$ rpki-client -vvf rpki.apnic.net/member_repository/A91410B7/75ABC9FC13AE11EBBC7C6815C4F9AE02/k2jqSU9RHiDB1fc91Tnj2EZb2pw.mft File: k2jqSU9RHiDB1fc91Tnj2EZb2pw.mft (raw, json) Hash identifier: qDkzRcRggRpvbgarC5iA9eKk4tl69UrrjlJxxMgvW5M= Subject key identifier: AA:8F:8A:2E:EC:54:42:F2:68:4D:22:36:B4:3E:70:3A:6D:7F:B2:CD Authority key identifier: 93:68:EA:49:4F:51:1E:20:C1:D5:F7:3D:D5:39:E3:D8:46:5B:DA:9C Certificate issuer: /CN=A91410B7/serialNumber=9368EA494F511E20C1D5F73DD539E3D8465BDA9C Certificate serial: 078D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/k2jqSU9RHiDB1fc91Tnj2EZb2pw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91410B7/75ABC9FC13AE11EBBC7C6815C4F9AE02/k2jqSU9RHiDB1fc91Tnj2EZb2pw.mft Manifest number: 0786 Signing time: Wed 18 Jun 2025 21:16:43 +0000 Manifest this update: Wed 18 Jun 2025 21:16:42 +0000 Manifest next update: Wed 25 Jun 2025 21:16:42 +0000 Files and hashes: 1: k2jqSU9RHiDB1fc91Tnj2EZb2pw.crl (hash: I0HWIE3EZ4aXKKYhHRuxdaIJVyb+UfCUQguaTn9wcUg=) 2: B097C8B013B111EB8864681BC4F9AE02.roa (hash: 9S4PdbQBnS1bjpFuDpIOJsT6W0eeeQu3f8/ulTYvG/g=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91410B7/75ABC9FC13AE11EBBC7C6815C4F9AE02/k2jqSU9RHiDB1fc91Tnj2EZb2pw.crl rsync://rpki.apnic.net/member_repository/A91410B7/75ABC9FC13AE11EBBC7C6815C4F9AE02/k2jqSU9RHiDB1fc91Tnj2EZb2pw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/k2jqSU9RHiDB1fc91Tnj2EZb2pw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 25 Jun 2025 21:16:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1933 (0x78d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91410B7, serialNumber=9368EA494F511E20C1D5F73DD539E3D8465BDA9C Validity Not Before: Jun 18 21:16:42 2025 GMT Not After : Jun 25 21:16:42 2025 GMT Subject: CN=68532cba-0b78 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:9d:e2:49:39:c8:c3:83:77:97:5b:d0:23:c1: c7:87:f4:9b:6a:77:6d:51:22:68:3a:11:db:46:5a: bc:23:70:8e:4b:d1:70:77:e5:c0:fd:9f:89:58:cf: c6:e9:49:9b:66:08:91:e0:7d:ec:72:cb:f2:39:ad: ab:be:51:a2:80:cf:35:f1:cd:c6:83:e9:32:e0:45: 17:d2:f9:5a:96:1b:d1:50:14:65:6d:7b:b5:af:66: 4d:e4:64:19:94:2e:f9:5e:ad:75:2b:88:9f:fa:2c: 2f:72:72:fd:38:6f:11:88:20:64:25:19:43:09:50: 26:ee:d4:d6:38:c2:6a:71:58:1f:6d:3f:8b:09:b9: ff:6c:60:94:7c:26:b7:f2:f6:92:9d:cd:b4:c6:66: 5a:fb:1b:4e:fa:9e:94:fe:65:9e:52:3d:6e:a3:e5: 1e:42:31:25:e8:d8:cd:d6:a6:23:45:0d:ca:a6:45: ea:6a:4f:1c:45:3c:68:ca:cd:2c:e5:78:6f:dc:31: 2d:73:54:96:5b:c1:a6:3f:cf:2c:f5:55:80:0f:41: fc:b6:bd:3f:a0:73:bc:f2:ac:9d:14:86:98:cf:24: 8a:14:a3:bb:b1:5f:47:b7:c7:3b:a9:4d:9e:a8:e8: 7e:df:4b:f8:4a:a0:82:65:8a:1e:df:31:b4:34:d0: 80:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AA:8F:8A:2E:EC:54:42:F2:68:4D:22:36:B4:3E:70:3A:6D:7F:B2:CD X509v3 Authority Key Identifier: keyid:93:68:EA:49:4F:51:1E:20:C1:D5:F7:3D:D5:39:E3:D8:46:5B:DA:9C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91410B7/75ABC9FC13AE11EBBC7C6815C4F9AE02/k2jqSU9RHiDB1fc91Tnj2EZb2pw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/k2jqSU9RHiDB1fc91Tnj2EZb2pw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91410B7/75ABC9FC13AE11EBBC7C6815C4F9AE02/k2jqSU9RHiDB1fc91Tnj2EZb2pw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ae:7a:53:15:78:14:3a:a4:f1:5e:ef:e0:bc:ad:04:7a:25:ba: 78:c1:d2:4d:e4:0b:31:ea:9e:b4:f7:ff:a4:89:2a:18:12:d5: a4:b3:48:9d:50:0a:8e:01:14:99:a1:15:55:07:1e:08:fc:bd: 80:4e:7c:bf:4c:6a:f3:34:07:53:b3:e8:3d:e9:3b:d2:94:d3: b6:95:b7:45:ca:58:4d:27:d4:cb:20:32:57:23:8d:d7:34:d7: 70:18:78:45:d6:90:c8:ee:8d:0a:a3:f7:f9:50:6c:58:45:2e: 9c:e4:a0:df:66:6c:86:5b:7f:87:7e:75:83:0b:a7:e0:72:6d: ed:2b:5a:e1:74:35:72:54:e8:90:cf:f4:f5:e5:1b:79:a2:fd: b2:8c:f1:a7:57:70:d1:70:7a:ef:b5:85:ed:17:98:aa:c6:85: 1a:97:f7:26:63:1c:fa:e0:58:9e:70:b3:53:8b:df:8e:6d:21: 68:db:08:5c:da:e5:d3:3e:34:b4:db:d1:6c:a1:62:89:7a:61: 76:ab:64:f7:53:e6:52:87:0f:28:8f:bc:b8:40:d7:47:3c:34: 45:f9:64:b4:94:d8:62:54:16:fa:c0:04:37:11:e4:48:9f:12: f2:10:ed:32:eb:1e:d9:8d:89:21:d5:0f:f7:77:90:fa:6e:97: 42:ff:d5:9e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB40wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDEwQjcxMTAvBgNVBAUTKDkzNjhFQTQ5NEY1MTFFMjBDMUQ1RjczREQ1MzlFM0Q4 NDY1QkRBOUMwHhcNMjUwNjE4MjExNjQyWhcNMjUwNjI1MjExNjQyWjAYMRYwFAYD VQQDEw02ODUzMmNiYS0wYjc4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArJ3iSTnIw4N3l1vQI8HHh/SbandtUSJoOhHbRlq8I3COS9Fwd+XA/Z+JWM/G 6UmbZgiR4H3scsvyOa2rvlGigM818c3Gg+ky4EUX0vlalhvRUBRlbXu1r2ZN5GQZ lC75Xq11K4if+iwvcnL9OG8RiCBkJRlDCVAm7tTWOMJqcVgfbT+LCbn/bGCUfCa3 8vaSnc20xmZa+xtO+p6U/mWeUj1uo+UeQjEl6NjN1qYjRQ3KpkXqak8cRTxoys0s 5Xhv3DEtc1SWW8GmP88s9VWAD0H8tr0/oHO88qydFIaYzySKFKO7sV9Ht8c7qU2e qOh+30v4SqCCZYoe3zG0NNCA8wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKqPii7s VELyaE0iNrQ+cDptf7LNMB8GA1UdIwQYMBaAFJNo6klPUR4gwdX3PdU549hGW9qc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MTBCNy83NUFCQzlGQzEz QUUxMUVCQkM3QzY4MTVDNEY5QUUwMi9rMmpxU1U5UkhpREIxZmM5MVRuajJFWmIy cHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2syanFTVTlSSGlEQjFmYzkxVG5qMkVaYjJwdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 MTBCNy83NUFCQzlGQzEzQUUxMUVCQkM3QzY4MTVDNEY5QUUwMi9rMmpxU1U5Ukhp REIxZmM5MVRuajJFWmIycHcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCuelMVeBQ6pPFe7+C8rQR6Jbp4wdJN5Asx6p609/+kiSoYEtWks0id UAqOARSZoRVVBx4I/L2ATny/TGrzNAdTs+g96TvSlNO2lbdFylhNJ9TLIDJXI43X NNdwGHhF1pDI7o0Ko/f5UGxYRS6c5KDfZmyGW3+HfnWDC6fgcm3tK1rhdDVyVOiQ z/T15Rt5ov2yjPGnV3DRcHrvtYXtF5iqxoUal/cmYxz64FiecLNTi9+ObSFo2whc 2uXTPjS029FsoWKJemF2q2T3U+ZShw8oj7y4QNdHPDRF+WS0lNhiVBb6wAQ3EeRI nxLyEO0y6x7ZjYkh1Q/3d5D6bpdC/9We -----END CERTIFICATE-----Generated at Thu Jun 19 10:59:16 2025 by rpki-client