$ rpki-client -vvf rpki.apnic.net/member_repository/A91FB434/E2C6267642D311E8BBDC0941C4F9AE02/1bScAI9ih18VJth200lAoJsOnW0.mft File: 1bScAI9ih18VJth200lAoJsOnW0.mft (raw, json) Hash identifier: dXcVHO4zd7H4TJLdZaAbuevyZALRojPtK0rWkFg2Hvo= Subject key identifier: 13:A8:D2:DE:AE:10:32:D9:8B:19:B4:68:01:62:21:AA:88:E5:26:6D Authority key identifier: D5:B4:9C:00:8F:62:87:5F:15:26:D8:76:D3:49:40:A0:9B:0E:9D:6D Certificate issuer: /CN=A91FB434/serialNumber=D5B49C008F62875F1526D876D34940A09B0E9D6D Certificate serial: 155C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1bScAI9ih18VJth200lAoJsOnW0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FB434/E2C6267642D311E8BBDC0941C4F9AE02/1bScAI9ih18VJth200lAoJsOnW0.mft Manifest number: 154A Signing time: Mon 30 Jun 2025 16:56:34 +0000 Manifest this update: Mon 30 Jun 2025 16:56:34 +0000 Manifest next update: Mon 07 Jul 2025 16:56:34 +0000 Files and hashes: 1: 1bScAI9ih18VJth200lAoJsOnW0.crl (hash: spzg4FWgRHMKlUqlqErw/ZQ16g6Z8UsYEwCXHF+K6Uc=) 2: EC796D6C42D411E88EC29742C4F9AE02.roa (hash: fttFYbQ36BNhaDw4KkKJxxNjWTmLtF2Lj6rIn6jBjOw=) 3: EB843B92329A11EE89CD8544C4F9AE02.roa (hash: 1pX1xgZiUndMELmZkTsenLOVPD7ayPzn9r1F8xRSN8U=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FB434/E2C6267642D311E8BBDC0941C4F9AE02/1bScAI9ih18VJth200lAoJsOnW0.crl rsync://rpki.apnic.net/member_repository/A91FB434/E2C6267642D311E8BBDC0941C4F9AE02/1bScAI9ih18VJth200lAoJsOnW0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1bScAI9ih18VJth200lAoJsOnW0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Jul 2025 16:56:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5468 (0x155c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FB434, serialNumber=D5B49C008F62875F1526D876D34940A09B0E9D6D Validity Not Before: Jun 30 16:56:34 2025 GMT Not After : Jul 7 16:56:34 2025 GMT Subject: CN=6862c1c2-2fa3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:74:df:e8:90:cb:89:b2:e3:ca:5c:09:d8:bb: b4:8d:fe:1f:9f:63:9b:d4:ca:7e:9b:4a:07:e6:41: 83:55:64:3a:2d:5b:11:0e:e9:1c:9b:c4:1e:e3:cd: 45:3c:ca:a8:cf:b8:55:27:5e:86:0f:78:e1:28:89: 25:6f:eb:31:09:cf:76:ff:e6:c2:1e:3f:50:19:d2: 38:b0:c3:d9:de:69:c1:26:bf:f9:98:ad:b3:53:6a: 13:f3:fb:95:1c:d5:c5:21:3a:63:17:7f:4c:20:d4: 06:69:fa:82:40:2c:b5:b6:d0:a2:18:80:cc:ed:be: 12:82:84:3b:1c:eb:ff:ce:57:7e:bf:ed:dd:0d:31: c8:22:bf:19:b8:18:8e:08:10:c2:38:02:d3:5f:54: a1:7d:2a:e3:f2:02:94:73:65:78:4c:9f:b0:68:9d: 29:72:9d:7c:1f:c1:71:b9:0e:1f:ec:13:9a:3f:fd: 43:b3:13:1b:74:58:ee:ea:07:e7:4a:ac:21:87:c4: c4:d9:c0:01:0c:3e:7e:a9:4a:6c:20:39:15:a7:a0: 9d:45:d3:95:8a:4e:7a:b7:e5:cb:92:bc:aa:ab:66: c3:f3:29:e3:aa:d1:9b:af:65:65:ed:ab:e8:78:ba: fa:be:01:f3:80:44:cd:0b:d3:27:ad:89:07:ac:94: 8f:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 13:A8:D2:DE:AE:10:32:D9:8B:19:B4:68:01:62:21:AA:88:E5:26:6D X509v3 Authority Key Identifier: keyid:D5:B4:9C:00:8F:62:87:5F:15:26:D8:76:D3:49:40:A0:9B:0E:9D:6D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FB434/E2C6267642D311E8BBDC0941C4F9AE02/1bScAI9ih18VJth200lAoJsOnW0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1bScAI9ih18VJth200lAoJsOnW0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FB434/E2C6267642D311E8BBDC0941C4F9AE02/1bScAI9ih18VJth200lAoJsOnW0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 33:0e:19:8f:59:7a:d7:31:05:89:2b:e4:dc:06:21:67:e8:24: 0b:f8:03:aa:e8:ff:45:d2:78:c7:cc:05:8e:f7:4b:83:ed:39: e9:e2:05:5a:fc:12:ce:00:14:82:df:43:1b:27:92:8b:9a:f7: f4:7c:4a:6d:5d:55:97:d0:76:c1:6a:92:54:db:77:3a:e8:12: d4:1f:b9:44:34:10:48:a1:e2:35:60:e0:f1:21:6d:14:a4:4e: 96:5d:83:72:7e:dc:89:dc:e8:0b:ae:98:64:39:9c:22:ad:cb: b1:bf:03:b1:b1:41:d0:dd:43:63:74:f1:10:91:44:99:4f:de: b5:2c:4a:f6:db:bc:4c:0e:07:5f:14:c3:17:2d:90:3f:23:61: f3:48:36:9d:36:76:38:50:6d:5f:52:1b:fe:46:7f:b7:4b:a2: c6:f1:0e:1a:67:83:6b:7c:c2:ae:44:02:e6:5f:a9:52:8d:66: b2:4f:6f:3f:84:32:13:3c:9e:41:c4:7f:26:20:ba:30:9e:9b: 52:45:19:2e:b7:70:f0:57:f4:98:98:16:80:89:af:27:df:49: 2b:a6:43:6a:c0:8a:26:8c:64:c6:f0:85:15:5f:1c:32:24:c4: 00:c6:87:85:39:97:1c:21:d2:51:08:c9:02:d0:a3:10:6a:f9: 74:ba:7a:71 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICFVwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkI0MzQxMTAvBgNVBAUTKEQ1QjQ5QzAwOEY2Mjg3NUYxNTI2RDg3NkQzNDk0MEEw OUIwRTlENkQwHhcNMjUwNjMwMTY1NjM0WhcNMjUwNzA3MTY1NjM0WjAYMRYwFAYD VQQDEw02ODYyYzFjMi0yZmEzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw3Tf6JDLibLjylwJ2Lu0jf4fn2Ob1Mp+m0oH5kGDVWQ6LVsRDukcm8Qe481F PMqoz7hVJ16GD3jhKIklb+sxCc92/+bCHj9QGdI4sMPZ3mnBJr/5mK2zU2oT8/uV HNXFITpjF39MINQGafqCQCy1ttCiGIDM7b4SgoQ7HOv/zld+v+3dDTHIIr8ZuBiO CBDCOALTX1ShfSrj8gKUc2V4TJ+waJ0pcp18H8FxuQ4f7BOaP/1DsxMbdFju6gfn Sqwhh8TE2cABDD5+qUpsIDkVp6CdRdOVik56t+XLkryqq2bD8ynjqtGbr2Vl7avo eLr6vgHzgETNC9MnrYkHrJSPTwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBOo0t6u EDLZixm0aAFiIaqI5SZtMB8GA1UdIwQYMBaAFNW0nACPYodfFSbYdtNJQKCbDp1t MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQjQzNC9FMkM2MjY3NjQy RDMxMUU4QkJEQzA5NDFDNEY5QUUwMi8xYlNjQUk5aWgxOFZKdGgyMDBsQW9Kc09u VzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFiU2NBSTlpaDE4Vkp0aDIwMGxBb0pzT25XMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG QjQzNC9FMkM2MjY3NjQyRDMxMUU4QkJEQzA5NDFDNEY5QUUwMi8xYlNjQUk5aWgx OFZKdGgyMDBsQW9Kc09uVzAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAzDhmPWXrXMQWJK+TcBiFn6CQL+AOq6P9F0njHzAWO90uD7Tnp4gVa /BLOABSC30MbJ5KLmvf0fEptXVWX0HbBapJU23c66BLUH7lENBBIoeI1YODxIW0U pE6WXYNyftyJ3OgLrphkOZwircuxvwOxsUHQ3UNjdPEQkUSZT961LEr227xMDgdf FMMXLZA/I2HzSDadNnY4UG1fUhv+Rn+3S6LG8Q4aZ4NrfMKuRALmX6lSjWayT28/ hDITPJ5BxH8mILownptSRRkut3DwV/SYmBaAia8n30krpkNqwIomjGTG8IUVXxwy JMQAxoeFOZccIdJRCMkC0KMQavl0unpx -----END CERTIFICATE-----Generated at Wed Jul 2 15:20:57 2025 by rpki-client