$ rpki-client -vvf rpki.apnic.net/member_repository/A919FF19/D23CB0BAC1AF11EFBE7A145DC4F9AE02/jWEfLNc3lK-AHBv2nYhICROAtKU.mft File: jWEfLNc3lK-AHBv2nYhICROAtKU.mft (raw, json) Hash identifier: VrHfOGkp17VGBBCg/mkqDO6mmSfEvekeoBs7iT2seOQ= Subject key identifier: AA:22:26:FF:72:AD:A5:B1:AF:CE:5E:71:76:ED:71:0D:E6:52:53:8E Authority key identifier: 8D:61:1F:2C:D7:37:94:AF:80:1C:1B:F6:9D:88:48:09:13:80:B4:A5 Certificate issuer: /CN=A919FF19/serialNumber=8D611F2CD73794AF801C1BF69D8848091380B4A5 Certificate serial: 62 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jWEfLNc3lK-AHBv2nYhICROAtKU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919FF19/D23CB0BAC1AF11EFBE7A145DC4F9AE02/jWEfLNc3lK-AHBv2nYhICROAtKU.mft Manifest number: 5F Signing time: Tue 17 Jun 2025 06:01:37 +0000 Manifest this update: Tue 17 Jun 2025 06:01:36 +0000 Manifest next update: Tue 24 Jun 2025 06:01:36 +0000 Files and hashes: 1: jWEfLNc3lK-AHBv2nYhICROAtKU.crl (hash: gLL4JOWzrC7yTFEansQ27fZ3ReXbKLnjxwWYIYBNvuA=) 2: A1FE9790C1B111EFACAB4071C4F9AE02.roa (hash: nTebHJ2nY/z4pA9GR9Zium43gwzyk8WFga213syhwvM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919FF19/D23CB0BAC1AF11EFBE7A145DC4F9AE02/jWEfLNc3lK-AHBv2nYhICROAtKU.crl rsync://rpki.apnic.net/member_repository/A919FF19/D23CB0BAC1AF11EFBE7A145DC4F9AE02/jWEfLNc3lK-AHBv2nYhICROAtKU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jWEfLNc3lK-AHBv2nYhICROAtKU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 24 Jun 2025 06:01:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 98 (0x62) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919FF19, serialNumber=8D611F2CD73794AF801C1BF69D8848091380B4A5 Validity Not Before: Jun 17 06:01:36 2025 GMT Not After : Jun 24 06:01:36 2025 GMT Subject: CN=685104c0-3631 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:3c:81:1b:d9:05:25:cb:e0:38:5f:ab:35:b1: 34:92:81:ab:70:23:99:ea:f8:8d:a6:40:ce:e6:ba: f5:1b:07:46:9d:a0:7a:a5:e6:4c:ca:f3:c3:77:c0: 17:8b:aa:03:f3:8e:c7:6e:21:02:e0:ef:98:20:a1: f6:61:85:b8:a1:f5:a8:26:48:eb:06:19:9c:4b:19: 7f:ef:88:e2:4e:87:6d:e7:87:2e:6b:bf:c0:55:7b: 7d:69:a8:2a:0d:3a:20:cf:f6:8a:a7:4c:aa:39:65: a5:29:1f:fc:9a:3a:b9:f9:eb:7f:d4:37:c4:57:9d: dd:31:bc:16:35:09:ca:57:6d:f7:0d:b0:43:c4:8b: 75:cd:62:91:8e:c4:e1:91:32:2e:97:2c:ff:3c:30: be:30:e3:ab:46:9e:7e:da:ed:f0:77:60:dc:3e:68: 2a:31:7b:e2:d5:6a:cd:47:36:77:7b:c6:74:3d:0c: f0:cc:08:93:ed:92:6a:53:00:65:8c:d2:67:4b:8a: 5f:e7:25:32:15:58:1f:29:38:48:33:6d:9f:42:58: f9:2a:72:d1:72:42:d2:fa:24:e8:ed:88:68:7a:1c: 22:bc:83:c1:a1:3d:68:f4:8f:20:8c:2b:3f:5e:94: e5:06:56:cb:1f:8a:14:3e:08:3e:96:66:2a:ab:6c: 8f:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AA:22:26:FF:72:AD:A5:B1:AF:CE:5E:71:76:ED:71:0D:E6:52:53:8E X509v3 Authority Key Identifier: keyid:8D:61:1F:2C:D7:37:94:AF:80:1C:1B:F6:9D:88:48:09:13:80:B4:A5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919FF19/D23CB0BAC1AF11EFBE7A145DC4F9AE02/jWEfLNc3lK-AHBv2nYhICROAtKU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jWEfLNc3lK-AHBv2nYhICROAtKU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919FF19/D23CB0BAC1AF11EFBE7A145DC4F9AE02/jWEfLNc3lK-AHBv2nYhICROAtKU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 47:6f:30:86:99:7e:b5:a6:65:03:fd:7e:3a:9c:1b:fd:10:4a: d1:12:14:ff:d3:ab:7e:18:ad:e8:69:56:0c:43:c2:53:b0:57: 2f:1c:ed:67:01:e2:f5:c8:af:a5:53:38:11:23:ef:8c:48:ae: cf:ba:c9:04:9b:69:1d:be:41:ba:a8:69:ce:b4:e0:23:75:f8: 7d:fe:67:b0:05:87:b5:22:a8:52:e3:c4:90:0e:3a:4e:e0:a2: d4:78:11:b6:4e:15:64:9e:6c:1f:85:0c:59:e2:75:5a:04:c7: 94:8d:17:35:f7:75:e6:6e:e6:d9:91:51:f0:bb:2a:4a:9e:7d: ce:8d:d7:9b:c6:ad:51:8f:6f:1f:c8:7f:24:3f:06:6d:d1:b2: ee:76:26:22:8d:7a:64:be:58:e2:0c:c9:0c:df:f1:ad:dd:41: f0:35:df:ba:6c:c6:0b:28:5d:79:34:7f:1b:cc:f5:18:c7:3c: 17:03:d8:9c:f3:57:6a:f4:c7:41:7c:39:ce:03:b6:8c:bf:63: 99:d7:01:d2:f6:14:3d:fe:1e:ab:05:3b:f6:db:1e:b2:7a:dc: 5e:18:d5:1d:a1:36:b3:10:68:5c:90:24:fe:b5:e6:4c:9c:8f: 5b:02:cb:97:7e:3d:40:a3:ed:39:f4:0e:57:22:c6:f0:00:b2: 3b:7d:aa:9d -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBYjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE5 RkYxOTExMC8GA1UEBRMoOEQ2MTFGMkNENzM3OTRBRjgwMUMxQkY2OUQ4ODQ4MDkx MzgwQjRBNTAeFw0yNTA2MTcwNjAxMzZaFw0yNTA2MjQwNjAxMzZaMBgxFjAUBgNV BAMTDTY4NTEwNGMwLTM2MzEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDKPIEb2QUly+A4X6s1sTSSgatwI5nq+I2mQM7muvUbB0adoHql5kzK88N3wBeL qgPzjsduIQLg75ggofZhhbih9agmSOsGGZxLGX/viOJOh23nhy5rv8BVe31pqCoN OiDP9oqnTKo5ZaUpH/yaOrn563/UN8RXnd0xvBY1CcpXbfcNsEPEi3XNYpGOxOGR Mi6XLP88ML4w46tGnn7a7fB3YNw+aCoxe+LVas1HNnd7xnQ9DPDMCJPtkmpTAGWM 0mdLil/nJTIVWB8pOEgzbZ9CWPkqctFyQtL6JOjtiGh6HCK8g8GhPWj0jyCMKz9e lOUGVssfihQ+CD6WZiqrbI9tAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUqiIm/3Kt pbGvzl5xdu1xDeZSU44wHwYDVR0jBBgwFoAUjWEfLNc3lK+AHBv2nYhICROAtKUw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTlGRjE5L0QyM0NCMEJBQzFB RjExRUZCRTdBMTQ1REM0RjlBRTAyL2pXRWZMTmMzbEstQUhCdjJuWWhJQ1JPQXRL VS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvaldFZkxOYzNsSy1BSEJ2Mm5ZaElDUk9BdEtVLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTlG RjE5L0QyM0NCMEJBQzFBRjExRUZCRTdBMTQ1REM0RjlBRTAyL2pXRWZMTmMzbEst QUhCdjJuWWhJQ1JPQXRLVS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAEdvMIaZfrWmZQP9fjqcG/0QStESFP/Tq34YrehpVgxDwlOwVy8c7WcB 4vXIr6VTOBEj74xIrs+6yQSbaR2+Qbqoac604CN1+H3+Z7AFh7UiqFLjxJAOOk7g otR4EbZOFWSebB+FDFnidVoEx5SNFzX3deZu5tmRUfC7Kkqefc6N15vGrVGPbx/I fyQ/Bm3Rsu52JiKNemS+WOIMyQzf8a3dQfA137psxgsoXXk0fxvM9RjHPBcD2Jzz V2r0x0F8Oc4Dtoy/Y5nXAdL2FD3+HqsFO/bbHrJ63F4Y1R2hNrMQaFyQJP615kyc j1sCy5d+PUCj7Tn0DlcixvAAsjt9qp0= -----END CERTIFICATE-----Generated at Wed Jun 18 19:44:11 2025 by rpki-client