$ rpki-client -vvf rpki.apnic.net/member_repository/A91A9083/C86CD806D1B011EF8833C933C4F9AE02/aU9WG2PafMV3kxY21HiK0rC0riA.mft File: aU9WG2PafMV3kxY21HiK0rC0riA.mft (raw, json) Hash identifier: lxOCFy6YLB+7jsA6KPPCq2Z/EObO56rcZ+MVv3I0eEc= Subject key identifier: FF:94:23:F1:12:B4:AC:56:38:CE:B4:D1:43:D3:7B:03:F0:53:60:F6 Authority key identifier: 69:4F:56:1B:63:DA:7C:C5:77:93:16:36:D4:78:8A:D2:B0:B4:AE:20 Certificate issuer: /CN=A91A9083/serialNumber=694F561B63DA7CC577931636D4788AD2B0B4AE20 Certificate serial: 58 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aU9WG2PafMV3kxY21HiK0rC0riA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A9083/C86CD806D1B011EF8833C933C4F9AE02/aU9WG2PafMV3kxY21HiK0rC0riA.mft Manifest number: 56 Signing time: Sat 21 Jun 2025 06:16:42 +0000 Manifest this update: Sat 21 Jun 2025 06:16:42 +0000 Manifest next update: Sat 28 Jun 2025 06:16:42 +0000 Files and hashes: 1: aU9WG2PafMV3kxY21HiK0rC0riA.crl (hash: rXlKeQZF7VdTfToAaB2Tm8YwO4TmFj6yS0+wyvfgfnQ=) 2: 8DDA6872D25311EF8EBE2767C4F9AE02.roa (hash: AKFJ0EmXDuIFiZbxj+tbIwUPsfALbR27GRMsJeNf4oY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A9083/C86CD806D1B011EF8833C933C4F9AE02/aU9WG2PafMV3kxY21HiK0rC0riA.crl rsync://rpki.apnic.net/member_repository/A91A9083/C86CD806D1B011EF8833C933C4F9AE02/aU9WG2PafMV3kxY21HiK0rC0riA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aU9WG2PafMV3kxY21HiK0rC0riA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Jun 2025 06:16:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 88 (0x58) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A9083, serialNumber=694F561B63DA7CC577931636D4788AD2B0B4AE20 Validity Not Before: Jun 21 06:16:42 2025 GMT Not After : Jun 28 06:16:42 2025 GMT Subject: CN=68564e4a-c5c3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:ee:01:f4:29:23:a1:fe:0f:b3:35:fb:97:da: e0:00:65:62:29:89:4c:12:df:36:6d:0c:fd:eb:aa: 7b:d1:d9:b8:b8:a0:38:32:b6:b4:2d:33:07:b4:35: 5b:96:9f:43:a5:ef:4e:f3:c4:4e:35:74:19:83:27: 7e:0a:9d:1c:d3:e6:e3:8a:ba:9f:5d:be:31:9c:23: 8e:07:5b:ef:86:51:ba:c4:69:78:e2:5e:6c:30:13: 31:c3:fa:72:ad:c2:6c:a8:41:8c:42:91:ec:45:79: f4:15:28:b4:e5:2c:59:05:c1:3c:3a:f3:58:10:51: 9f:91:aa:ef:e6:8b:ca:74:18:e4:8f:6c:5f:de:00: f8:b4:99:fc:22:78:cb:b4:4a:09:39:1d:ba:cf:d1: 84:85:b3:d5:90:05:00:48:ab:37:85:70:3d:31:64: a5:ab:3a:d2:c3:70:06:3e:3e:85:64:a4:8d:28:3c: b6:bb:88:1d:69:66:9b:50:08:20:48:a2:1d:fd:e3: 60:4a:64:88:b7:39:5f:a4:d1:0f:fc:fd:a7:a4:e4: ff:d9:0c:6a:d0:d3:1d:af:a6:29:b2:2f:a5:4a:e3: e8:9c:5f:8b:e4:9e:62:cd:c9:aa:d3:0b:79:cc:53: 50:2a:69:82:59:f5:b8:be:60:17:2a:b0:db:df:ba: 90:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FF:94:23:F1:12:B4:AC:56:38:CE:B4:D1:43:D3:7B:03:F0:53:60:F6 X509v3 Authority Key Identifier: keyid:69:4F:56:1B:63:DA:7C:C5:77:93:16:36:D4:78:8A:D2:B0:B4:AE:20 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A9083/C86CD806D1B011EF8833C933C4F9AE02/aU9WG2PafMV3kxY21HiK0rC0riA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aU9WG2PafMV3kxY21HiK0rC0riA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A9083/C86CD806D1B011EF8833C933C4F9AE02/aU9WG2PafMV3kxY21HiK0rC0riA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7e:c2:c9:26:3e:18:d1:d3:8b:ff:29:52:6f:39:41:e9:90:a7: 68:cb:2c:89:4c:07:25:c7:67:34:7a:53:cd:4a:ab:5b:ce:a4: 80:82:82:ea:44:a8:4b:36:5c:d9:29:47:fc:d1:95:45:8e:bb: e1:73:c4:d4:cc:75:74:4c:af:4a:94:03:26:02:85:f7:e2:e2: 4f:3c:ca:db:38:ee:50:4a:75:c2:6c:4b:0a:1d:e4:3c:79:00: 12:86:02:2d:29:7d:0a:cf:f6:9b:f5:89:e2:cc:31:84:09:2d: e3:af:4f:c8:98:43:64:52:18:b5:9c:f1:ab:2c:06:8f:8f:97: eb:f8:28:7f:82:7e:76:1b:fe:ca:f6:4c:3c:e5:57:26:00:3c: 44:30:96:57:f9:44:a9:2e:07:84:df:d3:06:a0:d7:10:09:27: 1a:b9:df:9b:5d:81:7a:40:3a:83:6b:49:6c:21:eb:82:6c:72: 33:a9:6f:a7:bc:2b:53:5e:8a:05:27:1e:19:e8:5b:a7:b3:23: 6d:93:5a:dd:f4:ca:d5:8a:b6:00:16:66:e3:59:98:a1:1d:b1: 20:2b:62:75:82:6a:40:e0:59:25:52:c0:26:95:d7:16:8d:23: d3:4b:ed:36:7d:b9:26:87:f8:0f:3c:63:e0:48:26:9d:cd:85: b4:7e:b9:c8 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBWDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFB OTA4MzExMC8GA1UEBRMoNjk0RjU2MUI2M0RBN0NDNTc3OTMxNjM2RDQ3ODhBRDJC MEI0QUUyMDAeFw0yNTA2MjEwNjE2NDJaFw0yNTA2MjgwNjE2NDJaMBgxFjAUBgNV BAMTDTY4NTY0ZTRhLWM1YzMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCX7gH0KSOh/g+zNfuX2uAAZWIpiUwS3zZtDP3rqnvR2bi4oDgytrQtMwe0NVuW n0Ol707zxE41dBmDJ34KnRzT5uOKup9dvjGcI44HW++GUbrEaXjiXmwwEzHD+nKt wmyoQYxCkexFefQVKLTlLFkFwTw681gQUZ+Rqu/mi8p0GOSPbF/eAPi0mfwieMu0 Sgk5HbrP0YSFs9WQBQBIqzeFcD0xZKWrOtLDcAY+PoVkpI0oPLa7iB1pZptQCCBI oh3942BKZIi3OV+k0Q/8/aek5P/ZDGrQ0x2vpimyL6VK4+icX4vknmLNyarTC3nM U1AqaYJZ9bi+YBcqsNvfupD7AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU/5Qj8RK0 rFY4zrTRQ9N7A/BTYPYwHwYDVR0jBBgwFoAUaU9WG2PafMV3kxY21HiK0rC0riAw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUE5MDgzL0M4NkNEODA2RDFC MDExRUY4ODMzQzkzM0M0RjlBRTAyL2FVOVdHMlBhZk1WM2t4WTIxSGlLMHJDMHJp QS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvYVU5V0cyUGFmTVYza3hZMjFIaUswckMwcmlBLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUE5 MDgzL0M4NkNEODA2RDFCMDExRUY4ODMzQzkzM0M0RjlBRTAyL2FVOVdHMlBhZk1W M2t4WTIxSGlLMHJDMHJpQS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAH7CySY+GNHTi/8pUm85QemQp2jLLIlMByXHZzR6U81Kq1vOpICCgupE qEs2XNkpR/zRlUWOu+FzxNTMdXRMr0qUAyYChffi4k88yts47lBKdcJsSwod5Dx5 ABKGAi0pfQrP9pv1ieLMMYQJLeOvT8iYQ2RSGLWc8assBo+Pl+v4KH+CfnYb/sr2 TDzlVyYAPEQwllf5RKkuB4Tf0wag1xAJJxq535tdgXpAOoNrSWwh64JscjOpb6e8 K1NeigUnHhnoW6ezI22TWt30ytWKtgAWZuNZmKEdsSArYnWCakDgWSVSwCaV1xaN I9NL7TZ9uSaH+A88Y+BIJp3NhbR+ucg= -----END CERTIFICATE-----Generated at Sat Jun 21 22:14:23 2025 by rpki-client