$ rpki-client -vvf rpki.apnic.net/member_repository/A91C8DD5/D5A1A1C612A711E7ADB4DE4DC4F9AE02/1sP4E3joVAB4unmUQu7b7HgOD3s.mft File: 1sP4E3joVAB4unmUQu7b7HgOD3s.mft (raw, json) Hash identifier: 04HyGr/70nt3wB6+rMbW5k7hkod8Injh/ICoLCAAGVc= Subject key identifier: 93:CD:81:9D:8E:F9:16:47:0E:A6:6F:2F:4B:37:29:00:87:D1:1B:A1 Authority key identifier: D6:C3:F8:13:78:E8:54:00:78:BA:79:94:42:EE:DB:EC:78:0E:0F:7B Certificate issuer: /CN=A91C8DD5/serialNumber=D6C3F81378E8540078BA799442EEDBEC780E0F7B Certificate serial: 1B5D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1sP4E3joVAB4unmUQu7b7HgOD3s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C8DD5/D5A1A1C612A711E7ADB4DE4DC4F9AE02/1sP4E3joVAB4unmUQu7b7HgOD3s.mft Manifest number: 1B53 Signing time: Mon 30 Jun 2025 16:26:55 +0000 Manifest this update: Mon 30 Jun 2025 16:26:54 +0000 Manifest next update: Mon 07 Jul 2025 16:26:54 +0000 Files and hashes: 1: 1sP4E3joVAB4unmUQu7b7HgOD3s.crl (hash: +h76PniSAgl60g/4N72tBMCNuo8dsYyuZOABg23mwHI=) 2: 020A31F812B011E7A7C42661C4F9AE02.roa (hash: XaEt+47rBdBuIr1qA7i6V/F+AJaSo/IaiolwteWY5gM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C8DD5/D5A1A1C612A711E7ADB4DE4DC4F9AE02/1sP4E3joVAB4unmUQu7b7HgOD3s.crl rsync://rpki.apnic.net/member_repository/A91C8DD5/D5A1A1C612A711E7ADB4DE4DC4F9AE02/1sP4E3joVAB4unmUQu7b7HgOD3s.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1sP4E3joVAB4unmUQu7b7HgOD3s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Jul 2025 16:26:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7005 (0x1b5d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C8DD5, serialNumber=D6C3F81378E8540078BA799442EEDBEC780E0F7B Validity Not Before: Jun 30 16:26:54 2025 GMT Not After : Jul 7 16:26:54 2025 GMT Subject: CN=6862bacf-fb88 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:46:1a:89:bd:28:5e:ae:ee:6a:3a:20:ed:88: 9b:15:ae:3d:6d:9e:d3:94:c8:45:6b:31:a5:cb:a0: 29:75:ac:71:97:bd:3a:bb:4f:96:f2:84:b7:99:3f: 89:25:39:ae:ae:ab:e8:2f:77:7c:d4:03:c6:4a:e3: 6a:23:37:69:a3:7d:07:f4:a7:e8:b4:ab:98:24:21: 83:57:57:e4:c5:9d:72:23:53:38:51:f8:4a:3e:4f: 3f:73:7f:52:d4:d0:b4:19:d5:03:56:43:8e:25:3d: 9d:a9:f3:7b:fb:88:7a:52:16:a2:c4:72:ee:2e:87: 4f:1c:18:83:c8:39:f0:1b:a2:ad:f3:e7:5e:07:fb: 4a:48:ad:a5:a6:a9:13:70:44:0d:ef:00:1e:85:67: 63:2d:75:c5:16:f6:f7:b0:a7:aa:33:19:41:f3:4f: 0e:61:c0:6d:b3:a7:b3:bc:7c:e6:4d:b6:85:11:86: 1b:84:3f:19:2d:d2:51:9f:ed:bc:d0:d9:cf:7c:ba: 06:c9:49:1b:75:80:9a:4c:52:12:bd:ce:f1:88:10: c1:a9:02:90:c9:e8:fe:4d:42:30:72:06:66:34:b6: 19:90:22:64:73:8f:79:3e:2e:ee:70:0f:07:a2:bb: 0d:e1:da:b9:ae:c3:4f:13:e1:6c:b7:19:b4:80:8b: a1:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 93:CD:81:9D:8E:F9:16:47:0E:A6:6F:2F:4B:37:29:00:87:D1:1B:A1 X509v3 Authority Key Identifier: keyid:D6:C3:F8:13:78:E8:54:00:78:BA:79:94:42:EE:DB:EC:78:0E:0F:7B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C8DD5/D5A1A1C612A711E7ADB4DE4DC4F9AE02/1sP4E3joVAB4unmUQu7b7HgOD3s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1sP4E3joVAB4unmUQu7b7HgOD3s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C8DD5/D5A1A1C612A711E7ADB4DE4DC4F9AE02/1sP4E3joVAB4unmUQu7b7HgOD3s.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5a:59:4e:cd:b7:8c:9e:46:66:e2:3b:f9:4e:27:28:01:d0:db: f3:b5:b7:45:70:7b:2d:cd:ca:5d:03:9b:94:75:c2:5d:a4:01: d8:b6:a1:b9:e6:9f:05:cd:f2:be:f4:f6:7d:0a:b6:27:d4:92: e5:70:7d:c8:89:02:f1:4e:2e:12:e9:95:78:7d:6f:5d:9a:ab: 67:c7:29:53:d3:88:25:d3:03:51:58:5c:44:f6:92:52:ae:1b: 80:7e:5f:88:63:ce:eb:3d:14:af:0b:1a:0d:42:d1:1f:d1:a3: e2:35:cf:d3:93:aa:65:75:4f:d1:1d:e2:22:ec:c4:33:5e:25: 77:08:6f:58:b9:5f:b9:ce:6e:06:83:52:f8:ba:2e:8a:af:7d: e5:c1:cd:fb:6f:9b:59:5d:8e:e3:fb:bd:cb:4c:92:d5:16:d2: bb:53:b3:bb:64:51:19:89:12:b7:a7:d2:ae:9d:b4:9c:97:46: fe:fe:c5:a9:e6:4e:ab:98:94:82:b2:d7:9a:b0:fe:34:09:3d: 78:b3:02:05:25:43:4a:3a:b0:d7:e7:ba:12:52:b1:d2:58:15: 3b:6a:c5:c9:0d:09:4e:b6:b6:ca:42:b2:ed:f2:41:dc:84:6d: 8e:52:1e:ba:c8:76:87:c6:11:4c:cd:d9:28:ac:c4:85:cf:88: fc:79:1a:16 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICG10wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzhERDUxMTAvBgNVBAUTKEQ2QzNGODEzNzhFODU0MDA3OEJBNzk5NDQyRUVEQkVD NzgwRTBGN0IwHhcNMjUwNjMwMTYyNjU0WhcNMjUwNzA3MTYyNjU0WjAYMRYwFAYD VQQDEw02ODYyYmFjZi1mYjg4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5UYaib0oXq7uajog7YibFa49bZ7TlMhFazGly6Apdaxxl706u0+W8oS3mT+J JTmurqvoL3d81APGSuNqIzdpo30H9KfotKuYJCGDV1fkxZ1yI1M4UfhKPk8/c39S 1NC0GdUDVkOOJT2dqfN7+4h6UhaixHLuLodPHBiDyDnwG6Kt8+deB/tKSK2lpqkT cEQN7wAehWdjLXXFFvb3sKeqMxlB808OYcBts6ezvHzmTbaFEYYbhD8ZLdJRn+28 0NnPfLoGyUkbdYCaTFISvc7xiBDBqQKQyej+TUIwcgZmNLYZkCJkc495Pi7ucA8H orsN4dq5rsNPE+Fstxm0gIuhfwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJPNgZ2O +RZHDqZvL0s3KQCH0RuhMB8GA1UdIwQYMBaAFNbD+BN46FQAeLp5lELu2+x4Dg97 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDOERENS9ENUExQTFDNjEy QTcxMUU3QURCNERFNERDNEY5QUUwMi8xc1A0RTNqb1ZBQjR1bm1VUXU3YjdIZ09E M3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFzUDRFM2pvVkFCNHVubVVRdTdiN0hnT0Qzcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD OERENS9ENUExQTFDNjEyQTcxMUU3QURCNERFNERDNEY5QUUwMi8xc1A0RTNqb1ZB QjR1bm1VUXU3YjdIZ09EM3MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBaWU7Nt4yeRmbiO/lOJygB0NvztbdFcHstzcpdA5uUdcJdpAHYtqG5 5p8FzfK+9PZ9CrYn1JLlcH3IiQLxTi4S6ZV4fW9dmqtnxylT04gl0wNRWFxE9pJS rhuAfl+IY87rPRSvCxoNQtEf0aPiNc/Tk6pldU/RHeIi7MQzXiV3CG9YuV+5zm4G g1L4ui6Kr33lwc37b5tZXY7j+73LTJLVFtK7U7O7ZFEZiRK3p9KunbScl0b+/sWp 5k6rmJSCsteasP40CT14swIFJUNKOrDX57oSUrHSWBU7asXJDQlOtrbKQrLt8kHc hG2OUh66yHaHxhFMzdkorMSFz4j8eRoW -----END CERTIFICATE-----Generated at Wed Jul 2 11:47:11 2025 by rpki-client