$ rpki-client -vvf rpki.apnic.net/member_repository/A91516FF/2DA55912141611F0A8523219C4F9AE02/38qP2qX--Ujg7Pb5xwNjm1ZTnZk.mft File: 38qP2qX--Ujg7Pb5xwNjm1ZTnZk.mft (raw, json) Hash identifier: +Mkb43mgOZTh7su+yjHfIIMwyegmf7gnThQB//2XuKI= Subject key identifier: 4B:BC:F2:6C:BA:0B:CC:44:6B:E2:C3:5A:E0:3B:56:70:16:D0:01:CB Authority key identifier: DF:CA:8F:DA:A5:FE:F9:48:E0:EC:F6:F9:C7:03:63:9B:56:53:9D:99 Certificate issuer: /CN=A91516FF/serialNumber=DFCA8FDAA5FEF948E0ECF6F9C703639B56539D99 Certificate serial: 2C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/38qP2qX--Ujg7Pb5xwNjm1ZTnZk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91516FF/2DA55912141611F0A8523219C4F9AE02/38qP2qX--Ujg7Pb5xwNjm1ZTnZk.mft Manifest number: 29 Signing time: Thu 19 Jun 2025 07:10:48 +0000 Manifest this update: Thu 19 Jun 2025 07:10:47 +0000 Manifest next update: Thu 26 Jun 2025 07:10:47 +0000 Files and hashes: 1: 38qP2qX--Ujg7Pb5xwNjm1ZTnZk.crl (hash: cmatFm8MCwzVTfcsQ9m9QKQwIHqINHBxttKbjqg/ILY=) 2: F3CCB2C846A411F0909DA511C4F9AE02.roa (hash: WdytCQTC82Xj3l6x6W+Fu2cSc3JDJ2cKAkESsG1ZKic=) 3: 692243D640AA11F096F2746AC4F9AE02.roa (hash: rkd9k1u1dkPxEMEh5w+r9Bswb8IlB1n+y2yWKJIM8Tk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91516FF/2DA55912141611F0A8523219C4F9AE02/38qP2qX--Ujg7Pb5xwNjm1ZTnZk.crl rsync://rpki.apnic.net/member_repository/A91516FF/2DA55912141611F0A8523219C4F9AE02/38qP2qX--Ujg7Pb5xwNjm1ZTnZk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/38qP2qX--Ujg7Pb5xwNjm1ZTnZk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 26 Jun 2025 07:10:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 44 (0x2c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91516FF, serialNumber=DFCA8FDAA5FEF948E0ECF6F9C703639B56539D99 Validity Not Before: Jun 19 07:10:47 2025 GMT Not After : Jun 26 07:10:47 2025 GMT Subject: CN=6853b7f8-b351 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:e0:63:0f:81:95:f5:15:65:ae:67:36:49:97: 9a:ba:9e:63:f5:62:67:13:c4:5e:1b:b5:f3:7a:2c: 8e:69:c5:ba:93:c9:32:73:54:a6:f9:a1:1b:c9:d4: 97:ae:04:e7:06:e3:7b:62:27:12:03:66:79:bc:31: c3:f3:67:40:77:2e:6c:ce:e5:71:6c:ed:6e:61:4d: c8:90:7b:28:66:7b:ef:8b:25:23:7f:28:db:a4:d8: ea:3f:b0:36:34:5b:c4:dd:2d:93:d8:0b:53:60:b2: 05:e0:1d:7d:4c:50:ff:df:d4:d3:07:f7:23:4c:04: 7f:6a:61:a5:13:c6:7c:3f:dc:dd:86:cc:6f:45:f8: 40:09:91:78:ab:f2:f9:33:bf:39:bb:e0:37:67:29: 37:1a:db:29:f2:70:eb:79:83:6e:3e:ee:01:da:9c: 43:21:8b:57:73:47:66:18:6c:64:37:e7:82:20:10: b0:af:e5:3f:8e:62:c4:81:db:ac:fa:3b:67:04:bc: 8c:96:f7:ee:73:db:be:56:21:9c:23:0d:68:0c:cc: 6a:a5:63:e7:ea:5d:e7:95:ca:fe:ef:d4:26:4a:09: 0c:a8:2c:6a:0d:41:60:6b:47:41:59:c3:32:32:37: b6:8f:ed:0b:f6:2e:af:78:2c:72:1c:96:b7:01:42: 51:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4B:BC:F2:6C:BA:0B:CC:44:6B:E2:C3:5A:E0:3B:56:70:16:D0:01:CB X509v3 Authority Key Identifier: keyid:DF:CA:8F:DA:A5:FE:F9:48:E0:EC:F6:F9:C7:03:63:9B:56:53:9D:99 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91516FF/2DA55912141611F0A8523219C4F9AE02/38qP2qX--Ujg7Pb5xwNjm1ZTnZk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/38qP2qX--Ujg7Pb5xwNjm1ZTnZk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91516FF/2DA55912141611F0A8523219C4F9AE02/38qP2qX--Ujg7Pb5xwNjm1ZTnZk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ab:58:4e:50:c0:e0:02:61:82:19:d9:ee:ca:dc:9f:b9:7a:4e: c1:05:01:cb:f8:36:26:0e:c1:ab:c9:f6:81:07:11:87:1a:ca: 78:54:9a:e2:c6:ba:35:44:4b:2d:e3:c1:51:a9:b6:c8:93:71: fb:a0:02:a0:56:91:3f:a5:84:31:00:e5:98:1f:99:99:1f:6d: 54:97:68:8b:c0:4c:1e:54:53:10:9f:f6:19:a5:60:a7:8b:31: 9f:dd:f7:04:88:3e:38:31:1c:98:14:f3:f9:cb:c9:93:f8:d9: 13:b7:23:4a:6c:98:d5:18:d1:7f:72:ba:6a:97:60:35:29:0e: 9f:84:00:93:47:5a:24:37:6d:1a:7c:14:ba:76:d2:80:e6:bc: 5d:ec:db:bb:79:2a:32:58:c6:7a:7b:c5:59:d4:d9:81:c6:e3: 76:12:ce:6c:ef:e2:a9:f8:92:aa:b6:20:5f:c2:46:79:47:86: 25:35:3c:16:a4:44:df:12:02:f4:f4:57:95:f8:60:47:2f:e6: 6d:23:d8:c6:fd:57:2e:d3:96:ba:ab:89:2a:d6:ba:1b:81:28: 55:ce:03:85:5c:27:cf:8d:26:85:a3:09:e9:41:26:cf:40:5a: e9:7f:3c:bf:c8:30:74:99:20:25:b1:86:f2:6d:02:23:92:52: e6:14:33:63 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBLDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE1 MTZGRjExMC8GA1UEBRMoREZDQThGREFBNUZFRjk0OEUwRUNGNkY5QzcwMzYzOUI1 NjUzOUQ5OTAeFw0yNTA2MTkwNzEwNDdaFw0yNTA2MjYwNzEwNDdaMBgxFjAUBgNV BAMTDTY4NTNiN2Y4LWIzNTEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDf4GMPgZX1FWWuZzZJl5q6nmP1YmcTxF4btfN6LI5pxbqTyTJzVKb5oRvJ1Jeu BOcG43tiJxIDZnm8McPzZ0B3LmzO5XFs7W5hTciQeyhme++LJSN/KNuk2Oo/sDY0 W8TdLZPYC1NgsgXgHX1MUP/f1NMH9yNMBH9qYaUTxnw/3N2GzG9F+EAJkXir8vkz vzm74DdnKTca2ynycOt5g24+7gHanEMhi1dzR2YYbGQ354IgELCv5T+OYsSB26z6 O2cEvIyW9+5z275WIZwjDWgMzGqlY+fqXeeVyv7v1CZKCQyoLGoNQWBrR0FZwzIy N7aP7Qv2Lq94LHIclrcBQlGvAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUS7zybLoL zERr4sNa4DtWcBbQAcswHwYDVR0jBBgwFoAU38qP2qX++Ujg7Pb5xwNjm1ZTnZkw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTUxNkZGLzJEQTU1OTEyMTQx NjExRjBBODUyMzIxOUM0RjlBRTAyLzM4cVAycVgtLVVqZzdQYjV4d05qbTFaVG5a ay5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvMzhxUDJxWC0tVWpnN1BiNXh3TmptMVpUblprLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTUx NkZGLzJEQTU1OTEyMTQxNjExRjBBODUyMzIxOUM0RjlBRTAyLzM4cVAycVgtLVVq ZzdQYjV4d05qbTFaVG5aay5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAKtYTlDA4AJhghnZ7srcn7l6TsEFAcv4NiYOwavJ9oEHEYcaynhUmuLG ujVESy3jwVGptsiTcfugAqBWkT+lhDEA5ZgfmZkfbVSXaIvATB5UUxCf9hmlYKeL MZ/d9wSIPjgxHJgU8/nLyZP42RO3I0psmNUY0X9yumqXYDUpDp+EAJNHWiQ3bRp8 FLp20oDmvF3s27t5KjJYxnp7xVnU2YHG43YSzmzv4qn4kqq2IF/CRnlHhiU1PBak RN8SAvT0V5X4YEcv5m0j2Mb9Vy7TlrqriSrWuhuBKFXOA4VcJ8+NJoWjCelBJs9A Wul/PL/IMHSZICWxhvJtAiOSUuYUM2M= -----END CERTIFICATE-----Generated at Sat Jun 21 02:52:53 2025 by rpki-client