$ rpki-client -vvf rpki.apnic.net/member_repository/A91A0E9D/9569ADB495DB11EFA4E2FB45C4F9AE02/0hsNWsWvkZAPUK2WADMT5R7WChA.mft File: 0hsNWsWvkZAPUK2WADMT5R7WChA.mft (raw, json) Hash identifier: npseJX2ASvK2qlW3IYA7ciURzQRklO2HskxzZiU6aE8= Subject key identifier: 6A:03:7B:BA:FB:66:B2:57:40:35:C8:9A:32:22:62:7F:17:04:D9:E8 Authority key identifier: D2:1B:0D:5A:C5:AF:91:90:0F:50:AD:96:00:33:13:E5:1E:D6:0A:10 Certificate issuer: /CN=A91A0E9D/serialNumber=D21B0D5AC5AF91900F50AD96003313E51ED60A10 Certificate serial: 8A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0hsNWsWvkZAPUK2WADMT5R7WChA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A0E9D/9569ADB495DB11EFA4E2FB45C4F9AE02/0hsNWsWvkZAPUK2WADMT5R7WChA.mft Manifest number: 81 Signing time: Tue 17 Jun 2025 05:41:41 +0000 Manifest this update: Tue 17 Jun 2025 05:41:41 +0000 Manifest next update: Tue 24 Jun 2025 05:41:41 +0000 Files and hashes: 1: 0hsNWsWvkZAPUK2WADMT5R7WChA.crl (hash: wd9gHwpqX5ejUpU1zHk1oZClshqS8DAnA/GSlyNoN9E=) 2: 3996C94896D211EF924C486FC4F9AE02.roa (hash: jPKROmghkPyJWap1Ck0b+pE8AGKhobQAaRNerFhIWOA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A0E9D/9569ADB495DB11EFA4E2FB45C4F9AE02/0hsNWsWvkZAPUK2WADMT5R7WChA.crl rsync://rpki.apnic.net/member_repository/A91A0E9D/9569ADB495DB11EFA4E2FB45C4F9AE02/0hsNWsWvkZAPUK2WADMT5R7WChA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0hsNWsWvkZAPUK2WADMT5R7WChA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 24 Jun 2025 05:41:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 138 (0x8a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A0E9D, serialNumber=D21B0D5AC5AF91900F50AD96003313E51ED60A10 Validity Not Before: Jun 17 05:41:41 2025 GMT Not After : Jun 24 05:41:41 2025 GMT Subject: CN=68510015-51be Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f4:44:b7:c1:34:1a:15:7d:ca:ee:f7:62:65:81: 0b:6d:05:3e:0c:13:78:cb:ad:49:e4:4f:49:1b:20: 59:e5:bb:d6:5a:e5:02:5c:7f:da:04:f7:ea:e4:ff: 92:48:59:d1:5c:2e:38:a0:fb:4d:4a:3c:87:29:cb: de:df:16:87:32:6d:2b:b7:76:0d:d1:bf:7a:f5:e7: 88:c0:8b:1a:e3:f9:99:f8:5b:f5:ba:bf:7f:49:3d: 46:dc:4e:24:4d:67:4e:c5:05:05:ed:58:65:64:82: 72:d4:ed:cf:13:f0:83:a0:a5:39:3a:63:ae:38:7c: 85:c8:11:ee:b6:bb:06:f3:a6:bb:d4:ef:4f:be:f8: 0b:04:b1:80:71:18:de:87:8e:aa:db:79:c5:78:c7: 81:b3:a2:5a:3c:52:89:37:e5:f3:d6:b4:fb:5e:1d: 00:90:b1:6d:f6:c3:d0:08:a9:cc:b9:59:29:dc:d6: 4c:6c:b6:d8:7c:11:43:ba:38:b0:92:f9:6e:a9:71: 57:03:8a:25:56:6e:60:04:e3:36:82:05:3c:c6:b1: d1:e5:f5:74:62:2b:ad:dd:36:59:00:ba:32:2e:62: f6:4d:fa:d0:bb:a7:29:fa:68:5a:4e:eb:95:bb:f6: 97:69:07:e0:e5:fa:fa:12:21:85:5e:0d:3e:ea:a5: 19:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6A:03:7B:BA:FB:66:B2:57:40:35:C8:9A:32:22:62:7F:17:04:D9:E8 X509v3 Authority Key Identifier: keyid:D2:1B:0D:5A:C5:AF:91:90:0F:50:AD:96:00:33:13:E5:1E:D6:0A:10 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A0E9D/9569ADB495DB11EFA4E2FB45C4F9AE02/0hsNWsWvkZAPUK2WADMT5R7WChA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0hsNWsWvkZAPUK2WADMT5R7WChA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A0E9D/9569ADB495DB11EFA4E2FB45C4F9AE02/0hsNWsWvkZAPUK2WADMT5R7WChA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 35:26:b7:a0:3c:70:9f:89:5c:f9:6b:db:04:1c:9b:d9:3b:a1: 9b:16:ac:ca:10:fe:83:2a:af:75:8e:cd:b5:b6:68:f1:7b:d6: 9d:91:7b:81:d8:cc:4f:a6:41:2c:6f:1a:17:eb:ea:66:43:4c: b9:44:c7:7c:dc:7f:5a:56:8d:df:c4:d2:03:c2:c0:84:af:59: 4a:ce:41:38:6f:fb:cc:29:58:fe:6f:d8:9e:98:bc:25:83:c4: b0:1e:15:08:cb:47:d4:c7:34:f8:e0:f4:ae:38:38:2b:45:27: 5c:f9:2e:82:ce:f0:27:a9:55:10:57:b2:1b:37:d4:85:f0:a7: a9:61:87:91:29:9a:7b:99:f4:5d:6f:49:e2:2a:f1:14:06:15: e1:9a:75:55:38:d7:95:a7:16:4c:3e:b5:b8:d6:05:02:a5:95: 60:3f:59:e2:14:f9:01:93:f7:d5:8b:b3:a6:6d:aa:bb:fa:b2: 29:a0:33:1b:10:e3:60:c4:b2:45:6d:26:bc:fe:6c:1a:f4:b4: 01:a0:30:e9:d6:15:d3:7b:55:3f:3b:29:eb:78:27:92:9c:89: fb:4a:4a:ac:60:bb:b2:33:ec:7b:df:ba:4e:6d:f5:9c:2f:88: a1:76:c7:d2:3e:9b:c5:31:7a:ea:4e:25:3f:7b:ba:84:de:b4: f9:1a:fe:69 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAIowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTBFOUQxMTAvBgNVBAUTKEQyMUIwRDVBQzVBRjkxOTAwRjUwQUQ5NjAwMzMxM0U1 MUVENjBBMTAwHhcNMjUwNjE3MDU0MTQxWhcNMjUwNjI0MDU0MTQxWjAYMRYwFAYD VQQDEw02ODUxMDAxNS01MWJlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA9ES3wTQaFX3K7vdiZYELbQU+DBN4y61J5E9JGyBZ5bvWWuUCXH/aBPfq5P+S SFnRXC44oPtNSjyHKcve3xaHMm0rt3YN0b969eeIwIsa4/mZ+Fv1ur9/ST1G3E4k TWdOxQUF7VhlZIJy1O3PE/CDoKU5OmOuOHyFyBHutrsG86a71O9PvvgLBLGAcRje h46q23nFeMeBs6JaPFKJN+Xz1rT7Xh0AkLFt9sPQCKnMuVkp3NZMbLbYfBFDujiw kvluqXFXA4olVm5gBOM2ggU8xrHR5fV0Yiut3TZZALoyLmL2TfrQu6cp+mhaTuuV u/aXaQfg5fr6EiGFXg0+6qUZxQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGoDe7r7 ZrJXQDXImjIiYn8XBNnoMB8GA1UdIwQYMBaAFNIbDVrFr5GQD1CtlgAzE+Ue1goQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMEU5RC85NTY5QURCNDk1 REIxMUVGQTRFMkZCNDVDNEY5QUUwMi8waHNOV3NXdmtaQVBVSzJXQURNVDVSN1dD aEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzBoc05Xc1d2a1pBUFVLMldBRE1UNVI3V0NoQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MEU5RC85NTY5QURCNDk1REIxMUVGQTRFMkZCNDVDNEY5QUUwMi8waHNOV3NXdmta QVBVSzJXQURNVDVSN1dDaEEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA1JregPHCfiVz5a9sEHJvZO6GbFqzKEP6DKq91js21tmjxe9adkXuB 2MxPpkEsbxoX6+pmQ0y5RMd83H9aVo3fxNIDwsCEr1lKzkE4b/vMKVj+b9iemLwl g8SwHhUIy0fUxzT44PSuODgrRSdc+S6CzvAnqVUQV7IbN9SF8KepYYeRKZp7mfRd b0niKvEUBhXhmnVVONeVpxZMPrW41gUCpZVgP1niFPkBk/fVi7Ombaq7+rIpoDMb EONgxLJFbSa8/mwa9LQBoDDp1hXTe1U/OynreCeSnIn7SkqsYLuyM+x737pObfWc L4ihdsfSPpvFMXrqTiU/e7qE3rT5Gv5p -----END CERTIFICATE-----Generated at Wed Jun 18 06:33:32 2025 by rpki-client