$ rpki-client -vvf rpki.apnic.net/member_repository/A91262CA/EC1EE6528A5711EC96EBC014C4F9AE02/1j3oKnWfllf48HOyUSUarme6S6Y.mft File: 1j3oKnWfllf48HOyUSUarme6S6Y.mft (raw, json) Hash identifier: vZN1T7GhbNC+8dgq9KM+TX/5U9bnTtsy6sr/qXGGipE= Subject key identifier: 15:9E:EF:73:5E:66:B4:7E:BE:6B:6D:DF:AD:33:D6:14:5D:99:B7:C2 Authority key identifier: D6:3D:E8:2A:75:9F:96:57:F8:F0:73:B2:51:25:1A:AE:67:BA:4B:A6 Certificate issuer: /CN=A91262CA/serialNumber=D63DE82A759F9657F8F073B251251AAE67BA4BA6 Certificate serial: 0457 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/1j3oKnWfllf48HOyUSUarme6S6Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91262CA/EC1EE6528A5711EC96EBC014C4F9AE02/1j3oKnWfllf48HOyUSUarme6S6Y.mft Manifest number: 0402 Signing time: Sun 01 Jun 2025 00:50:59 +0000 Manifest this update: Sun 01 Jun 2025 00:50:59 +0000 Manifest next update: Sun 08 Jun 2025 00:50:58 +0000 Files and hashes: 1: 1j3oKnWfllf48HOyUSUarme6S6Y.crl (hash: 6CDj+0TF6jl7+TmoHTxeRjgJHJh7Clfb2503otdXUcA=) 2: ABE3468CBB5611EE936F4785C4F9AE02.roa (hash: 85cGKhcFvfLsa3fKkS4OSkRQ0VqdCtjeFSWGED/065w=) 3: A15115E6DF3E11EC83CCFE1EC4F9AE02.roa (hash: AFhkaTS9H9SYq32LCGLZ0ybHnkII09gZHj0VVB5f314=) 4: 9FEE9516DF3E11EC83CCFE1EC4F9AE02.roa (hash: cotJkdbyDdnoqnW03wwLgBND9x/lhPuMs/gJ3BCR7lI=) 5: A09F8E52DF3E11EC83CCFE1EC4F9AE02.roa (hash: 1tRgJ3aPzibyR+z50Gw9nZnYt8M73G+bJYsVfkg2zT8=) 6: F563D916248D11EF93237035C4F9AE02.roa (hash: B9+ujxo3UgWLMG+B0g5KGVMUgAJmIzvebILB++raaNc=) 7: 9DEFF2FADF3E11EC83CCFE1EC4F9AE02.roa (hash: K8HM6DIcOQOpn7mr5HRxJGQ+LZPGnSM+a9C5ehvgnkk=) 8: 86C8EBA2B12A11EF985A2D32C4F9AE02.roa (hash: 7nV+jajMliwqjNqYG+S6G7SOAx0aeStohPloUPjdM80=) 9: 9F598EEEDF3E11EC83CCFE1EC4F9AE02.roa (hash: ML8bUrH07kWDsJzW00Kjv/Bk94cyav3h3f9sQ1/S5a0=) 10: 9D13F282DF3E11EC83CCFE1EC4F9AE02.roa (hash: 4TUF4fCsd6U4sl8CKjbb5lEPYX8IdLYlZccOBdKP5o0=) 11: 56EC4CB4927911EFABEC2D46C4F9AE02.roa (hash: 5jFOXz91ZZ50fpVnfRxRJl436xHddATVpaygKT2CLho=) 12: A1FED136DF3E11EC83CCFE1EC4F9AE02.roa (hash: gOJa8cYlazWQ7UQ+EjuycM05p/sMIN86mUAHCGBMKow=) 13: 05163DEADD8711EC9BF56E5BC4F9AE02.roa (hash: zGN2nOJQWd9Hxkuu+Xvwm7K9HCh0xLUXhnRjE+idexs=) 14: 9EB0F9FADF3E11EC83CCFE1EC4F9AE02.roa (hash: BczitAlbCQvjk6wnUERPJgdefO0W2XIU7kagZ/uo8Uo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91262CA/EC1EE6528A5711EC96EBC014C4F9AE02/1j3oKnWfllf48HOyUSUarme6S6Y.crl rsync://rpki.apnic.net/member_repository/A91262CA/EC1EE6528A5711EC96EBC014C4F9AE02/1j3oKnWfllf48HOyUSUarme6S6Y.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/1j3oKnWfllf48HOyUSUarme6S6Y.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Jun 2025 00:50:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1111 (0x457) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91262CA, serialNumber=D63DE82A759F9657F8F073B251251AAE67BA4BA6 Validity Not Before: Jun 1 00:50:59 2025 GMT Not After : Jun 8 00:50:58 2025 GMT Subject: CN=683ba3f3-b9ce Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:f4:38:8a:46:94:ed:00:42:b3:eb:32:5e:3b: 24:fa:0a:5d:1e:14:e9:6b:73:c8:56:13:cf:5b:87: f9:c3:06:a6:c8:d9:27:fb:15:e9:48:95:7d:54:e9: 7c:e9:67:db:71:fb:af:6c:c7:7d:73:f5:62:81:08: 1a:01:b0:99:eb:35:ff:4c:57:c3:ad:0f:7f:06:b5: 69:4d:ae:08:69:85:6a:ae:f2:f5:de:eb:02:e2:15: 6f:03:98:87:48:d0:83:6f:47:a3:96:59:c5:29:08: 56:b0:f4:a6:0e:28:d4:5e:30:54:9b:9b:93:7e:a9: 8f:bd:c0:ab:7c:8c:d5:5f:cc:42:ff:c9:c8:43:1b: c3:7b:eb:b8:e2:b9:68:49:71:01:78:f3:e2:79:08: 13:74:a5:d2:80:01:c6:bd:10:7a:0c:17:c0:24:3e: d8:93:05:82:e4:d2:ea:38:b9:d7:ac:31:4b:60:63: ff:e6:30:03:dc:1c:06:46:17:5f:36:36:81:a6:9e: 45:9a:a1:57:99:02:76:ba:a4:5e:b6:3f:f7:46:73: 9a:5c:9f:f9:e3:49:a3:1a:15:52:89:50:5a:4f:55: a8:f2:d9:e6:7b:fd:19:36:c2:b9:e4:6e:65:73:0c: 1c:0b:97:4e:13:f3:1c:91:d7:6b:93:6f:bb:2c:57: 83:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 15:9E:EF:73:5E:66:B4:7E:BE:6B:6D:DF:AD:33:D6:14:5D:99:B7:C2 X509v3 Authority Key Identifier: keyid:D6:3D:E8:2A:75:9F:96:57:F8:F0:73:B2:51:25:1A:AE:67:BA:4B:A6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91262CA/EC1EE6528A5711EC96EBC014C4F9AE02/1j3oKnWfllf48HOyUSUarme6S6Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/1j3oKnWfllf48HOyUSUarme6S6Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91262CA/EC1EE6528A5711EC96EBC014C4F9AE02/1j3oKnWfllf48HOyUSUarme6S6Y.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a4:62:76:7b:7f:f8:51:2e:f8:be:31:f8:f0:ad:ef:2f:51:6b: e8:ac:3f:ec:04:0d:ee:d0:3f:e9:a2:68:89:fd:bb:8d:d0:1a: 58:18:f4:11:85:d7:2e:4c:47:b1:5f:a3:70:9b:1e:61:f9:e6: 5f:e0:19:53:0a:4b:15:02:46:4c:79:dc:51:a1:fb:39:2e:35: b3:01:4f:24:9f:43:6e:af:c3:63:ca:e2:99:49:50:18:3a:4b: 36:7d:69:ca:4f:a1:59:4f:79:1f:c2:b8:97:dc:b7:ed:77:1b: 19:27:97:65:6b:40:d6:41:2b:b5:12:68:de:3f:97:fe:d9:95: e8:02:3b:2b:ac:f1:c0:0a:c4:9c:7a:44:ce:eb:39:60:86:2c: 6f:b3:16:e3:45:63:d0:4b:93:a8:c5:c1:ad:94:6a:11:f6:37: 80:3c:78:44:8a:aa:44:5b:42:7a:59:a2:67:00:f8:53:f0:7f: 0d:54:01:6f:85:cc:6c:c3:f2:5b:f4:17:bd:40:f0:cb:d6:70: d5:c5:02:8e:de:7e:0d:7e:0c:53:5d:2a:14:e2:ff:f8:24:44: 7d:e4:2d:45:9a:ba:7c:86:ff:b0:d5:c8:52:df:a2:1a:c3:e6: 42:b9:28:8d:a1:05:9e:26:d2:b3:21:85:23:b0:43:b5:b6:32: b9:0a:94:2f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBFcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjYyQ0ExMTAvBgNVBAUTKEQ2M0RFODJBNzU5Rjk2NTdGOEYwNzNCMjUxMjUxQUFF NjdCQTRCQTYwHhcNMjUwNjAxMDA1MDU5WhcNMjUwNjA4MDA1MDU4WjAYMRYwFAYD VQQDEw02ODNiYTNmMy1iOWNlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAz/Q4ikaU7QBCs+syXjsk+gpdHhTpa3PIVhPPW4f5wwamyNkn+xXpSJV9VOl8 6WfbcfuvbMd9c/VigQgaAbCZ6zX/TFfDrQ9/BrVpTa4IaYVqrvL13usC4hVvA5iH SNCDb0ejllnFKQhWsPSmDijUXjBUm5uTfqmPvcCrfIzVX8xC/8nIQxvDe+u44rlo SXEBePPieQgTdKXSgAHGvRB6DBfAJD7YkwWC5NLqOLnXrDFLYGP/5jAD3BwGRhdf NjaBpp5FmqFXmQJ2uqRetj/3RnOaXJ/540mjGhVSiVBaT1Wo8tnme/0ZNsK55G5l cwwcC5dOE/Mckddrk2+7LFeDkwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBWe73Ne ZrR+vmtt360z1hRdmbfCMB8GA1UdIwQYMBaAFNY96Cp1n5ZX+PBzslElGq5nukum MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNjJDQS9FQzFFRTY1MjhB NTcxMUVDOTZFQkMwMTRDNEY5QUUwMi8xajNvS25XZmxsZjQ4SE95VVNVYXJtZTZT NlkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzFqM29LbldmbGxmNDhIT3lVU1Vhcm1lNlM2WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy NjJDQS9FQzFFRTY1MjhBNTcxMUVDOTZFQkMwMTRDNEY5QUUwMi8xajNvS25XZmxs ZjQ4SE95VVNVYXJtZTZTNlkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCkYnZ7f/hRLvi+Mfjwre8vUWvorD/sBA3u0D/pomiJ/buN0BpYGPQR hdcuTEexX6Nwmx5h+eZf4BlTCksVAkZMedxRofs5LjWzAU8kn0Nur8NjyuKZSVAY Oks2fWnKT6FZT3kfwriX3LftdxsZJ5dla0DWQSu1EmjeP5f+2ZXoAjsrrPHACsSc ekTO6zlghixvsxbjRWPQS5OoxcGtlGoR9jeAPHhEiqpEW0J6WaJnAPhT8H8NVAFv hcxsw/Jb9Be9QPDL1nDVxQKO3n4NfgxTXSoU4v/4JER95C1Fmrp8hv+w1chS36Ia w+ZCuSiNoQWeJtKzIYUjsEO1tjK5CpQv -----END CERTIFICATE-----Generated at Mon Jun 2 20:37:44 2025 by rpki-client