$ rpki-client -vvf rpki.apnic.net/member_repository/A91A799E/255CE8347FD611EB9FD1233BC4F9AE02/rFX7db_jQ-SUh9hRwBOcE2TK6c4.mft File: rFX7db_jQ-SUh9hRwBOcE2TK6c4.mft (raw, json) Hash identifier: 6OMME5FFTv3bmh47OvKYZTyBPOPmzgV/kyDVEEwYcOw= Subject key identifier: EC:71:F5:D5:4A:B4:31:06:50:C5:7A:9E:82:9B:9C:14:1B:F5:F4:87 Authority key identifier: AC:55:FB:75:BF:E3:43:E4:94:87:D8:51:C0:13:9C:13:64:CA:E9:CE Certificate issuer: /CN=A91A799E/serialNumber=AC55FB75BFE343E49487D851C0139C1364CAE9CE Certificate serial: 0679 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rFX7db_jQ-SUh9hRwBOcE2TK6c4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A799E/255CE8347FD611EB9FD1233BC4F9AE02/rFX7db_jQ-SUh9hRwBOcE2TK6c4.mft Manifest number: 066F Signing time: Mon 16 Jun 2025 22:03:41 +0000 Manifest this update: Mon 16 Jun 2025 22:03:41 +0000 Manifest next update: Mon 23 Jun 2025 22:03:41 +0000 Files and hashes: 1: rFX7db_jQ-SUh9hRwBOcE2TK6c4.crl (hash: Ps6D5mPdXj7kKXcqjzcpR+zQvdkfscaOzP1/0UY1J1Y=) 2: 6AC62B967FD711EBA2ECB43BC4F9AE02.roa (hash: gL2nII9XEbxnadb0waQYWcnam9MRSvEB52poepWih4w=) 3: 517F49AA822611EB8990276EC4F9AE02.roa (hash: CVEUO3oD78hdPnE1F9V5H7s7rSJsTEHJ4Ohcr53z470=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A799E/255CE8347FD611EB9FD1233BC4F9AE02/rFX7db_jQ-SUh9hRwBOcE2TK6c4.crl rsync://rpki.apnic.net/member_repository/A91A799E/255CE8347FD611EB9FD1233BC4F9AE02/rFX7db_jQ-SUh9hRwBOcE2TK6c4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rFX7db_jQ-SUh9hRwBOcE2TK6c4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 23 Jun 2025 22:03:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1657 (0x679) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A799E, serialNumber=AC55FB75BFE343E49487D851C0139C1364CAE9CE Validity Not Before: Jun 16 22:03:41 2025 GMT Not After : Jun 23 22:03:41 2025 GMT Subject: CN=685094bd-4f83 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:62:d8:25:6b:d1:70:62:97:a0:f3:4e:17:3b: 55:ee:8f:23:fe:15:7a:b9:f4:8b:f4:6e:4b:a4:68: 54:a2:73:a9:70:6a:e0:dd:78:b2:21:96:96:4b:1c: d2:c7:61:9c:74:d5:fa:a4:61:e2:50:a5:6d:bb:94: 7e:87:3c:c3:4a:f2:90:2c:e0:59:df:70:68:95:a2: ee:91:87:92:28:40:7c:af:27:3e:3c:cb:98:64:92: 68:cd:ba:ab:77:c4:a8:39:04:dd:16:26:de:a3:b8: f9:b6:bf:c6:8e:44:b7:75:f2:14:b4:e3:9f:b3:64: cd:cb:26:ec:09:ae:0e:a1:db:05:4c:44:c0:fc:bf: cd:64:e2:d0:6e:5e:bf:c9:c2:9d:13:14:48:85:ab: 5d:6c:b3:9d:32:30:19:6a:e7:c9:36:7c:65:b3:46: 71:54:65:43:c4:07:33:cd:38:01:49:b5:8e:92:5f: 1b:7d:f0:7c:68:e4:6d:b1:ec:5b:ae:03:fd:b2:58: 6f:df:f8:60:77:30:ca:3c:59:b3:1d:e3:70:e6:2a: f9:07:8c:97:57:d7:bc:e2:53:9c:81:c4:1d:4b:65: 54:c6:42:fd:99:13:b5:47:41:a8:7b:a4:69:e9:6b: 9d:a5:2e:ee:57:32:cb:db:17:eb:7a:52:cf:3d:cc: 38:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EC:71:F5:D5:4A:B4:31:06:50:C5:7A:9E:82:9B:9C:14:1B:F5:F4:87 X509v3 Authority Key Identifier: keyid:AC:55:FB:75:BF:E3:43:E4:94:87:D8:51:C0:13:9C:13:64:CA:E9:CE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A799E/255CE8347FD611EB9FD1233BC4F9AE02/rFX7db_jQ-SUh9hRwBOcE2TK6c4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rFX7db_jQ-SUh9hRwBOcE2TK6c4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A799E/255CE8347FD611EB9FD1233BC4F9AE02/rFX7db_jQ-SUh9hRwBOcE2TK6c4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 85:de:3e:e0:64:ad:19:d6:f1:f4:7d:8a:8c:26:ee:b7:4b:98: 71:2e:f8:ff:2b:d5:cb:0b:16:d5:2b:f9:97:9c:d3:87:cf:be: 85:67:ea:20:39:d3:48:43:a5:00:f3:cd:a8:72:21:5b:c6:4b: a6:a8:01:6d:89:18:26:67:da:4d:f0:53:03:31:27:dd:32:ef: 09:c0:9b:94:87:a2:ea:1a:4d:1a:52:15:19:e2:cf:2f:52:98: 6e:65:dd:5f:c5:41:7f:1e:52:3e:05:56:82:a6:d1:a8:dc:04: fc:b2:02:58:59:50:2a:58:ad:1e:2f:19:da:3d:5e:9f:a2:95: 37:bd:48:99:51:cb:f4:a2:9d:6f:a7:e6:30:21:38:c4:f6:61: be:dd:a4:64:3d:eb:2d:ca:e3:ea:7a:aa:f3:0c:49:c8:22:97: dc:ab:56:95:d2:b5:32:cc:96:e4:59:a6:01:ca:c0:73:75:aa: ff:62:62:3c:6a:bc:16:15:a9:10:99:7b:c2:1e:83:8c:8d:a3: 12:7e:11:d1:79:9f:84:5c:01:5f:7b:f1:9e:14:c4:5e:13:b8: 25:2c:df:e6:1a:64:6b:8f:55:1d:1e:e3:76:b2:d5:d0:a9:51: 31:f7:f4:03:79:6b:fd:1b:b3:62:7f:b1:51:50:a0:ac:80:84: 87:90:05:aa -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBnkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTc5OUUxMTAvBgNVBAUTKEFDNTVGQjc1QkZFMzQzRTQ5NDg3RDg1MUMwMTM5QzEz NjRDQUU5Q0UwHhcNMjUwNjE2MjIwMzQxWhcNMjUwNjIzMjIwMzQxWjAYMRYwFAYD VQQDEw02ODUwOTRiZC00ZjgzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxmLYJWvRcGKXoPNOFztV7o8j/hV6ufSL9G5LpGhUonOpcGrg3XiyIZaWSxzS x2GcdNX6pGHiUKVtu5R+hzzDSvKQLOBZ33BolaLukYeSKEB8ryc+PMuYZJJozbqr d8SoOQTdFibeo7j5tr/GjkS3dfIUtOOfs2TNyybsCa4OodsFTETA/L/NZOLQbl6/ ycKdExRIhatdbLOdMjAZaufJNnxls0ZxVGVDxAczzTgBSbWOkl8bffB8aORtsexb rgP9slhv3/hgdzDKPFmzHeNw5ir5B4yXV9e84lOcgcQdS2VUxkL9mRO1R0Goe6Rp 6WudpS7uVzLL2xfrelLPPcw4IwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOxx9dVK tDEGUMV6noKbnBQb9fSHMB8GA1UdIwQYMBaAFKxV+3W/40PklIfYUcATnBNkyunO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNzk5RS8yNTVDRTgzNDdG RDYxMUVCOUZEMTIzM0JDNEY5QUUwMi9yRlg3ZGJfalEtU1VoOWhSd0JPY0UyVEs2 YzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JGWDdkYl9qUS1TVWg5aFJ3Qk9jRTJUSzZjNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB Nzk5RS8yNTVDRTgzNDdGRDYxMUVCOUZEMTIzM0JDNEY5QUUwMi9yRlg3ZGJfalEt U1VoOWhSd0JPY0UyVEs2YzQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCF3j7gZK0Z1vH0fYqMJu63S5hxLvj/K9XLCxbVK/mXnNOHz76FZ+og OdNIQ6UA882ociFbxkumqAFtiRgmZ9pN8FMDMSfdMu8JwJuUh6LqGk0aUhUZ4s8v UphuZd1fxUF/HlI+BVaCptGo3AT8sgJYWVAqWK0eLxnaPV6fopU3vUiZUcv0op1v p+YwITjE9mG+3aRkPestyuPqeqrzDEnIIpfcq1aV0rUyzJbkWaYBysBzdar/YmI8 arwWFakQmXvCHoOMjaMSfhHReZ+EXAFfe/GeFMReE7glLN/mGmRrj1UdHuN2stXQ qVEx9/QDeWv9G7Nif7FRUKCsgISHkAWq -----END CERTIFICATE-----Generated at Tue Jun 17 12:02:34 2025 by rpki-client