$ rpki-client -vvf rpki.apnic.net/member_repository/A911E0B4/E96489AEAF3811EFA20DD013C4F9AE02/D9RDdSHbXAvJnkW1l1T_e2cfhvM.mft File: D9RDdSHbXAvJnkW1l1T_e2cfhvM.mft (raw, json) Hash identifier: 9MgkaRG+DMKS+7/jQ/1EI5CxdcuViBntVDt3Xn1ZdYs= Subject key identifier: FD:6F:DB:F7:EA:6F:48:BF:37:F9:E0:1F:F2:10:DD:9D:AC:F4:C5:97 Authority key identifier: 0F:D4:43:75:21:DB:5C:0B:C9:9E:45:B5:97:54:FF:7B:67:1F:86:F3 Certificate issuer: /CN=A911E0B4/serialNumber=0FD4437521DB5C0BC99E45B59754FF7B671F86F3 Certificate serial: 6C Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/D9RDdSHbXAvJnkW1l1T_e2cfhvM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911E0B4/E96489AEAF3811EFA20DD013C4F9AE02/D9RDdSHbXAvJnkW1l1T_e2cfhvM.mft Manifest number: 69 Signing time: Thu 19 Jun 2025 06:21:36 +0000 Manifest this update: Thu 19 Jun 2025 06:21:36 +0000 Manifest next update: Thu 26 Jun 2025 06:21:36 +0000 Files and hashes: 1: D9RDdSHbXAvJnkW1l1T_e2cfhvM.crl (hash: JzplPK3xNaCqAhsTpqnVzVBvR3xiuaje5wxL25JbINI=) 2: 5AF3ECBEAFBA11EF91955453C4F9AE02.roa (hash: x22vmPwJWZ5KhIsY5PtxJtvF9T7oNt50WfxUCDRwJlo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911E0B4/E96489AEAF3811EFA20DD013C4F9AE02/D9RDdSHbXAvJnkW1l1T_e2cfhvM.crl rsync://rpki.apnic.net/member_repository/A911E0B4/E96489AEAF3811EFA20DD013C4F9AE02/D9RDdSHbXAvJnkW1l1T_e2cfhvM.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/D9RDdSHbXAvJnkW1l1T_e2cfhvM.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 26 Jun 2025 06:21:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 108 (0x6c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911E0B4, serialNumber=0FD4437521DB5C0BC99E45B59754FF7B671F86F3 Validity Not Before: Jun 19 06:21:36 2025 GMT Not After : Jun 26 06:21:36 2025 GMT Subject: CN=6853ac70-fc2b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:a0:e4:09:37:09:af:62:53:82:2d:39:54:67: ce:2a:4a:19:bb:bf:11:23:16:68:df:04:ed:fb:97: 90:52:31:0a:9e:05:ae:68:e4:53:3d:fd:57:2d:92: e0:ef:78:1d:48:95:45:7f:8a:f1:01:d0:cf:73:af: 9f:4a:4d:fb:01:6b:2e:6b:3f:dc:60:16:69:d7:09: 1c:b6:c0:57:ac:a6:bb:6e:ef:6d:cb:5a:09:c1:c3: 86:24:30:17:ae:ce:71:c3:79:e3:8a:f2:a2:8c:7d: 87:f2:17:03:96:59:8f:78:7f:8e:ac:c9:60:a3:cf: fa:4d:0e:aa:29:8f:1c:74:ac:6d:f8:56:05:27:f3: 7d:b8:74:ed:8a:c6:b0:f4:80:30:dd:df:4e:31:27: d0:73:b0:66:9c:aa:18:d3:0c:35:65:c1:b1:0f:fc: 75:20:14:7c:de:a0:cd:d0:4a:09:c8:ae:73:40:e9: f1:c6:09:aa:dc:15:0f:33:2e:2a:97:29:9a:48:9a: 8f:bf:25:c0:e1:fd:19:b9:3b:c1:86:23:ea:a1:b3: fd:6c:29:b8:48:a8:1f:c8:83:cb:4c:03:77:ac:24: 7d:d3:20:25:45:f5:23:0d:91:65:36:77:f6:39:51: 04:b4:e4:d4:6c:af:f3:cb:9d:ef:ce:7c:12:bb:81: 47:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FD:6F:DB:F7:EA:6F:48:BF:37:F9:E0:1F:F2:10:DD:9D:AC:F4:C5:97 X509v3 Authority Key Identifier: keyid:0F:D4:43:75:21:DB:5C:0B:C9:9E:45:B5:97:54:FF:7B:67:1F:86:F3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911E0B4/E96489AEAF3811EFA20DD013C4F9AE02/D9RDdSHbXAvJnkW1l1T_e2cfhvM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/D9RDdSHbXAvJnkW1l1T_e2cfhvM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911E0B4/E96489AEAF3811EFA20DD013C4F9AE02/D9RDdSHbXAvJnkW1l1T_e2cfhvM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4e:35:b2:cf:ec:a4:b6:2d:4d:07:43:6e:de:f4:63:25:f5:72: 68:0c:a9:86:bd:d0:5a:9b:d8:58:d3:6f:db:e5:85:9b:65:fe: 6a:c7:02:14:e7:e1:c5:36:07:57:27:43:1a:bf:ad:4e:64:df: 34:6c:4f:f0:0c:5f:11:9e:73:fd:f9:11:24:34:e5:d0:71:c7: eb:ca:86:73:65:28:e6:92:ca:bc:22:c4:3f:3c:ee:58:34:d2: e5:44:7e:78:c5:9a:1a:03:44:f6:d3:7c:ff:a2:9b:5e:82:57: 17:0c:48:48:b8:d4:36:60:4b:04:02:1e:c2:66:80:00:a9:2a: e4:fe:77:98:cf:6a:f6:b9:e5:df:a6:1a:52:dc:eb:0d:0c:04: c9:2a:ca:21:28:1d:88:62:e6:73:71:f6:19:f5:56:10:cf:b1: 17:f4:08:8e:e4:83:02:3e:16:ea:ea:80:0a:5f:0b:21:9e:eb: 76:01:7e:1d:22:37:70:30:b5:c2:e8:1c:c4:f5:66:2a:a6:1c: 47:18:c8:78:23:c4:79:6a:79:30:1a:1c:9c:05:66:2a:fb:8a: bd:1f:79:4e:c2:85:f6:05:66:6a:de:a4:e2:b1:d5:db:f1:7b: 98:44:5d:f8:14:84:79:1d:c2:1b:9d:48:20:a8:87:e0:78:a1: 34:11:3b:08 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBbDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEx RTBCNDExMC8GA1UEBRMoMEZENDQzNzUyMURCNUMwQkM5OUU0NUI1OTc1NEZGN0I2 NzFGODZGMzAeFw0yNTA2MTkwNjIxMzZaFw0yNTA2MjYwNjIxMzZaMBgxFjAUBgNV BAMTDTY4NTNhYzcwLWZjMmIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDToOQJNwmvYlOCLTlUZ84qShm7vxEjFmjfBO37l5BSMQqeBa5o5FM9/VctkuDv eB1IlUV/ivEB0M9zr59KTfsBay5rP9xgFmnXCRy2wFesprtu723LWgnBw4YkMBeu znHDeeOK8qKMfYfyFwOWWY94f46syWCjz/pNDqopjxx0rG34VgUn8324dO2KxrD0 gDDd304xJ9BzsGacqhjTDDVlwbEP/HUgFHzeoM3QSgnIrnNA6fHGCarcFQ8zLiqX KZpImo+/JcDh/Rm5O8GGI+qhs/1sKbhIqB/Ig8tMA3esJH3TICVF9SMNkWU2d/Y5 UQS05NRsr/PLne/OfBK7gUd/AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU/W/b9+pv SL83+eAf8hDdnaz0xZcwHwYDVR0jBBgwFoAUD9RDdSHbXAvJnkW1l1T/e2cfhvMw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTFFMEI0L0U5NjQ4OUFFQUYz ODExRUZBMjBERDAxM0M0RjlBRTAyL0Q5UkRkU0hiWEF2Sm5rVzFsMVRfZTJjZmh2 TS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvRDlSRGRTSGJYQXZKbmtXMWwxVF9lMmNmaHZNLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTFF MEI0L0U5NjQ4OUFFQUYzODExRUZBMjBERDAxM0M0RjlBRTAyL0Q5UkRkU0hiWEF2 Sm5rVzFsMVRfZTJjZmh2TS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAE41ss/spLYtTQdDbt70YyX1cmgMqYa90Fqb2FjTb9vlhZtl/mrHAhTn 4cU2B1cnQxq/rU5k3zRsT/AMXxGec/35ESQ05dBxx+vKhnNlKOaSyrwixD887lg0 0uVEfnjFmhoDRPbTfP+im16CVxcMSEi41DZgSwQCHsJmgACpKuT+d5jPava55d+m GlLc6w0MBMkqyiEoHYhi5nNx9hn1VhDPsRf0CI7kgwI+FurqgApfCyGe63YBfh0i N3AwtcLoHMT1ZiqmHEcYyHgjxHlqeTAaHJwFZir7ir0feU7ChfYFZmrepOKx1dvx e5hEXfgUhHkdwhudSCCoh+B4oTQROwg= -----END CERTIFICATE-----Generated at Fri Jun 20 23:07:20 2025 by rpki-client