$ rpki-client -vvf rpki.apnic.net/member_repository/A91D837B/1D7B63BCB99C11EF9638F769C4F9AE02/rQGfA1v_PzsXMjzbuxSgfV3o7DM.mft File: rQGfA1v_PzsXMjzbuxSgfV3o7DM.mft (raw, json) Hash identifier: yk89J3rbFpOKdWUZ6v0ogqrm7hq4Y7q85dZAPtcO1ck= Subject key identifier: 28:53:AD:55:E8:7E:6C:43:8C:A8:82:C8:17:B0:9E:29:BB:C6:CE:C1 Authority key identifier: AD:01:9F:03:5B:FF:3F:3B:17:32:3C:DB:BB:14:A0:7D:5D:E8:EC:33 Certificate issuer: /CN=A91D837B/serialNumber=AD019F035BFF3F3B17323CDBBB14A07D5DE8EC33 Certificate serial: 66 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rQGfA1v_PzsXMjzbuxSgfV3o7DM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D837B/1D7B63BCB99C11EF9638F769C4F9AE02/rQGfA1v_PzsXMjzbuxSgfV3o7DM.mft Manifest number: 66 Signing time: Sun 29 Jun 2025 06:03:42 +0000 Manifest this update: Sun 29 Jun 2025 06:03:41 +0000 Manifest next update: Sun 06 Jul 2025 06:03:41 +0000 Files and hashes: 1: rQGfA1v_PzsXMjzbuxSgfV3o7DM.crl (hash: sUdkMiLdea1vEgYRwRHVfvL9OZS5IleNaxUuKZ82uK0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D837B/1D7B63BCB99C11EF9638F769C4F9AE02/rQGfA1v_PzsXMjzbuxSgfV3o7DM.crl rsync://rpki.apnic.net/member_repository/A91D837B/1D7B63BCB99C11EF9638F769C4F9AE02/rQGfA1v_PzsXMjzbuxSgfV3o7DM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rQGfA1v_PzsXMjzbuxSgfV3o7DM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 06 Jul 2025 06:03:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 102 (0x66) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D837B, serialNumber=AD019F035BFF3F3B17323CDBBB14A07D5DE8EC33 Validity Not Before: Jun 29 06:03:41 2025 GMT Not After : Jul 6 06:03:41 2025 GMT Subject: CN=6860d73e-7cd8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:c8:f2:5a:97:2f:ea:59:57:2a:5d:4f:bb:e8: 02:de:4e:f1:9a:da:64:8e:d2:a4:62:0d:26:5e:e4: dc:47:e7:20:e6:42:52:ac:e6:19:cd:48:59:6b:ea: f1:48:c9:0d:a6:e0:3a:ae:48:c7:a5:5c:62:33:fb: 30:49:b1:1e:48:4b:27:46:5a:82:e7:be:e6:70:45: 9c:07:5c:7a:11:83:63:a7:e2:9b:bc:da:be:38:c5: 55:74:9c:95:4b:a9:ee:ad:53:7b:ca:bc:15:40:fb: 8d:15:19:d6:cc:07:2f:74:15:7b:48:0f:b3:58:8c: 14:d2:8e:27:0d:c0:5b:0a:1e:0a:bb:47:cd:03:aa: 61:a5:be:66:11:5a:cf:e3:f3:10:41:19:d9:7d:ea: 85:9b:84:1a:95:2e:31:50:4e:95:32:f7:9a:89:36: 76:03:6d:4a:93:11:4b:ed:66:f0:3b:c8:35:d0:05: ad:29:64:22:4a:05:db:11:31:ae:84:83:37:43:2b: 46:d0:1a:dd:d1:2e:44:69:cc:17:b5:40:c2:71:ba: e3:ea:e0:d7:e2:f0:5a:f8:74:92:fd:77:04:ee:8d: 4f:50:8d:85:87:15:f9:02:12:eb:98:40:eb:2c:a5: a1:4b:ef:d0:ae:f8:a6:cc:95:08:b8:2b:a7:0c:3e: 44:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 28:53:AD:55:E8:7E:6C:43:8C:A8:82:C8:17:B0:9E:29:BB:C6:CE:C1 X509v3 Authority Key Identifier: keyid:AD:01:9F:03:5B:FF:3F:3B:17:32:3C:DB:BB:14:A0:7D:5D:E8:EC:33 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D837B/1D7B63BCB99C11EF9638F769C4F9AE02/rQGfA1v_PzsXMjzbuxSgfV3o7DM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rQGfA1v_PzsXMjzbuxSgfV3o7DM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D837B/1D7B63BCB99C11EF9638F769C4F9AE02/rQGfA1v_PzsXMjzbuxSgfV3o7DM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 61:07:d2:6d:d6:3a:2e:f2:33:52:6b:13:95:65:4b:84:03:31: fb:b5:16:37:79:b6:38:ec:17:9d:f9:2b:c6:23:3e:6c:9d:1a: 72:66:b1:b3:90:20:11:37:e2:c6:af:c0:92:67:14:6d:7a:0f: 64:b1:c3:e3:6c:ea:63:1a:bb:b3:bc:56:00:c7:3c:a6:00:ce: 4b:5e:3a:8d:b7:a9:53:35:84:00:c2:20:c2:fe:7a:28:5b:4e: d2:61:fa:05:96:77:08:45:6a:ac:e0:5a:8a:b2:64:9c:e7:7e: c9:26:3a:f5:67:1b:cd:eb:20:6f:56:b6:7c:7b:25:12:3a:88: 44:65:b5:97:72:85:0c:e5:c8:9b:d3:b6:56:12:71:bb:05:cf: 69:8c:18:80:1a:89:b4:23:4a:87:4f:d3:38:83:33:7a:d4:c8: 3b:0b:55:c5:cf:bd:b6:93:e4:c0:0e:18:27:27:11:a3:58:8f: 3d:99:78:6a:e3:6c:f2:ee:d8:e7:6e:0d:a1:31:b5:e5:7d:5a: 46:20:da:80:26:89:e8:2e:6e:08:64:00:a9:10:72:b8:c5:07: 3c:aa:f0:8c:33:83:0c:54:7e:83:7b:37:04:c0:eb:29:6f:75: 33:9d:1e:90:21:4e:ba:37:ec:40:1b:4a:c4:fa:b4:d5:4b:08: 47:d5:90:14 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBZjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFE ODM3QjExMC8GA1UEBRMoQUQwMTlGMDM1QkZGM0YzQjE3MzIzQ0RCQkIxNEEwN0Q1 REU4RUMzMzAeFw0yNTA2MjkwNjAzNDFaFw0yNTA3MDYwNjAzNDFaMBgxFjAUBgNV BAMTDTY4NjBkNzNlLTdjZDgwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDsyPJaly/qWVcqXU+76ALeTvGa2mSO0qRiDSZe5NxH5yDmQlKs5hnNSFlr6vFI yQ2m4DquSMelXGIz+zBJsR5ISydGWoLnvuZwRZwHXHoRg2On4pu82r44xVV0nJVL qe6tU3vKvBVA+40VGdbMBy90FXtID7NYjBTSjicNwFsKHgq7R80DqmGlvmYRWs/j 8xBBGdl96oWbhBqVLjFQTpUy95qJNnYDbUqTEUvtZvA7yDXQBa0pZCJKBdsRMa6E gzdDK0bQGt3RLkRpzBe1QMJxuuPq4Nfi8Fr4dJL9dwTujU9QjYWHFfkCEuuYQOss paFL79Cu+KbMlQi4K6cMPkQHAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUKFOtVeh+ bEOMqILIF7CeKbvGzsEwHwYDVR0jBBgwFoAUrQGfA1v/PzsXMjzbuxSgfV3o7DMw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUQ4MzdCLzFEN0I2M0JDQjk5 QzExRUY5NjM4Rjc2OUM0RjlBRTAyL3JRR2ZBMXZfUHpzWE1qemJ1eFNnZlYzbzdE TS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvclFHZkExdl9QenNYTWp6YnV4U2dmVjNvN0RNLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUQ4 MzdCLzFEN0I2M0JDQjk5QzExRUY5NjM4Rjc2OUM0RjlBRTAyL3JRR2ZBMXZfUHpz WE1qemJ1eFNnZlYzbzdETS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAGEH0m3WOi7yM1JrE5VlS4QDMfu1Fjd5tjjsF535K8YjPmydGnJmsbOQ IBE34savwJJnFG16D2Sxw+Ns6mMau7O8VgDHPKYAzkteOo23qVM1hADCIML+eihb TtJh+gWWdwhFaqzgWoqyZJznfskmOvVnG83rIG9Wtnx7JRI6iERltZdyhQzlyJvT tlYScbsFz2mMGIAaibQjSodP0ziDM3rUyDsLVcXPvbaT5MAOGCcnEaNYjz2ZeGrj bPLu2OduDaExteV9WkYg2oAmiegubghkAKkQcrjFBzyq8IwzgwxUfoN7NwTA6ylv dTOdHpAhTro37EAbSsT6tNVLCEfVkBQ= -----END CERTIFICATE-----Generated at Tue Jul 1 01:03:10 2025 by rpki-client