89RTcqjjs2g0x16ubSkw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUVFOTZFLzIzRDJGMTZFRUMy MTExRUZBMzU1NjA1RkM0RjlBRTAyL0pDbWo3bENJODlSVGNxampzMmcweDE2dWJT ay5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvSkNtajdsQ0k4OVJUY3FqanMyZzB4MTZ1YlNrLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUVF OTZFLzIzRDJGMTZFRUMyMTExRUZBMzU1NjA1RkM0RjlBRTAyL0pDbWo3bENJODlS VGNxampzMmcweDE2dWJTay5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAEjqW7wfaH3BMkEHNgvHA0mw8fimUghBfuoXKXVowFTp0TF6bTvJPdJj rUWfTIfAPW99j+cDHgTE0ZeVneR4MfV5H1EdHY7TW5JhPfRoWxIacZNTY0d/yPtn p7IMzcIu4nuViCTjQ/FFFKkNXORZQfNAIiWcWwxoN0Het604wZbwSJXhoyk/ckqx gqrluf82BhJN6YbexsjI52g1FvQfqAQAdBiQNUQ80q2PhIAFZbfT0HRPWw320GMJ 2nnX/2fBZ6cow40CHuZVzjr2jrcMjwDfcyftZGPlcFkQ57SMC8aCqZajF9F4GVhp h+T/pCOdTHIkSAZQduydaF+ZinV9v6s= -----END CERTIFICATE-----Generated at Tue Jun 17 01:30:49 2025 by rpki-client