$ rpki-client -vvf rpki.apnic.net/member_repository/A91B428B/3A0B6C0C847711EAB3B43680C4F9AE02/D-jKZIcKPWORHI0tZRuinKztDso.mft File: D-jKZIcKPWORHI0tZRuinKztDso.mft (raw, json) Hash identifier: 22TIvOWS6udKA1pnUib+ef2rdq9xK88fC9RF7EKSR/A= Subject key identifier: 21:68:EC:C9:0A:D1:13:99:15:85:DF:8C:6C:58:18:37:66:45:9E:04 Authority key identifier: 0F:E8:CA:64:87:0A:3D:63:91:1C:8D:2D:65:1B:A2:9C:AC:ED:0E:CA Certificate issuer: /CN=A91B428B/serialNumber=0FE8CA64870A3D63911C8D2D651BA29CACED0ECA Certificate serial: 09C1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D-jKZIcKPWORHI0tZRuinKztDso.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B428B/3A0B6C0C847711EAB3B43680C4F9AE02/D-jKZIcKPWORHI0tZRuinKztDso.mft Manifest number: 09BA Signing time: Sun 08 Jun 2025 19:44:51 +0000 Manifest this update: Sun 08 Jun 2025 19:44:50 +0000 Manifest next update: Sun 15 Jun 2025 19:44:50 +0000 Files and hashes: 1: D-jKZIcKPWORHI0tZRuinKztDso.crl (hash: MjGpiXvDQPRZsRrHDL4uyeO4flsJTJInjwysXUb1wco=) 2: 319DF660847811EA8EE07E81C4F9AE02.roa (hash: ZlFR2HTwg3fDW4lClQanT4TaI4rdoCBr8+QBrXHDB9w=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B428B/3A0B6C0C847711EAB3B43680C4F9AE02/D-jKZIcKPWORHI0tZRuinKztDso.crl rsync://rpki.apnic.net/member_repository/A91B428B/3A0B6C0C847711EAB3B43680C4F9AE02/D-jKZIcKPWORHI0tZRuinKztDso.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D-jKZIcKPWORHI0tZRuinKztDso.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 15 Jun 2025 19:44:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2497 (0x9c1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B428B, serialNumber=0FE8CA64870A3D63911C8D2D651BA29CACED0ECA Validity Not Before: Jun 8 19:44:50 2025 GMT Not After : Jun 15 19:44:50 2025 GMT Subject: CN=6845e833-7b99 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:dd:77:7c:de:17:bb:0c:dd:e7:e5:43:32:ee: 46:4b:c4:61:04:9d:43:d3:bf:de:09:8a:5b:40:b3: dc:09:9c:8a:08:0f:7d:ce:38:2a:f9:dc:97:18:7d: d8:c9:b5:c2:43:ea:e2:bf:f1:2c:ed:32:86:0e:f7: b2:0a:77:0e:30:55:c9:5c:1e:17:3e:66:c1:a8:d0: e8:9c:b9:5a:35:aa:2e:9f:3b:c6:3f:d0:ec:ab:bf: 22:a6:00:7a:05:84:64:b6:52:ed:a1:09:61:e9:65: b5:b8:35:6f:a8:50:5f:4c:ad:ae:6c:a3:44:dc:cd: 12:65:69:33:63:c9:1d:3d:1f:70:db:08:71:1e:a4: 23:b3:5a:4d:78:60:92:52:68:bb:58:56:03:b4:a7: 6e:fc:70:ca:de:f4:50:d1:cb:c9:df:60:f4:bc:e4: 14:74:5a:20:46:cb:53:64:47:f1:10:1c:81:d1:e5: 59:98:2b:ab:9b:f6:a2:f1:7b:9d:e9:95:90:c5:7d: 00:8d:e2:a8:87:46:4c:99:ac:a5:a3:34:37:00:3c: b0:3d:2d:4c:f1:6e:dd:e5:5d:eb:32:83:03:14:66: d9:6f:53:b3:da:b9:c5:bf:3c:f0:38:8d:f5:d5:55: 38:af:cb:2f:a4:2c:65:7d:21:09:06:da:7d:2c:d0: fc:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 21:68:EC:C9:0A:D1:13:99:15:85:DF:8C:6C:58:18:37:66:45:9E:04 X509v3 Authority Key Identifier: keyid:0F:E8:CA:64:87:0A:3D:63:91:1C:8D:2D:65:1B:A2:9C:AC:ED:0E:CA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B428B/3A0B6C0C847711EAB3B43680C4F9AE02/D-jKZIcKPWORHI0tZRuinKztDso.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D-jKZIcKPWORHI0tZRuinKztDso.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B428B/3A0B6C0C847711EAB3B43680C4F9AE02/D-jKZIcKPWORHI0tZRuinKztDso.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 11:93:7e:5f:64:a6:48:1f:34:04:a3:8f:a6:42:34:af:3e:3a: 94:0c:82:91:b0:e5:71:83:2a:20:94:02:ef:51:d8:42:d4:e0: 58:53:7d:28:96:80:1a:10:33:4b:4c:f8:32:27:c7:d8:5d:51: c7:34:98:2b:1e:4d:59:96:b8:1c:1f:0b:58:18:e2:35:f5:64: c2:3c:b8:be:5a:27:4a:d9:6b:31:eb:ad:53:38:13:61:fd:9a: b9:a8:f7:e8:b7:85:08:83:3b:82:03:e4:aa:3a:90:65:e8:e1: a1:f1:95:83:bf:8f:02:81:f0:ab:1e:85:25:48:3d:99:e2:76: cf:83:3e:71:25:9b:a8:fc:3e:b0:94:a8:8b:cd:98:cd:fc:30: 15:f8:ea:25:b7:b3:b0:49:8b:5c:05:ff:0e:1e:9e:43:9b:46: 92:1a:95:a6:15:52:e1:b7:ca:45:c7:2f:34:9d:12:3e:ce:46: a1:8c:26:35:ab:05:46:e7:78:d4:2e:d8:4d:f8:d8:57:19:76: 0b:05:16:47:65:81:73:80:ba:68:38:ae:90:b0:6e:bc:2a:a0: 3f:39:48:70:6b:e4:60:5f:71:3f:cc:38:dd:30:f7:bb:da:29: e8:b2:42:b5:ec:65:e6:1e:3e:1b:92:27:0b:e6:78:03:ca:b2: 9d:f0:58:aa -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCcEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjQyOEIxMTAvBgNVBAUTKDBGRThDQTY0ODcwQTNENjM5MTFDOEQyRDY1MUJBMjlD QUNFRDBFQ0EwHhcNMjUwNjA4MTk0NDUwWhcNMjUwNjE1MTk0NDUwWjAYMRYwFAYD VQQDEw02ODQ1ZTgzMy03Yjk5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqt13fN4Xuwzd5+VDMu5GS8RhBJ1D07/eCYpbQLPcCZyKCA99zjgq+dyXGH3Y ybXCQ+riv/Es7TKGDveyCncOMFXJXB4XPmbBqNDonLlaNaounzvGP9Dsq78ipgB6 BYRktlLtoQlh6WW1uDVvqFBfTK2ubKNE3M0SZWkzY8kdPR9w2whxHqQjs1pNeGCS Umi7WFYDtKdu/HDK3vRQ0cvJ32D0vOQUdFogRstTZEfxEByB0eVZmCurm/ai8Xud 6ZWQxX0AjeKoh0ZMmaylozQ3ADywPS1M8W7d5V3rMoMDFGbZb1Oz2rnFvzzwOI31 1VU4r8svpCxlfSEJBtp9LND8cQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCFo7MkK 0ROZFYXfjGxYGDdmRZ4EMB8GA1UdIwQYMBaAFA/oymSHCj1jkRyNLWUbopys7Q7K MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNDI4Qi8zQTBCNkMwQzg0 NzcxMUVBQjNCNDM2ODBDNEY5QUUwMi9ELWpLWkljS1BXT1JISTB0WlJ1aW5LenRE c28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0QtaktaSWNLUFdPUkhJMHRaUnVpbkt6dERzby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NDI4Qi8zQTBCNkMwQzg0NzcxMUVBQjNCNDM2ODBDNEY5QUUwMi9ELWpLWkljS1BX T1JISTB0WlJ1aW5LenREc28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQARk35fZKZIHzQEo4+mQjSvPjqUDIKRsOVxgyoglALvUdhC1OBYU30o loAaEDNLTPgyJ8fYXVHHNJgrHk1ZlrgcHwtYGOI19WTCPLi+WidK2Wsx661TOBNh /Zq5qPfot4UIgzuCA+SqOpBl6OGh8ZWDv48CgfCrHoUlSD2Z4nbPgz5xJZuo/D6w lKiLzZjN/DAV+Oolt7OwSYtcBf8OHp5Dm0aSGpWmFVLht8pFxy80nRI+zkahjCY1 qwVG53jULthN+NhXGXYLBRZHZYFzgLpoOK6QsG68KqA/OUhwa+RgX3E/zDjdMPe7 2inoskK17GXmHj4bkicL5ngDyrKd8Fiq -----END CERTIFICATE-----Generated at Mon Jun 9 20:14:15 2025 by rpki-client