$ rpki-client -vvf rpki.apnic.net/member_repository/A91724A6/18E5D484C3C311EDAA5ACB47C4F9AE02/0nYmctKXWA5IQijBceWokHMMF28.mft File: 0nYmctKXWA5IQijBceWokHMMF28.mft (raw, json) Hash identifier: +uIGDT7NSUhnh5Rs/UYupdiOISDafPg5ZNtFpWEgqrw= Subject key identifier: 93:B2:F2:F4:94:8D:95:FB:43:D9:3D:06:49:D3:67:53:BB:0E:FD:69 Authority key identifier: D2:76:26:72:D2:97:58:0E:48:42:28:C1:71:E5:A8:90:73:0C:17:6F Certificate issuer: /CN=A91724A6/serialNumber=D2762672D297580E484228C171E5A890730C176F Certificate serial: 01AE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0nYmctKXWA5IQijBceWokHMMF28.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91724A6/18E5D484C3C311EDAA5ACB47C4F9AE02/0nYmctKXWA5IQijBceWokHMMF28.mft Manifest number: 01AA Signing time: Tue 17 Jun 2025 02:23:23 +0000 Manifest this update: Tue 17 Jun 2025 02:23:22 +0000 Manifest next update: Tue 24 Jun 2025 02:23:22 +0000 Files and hashes: 1: 0nYmctKXWA5IQijBceWokHMMF28.crl (hash: C60gs9F/unQpzZ9oAT0qX3MuGjgH68Qp5GdxV5mwFTQ=) 2: 950A55CCC3C711ED8419AA64C4F9AE02.roa (hash: GrQm9NlurYpVLIwLedH2/MNa+h8258HeOnrxmNS0v54=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91724A6/18E5D484C3C311EDAA5ACB47C4F9AE02/0nYmctKXWA5IQijBceWokHMMF28.crl rsync://rpki.apnic.net/member_repository/A91724A6/18E5D484C3C311EDAA5ACB47C4F9AE02/0nYmctKXWA5IQijBceWokHMMF28.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0nYmctKXWA5IQijBceWokHMMF28.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 24 Jun 2025 02:23:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 430 (0x1ae) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91724A6, serialNumber=D2762672D297580E484228C171E5A890730C176F Validity Not Before: Jun 17 02:23:22 2025 GMT Not After : Jun 24 02:23:22 2025 GMT Subject: CN=6850d19a-1556 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:1c:86:37:3c:84:72:da:1d:cd:4b:c9:fb:bc: 21:aa:5a:0f:89:39:9e:51:e6:b1:37:b9:fa:c5:78: 0f:8c:79:f5:ae:40:aa:0b:13:ba:04:34:ac:34:0c: 05:89:b3:43:f5:72:3f:c0:02:f7:60:1b:76:26:1d: 8f:d4:c4:a1:7a:40:7b:fa:e8:54:65:58:c7:97:c0: d9:95:17:5b:d6:38:89:62:92:c9:6a:3e:c0:b9:13: a2:64:25:6b:67:fe:2b:86:f6:f5:8d:01:32:cd:64: c1:2e:e1:cb:85:1f:d8:22:28:fc:90:05:37:b5:2a: 42:b9:c9:8a:8f:c9:8f:af:a0:7d:f1:a6:ef:13:da: ce:c8:d0:8c:6d:75:af:b9:e2:a0:ff:08:04:30:3c: 22:75:85:3b:14:dc:fd:80:71:26:ec:f6:5d:64:26: 65:8a:8e:d6:bf:fc:ba:8f:fc:ba:8b:9c:b3:df:ed: a4:c4:d7:6e:00:85:ee:b6:8d:35:cc:8b:41:5a:f9: 79:5a:31:71:38:d0:09:d3:fc:28:b1:ef:1d:29:6d: 4e:61:c8:42:09:9e:d7:c4:b7:b3:b3:0a:87:c9:35: e3:25:bf:3c:37:30:55:7f:68:b5:24:5f:19:09:c2: 74:65:1f:91:bf:32:05:15:3b:71:93:c1:9d:dd:df: 55:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 93:B2:F2:F4:94:8D:95:FB:43:D9:3D:06:49:D3:67:53:BB:0E:FD:69 X509v3 Authority Key Identifier: keyid:D2:76:26:72:D2:97:58:0E:48:42:28:C1:71:E5:A8:90:73:0C:17:6F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91724A6/18E5D484C3C311EDAA5ACB47C4F9AE02/0nYmctKXWA5IQijBceWokHMMF28.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0nYmctKXWA5IQijBceWokHMMF28.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91724A6/18E5D484C3C311EDAA5ACB47C4F9AE02/0nYmctKXWA5IQijBceWokHMMF28.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 39:af:46:ae:cb:0b:88:9d:f9:fc:28:6a:bd:77:92:98:db:c2: 07:78:1b:04:f3:58:42:85:82:ca:04:d6:ff:76:1e:f8:0f:b9: 09:97:c1:77:d4:28:dd:7e:6c:c3:e7:d2:d2:ce:b0:3c:8a:fc: dd:5b:20:db:2a:4a:4a:13:99:03:b3:f2:16:90:4c:bd:64:bd: fd:0d:f8:08:4a:31:1a:60:ef:e7:24:60:6c:42:87:78:4d:3f: 06:c2:3f:75:76:42:f5:b4:75:57:19:c4:ae:85:c7:c8:ba:fb: 7f:0c:dd:62:93:0c:50:dc:d7:fd:d7:0e:f0:f6:ae:12:7c:34: 7e:31:75:41:7f:24:a3:90:e5:fd:fe:1f:6a:f3:90:3c:e2:b4: b5:91:eb:fc:05:e0:ae:0f:8c:21:68:53:f9:39:a9:60:7e:51: a5:37:11:06:31:17:5c:18:5e:c9:19:ba:2f:ea:96:b0:26:18: bc:64:4b:54:64:cf:9b:f3:b7:33:fb:6c:4a:62:ea:08:28:06: d3:39:2e:ea:76:72:ee:9c:21:6f:3d:f4:c5:20:9e:60:b5:bd: 1d:0b:e6:31:fc:c9:68:f0:e0:ee:1e:4a:78:cd:e6:45:8d:08: 34:37:f9:d9:d6:db:07:92:67:1d:48:b5:05:99:4a:28:6a:65: 93:15:a3:59 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAa4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzI0QTYxMTAvBgNVBAUTKEQyNzYyNjcyRDI5NzU4MEU0ODQyMjhDMTcxRTVBODkw NzMwQzE3NkYwHhcNMjUwNjE3MDIyMzIyWhcNMjUwNjI0MDIyMzIyWjAYMRYwFAYD VQQDEw02ODUwZDE5YS0xNTU2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4RyGNzyEctodzUvJ+7whqloPiTmeUeaxN7n6xXgPjHn1rkCqCxO6BDSsNAwF ibND9XI/wAL3YBt2Jh2P1MShekB7+uhUZVjHl8DZlRdb1jiJYpLJaj7AuROiZCVr Z/4rhvb1jQEyzWTBLuHLhR/YIij8kAU3tSpCucmKj8mPr6B98abvE9rOyNCMbXWv ueKg/wgEMDwidYU7FNz9gHEm7PZdZCZlio7Wv/y6j/y6i5yz3+2kxNduAIXuto01 zItBWvl5WjFxONAJ0/wose8dKW1OYchCCZ7XxLezswqHyTXjJb88NzBVf2i1JF8Z CcJ0ZR+RvzIFFTtxk8Gd3d9VdwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJOy8vSU jZX7Q9k9BknTZ1O7Dv1pMB8GA1UdIwQYMBaAFNJ2JnLSl1gOSEIowXHlqJBzDBdv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MjRBNi8xOEU1RDQ4NEMz QzMxMUVEQUE1QUNCNDdDNEY5QUUwMi8wblltY3RLWFdBNUlRaWpCY2VXb2tITU1G MjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzBuWW1jdEtYV0E1SVFpakJjZVdva0hNTUYyOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MjRBNi8xOEU1RDQ4NEMzQzMxMUVEQUE1QUNCNDdDNEY5QUUwMi8wblltY3RLWFdB NUlRaWpCY2VXb2tITU1GMjgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA5r0auywuInfn8KGq9d5KY28IHeBsE81hChYLKBNb/dh74D7kJl8F3 1CjdfmzD59LSzrA8ivzdWyDbKkpKE5kDs/IWkEy9ZL39DfgISjEaYO/nJGBsQod4 TT8Gwj91dkL1tHVXGcSuhcfIuvt/DN1ikwxQ3Nf91w7w9q4SfDR+MXVBfySjkOX9 /h9q85A84rS1kev8BeCuD4whaFP5OalgflGlNxEGMRdcGF7JGbov6pawJhi8ZEtU ZM+b87cz+2xKYuoIKAbTOS7qdnLunCFvPfTFIJ5gtb0dC+Yx/Mlo8ODuHkp4zeZF jQg0N/nZ1tsHkmcdSLUFmUooamWTFaNZ -----END CERTIFICATE-----Generated at Tue Jun 17 20:06:12 2025 by rpki-client