$ rpki-client -vvf rpki.apnic.net/member_repository/A91805CE/0EB09D36AE7411EE8CED235CC4F9AE02/cpJvxg98GEph1zvQlKpqOGtjACo.mft File: cpJvxg98GEph1zvQlKpqOGtjACo.mft (raw, json) Hash identifier: GPW9JTJH98IltoGFlD8DlnS5DQJfCIF0/Z1W5LvEoOA= Subject key identifier: 9E:50:93:F3:8F:BA:30:AB:F3:BA:BD:E0:EB:26:BC:98:2D:A3:12:EB Authority key identifier: 72:92:6F:C6:0F:7C:18:4A:61:D7:3B:D0:94:AA:6A:38:6B:63:00:2A Certificate issuer: /CN=A91805CE/serialNumber=72926FC60F7C184A61D73BD094AA6A386B63002A Certificate serial: 0121 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cpJvxg98GEph1zvQlKpqOGtjACo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91805CE/0EB09D36AE7411EE8CED235CC4F9AE02/cpJvxg98GEph1zvQlKpqOGtjACo.mft Manifest number: 0119 Signing time: Tue 17 Jun 2025 03:56:18 +0000 Manifest this update: Tue 17 Jun 2025 03:56:17 +0000 Manifest next update: Tue 24 Jun 2025 03:56:17 +0000 Files and hashes: 1: cpJvxg98GEph1zvQlKpqOGtjACo.crl (hash: DoHweqPCSRf5UFDo+yGKX13RHfdX9yEIZS317m/lqFA=) 2: 9E194914B3EC11EE8B2EE910C4F9AE02.roa (hash: eBM1U0C9BAgz3z+X5mRsroakC5anBwEWYdlHygNX0ws=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91805CE/0EB09D36AE7411EE8CED235CC4F9AE02/cpJvxg98GEph1zvQlKpqOGtjACo.crl rsync://rpki.apnic.net/member_repository/A91805CE/0EB09D36AE7411EE8CED235CC4F9AE02/cpJvxg98GEph1zvQlKpqOGtjACo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cpJvxg98GEph1zvQlKpqOGtjACo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 24 Jun 2025 03:56:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 289 (0x121) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91805CE, serialNumber=72926FC60F7C184A61D73BD094AA6A386B63002A Validity Not Before: Jun 17 03:56:17 2025 GMT Not After : Jun 24 03:56:17 2025 GMT Subject: CN=6850e761-acb5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:0c:0d:27:a4:10:dd:bf:a4:d5:bc:2b:f5:fe: b3:51:bf:d0:7b:75:6c:93:24:71:66:b5:e1:65:63: 48:76:80:6f:1c:87:82:58:00:a0:22:f4:0c:a7:94: 55:ed:66:8b:47:3c:52:17:d4:41:f7:0e:dc:5d:20: a0:47:f4:c2:5c:6b:24:53:7a:95:ed:ed:61:15:a7: e7:38:c8:5b:4e:0e:68:fc:ba:62:2c:b3:ea:9d:d9: 67:c3:62:0b:10:89:d2:01:e2:11:32:c3:72:03:5b: 13:44:71:95:1f:2e:09:05:82:18:c6:67:45:b1:2b: f1:d3:08:52:12:4b:3b:46:cb:2f:3c:b0:cb:03:be: 94:3b:df:1b:64:9a:d7:1d:cf:85:49:1f:70:6c:66: f1:8c:b8:c3:4c:09:93:a0:3e:24:7b:79:6c:cf:88: 4a:b0:4a:a2:25:51:45:ec:20:bc:5e:2f:3c:84:bf: c7:d7:29:0f:4c:19:a5:ad:21:e1:87:ab:55:09:b5: 27:7f:3a:97:93:92:a2:03:81:dd:ab:80:60:27:9d: 46:04:db:5a:8f:d3:b6:02:77:03:89:ee:cf:9e:f2: 39:f6:8b:8c:bc:88:d8:67:2a:23:1b:eb:85:80:fc: 00:ab:cd:08:c3:d1:bd:11:e9:43:3f:47:23:98:16: ee:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9E:50:93:F3:8F:BA:30:AB:F3:BA:BD:E0:EB:26:BC:98:2D:A3:12:EB X509v3 Authority Key Identifier: keyid:72:92:6F:C6:0F:7C:18:4A:61:D7:3B:D0:94:AA:6A:38:6B:63:00:2A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91805CE/0EB09D36AE7411EE8CED235CC4F9AE02/cpJvxg98GEph1zvQlKpqOGtjACo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cpJvxg98GEph1zvQlKpqOGtjACo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91805CE/0EB09D36AE7411EE8CED235CC4F9AE02/cpJvxg98GEph1zvQlKpqOGtjACo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 35:94:d6:92:ae:c8:de:21:b0:e5:b8:5f:c7:0c:9c:2a:04:f4: 4e:12:13:ae:db:14:2e:2d:fc:84:64:f3:f4:da:2c:2e:88:9b: 82:2c:e2:3c:1f:23:88:55:26:26:c2:58:75:c7:72:1b:de:66: 08:1b:e4:14:3f:db:6c:eb:08:54:c4:0e:47:4c:93:12:23:07: cf:dd:0d:d8:9d:8b:54:8b:a7:6c:a0:82:08:1c:2a:33:0f:6c: 2f:2d:70:73:4d:40:b9:ac:52:d0:a5:2c:c8:b8:e1:7e:06:92: f3:cd:6a:20:17:75:a6:3e:ae:17:d8:e1:7a:a4:a4:05:18:b2: e4:c8:bf:e3:7a:bb:cf:d2:6b:fa:0f:f4:08:fe:54:be:11:72: 31:1c:52:b1:49:85:d4:30:f5:09:75:81:e1:34:e0:26:2f:0e: cf:97:f2:ad:48:fa:a3:39:e4:35:5c:17:0c:6a:f1:8e:8c:d1: aa:25:78:03:96:6e:a6:94:6e:52:34:bf:18:66:34:02:6a:d1: 3c:29:63:03:ee:5b:f1:ea:21:2f:5c:30:87:68:12:da:69:89: 31:8f:f9:6b:cb:c2:7c:14:00:f5:c5:f3:71:7c:6d:75:dc:0b: 1d:24:88:00:4e:9e:69:54:99:85:42:70:10:55:42:3c:7b:ce: 04:ac:fc:4e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICASEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODA1Q0UxMTAvBgNVBAUTKDcyOTI2RkM2MEY3QzE4NEE2MUQ3M0JEMDk0QUE2QTM4 NkI2MzAwMkEwHhcNMjUwNjE3MDM1NjE3WhcNMjUwNjI0MDM1NjE3WjAYMRYwFAYD VQQDEw02ODUwZTc2MS1hY2I1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3AwNJ6QQ3b+k1bwr9f6zUb/Qe3VskyRxZrXhZWNIdoBvHIeCWACgIvQMp5RV 7WaLRzxSF9RB9w7cXSCgR/TCXGskU3qV7e1hFafnOMhbTg5o/LpiLLPqndlnw2IL EInSAeIRMsNyA1sTRHGVHy4JBYIYxmdFsSvx0whSEks7RssvPLDLA76UO98bZJrX Hc+FSR9wbGbxjLjDTAmToD4ke3lsz4hKsEqiJVFF7CC8Xi88hL/H1ykPTBmlrSHh h6tVCbUnfzqXk5KiA4Hdq4BgJ51GBNtaj9O2AncDie7PnvI59ouMvIjYZyojG+uF gPwAq80Iw9G9EelDP0cjmBbuywIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJ5Qk/OP ujCr87q94OsmvJgtoxLrMB8GA1UdIwQYMBaAFHKSb8YPfBhKYdc70JSqajhrYwAq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4MDVDRS8wRUIwOUQzNkFF NzQxMUVFOENFRDIzNUNDNEY5QUUwMi9jcEp2eGc5OEdFcGgxenZRbEtwcU9HdGpB Q28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NwSnZ4Zzk4R0VwaDF6dlFsS3BxT0d0akFDby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 MDVDRS8wRUIwOUQzNkFFNzQxMUVFOENFRDIzNUNDNEY5QUUwMi9jcEp2eGc5OEdF cGgxenZRbEtwcU9HdGpBQ28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA1lNaSrsjeIbDluF/HDJwqBPROEhOu2xQuLfyEZPP02iwuiJuCLOI8 HyOIVSYmwlh1x3Ib3mYIG+QUP9ts6whUxA5HTJMSIwfP3Q3YnYtUi6dsoIIIHCoz D2wvLXBzTUC5rFLQpSzIuOF+BpLzzWogF3WmPq4X2OF6pKQFGLLkyL/jervP0mv6 D/QI/lS+EXIxHFKxSYXUMPUJdYHhNOAmLw7Pl/KtSPqjOeQ1XBcMavGOjNGqJXgD lm6mlG5SNL8YZjQCatE8KWMD7lvx6iEvXDCHaBLaaYkxj/lry8J8FAD1xfNxfG11 3AsdJIgATp5pVJmFQnAQVUI8e84ErPxO -----END CERTIFICATE-----Generated at Wed Jun 18 03:01:04 2025 by rpki-client