$ rpki-client -vvf rpki.apnic.net/member_repository/A91A1938/52684972EE1011ED90657436C4F9AE02/RcneJU4uAwXWUKUKa_GSaIB-8Qo.mft File: RcneJU4uAwXWUKUKa_GSaIB-8Qo.mft (raw, json) Hash identifier: WszUmFbiq3MnZlHaO0eskTluxb1kdu/3f15m0nP4Q8Y= Subject key identifier: 90:7C:8D:9D:A3:6A:BC:E7:4C:9F:D0:12:01:97:26:76:F5:DF:B5:70 Authority key identifier: 45:C9:DE:25:4E:2E:03:05:D6:50:A5:0A:6B:F1:92:68:80:7E:F1:0A Certificate issuer: /CN=A91A1938/serialNumber=45C9DE254E2E0305D650A50A6BF19268807EF10A Certificate serial: 0191 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RcneJU4uAwXWUKUKa_GSaIB-8Qo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A1938/52684972EE1011ED90657436C4F9AE02/RcneJU4uAwXWUKUKa_GSaIB-8Qo.mft Manifest number: 018D Signing time: Tue 17 Jun 2025 02:37:15 +0000 Manifest this update: Tue 17 Jun 2025 02:37:15 +0000 Manifest next update: Tue 24 Jun 2025 02:37:15 +0000 Files and hashes: 1: RcneJU4uAwXWUKUKa_GSaIB-8Qo.crl (hash: 6eohsUlhxec7TZI0cCZ5RqyPafZrzfK2C2nNoEQX4pw=) 2: 68ECF3BAEE1911ED9C7CDC63C4F9AE02.roa (hash: BCIBhB1yRhPPINtU+Jvj6+AcCagEYHcs0oGO7PLSo3Y=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A1938/52684972EE1011ED90657436C4F9AE02/RcneJU4uAwXWUKUKa_GSaIB-8Qo.crl rsync://rpki.apnic.net/member_repository/A91A1938/52684972EE1011ED90657436C4F9AE02/RcneJU4uAwXWUKUKa_GSaIB-8Qo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RcneJU4uAwXWUKUKa_GSaIB-8Qo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 24 Jun 2025 02:37:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 401 (0x191) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A1938, serialNumber=45C9DE254E2E0305D650A50A6BF19268807EF10A Validity Not Before: Jun 17 02:37:15 2025 GMT Not After : Jun 24 02:37:15 2025 GMT Subject: CN=6850d4db-b77b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:ae:41:e5:9d:ee:cc:d3:5e:19:4c:42:8f:21: e4:a0:ae:b0:c1:83:31:4c:e4:89:11:78:6e:38:9e: 4e:38:a5:c7:66:c1:86:a2:12:a9:1e:32:f9:68:98: 9c:3c:5e:a1:fd:cb:d5:10:10:07:09:01:cb:34:02: f4:64:59:a2:97:24:9d:4b:c3:cd:52:92:fb:0e:35: b3:89:73:66:cb:86:2f:51:de:fd:17:e8:fb:3b:fe: fb:5f:44:81:d7:ca:1f:e2:02:97:a5:49:43:9d:7c: 03:d2:f0:b8:bd:01:2d:63:04:90:1d:87:ea:f4:3e: 8b:92:9f:ae:c7:a8:3f:fd:2b:76:b9:21:4d:60:73: 04:cd:9b:9e:99:fa:b9:1f:4c:a0:38:21:53:fb:7a: 48:63:c3:ae:b3:65:ec:69:4d:ae:e9:e0:7c:a3:79: c6:df:8a:47:92:5d:44:38:64:55:1b:ad:18:d2:aa: 49:56:54:15:5a:0e:e7:01:bf:18:2d:b4:b9:84:1c: 46:7c:1a:32:c8:7b:d9:16:d8:10:75:f6:a5:eb:95: 76:0c:82:78:8e:0c:ed:80:bc:6e:33:72:67:45:fe: cb:c0:45:fe:c1:45:79:ac:02:b7:44:05:28:e6:d0: 63:1a:09:a3:c7:63:b3:37:db:ac:13:dc:6e:ec:a6: 74:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 90:7C:8D:9D:A3:6A:BC:E7:4C:9F:D0:12:01:97:26:76:F5:DF:B5:70 X509v3 Authority Key Identifier: keyid:45:C9:DE:25:4E:2E:03:05:D6:50:A5:0A:6B:F1:92:68:80:7E:F1:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A1938/52684972EE1011ED90657436C4F9AE02/RcneJU4uAwXWUKUKa_GSaIB-8Qo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RcneJU4uAwXWUKUKa_GSaIB-8Qo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A1938/52684972EE1011ED90657436C4F9AE02/RcneJU4uAwXWUKUKa_GSaIB-8Qo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1f:80:fe:f2:e8:f8:f0:68:4b:55:31:56:28:c4:1e:48:3f:31: 7e:9c:c2:82:8c:1e:e8:09:64:29:be:2a:13:47:7a:0a:8e:03: 2e:0f:e0:ae:65:2c:37:e4:27:d2:8f:c1:e7:ef:a4:9e:f6:5a: f2:2f:01:40:8c:9c:75:fa:22:a2:24:16:f0:f6:ae:40:ac:99: 9f:69:07:05:37:76:5d:81:3d:a7:61:73:33:96:cc:fb:57:ee: 7c:8a:4c:e7:1c:45:28:6b:61:e1:70:c0:a9:2f:33:27:1b:4d: 7c:2d:75:0f:79:8d:91:8e:ab:36:8b:4f:56:e1:48:91:b1:9a: ef:01:48:e3:c2:66:c6:a1:bb:0c:50:87:00:71:ea:3a:b7:65: 09:b2:74:67:d1:ae:12:54:f5:2f:f2:e1:2a:bc:f4:04:f8:87: 4c:3b:b0:0d:55:f6:64:a8:9e:3c:4b:d9:1c:93:b3:a0:5e:c5: 38:2c:1a:07:cc:f6:b4:9e:76:4b:cb:d4:9d:a1:07:7e:e2:34: a9:a0:9b:37:97:30:92:d1:d7:64:e1:68:06:30:41:11:35:56: 98:29:dc:67:88:c5:d8:ec:aa:38:3d:70:5e:cd:1a:93:29:7e: 41:31:46:36:72:e0:d5:09:28:f5:ae:fc:48:cd:4d:ca:83:5d: 9f:1d:76:89 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAZEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTE5MzgxMTAvBgNVBAUTKDQ1QzlERTI1NEUyRTAzMDVENjUwQTUwQTZCRjE5MjY4 ODA3RUYxMEEwHhcNMjUwNjE3MDIzNzE1WhcNMjUwNjI0MDIzNzE1WjAYMRYwFAYD VQQDEw02ODUwZDRkYi1iNzdiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvq5B5Z3uzNNeGUxCjyHkoK6wwYMxTOSJEXhuOJ5OOKXHZsGGohKpHjL5aJic PF6h/cvVEBAHCQHLNAL0ZFmilySdS8PNUpL7DjWziXNmy4YvUd79F+j7O/77X0SB 18of4gKXpUlDnXwD0vC4vQEtYwSQHYfq9D6Lkp+ux6g//St2uSFNYHMEzZuemfq5 H0ygOCFT+3pIY8Ous2XsaU2u6eB8o3nG34pHkl1EOGRVG60Y0qpJVlQVWg7nAb8Y LbS5hBxGfBoyyHvZFtgQdfal65V2DIJ4jgztgLxuM3JnRf7LwEX+wUV5rAK3RAUo 5tBjGgmjx2OzN9usE9xu7KZ0pwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJB8jZ2j arznTJ/QEgGXJnb137VwMB8GA1UdIwQYMBaAFEXJ3iVOLgMF1lClCmvxkmiAfvEK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMTkzOC81MjY4NDk3MkVF MTAxMUVEOTA2NTc0MzZDNEY5QUUwMi9SY25lSlU0dUF3WFdVS1VLYV9HU2FJQi04 UW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1JjbmVKVTR1QXdYV1VLVUthX0dTYUlCLThRby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MTkzOC81MjY4NDk3MkVFMTAxMUVEOTA2NTc0MzZDNEY5QUUwMi9SY25lSlU0dUF3 WFdVS1VLYV9HU2FJQi04UW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAfgP7y6PjwaEtVMVYoxB5IPzF+nMKCjB7oCWQpvioTR3oKjgMuD+Cu ZSw35CfSj8Hn76Se9lryLwFAjJx1+iKiJBbw9q5ArJmfaQcFN3ZdgT2nYXMzlsz7 V+58ikznHEUoa2HhcMCpLzMnG018LXUPeY2Rjqs2i09W4UiRsZrvAUjjwmbGobsM UIcAceo6t2UJsnRn0a4SVPUv8uEqvPQE+IdMO7ANVfZkqJ48S9kck7OgXsU4LBoH zPa0nnZLy9SdoQd+4jSpoJs3lzCS0ddk4WgGMEERNVaYKdxniMXY7Ko4PXBezRqT KX5BMUY2cuDVCSj1rvxIzU3Kg12fHXaJ -----END CERTIFICATE-----Generated at Wed Jun 18 02:44:50 2025 by rpki-client