$ rpki-client -vvf rpki.apnic.net/member_repository/A91829E3/C45F60DA143711EAACF9FA33C4F9AE02/I9INognIlcMA7mtlm2sYKZJfvU8.mft File: I9INognIlcMA7mtlm2sYKZJfvU8.mft (raw, json) Hash identifier: J+KSyc1fUhuqtAMpURwclRsdS6qjpSs9GZgmcWTKyAg= Subject key identifier: C5:16:B4:EF:11:55:04:81:77:C9:DB:A6:18:4C:BD:21:77:10:A4:54 Authority key identifier: 23:D2:0D:A2:09:C8:95:C3:00:EE:6B:65:9B:6B:18:29:92:5F:BD:4F Certificate issuer: /CN=A91829E3/serialNumber=23D20DA209C895C300EE6B659B6B1829925FBD4F Certificate serial: 0C27 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/I9INognIlcMA7mtlm2sYKZJfvU8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91829E3/C45F60DA143711EAACF9FA33C4F9AE02/I9INognIlcMA7mtlm2sYKZJfvU8.mft Manifest number: 0C12 Signing time: Wed 18 Jun 2025 18:38:22 +0000 Manifest this update: Wed 18 Jun 2025 18:38:22 +0000 Manifest next update: Wed 25 Jun 2025 18:38:22 +0000 Files and hashes: 1: I9INognIlcMA7mtlm2sYKZJfvU8.crl (hash: 4Jy44Js3sx291QKWc8DJ2RHqrg8p4de+5OOlRqQWmsg=) 2: 7B96F1340C6011F088E6FD2FC4F9AE02.roa (hash: FmIgsBhn26Msitd9uYBqz2EKKDjWry4yTM+2My3/Yyg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91829E3/C45F60DA143711EAACF9FA33C4F9AE02/I9INognIlcMA7mtlm2sYKZJfvU8.crl rsync://rpki.apnic.net/member_repository/A91829E3/C45F60DA143711EAACF9FA33C4F9AE02/I9INognIlcMA7mtlm2sYKZJfvU8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/I9INognIlcMA7mtlm2sYKZJfvU8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 25 Jun 2025 18:38:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3111 (0xc27) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91829E3, serialNumber=23D20DA209C895C300EE6B659B6B1829925FBD4F Validity Not Before: Jun 18 18:38:22 2025 GMT Not After : Jun 25 18:38:22 2025 GMT Subject: CN=6853079e-e35e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:a9:16:97:0c:f3:af:00:61:7c:1a:9d:ff:cc: 35:23:1b:33:e6:87:07:01:a8:00:6c:fc:f9:0a:77: 4f:13:a0:3f:0f:ed:81:fe:af:3e:9f:66:41:48:d5: 84:41:82:dc:11:19:4f:ad:13:a8:da:88:c2:a4:5a: 0d:3a:39:f7:e6:e5:a9:87:54:d0:1f:5b:72:93:d4: cf:f5:a8:9a:9a:5f:5e:a4:94:8b:e2:09:8a:17:68: 4f:46:4f:d7:3c:d0:2b:a2:7b:ae:99:d0:b1:5d:10: 2b:b1:2e:d9:e7:4f:63:4f:1e:92:58:7d:6c:2a:eb: 6f:e6:d7:75:b1:fe:28:b6:0f:0a:fc:87:9b:af:c8: e2:71:7f:8b:7a:a7:3f:45:1a:c6:cc:57:fb:9c:5f: cc:5e:88:7f:82:ef:97:b0:df:eb:07:ce:95:a6:7b: 8d:05:13:7c:c9:c4:0b:5c:c2:30:3f:c7:e7:4a:06: ad:c3:d2:b7:96:88:58:13:de:47:14:c4:f7:1d:88: 4a:fa:10:f6:cc:e9:85:18:7d:d6:d9:2d:97:55:c3: ce:40:61:dd:4b:ad:df:b6:49:3a:72:18:a6:2b:a7: 6d:ea:ed:c5:07:97:13:24:07:07:7f:70:5a:7e:b4: 93:d4:e3:a0:a8:94:b2:22:cf:ae:be:40:0e:eb:2e: 38:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C5:16:B4:EF:11:55:04:81:77:C9:DB:A6:18:4C:BD:21:77:10:A4:54 X509v3 Authority Key Identifier: keyid:23:D2:0D:A2:09:C8:95:C3:00:EE:6B:65:9B:6B:18:29:92:5F:BD:4F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91829E3/C45F60DA143711EAACF9FA33C4F9AE02/I9INognIlcMA7mtlm2sYKZJfvU8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/I9INognIlcMA7mtlm2sYKZJfvU8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91829E3/C45F60DA143711EAACF9FA33C4F9AE02/I9INognIlcMA7mtlm2sYKZJfvU8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2b:a7:c1:d3:90:b1:3b:4a:bb:56:56:40:60:b6:03:c5:7e:2d: b4:a1:a6:fd:2f:8f:70:da:2c:ac:19:ed:40:01:47:5d:90:cf: 16:e4:94:e0:30:c1:5d:2c:17:98:40:18:ab:b5:c2:6b:be:d5: 72:f8:21:46:97:5e:54:13:3b:29:d0:00:a2:95:86:4f:ed:75: be:13:b0:25:90:87:a4:5f:34:57:5c:7b:5d:55:68:42:13:92: d8:14:4d:61:90:1c:c0:6c:0e:7e:4f:15:0f:54:31:b5:ee:b0: 1b:fc:91:00:40:d6:6e:14:ec:aa:f2:fe:3a:6e:bb:8a:21:0b: 9c:a1:a6:20:ab:1b:3a:c2:cd:b8:18:ce:99:53:03:74:01:a6: f6:ee:2a:f0:e8:46:73:2f:7a:64:a1:6f:cc:1c:05:dd:17:6d: 1d:4f:f9:f4:4b:82:48:dd:cf:26:15:85:d5:85:1f:40:c7:1a: bd:37:58:89:6f:8a:a3:f8:7f:19:0a:e5:fb:53:f7:bd:a4:f8: 29:d3:33:0d:48:d6:20:e4:bb:ba:d1:0e:78:68:e3:53:9e:ae: aa:95:4e:fe:74:10:7b:d4:1c:fe:56:7f:0d:08:ca:79:af:17: 33:83:bb:3c:32:c9:d5:a0:72:5d:2b:1f:77:77:61:8b:8d:d9: 0d:c1:7a:0e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDCcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODI5RTMxMTAvBgNVBAUTKDIzRDIwREEyMDlDODk1QzMwMEVFNkI2NTlCNkIxODI5 OTI1RkJENEYwHhcNMjUwNjE4MTgzODIyWhcNMjUwNjI1MTgzODIyWjAYMRYwFAYD VQQDEw02ODUzMDc5ZS1lMzVlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs6kWlwzzrwBhfBqd/8w1Ixsz5ocHAagAbPz5CndPE6A/D+2B/q8+n2ZBSNWE QYLcERlPrROo2ojCpFoNOjn35uWph1TQH1tyk9TP9aiaml9epJSL4gmKF2hPRk/X PNAronuumdCxXRArsS7Z509jTx6SWH1sKutv5td1sf4otg8K/Iebr8jicX+Leqc/ RRrGzFf7nF/MXoh/gu+XsN/rB86VpnuNBRN8ycQLXMIwP8fnSgatw9K3lohYE95H FMT3HYhK+hD2zOmFGH3W2S2XVcPOQGHdS63ftkk6chimK6dt6u3FB5cTJAcHf3Ba frST1OOgqJSyIs+uvkAO6y44kwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMUWtO8R VQSBd8nbphhMvSF3EKRUMB8GA1UdIwQYMBaAFCPSDaIJyJXDAO5rZZtrGCmSX71P MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4MjlFMy9DNDVGNjBEQTE0 MzcxMUVBQUNGOUZBMzNDNEY5QUUwMi9JOUlOb2duSWxjTUE3bXRsbTJzWUtaSmZ2 VTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0k5SU5vZ25JbGNNQTdtdGxtMnNZS1pKZnZVOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 MjlFMy9DNDVGNjBEQTE0MzcxMUVBQUNGOUZBMzNDNEY5QUUwMi9JOUlOb2duSWxj TUE3bXRsbTJzWUtaSmZ2VTgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQArp8HTkLE7SrtWVkBgtgPFfi20oab9L49w2iysGe1AAUddkM8W5JTg MMFdLBeYQBirtcJrvtVy+CFGl15UEzsp0ACilYZP7XW+E7AlkIekXzRXXHtdVWhC E5LYFE1hkBzAbA5+TxUPVDG17rAb/JEAQNZuFOyq8v46bruKIQucoaYgqxs6ws24 GM6ZUwN0Aab27irw6EZzL3pkoW/MHAXdF20dT/n0S4JI3c8mFYXVhR9Axxq9N1iJ b4qj+H8ZCuX7U/e9pPgp0zMNSNYg5Lu60Q54aONTnq6qlU7+dBB71Bz+Vn8NCMp5 rxczg7s8MsnVoHJdKx93d2GLjdkNwXoO -----END CERTIFICATE-----Generated at Thu Jun 19 02:58:28 2025 by rpki-client