$ rpki-client -vvf rpki.apnic.net/member_repository/A91A29DA/3E624BAEDA5411EE827CA57DC4F9AE02/FtFKpRNNQRJGTXmS2_HEUvf6KaA.mft File: FtFKpRNNQRJGTXmS2_HEUvf6KaA.mft (raw, json) Hash identifier: rN0DTDteKfLKOXjYr0wvdXlOW4dAPrkpcuxyDb2vhKc= Subject key identifier: 64:F8:FF:A5:A1:F7:D4:2F:F3:11:BA:50:DA:08:2B:09:FD:25:47:4D Authority key identifier: 16:D1:4A:A5:13:4D:41:12:46:4D:79:92:DB:F1:C4:52:F7:FA:29:A0 Certificate issuer: /CN=A91A29DA/serialNumber=16D14AA5134D4112464D7992DBF1C452F7FA29A0 Certificate serial: EF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FtFKpRNNQRJGTXmS2_HEUvf6KaA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A29DA/3E624BAEDA5411EE827CA57DC4F9AE02/FtFKpRNNQRJGTXmS2_HEUvf6KaA.mft Manifest number: EF Signing time: Tue 17 Jun 2025 04:17:05 +0000 Manifest this update: Tue 17 Jun 2025 04:17:04 +0000 Manifest next update: Tue 24 Jun 2025 04:17:04 +0000 Files and hashes: 1: FtFKpRNNQRJGTXmS2_HEUvf6KaA.crl (hash: yXAHCrW6tlDJe8dCc7WflbbTZSHF53fefqgD/0homqA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A29DA/3E624BAEDA5411EE827CA57DC4F9AE02/FtFKpRNNQRJGTXmS2_HEUvf6KaA.crl rsync://rpki.apnic.net/member_repository/A91A29DA/3E624BAEDA5411EE827CA57DC4F9AE02/FtFKpRNNQRJGTXmS2_HEUvf6KaA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FtFKpRNNQRJGTXmS2_HEUvf6KaA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 24 Jun 2025 04:17:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 239 (0xef) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A29DA, serialNumber=16D14AA5134D4112464D7992DBF1C452F7FA29A0 Validity Not Before: Jun 17 04:17:04 2025 GMT Not After : Jun 24 04:17:04 2025 GMT Subject: CN=6850ec41-3094 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:5f:81:96:89:5b:24:76:32:fa:9a:24:76:94: 32:c0:4c:c3:49:da:79:3e:e4:bc:c3:94:ba:c1:a9: 20:ad:77:b3:f3:6f:16:2e:96:1b:52:1a:bc:a3:72: 4e:76:3b:66:8f:50:9f:f6:cb:69:c6:6e:c2:24:42: 50:ac:36:7b:db:24:00:f4:5e:0e:a7:3d:1a:11:d3: 12:50:ca:bd:89:31:f6:61:bb:3e:62:57:f3:57:f2: d7:28:b2:56:5d:4a:3a:19:84:ed:5e:b7:9e:1c:23: 37:21:70:ff:c5:62:81:f3:50:c3:76:c1:22:0c:9f: c8:4c:34:57:53:15:a8:57:14:eb:f1:e9:7f:92:a9: 27:5b:62:f5:ba:a8:ba:44:d5:b1:14:bd:81:f1:bf: 29:46:b0:04:06:eb:49:7d:dc:45:80:52:85:c0:1c: 25:cd:c8:1e:24:fc:f5:8e:4e:c1:88:fb:df:cd:6e: 15:99:03:52:83:11:b2:24:64:98:d0:7e:b2:d4:ec: d6:13:87:ef:be:f9:8c:84:16:e2:af:71:80:1b:78: 85:30:bf:23:e2:aa:c7:05:0d:28:e1:1f:34:08:56: 52:24:d5:29:a7:cc:99:d3:1d:4e:24:bf:0e:33:b1: 8c:3e:c2:38:06:44:d9:54:b3:ea:71:52:0a:8c:d6: 9c:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 64:F8:FF:A5:A1:F7:D4:2F:F3:11:BA:50:DA:08:2B:09:FD:25:47:4D X509v3 Authority Key Identifier: keyid:16:D1:4A:A5:13:4D:41:12:46:4D:79:92:DB:F1:C4:52:F7:FA:29:A0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A29DA/3E624BAEDA5411EE827CA57DC4F9AE02/FtFKpRNNQRJGTXmS2_HEUvf6KaA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FtFKpRNNQRJGTXmS2_HEUvf6KaA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A29DA/3E624BAEDA5411EE827CA57DC4F9AE02/FtFKpRNNQRJGTXmS2_HEUvf6KaA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 02:47:b4:18:bb:ff:7f:f7:46:c1:d8:aa:13:ac:d0:34:be:52: 91:69:f0:20:8f:dc:b0:44:29:34:2b:f0:d7:7e:d2:b0:7a:6b: 73:07:b2:7d:78:74:c4:29:f6:92:3f:e8:e5:46:a5:79:dc:04: 1b:9e:55:3e:ea:26:16:f9:63:00:60:9e:d7:8a:8c:b1:14:d3: 5e:3d:df:2d:23:a9:5e:00:62:35:6e:ab:11:0f:14:22:65:e8: 0a:8b:24:e0:1c:aa:ce:af:21:5f:57:26:ec:cc:8a:3c:32:31: fe:77:3b:a1:39:15:67:55:67:72:1e:d9:11:15:0c:26:39:6e: fa:37:1c:4a:c4:0a:1b:ba:96:e2:a2:97:0a:a7:17:54:ba:db: 27:a5:e1:f3:f8:94:e5:6f:82:6c:2a:11:dd:0f:46:b8:76:e4: 54:c8:7c:ed:4b:12:f4:71:66:92:fd:cd:71:fb:ba:b0:3f:fa: 6d:b2:91:6f:e4:5f:f5:53:df:41:b0:39:a7:53:dd:b9:d1:21: 7e:ee:b2:c5:a4:c3:ce:2e:fb:c5:67:d1:5d:5f:22:9d:92:b6: 99:0e:4a:c0:c6:88:cb:e8:f8:a4:e7:d5:8f:0f:4e:5a:fc:45: cc:2f:8a:4d:fc:ad:ab:1a:cf:aa:80:3a:2b:9d:9a:94:65:83: ff:a6:67:4e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAO8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTI5REExMTAvBgNVBAUTKDE2RDE0QUE1MTM0RDQxMTI0NjRENzk5MkRCRjFDNDUy RjdGQTI5QTAwHhcNMjUwNjE3MDQxNzA0WhcNMjUwNjI0MDQxNzA0WjAYMRYwFAYD VQQDEw02ODUwZWM0MS0zMDk0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA21+BlolbJHYy+pokdpQywEzDSdp5PuS8w5S6wakgrXez828WLpYbUhq8o3JO djtmj1Cf9stpxm7CJEJQrDZ72yQA9F4Opz0aEdMSUMq9iTH2Ybs+YlfzV/LXKLJW XUo6GYTtXreeHCM3IXD/xWKB81DDdsEiDJ/ITDRXUxWoVxTr8el/kqknW2L1uqi6 RNWxFL2B8b8pRrAEButJfdxFgFKFwBwlzcgeJPz1jk7BiPvfzW4VmQNSgxGyJGSY 0H6y1OzWE4fvvvmMhBbir3GAG3iFML8j4qrHBQ0o4R80CFZSJNUpp8yZ0x1OJL8O M7GMPsI4BkTZVLPqcVIKjNacmQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGT4/6Wh 99Qv8xG6UNoIKwn9JUdNMB8GA1UdIwQYMBaAFBbRSqUTTUESRk15ktvxxFL3+img MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMjlEQS8zRTYyNEJBRURB NTQxMUVFODI3Q0E1N0RDNEY5QUUwMi9GdEZLcFJOTlFSSkdUWG1TMl9IRVV2ZjZL YUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0Z0RktwUk5OUVJKR1RYbVMyX0hFVXZmNkthQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MjlEQS8zRTYyNEJBRURBNTQxMUVFODI3Q0E1N0RDNEY5QUUwMi9GdEZLcFJOTlFS SkdUWG1TMl9IRVV2ZjZLYUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQACR7QYu/9/90bB2KoTrNA0vlKRafAgj9ywRCk0K/DXftKwemtzB7J9 eHTEKfaSP+jlRqV53AQbnlU+6iYW+WMAYJ7XioyxFNNePd8tI6leAGI1bqsRDxQi ZegKiyTgHKrOryFfVybszIo8MjH+dzuhORVnVWdyHtkRFQwmOW76NxxKxAobupbi opcKpxdUutsnpeHz+JTlb4JsKhHdD0a4duRUyHztSxL0cWaS/c1x+7qwP/ptspFv 5F/1U99BsDmnU9250SF+7rLFpMPOLvvFZ9FdXyKdkraZDkrAxojL6Pik59WPD05a /EXML4pN/K2rGs+qgDornZqUZYP/pmdO -----END CERTIFICATE-----Generated at Tue Jun 17 15:05:05 2025 by rpki-client