$ rpki-client -vvf rpki.apnic.net/member_repository/A91D671F/1EDC10BC171E11E8856BC443C4F9AE02/s8j34GTam1qm6nlgF-xg0okDeCo.mft File: s8j34GTam1qm6nlgF-xg0okDeCo.mft (raw, json) Hash identifier: Md+oRzKSrWfSQtN05b7U4O3Xmav/onP0DBOLmqQt4QA= Subject key identifier: 1B:DD:63:4F:6E:B4:4D:C7:BE:34:3B:D5:6D:5B:3A:E1:55:75:72:16 Authority key identifier: B3:C8:F7:E0:64:DA:9B:5A:A6:EA:79:60:17:EC:60:D2:89:03:78:2A Certificate issuer: /CN=A91D671F/serialNumber=B3C8F7E064DA9B5AA6EA796017EC60D28903782A Certificate serial: 162E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/s8j34GTam1qm6nlgF-xg0okDeCo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D671F/1EDC10BC171E11E8856BC443C4F9AE02/s8j34GTam1qm6nlgF-xg0okDeCo.mft Manifest number: 1619 Signing time: Sat 28 Jun 2025 16:36:10 +0000 Manifest this update: Sat 28 Jun 2025 16:36:09 +0000 Manifest next update: Sat 05 Jul 2025 16:36:09 +0000 Files and hashes: 1: s8j34GTam1qm6nlgF-xg0okDeCo.crl (hash: mDkHTlbqRHuatRPuBv5gkrHB3kkGgBQQcGxiRc8BV14=) 2: A135DDD4162211EC9B4B6F77C4F9AE02.roa (hash: CGg33H9/VkhPgziJXWcA6Qz7BN3epjzI9EHcIP++h+Y=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D671F/1EDC10BC171E11E8856BC443C4F9AE02/s8j34GTam1qm6nlgF-xg0okDeCo.crl rsync://rpki.apnic.net/member_repository/A91D671F/1EDC10BC171E11E8856BC443C4F9AE02/s8j34GTam1qm6nlgF-xg0okDeCo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/s8j34GTam1qm6nlgF-xg0okDeCo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 05 Jul 2025 16:36:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5678 (0x162e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D671F, serialNumber=B3C8F7E064DA9B5AA6EA796017EC60D28903782A Validity Not Before: Jun 28 16:36:09 2025 GMT Not After : Jul 5 16:36:09 2025 GMT Subject: CN=686019f9-bf90 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:c7:40:46:6b:89:0f:9f:6b:e9:7b:13:fe:49: 40:9d:2e:f9:6e:c2:17:dd:99:28:ed:32:68:22:10: bd:2f:08:d0:9f:60:2c:e8:20:1a:41:68:64:ff:c7: a4:a4:bc:81:72:f6:67:42:b4:81:35:3e:e6:1c:87: ba:56:76:b4:6f:2c:b8:1f:2f:a2:bd:72:45:0f:79: 53:7c:59:72:43:20:f5:eb:94:2c:bc:fe:42:46:30: 0f:d1:46:a8:bb:c1:1e:c6:97:1b:f9:c9:1e:ca:2a: 69:b3:f1:70:08:c6:0c:fd:30:98:6a:13:64:64:f3: 7f:5f:b9:85:f6:43:45:95:74:fd:21:9a:3f:73:30: 23:6c:96:39:b8:78:68:66:ea:a1:42:08:1f:62:f1: 94:da:f5:e4:1f:c9:28:00:89:61:e8:f9:51:b8:20: de:a1:cc:14:35:99:a0:e7:16:94:97:22:c8:1b:32: 96:31:75:fa:3e:20:88:02:db:43:67:0a:98:9d:13: b0:ea:22:cf:c9:51:cf:23:da:a3:83:20:98:bf:b9: 9a:84:dc:1d:52:62:ac:65:24:f3:95:2c:a6:dd:76: 0b:4e:68:57:cd:8d:50:0a:d4:33:48:53:ac:8e:62: a7:da:33:b7:18:1a:6d:39:05:a5:31:00:95:7f:97: 4e:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1B:DD:63:4F:6E:B4:4D:C7:BE:34:3B:D5:6D:5B:3A:E1:55:75:72:16 X509v3 Authority Key Identifier: keyid:B3:C8:F7:E0:64:DA:9B:5A:A6:EA:79:60:17:EC:60:D2:89:03:78:2A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D671F/1EDC10BC171E11E8856BC443C4F9AE02/s8j34GTam1qm6nlgF-xg0okDeCo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/s8j34GTam1qm6nlgF-xg0okDeCo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D671F/1EDC10BC171E11E8856BC443C4F9AE02/s8j34GTam1qm6nlgF-xg0okDeCo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7b:a9:fb:89:54:f0:24:a5:82:b4:62:ae:df:f5:8d:c6:52:c3: 59:78:e7:4b:8a:c0:fa:1d:31:03:66:58:99:ec:ee:da:97:c9: f1:e0:e8:08:7a:60:8c:19:dc:5a:81:a1:83:00:99:8c:02:16: 1e:20:20:66:02:40:06:0e:4b:fe:7e:89:86:5d:2a:f6:82:9f: 26:70:b9:b2:52:2d:1a:bd:79:27:e4:7e:0f:ad:f8:74:4a:30: 49:73:2f:b4:3a:c3:ab:d4:8d:c1:fd:17:3f:09:8f:91:25:72: 3a:23:04:20:e0:9a:d4:40:a2:95:8f:5d:5e:98:c2:5e:e7:e4: bf:a4:a8:da:a0:5d:fb:1d:93:89:d1:ca:cb:df:f1:17:d2:9f: 72:7e:ef:f9:83:e9:c3:f3:4d:2c:fe:e9:1a:c8:76:1b:d8:57: b5:52:c6:e2:e4:8a:e1:62:70:f5:b3:29:1b:44:5f:51:3c:70: 15:18:fb:e9:b6:71:51:e1:42:5f:30:c2:fb:3b:c6:e5:dc:e1: e7:26:6c:80:75:23:33:fa:4d:72:8f:64:43:c0:e0:c8:99:5b: f2:8b:b4:b4:d2:b0:0e:f8:c0:f2:10:9c:9b:62:a6:35:20:48: 08:ac:d9:18:2c:f3:bf:25:80:2f:77:f8:ac:e0:85:35:9c:2c: e5:b0:59:ae -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICFi4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDY3MUYxMTAvBgNVBAUTKEIzQzhGN0UwNjREQTlCNUFBNkVBNzk2MDE3RUM2MEQy ODkwMzc4MkEwHhcNMjUwNjI4MTYzNjA5WhcNMjUwNzA1MTYzNjA5WjAYMRYwFAYD VQQDEw02ODYwMTlmOS1iZjkwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1MdARmuJD59r6XsT/klAnS75bsIX3Zko7TJoIhC9LwjQn2As6CAaQWhk/8ek pLyBcvZnQrSBNT7mHIe6Vna0byy4Hy+ivXJFD3lTfFlyQyD165QsvP5CRjAP0Uao u8Eexpcb+ckeyipps/FwCMYM/TCYahNkZPN/X7mF9kNFlXT9IZo/czAjbJY5uHho ZuqhQggfYvGU2vXkH8koAIlh6PlRuCDeocwUNZmg5xaUlyLIGzKWMXX6PiCIAttD ZwqYnROw6iLPyVHPI9qjgyCYv7mahNwdUmKsZSTzlSym3XYLTmhXzY1QCtQzSFOs jmKn2jO3GBptOQWlMQCVf5dOHQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBvdY09u tE3HvjQ71W1bOuFVdXIWMB8GA1UdIwQYMBaAFLPI9+Bk2ptapup5YBfsYNKJA3gq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENjcxRi8xRURDMTBCQzE3 MUUxMUU4ODU2QkM0NDNDNEY5QUUwMi9zOGozNEdUYW0xcW02bmxnRi14ZzBva0Rl Q28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3M4ajM0R1RhbTFxbTZubGdGLXhnMG9rRGVDby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NjcxRi8xRURDMTBCQzE3MUUxMUU4ODU2QkM0NDNDNEY5QUUwMi9zOGozNEdUYW0x cW02bmxnRi14ZzBva0RlQ28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB7qfuJVPAkpYK0Yq7f9Y3GUsNZeOdLisD6HTEDZliZ7O7al8nx4OgI emCMGdxagaGDAJmMAhYeICBmAkAGDkv+fomGXSr2gp8mcLmyUi0avXkn5H4Prfh0 SjBJcy+0OsOr1I3B/Rc/CY+RJXI6IwQg4JrUQKKVj11emMJe5+S/pKjaoF37HZOJ 0crL3/EX0p9yfu/5g+nD800s/ukayHYb2Fe1Usbi5IrhYnD1sykbRF9RPHAVGPvp tnFR4UJfMML7O8bl3OHnJmyAdSMz+k1yj2RDwODImVvyi7S00rAO+MDyEJybYqY1 IEgIrNkYLPO/JYAvd/is4IU1nCzlsFmu -----END CERTIFICATE-----Generated at Sun Jun 29 20:13:37 2025 by rpki-client