$ rpki-client -vvf rpki.apnic.net/member_repository/A916D6C1/DB7044E27A2611EFAF07B655C4F9AE02/JthkXujuOl0esdLfl5uFSbh2Hio.mft File: JthkXujuOl0esdLfl5uFSbh2Hio.mft (raw, json) Hash identifier: 1WEDiuKk8ffAUdTHtP8LcHLIo0L57dAQKBGNmNn3CCg= Subject key identifier: 88:46:89:06:77:F0:C9:09:36:CE:45:AA:5D:EB:D7:04:5E:0F:D4:8A Authority key identifier: 26:D8:64:5E:E8:EE:3A:5D:1E:B1:D2:DF:97:9B:85:49:B8:76:1E:2A Certificate issuer: /CN=A916D6C1/serialNumber=26D8645EE8EE3A5D1EB1D2DF979B8549B8761E2A Certificate serial: 88 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/JthkXujuOl0esdLfl5uFSbh2Hio.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916D6C1/DB7044E27A2611EFAF07B655C4F9AE02/JthkXujuOl0esdLfl5uFSbh2Hio.mft Manifest number: 85 Signing time: Sun 01 Jun 2025 06:20:15 +0000 Manifest this update: Sun 01 Jun 2025 06:20:15 +0000 Manifest next update: Sun 08 Jun 2025 06:20:14 +0000 Files and hashes: 1: JthkXujuOl0esdLfl5uFSbh2Hio.crl (hash: IEShEN/WM1LyDjw2kN+V9rVj4CuKv9Gv4so/b17doVA=) 2: B0D54166830311EFBF66FC21C4F9AE02.roa (hash: tZx4V13WdS1YqkwOo/f+c5fdIh0lni7XzhM0Rn3v6tw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916D6C1/DB7044E27A2611EFAF07B655C4F9AE02/JthkXujuOl0esdLfl5uFSbh2Hio.crl rsync://rpki.apnic.net/member_repository/A916D6C1/DB7044E27A2611EFAF07B655C4F9AE02/JthkXujuOl0esdLfl5uFSbh2Hio.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/JthkXujuOl0esdLfl5uFSbh2Hio.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Jun 2025 06:20:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 136 (0x88) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916D6C1, serialNumber=26D8645EE8EE3A5D1EB1D2DF979B8549B8761E2A Validity Not Before: Jun 1 06:20:15 2025 GMT Not After : Jun 8 06:20:14 2025 GMT Subject: CN=683bf11f-48de Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:d4:79:20:77:d0:62:a9:45:e5:a1:4b:91:b4: 6e:92:40:f6:82:c2:43:0c:96:03:7e:da:2b:85:7f: 1e:c2:38:74:65:dc:41:d2:3e:20:d0:48:3e:6d:aa: a5:e5:62:f0:8f:cd:a4:17:58:ad:91:69:da:7f:43: fd:12:2b:dd:81:9d:b0:67:eb:81:be:36:14:83:bc: ab:c2:32:64:d3:a7:87:f1:86:b3:57:ad:53:57:ec: b8:cc:74:c9:32:e7:f3:97:07:a5:68:b9:80:eb:62: e0:4e:31:09:7f:1e:d9:8b:8a:f0:70:60:2d:52:1e: 55:43:b0:63:fe:7c:54:a7:dd:4d:80:1c:b8:2a:b1: 8e:fa:49:4a:1a:2e:b8:98:7d:a6:d6:39:af:bd:d5: 8a:54:ec:fb:79:b2:d1:12:c4:ee:a0:b0:50:d0:fd: 9a:43:59:b9:e0:8d:51:4b:c9:c0:ec:40:c6:b3:e6: 1f:58:b4:b5:5e:47:a0:d6:66:3c:c0:d4:44:ca:cc: 71:0d:96:0f:9c:31:00:89:f4:06:64:ee:c1:c9:9b: 50:1e:28:ed:7c:3c:10:5e:a4:42:72:f4:fd:e9:d0: 1d:b2:86:82:a2:6d:49:31:17:4b:9c:6a:c0:5d:87: e4:5d:08:c6:22:58:f5:cd:3d:14:5c:1c:11:98:fe: 81:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 88:46:89:06:77:F0:C9:09:36:CE:45:AA:5D:EB:D7:04:5E:0F:D4:8A X509v3 Authority Key Identifier: keyid:26:D8:64:5E:E8:EE:3A:5D:1E:B1:D2:DF:97:9B:85:49:B8:76:1E:2A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916D6C1/DB7044E27A2611EFAF07B655C4F9AE02/JthkXujuOl0esdLfl5uFSbh2Hio.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/JthkXujuOl0esdLfl5uFSbh2Hio.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916D6C1/DB7044E27A2611EFAF07B655C4F9AE02/JthkXujuOl0esdLfl5uFSbh2Hio.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ac:ed:f7:64:3b:9a:16:db:a7:06:65:10:54:eb:bc:b5:99:b9: 98:3f:6f:76:38:dc:57:21:b5:8d:d9:fb:f6:a4:ff:1e:68:7d: b8:e5:1a:64:95:d7:8e:ee:0d:07:f6:99:21:8d:c9:c2:fc:74: 1e:a0:ac:5f:07:4f:07:de:de:a8:2b:b7:a2:f1:67:71:c0:36: 3d:65:63:0d:17:99:d6:cd:b5:77:c7:84:88:56:73:ba:b0:05: de:8e:27:7e:47:23:c0:75:4c:5a:5e:36:9c:51:16:7b:bf:54: 72:68:7a:de:77:18:c6:4f:77:f3:16:b9:12:cf:09:81:d0:8d: 9c:4b:8e:a4:3b:7a:f8:e4:17:59:5a:fa:0d:d5:58:46:f0:89: f3:e9:5e:57:af:a5:58:c6:93:46:5a:fc:17:25:09:31:89:da: 37:c7:d8:75:74:8e:4a:ff:1d:90:b2:d6:58:49:81:92:18:11: 0d:89:96:27:56:fc:02:4a:32:9e:2a:8c:a6:0c:4a:15:0b:46: 22:9b:e6:75:75:ac:a9:70:3e:31:31:a1:91:71:75:03:07:a4: cb:c9:b4:0b:3a:ee:0f:91:97:62:fb:fc:d8:a8:b5:2f:f1:90: 0f:a9:03:94:5a:53:2c:04:cb:c7:52:85:d0:12:87:2d:10:4a: c1:e8:c5:d3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAIgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkQ2QzExMTAvBgNVBAUTKDI2RDg2NDVFRThFRTNBNUQxRUIxRDJERjk3OUI4NTQ5 Qjg3NjFFMkEwHhcNMjUwNjAxMDYyMDE1WhcNMjUwNjA4MDYyMDE0WjAYMRYwFAYD VQQDEw02ODNiZjExZi00OGRlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApNR5IHfQYqlF5aFLkbRukkD2gsJDDJYDftorhX8ewjh0ZdxB0j4g0Eg+baql 5WLwj82kF1itkWnaf0P9EivdgZ2wZ+uBvjYUg7yrwjJk06eH8YazV61TV+y4zHTJ MufzlwelaLmA62LgTjEJfx7Zi4rwcGAtUh5VQ7Bj/nxUp91NgBy4KrGO+klKGi64 mH2m1jmvvdWKVOz7ebLREsTuoLBQ0P2aQ1m54I1RS8nA7EDGs+YfWLS1Xkeg1mY8 wNREysxxDZYPnDEAifQGZO7ByZtQHijtfDwQXqRCcvT96dAdsoaCom1JMRdLnGrA XYfkXQjGIlj1zT0UXBwRmP6BgwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIhGiQZ3 8MkJNs5Fql3r1wReD9SKMB8GA1UdIwQYMBaAFCbYZF7o7jpdHrHS35ebhUm4dh4q MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2RDZDMS9EQjcwNDRFMjdB MjYxMUVGQUYwN0I2NTVDNEY5QUUwMi9KdGhrWHVqdU9sMGVzZExmbDV1RlNiaDJI aW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0p0aGtYdWp1T2wwZXNkTGZsNXVGU2JoMkhpby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 RDZDMS9EQjcwNDRFMjdBMjYxMUVGQUYwN0I2NTVDNEY5QUUwMi9KdGhrWHVqdU9s MGVzZExmbDV1RlNiaDJIaW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCs7fdkO5oW26cGZRBU67y1mbmYP292ONxXIbWN2fv2pP8eaH245Rpk ldeO7g0H9pkhjcnC/HQeoKxfB08H3t6oK7ei8WdxwDY9ZWMNF5nWzbV3x4SIVnO6 sAXejid+RyPAdUxaXjacURZ7v1RyaHredxjGT3fzFrkSzwmB0I2cS46kO3r45BdZ WvoN1VhG8Inz6V5Xr6VYxpNGWvwXJQkxido3x9h1dI5K/x2QstZYSYGSGBENiZYn VvwCSjKeKoymDEoVC0Yim+Z1daypcD4xMaGRcXUDB6TLybQLOu4PkZdi+/zYqLUv 8ZAPqQOUWlMsBMvHUoXQEoctEErB6MXT -----END CERTIFICATE-----Generated at Mon Jun 2 19:30:35 2025 by rpki-client