$ rpki-client -vvf rpki.apnic.net/member_repository/A91D0C18/683BA096646611EF8E18F87AC4F9AE02/CJy1orM7eG11SgfWgKnElBQmGeE.mft File: CJy1orM7eG11SgfWgKnElBQmGeE.mft (raw, json) Hash identifier: hKKT+MxV+mPoLC6XVVGrmxfQRc9jqHiGIXp9mUe9YwM= Subject key identifier: 54:2C:9A:76:59:8F:D7:36:DD:27:8D:69:D0:DC:76:B5:0F:E9:42:E0 Authority key identifier: 08:9C:B5:A2:B3:3B:78:6D:75:4A:07:D6:80:A9:C4:94:14:26:19:E1 Certificate issuer: /CN=A91D0C18/serialNumber=089CB5A2B33B786D754A07D680A9C494142619E1 Certificate serial: 90 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/CJy1orM7eG11SgfWgKnElBQmGeE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D0C18/683BA096646611EF8E18F87AC4F9AE02/CJy1orM7eG11SgfWgKnElBQmGeE.mft Manifest number: 8F Signing time: Sun 01 Jun 2025 06:10:45 +0000 Manifest this update: Sun 01 Jun 2025 06:10:44 +0000 Manifest next update: Sun 08 Jun 2025 06:10:44 +0000 Files and hashes: 1: CJy1orM7eG11SgfWgKnElBQmGeE.crl (hash: z8BKPq26xDP9hYkimTVfz3SKAbp1h35UhysRes5/pGI=) 2: EEE0092A646611EFA25D167EC4F9AE02.roa (hash: PB6LRHoIMyYv1uIUIe4A3HeqPVxI7OtzvXNUbqHxj3Y=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D0C18/683BA096646611EF8E18F87AC4F9AE02/CJy1orM7eG11SgfWgKnElBQmGeE.crl rsync://rpki.apnic.net/member_repository/A91D0C18/683BA096646611EF8E18F87AC4F9AE02/CJy1orM7eG11SgfWgKnElBQmGeE.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/CJy1orM7eG11SgfWgKnElBQmGeE.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Jun 2025 06:10:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 144 (0x90) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D0C18, serialNumber=089CB5A2B33B786D754A07D680A9C494142619E1 Validity Not Before: Jun 1 06:10:44 2025 GMT Not After : Jun 8 06:10:44 2025 GMT Subject: CN=683beee4-7bc2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f1:a1:8a:71:6d:95:54:15:66:fb:a8:0b:e6:80: c5:d2:75:0c:76:18:34:25:05:45:a3:05:7c:5f:aa: 0e:09:70:9b:2a:43:35:cc:bb:c3:b4:39:26:05:8a: 33:fc:6e:b5:2d:ff:9f:e1:9a:88:94:c8:a1:0e:45: 4a:a9:24:1b:22:54:fa:8f:c7:33:92:0c:fc:3d:bc: e6:fe:c2:da:df:ed:fb:9b:70:91:ed:7d:ef:9a:e2: 69:b0:95:ea:33:74:79:03:1b:03:90:4d:7b:30:d0: c0:32:d5:0a:fb:45:33:00:ba:a4:e5:70:99:7e:f2: 1b:d8:c4:c1:80:11:22:b0:49:57:6b:2a:13:58:2b: 72:87:3b:74:c6:b2:7a:00:fc:64:02:1d:1e:6b:2f: 85:70:1d:45:f9:c1:d3:f4:2d:cc:49:e5:b6:dd:ef: 74:a3:5d:70:c1:18:88:93:8c:39:02:70:d3:7b:d5: ec:22:9d:ec:95:2a:e2:7c:fd:a9:b6:6d:6e:c2:a8: c9:95:c1:e5:09:28:0e:48:c6:c6:21:fe:02:77:a8: 6c:ed:e2:76:a4:54:43:65:f2:63:1d:87:82:20:d0: 7c:ad:cd:d6:b4:a2:80:a5:11:4f:7a:01:29:17:79: f8:57:3d:e5:3d:e9:30:df:65:9b:15:73:59:5a:c5: 92:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 54:2C:9A:76:59:8F:D7:36:DD:27:8D:69:D0:DC:76:B5:0F:E9:42:E0 X509v3 Authority Key Identifier: keyid:08:9C:B5:A2:B3:3B:78:6D:75:4A:07:D6:80:A9:C4:94:14:26:19:E1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D0C18/683BA096646611EF8E18F87AC4F9AE02/CJy1orM7eG11SgfWgKnElBQmGeE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/CJy1orM7eG11SgfWgKnElBQmGeE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D0C18/683BA096646611EF8E18F87AC4F9AE02/CJy1orM7eG11SgfWgKnElBQmGeE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 82:20:34:9f:aa:fb:9c:9e:61:05:65:ad:ab:ae:23:11:33:e5: af:96:40:41:a3:37:7c:3f:84:5e:25:bd:74:af:a5:68:bc:05: 66:f1:1b:6d:92:4f:64:d6:7d:de:d3:13:df:90:6f:53:fe:0a: 8b:b7:65:ab:2d:96:ff:ed:b6:7b:72:73:ca:24:3d:af:40:43: 03:02:dd:16:69:fb:be:08:76:8c:0e:af:45:19:c1:fb:ce:22: 38:5f:45:41:60:22:d6:1a:79:6e:3e:fb:fd:10:fa:72:42:a9: d2:1c:33:93:94:d6:8f:4e:65:27:c6:9a:1e:61:84:64:d8:2a: 43:5d:19:21:7c:78:a4:fd:ed:44:2e:5b:d4:5a:ff:9f:d6:24: 43:fd:2e:27:20:11:04:85:15:bb:e8:1b:62:84:b5:22:84:81: d6:bb:b8:c4:a4:18:1a:e5:02:bb:00:de:47:d5:c8:8a:7e:d5: 18:bb:fc:5f:aa:8c:bf:6c:10:a4:fb:27:8e:fe:66:2d:e1:78: 53:b7:87:a6:e5:11:ea:55:68:d7:15:6f:0a:51:e9:93:52:82: f6:9c:d4:1b:4b:1e:02:c0:41:08:f8:57:e5:3e:91:5f:cd:7f: 3d:b3:51:e4:8b:41:8f:87:01:8c:68:21:ee:1b:d3:98:d7:5f: 48:c5:78:a8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAJAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDBDMTgxMTAvBgNVBAUTKDA4OUNCNUEyQjMzQjc4NkQ3NTRBMDdENjgwQTlDNDk0 MTQyNjE5RTEwHhcNMjUwNjAxMDYxMDQ0WhcNMjUwNjA4MDYxMDQ0WjAYMRYwFAYD VQQDEw02ODNiZWVlNC03YmMyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8aGKcW2VVBVm+6gL5oDF0nUMdhg0JQVFowV8X6oOCXCbKkM1zLvDtDkmBYoz /G61Lf+f4ZqIlMihDkVKqSQbIlT6j8czkgz8Pbzm/sLa3+37m3CR7X3vmuJpsJXq M3R5AxsDkE17MNDAMtUK+0UzALqk5XCZfvIb2MTBgBEisElXayoTWCtyhzt0xrJ6 APxkAh0eay+FcB1F+cHT9C3MSeW23e90o11wwRiIk4w5AnDTe9XsIp3slSrifP2p tm1uwqjJlcHlCSgOSMbGIf4Cd6hs7eJ2pFRDZfJjHYeCINB8rc3WtKKApRFPegEp F3n4Vz3lPekw32WbFXNZWsWSqwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFQsmnZZ j9c23SeNadDcdrUP6ULgMB8GA1UdIwQYMBaAFAictaKzO3htdUoH1oCpxJQUJhnh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMEMxOC82ODNCQTA5NjY0 NjYxMUVGOEUxOEY4N0FDNEY5QUUwMi9DSnkxb3JNN2VHMTFTZ2ZXZ0tuRWxCUW1H ZUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0NKeTFvck03ZUcxMVNnZldnS25FbEJRbUdlRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MEMxOC82ODNCQTA5NjY0NjYxMUVGOEUxOEY4N0FDNEY5QUUwMi9DSnkxb3JNN2VH MTFTZ2ZXZ0tuRWxCUW1HZUUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCCIDSfqvucnmEFZa2rriMRM+WvlkBBozd8P4ReJb10r6VovAVm8Rtt kk9k1n3e0xPfkG9T/gqLt2WrLZb/7bZ7cnPKJD2vQEMDAt0Wafu+CHaMDq9FGcH7 ziI4X0VBYCLWGnluPvv9EPpyQqnSHDOTlNaPTmUnxpoeYYRk2CpDXRkhfHik/e1E LlvUWv+f1iRD/S4nIBEEhRW76BtihLUihIHWu7jEpBga5QK7AN5H1ciKftUYu/xf qoy/bBCk+yeO/mYt4XhTt4em5RHqVWjXFW8KUemTUoL2nNQbSx4CwEEI+FflPpFf zX89s1Hki0GPhwGMaCHuG9OY119IxXio -----END CERTIFICATE-----Generated at Mon Jun 2 18:44:54 2025 by rpki-client