$ rpki-client -vvf rpki.apnic.net/member_repository/A91A5030/CE6A3F10FD2A11E4B74FEA42C4F9AE02/h2m5UvnIAGdXkp8GmXzeWx5EjxQ.mft File: h2m5UvnIAGdXkp8GmXzeWx5EjxQ.mft (raw, json) Hash identifier: eWecFJPp0hrvWsvolkg/jLTxb///M9wEdWssvSeOqvQ= Subject key identifier: AD:77:FE:27:04:0D:B4:40:5F:D0:FF:BF:6D:40:7F:67:19:8B:6F:25 Authority key identifier: 87:69:B9:52:F9:C8:00:67:57:92:9F:06:99:7C:DE:5B:1E:44:8F:14 Certificate issuer: /CN=A91A5030/serialNumber=8769B952F9C8006757929F06997CDE5B1E448F14 Certificate serial: 2616 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h2m5UvnIAGdXkp8GmXzeWx5EjxQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A5030/CE6A3F10FD2A11E4B74FEA42C4F9AE02/h2m5UvnIAGdXkp8GmXzeWx5EjxQ.mft Manifest number: 2603 Signing time: Wed 18 Jun 2025 15:42:35 +0000 Manifest this update: Wed 18 Jun 2025 15:42:34 +0000 Manifest next update: Wed 25 Jun 2025 15:42:34 +0000 Files and hashes: 1: h2m5UvnIAGdXkp8GmXzeWx5EjxQ.crl (hash: YSN826lCOC+WK7Yg33Tru0LcNS5O2oR60VdyCamf32g=) 2: 764601EE6A7A11EFAF10EC37C4F9AE02.roa (hash: wlnyKHrlK/WWGM/sWHlA6+OjLcmqJ1sU/DSuQx9lYJQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A5030/CE6A3F10FD2A11E4B74FEA42C4F9AE02/h2m5UvnIAGdXkp8GmXzeWx5EjxQ.crl rsync://rpki.apnic.net/member_repository/A91A5030/CE6A3F10FD2A11E4B74FEA42C4F9AE02/h2m5UvnIAGdXkp8GmXzeWx5EjxQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h2m5UvnIAGdXkp8GmXzeWx5EjxQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 25 Jun 2025 15:42:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9750 (0x2616) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A5030, serialNumber=8769B952F9C8006757929F06997CDE5B1E448F14 Validity Not Before: Jun 18 15:42:34 2025 GMT Not After : Jun 25 15:42:34 2025 GMT Subject: CN=6852de6a-622c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:28:d6:b4:13:4f:b7:e2:a5:ec:2f:b5:93:3c: fd:e5:0f:29:f1:86:37:e3:5a:4b:53:52:2c:9f:a0: 74:8a:9d:f9:db:14:c0:f6:5d:f7:2b:4c:a9:52:fb: ba:5b:12:4e:2e:d9:50:d0:00:c1:19:36:a1:d2:50: ca:30:cf:a7:87:d4:aa:52:35:ce:62:c8:d2:d2:97: 2e:77:c5:53:c9:23:66:cf:2a:22:45:f0:bb:34:41: 3a:17:1e:6e:5b:bb:7d:67:45:d1:77:c8:88:63:35: 35:ff:6f:04:11:06:f7:34:d3:72:2a:65:bb:83:a0: 9f:30:f6:39:5a:98:39:aa:37:99:b8:19:ba:6a:09: d0:74:1c:a7:d6:74:67:20:c3:88:68:97:39:1d:3c: 11:d2:48:d2:ad:27:7e:4a:3e:6e:c9:53:2e:0d:eb: 35:0e:ad:52:12:ec:f8:2f:2d:5f:20:16:05:58:90: 1e:a8:a7:21:78:79:27:60:99:74:c4:2d:c4:a4:6a: 6a:a4:3e:43:71:4f:a6:12:d6:7a:a5:9c:34:0c:66: 9a:bf:37:98:1e:61:dc:94:b7:9f:12:25:1a:0f:f0: 8a:2d:f2:3f:e5:b6:5b:89:38:4d:b1:6a:e8:34:fb: 21:6e:cb:30:b2:17:70:3c:bb:fd:36:69:80:15:29: 22:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AD:77:FE:27:04:0D:B4:40:5F:D0:FF:BF:6D:40:7F:67:19:8B:6F:25 X509v3 Authority Key Identifier: keyid:87:69:B9:52:F9:C8:00:67:57:92:9F:06:99:7C:DE:5B:1E:44:8F:14 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A5030/CE6A3F10FD2A11E4B74FEA42C4F9AE02/h2m5UvnIAGdXkp8GmXzeWx5EjxQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h2m5UvnIAGdXkp8GmXzeWx5EjxQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A5030/CE6A3F10FD2A11E4B74FEA42C4F9AE02/h2m5UvnIAGdXkp8GmXzeWx5EjxQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 41:13:5a:d9:10:04:34:d0:9a:f0:4e:2f:20:fb:bd:24:11:f6: dd:13:a4:4b:f3:19:6b:e0:6f:37:4b:d1:b8:08:2b:84:c4:31: ed:11:cc:3d:43:c8:7f:2b:f7:7c:5a:57:69:a1:97:2f:76:d2: 95:d4:82:d3:e9:36:d6:d7:ee:0b:01:72:92:40:15:af:6a:6b: 97:7b:ea:cc:b1:c8:10:c3:f6:20:cb:00:4d:e7:10:3c:71:82: 00:51:51:1e:e7:4c:5f:26:26:d0:56:37:ac:24:9d:84:b9:ff: 97:df:1a:01:0b:29:20:cd:a9:a2:0d:fe:9f:96:20:0d:92:61: e1:de:07:f8:89:81:3b:a8:e8:0b:76:86:ce:0c:7a:be:d7:68: c9:2c:3e:c9:00:60:aa:c0:ee:70:78:21:36:d4:b0:21:b9:fa: 79:11:84:08:4d:97:34:ae:50:30:b7:fc:9c:df:1a:fe:ff:e7: af:da:ff:e4:f7:f3:3b:0d:34:7e:81:50:42:c2:43:ea:72:5b: 60:b0:be:dd:30:db:30:39:2b:8c:07:14:ff:77:e5:6c:73:80: 76:f6:bc:f1:55:0d:c3:70:91:af:98:34:e0:e6:3e:6b:0f:5a: 7f:29:e8:91:a6:59:d7:2e:75:f7:32:95:1d:c2:ab:69:49:3c: 8d:cd:ae:cb -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICJhYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTUwMzAxMTAvBgNVBAUTKDg3NjlCOTUyRjlDODAwNjc1NzkyOUYwNjk5N0NERTVC MUU0NDhGMTQwHhcNMjUwNjE4MTU0MjM0WhcNMjUwNjI1MTU0MjM0WjAYMRYwFAYD VQQDEw02ODUyZGU2YS02MjJjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtCjWtBNPt+Kl7C+1kzz95Q8p8YY341pLU1Isn6B0ip352xTA9l33K0ypUvu6 WxJOLtlQ0ADBGTah0lDKMM+nh9SqUjXOYsjS0pcud8VTySNmzyoiRfC7NEE6Fx5u W7t9Z0XRd8iIYzU1/28EEQb3NNNyKmW7g6CfMPY5Wpg5qjeZuBm6agnQdByn1nRn IMOIaJc5HTwR0kjSrSd+Sj5uyVMuDes1Dq1SEuz4Ly1fIBYFWJAeqKcheHknYJl0 xC3EpGpqpD5DcU+mEtZ6pZw0DGaavzeYHmHclLefEiUaD/CKLfI/5bZbiThNsWro NPshbsswshdwPLv9NmmAFSkiMwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFK13/icE DbRAX9D/v21Af2cZi28lMB8GA1UdIwQYMBaAFIdpuVL5yABnV5KfBpl83lseRI8U MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTAzMC9DRTZBM0YxMEZE MkExMUU0Qjc0RkVBNDJDNEY5QUUwMi9oMm01VXZuSUFHZFhrcDhHbVh6ZVd4NUVq eFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2gybTVVdm5JQUdkWGtwOEdtWHplV3g1RWp4US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NTAzMC9DRTZBM0YxMEZEMkExMUU0Qjc0RkVBNDJDNEY5QUUwMi9oMm01VXZuSUFH ZFhrcDhHbVh6ZVd4NUVqeFEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBBE1rZEAQ00JrwTi8g+70kEfbdE6RL8xlr4G83S9G4CCuExDHtEcw9 Q8h/K/d8WldpoZcvdtKV1ILT6TbW1+4LAXKSQBWvamuXe+rMscgQw/YgywBN5xA8 cYIAUVEe50xfJibQVjesJJ2Euf+X3xoBCykgzamiDf6fliANkmHh3gf4iYE7qOgL dobODHq+12jJLD7JAGCqwO5weCE21LAhufp5EYQITZc0rlAwt/yc3xr+/+ev2v/k 9/M7DTR+gVBCwkPqcltgsL7dMNswOSuMBxT/d+Vsc4B29rzxVQ3DcJGvmDTg5j5r D1p/KeiRplnXLnX3MpUdwqtpSTyNza7L -----END CERTIFICATE-----Generated at Thu Jun 19 14:27:35 2025 by rpki-client