$ rpki-client -vvf rpki.apnic.net/member_repository/A91F17B1/66E4E4F6FB4011EBBAB0DA3BC4F9AE02/_lDDhdnrGeLvoU-jWtpb3qW0VtM.mft File: _lDDhdnrGeLvoU-jWtpb3qW0VtM.mft (raw, json) Hash identifier: PJuoCgwlDHwMjUIArWQOOw/CjyiMmFVLp71Qx/65B8s= Subject key identifier: 99:3C:6F:8E:2C:FE:CA:64:5F:E7:6C:C2:DC:55:69:F0:2C:27:72:D4 Authority key identifier: FE:50:C3:85:D9:EB:19:E2:EF:A1:4F:A3:5A:DA:5B:DE:A5:B4:56:D3 Certificate issuer: /CN=A91F17B1/serialNumber=FE50C385D9EB19E2EFA14FA35ADA5BDEA5B456D3 Certificate serial: 0597 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_lDDhdnrGeLvoU-jWtpb3qW0VtM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F17B1/66E4E4F6FB4011EBBAB0DA3BC4F9AE02/_lDDhdnrGeLvoU-jWtpb3qW0VtM.mft Manifest number: 056D Signing time: Sat 14 Jun 2025 23:13:22 +0000 Manifest this update: Sat 14 Jun 2025 23:13:22 +0000 Manifest next update: Sat 21 Jun 2025 23:13:22 +0000 Files and hashes: 1: _lDDhdnrGeLvoU-jWtpb3qW0VtM.crl (hash: chZmIfwm6NiEtegJnYPdhSPmRcleEirUoRsfUy3lEcs=) 2: 65DFCD4A884D11EE8423C486C4F9AE02.roa (hash: Ji5QHhKyC9d/xw16UVd29SWOnnXI9pwAI1DiN2SnuG0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F17B1/66E4E4F6FB4011EBBAB0DA3BC4F9AE02/_lDDhdnrGeLvoU-jWtpb3qW0VtM.crl rsync://rpki.apnic.net/member_repository/A91F17B1/66E4E4F6FB4011EBBAB0DA3BC4F9AE02/_lDDhdnrGeLvoU-jWtpb3qW0VtM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_lDDhdnrGeLvoU-jWtpb3qW0VtM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Jun 2025 23:13:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1431 (0x597) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F17B1, serialNumber=FE50C385D9EB19E2EFA14FA35ADA5BDEA5B456D3 Validity Not Before: Jun 14 23:13:22 2025 GMT Not After : Jun 21 23:13:22 2025 GMT Subject: CN=684e0212-a346 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:d6:53:18:1c:0e:e0:4c:0c:49:07:4a:78:7e: 4c:51:96:8c:f1:8b:a2:a4:4b:dd:cf:df:d7:66:06: d1:b4:60:28:cf:b2:64:0f:a8:7c:d1:c7:07:ee:9a: 8c:5b:65:1f:b4:22:f3:03:c6:41:41:94:18:3d:cf: 25:2f:f1:dc:92:8e:54:3c:c0:f6:ad:fc:35:b8:b1: 09:75:40:83:b1:de:42:f3:af:8e:e4:40:1a:13:8d: b2:cb:35:55:c6:d4:54:d7:80:92:ff:dd:75:c5:be: 61:d9:39:e7:f2:3b:14:9a:b7:7d:10:a5:b3:03:bb: bf:e9:3e:93:0b:30:10:89:d2:da:16:97:62:09:30: dd:d4:33:e6:e2:b6:57:fc:d9:73:76:02:48:04:41: b0:e6:49:e8:72:d0:2b:14:a4:27:c3:f7:5a:a4:dd: 81:f1:6f:9d:a8:6c:c1:16:0a:e0:b9:ee:e8:e7:28: 6e:6b:92:18:e7:7b:c6:3a:4a:7a:b6:04:62:15:78: b9:af:be:e9:85:05:6a:d1:b5:be:f2:8f:ab:19:43: 24:95:0a:2d:56:d7:b9:f0:92:09:b3:2e:54:5a:07: b5:f9:c4:6a:0c:e8:cc:79:81:2c:79:73:9c:e1:e5: 1d:66:8c:4b:70:ee:d0:bc:d2:b3:0d:53:4a:98:13: 31:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 99:3C:6F:8E:2C:FE:CA:64:5F:E7:6C:C2:DC:55:69:F0:2C:27:72:D4 X509v3 Authority Key Identifier: keyid:FE:50:C3:85:D9:EB:19:E2:EF:A1:4F:A3:5A:DA:5B:DE:A5:B4:56:D3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F17B1/66E4E4F6FB4011EBBAB0DA3BC4F9AE02/_lDDhdnrGeLvoU-jWtpb3qW0VtM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_lDDhdnrGeLvoU-jWtpb3qW0VtM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F17B1/66E4E4F6FB4011EBBAB0DA3BC4F9AE02/_lDDhdnrGeLvoU-jWtpb3qW0VtM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2c:06:31:fe:ee:f9:7f:c4:10:8c:fb:19:88:c2:af:dc:a2:9a: af:26:21:1e:0e:c0:59:a3:c6:1a:27:58:85:88:41:af:1f:2e: e3:e8:ca:f7:09:94:68:a3:c5:51:22:bb:fb:e5:a8:a7:c7:55: d8:c9:d7:66:87:36:47:e2:9a:a4:d6:f3:b3:0e:e4:50:c5:91: 86:9b:8b:e0:27:e8:de:29:0f:4f:47:1f:33:9f:ba:c2:98:81: e7:0d:20:17:9a:11:29:99:a4:b8:78:40:74:b5:6a:3d:18:33: 75:f9:7a:4f:39:46:be:8d:46:76:a4:e6:15:2b:2c:80:f0:c9: d0:a7:3e:35:94:23:5a:25:5a:c4:30:ae:1f:ac:37:0e:5a:99: 46:ad:d9:df:25:0e:f7:92:c7:d6:5d:80:4c:51:12:85:b2:75: 05:3d:c0:5b:02:e1:e1:c1:9e:ac:ea:33:c6:6c:3a:35:08:8d: 41:0e:6d:87:7f:98:5c:21:a4:33:7f:25:d0:49:7b:e2:58:d9: e9:52:05:b8:4b:28:3f:b0:8b:c7:63:b3:37:ad:70:85:57:d2: 39:17:c8:8f:f3:2e:46:4b:88:b9:69:11:ea:38:62:44:6d:9c: 07:3e:a7:b5:b2:c4:2a:9d:2e:fa:47:81:83:99:57:ff:c9:e6: ca:86:03:24 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBZcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjE3QjExMTAvBgNVBAUTKEZFNTBDMzg1RDlFQjE5RTJFRkExNEZBMzVBREE1QkRF QTVCNDU2RDMwHhcNMjUwNjE0MjMxMzIyWhcNMjUwNjIxMjMxMzIyWjAYMRYwFAYD VQQDEw02ODRlMDIxMi1hMzQ2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwdZTGBwO4EwMSQdKeH5MUZaM8YuipEvdz9/XZgbRtGAoz7JkD6h80ccH7pqM W2UftCLzA8ZBQZQYPc8lL/Hcko5UPMD2rfw1uLEJdUCDsd5C86+O5EAaE42yyzVV xtRU14CS/911xb5h2Tnn8jsUmrd9EKWzA7u/6T6TCzAQidLaFpdiCTDd1DPm4rZX /NlzdgJIBEGw5knoctArFKQnw/dapN2B8W+dqGzBFgrgue7o5yhua5IY53vGOkp6 tgRiFXi5r77phQVq0bW+8o+rGUMklQotVte58JIJsy5UWge1+cRqDOjMeYEseXOc 4eUdZoxLcO7QvNKzDVNKmBMxXwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJk8b44s /spkX+dswtxVafAsJ3LUMB8GA1UdIwQYMBaAFP5Qw4XZ6xni76FPo1raW96ltFbT MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMTdCMS82NkU0RTRGNkZC NDAxMUVCQkFCMERBM0JDNEY5QUUwMi9fbEREaGRuckdlTHZvVS1qV3RwYjNxVzBW dE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL19sRERoZG5yR2VMdm9VLWpXdHBiM3FXMFZ0TS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG MTdCMS82NkU0RTRGNkZCNDAxMUVCQkFCMERBM0JDNEY5QUUwMi9fbEREaGRuckdl THZvVS1qV3RwYjNxVzBWdE0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAsBjH+7vl/xBCM+xmIwq/copqvJiEeDsBZo8YaJ1iFiEGvHy7j6Mr3 CZRoo8VRIrv75ainx1XYyddmhzZH4pqk1vOzDuRQxZGGm4vgJ+jeKQ9PRx8zn7rC mIHnDSAXmhEpmaS4eEB0tWo9GDN1+XpPOUa+jUZ2pOYVKyyA8MnQpz41lCNaJVrE MK4frDcOWplGrdnfJQ73ksfWXYBMURKFsnUFPcBbAuHhwZ6s6jPGbDo1CI1BDm2H f5hcIaQzfyXQSXviWNnpUgW4Syg/sIvHY7M3rXCFV9I5F8iP8y5GS4i5aRHqOGJE bZwHPqe1ssQqnS76R4GDmVf/yebKhgMk -----END CERTIFICATE-----Generated at Sun Jun 15 08:34:07 2025 by rpki-client