$ rpki-client -vvf rpki.apnic.net/member_repository/A91B35DF/1EA0199CD89E11EFB4212C56C4F9AE02/jiZ6MV35Dplf9M1LLPj8TDMksts.mft File: jiZ6MV35Dplf9M1LLPj8TDMksts.mft (raw, json) Hash identifier: wMOqNtcyVlfOx94WRWN7fa2Ka0w/8wQCMhEpIUMRDGI= Subject key identifier: 6F:05:B9:49:4C:14:3A:46:ED:9C:9F:79:A5:87:CD:F4:92:53:C4:0D Authority key identifier: 8E:26:7A:31:5D:F9:0E:99:5F:F4:CD:4B:2C:F8:FC:4C:33:24:B2:DB Certificate issuer: /CN=A91B35DF/serialNumber=8E267A315DF90E995FF4CD4B2CF8FC4C3324B2DB Certificate serial: 54 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jiZ6MV35Dplf9M1LLPj8TDMksts.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B35DF/1EA0199CD89E11EFB4212C56C4F9AE02/jiZ6MV35Dplf9M1LLPj8TDMksts.mft Manifest number: 53 Signing time: Tue 01 Jul 2025 08:01:20 +0000 Manifest this update: Tue 01 Jul 2025 08:01:20 +0000 Manifest next update: Tue 08 Jul 2025 08:01:20 +0000 Files and hashes: 1: jiZ6MV35Dplf9M1LLPj8TDMksts.crl (hash: Kb8VzEO32IYci3ZVKETLFQLrkJWRKtEfqsZZybbLFjo=) 2: EF714C70D89F11EFA1D2E672C4F9AE02.roa (hash: RQguTQm7u/HopEKGt5+xwJ/Yt9Fvm6tqRZ2uC++bhEM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B35DF/1EA0199CD89E11EFB4212C56C4F9AE02/jiZ6MV35Dplf9M1LLPj8TDMksts.crl rsync://rpki.apnic.net/member_repository/A91B35DF/1EA0199CD89E11EFB4212C56C4F9AE02/jiZ6MV35Dplf9M1LLPj8TDMksts.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jiZ6MV35Dplf9M1LLPj8TDMksts.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Jul 2025 08:01:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 84 (0x54) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B35DF, serialNumber=8E267A315DF90E995FF4CD4B2CF8FC4C3324B2DB Validity Not Before: Jul 1 08:01:20 2025 GMT Not After : Jul 8 08:01:20 2025 GMT Subject: CN=686395d0-d293 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:d2:a3:37:b3:f1:70:0a:5c:75:1f:ac:66:b0: 8b:a4:df:1f:7a:f6:98:f3:c7:73:95:46:25:1f:91: 87:b8:55:15:a4:23:54:05:90:5c:47:e6:b4:9e:93: 52:1d:55:b2:07:ea:8f:96:5b:f3:97:2e:9d:15:d8: ed:a2:d4:51:52:48:26:f6:69:5a:0e:43:22:60:a7: 46:3a:c9:cf:52:fb:f4:25:cf:dc:d6:49:cb:40:90: 8d:c1:24:c0:d1:be:c2:56:20:d9:1e:c5:c0:cd:75: 2a:95:f5:16:71:ab:27:e1:a7:0a:8a:63:e2:36:e3: 05:55:11:60:76:e1:2f:58:75:2e:d9:fe:c0:6a:9f: 30:c3:6b:03:69:8f:64:41:24:d4:88:67:8c:ff:dc: 40:d6:f2:62:ea:2a:65:78:de:f0:6f:58:50:a0:72: ec:66:2a:4d:bf:ad:0e:3d:bb:87:1b:b8:3d:cd:23: 11:35:bb:69:71:3a:58:51:43:63:f3:77:9b:4b:01: a9:90:43:fa:8e:5a:ba:4f:dc:be:69:36:59:2c:97: 5b:e9:f7:35:f0:ad:47:12:ad:40:2b:8e:cf:1d:c4: 9a:38:f3:71:35:98:7d:5e:59:e3:ce:4f:27:e2:0f: dc:6b:01:1d:13:b9:0a:e3:4d:e1:8b:48:fd:67:45: 9a:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6F:05:B9:49:4C:14:3A:46:ED:9C:9F:79:A5:87:CD:F4:92:53:C4:0D X509v3 Authority Key Identifier: keyid:8E:26:7A:31:5D:F9:0E:99:5F:F4:CD:4B:2C:F8:FC:4C:33:24:B2:DB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B35DF/1EA0199CD89E11EFB4212C56C4F9AE02/jiZ6MV35Dplf9M1LLPj8TDMksts.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jiZ6MV35Dplf9M1LLPj8TDMksts.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B35DF/1EA0199CD89E11EFB4212C56C4F9AE02/jiZ6MV35Dplf9M1LLPj8TDMksts.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a4:0c:a1:bc:c0:f9:0c:51:69:be:8d:c4:ae:50:23:5e:2b:bf: 34:97:a5:53:db:a8:f3:66:a2:a7:c8:44:38:ac:78:07:73:ab: ac:99:8b:46:35:6a:f1:84:b0:ff:c2:b9:08:23:f4:2e:8b:c6: da:c0:79:eb:e0:d1:00:f7:65:43:a3:48:64:48:0d:41:1f:d7: 42:a3:6b:7f:66:8f:c8:73:27:8b:3f:46:5a:1f:3a:04:98:b8: 19:c9:f2:21:36:26:21:5d:20:c3:9b:97:ce:09:b0:bb:b8:a5: ca:d8:1f:c6:f0:e2:a7:c8:04:bb:5f:78:e3:16:03:72:d0:41: 11:60:32:8e:52:7a:78:bc:e0:4f:b2:82:90:5e:c0:c9:6b:42: a1:07:5f:51:1d:bf:58:45:94:92:fc:25:b1:7a:fc:5c:e4:08: 1a:40:3a:e8:38:7b:31:bf:0b:61:54:77:0e:42:89:1b:80:4a: 80:de:cd:3e:5d:5d:0b:43:95:f8:3f:c4:46:d6:c1:18:67:71: e3:d3:24:c2:d1:8b:dc:7f:e2:4a:d1:cb:3c:5f:aa:25:11:c9: d6:3a:a4:9b:b6:f0:62:ea:15:59:7b:06:7d:23:30:69:37:f0: 57:ce:65:0e:98:ae:ed:6d:6b:92:e8:30:64:8d:61:5c:db:4c: 53:e2:3e:26 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBVDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC MzVERjExMC8GA1UEBRMoOEUyNjdBMzE1REY5MEU5OTVGRjRDRDRCMkNGOEZDNEMz MzI0QjJEQjAeFw0yNTA3MDEwODAxMjBaFw0yNTA3MDgwODAxMjBaMBgxFjAUBgNV BAMTDTY4NjM5NWQwLWQyOTMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDL0qM3s/FwClx1H6xmsIuk3x969pjzx3OVRiUfkYe4VRWkI1QFkFxH5rSek1Id VbIH6o+WW/OXLp0V2O2i1FFSSCb2aVoOQyJgp0Y6yc9S+/Qlz9zWSctAkI3BJMDR vsJWINkexcDNdSqV9RZxqyfhpwqKY+I24wVVEWB24S9YdS7Z/sBqnzDDawNpj2RB JNSIZ4z/3EDW8mLqKmV43vBvWFCgcuxmKk2/rQ49u4cbuD3NIxE1u2lxOlhRQ2Pz d5tLAamQQ/qOWrpP3L5pNlksl1vp9zXwrUcSrUArjs8dxJo483E1mH1eWePOTyfi D9xrAR0TuQrjTeGLSP1nRZoXAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUbwW5SUwU OkbtnJ95pYfN9JJTxA0wHwYDVR0jBBgwFoAUjiZ6MV35Dplf9M1LLPj8TDMkstsw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUIzNURGLzFFQTAxOTlDRDg5 RTExRUZCNDIxMkM1NkM0RjlBRTAyL2ppWjZNVjM1RHBsZjlNMUxMUGo4VERNa3N0 cy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvamlaNk1WMzVEcGxmOU0xTExQajhURE1rc3RzLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUIz NURGLzFFQTAxOTlDRDg5RTExRUZCNDIxMkM1NkM0RjlBRTAyL2ppWjZNVjM1RHBs ZjlNMUxMUGo4VERNa3N0cy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAKQMobzA+QxRab6NxK5QI14rvzSXpVPbqPNmoqfIRDiseAdzq6yZi0Y1 avGEsP/CuQgj9C6LxtrAeevg0QD3ZUOjSGRIDUEf10Kja39mj8hzJ4s/RlofOgSY uBnJ8iE2JiFdIMObl84JsLu4pcrYH8bw4qfIBLtfeOMWA3LQQRFgMo5Seni84E+y gpBewMlrQqEHX1Edv1hFlJL8JbF6/FzkCBpAOug4ezG/C2FUdw5CiRuASoDezT5d XQtDlfg/xEbWwRhncePTJMLRi9x/4krRyzxfqiURydY6pJu28GLqFVl7Bn0jMGk3 8FfOZQ6Yru1ta5LoMGSNYVzbTFPiPiY= -----END CERTIFICATE-----Generated at Wed Jul 2 05:48:01 2025 by rpki-client