$ rpki-client -vvf rpki.apnic.net/member_repository/A91B65E6/87D1ED067A8711EB908EBD63C4F9AE02/iHgvgx82npb5eaJYXPJzyRbHtP0.mft File: iHgvgx82npb5eaJYXPJzyRbHtP0.mft (raw, json) Hash identifier: N2yaKly3Z/+LfBxhMN5Njrk+7zUBgeqxLF/0MSK0wZY= Subject key identifier: 51:15:67:61:D9:67:0E:33:01:FE:D6:94:1E:1D:55:00:6C:1E:8A:0D Authority key identifier: 88:78:2F:83:1F:36:9E:96:F9:79:A2:58:5C:F2:73:C9:16:C7:B4:FD Certificate issuer: /CN=A91B65E6/serialNumber=88782F831F369E96F979A2585CF273C916C7B4FD Certificate serial: 069A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iHgvgx82npb5eaJYXPJzyRbHtP0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B65E6/87D1ED067A8711EB908EBD63C4F9AE02/iHgvgx82npb5eaJYXPJzyRbHtP0.mft Manifest number: 068C Signing time: Sat 28 Jun 2025 21:53:08 +0000 Manifest this update: Sat 28 Jun 2025 21:53:07 +0000 Manifest next update: Sat 05 Jul 2025 21:53:07 +0000 Files and hashes: 1: iHgvgx82npb5eaJYXPJzyRbHtP0.crl (hash: ewqHFx/cKmOid4EuxHrI4F8NBU1LrZd9s6v8LxgjK0g=) 2: 0F425E96346711EFA663CD51C4F9AE02.roa (hash: QRognwJk9AvzC5yneK2dgTuODW0yL1x1QHdbXzDSYZ0=) 3: 2BC67A2A346711EF9EEB0F52C4F9AE02.roa (hash: JEn605s5uj7twYN8vhMjV/lhtaUfRkimlGOAUbH9hfo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B65E6/87D1ED067A8711EB908EBD63C4F9AE02/iHgvgx82npb5eaJYXPJzyRbHtP0.crl rsync://rpki.apnic.net/member_repository/A91B65E6/87D1ED067A8711EB908EBD63C4F9AE02/iHgvgx82npb5eaJYXPJzyRbHtP0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iHgvgx82npb5eaJYXPJzyRbHtP0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 05 Jul 2025 21:53:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1690 (0x69a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B65E6, serialNumber=88782F831F369E96F979A2585CF273C916C7B4FD Validity Not Before: Jun 28 21:53:07 2025 GMT Not After : Jul 5 21:53:07 2025 GMT Subject: CN=68606443-89fd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:4e:5e:a7:13:41:8f:39:c2:ff:d1:05:6a:d3: 9f:41:30:93:29:be:94:40:73:4b:e7:f1:61:70:3a: 9d:5d:f0:09:7c:3a:51:3c:4a:2a:44:98:6a:6c:4f: c2:f8:e1:8f:b9:04:2d:36:6c:a3:b0:6b:04:e0:6e: c3:8d:92:03:96:4c:e8:bb:f8:8f:80:c8:4c:01:9c: 1a:c8:c3:24:56:bb:7c:88:b3:27:b0:1b:1f:11:c7: 98:a4:95:48:41:47:a8:43:ed:38:50:e3:53:87:7a: dd:3a:dd:3d:5d:aa:02:ba:54:45:54:69:ee:b4:cc: 6a:2e:bf:21:06:b3:47:6b:e6:a6:1c:aa:79:b3:3c: ea:96:78:08:b2:c0:c0:ca:32:0e:7e:a4:01:a6:17: ac:67:e6:3a:a5:b5:2d:a6:c4:e6:90:87:da:1b:7d: 57:de:ef:d6:ff:08:3a:ee:4e:b0:b9:2b:80:da:98: 2a:2c:81:a4:9d:35:02:d5:f4:97:bd:df:6d:ee:ff: b1:e8:1f:74:54:4a:61:fa:47:ab:b2:96:a9:c8:bb: 56:ba:54:67:47:29:5e:e3:01:5e:85:28:af:19:27: ad:6f:3b:f7:25:85:c3:fd:c5:02:0e:f3:3e:10:a6: 79:f6:06:29:45:88:a9:e3:2d:39:d9:dd:7f:4f:ad: d8:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 51:15:67:61:D9:67:0E:33:01:FE:D6:94:1E:1D:55:00:6C:1E:8A:0D X509v3 Authority Key Identifier: keyid:88:78:2F:83:1F:36:9E:96:F9:79:A2:58:5C:F2:73:C9:16:C7:B4:FD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B65E6/87D1ED067A8711EB908EBD63C4F9AE02/iHgvgx82npb5eaJYXPJzyRbHtP0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iHgvgx82npb5eaJYXPJzyRbHtP0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B65E6/87D1ED067A8711EB908EBD63C4F9AE02/iHgvgx82npb5eaJYXPJzyRbHtP0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 34:34:6e:08:76:00:d5:0b:4b:d0:c1:14:96:3b:1f:00:9a:4f: 52:24:c9:d9:35:c7:db:8a:85:8b:9e:c8:31:9f:3f:2f:a5:96: 4c:98:c3:85:04:05:6c:6f:de:e7:54:9e:3e:35:e9:57:97:f6: 5f:f0:39:f7:9d:f9:51:c1:25:8c:c3:fd:71:24:67:e6:85:26: 02:5b:ea:f4:51:90:0d:b4:b2:ea:27:39:ef:8f:10:f5:6d:52: 33:e4:74:28:26:6b:63:aa:8f:19:2b:5b:8a:81:af:0a:ba:85: 0b:7e:7a:52:88:61:c6:f0:85:44:ce:1c:ed:28:00:86:bc:ef: f4:3c:9c:8f:49:c9:5e:14:02:6f:b6:65:a8:a6:46:f0:50:d6: ae:53:b8:cd:83:01:c9:6e:c2:78:63:f1:92:0c:da:bd:37:e0: b4:a8:43:2a:5a:39:71:86:31:f5:ca:f7:59:cd:39:7e:c4:a6: 08:c6:7d:f2:47:ca:32:cc:dd:8a:05:05:3f:65:52:fe:93:3e: 1a:a6:7f:3f:b4:d4:d4:4d:2b:93:2e:dc:68:be:19:c4:df:d1: fb:60:b1:9f:6b:67:93:ea:cf:68:19:a8:77:ce:91:09:eb:cc: 33:d7:dc:a5:d8:36:25:e6:d2:5d:c8:6b:41:49:8c:96:1a:81: a4:d6:8e:12 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBpowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjY1RTYxMTAvBgNVBAUTKDg4NzgyRjgzMUYzNjlFOTZGOTc5QTI1ODVDRjI3M0M5 MTZDN0I0RkQwHhcNMjUwNjI4MjE1MzA3WhcNMjUwNzA1MjE1MzA3WjAYMRYwFAYD VQQDEw02ODYwNjQ0My04OWZkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw05epxNBjznC/9EFatOfQTCTKb6UQHNL5/FhcDqdXfAJfDpRPEoqRJhqbE/C +OGPuQQtNmyjsGsE4G7DjZIDlkzou/iPgMhMAZwayMMkVrt8iLMnsBsfEceYpJVI QUeoQ+04UONTh3rdOt09XaoCulRFVGnutMxqLr8hBrNHa+amHKp5szzqlngIssDA yjIOfqQBphesZ+Y6pbUtpsTmkIfaG31X3u/W/wg67k6wuSuA2pgqLIGknTUC1fSX vd9t7v+x6B90VEph+kerspapyLtWulRnRyle4wFehSivGSetbzv3JYXD/cUCDvM+ EKZ59gYpRYip4y052d1/T63Y8QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFEVZ2HZ Zw4zAf7WlB4dVQBsHooNMB8GA1UdIwQYMBaAFIh4L4MfNp6W+XmiWFzyc8kWx7T9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNjVFNi84N0QxRUQwNjdB ODcxMUVCOTA4RUJENjNDNEY5QUUwMi9pSGd2Z3g4Mm5wYjVlYUpZWFBKenlSYkh0 UDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lIZ3ZneDgybnBiNWVhSllYUEp6eVJiSHRQMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NjVFNi84N0QxRUQwNjdBODcxMUVCOTA4RUJENjNDNEY5QUUwMi9pSGd2Z3g4Mm5w YjVlYUpZWFBKenlSYkh0UDAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA0NG4IdgDVC0vQwRSWOx8Amk9SJMnZNcfbioWLnsgxnz8vpZZMmMOF BAVsb97nVJ4+NelXl/Zf8Dn3nflRwSWMw/1xJGfmhSYCW+r0UZANtLLqJznvjxD1 bVIz5HQoJmtjqo8ZK1uKga8KuoULfnpSiGHG8IVEzhztKACGvO/0PJyPScleFAJv tmWopkbwUNauU7jNgwHJbsJ4Y/GSDNq9N+C0qEMqWjlxhjH1yvdZzTl+xKYIxn3y R8oyzN2KBQU/ZVL+kz4apn8/tNTUTSuTLtxovhnE39H7YLGfa2eT6s9oGah3zpEJ 68wz19yl2DYl5tJdyGtBSYyWGoGk1o4S -----END CERTIFICATE-----Generated at Mon Jun 30 15:48:38 2025 by rpki-client