$ rpki-client -vvf rpki.apnic.net/member_repository/A91A8B67/2FA00D3EC6AA11EF84FB0D0DC4F9AE02/1FnSZ1JSNKBTXsONjMyJkBlN4Yk.mft File: 1FnSZ1JSNKBTXsONjMyJkBlN4Yk.mft (raw, json) Hash identifier: kD1EISnYD9BPTtKkIFzxCRmuKewFw2dyY52Glvvcdl0= Subject key identifier: 22:41:5A:C6:07:74:0F:20:81:8B:12:FB:C2:9B:D7:BB:36:76:37:BE Authority key identifier: D4:59:D2:67:52:52:34:A0:53:5E:C3:8D:8C:CC:89:90:19:4D:E1:89 Certificate issuer: /CN=A91A8B67/serialNumber=D459D267525234A0535EC38D8CCC8990194DE189 Certificate serial: 6A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1FnSZ1JSNKBTXsONjMyJkBlN4Yk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A8B67/2FA00D3EC6AA11EF84FB0D0DC4F9AE02/1FnSZ1JSNKBTXsONjMyJkBlN4Yk.mft Manifest number: 61 Signing time: Wed 11 Jun 2025 06:34:19 +0000 Manifest this update: Wed 11 Jun 2025 06:34:19 +0000 Manifest next update: Wed 18 Jun 2025 06:34:19 +0000 Files and hashes: 1: 1FnSZ1JSNKBTXsONjMyJkBlN4Yk.crl (hash: 5ju59OEkQooGiHQic//noUApYvVhdGE98yEvOaWbybI=) 2: 1363F5E60E8E11F082304B42C4F9AE02.roa (hash: hu1JiBFiyTnMySrt80yNdScgCjSfSkHINTEYjzYfdUg=) 3: E90F04F4114711F0B6E44E12C4F9AE02.roa (hash: PlQx8+H4QWwRWOJyC7w29KW+ohdqt59u/vmKToMRgGo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A8B67/2FA00D3EC6AA11EF84FB0D0DC4F9AE02/1FnSZ1JSNKBTXsONjMyJkBlN4Yk.crl rsync://rpki.apnic.net/member_repository/A91A8B67/2FA00D3EC6AA11EF84FB0D0DC4F9AE02/1FnSZ1JSNKBTXsONjMyJkBlN4Yk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1FnSZ1JSNKBTXsONjMyJkBlN4Yk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 18 Jun 2025 06:34:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 106 (0x6a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A8B67, serialNumber=D459D267525234A0535EC38D8CCC8990194DE189 Validity Not Before: Jun 11 06:34:19 2025 GMT Not After : Jun 18 06:34:19 2025 GMT Subject: CN=6849236b-cf18 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:2a:b4:35:c5:aa:72:a8:33:64:9c:53:0a:37: 5b:87:fd:c4:38:3f:db:4f:a9:eb:06:ca:4a:72:91: 63:8e:a0:07:d0:ef:b7:38:22:01:80:b0:c3:d7:8f: d9:3f:51:3e:6f:e7:4d:b9:02:b0:be:ed:e7:ac:01: 39:fa:ea:31:a4:60:49:e3:eb:76:9a:82:69:f1:88: 95:55:24:10:3b:b1:6e:2d:60:8f:f4:d3:84:bb:3a: da:df:e2:b9:f0:79:c2:10:9c:81:42:78:b7:c2:cc: ea:a1:23:53:c7:db:61:6a:9c:40:0b:00:5d:0b:45: ef:43:33:8d:2e:d0:eb:54:12:41:95:a3:d2:c6:6e: d8:01:27:e4:7d:98:cc:46:cc:66:09:fe:e2:74:83: 9c:aa:af:a3:b1:dd:c1:37:51:33:b5:4b:62:fa:6e: ec:e3:5f:6a:42:73:b2:54:9a:16:2c:56:57:4f:f7: 7c:db:92:95:a4:78:57:da:f6:09:a1:2e:4a:c9:80: a0:07:56:c5:9b:d4:1a:89:88:34:a9:f4:cb:4c:b2: d4:ac:c3:35:34:27:6a:bd:7a:11:ea:2f:bc:60:f4: 45:f0:a8:43:95:08:19:1c:38:ba:80:03:29:ae:6a: cc:67:0a:fe:bd:a8:4a:b1:c1:4e:ff:64:6d:c4:2e: 74:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 22:41:5A:C6:07:74:0F:20:81:8B:12:FB:C2:9B:D7:BB:36:76:37:BE X509v3 Authority Key Identifier: keyid:D4:59:D2:67:52:52:34:A0:53:5E:C3:8D:8C:CC:89:90:19:4D:E1:89 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A8B67/2FA00D3EC6AA11EF84FB0D0DC4F9AE02/1FnSZ1JSNKBTXsONjMyJkBlN4Yk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1FnSZ1JSNKBTXsONjMyJkBlN4Yk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A8B67/2FA00D3EC6AA11EF84FB0D0DC4F9AE02/1FnSZ1JSNKBTXsONjMyJkBlN4Yk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 07:cb:f1:5d:ec:13:a8:89:a8:a5:85:ab:15:fa:1b:bb:85:69: f0:b2:a7:e3:4b:dc:08:ca:69:6d:33:0c:21:9e:f0:74:9f:23: 1d:e8:f2:c4:26:3b:47:12:62:ba:fd:50:cb:74:8c:8d:bb:5b: 0d:30:a2:d2:f1:25:1d:8a:be:8a:75:cd:4f:09:e7:0e:20:67: 95:06:b1:cb:dc:37:3e:96:f7:5f:38:85:d2:fd:20:7d:67:98: 25:c3:e1:6e:83:b0:5d:e9:ea:77:a6:e3:41:62:9a:7b:a6:37: cc:01:c8:ed:e6:93:2f:19:11:e7:55:ff:d7:f6:92:4b:d7:12: 3c:a9:90:1f:c9:8b:d9:19:77:c7:04:07:07:15:a8:9b:ff:01: 41:42:87:84:63:61:75:1f:7d:6c:1f:b0:0c:39:65:f1:ff:d6: e3:3c:05:9f:ab:68:93:89:92:5a:7b:fa:35:4e:5e:5f:76:79: 55:b3:ec:00:f4:b2:95:cc:03:72:01:f0:50:ce:b1:9b:c6:27: 05:23:d9:1b:6c:77:87:fe:ff:ca:f6:b0:4d:5f:08:b9:83:23: 78:c0:37:cf:71:c9:1f:08:fe:53:dd:24:25:a5:6f:fc:32:7b: 86:4e:70:25:c8:82:de:4d:fb:ec:b0:c0:30:6b:c9:a9:1f:dc: 86:8e:47:da -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBajANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFB OEI2NzExMC8GA1UEBRMoRDQ1OUQyNjc1MjUyMzRBMDUzNUVDMzhEOENDQzg5OTAx OTRERTE4OTAeFw0yNTA2MTEwNjM0MTlaFw0yNTA2MTgwNjM0MTlaMBgxFjAUBgNV BAMTDTY4NDkyMzZiLWNmMTgwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDXKrQ1xapyqDNknFMKN1uH/cQ4P9tPqesGykpykWOOoAfQ77c4IgGAsMPXj9k/ UT5v5025ArC+7eesATn66jGkYEnj63aagmnxiJVVJBA7sW4tYI/004S7Otrf4rnw ecIQnIFCeLfCzOqhI1PH22FqnEALAF0LRe9DM40u0OtUEkGVo9LGbtgBJ+R9mMxG zGYJ/uJ0g5yqr6Ox3cE3UTO1S2L6buzjX2pCc7JUmhYsVldP93zbkpWkeFfa9gmh LkrJgKAHVsWb1BqJiDSp9MtMstSswzU0J2q9ehHqL7xg9EXwqEOVCBkcOLqAAymu asxnCv69qEqxwU7/ZG3ELnQjAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUIkFaxgd0 DyCBixL7wpvXuzZ2N74wHwYDVR0jBBgwFoAU1FnSZ1JSNKBTXsONjMyJkBlN4Ykw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUE4QjY3LzJGQTAwRDNFQzZB QTExRUY4NEZCMEQwREM0RjlBRTAyLzFGblNaMUpTTktCVFhzT05qTXlKa0JsTjRZ ay5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvMUZuU1oxSlNOS0JUWHNPTmpNeUprQmxONFlrLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUE4 QjY3LzJGQTAwRDNFQzZBQTExRUY4NEZCMEQwREM0RjlBRTAyLzFGblNaMUpTTktC VFhzT05qTXlKa0JsTjRZay5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAAfL8V3sE6iJqKWFqxX6G7uFafCyp+NL3AjKaW0zDCGe8HSfIx3o8sQm O0cSYrr9UMt0jI27Ww0wotLxJR2Kvop1zU8J5w4gZ5UGscvcNz6W9184hdL9IH1n mCXD4W6DsF3p6nem40FimnumN8wByO3mky8ZEedV/9f2kkvXEjypkB/Ji9kZd8cE BwcVqJv/AUFCh4RjYXUffWwfsAw5ZfH/1uM8BZ+raJOJklp7+jVOXl92eVWz7AD0 spXMA3IB8FDOsZvGJwUj2Rtsd4f+/8r2sE1fCLmDI3jAN89xyR8I/lPdJCWlb/wy e4ZOcCXIgt5N++ywwDBryakf3IaOR9o= -----END CERTIFICATE-----Generated at Thu Jun 12 11:33:24 2025 by rpki-client