$ rpki-client -vvf rpki.apnic.net/member_repository/A91836D8/32DAB29207AF11F09606E534C4F9AE02/1RCJONILodf7ySo7qZ8tafyPSog.mft File: 1RCJONILodf7ySo7qZ8tafyPSog.mft (raw, json) Hash identifier: bqB4vYhZYM5u2XikKvlOixLiclv5mdV9LzTX54+oZ14= Subject key identifier: C7:4D:25:B1:E4:B2:5A:67:98:7F:C4:77:BC:55:47:E8:93:DB:43:61 Authority key identifier: D5:10:89:38:D2:0B:A1:D7:FB:C9:2A:3B:A9:9F:2D:69:FC:8F:4A:88 Certificate issuer: /CN=A91836D8/serialNumber=D5108938D20BA1D7FBC92A3BA99F2D69FC8F4A88 Certificate serial: 37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1RCJONILodf7ySo7qZ8tafyPSog.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91836D8/32DAB29207AF11F09606E534C4F9AE02/1RCJONILodf7ySo7qZ8tafyPSog.mft Manifest number: 35 Signing time: Sun 29 Jun 2025 06:40:04 +0000 Manifest this update: Sun 29 Jun 2025 06:40:03 +0000 Manifest next update: Sun 06 Jul 2025 06:40:03 +0000 Files and hashes: 1: 1RCJONILodf7ySo7qZ8tafyPSog.crl (hash: bU/CCYVgTNK1/WUbUoOhuAvjwDj/ifFMGZJDUbfsBu8=) 2: 2A0F594C07B911F0B93D3034C4F9AE02.roa (hash: r5ruoCtRcYnEcHexWC9aJqjiLOW/BTPK5UGFj2P9wTI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91836D8/32DAB29207AF11F09606E534C4F9AE02/1RCJONILodf7ySo7qZ8tafyPSog.crl rsync://rpki.apnic.net/member_repository/A91836D8/32DAB29207AF11F09606E534C4F9AE02/1RCJONILodf7ySo7qZ8tafyPSog.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1RCJONILodf7ySo7qZ8tafyPSog.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 06 Jul 2025 06:40:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 55 (0x37) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91836D8, serialNumber=D5108938D20BA1D7FBC92A3BA99F2D69FC8F4A88 Validity Not Before: Jun 29 06:40:03 2025 GMT Not After : Jul 6 06:40:03 2025 GMT Subject: CN=6860dfc4-f9af Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:66:20:8f:76:a3:35:d1:94:49:75:87:ab:39: e0:28:6c:c6:81:f4:d1:0b:71:1b:87:75:73:f2:45: db:56:bd:95:e0:09:e3:c7:8c:2d:88:e6:b4:d8:e6: 3c:a7:40:f9:ac:c9:50:39:31:6e:18:9d:95:59:af: 12:7f:0c:b9:26:29:96:74:d5:19:5c:4c:0c:b5:4e: 45:52:3a:a6:69:49:cc:3f:f7:55:75:0b:99:28:e1: 26:b7:ff:03:9a:a1:12:8e:7b:b7:f5:4b:3f:e4:16: 2a:9e:40:ae:39:76:60:60:a4:95:21:1b:46:2f:e9: 84:f5:a2:31:c3:eb:2c:25:5d:27:e4:ab:a6:d4:39: a7:20:4d:fb:98:20:f8:86:ab:70:c9:f5:c6:c6:7c: 0a:95:f2:c0:de:b4:33:78:5f:17:fd:d7:77:da:90: 3c:2b:be:2c:08:0e:e3:23:4b:4f:5c:f6:f3:e6:6c: b5:1b:c7:4e:56:5c:86:b3:25:3e:d1:34:6c:82:63: 8f:27:bb:5d:bd:68:33:cb:bd:3f:7d:ba:e3:44:e1: 41:85:02:e3:ff:26:96:a2:1f:e6:5a:17:cc:37:01: bb:03:3f:8b:b9:bb:e1:3c:7f:11:1a:f0:d9:9d:f4: 5a:f1:9f:02:ba:ab:c4:9d:1b:e2:cb:c9:08:1d:b8: e5:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C7:4D:25:B1:E4:B2:5A:67:98:7F:C4:77:BC:55:47:E8:93:DB:43:61 X509v3 Authority Key Identifier: keyid:D5:10:89:38:D2:0B:A1:D7:FB:C9:2A:3B:A9:9F:2D:69:FC:8F:4A:88 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91836D8/32DAB29207AF11F09606E534C4F9AE02/1RCJONILodf7ySo7qZ8tafyPSog.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1RCJONILodf7ySo7qZ8tafyPSog.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91836D8/32DAB29207AF11F09606E534C4F9AE02/1RCJONILodf7ySo7qZ8tafyPSog.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 05:46:1e:d4:02:09:88:b9:6f:9c:fe:4b:9d:f4:dc:c9:7c:72: d4:94:e7:80:09:75:8a:ec:f1:88:cb:af:87:4b:25:45:e8:7b: f5:16:a8:fa:c7:f2:52:d6:f6:f1:56:b2:9f:a7:18:ee:bc:b7: 8a:8a:c8:2d:f8:06:40:fe:15:c9:28:b4:ef:5d:b3:cd:40:73: f6:3f:b8:fe:c3:61:06:1e:6b:e5:70:94:89:42:bb:47:f8:ae: 57:e3:d0:ce:56:93:01:0e:9d:35:3d:59:df:fe:93:ee:7b:e2: d6:0a:08:60:b6:68:75:92:f7:05:86:3c:15:70:dd:9b:87:28: 50:67:15:13:a0:df:54:62:89:8d:52:77:2f:de:39:53:b9:b1: fd:db:a5:5c:b1:9d:ed:03:32:50:2d:b7:63:40:d7:99:9e:23: 79:a9:c7:b2:4b:5a:d6:2a:c5:10:7e:38:fa:56:0b:f0:47:5c: 98:d3:83:75:7a:eb:c6:36:13:64:08:35:81:59:bd:3d:85:1c: 18:fb:00:d3:12:be:32:fa:a7:06:d7:63:87:89:0b:0e:9f:50: 67:01:8c:55:d5:43:3e:80:57:99:84:c9:35:f5:ba:ad:9a:54: a8:eb:30:d7:c0:33:c7:1f:84:ee:a0:27:a6:62:ea:98:71:70: cb:a3:76:da -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBNzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE4 MzZEODExMC8GA1UEBRMoRDUxMDg5MzhEMjBCQTFEN0ZCQzkyQTNCQTk5RjJENjlG QzhGNEE4ODAeFw0yNTA2MjkwNjQwMDNaFw0yNTA3MDYwNjQwMDNaMBgxFjAUBgNV BAMTDTY4NjBkZmM0LWY5YWYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDkZiCPdqM10ZRJdYerOeAobMaB9NELcRuHdXPyRdtWvZXgCePHjC2I5rTY5jyn QPmsyVA5MW4YnZVZrxJ/DLkmKZZ01RlcTAy1TkVSOqZpScw/91V1C5ko4Sa3/wOa oRKOe7f1Sz/kFiqeQK45dmBgpJUhG0Yv6YT1ojHD6ywlXSfkq6bUOacgTfuYIPiG q3DJ9cbGfAqV8sDetDN4Xxf913fakDwrviwIDuMjS09c9vPmbLUbx05WXIazJT7R NGyCY48nu129aDPLvT99uuNE4UGFAuP/JpaiH+ZaF8w3AbsDP4u5u+E8fxEa8Nmd 9FrxnwK6q8SdG+LLyQgduOXBAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUx00lseSy WmeYf8R3vFVH6JPbQ2EwHwYDVR0jBBgwFoAU1RCJONILodf7ySo7qZ8tafyPSogw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTgzNkQ4LzMyREFCMjkyMDdB RjExRjA5NjA2RTUzNEM0RjlBRTAyLzFSQ0pPTklMb2RmN3lTbzdxWjh0YWZ5UFNv Zy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvMVJDSk9OSUxvZGY3eVNvN3FaOHRhZnlQU29nLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTgz NkQ4LzMyREFCMjkyMDdBRjExRjA5NjA2RTUzNEM0RjlBRTAyLzFSQ0pPTklMb2Rm N3lTbzdxWjh0YWZ5UFNvZy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAAVGHtQCCYi5b5z+S5303Ml8ctSU54AJdYrs8YjLr4dLJUXoe/UWqPrH 8lLW9vFWsp+nGO68t4qKyC34BkD+FckotO9ds81Ac/Y/uP7DYQYea+VwlIlCu0f4 rlfj0M5WkwEOnTU9Wd/+k+574tYKCGC2aHWS9wWGPBVw3ZuHKFBnFROg31RiiY1S dy/eOVO5sf3bpVyxne0DMlAtt2NA15meI3mpx7JLWtYqxRB+OPpWC/BHXJjTg3V6 68Y2E2QINYFZvT2FHBj7ANMSvjL6pwbXY4eJCw6fUGcBjFXVQz6AV5mEyTX1uq2a VKjrMNfAM8cfhO6gJ6Zi6phxcMujdto= -----END CERTIFICATE-----Generated at Tue Jul 1 08:58:24 2025 by rpki-client