$ rpki-client -vvf rpki.apnic.net/member_repository/A91897BB/FC73FA0610E611EBB4A2521DC4F9AE02/tJ6O6BcDpKC6zKgkN4AvtcMLZWg.mft File: tJ6O6BcDpKC6zKgkN4AvtcMLZWg.mft (raw, json) Hash identifier: +SeZgj4FEJXrYrh2rop4cEMESQkCSwj4kdq7rQ0Ckak= Subject key identifier: 3B:7B:A5:25:6F:BD:92:3E:5D:22:85:C5:D5:13:92:08:E7:AA:BB:C2 Authority key identifier: B4:9E:8E:E8:17:03:A4:A0:BA:CC:A8:24:37:80:2F:B5:C3:0B:65:68 Certificate issuer: /CN=A91897BB/serialNumber=B49E8EE81703A4A0BACCA82437802FB5C30B6568 Certificate serial: 0793 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tJ6O6BcDpKC6zKgkN4AvtcMLZWg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91897BB/FC73FA0610E611EBB4A2521DC4F9AE02/tJ6O6BcDpKC6zKgkN4AvtcMLZWg.mft Manifest number: 078D Signing time: Mon 16 Jun 2025 21:08:24 +0000 Manifest this update: Mon 16 Jun 2025 21:08:24 +0000 Manifest next update: Mon 23 Jun 2025 21:08:24 +0000 Files and hashes: 1: tJ6O6BcDpKC6zKgkN4AvtcMLZWg.crl (hash: qEiMUZ64Ysbu/BhpvnmU1ZRxdXjJNuieV4p9q9kE8yA=) 2: E51ECC8610E711EBAD066E1DC4F9AE02.roa (hash: xKjoE/L7amuNhMSwGDrHGE81K3Mhyx0/ODd0Eq8CTmg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91897BB/FC73FA0610E611EBB4A2521DC4F9AE02/tJ6O6BcDpKC6zKgkN4AvtcMLZWg.crl rsync://rpki.apnic.net/member_repository/A91897BB/FC73FA0610E611EBB4A2521DC4F9AE02/tJ6O6BcDpKC6zKgkN4AvtcMLZWg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tJ6O6BcDpKC6zKgkN4AvtcMLZWg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 23 Jun 2025 21:08:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1939 (0x793) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91897BB, serialNumber=B49E8EE81703A4A0BACCA82437802FB5C30B6568 Validity Not Before: Jun 16 21:08:24 2025 GMT Not After : Jun 23 21:08:24 2025 GMT Subject: CN=685087c8-4517 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:0f:9d:d1:42:5b:fe:8a:26:ec:1a:ec:9c:fa: 84:49:13:19:35:78:36:aa:22:6d:aa:45:17:62:8b: 3b:9c:62:64:da:78:cd:89:a6:51:11:33:3d:43:76: 66:cb:a7:94:60:ca:8e:00:18:5a:a7:36:7b:dc:e0: 48:1f:46:9a:9d:f3:f0:c9:05:e7:e9:c3:67:bf:62: 06:e9:29:23:fd:21:58:19:56:4a:e5:eb:73:81:4c: 07:31:e1:40:5a:23:a4:a8:16:b0:97:83:c7:a3:c5: 67:92:6b:65:2f:02:b4:d7:cc:dd:0f:67:2c:5e:c6: ea:50:16:32:9e:08:6e:b0:5b:6d:12:63:f3:78:e2: a0:df:12:c1:df:65:56:4a:8d:b6:11:3d:5e:f0:e4: 85:48:d1:8b:0d:06:af:8f:60:d3:7c:50:d8:d5:07: 05:d8:5b:8a:28:ca:fe:9f:11:84:fe:b7:49:51:b3: 6f:00:2b:be:8e:16:38:53:29:9e:21:f8:ab:a4:ca: 1e:ae:e6:3b:71:a6:32:5b:c6:b3:06:7c:80:7c:9f: 68:02:33:95:cf:38:36:3f:ce:d6:24:be:5a:0b:da: b8:d1:95:e9:f8:16:46:9a:f1:b9:41:41:ac:ef:4f: 68:14:b8:56:49:1c:8d:17:92:95:f6:3c:86:45:e0: e8:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3B:7B:A5:25:6F:BD:92:3E:5D:22:85:C5:D5:13:92:08:E7:AA:BB:C2 X509v3 Authority Key Identifier: keyid:B4:9E:8E:E8:17:03:A4:A0:BA:CC:A8:24:37:80:2F:B5:C3:0B:65:68 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91897BB/FC73FA0610E611EBB4A2521DC4F9AE02/tJ6O6BcDpKC6zKgkN4AvtcMLZWg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tJ6O6BcDpKC6zKgkN4AvtcMLZWg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91897BB/FC73FA0610E611EBB4A2521DC4F9AE02/tJ6O6BcDpKC6zKgkN4AvtcMLZWg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8c:c0:95:b7:be:53:1b:00:ad:3b:6b:00:4f:60:3f:fc:c6:ab: e3:9c:4d:24:a8:79:c9:3e:f7:8a:5a:63:08:ba:f7:05:b7:83: c3:61:eb:e2:57:d9:ce:24:57:13:f2:27:ba:ae:fb:bd:3b:a3: ed:ca:f3:26:da:7c:d7:7f:1f:7c:7c:9d:08:08:78:e4:1d:2c: 7e:5d:18:d6:18:62:7f:13:27:11:98:f7:39:27:4d:cb:01:ce: d7:03:22:98:b6:ca:28:4c:20:27:e6:a7:45:55:25:78:0e:c9: 25:d3:8e:67:7f:da:35:1d:b8:e4:a4:46:6c:4e:b4:da:ea:6d: 56:a1:70:e7:61:b4:7e:a6:a3:98:2c:30:da:61:93:cf:b8:9d: a5:ec:4b:be:6b:b6:05:24:08:fb:60:96:79:ff:7b:bd:3c:eb: 62:36:f4:bb:37:93:a7:74:57:e8:8c:e4:38:26:21:07:ea:de: bb:6c:21:46:f9:82:87:d8:62:9c:0a:38:31:9c:10:c5:8d:df: 12:33:58:51:06:f1:bc:f2:fe:fe:91:d4:05:f0:78:e2:44:1f: a8:17:fb:ce:01:0c:b0:24:c3:b3:b1:d6:f0:cd:99:f0:5c:ba: 91:52:58:80:4b:74:3b:24:4a:55:04:d6:f5:6f:a7:27:1d:4a: 0a:52:5c:35 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB5MwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODk3QkIxMTAvBgNVBAUTKEI0OUU4RUU4MTcwM0E0QTBCQUNDQTgyNDM3ODAyRkI1 QzMwQjY1NjgwHhcNMjUwNjE2MjEwODI0WhcNMjUwNjIzMjEwODI0WjAYMRYwFAYD VQQDEw02ODUwODdjOC00NTE3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6A+d0UJb/oom7BrsnPqESRMZNXg2qiJtqkUXYos7nGJk2njNiaZRETM9Q3Zm y6eUYMqOABhapzZ73OBIH0aanfPwyQXn6cNnv2IG6Skj/SFYGVZK5etzgUwHMeFA WiOkqBawl4PHo8VnkmtlLwK018zdD2csXsbqUBYynghusFttEmPzeOKg3xLB32VW So22ET1e8OSFSNGLDQavj2DTfFDY1QcF2FuKKMr+nxGE/rdJUbNvACu+jhY4Uyme IfirpMoeruY7caYyW8azBnyAfJ9oAjOVzzg2P87WJL5aC9q40ZXp+BZGmvG5QUGs 709oFLhWSRyNF5KV9jyGReDozwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDt7pSVv vZI+XSKFxdUTkgjnqrvCMB8GA1UdIwQYMBaAFLSejugXA6SgusyoJDeAL7XDC2Vo MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4OTdCQi9GQzczRkEwNjEw RTYxMUVCQjRBMjUyMURDNEY5QUUwMi90SjZPNkJjRHBLQzZ6S2drTjRBdnRjTUxa V2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RKNk82QmNEcEtDNnpLZ2tONEF2dGNNTFpXZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 OTdCQi9GQzczRkEwNjEwRTYxMUVCQjRBMjUyMURDNEY5QUUwMi90SjZPNkJjRHBL QzZ6S2drTjRBdnRjTUxaV2cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCMwJW3vlMbAK07awBPYD/8xqvjnE0kqHnJPveKWmMIuvcFt4PDYevi V9nOJFcT8ie6rvu9O6PtyvMm2nzXfx98fJ0ICHjkHSx+XRjWGGJ/EycRmPc5J03L Ac7XAyKYtsooTCAn5qdFVSV4Dskl045nf9o1HbjkpEZsTrTa6m1WoXDnYbR+pqOY LDDaYZPPuJ2l7Eu+a7YFJAj7YJZ5/3u9POtiNvS7N5OndFfojOQ4JiEH6t67bCFG +YKH2GKcCjgxnBDFjd8SM1hRBvG88v7+kdQF8HjiRB+oF/vOAQywJMOzsdbwzZnw XLqRUliAS3Q7JEpVBNb1b6cnHUoKUlw1 -----END CERTIFICATE-----Generated at Wed Jun 18 09:50:41 2025 by rpki-client