$ rpki-client -vvf rpki.apnic.net/member_repository/A91A78A7/104B19460CBD11EDAA77D12DC4F9AE02/RTN9xeSDnkmBkSneoqlGGwIc0ZA.mft File: RTN9xeSDnkmBkSneoqlGGwIc0ZA.mft (raw, json) Hash identifier: w6rMMlyFEAUOG8+Cx1iqAKcBrWDEGs5zwqSycVEEww0= Subject key identifier: 87:89:B5:0E:00:4B:02:F0:A6:31:AE:9A:6B:C4:36:FA:F7:B0:3E:32 Authority key identifier: 45:33:7D:C5:E4:83:9E:49:81:91:29:DE:A2:A9:46:1B:02:1C:D1:90 Certificate issuer: /CN=A91A78A7/serialNumber=45337DC5E4839E49819129DEA2A9461B021CD190 Certificate serial: 0286 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RTN9xeSDnkmBkSneoqlGGwIc0ZA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A78A7/104B19460CBD11EDAA77D12DC4F9AE02/RTN9xeSDnkmBkSneoqlGGwIc0ZA.mft Manifest number: 0283 Signing time: Thu 19 Jun 2025 01:29:11 +0000 Manifest this update: Thu 19 Jun 2025 01:29:11 +0000 Manifest next update: Thu 26 Jun 2025 01:29:11 +0000 Files and hashes: 1: RTN9xeSDnkmBkSneoqlGGwIc0ZA.crl (hash: qd57oFrQGewXw/0fVmDmfozOkkj8HKWLQiBINc1RvLo=) 2: D470449E0E4411ED9C0F5B45C4F9AE02.roa (hash: 9zqxhpOangW9769mdxLoJSN4Rv/Y8CMGWvMe+D0Ah7w=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A78A7/104B19460CBD11EDAA77D12DC4F9AE02/RTN9xeSDnkmBkSneoqlGGwIc0ZA.crl rsync://rpki.apnic.net/member_repository/A91A78A7/104B19460CBD11EDAA77D12DC4F9AE02/RTN9xeSDnkmBkSneoqlGGwIc0ZA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RTN9xeSDnkmBkSneoqlGGwIc0ZA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 26 Jun 2025 01:29:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 646 (0x286) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A78A7, serialNumber=45337DC5E4839E49819129DEA2A9461B021CD190 Validity Not Before: Jun 19 01:29:11 2025 GMT Not After : Jun 26 01:29:11 2025 GMT Subject: CN=685367e7-d58f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:2f:9e:ca:9d:ae:fb:31:20:79:9d:0e:70:9d: 4e:7e:74:a8:52:6d:66:98:58:fa:46:f9:56:d1:04: 90:a2:2a:3f:65:6e:08:fc:a0:8b:83:aa:77:2b:10: b5:f9:b0:50:52:e6:fa:19:40:30:e5:3e:97:bf:45: 63:db:22:bb:91:7e:40:b6:0c:e1:dd:ea:fa:29:09: 67:49:ae:ec:12:43:91:e7:6f:1f:0c:22:81:d6:66: 71:ac:cd:fd:59:1f:07:d7:68:6e:8f:12:3a:ca:a3: f7:2d:52:68:6a:4f:62:75:ce:72:b5:11:db:92:e8: 6c:fa:74:fe:81:42:1b:2c:9e:f4:37:2f:80:d2:67: 0a:fc:ed:cb:e2:4b:4f:42:d3:d7:60:da:94:0b:b2: 6f:d3:3f:8d:91:b2:57:7e:fc:06:ed:d0:3e:a5:2d: 6a:38:e0:70:ff:8c:8b:ce:0e:1c:ce:b9:89:99:3a: 2f:c5:b6:e8:33:f4:96:0d:46:18:9e:fd:2b:71:6c: d5:7f:73:7d:41:91:ff:9a:f1:65:42:ff:b5:99:e4: 6c:10:99:ca:5e:e9:33:1f:b3:a0:c8:82:00:b4:40: 15:9b:79:5f:19:16:82:e5:b1:96:fb:44:3a:b9:4d: 14:25:e8:f8:7d:41:28:a9:cc:5f:0a:ec:10:86:8e: 53:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 87:89:B5:0E:00:4B:02:F0:A6:31:AE:9A:6B:C4:36:FA:F7:B0:3E:32 X509v3 Authority Key Identifier: keyid:45:33:7D:C5:E4:83:9E:49:81:91:29:DE:A2:A9:46:1B:02:1C:D1:90 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A78A7/104B19460CBD11EDAA77D12DC4F9AE02/RTN9xeSDnkmBkSneoqlGGwIc0ZA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RTN9xeSDnkmBkSneoqlGGwIc0ZA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A78A7/104B19460CBD11EDAA77D12DC4F9AE02/RTN9xeSDnkmBkSneoqlGGwIc0ZA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ac:a3:6f:1c:c7:3a:f8:5e:2e:bc:b0:43:0c:83:b3:83:fc:37: 30:cc:7d:e4:45:60:20:64:6e:a0:9d:e0:b8:c5:38:60:a1:6d: c0:57:95:8d:db:a0:7e:38:7c:fc:57:21:41:35:d0:62:7c:d6: 3c:33:86:0c:d2:3f:b8:b9:5e:de:8e:14:be:dd:c3:d5:01:0a: 07:2b:50:84:96:a7:6e:dc:8d:92:45:d9:a2:c6:7a:77:77:17: 69:6c:19:5b:aa:0b:d7:e2:eb:32:96:d5:d2:c0:f0:0e:32:8a: a0:1c:e3:e6:f3:15:ea:dd:80:4f:38:43:b9:50:4d:ad:4c:79: 7e:2f:60:88:cc:7c:0a:9e:a0:49:f3:15:4e:61:4f:93:a2:ad: 90:3e:e6:1d:3b:fe:0a:ae:c1:18:c0:b1:ae:ec:5c:b8:55:6f: 93:77:f8:cc:cc:5a:da:34:ec:ed:7e:be:c1:03:b6:f8:ec:14: d0:42:dd:7d:73:1b:42:60:56:95:d5:e1:b4:b7:4e:d6:a3:74: d3:5e:69:1e:b7:98:9a:a9:2c:34:f3:c6:84:42:97:16:94:d4: da:84:a1:4c:c7:aa:c5:6e:5b:5c:bc:55:7e:cb:95:63:08:ab: cc:5d:1e:19:78:dc:3f:a6:11:c0:e2:84:9c:84:69:61:93:98: e7:e8:91:a9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAoYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTc4QTcxMTAvBgNVBAUTKDQ1MzM3REM1RTQ4MzlFNDk4MTkxMjlERUEyQTk0NjFC MDIxQ0QxOTAwHhcNMjUwNjE5MDEyOTExWhcNMjUwNjI2MDEyOTExWjAYMRYwFAYD VQQDEw02ODUzNjdlNy1kNThmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwi+eyp2u+zEgeZ0OcJ1OfnSoUm1mmFj6RvlW0QSQoio/ZW4I/KCLg6p3KxC1 +bBQUub6GUAw5T6Xv0Vj2yK7kX5Atgzh3er6KQlnSa7sEkOR528fDCKB1mZxrM39 WR8H12hujxI6yqP3LVJoak9idc5ytRHbkuhs+nT+gUIbLJ70Ny+A0mcK/O3L4ktP QtPXYNqUC7Jv0z+NkbJXfvwG7dA+pS1qOOBw/4yLzg4czrmJmTovxbboM/SWDUYY nv0rcWzVf3N9QZH/mvFlQv+1meRsEJnKXukzH7OgyIIAtEAVm3lfGRaC5bGW+0Q6 uU0UJej4fUEoqcxfCuwQho5THwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIeJtQ4A SwLwpjGummvENvr3sD4yMB8GA1UdIwQYMBaAFEUzfcXkg55JgZEp3qKpRhsCHNGQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNzhBNy8xMDRCMTk0NjBD QkQxMUVEQUE3N0QxMkRDNEY5QUUwMi9SVE45eGVTRG5rbUJrU25lb3FsR0d3SWMw WkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1JUTjl4ZVNEbmttQmtTbmVvcWxHR3dJYzBaQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NzhBNy8xMDRCMTk0NjBDQkQxMUVEQUE3N0QxMkRDNEY5QUUwMi9SVE45eGVTRG5r bUJrU25lb3FsR0d3SWMwWkEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCso28cxzr4Xi68sEMMg7OD/DcwzH3kRWAgZG6gneC4xThgoW3AV5WN 26B+OHz8VyFBNdBifNY8M4YM0j+4uV7ejhS+3cPVAQoHK1CElqdu3I2SRdmixnp3 dxdpbBlbqgvX4usyltXSwPAOMoqgHOPm8xXq3YBPOEO5UE2tTHl+L2CIzHwKnqBJ 8xVOYU+Toq2QPuYdO/4KrsEYwLGu7Fy4VW+Td/jMzFraNOztfr7BA7b47BTQQt19 cxtCYFaV1eG0t07Wo3TTXmket5iaqSw088aEQpcWlNTahKFMx6rFbltcvFV+y5Vj CKvMXR4ZeNw/phHA4oSchGlhk5jn6JGp -----END CERTIFICATE-----Generated at Sat Jun 21 01:50:33 2025 by rpki-client