$ rpki-client -vvf rpki.apnic.net/member_repository/A91A7369/B1D61942487F11EEA80A024CC4F9AE02/-Q4hD858Z6Lysy3hTusFoEsNEOE.mft File: -Q4hD858Z6Lysy3hTusFoEsNEOE.mft (raw, json) Hash identifier: Ch5Bbkhb25BJQvCK3+ua4QQ3sGn4Ymxch8MW5ZV/LEI= Subject key identifier: 27:AC:69:10:1B:EE:9B:2F:35:94:7D:8E:8F:50:21:66:12:CB:AD:ED Authority key identifier: F9:0E:21:0F:CE:7C:67:A2:F2:B3:2D:E1:4E:EB:05:A0:4B:0D:10:E1 Certificate issuer: /CN=A91A7369/serialNumber=F90E210FCE7C67A2F2B32DE14EEB05A04B0D10E1 Certificate serial: 0155 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-Q4hD858Z6Lysy3hTusFoEsNEOE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A7369/B1D61942487F11EEA80A024CC4F9AE02/-Q4hD858Z6Lysy3hTusFoEsNEOE.mft Manifest number: 0152 Signing time: Sat 21 Jun 2025 03:20:11 +0000 Manifest this update: Sat 21 Jun 2025 03:20:10 +0000 Manifest next update: Sat 28 Jun 2025 03:20:10 +0000 Files and hashes: 1: -Q4hD858Z6Lysy3hTusFoEsNEOE.crl (hash: lmiW07n3VZgD073g0Xvsbsi7E2urgM4e2s5MVX5VKUo=) 2: A99E5658488011EE8113A766C4F9AE02.roa (hash: E13lbyCe1pFntvaZ0/XCP2JTKYjD9ZQaJQDpf4OhMJA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A7369/B1D61942487F11EEA80A024CC4F9AE02/-Q4hD858Z6Lysy3hTusFoEsNEOE.crl rsync://rpki.apnic.net/member_repository/A91A7369/B1D61942487F11EEA80A024CC4F9AE02/-Q4hD858Z6Lysy3hTusFoEsNEOE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-Q4hD858Z6Lysy3hTusFoEsNEOE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Jun 2025 03:20:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 341 (0x155) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A7369, serialNumber=F90E210FCE7C67A2F2B32DE14EEB05A04B0D10E1 Validity Not Before: Jun 21 03:20:10 2025 GMT Not After : Jun 28 03:20:10 2025 GMT Subject: CN=685624ea-d169 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:2f:b0:9d:d9:1e:47:9a:9b:e2:6e:70:65:bc: 24:27:6f:be:3d:33:7d:dd:48:dc:6d:1e:94:84:86: 58:ef:11:4d:33:ef:13:53:bd:dd:9a:a6:12:33:8b: b2:32:a1:f6:38:d9:b7:c7:ef:cd:1b:08:bf:3e:ec: 40:99:f4:cd:16:a5:eb:40:7a:04:11:b2:cb:9e:a3: aa:6a:17:42:4b:73:08:7f:a2:fb:0c:4f:ef:da:56: 88:af:5d:db:c5:27:b9:5c:34:fb:a1:8e:19:5e:8e: 00:e0:ca:4b:21:b2:e9:71:97:76:ae:ad:a6:2a:83: 80:89:eb:c2:2b:ac:f5:fa:ea:43:24:31:3f:83:9c: b6:b1:0b:33:eb:49:01:01:ac:57:f2:03:7d:d7:18: 4b:95:63:c9:a9:76:0b:7e:75:41:7f:6a:86:aa:ae: a3:d9:a6:52:63:34:e0:f7:10:7e:cd:fd:f0:1c:14: 71:9d:8b:6b:9f:01:38:69:c2:2b:b7:f5:2e:4f:6a: c7:ca:31:60:64:b3:88:45:b8:b7:5b:f0:fa:0f:b1: 8d:a8:fe:60:ea:af:05:2e:ad:fb:1b:fd:93:dd:ce: f5:a5:08:2f:2a:b5:b0:11:ca:51:0d:49:5f:06:98: b4:53:80:d2:e1:f8:65:38:06:8d:8d:0e:f3:4c:ec: 41:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 27:AC:69:10:1B:EE:9B:2F:35:94:7D:8E:8F:50:21:66:12:CB:AD:ED X509v3 Authority Key Identifier: keyid:F9:0E:21:0F:CE:7C:67:A2:F2:B3:2D:E1:4E:EB:05:A0:4B:0D:10:E1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A7369/B1D61942487F11EEA80A024CC4F9AE02/-Q4hD858Z6Lysy3hTusFoEsNEOE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-Q4hD858Z6Lysy3hTusFoEsNEOE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A7369/B1D61942487F11EEA80A024CC4F9AE02/-Q4hD858Z6Lysy3hTusFoEsNEOE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6c:45:e3:9f:52:03:02:9e:4f:f4:98:5a:19:cd:24:f6:70:34: 47:12:70:8f:aa:62:a4:bf:c2:b8:82:ce:e0:65:4f:84:01:f2: 0b:34:89:83:49:82:af:6b:b6:27:13:ca:95:11:5a:1d:88:84: d0:de:5d:fb:28:65:f7:b3:8a:55:cb:84:91:e7:d4:72:0b:80: a9:e6:f8:75:3c:32:49:1d:32:2d:be:4c:eb:ed:6b:5f:69:93: d2:7f:e3:14:cc:41:d6:c0:58:85:54:c2:da:4f:9a:20:e2:18: 75:e5:fb:50:0c:96:c6:fa:81:c4:09:1c:bf:51:69:3a:c9:bf: 3d:19:45:84:97:eb:f0:52:d3:e0:be:59:f5:ab:ac:7d:46:a6: 4b:d2:de:23:bd:03:5a:91:1f:e2:9b:9b:62:30:f1:8b:c1:44: fb:62:43:d6:fe:e2:ca:51:51:9a:d6:de:7a:44:66:8e:e4:c0: 0b:22:28:38:00:7c:11:c4:b3:c2:45:ae:6c:b8:69:43:27:06: a9:8e:e6:46:79:30:c3:2b:1c:bb:0f:93:d0:04:48:3e:77:5d: 6f:c5:52:83:7b:f6:2f:ee:a3:5b:e4:90:93:bf:a8:9e:8e:4e: 8b:60:66:c5:81:4b:fc:6d:d6:89:f7:7d:d8:da:34:a3:7d:86: 39:b6:c2:1e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAVUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTczNjkxMTAvBgNVBAUTKEY5MEUyMTBGQ0U3QzY3QTJGMkIzMkRFMTRFRUIwNUEw NEIwRDEwRTEwHhcNMjUwNjIxMDMyMDEwWhcNMjUwNjI4MDMyMDEwWjAYMRYwFAYD VQQDEw02ODU2MjRlYS1kMTY5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyi+wndkeR5qb4m5wZbwkJ2++PTN93UjcbR6UhIZY7xFNM+8TU73dmqYSM4uy MqH2ONm3x+/NGwi/PuxAmfTNFqXrQHoEEbLLnqOqahdCS3MIf6L7DE/v2laIr13b xSe5XDT7oY4ZXo4A4MpLIbLpcZd2rq2mKoOAievCK6z1+upDJDE/g5y2sQsz60kB AaxX8gN91xhLlWPJqXYLfnVBf2qGqq6j2aZSYzTg9xB+zf3wHBRxnYtrnwE4acIr t/UuT2rHyjFgZLOIRbi3W/D6D7GNqP5g6q8FLq37G/2T3c71pQgvKrWwEcpRDUlf Bpi0U4DS4fhlOAaNjQ7zTOxBIQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCesaRAb 7psvNZR9jo9QIWYSy63tMB8GA1UdIwQYMBaAFPkOIQ/OfGei8rMt4U7rBaBLDRDh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNzM2OS9CMUQ2MTk0MjQ4 N0YxMUVFQTgwQTAyNENDNEY5QUUwMi8tUTRoRDg1OFo2THlzeTNoVHVzRm9Fc05F T0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy1RNGhEODU4WjZMeXN5M2hUdXNGb0VzTkVPRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NzM2OS9CMUQ2MTk0MjQ4N0YxMUVFQTgwQTAyNENDNEY5QUUwMi8tUTRoRDg1OFo2 THlzeTNoVHVzRm9Fc05FT0UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBsReOfUgMCnk/0mFoZzST2cDRHEnCPqmKkv8K4gs7gZU+EAfILNImD SYKva7YnE8qVEVodiITQ3l37KGX3s4pVy4SR59RyC4Cp5vh1PDJJHTItvkzr7Wtf aZPSf+MUzEHWwFiFVMLaT5og4hh15ftQDJbG+oHECRy/UWk6yb89GUWEl+vwUtPg vln1q6x9RqZL0t4jvQNakR/im5tiMPGLwUT7YkPW/uLKUVGa1t56RGaO5MALIig4 AHwRxLPCRa5suGlDJwapjuZGeTDDKxy7D5PQBEg+d11vxVKDe/Yv7qNb5JCTv6ie jk6LYGbFgUv8bdaJ933Y2jSjfYY5tsIe -----END CERTIFICATE-----Generated at Sat Jun 21 19:23:56 2025 by rpki-client