$ rpki-client -vvf rpki.apnic.net/member_repository/A91A5098/220B1728CBC211EFA3246573C4F9AE02/RJUXO9LCk43jBnfP3ec80xuKJnY.mft File: RJUXO9LCk43jBnfP3ec80xuKJnY.mft (raw, json) Hash identifier: ZoDCQe3xgXnCwFlypQDecG6er19GAJxMb3+GZcSB0o0= Subject key identifier: C3:6A:AE:CD:E6:42:91:6D:31:CF:71:7D:C0:D1:A2:C3:DD:8A:59:4C Authority key identifier: 44:95:17:3B:D2:C2:93:8D:E3:06:77:CF:DD:E7:3C:D3:1B:8A:26:76 Certificate issuer: /CN=A91A5098/serialNumber=4495173BD2C2938DE30677CFDDE73CD31B8A2676 Certificate serial: 56 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RJUXO9LCk43jBnfP3ec80xuKJnY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A5098/220B1728CBC211EFA3246573C4F9AE02/RJUXO9LCk43jBnfP3ec80xuKJnY.mft Manifest number: 56 Signing time: Wed 18 Jun 2025 16:09:41 +0000 Manifest this update: Wed 18 Jun 2025 16:09:40 +0000 Manifest next update: Wed 25 Jun 2025 16:09:40 +0000 Files and hashes: 1: RJUXO9LCk43jBnfP3ec80xuKJnY.crl (hash: FqVWl2DIMHOiCmM211eVswqvyxfRJq0JWT+aMz5lV0k=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A5098/220B1728CBC211EFA3246573C4F9AE02/RJUXO9LCk43jBnfP3ec80xuKJnY.crl rsync://rpki.apnic.net/member_repository/A91A5098/220B1728CBC211EFA3246573C4F9AE02/RJUXO9LCk43jBnfP3ec80xuKJnY.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RJUXO9LCk43jBnfP3ec80xuKJnY.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 25 Jun 2025 16:09:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 86 (0x56) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A5098, serialNumber=4495173BD2C2938DE30677CFDDE73CD31B8A2676 Validity Not Before: Jun 18 16:09:40 2025 GMT Not After : Jun 25 16:09:40 2025 GMT Subject: CN=6852e4c4-f562 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:9f:d9:d7:29:bd:ec:cb:99:a0:f5:03:da:ef: cd:ba:1a:e4:93:75:d5:ea:f3:ec:bc:b9:20:c0:43: 55:54:8a:26:5c:ed:88:95:28:ec:d1:a3:a5:1c:eb: 40:5c:c0:90:1a:55:dd:f6:4d:da:ec:62:03:46:68: b4:f1:86:e0:1b:ad:ea:08:65:78:48:dc:ba:07:f1: 16:10:ba:64:65:5d:ca:71:c1:26:f6:44:5b:a4:ff: 65:d2:6f:0e:0b:2c:74:5b:56:d2:c0:25:64:65:d7: a7:a3:fc:00:9f:f9:cc:e9:7d:77:61:d7:e7:25:e2: 66:79:73:d8:9f:6f:7d:24:69:ad:c9:d1:1b:ab:08: 85:c2:4b:47:39:69:3b:99:d4:a3:66:71:20:ba:bd: 62:4c:b2:b6:6d:97:f7:9b:c5:45:88:ba:ae:d4:71: 24:dd:15:e5:9c:38:1b:c8:95:c5:6f:5a:69:3d:22: 64:7d:20:39:dd:2c:89:33:85:ef:67:1d:8b:1e:a3: 5d:1f:5c:4b:58:52:d4:c9:66:2e:d0:62:38:9c:33: f6:63:dc:3e:e5:16:7d:17:2e:cf:87:91:9c:9c:61: 48:44:e7:76:86:6a:49:55:ad:d1:32:c8:75:ed:33: 08:0d:9f:2f:48:08:72:06:33:54:5d:e9:89:51:07: 1b:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C3:6A:AE:CD:E6:42:91:6D:31:CF:71:7D:C0:D1:A2:C3:DD:8A:59:4C X509v3 Authority Key Identifier: keyid:44:95:17:3B:D2:C2:93:8D:E3:06:77:CF:DD:E7:3C:D3:1B:8A:26:76 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A5098/220B1728CBC211EFA3246573C4F9AE02/RJUXO9LCk43jBnfP3ec80xuKJnY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RJUXO9LCk43jBnfP3ec80xuKJnY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A5098/220B1728CBC211EFA3246573C4F9AE02/RJUXO9LCk43jBnfP3ec80xuKJnY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9e:45:bc:03:d0:60:60:92:89:e2:90:ee:cc:ea:d0:15:1e:ac: b4:41:ee:d8:fa:c6:02:8a:99:13:9b:84:c8:8c:d4:b2:b4:8c: d5:dc:ae:97:6d:5d:cc:8a:2e:1d:b9:3b:ce:eb:a7:94:10:5b: 3a:63:ff:15:1d:69:c4:ec:01:b5:88:53:9d:bb:56:86:14:c1: ae:63:f2:1d:e2:05:e7:c9:f7:30:6d:dc:c7:6f:6b:fb:6d:5c: 73:42:b5:04:7d:d9:73:57:43:5e:9a:1b:1e:cc:a4:dd:de:09: 92:d0:ae:f4:88:5d:59:f0:c9:e6:67:da:30:fb:b4:f9:d5:25: 19:42:ce:d7:7e:30:43:4b:8e:82:46:4c:b3:58:71:bf:84:d3: c4:58:19:fa:63:b1:09:d8:fe:65:23:26:2f:7a:39:30:86:d2: 40:6d:1d:ba:87:e9:a3:88:91:37:95:80:75:c2:f0:28:3f:d7: ad:0d:c3:d1:42:f4:13:f4:34:cd:0d:ca:e6:e1:80:dc:40:6c: d1:c2:85:32:1c:71:49:f2:3a:38:89:ea:4a:63:9f:58:03:9f: e3:95:54:da:40:79:05:32:af:a5:ce:a3:46:3d:be:c2:5b:f6: 02:9e:11:ae:1f:76:40:32:e5:ef:8b:26:eb:55:5d:1d:60:7f: ae:b5:29:5a -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBVjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFB NTA5ODExMC8GA1UEBRMoNDQ5NTE3M0JEMkMyOTM4REUzMDY3N0NGRERFNzNDRDMx QjhBMjY3NjAeFw0yNTA2MTgxNjA5NDBaFw0yNTA2MjUxNjA5NDBaMBgxFjAUBgNV BAMTDTY4NTJlNGM0LWY1NjIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDln9nXKb3sy5mg9QPa7826GuSTddXq8+y8uSDAQ1VUiiZc7YiVKOzRo6Uc60Bc wJAaVd32TdrsYgNGaLTxhuAbreoIZXhI3LoH8RYQumRlXcpxwSb2RFuk/2XSbw4L LHRbVtLAJWRl16ej/ACf+czpfXdh1+cl4mZ5c9ifb30kaa3J0RurCIXCS0c5aTuZ 1KNmcSC6vWJMsrZtl/ebxUWIuq7UcSTdFeWcOBvIlcVvWmk9ImR9IDndLIkzhe9n HYseo10fXEtYUtTJZi7QYjicM/Zj3D7lFn0XLs+HkZycYUhE53aGaklVrdEyyHXt MwgNny9ICHIGM1Rd6YlRBxvFAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUw2quzeZC kW0xz3F9wNGiw92KWUwwHwYDVR0jBBgwFoAURJUXO9LCk43jBnfP3ec80xuKJnYw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUE1MDk4LzIyMEIxNzI4Q0JD MjExRUZBMzI0NjU3M0M0RjlBRTAyL1JKVVhPOUxDazQzakJuZlAzZWM4MHh1S0pu WS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvUkpVWE85TENrNDNqQm5mUDNlYzgweHVLSm5ZLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUE1 MDk4LzIyMEIxNzI4Q0JDMjExRUZBMzI0NjU3M0M0RjlBRTAyL1JKVVhPOUxDazQz akJuZlAzZWM4MHh1S0puWS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAJ5FvAPQYGCSieKQ7szq0BUerLRB7tj6xgKKmRObhMiM1LK0jNXcrpdt XcyKLh25O87rp5QQWzpj/xUdacTsAbWIU527VoYUwa5j8h3iBefJ9zBt3Mdva/tt XHNCtQR92XNXQ16aGx7MpN3eCZLQrvSIXVnwyeZn2jD7tPnVJRlCztd+MENLjoJG TLNYcb+E08RYGfpjsQnY/mUjJi96OTCG0kBtHbqH6aOIkTeVgHXC8Cg/160Nw9FC 9BP0NM0NyubhgNxAbNHChTIccUnyOjiJ6kpjn1gDn+OVVNpAeQUyr6XOo0Y9vsJb 9gKeEa4fdkAy5e+LJutVXR1gf661KVo= -----END CERTIFICATE-----Generated at Thu Jun 19 20:17:23 2025 by rpki-client