$ rpki-client -vvf rpki.apnic.net/member_repository/A91CE6C5/E8266020C6C011EC8AB7553FC4F9AE02/1Sj61Lh2q_twrziSIg8pPheRtrw.mft File: 1Sj61Lh2q_twrziSIg8pPheRtrw.mft (raw, json) Hash identifier: 3FYwoMy4ATV3SbyDGGII9ZRh0IJxe9Iw9RZjj0tHhjE= Subject key identifier: 3D:C6:28:38:A0:29:2B:CF:1B:B0:66:08:65:E0:DB:32:74:A8:6D:5F Authority key identifier: D5:28:FA:D4:B8:76:AB:FB:70:AF:38:92:22:0F:29:3E:17:91:B6:BC Certificate issuer: /CN=A91CE6C5/serialNumber=D528FAD4B876ABFB70AF3892220F293E1791B6BC Certificate serial: 034F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1Sj61Lh2q_twrziSIg8pPheRtrw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CE6C5/E8266020C6C011EC8AB7553FC4F9AE02/1Sj61Lh2q_twrziSIg8pPheRtrw.mft Manifest number: 0343 Signing time: Thu 03 Jul 2025 01:25:51 +0000 Manifest this update: Thu 03 Jul 2025 01:25:51 +0000 Manifest next update: Thu 10 Jul 2025 01:25:51 +0000 Files and hashes: 1: 1Sj61Lh2q_twrziSIg8pPheRtrw.crl (hash: kDkQGHpMDzr9i3y+9CW1aG5PxHUxtXoqbIHw3+EZDoU=) 2: C0E56FB2D56B11EFB540FB53C4F9AE02.roa (hash: WjUHxTEWTF20WZmvNCerm3WpHrjM2Bec4x3sz7dnvmU=) 3: A0841A68D0D511EC81001E73C4F9AE02.roa (hash: 28rk2f2SK8fYlNSOWgKUvbvWyh9sktvms5gVEW96hEM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CE6C5/E8266020C6C011EC8AB7553FC4F9AE02/1Sj61Lh2q_twrziSIg8pPheRtrw.crl rsync://rpki.apnic.net/member_repository/A91CE6C5/E8266020C6C011EC8AB7553FC4F9AE02/1Sj61Lh2q_twrziSIg8pPheRtrw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1Sj61Lh2q_twrziSIg8pPheRtrw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 01:25:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 847 (0x34f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CE6C5, serialNumber=D528FAD4B876ABFB70AF3892220F293E1791B6BC Validity Not Before: Jul 3 01:25:51 2025 GMT Not After : Jul 10 01:25:51 2025 GMT Subject: CN=6865dc1f-0898 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:b9:bf:6b:b3:84:13:60:b6:66:c2:e1:06:64: 7c:e7:88:b1:c8:67:fb:7a:f0:04:ef:72:b7:0d:46: aa:36:c2:ec:db:d6:54:83:08:c2:ab:cf:af:23:7d: ab:eb:37:8f:49:33:5c:4c:12:30:05:6e:d1:06:03: 17:d2:e3:19:7b:32:3e:eb:a0:c5:c2:e8:1b:94:f5: 9d:32:43:4d:18:69:dd:09:3c:ca:de:83:2f:de:69: 95:cc:06:1e:4e:ed:ad:8b:95:9e:01:ad:9b:5e:e8: 9a:48:7b:c1:6e:e0:8f:ea:42:9d:58:e4:32:f0:74: 81:41:be:5c:9d:47:0e:28:1b:99:b2:c7:a2:55:b6: 79:d0:3d:c1:aa:71:23:a0:dc:d1:e5:8d:44:4a:d6: 11:bf:a8:83:64:a5:33:45:72:d4:5c:a1:3e:eb:79: e4:7b:4b:ba:ed:e5:c2:6f:f6:c7:89:2a:99:92:48: 1d:b4:3e:3b:4b:94:9b:b6:1e:51:61:88:10:1f:c5: 47:79:ce:8f:9a:0a:1b:0d:5f:8e:9f:dd:42:75:0c: a9:ee:eb:b5:7e:93:4a:75:a2:f7:ee:85:af:b7:65: d2:fa:cc:15:23:41:6c:d7:7d:f2:67:18:36:4f:6d: 16:81:af:c5:91:70:65:65:01:ed:48:a5:c9:ab:90: 5d:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3D:C6:28:38:A0:29:2B:CF:1B:B0:66:08:65:E0:DB:32:74:A8:6D:5F X509v3 Authority Key Identifier: keyid:D5:28:FA:D4:B8:76:AB:FB:70:AF:38:92:22:0F:29:3E:17:91:B6:BC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CE6C5/E8266020C6C011EC8AB7553FC4F9AE02/1Sj61Lh2q_twrziSIg8pPheRtrw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1Sj61Lh2q_twrziSIg8pPheRtrw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CE6C5/E8266020C6C011EC8AB7553FC4F9AE02/1Sj61Lh2q_twrziSIg8pPheRtrw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 27:4c:8f:b4:c1:78:47:23:69:97:1f:c1:8f:d0:84:f0:c4:f1: e8:c1:56:00:a9:fc:d6:cf:1a:82:69:4c:d0:b5:11:a9:3e:64: 73:5a:1b:64:aa:cd:b4:d3:97:a5:f8:39:e0:ee:d8:ca:d4:ec: 9e:61:27:2b:66:e1:34:dd:58:00:ec:53:ac:01:cc:ca:4b:53: 73:03:43:41:78:ec:fb:61:76:dc:9b:99:4e:03:c2:56:d2:d7: f1:36:cc:b7:ab:d4:db:eb:93:24:70:1b:92:bf:04:a2:3e:fb: 95:de:9f:15:53:51:0e:67:c5:05:cc:5e:33:f1:2f:67:f9:f9: e5:6f:b2:bf:48:fb:6a:2f:38:ad:af:7c:53:26:6c:d9:63:e1: fe:94:f9:33:c2:1e:b9:5e:d1:f5:78:d4:0d:08:19:92:b5:09: b8:e4:b3:59:43:43:0f:d8:fe:b4:6e:75:bb:7c:02:c6:de:c9: 68:cd:72:47:a4:d2:d5:47:3a:e1:e5:48:83:35:65:16:9b:f3: 97:50:9e:31:63:ba:81:d4:77:68:64:92:4f:d8:78:36:77:e4: f6:c1:70:ea:ba:d7:3d:0e:88:53:f2:d1:03:b5:50:39:fa:bc: f5:23:e8:b6:e1:ca:cd:79:57:2e:f4:89:bb:7c:94:89:96:6a: b6:91:32:5f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA08wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0U2QzUxMTAvBgNVBAUTKEQ1MjhGQUQ0Qjg3NkFCRkI3MEFGMzg5MjIyMEYyOTNF MTc5MUI2QkMwHhcNMjUwNzAzMDEyNTUxWhcNMjUwNzEwMDEyNTUxWjAYMRYwFAYD VQQDEw02ODY1ZGMxZi0wODk4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2bm/a7OEE2C2ZsLhBmR854ixyGf7evAE73K3DUaqNsLs29ZUgwjCq8+vI32r 6zePSTNcTBIwBW7RBgMX0uMZezI+66DFwugblPWdMkNNGGndCTzK3oMv3mmVzAYe Tu2ti5WeAa2bXuiaSHvBbuCP6kKdWOQy8HSBQb5cnUcOKBuZsseiVbZ50D3BqnEj oNzR5Y1EStYRv6iDZKUzRXLUXKE+63nke0u67eXCb/bHiSqZkkgdtD47S5Sbth5R YYgQH8VHec6PmgobDV+On91CdQyp7uu1fpNKdaL37oWvt2XS+swVI0Fs133yZxg2 T20Wga/FkXBlZQHtSKXJq5BdPwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFD3GKDig KSvPG7BmCGXg2zJ0qG1fMB8GA1UdIwQYMBaAFNUo+tS4dqv7cK84kiIPKT4Xkba8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRTZDNS9FODI2NjAyMEM2 QzAxMUVDOEFCNzU1M0ZDNEY5QUUwMi8xU2o2MUxoMnFfdHdyemlTSWc4cFBoZVJ0 cncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFTajYxTGgycV90d3J6aVNJZzhwUGhlUnRydy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RTZDNS9FODI2NjAyMEM2QzAxMUVDOEFCNzU1M0ZDNEY5QUUwMi8xU2o2MUxoMnFf dHdyemlTSWc4cFBoZVJ0cncubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAnTI+0wXhHI2mXH8GP0ITwxPHowVYAqfzWzxqCaUzQtRGpPmRzWhtk qs2005el+Dng7tjK1OyeYScrZuE03VgA7FOsAczKS1NzA0NBeOz7YXbcm5lOA8JW 0tfxNsy3q9Tb65MkcBuSvwSiPvuV3p8VU1EOZ8UFzF4z8S9n+fnlb7K/SPtqLzit r3xTJmzZY+H+lPkzwh65XtH1eNQNCBmStQm45LNZQ0MP2P60bnW7fALG3slozXJH pNLVRzrh5UiDNWUWm/OXUJ4xY7qB1HdoZJJP2Hg2d+T2wXDqutc9DohT8tEDtVA5 +rz1I+i24crNeVcu9Im7fJSJlmq2kTJf -----END CERTIFICATE-----Generated at Thu Jul 3 14:37:14 2025 by rpki-client