$ rpki-client -vvf rpki.apnic.net/member_repository/A91517CF/B4155458B2C711EF916BB67FC4F9AE02/7D2Af3k8nPX84zXuFeCYREm0MJY.mft File: 7D2Af3k8nPX84zXuFeCYREm0MJY.mft (raw, json) Hash identifier: LJKGghqolsdLF0zGVxDY8TJdxFRtQACrbXyxiN+QQTo= Subject key identifier: 30:1F:8B:3A:FA:DC:84:F4:41:43:F6:75:4F:72:E2:47:7D:1D:E4:1A Authority key identifier: EC:3D:80:7F:79:3C:9C:F5:FC:E3:35:EE:15:E0:98:44:49:B4:30:96 Certificate issuer: /CN=A91517CF/serialNumber=EC3D807F793C9CF5FCE335EE15E0984449B43096 Certificate serial: 69 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7D2Af3k8nPX84zXuFeCYREm0MJY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91517CF/B4155458B2C711EF916BB67FC4F9AE02/7D2Af3k8nPX84zXuFeCYREm0MJY.mft Manifest number: 67 Signing time: Thu 19 Jun 2025 06:23:32 +0000 Manifest this update: Thu 19 Jun 2025 06:23:31 +0000 Manifest next update: Thu 26 Jun 2025 06:23:31 +0000 Files and hashes: 1: 7D2Af3k8nPX84zXuFeCYREm0MJY.crl (hash: URnBF3LM8J+8AnTXdhFwMYrRZBDt9ogXPdIGo79b4Mc=) 2: 18164B6AB2C811EFA702DF80C4F9AE02.roa (hash: WLNXMP0ra3REMtSs7laKuUO//z/EEyMC3rb1Y8gR3Jk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91517CF/B4155458B2C711EF916BB67FC4F9AE02/7D2Af3k8nPX84zXuFeCYREm0MJY.crl rsync://rpki.apnic.net/member_repository/A91517CF/B4155458B2C711EF916BB67FC4F9AE02/7D2Af3k8nPX84zXuFeCYREm0MJY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7D2Af3k8nPX84zXuFeCYREm0MJY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 26 Jun 2025 06:23:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 105 (0x69) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91517CF, serialNumber=EC3D807F793C9CF5FCE335EE15E0984449B43096 Validity Not Before: Jun 19 06:23:31 2025 GMT Not After : Jun 26 06:23:31 2025 GMT Subject: CN=6853ace4-e72d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:ba:b5:29:05:b1:c7:5a:ba:56:22:75:7e:3a: 82:11:26:3a:62:81:28:66:32:f6:13:e8:e6:9c:f5: c1:bc:b5:a0:5a:cc:0d:3d:5e:d8:f2:f7:a7:23:6c: 37:cf:8f:d1:f5:24:43:e0:0f:22:9a:d7:21:8e:c4: 7d:22:91:34:30:37:01:9a:9c:3a:c5:37:fb:47:43: 71:f3:0d:3c:3d:a0:c5:26:b3:6a:30:3f:00:49:3c: fa:eb:77:38:5e:ea:39:ff:3a:b4:ba:7e:74:bf:f5: f8:5d:7a:b0:24:81:a6:b8:bc:3c:70:2b:d8:23:8e: bd:64:45:80:9e:08:92:25:81:2c:7c:2b:7e:4b:a4: 2f:0b:1e:3f:73:89:d9:89:e8:83:83:f1:78:1a:aa: bb:07:17:09:33:6e:3e:47:eb:3d:e9:a4:ad:45:e3: 47:a5:78:75:21:1d:96:5c:53:96:5f:e3:93:b1:3f: 0d:90:28:5d:b6:93:b5:b4:67:59:fb:48:f6:8c:c9: e2:8a:ad:75:20:87:3e:23:57:94:9d:0e:7e:a8:62: ab:db:91:c4:06:cd:9c:d3:45:ba:6c:d0:00:77:a9: a7:03:bb:ad:76:3e:6c:ff:13:4e:51:a8:72:0a:51: 60:3c:83:9f:09:c8:5d:1d:a0:69:68:c2:44:de:a8: 1c:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 30:1F:8B:3A:FA:DC:84:F4:41:43:F6:75:4F:72:E2:47:7D:1D:E4:1A X509v3 Authority Key Identifier: keyid:EC:3D:80:7F:79:3C:9C:F5:FC:E3:35:EE:15:E0:98:44:49:B4:30:96 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91517CF/B4155458B2C711EF916BB67FC4F9AE02/7D2Af3k8nPX84zXuFeCYREm0MJY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7D2Af3k8nPX84zXuFeCYREm0MJY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91517CF/B4155458B2C711EF916BB67FC4F9AE02/7D2Af3k8nPX84zXuFeCYREm0MJY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a4:3d:b7:fc:b2:8c:5a:78:21:0a:65:ec:05:d3:a7:87:58:9d: 44:ae:b5:9b:2b:9d:6e:d3:54:5a:31:9f:69:59:e8:3c:c7:e9: 63:96:44:61:3a:6d:a5:59:38:0d:9d:f5:e3:7d:f1:95:39:e0: f9:a0:b6:e8:4c:b0:b3:b0:c2:64:81:f0:40:61:a8:c1:71:d9: 69:34:f5:da:5e:b3:71:f5:32:47:e2:66:fc:e4:49:f1:23:92: fc:e6:e4:94:4f:ad:c1:30:bc:1d:85:42:16:a9:60:ee:ba:e0: 5a:35:eb:c9:16:0f:e4:30:cf:b6:51:c7:44:be:5e:3d:0d:f9: 8d:93:bb:99:63:f1:9c:13:13:23:80:0c:1a:c7:dd:18:9e:cd: e4:59:2e:3b:58:f3:6c:4a:ec:63:ab:27:e5:c7:09:07:50:6b: 0b:49:a1:04:ac:3e:7a:74:fb:f3:ea:34:96:58:3b:a8:8b:bb: d2:8c:e6:8a:78:ad:33:b0:9f:b7:96:36:f9:db:ba:3f:4e:1b: 1b:37:5b:9d:1e:88:89:be:f2:15:02:52:af:7f:f1:1c:5b:a7: 11:c8:dc:17:26:50:c1:8d:17:ed:e6:44:1f:a9:3e:f2:a3:38: 58:13:ef:da:cc:f9:00:ab:80:8d:fa:cb:01:a5:9a:c3:a7:ad: 1f:58:61:e1 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBaTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE1 MTdDRjExMC8GA1UEBRMoRUMzRDgwN0Y3OTNDOUNGNUZDRTMzNUVFMTVFMDk4NDQ0 OUI0MzA5NjAeFw0yNTA2MTkwNjIzMzFaFw0yNTA2MjYwNjIzMzFaMBgxFjAUBgNV BAMTDTY4NTNhY2U0LWU3MmQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCqurUpBbHHWrpWInV+OoIRJjpigShmMvYT6Oac9cG8taBazA09Xtjy96cjbDfP j9H1JEPgDyKa1yGOxH0ikTQwNwGanDrFN/tHQ3HzDTw9oMUms2owPwBJPPrrdzhe 6jn/OrS6fnS/9fhderAkgaa4vDxwK9gjjr1kRYCeCJIlgSx8K35LpC8LHj9zidmJ 6IOD8XgaqrsHFwkzbj5H6z3ppK1F40eleHUhHZZcU5Zf45OxPw2QKF22k7W0Z1n7 SPaMyeKKrXUghz4jV5SdDn6oYqvbkcQGzZzTRbps0AB3qacDu612Pmz/E05RqHIK UWA8g58JyF0doGlowkTeqBwxAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUMB+LOvrc hPRBQ/Z1T3LiR30d5BowHwYDVR0jBBgwFoAU7D2Af3k8nPX84zXuFeCYREm0MJYw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTUxN0NGL0I0MTU1NDU4QjJD NzExRUY5MTZCQjY3RkM0RjlBRTAyLzdEMkFmM2s4blBYODR6WHVGZUNZUkVtME1K WS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvN0QyQWYzazhuUFg4NHpYdUZlQ1lSRW0wTUpZLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTUx N0NGL0I0MTU1NDU4QjJDNzExRUY5MTZCQjY3RkM0RjlBRTAyLzdEMkFmM2s4blBY ODR6WHVGZUNZUkVtME1KWS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAKQ9t/yyjFp4IQpl7AXTp4dYnUSutZsrnW7TVFoxn2lZ6DzH6WOWRGE6 baVZOA2d9eN98ZU54PmgtuhMsLOwwmSB8EBhqMFx2Wk09dpes3H1MkfiZvzkSfEj kvzm5JRPrcEwvB2FQhapYO664Fo168kWD+Qwz7ZRx0S+Xj0N+Y2Tu5lj8ZwTEyOA DBrH3RiezeRZLjtY82xK7GOrJ+XHCQdQawtJoQSsPnp0+/PqNJZYO6iLu9KM5op4 rTOwn7eWNvnbuj9OGxs3W50eiIm+8hUCUq9/8RxbpxHI3BcmUMGNF+3mRB+pPvKj OFgT79rM+QCrgI36ywGlmsOnrR9YYeE= -----END CERTIFICATE-----Generated at Fri Jun 20 19:45:31 2025 by rpki-client