$ rpki-client -vvf rpki.apnic.net/member_repository/A91964B3/2A5940F24BB311E9AB151C17C4F9AE02/RkhU-1CpkDxSU0GMWD0PMbhB1Zc.mft File: RkhU-1CpkDxSU0GMWD0PMbhB1Zc.mft (raw, json) Hash identifier: gYPWclvYLQYbN4s/j0dJzqmVhQY2VI0OrLhtD4zUyp8= Subject key identifier: 95:7D:BF:83:0E:C4:D8:74:FA:D2:D3:80:ED:E2:0B:BF:0C:B2:42:53 Authority key identifier: 46:48:54:FB:50:A9:90:3C:52:53:41:8C:58:3D:0F:31:B8:41:D5:97 Certificate issuer: /CN=A91964B3/serialNumber=464854FB50A9903C5253418C583D0F31B841D597 Certificate serial: 102B Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RkhU-1CpkDxSU0GMWD0PMbhB1Zc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91964B3/2A5940F24BB311E9AB151C17C4F9AE02/RkhU-1CpkDxSU0GMWD0PMbhB1Zc.mft Manifest number: 101B Signing time: Fri 20 Jun 2025 14:24:17 +0000 Manifest this update: Fri 20 Jun 2025 14:24:17 +0000 Manifest next update: Fri 27 Jun 2025 14:24:17 +0000 Files and hashes: 1: RkhU-1CpkDxSU0GMWD0PMbhB1Zc.crl (hash: Boc8nuK/LBS5rnEAQIIEoniOK/sGZhupmAAwx9NsUvM=) 2: 23B68638C5DD11EABC58FD24C4F9AE02.roa (hash: 7YuoX9OkBSRUQiHpsiuHEMGmDB7ygNEWHmpkRA4QfgE=) 3: 5D563164AF3411EFB5B51A57C4F9AE02.roa (hash: Mjf+9MFV/8wopOF7hLs3Tt14yZvRKLf5RcXcRhi35uI=) 4: 1396434EC90A11EF8577744AC4F9AE02.roa (hash: vv5/sNroDyn31EV1FuwDRkKZ1Ky/CQIEoorZo83v9h8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91964B3/2A5940F24BB311E9AB151C17C4F9AE02/RkhU-1CpkDxSU0GMWD0PMbhB1Zc.crl rsync://rpki.apnic.net/member_repository/A91964B3/2A5940F24BB311E9AB151C17C4F9AE02/RkhU-1CpkDxSU0GMWD0PMbhB1Zc.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RkhU-1CpkDxSU0GMWD0PMbhB1Zc.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 27 Jun 2025 14:24:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4139 (0x102b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91964B3, serialNumber=464854FB50A9903C5253418C583D0F31B841D597 Validity Not Before: Jun 20 14:24:17 2025 GMT Not After : Jun 27 14:24:17 2025 GMT Subject: CN=68556f11-64de Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:89:36:11:49:09:8c:7c:14:05:46:c1:d8:8b: f9:ce:bb:9b:9e:68:8e:42:20:b4:b7:fc:96:77:b1: 18:a8:70:64:eb:4c:88:49:46:8f:07:be:ab:dc:9c: 39:00:48:ad:52:9f:8d:a2:d6:cb:d5:cd:28:da:c8: 4f:5f:f2:e7:3f:ac:5b:77:14:3f:c2:54:fd:67:fe: da:0a:c9:a9:3d:2b:38:b7:2c:4d:9d:9b:a3:d8:35: 9f:f7:63:43:de:ee:43:72:95:d0:05:19:28:c3:58: 9c:bb:61:cf:b6:aa:62:c9:aa:ff:a5:72:7a:19:ae: f6:a3:8c:79:a9:d9:14:8e:fd:77:6c:2b:dc:63:40: 53:ef:22:f9:bf:31:77:a4:ec:12:1b:00:2b:7d:3b: da:0c:4c:3b:fa:8c:ae:1c:ff:bc:e9:5a:69:6c:64: 22:2b:09:69:d1:55:dc:6d:98:9d:9b:94:32:c6:da: f3:67:af:ac:4f:63:46:0a:ed:60:78:e6:d3:4f:2d: 01:65:59:98:b5:e5:32:c3:56:15:71:70:bc:c7:79: 57:2a:04:9a:55:e2:46:d5:2c:c3:9a:f6:bc:94:24: ad:28:60:0e:e0:90:7b:a3:98:ef:a4:90:63:1e:47: c3:16:d2:d4:2d:d5:31:12:61:04:cd:05:c1:8f:10: 5d:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 95:7D:BF:83:0E:C4:D8:74:FA:D2:D3:80:ED:E2:0B:BF:0C:B2:42:53 X509v3 Authority Key Identifier: keyid:46:48:54:FB:50:A9:90:3C:52:53:41:8C:58:3D:0F:31:B8:41:D5:97 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91964B3/2A5940F24BB311E9AB151C17C4F9AE02/RkhU-1CpkDxSU0GMWD0PMbhB1Zc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RkhU-1CpkDxSU0GMWD0PMbhB1Zc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91964B3/2A5940F24BB311E9AB151C17C4F9AE02/RkhU-1CpkDxSU0GMWD0PMbhB1Zc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 74:41:88:0e:b5:12:2e:c9:85:b9:23:5b:80:2c:f7:12:f3:17: 54:2d:1c:54:da:18:0d:58:55:fd:6e:f1:ed:92:a9:67:e2:0e: 68:11:57:fa:ab:4a:8c:ef:9a:04:49:60:8d:fd:c9:86:64:e6: bf:52:9a:bf:c7:a9:03:5d:cb:a7:66:18:cd:8d:3c:9a:7d:99: 9e:a7:4f:f1:e0:18:be:9a:53:fc:c2:f9:26:51:86:cf:41:07: 59:7f:b8:0a:e0:60:dc:cd:30:96:5a:39:32:5c:3a:ea:ea:2d: c2:ff:b1:3a:7d:0b:b2:75:82:97:02:79:d2:0d:24:ea:6f:04: d8:fe:30:a1:dd:59:20:72:26:f9:8d:77:44:c0:91:52:93:ea: 98:75:7b:92:0b:a7:97:b4:ca:5e:25:9d:47:ac:36:7d:52:28: 11:e1:cc:c4:d0:a5:82:a9:ba:d7:82:0d:f1:db:19:9f:b2:05: 93:78:04:3d:ab:27:ac:1b:c7:8e:19:3a:e0:21:f2:c5:ad:bb: af:6c:55:bf:b6:77:2b:6d:c6:5a:e9:3f:d6:71:06:32:d7:05: 19:40:59:79:05:65:ab:cc:65:dc:42:13:c1:98:19:4a:04:ef: 11:a4:d7:37:3d:14:85:ab:80:53:e2:5a:92:e5:26:2c:5b:c2: 3b:47:c3:92 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICECswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTY0QjMxMTAvBgNVBAUTKDQ2NDg1NEZCNTBBOTkwM0M1MjUzNDE4QzU4M0QwRjMx Qjg0MUQ1OTcwHhcNMjUwNjIwMTQyNDE3WhcNMjUwNjI3MTQyNDE3WjAYMRYwFAYD VQQDEw02ODU1NmYxMS02NGRlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA54k2EUkJjHwUBUbB2Iv5zrubnmiOQiC0t/yWd7EYqHBk60yISUaPB76r3Jw5 AEitUp+NotbL1c0o2shPX/LnP6xbdxQ/wlT9Z/7aCsmpPSs4tyxNnZuj2DWf92ND 3u5DcpXQBRkow1icu2HPtqpiyar/pXJ6Ga72o4x5qdkUjv13bCvcY0BT7yL5vzF3 pOwSGwArfTvaDEw7+oyuHP+86VppbGQiKwlp0VXcbZidm5QyxtrzZ6+sT2NGCu1g eObTTy0BZVmYteUyw1YVcXC8x3lXKgSaVeJG1SzDmva8lCStKGAO4JB7o5jvpJBj HkfDFtLULdUxEmEEzQXBjxBd6QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJV9v4MO xNh0+tLTgO3iC78MskJTMB8GA1UdIwQYMBaAFEZIVPtQqZA8UlNBjFg9DzG4QdWX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NjRCMy8yQTU5NDBGMjRC QjMxMUU5QUIxNTFDMTdDNEY5QUUwMi9Sa2hVLTFDcGtEeFNVMEdNV0QwUE1iaEIx WmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1JraFUtMUNwa0R4U1UwR01XRDBQTWJoQjFaYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NjRCMy8yQTU5NDBGMjRCQjMxMUU5QUIxNTFDMTdDNEY5QUUwMi9Sa2hVLTFDcGtE eFNVMEdNV0QwUE1iaEIxWmMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB0QYgOtRIuyYW5I1uALPcS8xdULRxU2hgNWFX9bvHtkqln4g5oEVf6 q0qM75oESWCN/cmGZOa/Upq/x6kDXcunZhjNjTyafZmep0/x4Bi+mlP8wvkmUYbP QQdZf7gK4GDczTCWWjkyXDrq6i3C/7E6fQuydYKXAnnSDSTqbwTY/jCh3Vkgcib5 jXdEwJFSk+qYdXuSC6eXtMpeJZ1HrDZ9UigR4czE0KWCqbrXgg3x2xmfsgWTeAQ9 qyesG8eOGTrgIfLFrbuvbFW/tncrbcZa6T/WcQYy1wUZQFl5BWWrzGXcQhPBmBlK BO8RpNc3PRSFq4BT4lqS5SYsW8I7R8OS -----END CERTIFICATE-----Generated at Sat Jun 21 16:16:44 2025 by rpki-client