$ rpki-client -vvf rpki.apnic.net/member_repository/A91912DD/DB4A6CFC10D311EA9BD1A55DC4F9AE02/BRnee0hmA7e6W2bauYkgP98ttJQ.mft File: BRnee0hmA7e6W2bauYkgP98ttJQ.mft (raw, json) Hash identifier: tnycgrjxKP54eCaDenIxrMnyyxEknayTdE6bwHPAVnk= Subject key identifier: 04:8A:5D:87:F7:66:35:7E:B6:E7:DE:90:6D:E3:29:E4:CB:14:CA:50 Authority key identifier: 05:19:DE:7B:48:66:03:B7:BA:5B:66:DA:B9:89:20:3F:DF:2D:B4:94 Certificate issuer: /CN=A91912DD/serialNumber=0519DE7B486603B7BA5B66DAB989203FDF2DB494 Certificate serial: 0C1C Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/BRnee0hmA7e6W2bauYkgP98ttJQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91912DD/DB4A6CFC10D311EA9BD1A55DC4F9AE02/BRnee0hmA7e6W2bauYkgP98ttJQ.mft Manifest number: 0C15 Signing time: Fri 20 Jun 2025 16:42:18 +0000 Manifest this update: Fri 20 Jun 2025 16:42:18 +0000 Manifest next update: Fri 27 Jun 2025 16:42:18 +0000 Files and hashes: 1: BRnee0hmA7e6W2bauYkgP98ttJQ.crl (hash: Yg9eYdCuX+BGj13aArpf0FqX8ZQH2uscgtSlkcc8oLs=) 2: 05BE20062C5811EAA90F4B0EC4F9AE02.roa (hash: KZLdlP1OQSAqnUANoQynhHKfuaNstAKbyzLi1TUSbtw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91912DD/DB4A6CFC10D311EA9BD1A55DC4F9AE02/BRnee0hmA7e6W2bauYkgP98ttJQ.crl rsync://rpki.apnic.net/member_repository/A91912DD/DB4A6CFC10D311EA9BD1A55DC4F9AE02/BRnee0hmA7e6W2bauYkgP98ttJQ.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/BRnee0hmA7e6W2bauYkgP98ttJQ.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 27 Jun 2025 16:42:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3100 (0xc1c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91912DD, serialNumber=0519DE7B486603B7BA5B66DAB989203FDF2DB494 Validity Not Before: Jun 20 16:42:18 2025 GMT Not After : Jun 27 16:42:18 2025 GMT Subject: CN=68558f6a-b7ed Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:9e:63:64:e0:e6:7f:bb:65:ad:8f:59:8c:fd: e7:00:38:77:6a:d4:41:10:4a:44:74:46:b6:cf:42: da:ee:19:83:ae:7a:65:e2:ca:a5:ff:0e:0b:6a:6a: 65:ff:46:50:97:04:80:45:01:9d:5c:f9:c3:6f:8a: 64:d7:4b:8f:d1:ef:b0:15:ea:c9:69:20:d0:4c:95: 06:a3:27:59:d5:69:c1:d0:8e:a1:dc:8c:3d:8d:22: 91:63:2d:05:b9:31:c5:82:8a:1b:65:cf:0f:30:d5: a5:53:a5:52:26:34:c8:5c:1b:47:5c:66:a0:a3:a9: b5:e2:9b:b9:84:fe:bc:e0:05:c4:fe:71:28:ca:3c: e6:80:1f:b6:c4:4b:4c:d3:c8:68:63:70:1e:ae:34: 2f:c2:0a:33:be:10:7c:f1:eb:b8:96:19:1a:6b:90: 46:f5:73:69:cc:18:1d:12:e5:95:19:a3:9a:3f:a7: b4:af:8d:60:c3:7e:7b:dd:72:53:2a:9b:83:3a:da: f0:13:2a:1d:ee:92:86:56:21:44:70:fe:e8:5c:19: 50:cd:34:1d:b9:77:9f:d6:6b:c6:d4:6d:4f:62:a6: ec:5c:ee:10:e1:8b:1c:d8:6c:58:d1:e9:1c:96:3b: dd:5e:99:6a:71:36:06:71:20:52:0a:09:11:0f:6b: 81:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 04:8A:5D:87:F7:66:35:7E:B6:E7:DE:90:6D:E3:29:E4:CB:14:CA:50 X509v3 Authority Key Identifier: keyid:05:19:DE:7B:48:66:03:B7:BA:5B:66:DA:B9:89:20:3F:DF:2D:B4:94 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91912DD/DB4A6CFC10D311EA9BD1A55DC4F9AE02/BRnee0hmA7e6W2bauYkgP98ttJQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/BRnee0hmA7e6W2bauYkgP98ttJQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91912DD/DB4A6CFC10D311EA9BD1A55DC4F9AE02/BRnee0hmA7e6W2bauYkgP98ttJQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 33:e5:bc:fd:17:79:4b:90:8a:36:6c:2c:f1:3b:06:bd:82:6d: 1d:8a:6e:28:fc:29:6b:c1:55:be:07:fd:9b:36:01:23:67:af: 58:fa:8a:5d:99:04:75:cf:18:e7:50:8c:fa:7c:2a:93:d3:ec: 28:af:d6:20:c3:3c:86:f2:95:a4:2c:2c:20:4e:5b:81:b6:2a: 27:23:cd:ca:0e:47:cb:6d:55:32:cc:30:80:2c:50:1a:bf:31: bb:98:73:43:01:c7:6f:78:ef:f5:c9:6c:ec:f2:e1:84:a1:d8: eb:e9:b3:ff:47:e3:53:ba:b6:93:36:35:ed:ea:97:cc:4c:08: 2b:7d:4d:ae:2d:5b:b1:8e:33:f0:e7:8d:0e:56:19:ef:89:f4: df:64:6b:ef:dd:7c:fc:0b:56:bb:00:ca:cd:3d:18:32:f0:8c: 2e:4d:28:5e:3b:51:d8:57:1b:5c:2d:3e:d8:fd:14:70:fa:00: d2:74:97:35:62:f3:0e:ef:47:77:26:93:f5:45:ed:9d:6a:e4: a8:85:c6:66:f4:a5:5b:04:ad:71:d2:cf:21:f9:d2:b5:42:ab: 35:fa:08:71:ca:3a:dc:9d:3f:f9:b2:1e:ae:1c:cc:18:d2:b9: d3:54:ab:31:82:3a:6f:db:7c:26:e5:b4:b2:00:83:cd:43:67: 2a:9d:dc:c1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDBwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTEyREQxMTAvBgNVBAUTKDA1MTlERTdCNDg2NjAzQjdCQTVCNjZEQUI5ODkyMDNG REYyREI0OTQwHhcNMjUwNjIwMTY0MjE4WhcNMjUwNjI3MTY0MjE4WjAYMRYwFAYD VQQDEw02ODU1OGY2YS1iN2VkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqZ5jZODmf7tlrY9ZjP3nADh3atRBEEpEdEa2z0La7hmDrnpl4sql/w4Lampl /0ZQlwSARQGdXPnDb4pk10uP0e+wFerJaSDQTJUGoydZ1WnB0I6h3Iw9jSKRYy0F uTHFgoobZc8PMNWlU6VSJjTIXBtHXGago6m14pu5hP684AXE/nEoyjzmgB+2xEtM 08hoY3AerjQvwgozvhB88eu4lhkaa5BG9XNpzBgdEuWVGaOaP6e0r41gw3573XJT KpuDOtrwEyod7pKGViFEcP7oXBlQzTQduXef1mvG1G1PYqbsXO4Q4Ysc2GxY0ekc ljvdXplqcTYGcSBSCgkRD2uB/QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFASKXYf3 ZjV+tufekG3jKeTLFMpQMB8GA1UdIwQYMBaAFAUZ3ntIZgO3ultm2rmJID/fLbSU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5MTJERC9EQjRBNkNGQzEw RDMxMUVBOUJEMUE1NURDNEY5QUUwMi9CUm5lZTBobUE3ZTZXMmJhdVlrZ1A5OHR0 SlEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL0JSbmVlMGhtQTdlNlcyYmF1WWtnUDk4dHRKUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 MTJERC9EQjRBNkNGQzEwRDMxMUVBOUJEMUE1NURDNEY5QUUwMi9CUm5lZTBobUE3 ZTZXMmJhdVlrZ1A5OHR0SlEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAz5bz9F3lLkIo2bCzxOwa9gm0dim4o/ClrwVW+B/2bNgEjZ69Y+opd mQR1zxjnUIz6fCqT0+wor9YgwzyG8pWkLCwgTluBtionI83KDkfLbVUyzDCALFAa vzG7mHNDAcdveO/1yWzs8uGEodjr6bP/R+NTuraTNjXt6pfMTAgrfU2uLVuxjjPw 540OVhnvifTfZGvv3Xz8C1a7AMrNPRgy8IwuTSheO1HYVxtcLT7Y/RRw+gDSdJc1 YvMO70d3JpP1Re2dauSohcZm9KVbBK1x0s8h+dK1Qqs1+ghxyjrcnT/5sh6uHMwY 0rnTVKsxgjpv23wm5bSyAIPNQ2cqndzB -----END CERTIFICATE-----Generated at Sun Jun 22 07:20:59 2025 by rpki-client