$ rpki-client -vvf rpki.apnic.net/member_repository/A91DDDA7/3C95319C8D5411EB9840E05FC4F9AE02/bj9qTL0sdlG0kOtkkEu_8fRiAdU.mft File: bj9qTL0sdlG0kOtkkEu_8fRiAdU.mft (raw, json) Hash identifier: IrXPC5S/N1e8cxNv2a2c+ZwzugdpkDyiaKjWydJnnOw= Subject key identifier: CB:F9:1A:1B:82:96:A6:D0:91:E9:61:35:17:BB:11:2C:BD:50:E5:1C Authority key identifier: 6E:3F:6A:4C:BD:2C:76:51:B4:90:EB:64:90:4B:BF:F1:F4:62:01:D5 Certificate issuer: /CN=A91DDDA7/serialNumber=6E3F6A4CBD2C7651B490EB64904BBFF1F46201D5 Certificate serial: 0664 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/bj9qTL0sdlG0kOtkkEu_8fRiAdU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DDDA7/3C95319C8D5411EB9840E05FC4F9AE02/bj9qTL0sdlG0kOtkkEu_8fRiAdU.mft Manifest number: 065E Signing time: Wed 02 Jul 2025 20:31:31 +0000 Manifest this update: Wed 02 Jul 2025 20:31:31 +0000 Manifest next update: Wed 09 Jul 2025 20:31:30 +0000 Files and hashes: 1: bj9qTL0sdlG0kOtkkEu_8fRiAdU.crl (hash: 8WhVtzFxUWHcnvnBL+w7zU5GtQb4+h0E7G2zmD7ylhc=) 2: 815931708D5411EB9DA31875C4F9AE02.roa (hash: LyuoMJXz1NyXM9pSNW11Fa6fRcMflVH6LhgfRij1kVg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DDDA7/3C95319C8D5411EB9840E05FC4F9AE02/bj9qTL0sdlG0kOtkkEu_8fRiAdU.crl rsync://rpki.apnic.net/member_repository/A91DDDA7/3C95319C8D5411EB9840E05FC4F9AE02/bj9qTL0sdlG0kOtkkEu_8fRiAdU.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/bj9qTL0sdlG0kOtkkEu_8fRiAdU.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 20:31:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1636 (0x664) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DDDA7, serialNumber=6E3F6A4CBD2C7651B490EB64904BBFF1F46201D5 Validity Not Before: Jul 2 20:31:31 2025 GMT Not After : Jul 9 20:31:30 2025 GMT Subject: CN=68659723-b888 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:87:b1:49:37:64:1a:84:13:60:05:4f:fb:46: dc:dc:00:0b:a7:de:40:c3:3c:88:87:59:85:9d:49: 3d:5c:89:7e:5f:51:a7:8a:1f:ec:fa:92:18:e1:5e: 46:2c:b5:88:6b:8a:e0:2a:5a:2e:de:85:b5:12:26: 5b:57:9c:22:b0:1c:37:4e:e0:8e:7a:40:b4:b7:59: 1d:4b:62:61:ee:22:ab:47:ab:57:f9:8a:30:80:41: c7:54:22:99:30:29:f7:48:15:ab:7e:40:d8:5e:9e: 72:59:26:6e:1b:60:bf:4d:d1:9a:ea:97:e7:eb:f6: cd:6a:a3:69:c7:ce:36:47:bb:d3:76:0d:30:60:4b: d9:4f:d9:11:26:98:e4:5a:9e:92:05:cc:c8:80:46: b7:04:c6:68:c3:93:54:18:d9:5d:be:2d:90:32:09: 42:c0:37:fa:4f:ea:3b:d2:73:54:b1:cb:f8:af:33: 02:dc:46:80:ed:ab:8d:7c:9f:e3:03:bd:24:26:f7: 23:b4:f7:c7:e2:de:65:2b:0c:3a:56:4a:bf:04:53: d6:bd:36:c6:a6:a6:29:a7:c0:2a:66:fe:2c:7c:c9: a7:b3:5a:c8:78:7d:cf:9d:27:82:aa:c9:7a:d0:f9: f4:71:2d:21:06:68:76:86:2d:08:fb:b1:e2:16:fa: f9:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CB:F9:1A:1B:82:96:A6:D0:91:E9:61:35:17:BB:11:2C:BD:50:E5:1C X509v3 Authority Key Identifier: keyid:6E:3F:6A:4C:BD:2C:76:51:B4:90:EB:64:90:4B:BF:F1:F4:62:01:D5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DDDA7/3C95319C8D5411EB9840E05FC4F9AE02/bj9qTL0sdlG0kOtkkEu_8fRiAdU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/bj9qTL0sdlG0kOtkkEu_8fRiAdU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DDDA7/3C95319C8D5411EB9840E05FC4F9AE02/bj9qTL0sdlG0kOtkkEu_8fRiAdU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 67:6f:08:27:ce:b8:89:b1:5d:1f:09:ac:21:14:b1:29:00:93: c9:7f:bd:49:6e:32:2e:11:f9:b0:4d:ba:bb:05:fe:c3:e7:bd: 9f:dc:f3:5e:bf:5a:45:8b:ef:03:df:45:12:92:dd:d7:3f:b8: 9e:a4:6d:b7:9c:56:35:83:7c:e1:a5:c9:ca:87:c4:5b:2f:88: ce:d3:e1:f5:0c:62:7b:c4:40:59:7a:e5:aa:d9:4e:60:39:26: 79:32:1d:f3:63:28:05:9b:85:cc:44:08:43:f5:b8:9a:51:7d: 3d:e1:16:dd:94:51:c2:af:9d:1d:5d:5c:e2:b3:d6:76:fb:0e: e6:61:15:1c:84:ec:8a:84:c9:ce:8b:c4:8c:a1:03:ae:b7:f9: 62:9e:08:44:1f:83:94:30:f3:fa:2c:8f:b8:75:b9:3d:38:9c: c6:d8:81:08:97:09:85:b4:07:e2:e2:26:8f:27:d3:98:a7:6f: b3:8a:eb:05:d1:a6:d1:f0:59:9e:9c:c6:31:e8:db:05:a7:67: d1:99:a2:4e:b2:f7:d4:c8:30:fe:89:30:5a:e2:f2:aa:44:b2: e8:b5:2b:7f:c0:03:75:b9:04:65:43:77:66:46:95:7e:1b:43: fd:7c:10:eb:dd:7a:9e:de:aa:7b:46:6f:0c:c9:26:73:26:ae: 9c:65:a1:90 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBmQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REREQTcxMTAvBgNVBAUTKDZFM0Y2QTRDQkQyQzc2NTFCNDkwRUI2NDkwNEJCRkYx RjQ2MjAxRDUwHhcNMjUwNzAyMjAzMTMxWhcNMjUwNzA5MjAzMTMwWjAYMRYwFAYD VQQDEw02ODY1OTcyMy1iODg4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3IexSTdkGoQTYAVP+0bc3AALp95AwzyIh1mFnUk9XIl+X1Gnih/s+pIY4V5G LLWIa4rgKlou3oW1EiZbV5wisBw3TuCOekC0t1kdS2Jh7iKrR6tX+YowgEHHVCKZ MCn3SBWrfkDYXp5yWSZuG2C/TdGa6pfn6/bNaqNpx842R7vTdg0wYEvZT9kRJpjk Wp6SBczIgEa3BMZow5NUGNldvi2QMglCwDf6T+o70nNUscv4rzMC3EaA7auNfJ/j A70kJvcjtPfH4t5lKww6Vkq/BFPWvTbGpqYpp8AqZv4sfMmns1rIeH3PnSeCqsl6 0Pn0cS0hBmh2hi0I+7HiFvr52wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMv5GhuC lqbQkelhNRe7ESy9UOUcMB8GA1UdIwQYMBaAFG4/aky9LHZRtJDrZJBLv/H0YgHV MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERERBNy8zQzk1MzE5QzhE NTQxMUVCOTg0MEUwNUZDNEY5QUUwMi9iajlxVEwwc2RsRzBrT3Rra0V1XzhmUmlB ZFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2JqOXFUTDBzZGxHMGtPdGtrRXVfOGZSaUFkVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE RERBNy8zQzk1MzE5QzhENTQxMUVCOTg0MEUwNUZDNEY5QUUwMi9iajlxVEwwc2Rs RzBrT3Rra0V1XzhmUmlBZFUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBnbwgnzriJsV0fCawhFLEpAJPJf71JbjIuEfmwTbq7Bf7D572f3PNe v1pFi+8D30USkt3XP7iepG23nFY1g3zhpcnKh8RbL4jO0+H1DGJ7xEBZeuWq2U5g OSZ5Mh3zYygFm4XMRAhD9biaUX094RbdlFHCr50dXVzis9Z2+w7mYRUchOyKhMnO i8SMoQOut/linghEH4OUMPP6LI+4dbk9OJzG2IEIlwmFtAfi4iaPJ9OYp2+ziusF 0abR8FmenMYx6NsFp2fRmaJOsvfUyDD+iTBa4vKqRLLotSt/wAN1uQRlQ3dmRpV+ G0P9fBDr3Xqe3qp7Rm8MySZzJq6cZaGQ -----END CERTIFICATE-----Generated at Fri Jul 4 13:36:44 2025 by rpki-client