$ rpki-client -vvf rpki.apnic.net/member_repository/A91288D9/BA59535E425711EA8F838A43C4F9AE02/VB4KZv5g86rAJQLO8eSOYnpi90E.mft File: VB4KZv5g86rAJQLO8eSOYnpi90E.mft (raw, json) Hash identifier: YInMEIayphHz6aYvdP6MBxaE4Ky1Y93GliAjEwOYjbs= Subject key identifier: 01:69:F6:B1:CF:5C:95:DC:E1:DB:82:19:98:C7:C3:48:8C:94:A2:C0 Authority key identifier: 54:1E:0A:66:FE:60:F3:AA:C0:25:02:CE:F1:E4:8E:62:7A:62:F7:41 Certificate issuer: /CN=A91288D9/serialNumber=541E0A66FE60F3AAC02502CEF1E48E627A62F741 Certificate serial: 0B15 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VB4KZv5g86rAJQLO8eSOYnpi90E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91288D9/BA59535E425711EA8F838A43C4F9AE02/VB4KZv5g86rAJQLO8eSOYnpi90E.mft Manifest number: 0B0E Signing time: Wed 18 Jun 2025 19:09:47 +0000 Manifest this update: Wed 18 Jun 2025 19:09:46 +0000 Manifest next update: Wed 25 Jun 2025 19:09:46 +0000 Files and hashes: 1: VB4KZv5g86rAJQLO8eSOYnpi90E.crl (hash: 1QxfKpE6O9+fS9HcjR1Okfl7eusyUrVUBmLLBbVqUgQ=) 2: E0FCE614425811EAADEA3B45C4F9AE02.roa (hash: uo0CqqDq1LW4OE16oHJh3v7l3D+UDenz/raY8uxIHFA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91288D9/BA59535E425711EA8F838A43C4F9AE02/VB4KZv5g86rAJQLO8eSOYnpi90E.crl rsync://rpki.apnic.net/member_repository/A91288D9/BA59535E425711EA8F838A43C4F9AE02/VB4KZv5g86rAJQLO8eSOYnpi90E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VB4KZv5g86rAJQLO8eSOYnpi90E.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 25 Jun 2025 19:09:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2837 (0xb15) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91288D9, serialNumber=541E0A66FE60F3AAC02502CEF1E48E627A62F741 Validity Not Before: Jun 18 19:09:46 2025 GMT Not After : Jun 25 19:09:46 2025 GMT Subject: CN=68530efa-4e7c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f2:6e:b5:bb:76:04:aa:c3:c4:36:85:68:95:4c: 2d:d8:5b:14:f8:d2:50:32:9b:74:ac:5d:45:77:d1: 06:22:53:61:90:5c:01:23:2b:e7:fb:51:6f:bf:e4: 3b:84:d8:c6:a1:f5:c2:0a:43:9e:8f:4d:51:72:9d: 3a:f4:b8:29:96:97:09:31:8e:d7:43:84:8b:75:83: 57:5b:3d:a4:65:8d:33:b9:a1:8b:5d:c1:cf:3b:38: d0:77:c0:e4:47:d3:cb:bf:ed:a0:5c:01:47:b1:a1: c7:ba:09:63:50:3e:89:2f:27:d8:0f:39:b2:26:8e: 7b:c6:3e:38:63:53:c7:da:27:db:31:1e:0b:8c:79: de:d2:6e:9c:08:df:9d:04:cc:7e:dc:2a:b6:22:1f: 81:00:ec:9a:8a:d4:85:3b:cf:f0:f2:b3:1b:fb:6e: 57:42:29:04:a4:6f:e3:81:b9:6b:8a:70:db:d6:24: 0f:9e:4f:91:ae:18:92:3e:59:97:36:0c:f1:b3:3f: 19:b4:cf:19:07:fb:2c:2a:63:92:37:d1:82:c7:0f: d1:8a:3b:21:85:bb:9a:d3:c0:7d:e8:5b:8e:9f:12: fa:1b:6c:98:49:b2:94:88:9e:00:4e:d4:99:35:fb: 24:50:97:70:70:d3:0e:78:22:19:e4:60:b3:40:20: 7c:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 01:69:F6:B1:CF:5C:95:DC:E1:DB:82:19:98:C7:C3:48:8C:94:A2:C0 X509v3 Authority Key Identifier: keyid:54:1E:0A:66:FE:60:F3:AA:C0:25:02:CE:F1:E4:8E:62:7A:62:F7:41 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91288D9/BA59535E425711EA8F838A43C4F9AE02/VB4KZv5g86rAJQLO8eSOYnpi90E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VB4KZv5g86rAJQLO8eSOYnpi90E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91288D9/BA59535E425711EA8F838A43C4F9AE02/VB4KZv5g86rAJQLO8eSOYnpi90E.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7f:cb:8a:c4:6f:d9:d9:7a:89:48:73:0a:62:8c:31:f1:d8:91: 38:1e:54:85:65:25:77:a3:ef:77:93:9a:aa:d5:17:64:75:15: 9e:aa:46:54:b2:d7:0a:fb:2c:67:30:25:a0:60:a5:72:51:f4: 6f:99:81:de:4f:a2:c3:51:a2:f2:28:88:37:53:fc:38:84:10: a8:3a:29:27:f1:0d:ad:7f:68:54:1d:d5:35:6a:01:c9:fa:27: cc:bd:cb:74:6c:28:4c:22:f5:9c:c9:4c:14:af:73:2c:dc:64: 58:59:7d:26:24:5a:bb:eb:f3:73:c7:1a:2b:1d:a5:f1:c6:8b: f7:0a:11:8d:61:95:d9:95:47:30:7b:46:83:55:7c:e9:5e:69: ec:14:ed:fd:38:e1:07:b1:1a:e2:12:85:59:12:61:af:fc:b2: 5b:04:c6:37:b2:b4:da:d6:a6:cc:da:e1:d9:09:38:d8:b1:71: 66:de:1a:29:a6:91:4c:26:21:b9:b6:a8:73:3f:a4:3d:d7:de: c8:a4:56:68:15:ff:48:28:11:fb:38:2b:ea:40:50:bd:e3:50: ad:27:83:52:36:97:ce:d0:a3:f0:3a:12:93:ce:3c:a2:19:d0: 4e:f4:11:48:5c:ba:c3:70:e7:f8:80:d2:d8:ce:a8:3f:ba:2b: 1d:2c:ad:2b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCxUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mjg4RDkxMTAvBgNVBAUTKDU0MUUwQTY2RkU2MEYzQUFDMDI1MDJDRUYxRTQ4RTYy N0E2MkY3NDEwHhcNMjUwNjE4MTkwOTQ2WhcNMjUwNjI1MTkwOTQ2WjAYMRYwFAYD VQQDEw02ODUzMGVmYS00ZTdjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8m61u3YEqsPENoVolUwt2FsU+NJQMpt0rF1Fd9EGIlNhkFwBIyvn+1Fvv+Q7 hNjGofXCCkOej01Rcp069LgplpcJMY7XQ4SLdYNXWz2kZY0zuaGLXcHPOzjQd8Dk R9PLv+2gXAFHsaHHugljUD6JLyfYDzmyJo57xj44Y1PH2ifbMR4LjHne0m6cCN+d BMx+3Cq2Ih+BAOyaitSFO8/w8rMb+25XQikEpG/jgblrinDb1iQPnk+RrhiSPlmX Ngzxsz8ZtM8ZB/ssKmOSN9GCxw/Rijshhbua08B96FuOnxL6G2yYSbKUiJ4ATtSZ NfskUJdwcNMOeCIZ5GCzQCB8rwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAFp9rHP XJXc4duCGZjHw0iMlKLAMB8GA1UdIwQYMBaAFFQeCmb+YPOqwCUCzvHkjmJ6YvdB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyODhEOS9CQTU5NTM1RTQy NTcxMUVBOEY4MzhBNDNDNEY5QUUwMi9WQjRLWnY1Zzg2ckFKUUxPOGVTT1lucGk5 MEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1ZCNEtadjVnODZyQUpRTE84ZVNPWW5waTkwRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy ODhEOS9CQTU5NTM1RTQyNTcxMUVBOEY4MzhBNDNDNEY5QUUwMi9WQjRLWnY1Zzg2 ckFKUUxPOGVTT1lucGk5MEUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB/y4rEb9nZeolIcwpijDHx2JE4HlSFZSV3o+93k5qq1RdkdRWeqkZU stcK+yxnMCWgYKVyUfRvmYHeT6LDUaLyKIg3U/w4hBCoOikn8Q2tf2hUHdU1agHJ +ifMvct0bChMIvWcyUwUr3Ms3GRYWX0mJFq76/NzxxorHaXxxov3ChGNYZXZlUcw e0aDVXzpXmnsFO39OOEHsRriEoVZEmGv/LJbBMY3srTa1qbM2uHZCTjYsXFm3hop ppFMJiG5tqhzP6Q9197IpFZoFf9IKBH7OCvqQFC941CtJ4NSNpfO0KPwOhKTzjyi GdBO9BFIXLrDcOf4gNLYzqg/uisdLK0r -----END CERTIFICATE-----Generated at Fri Jun 20 13:49:44 2025 by rpki-client