$ rpki-client -vvf rpki.apnic.net/member_repository/A91706E4/3ABA80AAA68411EF8F5ED37FC4F9AE02/b35Y0Iljiffn_k6HlapVXVxVUYg.mft File: b35Y0Iljiffn_k6HlapVXVxVUYg.mft (raw, json) Hash identifier: YhEGpf7EpKYXFiNxmTwHtrndHL9/KBUvtG+WEzJcUyo= Subject key identifier: 63:95:C8:B9:4D:6E:6A:2E:F2:DB:B6:45:FD:2B:71:BB:EB:BF:61:68 Authority key identifier: 6F:7E:58:D0:89:63:89:F7:E7:FE:4E:87:95:AA:55:5D:5C:55:51:88 Certificate issuer: /CN=A91706E4/serialNumber=6F7E58D0896389F7E7FE4E8795AA555D5C555188 Certificate serial: 68 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b35Y0Iljiffn_k6HlapVXVxVUYg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91706E4/3ABA80AAA68411EF8F5ED37FC4F9AE02/b35Y0Iljiffn_k6HlapVXVxVUYg.mft Manifest number: 67 Signing time: Thu 05 Jun 2025 06:22:47 +0000 Manifest this update: Thu 05 Jun 2025 06:22:47 +0000 Manifest next update: Thu 12 Jun 2025 06:22:47 +0000 Files and hashes: 1: b35Y0Iljiffn_k6HlapVXVxVUYg.crl (hash: QppL3BXj77n9MvNzre9fKgsgRzPY28YX5ac4tQcvto8=) 2: 31E9AEC6E30411EFBC0C3B2CC4F9AE02.roa (hash: iUCXkP/k8vFDK+xe4w0gGSkxJOnd/FNj32EaA1KJbt4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91706E4/3ABA80AAA68411EF8F5ED37FC4F9AE02/b35Y0Iljiffn_k6HlapVXVxVUYg.crl rsync://rpki.apnic.net/member_repository/A91706E4/3ABA80AAA68411EF8F5ED37FC4F9AE02/b35Y0Iljiffn_k6HlapVXVxVUYg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b35Y0Iljiffn_k6HlapVXVxVUYg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 12 Jun 2025 06:22:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 104 (0x68) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91706E4, serialNumber=6F7E58D0896389F7E7FE4E8795AA555D5C555188 Validity Not Before: Jun 5 06:22:47 2025 GMT Not After : Jun 12 06:22:47 2025 GMT Subject: CN=684137b7-0a99 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:de:0e:bc:dc:a6:d8:f7:ca:0c:f2:ef:56:28: 49:92:95:cc:2e:9a:97:6b:d2:b1:c9:b6:5d:b6:ad: 21:d7:00:72:f2:27:13:5a:c7:30:ee:af:ed:8e:0d: 49:68:82:df:52:a2:0e:fe:c4:1d:a2:55:f7:84:a2: bc:33:2c:1c:6c:30:c0:88:da:89:f9:8b:07:43:8e: 10:5f:cd:52:e7:1d:a9:62:44:cf:ef:bd:8d:6e:fb: ea:25:3a:f1:f3:9b:3c:ed:56:62:59:83:b6:19:f7: 19:58:4f:8c:d4:46:60:08:06:e5:db:dc:73:b0:95: a9:cc:8a:49:bf:0a:0d:82:e6:3f:2e:75:73:3a:c8: 1b:2d:53:ce:b9:ce:61:e0:5d:be:91:32:0f:1d:5b: 02:73:c8:b0:c0:88:92:11:c5:e0:6c:82:43:0b:85: 5e:81:0f:ff:6d:79:3f:f3:b2:8f:ad:90:7b:5a:d7: e7:91:35:55:c2:05:d8:6c:0d:b0:46:7b:13:f5:d2: 58:66:eb:2c:9b:77:3b:cd:fc:29:c2:0b:0d:1a:26: ce:8f:5d:6e:24:49:19:7d:e7:a8:77:27:2a:b7:0b: 09:9d:e3:b8:6b:4f:09:cb:b7:e4:ca:3f:ec:f1:57: ed:24:46:a8:7d:54:86:30:a3:9a:82:7f:ea:15:f2: 14:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 63:95:C8:B9:4D:6E:6A:2E:F2:DB:B6:45:FD:2B:71:BB:EB:BF:61:68 X509v3 Authority Key Identifier: keyid:6F:7E:58:D0:89:63:89:F7:E7:FE:4E:87:95:AA:55:5D:5C:55:51:88 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91706E4/3ABA80AAA68411EF8F5ED37FC4F9AE02/b35Y0Iljiffn_k6HlapVXVxVUYg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b35Y0Iljiffn_k6HlapVXVxVUYg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91706E4/3ABA80AAA68411EF8F5ED37FC4F9AE02/b35Y0Iljiffn_k6HlapVXVxVUYg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4f:de:0f:c8:ae:3a:43:f5:e6:43:64:fc:c5:4b:37:66:9b:9c: 91:e3:65:60:5b:81:48:27:89:9c:d6:3c:fc:10:4b:43:bc:d8: 97:bb:11:64:fb:5d:2d:20:3f:de:86:5e:51:b2:00:61:db:3e: 1e:3b:20:74:e4:b8:7e:5e:42:6d:9c:99:f4:56:a2:14:08:21: b4:26:94:1c:1a:86:fb:93:eb:6b:43:d9:c2:02:59:87:6a:c7: 2c:40:98:26:d6:f1:0c:47:93:9e:f3:28:21:36:71:51:76:27: 6d:97:28:16:6d:f3:c1:f8:a7:d2:aa:ad:85:0f:5e:e8:ec:df: 69:85:76:13:c5:76:ac:5e:e5:47:90:f4:81:1b:d6:6c:06:f0: 4e:00:77:41:b0:45:c1:79:02:67:f2:b3:b3:d7:b5:50:23:b8: ca:41:a2:b7:45:4a:39:34:94:d0:74:a5:40:0a:8c:bb:f5:48: 27:ac:2f:d5:99:ed:07:93:3c:1b:6d:da:aa:d1:eb:31:91:77: f9:4f:d1:f6:ca:49:02:e4:1e:da:f2:ba:91:73:fb:f6:32:78: 55:6e:d5:8c:f4:1b:d6:02:f0:4d:05:76:33:e5:19:69:20:fc: 8a:aa:fe:d0:3d:31:89:4a:00:ba:b5:b7:ec:dc:15:c6:a6:ba: ee:a3:5f:88 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBaDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 MDZFNDExMC8GA1UEBRMoNkY3RTU4RDA4OTYzODlGN0U3RkU0RTg3OTVBQTU1NUQ1 QzU1NTE4ODAeFw0yNTA2MDUwNjIyNDdaFw0yNTA2MTIwNjIyNDdaMBgxFjAUBgNV BAMTDTY4NDEzN2I3LTBhOTkwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDU3g683KbY98oM8u9WKEmSlcwumpdr0rHJtl22rSHXAHLyJxNaxzDur+2ODUlo gt9Sog7+xB2iVfeEorwzLBxsMMCI2on5iwdDjhBfzVLnHaliRM/vvY1u++olOvHz mzztVmJZg7YZ9xlYT4zURmAIBuXb3HOwlanMikm/Cg2C5j8udXM6yBstU865zmHg Xb6RMg8dWwJzyLDAiJIRxeBsgkMLhV6BD/9teT/zso+tkHta1+eRNVXCBdhsDbBG exP10lhm6yybdzvN/CnCCw0aJs6PXW4kSRl956h3Jyq3Cwmd47hrTwnLt+TKP+zx V+0kRqh9VIYwo5qCf+oV8hRbAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUY5XIuU1u ai7y27ZF/Stxu+u/YWgwHwYDVR0jBBgwFoAUb35Y0Iljiffn/k6HlapVXVxVUYgw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTcwNkU0LzNBQkE4MEFBQTY4 NDExRUY4RjVFRDM3RkM0RjlBRTAyL2IzNVkwSWxqaWZmbl9rNkhsYXBWWFZ4VlVZ Zy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvYjM1WTBJbGppZmZuX2s2SGxhcFZYVnhWVVlnLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTcw NkU0LzNBQkE4MEFBQTY4NDExRUY4RjVFRDM3RkM0RjlBRTAyL2IzNVkwSWxqaWZm bl9rNkhsYXBWWFZ4VlVZZy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAE/eD8iuOkP15kNk/MVLN2abnJHjZWBbgUgniZzWPPwQS0O82Je7EWT7 XS0gP96GXlGyAGHbPh47IHTkuH5eQm2cmfRWohQIIbQmlBwahvuT62tD2cICWYdq xyxAmCbW8QxHk57zKCE2cVF2J22XKBZt88H4p9KqrYUPXujs32mFdhPFdqxe5UeQ 9IEb1mwG8E4Ad0GwRcF5Amfys7PXtVAjuMpBordFSjk0lNB0pUAKjLv1SCesL9WZ 7QeTPBtt2qrR6zGRd/lP0fbKSQLkHtryupFz+/YyeFVu1Yz0G9YC8E0FdjPlGWkg /Iqq/tA9MYlKALq1t+zcFcamuu6jX4g= -----END CERTIFICATE-----Generated at Fri Jun 6 17:22:09 2025 by rpki-client