$ rpki-client -vvf rpki.apnic.net/member_repository/A91A5208/9E28557EE4EE11EFB1ED760EC4F9AE02/aK0NBHD2rG8Zxk7vQJTuC7WHHto.mft File: aK0NBHD2rG8Zxk7vQJTuC7WHHto.mft (raw, json) Hash identifier: Oou7p9Epbg1crifzqPMPGf0fJi7IOSFh70uN+QR3KWE= Subject key identifier: D6:5B:96:29:83:EA:8A:3C:3F:56:CC:9E:72:D5:FC:D7:7D:66:BF:A2 Authority key identifier: 68:AD:0D:04:70:F6:AC:6F:19:C6:4E:EF:40:94:EE:0B:B5:87:1E:DA Certificate issuer: /CN=A91A5208/serialNumber=68AD0D0470F6AC6F19C64EEF4094EE0BB5871EDA Certificate serial: 51 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aK0NBHD2rG8Zxk7vQJTuC7WHHto.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A5208/9E28557EE4EE11EFB1ED760EC4F9AE02/aK0NBHD2rG8Zxk7vQJTuC7WHHto.mft Manifest number: 4C Signing time: Thu 19 Jun 2025 06:46:36 +0000 Manifest this update: Thu 19 Jun 2025 06:46:36 +0000 Manifest next update: Thu 26 Jun 2025 06:46:36 +0000 Files and hashes: 1: aK0NBHD2rG8Zxk7vQJTuC7WHHto.crl (hash: I1ofayR+Dst8LEaYPcU0zIvtAtUI0RSj0qGF+wKpFw4=) 2: FF9C9380E84D11EFBDF0C033C4F9AE02.roa (hash: C95CWdcWS0/9Z9oU15qyADSExZ8oTkF5cAIWUUfMLiU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A5208/9E28557EE4EE11EFB1ED760EC4F9AE02/aK0NBHD2rG8Zxk7vQJTuC7WHHto.crl rsync://rpki.apnic.net/member_repository/A91A5208/9E28557EE4EE11EFB1ED760EC4F9AE02/aK0NBHD2rG8Zxk7vQJTuC7WHHto.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aK0NBHD2rG8Zxk7vQJTuC7WHHto.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 26 Jun 2025 06:46:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 81 (0x51) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A5208, serialNumber=68AD0D0470F6AC6F19C64EEF4094EE0BB5871EDA Validity Not Before: Jun 19 06:46:36 2025 GMT Not After : Jun 26 06:46:36 2025 GMT Subject: CN=6853b24c-76c3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:6e:79:6d:43:a8:e3:e7:de:23:bb:87:8a:fe: 5b:be:9a:27:0b:be:a5:7e:6d:00:b1:35:84:16:a1: 43:32:36:43:6f:78:70:14:96:30:60:f2:ed:10:0b: 48:4d:dc:16:68:9c:b3:23:0b:23:9f:c8:25:e2:f0: 27:45:40:a5:23:0f:09:04:73:ca:0e:95:14:ff:3f: b2:aa:34:88:70:0d:02:48:83:69:e9:c0:5a:f9:ee: 6b:ca:7c:ce:53:cb:7b:f7:d9:f9:18:7b:63:ca:4c: dc:e6:f8:96:40:48:cf:40:3e:e4:0d:51:00:48:23: a5:57:4f:23:3e:77:79:8c:64:6f:45:0b:09:fa:3b: a0:15:48:f4:a4:89:cb:52:27:10:e3:04:14:10:6d: b0:84:6f:6e:5f:96:af:c0:b2:69:04:b1:ab:17:1e: 80:15:f4:62:09:bc:ed:d1:b0:a9:7e:05:5e:4d:80: b4:55:df:79:34:bc:d0:40:ec:dc:6e:e5:06:84:9c: 6f:98:9f:ed:1a:b8:50:04:b6:9c:0e:d3:fe:6c:ee: 7f:a3:44:0c:23:b2:ba:fb:54:36:e7:df:82:2a:81: a6:93:1c:fc:0f:9d:1b:56:f9:7e:50:af:d4:dd:83: db:11:31:55:56:5d:7a:d0:2f:31:da:f1:6d:f9:9e: ba:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D6:5B:96:29:83:EA:8A:3C:3F:56:CC:9E:72:D5:FC:D7:7D:66:BF:A2 X509v3 Authority Key Identifier: keyid:68:AD:0D:04:70:F6:AC:6F:19:C6:4E:EF:40:94:EE:0B:B5:87:1E:DA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A5208/9E28557EE4EE11EFB1ED760EC4F9AE02/aK0NBHD2rG8Zxk7vQJTuC7WHHto.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aK0NBHD2rG8Zxk7vQJTuC7WHHto.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A5208/9E28557EE4EE11EFB1ED760EC4F9AE02/aK0NBHD2rG8Zxk7vQJTuC7WHHto.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7e:70:74:b5:6b:4a:a3:eb:50:fa:e8:19:5f:f5:a1:61:90:1c: 4c:d4:d9:48:d4:09:50:e7:e6:ef:06:4c:1d:b8:f9:8e:8e:37: 9d:68:15:62:de:84:2f:09:e4:0d:39:18:71:c3:04:9e:0e:ea: 49:31:a6:60:66:ce:39:21:a0:66:bb:85:74:9b:df:22:ed:cf: b1:de:6d:44:9f:f4:25:06:82:fd:9f:8e:fe:d2:17:27:5d:6e: 72:74:38:f3:d0:83:10:b3:f1:e5:58:c3:b8:ab:4c:cb:5b:58: ec:b1:cc:24:2e:0c:45:83:c1:dd:ed:7c:65:61:6e:da:75:9f: 6e:93:5c:11:2b:ac:eb:10:47:c4:eb:a0:04:b7:22:8e:f3:d0: 1d:85:61:a1:d7:df:4e:06:ca:95:3c:77:26:54:30:bb:88:58: ce:98:87:03:49:fa:0c:b0:f0:2b:f4:36:ae:3e:02:c4:f0:38: 5d:d5:ed:c0:f0:7d:59:10:05:3d:76:6c:cc:c8:8f:96:89:49: 6f:80:e3:8f:0f:5d:25:cb:7e:c7:5e:25:be:fb:db:da:30:0b: 26:e2:21:26:e2:b6:38:91:76:82:2a:3b:5a:57:31:45:1f:33: f0:12:83:1e:bc:71:a2:45:2f:16:8d:91:d2:bd:87:75:e6:69: ba:35:34:c0 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBUTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFB NTIwODExMC8GA1UEBRMoNjhBRDBEMDQ3MEY2QUM2RjE5QzY0RUVGNDA5NEVFMEJC NTg3MUVEQTAeFw0yNTA2MTkwNjQ2MzZaFw0yNTA2MjYwNjQ2MzZaMBgxFjAUBgNV BAMTDTY4NTNiMjRjLTc2YzMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDTbnltQ6jj594ju4eK/lu+micLvqV+bQCxNYQWoUMyNkNveHAUljBg8u0QC0hN 3BZonLMjCyOfyCXi8CdFQKUjDwkEc8oOlRT/P7KqNIhwDQJIg2npwFr57mvKfM5T y3v32fkYe2PKTNzm+JZASM9APuQNUQBII6VXTyM+d3mMZG9FCwn6O6AVSPSkictS JxDjBBQQbbCEb25flq/AsmkEsasXHoAV9GIJvO3RsKl+BV5NgLRV33k0vNBA7Nxu 5QaEnG+Yn+0auFAEtpwO0/5s7n+jRAwjsrr7VDbn34IqgaaTHPwPnRtW+X5Qr9Td g9sRMVVWXXrQLzHa8W35nrqXAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU1luWKYPq ijw/VsyectX8131mv6IwHwYDVR0jBBgwFoAUaK0NBHD2rG8Zxk7vQJTuC7WHHtow DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUE1MjA4LzlFMjg1NTdFRTRF RTExRUZCMUVENzYwRUM0RjlBRTAyL2FLME5CSEQyckc4WnhrN3ZRSlR1QzdXSEh0 by5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvYUswTkJIRDJyRzhaeGs3dlFKVHVDN1dISHRvLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUE1 MjA4LzlFMjg1NTdFRTRFRTExRUZCMUVENzYwRUM0RjlBRTAyL2FLME5CSEQyckc4 WnhrN3ZRSlR1QzdXSEh0by5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAH5wdLVrSqPrUProGV/1oWGQHEzU2UjUCVDn5u8GTB24+Y6ON51oFWLe hC8J5A05GHHDBJ4O6kkxpmBmzjkhoGa7hXSb3yLtz7HebUSf9CUGgv2fjv7SFydd bnJ0OPPQgxCz8eVYw7irTMtbWOyxzCQuDEWDwd3tfGVhbtp1n26TXBErrOsQR8Tr oAS3Io7z0B2FYaHX304GypU8dyZUMLuIWM6YhwNJ+gyw8Cv0Nq4+AsTwOF3V7cDw fVkQBT12bMzIj5aJSW+A448PXSXLfsdeJb7729owCybiISbitjiRdoIqO1pXMUUf M/ASgx68caJFLxaNkdK9h3Xmabo1NMA= -----END CERTIFICATE-----Generated at Fri Jun 20 20:18:21 2025 by rpki-client