$ rpki-client -vvf rpki.apnic.net/member_repository/A91A4543/AB719FCE3B6511F08742DA39C4F9AE02/F4AJbMkKtq6vCNeasYxUx7d6U6A.mft File: F4AJbMkKtq6vCNeasYxUx7d6U6A.mft (raw, json) Hash identifier: 7qhdggRycO/Kx92hErAyEVsW4yLCTNANIWYG+8XDuDg= Subject key identifier: 10:FD:4E:1F:A2:5B:90:E2:EF:54:E1:93:47:AC:2D:98:34:1A:D7:AD Authority key identifier: 17:80:09:6C:C9:0A:B6:AE:AF:08:D7:9A:B1:8C:54:C7:B7:7A:53:A0 Certificate issuer: /CN=A91A4543/serialNumber=1780096CC90AB6AEAF08D79AB18C54C7B77A53A0 Certificate serial: 0D Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/F4AJbMkKtq6vCNeasYxUx7d6U6A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A4543/AB719FCE3B6511F08742DA39C4F9AE02/F4AJbMkKtq6vCNeasYxUx7d6U6A.mft Manifest number: 0D Signing time: Wed 18 Jun 2025 20:41:57 +0000 Manifest this update: Wed 18 Jun 2025 20:41:56 +0000 Manifest next update: Wed 25 Jun 2025 20:41:56 +0000 Files and hashes: 1: F4AJbMkKtq6vCNeasYxUx7d6U6A.crl (hash: QpItnKVbxTUrjMpWrAuv3eZgGde6JhFkUbUUTCKukiA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A4543/AB719FCE3B6511F08742DA39C4F9AE02/F4AJbMkKtq6vCNeasYxUx7d6U6A.crl rsync://rpki.apnic.net/member_repository/A91A4543/AB719FCE3B6511F08742DA39C4F9AE02/F4AJbMkKtq6vCNeasYxUx7d6U6A.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/F4AJbMkKtq6vCNeasYxUx7d6U6A.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 25 Jun 2025 20:41:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13 (0xd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A4543, serialNumber=1780096CC90AB6AEAF08D79AB18C54C7B77A53A0 Validity Not Before: Jun 18 20:41:56 2025 GMT Not After : Jun 25 20:41:56 2025 GMT Subject: CN=68532495-dab6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f6:33:45:87:84:68:d2:e7:03:a3:8b:9d:c9:36: cd:8b:70:19:88:b6:73:0f:cd:cb:df:a5:5b:6a:84: 11:5f:ab:15:fe:41:24:2d:2d:40:2b:23:b4:e6:92: 79:82:36:9c:c1:4d:04:cd:d3:c3:be:9b:68:39:06: b5:06:2c:98:30:31:d5:3b:b7:3c:a3:7a:e3:1f:e4: a5:24:d0:76:34:bb:f3:5f:34:39:93:ee:56:6e:79: dd:58:e3:58:8b:d8:4f:f0:b0:a0:97:6b:3a:f2:42: bb:1c:3c:13:18:e7:25:38:7e:11:f4:b0:25:ac:cb: 4a:36:67:3e:dd:cb:37:cf:28:5a:36:68:28:4c:9a: 34:7f:ce:cf:fb:ed:13:ab:ea:71:a9:2b:31:74:a2: c0:4f:3d:41:ca:9f:57:ae:3c:19:c8:61:78:cb:c8: 29:cb:4e:c0:73:ab:29:69:8f:ae:14:fe:5a:c7:56: e2:2d:cd:00:c1:0b:99:b6:98:d5:61:3a:ac:b0:ac: 1f:f1:38:6e:32:1d:4c:e5:a9:2f:0f:80:50:6f:35: df:41:c6:f9:7f:b3:18:d9:a7:ae:61:54:96:8c:32: 22:4b:b1:5a:60:8f:51:3e:d7:72:c8:cf:40:4d:6c: a1:c6:79:37:5d:34:40:d4:8b:de:fb:af:17:48:03: c2:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 10:FD:4E:1F:A2:5B:90:E2:EF:54:E1:93:47:AC:2D:98:34:1A:D7:AD X509v3 Authority Key Identifier: keyid:17:80:09:6C:C9:0A:B6:AE:AF:08:D7:9A:B1:8C:54:C7:B7:7A:53:A0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A4543/AB719FCE3B6511F08742DA39C4F9AE02/F4AJbMkKtq6vCNeasYxUx7d6U6A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/F4AJbMkKtq6vCNeasYxUx7d6U6A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A4543/AB719FCE3B6511F08742DA39C4F9AE02/F4AJbMkKtq6vCNeasYxUx7d6U6A.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5c:34:a7:1f:48:00:16:2d:71:59:b8:61:66:3d:10:04:87:7b: 6f:9c:87:67:a2:83:7b:9d:49:90:fd:67:84:c1:b7:9f:9b:0e: 9a:d2:cb:17:40:c5:d8:e1:8b:98:34:67:bd:65:69:e3:cd:99: 77:c4:f4:0b:bb:a6:4a:f1:44:6f:d9:84:7c:be:5f:68:16:af: bd:13:f8:15:fe:a3:49:19:11:c2:c1:42:4e:01:47:2d:f5:b3: 3d:a4:02:c6:db:e3:b1:ba:45:c6:11:19:04:78:43:79:87:d5: 4f:d8:d0:8e:18:df:b8:fc:34:e5:46:98:63:89:81:c1:c1:85: 35:81:a1:b2:14:a7:d2:6f:ad:64:a8:46:d5:26:a6:c6:63:c1: 5c:e1:2e:6e:bf:8c:31:5d:b5:3f:98:e6:0c:53:fc:e3:82:18: e4:11:6d:c3:6c:fc:36:80:9e:84:25:64:b9:f2:4a:26:10:5a: b7:08:a3:76:ac:4e:13:30:44:df:39:2a:53:f3:27:34:d1:3c: 9d:85:cf:b5:b4:27:e5:5e:12:c7:20:97:c4:ef:06:3c:79:4b: 7d:16:ab:ae:32:23:70:70:b7:6a:d3:f3:5b:40:0e:9e:86:cd: 2e:eb:80:86:f4:58:f6:be:c2:eb:03:88:b0:6e:76:6a:0d:99: 6d:7d:3e:6e -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBDTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFB NDU0MzExMC8GA1UEBRMoMTc4MDA5NkNDOTBBQjZBRUFGMDhENzlBQjE4QzU0QzdC NzdBNTNBMDAeFw0yNTA2MTgyMDQxNTZaFw0yNTA2MjUyMDQxNTZaMBgxFjAUBgNV BAMTDTY4NTMyNDk1LWRhYjYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQD2M0WHhGjS5wOji53JNs2LcBmItnMPzcvfpVtqhBFfqxX+QSQtLUArI7TmknmC NpzBTQTN08O+m2g5BrUGLJgwMdU7tzyjeuMf5KUk0HY0u/NfNDmT7lZued1Y41iL 2E/wsKCXazryQrscPBMY5yU4fhH0sCWsy0o2Zz7dyzfPKFo2aChMmjR/zs/77ROr 6nGpKzF0osBPPUHKn1euPBnIYXjLyCnLTsBzqylpj64U/lrHVuItzQDBC5m2mNVh OqywrB/xOG4yHUzlqS8PgFBvNd9Bxvl/sxjZp65hVJaMMiJLsVpgj1E+13LIz0BN bKHGeTddNEDUi977rxdIA8LPAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUEP1OH6Jb kOLvVOGTR6wtmDQa160wHwYDVR0jBBgwFoAUF4AJbMkKtq6vCNeasYxUx7d6U6Aw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUE0NTQzL0FCNzE5RkNFM0I2 NTExRjA4NzQyREEzOUM0RjlBRTAyL0Y0QUpiTWtLdHE2dkNOZWFzWXhVeDdkNlU2 QS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvRjRBSmJNa0t0cTZ2Q05lYXNZeFV4N2Q2VTZBLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUE0 NTQzL0FCNzE5RkNFM0I2NTExRjA4NzQyREEzOUM0RjlBRTAyL0Y0QUpiTWtLdHE2 dkNOZWFzWXhVeDdkNlU2QS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAFw0px9IABYtcVm4YWY9EASHe2+ch2eig3udSZD9Z4TBt5+bDprSyxdA xdjhi5g0Z71laePNmXfE9Au7pkrxRG/ZhHy+X2gWr70T+BX+o0kZEcLBQk4BRy31 sz2kAsbb47G6RcYRGQR4Q3mH1U/Y0I4Y37j8NOVGmGOJgcHBhTWBobIUp9JvrWSo RtUmpsZjwVzhLm6/jDFdtT+Y5gxT/OOCGOQRbcNs/DaAnoQlZLnySiYQWrcIo3as ThMwRN85KlPzJzTRPJ2Fz7W0J+VeEscgl8TvBjx5S30Wq64yI3Bwt2rT81tADp6G zS7rgIb0WPa+wusDiLBudmoNmW19Pm4= -----END CERTIFICATE-----Generated at Fri Jun 20 02:56:56 2025 by rpki-client