$ rpki-client -vvf rpki.apnic.net/member_repository/A91A8B67/2FA00D3EC6AA11EF84FB0D0DC4F9AE02/1FnSZ1JSNKBTXsONjMyJkBlN4Yk.mft File: 1FnSZ1JSNKBTXsONjMyJkBlN4Yk.mft (raw, json) Hash identifier: vJ1R3a28mPZZ6A6/lv78wkIH8BVtaELx+GUYW9qN/9k= Subject key identifier: A0:6F:14:95:93:F8:BB:57:3B:17:42:17:31:AC:BA:ED:8C:00:00:72 Authority key identifier: D4:59:D2:67:52:52:34:A0:53:5E:C3:8D:8C:CC:89:90:19:4D:E1:89 Certificate issuer: /CN=A91A8B67/serialNumber=D459D267525234A0535EC38D8CCC8990194DE189 Certificate serial: 69 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1FnSZ1JSNKBTXsONjMyJkBlN4Yk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A8B67/2FA00D3EC6AA11EF84FB0D0DC4F9AE02/1FnSZ1JSNKBTXsONjMyJkBlN4Yk.mft Manifest number: 60 Signing time: Mon 09 Jun 2025 06:09:20 +0000 Manifest this update: Mon 09 Jun 2025 06:09:19 +0000 Manifest next update: Mon 16 Jun 2025 06:09:19 +0000 Files and hashes: 1: 1FnSZ1JSNKBTXsONjMyJkBlN4Yk.crl (hash: ZhTwnqJslNtS8CtrVBF88WUmY4BPUZWoSuE42lhdSxw=) 2: 1363F5E60E8E11F082304B42C4F9AE02.roa (hash: hu1JiBFiyTnMySrt80yNdScgCjSfSkHINTEYjzYfdUg=) 3: E90F04F4114711F0B6E44E12C4F9AE02.roa (hash: PlQx8+H4QWwRWOJyC7w29KW+ohdqt59u/vmKToMRgGo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A8B67/2FA00D3EC6AA11EF84FB0D0DC4F9AE02/1FnSZ1JSNKBTXsONjMyJkBlN4Yk.crl rsync://rpki.apnic.net/member_repository/A91A8B67/2FA00D3EC6AA11EF84FB0D0DC4F9AE02/1FnSZ1JSNKBTXsONjMyJkBlN4Yk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1FnSZ1JSNKBTXsONjMyJkBlN4Yk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 16 Jun 2025 06:09:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 105 (0x69) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A8B67, serialNumber=D459D267525234A0535EC38D8CCC8990194DE189 Validity Not Before: Jun 9 06:09:19 2025 GMT Not After : Jun 16 06:09:19 2025 GMT Subject: CN=68467a90-6938 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:c5:48:ed:5c:5d:86:e7:b6:3d:95:36:27:30: d1:04:04:47:66:77:7e:c2:e1:09:f6:ca:5a:2c:b4: 33:17:32:2a:c2:05:c9:6d:1c:a9:9a:45:bb:e5:03: cc:29:a6:3d:51:9e:6c:47:d7:96:31:dd:0d:1a:26: 23:69:95:a8:f0:f0:a4:1c:e7:14:ba:13:5b:f8:54: b5:13:28:42:5d:86:a4:a3:1d:28:f6:6b:fd:f8:d4: 11:ca:f7:24:ca:aa:57:0b:76:03:fd:c3:d3:6c:7b: 01:52:65:2c:b6:6a:cf:a7:21:13:c9:08:31:1c:2c: 22:c2:b8:70:96:d8:0c:84:d5:76:e2:b5:47:c3:91: 14:0f:f2:45:e3:24:ef:2b:c0:52:2f:12:b0:14:95: 63:b2:27:c5:ad:92:40:c7:8f:2b:6c:73:12:48:ef: 01:f7:32:ae:88:d9:63:9f:2e:7b:3d:e8:2f:1c:c1: fa:63:ac:5b:04:df:5d:2f:52:e3:32:93:9f:17:35: 02:98:da:25:59:8b:82:65:e0:71:c6:42:74:00:d7: 59:3b:17:fa:33:65:cb:79:b8:5e:56:69:30:66:bb: 25:70:e1:91:a7:13:af:f3:c2:63:1e:65:4c:c6:c3: 2f:74:98:7a:13:06:b1:0e:5d:01:c0:18:3d:f5:36: e3:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A0:6F:14:95:93:F8:BB:57:3B:17:42:17:31:AC:BA:ED:8C:00:00:72 X509v3 Authority Key Identifier: keyid:D4:59:D2:67:52:52:34:A0:53:5E:C3:8D:8C:CC:89:90:19:4D:E1:89 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A8B67/2FA00D3EC6AA11EF84FB0D0DC4F9AE02/1FnSZ1JSNKBTXsONjMyJkBlN4Yk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1FnSZ1JSNKBTXsONjMyJkBlN4Yk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A8B67/2FA00D3EC6AA11EF84FB0D0DC4F9AE02/1FnSZ1JSNKBTXsONjMyJkBlN4Yk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2c:5e:4f:4b:78:b0:a6:ea:8c:aa:de:7d:ce:ba:d8:82:7e:27: 1a:65:6d:ba:93:9e:da:fd:3f:09:08:ad:30:38:7b:5f:99:56: 20:3d:b0:92:6b:81:47:3c:a5:6e:6d:0d:bb:6a:14:94:2b:8a: bd:6f:12:9d:4c:49:f9:3c:6d:b4:e3:89:66:1a:f5:fa:bd:9f: d0:1a:90:64:b6:ef:40:33:e6:52:38:57:f8:bc:60:65:8a:87: 43:00:b2:4c:a7:85:4a:7d:2b:c2:c0:a3:6b:05:50:55:8c:95: 39:c0:8a:b8:e9:b5:43:84:d6:ad:9e:f6:50:6b:f8:24:1f:1c: 74:29:ed:07:8b:69:bf:76:84:17:2e:af:67:60:ab:dc:42:53: da:14:c7:03:60:88:0b:8d:ad:30:96:b0:16:42:d2:f6:4a:c3: fd:de:8b:56:de:dd:c1:60:6f:d7:e5:d6:30:db:5d:23:72:25: e3:c1:73:e4:cb:32:5b:51:8a:91:a5:2e:cc:a5:b9:7b:fc:fa: a1:f4:d1:73:37:ac:ec:3d:c6:87:b4:5a:70:68:7e:7a:f8:ac: c5:0f:ff:a7:c9:10:3d:01:2b:4c:97:b5:83:8e:ce:6a:2d:f4: 65:47:22:28:75:4f:d8:15:d8:3d:40:3b:51:ea:d4:c2:78:b0: 3a:fa:ba:7e -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBaTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFB OEI2NzExMC8GA1UEBRMoRDQ1OUQyNjc1MjUyMzRBMDUzNUVDMzhEOENDQzg5OTAx OTRERTE4OTAeFw0yNTA2MDkwNjA5MTlaFw0yNTA2MTYwNjA5MTlaMBgxFjAUBgNV BAMTDTY4NDY3YTkwLTY5MzgwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDCxUjtXF2G57Y9lTYnMNEEBEdmd37C4Qn2ylostDMXMirCBcltHKmaRbvlA8wp pj1RnmxH15Yx3Q0aJiNplajw8KQc5xS6E1v4VLUTKEJdhqSjHSj2a/341BHK9yTK qlcLdgP9w9NsewFSZSy2as+nIRPJCDEcLCLCuHCW2AyE1XbitUfDkRQP8kXjJO8r wFIvErAUlWOyJ8WtkkDHjytscxJI7wH3Mq6I2WOfLns96C8cwfpjrFsE310vUuMy k58XNQKY2iVZi4Jl4HHGQnQA11k7F/ozZct5uF5WaTBmuyVw4ZGnE6/zwmMeZUzG wy90mHoTBrEOXQHAGD31NuNRAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUoG8UlZP4 u1c7F0IXMay67YwAAHIwHwYDVR0jBBgwFoAU1FnSZ1JSNKBTXsONjMyJkBlN4Ykw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUE4QjY3LzJGQTAwRDNFQzZB QTExRUY4NEZCMEQwREM0RjlBRTAyLzFGblNaMUpTTktCVFhzT05qTXlKa0JsTjRZ ay5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvMUZuU1oxSlNOS0JUWHNPTmpNeUprQmxONFlrLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUE4 QjY3LzJGQTAwRDNFQzZBQTExRUY4NEZCMEQwREM0RjlBRTAyLzFGblNaMUpTTktC VFhzT05qTXlKa0JsTjRZay5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBACxeT0t4sKbqjKrefc662IJ+JxplbbqTntr9PwkIrTA4e1+ZViA9sJJr gUc8pW5tDbtqFJQrir1vEp1MSfk8bbTjiWYa9fq9n9AakGS270Az5lI4V/i8YGWK h0MAskynhUp9K8LAo2sFUFWMlTnAirjptUOE1q2e9lBr+CQfHHQp7QeLab92hBcu r2dgq9xCU9oUxwNgiAuNrTCWsBZC0vZKw/3ei1be3cFgb9fl1jDbXSNyJePBc+TL MltRipGlLsyluXv8+qH00XM3rOw9xoe0WnBofnr4rMUP/6fJED0BK0yXtYOOzmot 9GVHIih1T9gV2D1AO1Hq1MJ4sDr6un4= -----END CERTIFICATE-----Generated at Tue Jun 10 20:57:16 2025 by rpki-client