$ rpki-client -vvf rpki.apnic.net/member_repository/A91AE567/E67994DE8FF411EC90472F7DC4F9AE02/-0q1qaTcN7vWXmHkKkJWz5UbjHM.mft File: -0q1qaTcN7vWXmHkKkJWz5UbjHM.mft (raw, json) Hash identifier: KmJI8kVwtNwRKR5gBntngkiaJ7KH9bBZy4ILRKvH/ao= Subject key identifier: 45:7C:F4:23:C5:E4:C0:C5:83:A2:72:C9:4A:37:18:5D:6F:1D:B9:A8 Authority key identifier: FB:4A:B5:A9:A4:DC:37:BB:D6:5E:61:E4:2A:42:56:CF:95:1B:8C:73 Certificate issuer: /CN=A91AE567/serialNumber=FB4AB5A9A4DC37BBD65E61E42A4256CF951B8C73 Certificate serial: 03D2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-0q1qaTcN7vWXmHkKkJWz5UbjHM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AE567/E67994DE8FF411EC90472F7DC4F9AE02/-0q1qaTcN7vWXmHkKkJWz5UbjHM.mft Manifest number: 03C8 Signing time: Thu 19 Jun 2025 00:29:51 +0000 Manifest this update: Thu 19 Jun 2025 00:29:50 +0000 Manifest next update: Thu 26 Jun 2025 00:29:50 +0000 Files and hashes: 1: -0q1qaTcN7vWXmHkKkJWz5UbjHM.crl (hash: fe9vw/QhJRwS4WpCRPuPUohcDUB0piulFJ6zpU5owgk=) 2: B1B6929CCFD611ED8BEF6866C4F9AE02.roa (hash: 9DfUOxvFR13SpwnP9dE6JJ+qwtWuEZ4XB8tC3ndW1gI=) 3: C657777835BD11EEBBA15F71C4F9AE02.roa (hash: dBKzmRV5kLqxEgnT/9vEMvol4LmNVdPd79i3sVZVmJg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AE567/E67994DE8FF411EC90472F7DC4F9AE02/-0q1qaTcN7vWXmHkKkJWz5UbjHM.crl rsync://rpki.apnic.net/member_repository/A91AE567/E67994DE8FF411EC90472F7DC4F9AE02/-0q1qaTcN7vWXmHkKkJWz5UbjHM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-0q1qaTcN7vWXmHkKkJWz5UbjHM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 26 Jun 2025 00:29:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 978 (0x3d2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AE567, serialNumber=FB4AB5A9A4DC37BBD65E61E42A4256CF951B8C73 Validity Not Before: Jun 19 00:29:50 2025 GMT Not After : Jun 26 00:29:50 2025 GMT Subject: CN=685359ff-f05d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:42:27:e4:35:1f:d4:51:2d:1f:d1:ec:48:40: 81:58:ab:19:30:14:ca:dd:6d:7b:bc:0c:c5:cf:c2: d9:5b:27:12:16:7c:85:9f:38:be:8c:86:4d:58:e2: f6:36:67:0b:f2:5b:39:c2:14:62:65:5a:0e:48:77: f5:43:8b:7d:9a:e4:29:dc:3f:1a:96:74:2d:4f:b8: a1:e9:e5:16:6d:6c:d8:37:48:34:aa:ae:2e:2e:d6: 00:2d:9f:09:4d:9a:28:4d:e5:2f:c2:fd:c5:2f:ff: ab:f5:82:5a:24:ae:e7:7e:f0:85:af:8e:03:8f:67: 12:17:bf:7d:5e:4f:9c:2c:1c:56:cc:29:3b:e1:88: 98:24:61:e9:d2:6e:6e:8d:04:fd:4f:25:86:57:4b: 99:75:d3:eb:78:d2:e5:de:87:e8:f5:2e:a6:4a:ba: 0b:00:24:78:d2:dd:14:8b:3a:bf:5b:d9:06:f7:ba: ed:12:59:0f:8b:df:c3:af:54:f0:92:b0:5c:5c:88: 85:07:0a:fd:a2:e8:fa:47:c0:51:7b:6c:6b:2d:fc: 18:a1:d3:dd:b2:2d:11:36:4b:27:79:eb:98:e1:9e: 18:97:da:d6:1e:ad:73:cd:3c:f0:a7:32:6c:3f:ca: 0d:98:42:64:5f:b3:57:ed:ee:b3:15:f0:a5:d2:52: 64:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 45:7C:F4:23:C5:E4:C0:C5:83:A2:72:C9:4A:37:18:5D:6F:1D:B9:A8 X509v3 Authority Key Identifier: keyid:FB:4A:B5:A9:A4:DC:37:BB:D6:5E:61:E4:2A:42:56:CF:95:1B:8C:73 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AE567/E67994DE8FF411EC90472F7DC4F9AE02/-0q1qaTcN7vWXmHkKkJWz5UbjHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-0q1qaTcN7vWXmHkKkJWz5UbjHM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AE567/E67994DE8FF411EC90472F7DC4F9AE02/-0q1qaTcN7vWXmHkKkJWz5UbjHM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a8:c4:54:aa:35:a4:06:31:e1:b4:70:e5:a1:a3:4b:76:2e:0a: 2a:d3:2c:88:cd:4a:b9:13:0a:0a:d1:a0:8b:1b:f1:43:60:68: 58:b1:2e:7d:b5:6f:5c:1c:2e:f8:f0:d8:8f:50:58:fd:a0:dc: bc:ec:ba:55:c1:f6:c6:64:21:46:56:88:41:30:46:0e:8a:18: 2e:ee:f7:bd:0e:23:78:47:2e:30:f8:94:10:c1:42:bc:60:27: 64:b2:86:52:8e:96:a6:3d:3c:4f:d4:21:f7:ec:ed:0b:5e:d9: 6d:9f:60:77:8c:13:86:ae:ac:bb:1b:7a:eb:8a:e5:91:7f:23: 9a:31:2c:b3:3e:e2:4e:22:2a:16:5f:19:a0:e6:87:8b:74:e5: 68:7d:62:20:a3:73:99:05:ab:33:b5:19:44:36:63:4a:9f:eb: d4:26:32:d2:9c:7f:32:ab:6f:70:be:19:69:29:2c:39:12:92: e1:e4:6c:c6:e6:b9:2e:87:bf:12:a8:d3:89:ea:8f:9d:10:4a: 44:ab:db:f0:cb:01:b7:8d:eb:6a:9b:47:89:bc:7e:ea:dc:23: 49:ec:7d:87:8f:23:ac:93:1e:de:9e:57:10:1a:0d:8d:54:b8: ac:92:68:8f:0a:fc:59:b6:8e:94:bb:46:c9:ac:e0:42:38:89: 53:d7:6e:8c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA9IwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUU1NjcxMTAvBgNVBAUTKEZCNEFCNUE5QTREQzM3QkJENjVFNjFFNDJBNDI1NkNG OTUxQjhDNzMwHhcNMjUwNjE5MDAyOTUwWhcNMjUwNjI2MDAyOTUwWjAYMRYwFAYD VQQDEw02ODUzNTlmZi1mMDVkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwkIn5DUf1FEtH9HsSECBWKsZMBTK3W17vAzFz8LZWycSFnyFnzi+jIZNWOL2 NmcL8ls5whRiZVoOSHf1Q4t9muQp3D8alnQtT7ih6eUWbWzYN0g0qq4uLtYALZ8J TZooTeUvwv3FL/+r9YJaJK7nfvCFr44Dj2cSF799Xk+cLBxWzCk74YiYJGHp0m5u jQT9TyWGV0uZddPreNLl3ofo9S6mSroLACR40t0Uizq/W9kG97rtElkPi9/Dr1Tw krBcXIiFBwr9ouj6R8BRe2xrLfwYodPdsi0RNksneeuY4Z4Yl9rWHq1zzTzwpzJs P8oNmEJkX7NX7e6zFfCl0lJk7wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEV89CPF 5MDFg6JyyUo3GF1vHbmoMB8GA1UdIwQYMBaAFPtKtamk3De71l5h5CpCVs+VG4xz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBRTU2Ny9FNjc5OTRERThG RjQxMUVDOTA0NzJGN0RDNEY5QUUwMi8tMHExcWFUY043dldYbUhrS2tKV3o1VWJq SE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy0wcTFxYVRjTjd2V1htSGtLa0pXejVVYmpITS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB RTU2Ny9FNjc5OTRERThGRjQxMUVDOTA0NzJGN0RDNEY5QUUwMi8tMHExcWFUY043 dldYbUhrS2tKV3o1VWJqSE0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCoxFSqNaQGMeG0cOWho0t2Lgoq0yyIzUq5EwoK0aCLG/FDYGhYsS59 tW9cHC748NiPUFj9oNy87LpVwfbGZCFGVohBMEYOihgu7ve9DiN4Ry4w+JQQwUK8 YCdksoZSjpamPTxP1CH37O0LXtltn2B3jBOGrqy7G3rriuWRfyOaMSyzPuJOIioW Xxmg5oeLdOVofWIgo3OZBasztRlENmNKn+vUJjLSnH8yq29wvhlpKSw5EpLh5GzG 5rkuh78SqNOJ6o+dEEpEq9vwywG3jetqm0eJvH7q3CNJ7H2HjyOskx7enlcQGg2N VLiskmiPCvxZto6Uu0bJrOBCOIlT126M -----END CERTIFICATE-----Generated at Thu Jun 19 08:43:04 2025 by rpki-client