$ rpki-client -vvf rpki.apnic.net/member_repository/A91AB063/1186B6BC093A11E79540950BC4F9AE02/51hPlZoIGk3ZSAk1MFHSNZOcOR0.mft File: 51hPlZoIGk3ZSAk1MFHSNZOcOR0.mft (raw, json) Hash identifier: zfXFBunSqpa6GyMWWjMQYOAQ4qgXKfIFYfh4WdbB6IE= Subject key identifier: BC:B2:58:2A:5A:2E:42:C0:8B:C6:76:A2:B6:8F:B2:C4:1B:76:C9:40 Authority key identifier: E7:58:4F:95:9A:08:1A:4D:D9:48:09:35:30:51:D2:35:93:9C:39:1D Certificate issuer: /CN=A91AB063/serialNumber=E7584F959A081A4DD94809353051D235939C391D Certificate serial: 1B93 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/51hPlZoIGk3ZSAk1MFHSNZOcOR0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AB063/1186B6BC093A11E79540950BC4F9AE02/51hPlZoIGk3ZSAk1MFHSNZOcOR0.mft Manifest number: 1B87 Signing time: Mon 30 Jun 2025 16:26:07 +0000 Manifest this update: Mon 30 Jun 2025 16:26:06 +0000 Manifest next update: Mon 07 Jul 2025 16:26:06 +0000 Files and hashes: 1: 51hPlZoIGk3ZSAk1MFHSNZOcOR0.crl (hash: s73G+YCBSiQ4te9YB8oMSqlrl6YMrlLC0tn7KPJ+C6E=) 2: B6FD84CE54F611E79DF7E643C4F9AE02.roa (hash: YQFMKBF60xX3PieFKAIG2OCODzb9u3iqyawtkqXWSC0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AB063/1186B6BC093A11E79540950BC4F9AE02/51hPlZoIGk3ZSAk1MFHSNZOcOR0.crl rsync://rpki.apnic.net/member_repository/A91AB063/1186B6BC093A11E79540950BC4F9AE02/51hPlZoIGk3ZSAk1MFHSNZOcOR0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/51hPlZoIGk3ZSAk1MFHSNZOcOR0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Jul 2025 16:26:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7059 (0x1b93) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AB063, serialNumber=E7584F959A081A4DD94809353051D235939C391D Validity Not Before: Jun 30 16:26:06 2025 GMT Not After : Jul 7 16:26:06 2025 GMT Subject: CN=6862ba9e-94c8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:ac:1c:8e:1b:76:5b:38:ff:d5:02:dd:91:d5: 9a:88:16:04:44:79:f6:8b:4c:69:25:75:24:bb:8a: 3e:c5:16:74:30:a7:b4:11:95:95:7c:07:89:be:51: ca:81:8a:f3:f4:5c:c7:1a:66:30:23:7b:85:c6:5d: a2:3c:c5:a5:29:9e:0b:9b:5a:13:58:c3:1a:9b:97: 97:55:9a:e4:59:0b:14:2b:49:1e:06:83:82:9e:80: c1:32:47:84:0c:eb:b8:3a:c6:b5:13:d6:e0:a2:1a: e9:af:a1:47:78:57:11:e2:29:2e:a5:05:91:8e:95: 31:a1:03:b3:f8:97:f9:f7:d9:33:86:35:6c:f9:90: a6:ad:40:1b:ea:86:f9:10:bc:51:a1:8d:4a:3f:fa: 00:44:a4:55:a5:dd:0b:75:4c:24:74:a6:7c:61:cd: d6:fd:1e:6f:95:9c:56:55:e8:a9:a4:d9:fd:17:ae: eb:7c:49:ae:d7:8c:a3:cb:13:53:02:c5:2a:b6:22: d3:ec:b2:c8:d9:26:8a:f8:71:10:df:42:f1:2c:c7: 86:e9:a7:4c:a9:24:d2:39:4c:65:32:83:86:65:99: 22:75:55:6e:16:36:74:26:00:87:78:af:e9:30:68: 84:15:80:b6:c6:bc:67:d2:e0:1f:a7:61:fc:3e:8a: b4:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BC:B2:58:2A:5A:2E:42:C0:8B:C6:76:A2:B6:8F:B2:C4:1B:76:C9:40 X509v3 Authority Key Identifier: keyid:E7:58:4F:95:9A:08:1A:4D:D9:48:09:35:30:51:D2:35:93:9C:39:1D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AB063/1186B6BC093A11E79540950BC4F9AE02/51hPlZoIGk3ZSAk1MFHSNZOcOR0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/51hPlZoIGk3ZSAk1MFHSNZOcOR0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AB063/1186B6BC093A11E79540950BC4F9AE02/51hPlZoIGk3ZSAk1MFHSNZOcOR0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 47:31:2d:17:19:e1:dd:fc:c5:15:ab:a7:24:d6:7c:01:37:cf: 88:4e:75:e8:dd:30:12:5c:88:dc:cc:ed:9b:dd:09:76:94:63: bd:f7:09:7e:7b:b0:da:cb:81:7b:71:ad:79:c7:2e:ee:6e:3d: 1c:c4:9c:15:bc:72:09:5e:81:6c:dd:66:38:21:59:33:43:76: 93:7b:57:4c:4d:11:95:36:d9:5f:67:55:c5:c8:ad:f9:9c:76: 44:4f:5c:ef:12:16:df:d0:5c:65:12:cf:01:78:22:68:cb:2d: 45:cb:91:37:34:2a:9e:61:6e:48:21:a8:8d:2b:57:8b:ea:39: f0:04:88:10:0d:72:89:46:6d:31:9a:e3:5a:dc:56:a4:d7:bd: f7:76:cb:de:20:d3:6c:c3:00:8a:24:63:81:7b:fd:5e:f5:7d: 83:fc:4f:73:a3:ad:48:91:3c:fc:c4:11:33:c3:b1:6c:f5:79: ee:9e:23:a1:eb:d7:03:c4:55:c3:e8:2e:0d:89:66:55:ce:dd: ee:df:50:5d:3f:04:df:de:69:8e:1b:01:17:e1:f8:dd:bf:56: 0b:1f:16:ee:07:dd:37:cc:54:46:7e:41:4e:68:b7:4d:91:e4: 59:1c:1c:5e:09:1d:1a:76:b7:a0:47:fd:bf:ed:bc:79:57:d1: 62:d0:d8:f2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICG5MwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUIwNjMxMTAvBgNVBAUTKEU3NTg0Rjk1OUEwODFBNEREOTQ4MDkzNTMwNTFEMjM1 OTM5QzM5MUQwHhcNMjUwNjMwMTYyNjA2WhcNMjUwNzA3MTYyNjA2WjAYMRYwFAYD VQQDEw02ODYyYmE5ZS05NGM4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyKwcjht2Wzj/1QLdkdWaiBYERHn2i0xpJXUku4o+xRZ0MKe0EZWVfAeJvlHK gYrz9FzHGmYwI3uFxl2iPMWlKZ4Lm1oTWMMam5eXVZrkWQsUK0keBoOCnoDBMkeE DOu4Osa1E9bgohrpr6FHeFcR4ikupQWRjpUxoQOz+Jf599kzhjVs+ZCmrUAb6ob5 ELxRoY1KP/oARKRVpd0LdUwkdKZ8Yc3W/R5vlZxWVeippNn9F67rfEmu14yjyxNT AsUqtiLT7LLI2SaK+HEQ30LxLMeG6adMqSTSOUxlMoOGZZkidVVuFjZ0JgCHeK/p MGiEFYC2xrxn0uAfp2H8Poq02QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLyyWCpa LkLAi8Z2oraPssQbdslAMB8GA1UdIwQYMBaAFOdYT5WaCBpN2UgJNTBR0jWTnDkd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQjA2My8xMTg2QjZCQzA5 M0ExMUU3OTU0MDk1MEJDNEY5QUUwMi81MWhQbFpvSUdrM1pTQWsxTUZIU05aT2NP UjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzUxaFBsWm9JR2szWlNBazFNRkhTTlpPY09SMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB QjA2My8xMTg2QjZCQzA5M0ExMUU3OTU0MDk1MEJDNEY5QUUwMi81MWhQbFpvSUdr M1pTQWsxTUZIU05aT2NPUjAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBHMS0XGeHd/MUVq6ck1nwBN8+ITnXo3TASXIjczO2b3Ql2lGO99wl+ e7Day4F7ca15xy7ubj0cxJwVvHIJXoFs3WY4IVkzQ3aTe1dMTRGVNtlfZ1XFyK35 nHZET1zvEhbf0FxlEs8BeCJoyy1Fy5E3NCqeYW5IIaiNK1eL6jnwBIgQDXKJRm0x muNa3Fak1733dsveINNswwCKJGOBe/1e9X2D/E9zo61IkTz8xBEzw7Fs9XnuniOh 69cDxFXD6C4NiWZVzt3u31BdPwTf3mmOGwEX4fjdv1YLHxbuB903zFRGfkFOaLdN keRZHBxeCR0adregR/2/7bx5V9Fi0Njy -----END CERTIFICATE-----Generated at Wed Jul 2 06:10:29 2025 by rpki-client