$ rpki-client -vvf rpki.apnic.net/member_repository/A91534B8/9F03BB60094411ED8DD10971C4F9AE02/36hgRQpvzrHG57jU_1SxVBobabM.mft File: 36hgRQpvzrHG57jU_1SxVBobabM.mft (raw, json) Hash identifier: iQzLtYzpjko116a219fHY2h8Q0FbtUJ+pl50VAchJbI= Subject key identifier: DC:0F:98:A7:BE:D6:3F:53:96:CF:F6:A7:B3:AA:BF:C1:50:F0:C2:E1 Authority key identifier: DF:A8:60:45:0A:6F:CE:B1:C6:E7:B8:D4:FF:54:B1:54:1A:1B:69:B3 Certificate issuer: /CN=A91534B8/serialNumber=DFA860450A6FCEB1C6E7B8D4FF54B1541A1B69B3 Certificate serial: 02A1 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/36hgRQpvzrHG57jU_1SxVBobabM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91534B8/9F03BB60094411ED8DD10971C4F9AE02/36hgRQpvzrHG57jU_1SxVBobabM.mft Manifest number: 0299 Signing time: Tue 17 Jun 2025 01:11:20 +0000 Manifest this update: Tue 17 Jun 2025 01:11:20 +0000 Manifest next update: Tue 24 Jun 2025 01:11:20 +0000 Files and hashes: 1: 36hgRQpvzrHG57jU_1SxVBobabM.crl (hash: emQt4o6enl08/AnaZMX5Js95nuRg7kc7lw3GepqdSS4=) 2: 56C4B5083DF511ED98215F18C4F9AE02.roa (hash: u+f2WuZi/RfejSsKb+UJ5iop6uONOfiC5gYEcHsbs6w=) 3: B0FA33FE6F9611ED8A672F69C4F9AE02.roa (hash: YDAiAdPjFYhBL5YjXoGqzzo8vheOfOc5VPFiiANGCJc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91534B8/9F03BB60094411ED8DD10971C4F9AE02/36hgRQpvzrHG57jU_1SxVBobabM.crl rsync://rpki.apnic.net/member_repository/A91534B8/9F03BB60094411ED8DD10971C4F9AE02/36hgRQpvzrHG57jU_1SxVBobabM.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/36hgRQpvzrHG57jU_1SxVBobabM.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 24 Jun 2025 01:11:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 673 (0x2a1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91534B8, serialNumber=DFA860450A6FCEB1C6E7B8D4FF54B1541A1B69B3 Validity Not Before: Jun 17 01:11:20 2025 GMT Not After : Jun 24 01:11:20 2025 GMT Subject: CN=6850c0b8-302e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:4e:22:6f:b2:2b:57:20:1c:c3:c0:83:72:59: 09:58:df:58:71:5f:b2:ef:a6:cd:59:bf:06:3c:d4: 24:70:ff:9e:93:74:cd:a8:7f:2f:3e:ad:43:08:fe: 02:bb:89:ac:e2:5a:39:61:08:02:6d:5c:d3:c2:05: 43:ca:a1:23:94:52:4b:96:1b:9b:77:12:67:2d:bd: 5b:6f:af:fc:84:d0:bb:72:f4:59:21:aa:be:d0:9b: 26:17:f8:dc:84:5e:45:45:d4:06:66:9b:62:f6:35: 19:8b:1e:0f:f4:5a:8b:d6:78:f8:8c:4e:98:20:e8: a6:a9:8f:5e:53:a5:4a:2d:24:f4:37:78:67:c2:a3: 47:51:ca:aa:70:64:e9:a5:81:bd:0f:e5:aa:96:b2: ee:84:55:da:a8:0e:aa:9f:2d:c1:b9:1d:64:3e:a7: f9:6a:c2:c2:67:ac:d4:16:2f:0e:23:91:93:c2:b6: 2d:d3:9d:d6:c9:3b:5c:ea:16:bc:91:7d:a2:61:d3: 3b:2d:6a:11:22:f5:36:bc:e7:d6:da:b0:7b:7f:12: e2:da:f2:1a:b1:58:f9:54:7a:da:e2:cf:80:7a:6a: 3f:4f:78:74:8c:ce:80:d3:06:a2:2d:9c:8f:e5:6c: cb:cb:ed:ec:07:1c:d8:16:73:a6:3d:2d:b6:05:ee: 0d:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DC:0F:98:A7:BE:D6:3F:53:96:CF:F6:A7:B3:AA:BF:C1:50:F0:C2:E1 X509v3 Authority Key Identifier: keyid:DF:A8:60:45:0A:6F:CE:B1:C6:E7:B8:D4:FF:54:B1:54:1A:1B:69:B3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91534B8/9F03BB60094411ED8DD10971C4F9AE02/36hgRQpvzrHG57jU_1SxVBobabM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/36hgRQpvzrHG57jU_1SxVBobabM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91534B8/9F03BB60094411ED8DD10971C4F9AE02/36hgRQpvzrHG57jU_1SxVBobabM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a0:5f:f3:a3:7d:81:bb:b4:62:82:8f:f0:7d:bb:ca:5d:e3:13: 30:6b:c4:bc:fd:6d:1a:aa:a5:3f:ce:50:45:af:35:a7:ea:b8: 44:db:32:27:4e:fe:d7:6c:56:af:0a:f9:e3:5e:ca:2b:ac:32: 63:e3:bd:07:06:3c:48:fe:9a:0f:63:1d:1a:5c:8f:be:a4:33: d7:6f:83:9c:7e:60:3e:35:37:32:43:20:af:11:ea:1e:4c:e0: 51:d8:4d:23:ae:fb:f5:ea:5a:6c:bc:19:d8:57:7c:98:44:fe: 5d:f3:69:58:ed:5e:13:42:7a:f0:50:7d:4d:f1:46:31:41:9d: 29:e3:6e:5e:99:9b:da:a3:d2:de:db:19:32:46:c2:a9:b0:28: b7:e0:63:6a:61:2a:ed:2b:99:33:dd:1d:f5:03:c2:9a:b2:bc: a1:85:fa:b2:a3:bb:0c:1f:ba:48:50:47:ed:20:19:8b:f9:d4: 14:88:a8:b1:8a:40:01:cd:a5:ee:a3:69:23:d4:79:ef:5d:b6: fe:86:d7:3a:fd:e3:6d:13:8e:66:31:2e:55:8c:ab:c0:68:68: 81:05:e9:78:c8:3c:3f:f4:af:47:bc:b7:c5:a4:dc:01:e6:ba: 11:fc:5b:88:20:ff:77:d8:ee:98:c9:8d:0a:ef:56:27:9f:bb: 36:a6:4f:1a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAqEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTM0QjgxMTAvBgNVBAUTKERGQTg2MDQ1MEE2RkNFQjFDNkU3QjhENEZGNTRCMTU0 MUExQjY5QjMwHhcNMjUwNjE3MDExMTIwWhcNMjUwNjI0MDExMTIwWjAYMRYwFAYD VQQDEw02ODUwYzBiOC0zMDJlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs04ib7IrVyAcw8CDclkJWN9YcV+y76bNWb8GPNQkcP+ek3TNqH8vPq1DCP4C u4ms4lo5YQgCbVzTwgVDyqEjlFJLlhubdxJnLb1bb6/8hNC7cvRZIaq+0JsmF/jc hF5FRdQGZpti9jUZix4P9FqL1nj4jE6YIOimqY9eU6VKLST0N3hnwqNHUcqqcGTp pYG9D+WqlrLuhFXaqA6qny3BuR1kPqf5asLCZ6zUFi8OI5GTwrYt053WyTtc6ha8 kX2iYdM7LWoRIvU2vOfW2rB7fxLi2vIasVj5VHra4s+Aemo/T3h0jM6A0waiLZyP 5WzLy+3sBxzYFnOmPS22Be4NOQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNwPmKe+ 1j9Tls/2p7Oqv8FQ8MLhMB8GA1UdIwQYMBaAFN+oYEUKb86xxue41P9UsVQaG2mz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MzRCOC85RjAzQkI2MDA5 NDQxMUVEOEREMTA5NzFDNEY5QUUwMi8zNmhnUlFwdnpySEc1N2pVXzFTeFZCb2Jh Yk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzM2aGdSUXB2enJIRzU3alVfMVN4VkJvYmFiTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MzRCOC85RjAzQkI2MDA5NDQxMUVEOEREMTA5NzFDNEY5QUUwMi8zNmhnUlFwdnpy SEc1N2pVXzFTeFZCb2JhYk0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCgX/OjfYG7tGKCj/B9u8pd4xMwa8S8/W0aqqU/zlBFrzWn6rhE2zIn Tv7XbFavCvnjXsorrDJj470HBjxI/poPYx0aXI++pDPXb4OcfmA+NTcyQyCvEeoe TOBR2E0jrvv16lpsvBnYV3yYRP5d82lY7V4TQnrwUH1N8UYxQZ0p425emZvao9Le 2xkyRsKpsCi34GNqYSrtK5kz3R31A8Kasryhhfqyo7sMH7pIUEftIBmL+dQUiKix ikABzaXuo2kj1HnvXbb+htc6/eNtE45mMS5VjKvAaGiBBel4yDw/9K9HvLfFpNwB 5roR/FuIIP932O6YyY0K71Ynn7s2pk8a -----END CERTIFICATE-----Generated at Wed Jun 18 20:13:12 2025 by rpki-client