$ rpki-client -vvf rpki.apnic.net/member_repository/A91C3A74/753D71EE3AB511E7B8609F1CC4F9AE02/jhH8tOi9Y9J7hOstUmcMoXT5xDw.mft File: jhH8tOi9Y9J7hOstUmcMoXT5xDw.mft (raw, json) Hash identifier: /ORrq+CjxzcAFtMhONuyK7fg/oQ9MKqI+LO1l/YAB1Y= Subject key identifier: 21:CA:2F:2D:59:94:0E:29:7E:53:03:58:EA:09:D3:E0:12:40:9F:7A Authority key identifier: 8E:11:FC:B4:E8:BD:63:D2:7B:84:EB:2D:52:67:0C:A1:74:F9:C4:3C Certificate issuer: /CN=A91C3A74/serialNumber=8E11FCB4E8BD63D27B84EB2D52670CA174F9C43C Certificate serial: 1A87 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/jhH8tOi9Y9J7hOstUmcMoXT5xDw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C3A74/753D71EE3AB511E7B8609F1CC4F9AE02/jhH8tOi9Y9J7hOstUmcMoXT5xDw.mft Manifest number: 1A80 Signing time: Wed 04 Jun 2025 15:45:30 +0000 Manifest this update: Wed 04 Jun 2025 15:45:30 +0000 Manifest next update: Wed 11 Jun 2025 15:45:30 +0000 Files and hashes: 1: jhH8tOi9Y9J7hOstUmcMoXT5xDw.crl (hash: bzypLYGh4BR5czu53YLbe5kF2Eqf0DCUr3NE+5SQHiQ=) 2: AFA37450139811EA807F1A26C4F9AE02.roa (hash: EvR5gfpmDfAVmSaNBVyf31LRk9wTqTU6OTSsCqxA5UQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C3A74/753D71EE3AB511E7B8609F1CC4F9AE02/jhH8tOi9Y9J7hOstUmcMoXT5xDw.crl rsync://rpki.apnic.net/member_repository/A91C3A74/753D71EE3AB511E7B8609F1CC4F9AE02/jhH8tOi9Y9J7hOstUmcMoXT5xDw.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/jhH8tOi9Y9J7hOstUmcMoXT5xDw.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 11 Jun 2025 15:45:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6791 (0x1a87) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C3A74, serialNumber=8E11FCB4E8BD63D27B84EB2D52670CA174F9C43C Validity Not Before: Jun 4 15:45:30 2025 GMT Not After : Jun 11 15:45:30 2025 GMT Subject: CN=68406a1a-4b74 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:09:a2:34:62:cc:9a:07:66:0f:7e:ba:07:8f: 08:42:a1:54:b2:42:f0:2d:93:40:f7:81:d0:dd:74: 74:be:0b:48:14:4d:31:4b:22:d6:54:dd:bd:a2:b9: 2a:25:9c:46:a7:91:55:e1:73:dc:ed:5d:e7:57:3d: c0:c7:ad:78:6c:86:55:b4:12:0b:c6:27:50:84:f6: 8c:32:c4:52:f3:c3:4c:73:a3:d0:d4:5e:77:c7:a6: 21:4d:77:7a:79:5a:a8:8e:b2:ef:df:60:28:35:9a: 04:ff:2e:e8:60:6c:37:40:c8:8d:e8:04:50:01:41: 74:06:ce:6e:e1:1b:1c:da:80:7a:6d:f5:3f:a2:7d: 75:1e:cb:4c:56:be:70:2d:c5:50:ee:d2:c8:03:ef: 0b:c7:2e:be:98:6a:eb:ec:12:0d:f2:23:f1:6a:77: b4:0c:b6:8d:e7:c3:c5:7f:4d:8a:0a:cf:25:c1:e1: 97:e2:32:59:07:7a:8d:72:51:00:4a:f3:e9:dc:6b: 83:8b:72:99:c1:d6:75:29:ea:66:d0:5d:be:6a:08: 07:38:44:9d:6d:f8:6d:43:28:3e:f0:d7:22:f1:5d: c4:0d:3a:c5:32:36:d3:35:22:08:f0:c7:57:5b:a0: e4:c0:f6:96:43:05:ba:d4:d1:d0:39:d9:19:c2:53: 72:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 21:CA:2F:2D:59:94:0E:29:7E:53:03:58:EA:09:D3:E0:12:40:9F:7A X509v3 Authority Key Identifier: keyid:8E:11:FC:B4:E8:BD:63:D2:7B:84:EB:2D:52:67:0C:A1:74:F9:C4:3C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C3A74/753D71EE3AB511E7B8609F1CC4F9AE02/jhH8tOi9Y9J7hOstUmcMoXT5xDw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/jhH8tOi9Y9J7hOstUmcMoXT5xDw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C3A74/753D71EE3AB511E7B8609F1CC4F9AE02/jhH8tOi9Y9J7hOstUmcMoXT5xDw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7f:21:4f:03:fd:0f:10:1e:95:47:05:6d:06:84:a6:ca:28:fe: bb:fc:e2:c9:ac:cb:ed:b4:ad:63:8d:2f:d2:3c:2b:6a:fe:33: 08:70:ce:26:61:cc:1e:b1:28:8e:6b:91:ed:e6:b7:e9:22:36: 74:b2:47:37:f5:87:17:4e:65:bc:01:5f:b8:f1:59:bc:b9:8e: 85:d0:78:da:79:62:70:12:19:dd:55:8c:85:8a:77:61:6d:c6: 8e:91:ed:0f:70:37:4f:d1:53:56:11:4c:1c:fa:e2:be:cf:a7: c5:63:5f:60:a5:d7:b8:6f:ac:64:54:89:db:2b:88:fa:6d:ee: 33:b9:bb:4e:6f:ed:3a:72:ec:79:5c:61:18:99:9a:55:ee:75: 02:e1:6f:e3:1c:9a:54:80:01:7a:ae:3e:c4:46:c7:66:ce:31: 16:16:05:f0:90:92:e5:fb:21:70:e7:3a:aa:a3:82:ed:ee:88: 97:0a:32:1e:d5:07:a1:13:01:f9:aa:b5:23:a0:a6:8d:6e:71: f3:79:04:89:12:69:87:be:b6:27:7e:84:b8:12:b6:52:bc:3f: 79:4b:ef:f9:03:26:34:e8:ad:55:5e:cc:f2:95:7c:58:5e:32: 6d:eb:64:05:77:a3:01:17:b3:60:27:d9:05:eb:21:16:0f:32: ec:80:d3:62 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICGocwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzNBNzQxMTAvBgNVBAUTKDhFMTFGQ0I0RThCRDYzRDI3Qjg0RUIyRDUyNjcwQ0Ex NzRGOUM0M0MwHhcNMjUwNjA0MTU0NTMwWhcNMjUwNjExMTU0NTMwWjAYMRYwFAYD VQQDEw02ODQwNmExYS00Yjc0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuQmiNGLMmgdmD366B48IQqFUskLwLZNA94HQ3XR0vgtIFE0xSyLWVN29orkq JZxGp5FV4XPc7V3nVz3Ax614bIZVtBILxidQhPaMMsRS88NMc6PQ1F53x6YhTXd6 eVqojrLv32AoNZoE/y7oYGw3QMiN6ARQAUF0Bs5u4Rsc2oB6bfU/on11HstMVr5w LcVQ7tLIA+8Lxy6+mGrr7BIN8iPxane0DLaN58PFf02KCs8lweGX4jJZB3qNclEA SvPp3GuDi3KZwdZ1Kepm0F2+aggHOESdbfhtQyg+8Nci8V3EDTrFMjbTNSII8MdX W6DkwPaWQwW61NHQOdkZwlNy7QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCHKLy1Z lA4pflMDWOoJ0+ASQJ96MB8GA1UdIwQYMBaAFI4R/LTovWPSe4TrLVJnDKF0+cQ8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDM0E3NC83NTNENzFFRTNB QjUxMUU3Qjg2MDlGMUNDNEY5QUUwMi9qaEg4dE9pOVk5SjdoT3N0VW1jTW9YVDV4 RHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL2poSDh0T2k5WTlKN2hPc3RVbWNNb1hUNXhEdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD M0E3NC83NTNENzFFRTNBQjUxMUU3Qjg2MDlGMUNDNEY5QUUwMi9qaEg4dE9pOVk5 SjdoT3N0VW1jTW9YVDV4RHcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB/IU8D/Q8QHpVHBW0GhKbKKP67/OLJrMvttK1jjS/SPCtq/jMIcM4m YcwesSiOa5Ht5rfpIjZ0skc39YcXTmW8AV+48Vm8uY6F0HjaeWJwEhndVYyFindh bcaOke0PcDdP0VNWEUwc+uK+z6fFY19gpde4b6xkVInbK4j6be4zubtOb+06cux5 XGEYmZpV7nUC4W/jHJpUgAF6rj7ERsdmzjEWFgXwkJLl+yFw5zqqo4Lt7oiXCjIe 1QehEwH5qrUjoKaNbnHzeQSJEmmHvrYnfoS4ErZSvD95S+/5AyY06K1VXszylXxY XjJt62QFd6MBF7NgJ9kF6yEWDzLsgNNi -----END CERTIFICATE-----Generated at Thu Jun 5 20:02:13 2025 by rpki-client