$ rpki-client -vvf rpki.apnic.net/member_repository/A91850AD/60EBE1AC643411EF842FC620C4F9AE02/D2tHILCjVyLYXzRG79R0C9NBg04.mft File: D2tHILCjVyLYXzRG79R0C9NBg04.mft (raw, json) Hash identifier: 6GAd5DBpZ1Bn2n5qPb3/4ThwFmM64nD4KE4//YX/b0Y= Subject key identifier: CA:75:31:DB:CA:1F:BF:9C:B5:52:C0:73:A3:88:36:2B:48:F2:BE:E5 Authority key identifier: 0F:6B:47:20:B0:A3:57:22:D8:5F:34:46:EF:D4:74:0B:D3:41:83:4E Certificate issuer: /CN=A91850AD/serialNumber=0F6B4720B0A35722D85F3446EFD4740BD341834E Certificate serial: 99 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/D2tHILCjVyLYXzRG79R0C9NBg04.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91850AD/60EBE1AC643411EF842FC620C4F9AE02/D2tHILCjVyLYXzRG79R0C9NBg04.mft Manifest number: 98 Signing time: Thu 19 Jun 2025 05:41:18 +0000 Manifest this update: Thu 19 Jun 2025 05:41:18 +0000 Manifest next update: Thu 26 Jun 2025 05:41:18 +0000 Files and hashes: 1: D2tHILCjVyLYXzRG79R0C9NBg04.crl (hash: YrMhmGWryyqxXvSOa+Gu7Gu/k5Giif3YSTu7tDq6fT4=) 2: CD1FB5C2643611EFA2C41948C4F9AE02.roa (hash: 2LzL+Qzx3p8kIBRv0QRWzi2huUwOzt6OF9O+pNxeoDc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91850AD/60EBE1AC643411EF842FC620C4F9AE02/D2tHILCjVyLYXzRG79R0C9NBg04.crl rsync://rpki.apnic.net/member_repository/A91850AD/60EBE1AC643411EF842FC620C4F9AE02/D2tHILCjVyLYXzRG79R0C9NBg04.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/D2tHILCjVyLYXzRG79R0C9NBg04.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 26 Jun 2025 05:41:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 153 (0x99) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91850AD, serialNumber=0F6B4720B0A35722D85F3446EFD4740BD341834E Validity Not Before: Jun 19 05:41:18 2025 GMT Not After : Jun 26 05:41:18 2025 GMT Subject: CN=6853a2fe-ba63 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:3e:8d:8d:83:b4:42:ef:3a:92:94:59:83:1d: 45:28:e5:d3:2e:a7:65:28:42:bb:9f:a0:19:74:43: 50:1f:cb:ca:36:2a:5b:cc:36:59:6a:c2:e6:49:08: e7:59:67:c5:80:e5:7f:fb:4a:fc:e3:88:91:db:0b: 76:a2:4e:44:6b:33:76:ae:75:4f:71:1a:8b:dc:39: ab:c1:ce:ba:b8:57:db:e5:ab:b5:19:bc:40:8d:2d: f2:79:70:d2:68:2b:7f:29:7d:1a:b6:ca:6e:c7:ad: 5d:a5:35:ea:d2:b4:90:21:a2:a8:4f:b3:5e:24:5f: 94:72:43:bf:65:57:81:5f:35:29:c6:70:06:05:db: e4:5c:12:3c:8d:0b:bc:61:1c:db:1e:da:4f:1a:0d: 6f:2b:1f:1c:29:93:d4:88:0f:04:be:f2:fb:cb:32: 13:d4:e9:17:9d:ec:f7:78:d0:1d:f8:0c:07:f1:fe: c5:7c:a7:41:6e:fa:1c:1b:86:1f:05:bb:e8:bf:19: f1:0b:b1:e1:ec:6a:c1:94:76:40:5f:41:e8:10:48: ca:7e:4f:54:ba:27:82:7a:84:f3:c3:1e:92:8b:15: 3a:3f:50:58:6d:aa:bd:3d:e3:39:bc:5c:48:15:a9: eb:29:3d:8f:fd:75:e3:77:c2:b1:ff:44:f1:69:ce: d5:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CA:75:31:DB:CA:1F:BF:9C:B5:52:C0:73:A3:88:36:2B:48:F2:BE:E5 X509v3 Authority Key Identifier: keyid:0F:6B:47:20:B0:A3:57:22:D8:5F:34:46:EF:D4:74:0B:D3:41:83:4E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91850AD/60EBE1AC643411EF842FC620C4F9AE02/D2tHILCjVyLYXzRG79R0C9NBg04.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/D2tHILCjVyLYXzRG79R0C9NBg04.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91850AD/60EBE1AC643411EF842FC620C4F9AE02/D2tHILCjVyLYXzRG79R0C9NBg04.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9b:2b:34:71:3e:d3:97:68:fb:1f:ad:ba:da:2d:d9:25:5b:d1: bb:f3:05:cf:87:38:48:bd:9f:79:73:b2:aa:5c:f0:c9:3e:44: 54:77:08:a7:c6:5a:61:35:e0:c1:77:f9:f1:22:a7:78:0b:9b: d6:5e:90:14:02:79:e9:22:2b:cb:45:01:11:bd:5a:ed:14:13: 13:12:e0:ac:7d:44:ea:b6:df:04:cc:4a:df:cb:c7:99:91:57: 5e:9f:46:98:20:d6:80:e8:6e:49:e1:df:82:99:e2:5c:57:2e: a9:7a:ae:1a:a5:e5:8e:a6:46:85:38:d1:64:11:5e:ca:a2:b2: 89:32:5e:b0:e5:8b:da:a6:96:94:f8:cb:b9:b9:42:64:1f:cb: 8c:2c:61:23:ca:42:bc:a3:f6:64:61:f4:5f:1a:c5:0e:da:09: cb:ed:a5:a4:79:b3:8a:41:b8:e4:9e:3d:21:ff:1a:79:1f:53: 00:37:3e:1f:f4:f8:91:44:3c:7d:4f:b4:90:bb:7a:76:1b:04: 6e:26:52:d4:87:0d:2d:23:06:63:4e:70:a5:d2:da:69:38:0c: b7:3c:55:e3:b0:50:a3:ad:b7:66:22:c0:8e:f9:1d:90:07:27: 6f:59:ac:1f:1b:30:dc:89:02:86:0f:ae:ec:1f:ea:f7:20:e4: 67:9e:d6:70 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAJkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODUwQUQxMTAvBgNVBAUTKDBGNkI0NzIwQjBBMzU3MjJEODVGMzQ0NkVGRDQ3NDBC RDM0MTgzNEUwHhcNMjUwNjE5MDU0MTE4WhcNMjUwNjI2MDU0MTE4WjAYMRYwFAYD VQQDEw02ODUzYTJmZS1iYTYzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwj6NjYO0Qu86kpRZgx1FKOXTLqdlKEK7n6AZdENQH8vKNipbzDZZasLmSQjn WWfFgOV/+0r844iR2wt2ok5EazN2rnVPcRqL3Dmrwc66uFfb5au1GbxAjS3yeXDS aCt/KX0atspux61dpTXq0rSQIaKoT7NeJF+UckO/ZVeBXzUpxnAGBdvkXBI8jQu8 YRzbHtpPGg1vKx8cKZPUiA8EvvL7yzIT1OkXnez3eNAd+AwH8f7FfKdBbvocG4Yf BbvovxnxC7Hh7GrBlHZAX0HoEEjKfk9UuieCeoTzwx6SixU6P1BYbaq9PeM5vFxI FanrKT2P/XXjd8Kx/0Txac7VrwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMp1MdvK H7+ctVLAc6OINitI8r7lMB8GA1UdIwQYMBaAFA9rRyCwo1ci2F80Ru/UdAvTQYNO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NTBBRC82MEVCRTFBQzY0 MzQxMUVGODQyRkM2MjBDNEY5QUUwMi9EMnRISUxDalZ5TFlYelJHNzlSMEM5TkJn MDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0QydEhJTENqVnlMWVh6Ukc3OVIwQzlOQmcwNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NTBBRC82MEVCRTFBQzY0MzQxMUVGODQyRkM2MjBDNEY5QUUwMi9EMnRISUxDalZ5 TFlYelJHNzlSMEM5TkJnMDQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCbKzRxPtOXaPsfrbraLdklW9G78wXPhzhIvZ95c7KqXPDJPkRUdwin xlphNeDBd/nxIqd4C5vWXpAUAnnpIivLRQERvVrtFBMTEuCsfUTqtt8EzErfy8eZ kVden0aYINaA6G5J4d+CmeJcVy6peq4apeWOpkaFONFkEV7KorKJMl6w5YvappaU +Mu5uUJkH8uMLGEjykK8o/ZkYfRfGsUO2gnL7aWkebOKQbjknj0h/xp5H1MANz4f 9PiRRDx9T7SQu3p2GwRuJlLUhw0tIwZjTnCl0tppOAy3PFXjsFCjrbdmIsCO+R2Q BydvWawfGzDciQKGD67sH+r3IORnntZw -----END CERTIFICATE-----Generated at Fri Jun 20 12:39:14 2025 by rpki-client