$ rpki-client -vvf rpki.apnic.net/member_repository/A91BBCAF/0F61886A6B3211EE9B522053C4F9AE02/J7LmYpFIIhNrCWLbtbpEfCU_Uhs.mft File: J7LmYpFIIhNrCWLbtbpEfCU_Uhs.mft (raw, json) Hash identifier: MfVNM1xK+TPN2qAofqU2KtGkAPirnjMBeBo3rT1AOa8= Subject key identifier: 36:65:2B:5A:7D:A6:7F:50:81:61:56:54:FB:2B:97:A1:0E:F1:99:EF Authority key identifier: 27:B2:E6:62:91:48:22:13:6B:09:62:DB:B5:BA:44:7C:25:3F:52:1B Certificate issuer: /CN=A91BBCAF/serialNumber=27B2E662914822136B0962DBB5BA447C253F521B Certificate serial: 0147 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/J7LmYpFIIhNrCWLbtbpEfCU_Uhs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BBCAF/0F61886A6B3211EE9B522053C4F9AE02/J7LmYpFIIhNrCWLbtbpEfCU_Uhs.mft Manifest number: 0143 Signing time: Sun 29 Jun 2025 03:27:54 +0000 Manifest this update: Sun 29 Jun 2025 03:27:54 +0000 Manifest next update: Sun 06 Jul 2025 03:27:54 +0000 Files and hashes: 1: J7LmYpFIIhNrCWLbtbpEfCU_Uhs.crl (hash: uougBAa6ExsQzA92SUIopJ/twMjj8rz5KYyBmnngrtg=) 2: D2FA5DBE6C1E11EEBB9EAB7AC4F9AE02.roa (hash: VxCtnEbF2p63KawOX+Ec2pPAYcngxsY5VpNi8SAFc50=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BBCAF/0F61886A6B3211EE9B522053C4F9AE02/J7LmYpFIIhNrCWLbtbpEfCU_Uhs.crl rsync://rpki.apnic.net/member_repository/A91BBCAF/0F61886A6B3211EE9B522053C4F9AE02/J7LmYpFIIhNrCWLbtbpEfCU_Uhs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/J7LmYpFIIhNrCWLbtbpEfCU_Uhs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 06 Jul 2025 03:27:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 327 (0x147) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BBCAF, serialNumber=27B2E662914822136B0962DBB5BA447C253F521B Validity Not Before: Jun 29 03:27:54 2025 GMT Not After : Jul 6 03:27:54 2025 GMT Subject: CN=6860b2ba-e449 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:72:3c:38:eb:af:37:80:8d:2c:57:cb:eb:2a: 26:87:df:e3:67:e6:56:c9:86:36:1e:be:6d:ee:76: f0:ea:bd:14:63:23:7e:8b:54:3f:c1:27:6e:74:13: d9:0a:67:cb:29:e3:b3:ef:35:17:74:66:ea:65:85: a0:63:30:4b:18:dd:e3:6d:0b:b3:36:08:d9:81:78: 79:bb:64:9b:f4:d3:c5:ba:e7:cb:71:c9:5f:58:46: b8:04:71:2a:41:08:82:61:9b:bc:a4:ec:34:19:d4: 75:93:c2:d2:3c:d3:cd:08:78:d9:4d:0f:6d:3b:b5: 9e:10:a3:d7:49:03:1d:bb:ca:17:f5:cd:45:fd:08: db:de:6e:c7:b4:0f:00:9e:2b:87:91:a4:5b:15:77: 8b:2c:24:6f:f7:af:fd:c7:51:59:37:2f:46:ff:6d: 3b:09:6f:05:f8:17:a0:cb:01:81:db:a4:ab:c0:35: 12:e0:37:03:15:aa:29:11:4e:6a:65:56:f2:ef:38: b1:ae:5d:09:5e:6c:6d:53:e5:f9:cf:82:1a:61:7e: 6a:e9:86:a9:da:32:88:2b:8c:f3:70:04:7f:97:d5: 8f:f9:14:09:57:fc:69:de:ed:1c:db:d5:16:c6:15: 14:7b:3f:37:37:8d:1f:81:b5:65:a9:67:a8:42:08: 11:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 36:65:2B:5A:7D:A6:7F:50:81:61:56:54:FB:2B:97:A1:0E:F1:99:EF X509v3 Authority Key Identifier: keyid:27:B2:E6:62:91:48:22:13:6B:09:62:DB:B5:BA:44:7C:25:3F:52:1B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BBCAF/0F61886A6B3211EE9B522053C4F9AE02/J7LmYpFIIhNrCWLbtbpEfCU_Uhs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/J7LmYpFIIhNrCWLbtbpEfCU_Uhs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BBCAF/0F61886A6B3211EE9B522053C4F9AE02/J7LmYpFIIhNrCWLbtbpEfCU_Uhs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 28:23:09:d6:d8:84:29:51:8e:f2:95:5b:2c:cc:02:ea:ec:c1: 11:f3:6a:2a:a2:eb:15:29:b5:09:54:9e:31:01:45:f6:4c:c1: 15:2e:f1:1c:0d:60:09:eb:22:40:05:23:ae:83:e1:d8:e0:16: f1:c1:05:86:3d:62:f2:b6:d2:cc:91:b4:40:b4:50:b5:99:3c: 89:d2:5b:54:96:7d:ef:85:96:89:54:98:3d:c2:01:e7:3d:2a: 62:7f:c9:24:74:96:30:5c:ff:53:6e:ba:52:d0:7d:31:84:38: 36:cb:62:d6:07:e9:62:da:75:88:fe:56:63:76:f8:c4:98:1f: 2e:58:c1:cb:5c:f5:2e:9f:eb:8c:79:25:1a:7e:51:2a:e4:f9: 52:6d:bd:56:22:57:7c:4f:69:9a:2b:e6:da:97:31:5e:58:a9: 88:8f:37:88:09:4f:75:db:85:d3:10:73:ad:74:d6:82:e0:2e: 1c:b0:06:6f:e8:32:bb:74:84:a5:1f:0a:52:7b:dc:a5:5c:67: 5d:64:5a:6a:ba:ef:0c:c3:4e:e1:14:90:4a:c5:44:24:be:16: 4f:35:df:d1:a6:18:51:93:35:09:7f:62:cf:1d:fa:83:e2:9c: 5b:72:4a:b7:4c:cb:1f:5d:71:0a:88:31:54:b9:95:ec:c8:28: e3:09:db:29 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAUcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkJDQUYxMTAvBgNVBAUTKDI3QjJFNjYyOTE0ODIyMTM2QjA5NjJEQkI1QkE0NDdD MjUzRjUyMUIwHhcNMjUwNjI5MDMyNzU0WhcNMjUwNzA2MDMyNzU0WjAYMRYwFAYD VQQDEw02ODYwYjJiYS1lNDQ5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxXI8OOuvN4CNLFfL6yomh9/jZ+ZWyYY2Hr5t7nbw6r0UYyN+i1Q/wSdudBPZ CmfLKeOz7zUXdGbqZYWgYzBLGN3jbQuzNgjZgXh5u2Sb9NPFuufLcclfWEa4BHEq QQiCYZu8pOw0GdR1k8LSPNPNCHjZTQ9tO7WeEKPXSQMdu8oX9c1F/Qjb3m7HtA8A niuHkaRbFXeLLCRv96/9x1FZNy9G/207CW8F+BegywGB26SrwDUS4DcDFaopEU5q ZVby7zixrl0JXmxtU+X5z4IaYX5q6Yap2jKIK4zzcAR/l9WP+RQJV/xp3u0c29UW xhUUez83N40fgbVlqWeoQggRaQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDZlK1p9 pn9QgWFWVPsrl6EO8ZnvMB8GA1UdIwQYMBaAFCey5mKRSCITawli27W6RHwlP1Ib MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQkNBRi8wRjYxODg2QTZC MzIxMUVFOUI1MjIwNTNDNEY5QUUwMi9KN0xtWXBGSUloTnJDV0xidGJwRWZDVV9V aHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0o3TG1ZcEZJSWhOckNXTGJ0YnBFZkNVX1Vocy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC QkNBRi8wRjYxODg2QTZCMzIxMUVFOUI1MjIwNTNDNEY5QUUwMi9KN0xtWXBGSUlo TnJDV0xidGJwRWZDVV9VaHMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAoIwnW2IQpUY7ylVsszALq7MER82oqousVKbUJVJ4xAUX2TMEVLvEc DWAJ6yJABSOug+HY4BbxwQWGPWLyttLMkbRAtFC1mTyJ0ltUln3vhZaJVJg9wgHn PSpif8kkdJYwXP9TbrpS0H0xhDg2y2LWB+li2nWI/lZjdvjEmB8uWMHLXPUun+uM eSUaflEq5PlSbb1WIld8T2maK+balzFeWKmIjzeICU9124XTEHOtdNaC4C4csAZv 6DK7dISlHwpSe9ylXGddZFpquu8Mw07hFJBKxUQkvhZPNd/RphhRkzUJf2LPHfqD 4pxbckq3TMsfXXEKiDFUuZXsyCjjCdsp -----END CERTIFICATE-----Generated at Sun Jun 29 17:09:19 2025 by rpki-client