$ rpki-client -vvf rpki.apnic.net/member_repository/A916069A/2EB607969BF011EF81C90267C4F9AE02/2Qg5PFuoA1r2i37ACVWOgS7QleA.mft File: 2Qg5PFuoA1r2i37ACVWOgS7QleA.mft (raw, json) Hash identifier: OhjE8W9Xs2+UGhC4M9L07HJHsjk6RRXof2DtIc+4qWg= Subject key identifier: A7:64:7C:DC:C0:3C:23:F7:E8:81:93:15:80:42:37:7D:F4:C3:DF:47 Authority key identifier: D9:08:39:3C:5B:A8:03:5A:F6:8B:7E:C0:09:55:8E:81:2E:D0:95:E0 Certificate issuer: /CN=A916069A/serialNumber=D908393C5BA8035AF68B7EC009558E812ED095E0 Certificate serial: 79 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2Qg5PFuoA1r2i37ACVWOgS7QleA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916069A/2EB607969BF011EF81C90267C4F9AE02/2Qg5PFuoA1r2i37ACVWOgS7QleA.mft Manifest number: 77 Signing time: Sat 21 Jun 2025 05:49:59 +0000 Manifest this update: Sat 21 Jun 2025 05:49:59 +0000 Manifest next update: Sat 28 Jun 2025 05:49:59 +0000 Files and hashes: 1: 2Qg5PFuoA1r2i37ACVWOgS7QleA.crl (hash: jvDgfe6pvB0aIyZKgHStTvwgU0wQCv0T1MGjxNwjC7M=) 2: C62E0568C52811EF9EDAD649C4F9AE02.roa (hash: F5uXTjMiJni5HqVRUwrgZPii2IL1VQzAUq1Dx9Qk/Co=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916069A/2EB607969BF011EF81C90267C4F9AE02/2Qg5PFuoA1r2i37ACVWOgS7QleA.crl rsync://rpki.apnic.net/member_repository/A916069A/2EB607969BF011EF81C90267C4F9AE02/2Qg5PFuoA1r2i37ACVWOgS7QleA.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2Qg5PFuoA1r2i37ACVWOgS7QleA.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Jun 2025 02:50:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 121 (0x79) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916069A, serialNumber=D908393C5BA8035AF68B7EC009558E812ED095E0 Validity Not Before: Jun 21 05:49:59 2025 GMT Not After : Jun 28 05:49:59 2025 GMT Subject: CN=68564807-c227 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:e3:cb:aa:17:59:47:0d:56:a3:c6:e0:16:e5: df:e1:ad:e1:e3:30:19:54:87:12:c4:bc:d2:fc:59: 05:fa:81:12:19:82:d1:c7:4f:20:49:0b:3d:d4:88: 47:c9:16:5f:df:6b:5e:18:90:f5:45:b3:ab:f9:a3: 36:36:3f:d0:c7:33:81:24:af:1f:f1:c4:7c:af:07: 90:72:3c:7b:8e:7f:ea:c8:6d:1d:b7:06:e5:52:7d: 6d:e0:8b:ff:da:a6:88:06:0a:2d:c9:eb:13:c8:23: 80:bc:d0:16:58:fc:82:33:fb:36:02:4e:5e:32:85: b7:43:61:ed:c8:1f:46:7a:3f:27:01:c7:58:1e:53: a4:dc:7b:40:54:bd:7d:f2:ae:37:82:61:8b:64:e2: 8f:73:6d:62:90:a1:ac:65:26:ce:88:83:16:21:b7: 72:38:ab:90:6d:cb:82:bf:76:01:84:a5:e9:7d:ed: 81:3f:0c:70:7d:ed:ab:44:b1:ed:ab:72:ae:85:e9: d1:23:a7:f4:e1:1d:d2:0e:fb:8a:b2:28:47:e0:6d: 18:0d:96:35:f7:be:01:44:b6:b1:52:e3:75:12:9a: aa:f8:89:8c:06:4f:43:37:41:96:af:a5:a7:51:bb: 04:0f:4b:a5:5b:31:13:5a:13:66:1b:91:3f:fd:23: 0a:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A7:64:7C:DC:C0:3C:23:F7:E8:81:93:15:80:42:37:7D:F4:C3:DF:47 X509v3 Authority Key Identifier: keyid:D9:08:39:3C:5B:A8:03:5A:F6:8B:7E:C0:09:55:8E:81:2E:D0:95:E0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916069A/2EB607969BF011EF81C90267C4F9AE02/2Qg5PFuoA1r2i37ACVWOgS7QleA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2Qg5PFuoA1r2i37ACVWOgS7QleA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916069A/2EB607969BF011EF81C90267C4F9AE02/2Qg5PFuoA1r2i37ACVWOgS7QleA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c3:c1:48:0f:e2:1f:32:32:53:a7:bb:5c:3e:91:26:b1:fb:2f: aa:dd:5f:7d:72:15:95:b6:44:b0:c7:62:c3:23:03:25:e9:4d: ea:36:14:59:44:e3:e3:0d:d5:13:fe:1f:fa:cd:f3:c6:40:4f: a2:91:31:9e:94:ea:f6:04:02:b5:04:a6:f8:ea:f1:e4:83:2b: f1:f0:21:8c:ce:5f:0e:9d:09:63:b7:ae:f7:63:b0:01:ee:f1: 6f:94:7d:06:fe:2e:3f:c9:a3:de:78:ca:82:9c:5d:66:22:67: de:22:20:65:00:aa:c9:3f:da:0a:9d:63:e9:32:eb:e1:f9:34: b6:73:11:fa:9b:46:0e:1c:1f:1a:15:c7:11:2b:17:95:23:5b: fc:69:30:36:89:7d:41:b3:70:95:6e:56:99:b5:d1:df:ba:99: 7f:e2:aa:40:3c:09:b6:e4:68:16:b5:85:38:c6:f1:78:23:21: ac:46:c4:58:6f:0e:45:30:d5:ee:ab:ff:f5:ff:d9:5a:59:ab: c1:af:06:9e:1e:19:43:37:92:5b:75:69:7a:81:b9:40:b8:e9: 95:d8:1d:b2:cc:8e:ae:cf:05:41:0b:da:d7:a0:67:88:7a:72: 10:e9:b3:1b:f6:24:55:99:db:f1:29:fb:bd:93:07:f1:c6:65: 84:5d:ba:21 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBeTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE2 MDY5QTExMC8GA1UEBRMoRDkwODM5M0M1QkE4MDM1QUY2OEI3RUMwMDk1NThFODEy RUQwOTVFMDAeFw0yNTA2MjEwNTQ5NTlaFw0yNTA2MjgwNTQ5NTlaMBgxFjAUBgNV BAMTDTY4NTY0ODA3LWMyMjcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDh48uqF1lHDVajxuAW5d/hreHjMBlUhxLEvNL8WQX6gRIZgtHHTyBJCz3UiEfJ Fl/fa14YkPVFs6v5ozY2P9DHM4Ekrx/xxHyvB5ByPHuOf+rIbR23BuVSfW3gi//a pogGCi3J6xPII4C80BZY/IIz+zYCTl4yhbdDYe3IH0Z6PycBx1geU6Tce0BUvX3y rjeCYYtk4o9zbWKQoaxlJs6IgxYht3I4q5Bty4K/dgGEpel97YE/DHB97atEse2r cq6F6dEjp/ThHdIO+4qyKEfgbRgNljX3vgFEtrFS43USmqr4iYwGT0M3QZavpadR uwQPS6VbMRNaE2YbkT/9Iwr9AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUp2R83MA8 I/fogZMVgEI3ffTD30cwHwYDVR0jBBgwFoAU2Qg5PFuoA1r2i37ACVWOgS7QleAw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTYwNjlBLzJFQjYwNzk2OUJG MDExRUY4MUM5MDI2N0M0RjlBRTAyLzJRZzVQRnVvQTFyMmkzN0FDVldPZ1M3UWxl QS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvMlFnNVBGdW9BMXIyaTM3QUNWV09nUzdRbGVBLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTYw NjlBLzJFQjYwNzk2OUJGMDExRUY4MUM5MDI2N0M0RjlBRTAyLzJRZzVQRnVvQTFy MmkzN0FDVldPZ1M3UWxlQS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAMPBSA/iHzIyU6e7XD6RJrH7L6rdX31yFZW2RLDHYsMjAyXpTeo2FFlE 4+MN1RP+H/rN88ZAT6KRMZ6U6vYEArUEpvjq8eSDK/HwIYzOXw6dCWO3rvdjsAHu 8W+UfQb+Lj/Jo954yoKcXWYiZ94iIGUAqsk/2gqdY+ky6+H5NLZzEfqbRg4cHxoV xxErF5UjW/xpMDaJfUGzcJVuVpm10d+6mX/iqkA8CbbkaBa1hTjG8XgjIaxGxFhv DkUw1e6r//X/2VpZq8GvBp4eGUM3klt1aXqBuUC46ZXYHbLMjq7PBUEL2tegZ4h6 chDpsxv2JFWZ2/Ep+72TB/HGZYRduiE= -----END CERTIFICATE-----Generated at Sat Jun 21 10:59:02 2025 by rpki-client