$ rpki-client -vvf rpki.apnic.net/member_repository/A91A6F2D/6F821178AB8811EF80C75A74C4F9AE02/r2ctqMXR1sgNUGF4yefLdE9uOOY.mft File: r2ctqMXR1sgNUGF4yefLdE9uOOY.mft (raw, json) Hash identifier: JdWq4zv6eLBRHkQYl+/dnlwylqzaPmjbgNspMsmnYzc= Subject key identifier: C8:02:2A:76:CB:C7:F7:DC:57:9F:07:14:59:4A:10:88:DB:20:B0:3B Authority key identifier: AF:67:2D:A8:C5:D1:D6:C8:0D:50:61:78:C9:E7:CB:74:4F:6E:38:E6 Certificate issuer: /CN=A91A6F2D/serialNumber=AF672DA8C5D1D6C80D506178C9E7CB744F6E38E6 Certificate serial: 6F Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/r2ctqMXR1sgNUGF4yefLdE9uOOY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A6F2D/6F821178AB8811EF80C75A74C4F9AE02/r2ctqMXR1sgNUGF4yefLdE9uOOY.mft Manifest number: 6D Signing time: Wed 18 Jun 2025 22:50:59 +0000 Manifest this update: Wed 18 Jun 2025 22:50:58 +0000 Manifest next update: Wed 25 Jun 2025 22:50:58 +0000 Files and hashes: 1: r2ctqMXR1sgNUGF4yefLdE9uOOY.crl (hash: SsqNBcVWLAcn8LnsKM1iWPAQIJaYJhBcLCT3jkFXEi0=) 2: FBE0AB56AC6511EFAEAA8A3CC4F9AE02.roa (hash: 05N/6Qhw5iJe1Qr/JCmwvRl4veGMACl1Zh2wsIyWrXw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A6F2D/6F821178AB8811EF80C75A74C4F9AE02/r2ctqMXR1sgNUGF4yefLdE9uOOY.crl rsync://rpki.apnic.net/member_repository/A91A6F2D/6F821178AB8811EF80C75A74C4F9AE02/r2ctqMXR1sgNUGF4yefLdE9uOOY.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/r2ctqMXR1sgNUGF4yefLdE9uOOY.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 25 Jun 2025 22:50:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 111 (0x6f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A6F2D, serialNumber=AF672DA8C5D1D6C80D506178C9E7CB744F6E38E6 Validity Not Before: Jun 18 22:50:58 2025 GMT Not After : Jun 25 22:50:58 2025 GMT Subject: CN=685342d3-7a98 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:c1:25:ac:30:59:61:bd:3c:53:72:26:9b:c8: b3:d0:29:fa:c3:2b:27:34:97:dd:12:05:5e:39:6f: f6:32:a5:c2:ed:f6:f4:f1:ba:00:68:4f:6d:e9:55: ef:b3:c2:bc:c7:85:2e:98:0e:0d:f3:c5:90:75:74: 85:10:e7:6a:7c:f7:51:f7:d3:70:45:cb:09:6e:cc: 70:d3:b7:83:1a:6d:55:85:e5:49:ec:4f:45:76:ef: 79:77:d7:9d:d6:95:fc:60:23:4b:38:40:ba:6f:01: 7f:86:dd:45:cf:c0:86:3e:1f:0b:ae:e3:80:a8:c4: 0e:33:f0:78:d0:4b:4a:29:e3:67:2c:89:a0:4d:fc: 44:f2:53:68:64:65:5b:86:f9:a9:99:8c:a5:1c:15: 98:0e:5a:bc:29:f4:47:45:6b:2d:68:39:3e:69:98: 7a:58:a1:12:9c:fa:fd:0e:c8:bc:e7:cc:3c:fc:26: 42:93:e1:2f:66:f6:64:55:af:2b:80:02:f1:b4:99: 47:4a:db:7c:01:e6:d8:86:d9:ef:26:46:39:a4:81: 52:c9:fd:c9:80:a8:b5:bf:fa:64:8e:81:73:2d:71: ee:df:c1:a7:0a:b4:ba:32:76:e0:e1:30:58:78:f9: 1d:e1:8e:e4:20:0c:24:90:25:26:8c:ef:a6:1e:28: da:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C8:02:2A:76:CB:C7:F7:DC:57:9F:07:14:59:4A:10:88:DB:20:B0:3B X509v3 Authority Key Identifier: keyid:AF:67:2D:A8:C5:D1:D6:C8:0D:50:61:78:C9:E7:CB:74:4F:6E:38:E6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A6F2D/6F821178AB8811EF80C75A74C4F9AE02/r2ctqMXR1sgNUGF4yefLdE9uOOY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/r2ctqMXR1sgNUGF4yefLdE9uOOY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A6F2D/6F821178AB8811EF80C75A74C4F9AE02/r2ctqMXR1sgNUGF4yefLdE9uOOY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9c:e4:1d:38:6c:65:47:8f:28:d9:49:fe:69:32:1b:1a:f9:8a: e6:16:9d:48:d5:53:77:59:75:a3:95:2e:0c:a8:b4:dc:d8:07: b1:2a:90:b7:08:a2:a4:c5:1f:0c:b3:ac:60:33:5a:77:dd:8d: bf:2d:45:02:aa:cb:9a:65:e1:50:92:bd:37:0c:52:1e:11:5a: 62:26:cf:87:05:59:74:d9:1b:d5:c6:54:97:2a:c4:4d:49:29: 6f:34:c1:29:2a:b9:d2:2a:77:23:ec:a8:5e:4b:09:0d:c0:9d: 55:8b:1f:52:d4:e1:74:30:b4:5c:bf:4f:6b:16:d4:ac:25:cb: 6b:a7:3c:91:71:ca:97:9f:38:ab:a5:c6:49:f1:49:85:28:d7: 64:d3:17:bc:29:9a:56:8d:89:03:c9:37:19:5c:8c:21:14:b3: 5c:b1:72:bf:fc:80:4f:f4:70:61:cb:bb:92:47:75:09:6c:6f: a3:e8:7c:11:e0:10:09:09:40:15:19:b0:d1:23:62:dc:37:de: ae:fc:3b:ce:e9:69:65:f6:92:6f:99:6d:c7:09:f1:6e:ed:6e: be:12:ea:52:2f:9a:fb:3d:5e:8e:7c:b1:c1:52:32:fa:0b:7d: 85:9e:f7:0c:ef:d5:03:6d:d2:b2:95:ac:4b:f1:ab:00:68:49: 45:68:9c:13 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBbzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFB NkYyRDExMC8GA1UEBRMoQUY2NzJEQThDNUQxRDZDODBENTA2MTc4QzlFN0NCNzQ0 RjZFMzhFNjAeFw0yNTA2MTgyMjUwNThaFw0yNTA2MjUyMjUwNThaMBgxFjAUBgNV BAMTDTY4NTM0MmQzLTdhOTgwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDjwSWsMFlhvTxTciabyLPQKfrDKyc0l90SBV45b/YypcLt9vTxugBoT23pVe+z wrzHhS6YDg3zxZB1dIUQ52p891H303BFywluzHDTt4MabVWF5UnsT0V273l3153W lfxgI0s4QLpvAX+G3UXPwIY+Hwuu44CoxA4z8HjQS0op42csiaBN/ETyU2hkZVuG +amZjKUcFZgOWrwp9EdFay1oOT5pmHpYoRKc+v0OyLznzDz8JkKT4S9m9mRVryuA AvG0mUdK23wB5tiG2e8mRjmkgVLJ/cmAqLW/+mSOgXMtce7fwacKtLoyduDhMFh4 +R3hjuQgDCSQJSaM76YeKNqPAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUyAIqdsvH 99xXnwcUWUoQiNsgsDswHwYDVR0jBBgwFoAUr2ctqMXR1sgNUGF4yefLdE9uOOYw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUE2RjJELzZGODIxMTc4QUI4 ODExRUY4MEM3NUE3NEM0RjlBRTAyL3IyY3RxTVhSMXNnTlVHRjR5ZWZMZEU5dU9P WS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvcjJjdHFNWFIxc2dOVUdGNHllZkxkRTl1T09ZLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUE2 RjJELzZGODIxMTc4QUI4ODExRUY4MEM3NUE3NEM0RjlBRTAyL3IyY3RxTVhSMXNn TlVHRjR5ZWZMZEU5dU9PWS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAJzkHThsZUePKNlJ/mkyGxr5iuYWnUjVU3dZdaOVLgyotNzYB7EqkLcI oqTFHwyzrGAzWnfdjb8tRQKqy5pl4VCSvTcMUh4RWmImz4cFWXTZG9XGVJcqxE1J KW80wSkqudIqdyPsqF5LCQ3AnVWLH1LU4XQwtFy/T2sW1Kwly2unPJFxypefOKul xknxSYUo12TTF7wpmlaNiQPJNxlcjCEUs1yxcr/8gE/0cGHLu5JHdQlsb6PofBHg EAkJQBUZsNEjYtw33q78O87paWX2km+ZbccJ8W7tbr4S6lIvmvs9Xo58scFSMvoL fYWe9wzv1QNt0rKVrEvxqwBoSUVonBM= -----END CERTIFICATE-----Generated at Thu Jun 19 19:00:31 2025 by rpki-client