$ rpki-client -vvf rpki.apnic.net/member_repository/A91AEF45/5D8B9B829F2A11ECA7CFAD0AC4F9AE02/rKpuJqXy3KoUzfyezI6c9oKaQCE.mft File: rKpuJqXy3KoUzfyezI6c9oKaQCE.mft (raw, json) Hash identifier: ULJMGIRjzOxSQr3+CoFoH9tQ1pxVYjW2KJs+k5nNInM= Subject key identifier: A3:ED:8D:AA:35:D8:96:23:16:60:B6:EE:6C:85:E0:8B:A5:28:0F:B9 Authority key identifier: AC:AA:6E:26:A5:F2:DC:AA:14:CD:FC:9E:CC:8E:9C:F6:82:9A:40:21 Certificate issuer: /CN=A91AEF45/serialNumber=ACAA6E26A5F2DCAA14CDFC9ECC8E9CF6829A4021 Certificate serial: 039D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rKpuJqXy3KoUzfyezI6c9oKaQCE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AEF45/5D8B9B829F2A11ECA7CFAD0AC4F9AE02/rKpuJqXy3KoUzfyezI6c9oKaQCE.mft Manifest number: 0399 Signing time: Thu 19 Jun 2025 00:37:44 +0000 Manifest this update: Thu 19 Jun 2025 00:37:43 +0000 Manifest next update: Thu 26 Jun 2025 00:37:43 +0000 Files and hashes: 1: rKpuJqXy3KoUzfyezI6c9oKaQCE.crl (hash: 7tgT8bhvsNO7nMWR7UW3hO5smHDE7evG8MkUjpLGqk8=) 2: 1AE323249F2D11EC897FD30CC4F9AE02.roa (hash: KeGUlxiblyObJWylXKCmQlAzDIkOWbFTSQRBaia1TDI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AEF45/5D8B9B829F2A11ECA7CFAD0AC4F9AE02/rKpuJqXy3KoUzfyezI6c9oKaQCE.crl rsync://rpki.apnic.net/member_repository/A91AEF45/5D8B9B829F2A11ECA7CFAD0AC4F9AE02/rKpuJqXy3KoUzfyezI6c9oKaQCE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rKpuJqXy3KoUzfyezI6c9oKaQCE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 26 Jun 2025 00:37:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 925 (0x39d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AEF45, serialNumber=ACAA6E26A5F2DCAA14CDFC9ECC8E9CF6829A4021 Validity Not Before: Jun 19 00:37:43 2025 GMT Not After : Jun 26 00:37:43 2025 GMT Subject: CN=68535bd7-8e89 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:a9:9b:ca:90:11:a1:77:a3:c4:e7:88:95:a7: b6:63:80:0f:28:d2:af:74:df:9b:cd:74:19:d3:3f: f0:bc:3e:f3:71:c6:94:ef:92:f4:fb:d4:a8:29:27: 0f:ac:02:52:d5:7d:74:7c:a8:8d:1e:92:cc:25:fd: 2b:44:65:cd:c7:51:3e:32:c1:49:7d:35:63:ba:6b: 0b:43:8a:71:df:d4:90:23:22:7f:79:50:8f:96:2c: 24:e0:1b:12:83:10:b7:b6:3e:ca:78:1f:b5:c9:a2: 8b:74:62:38:02:f6:38:94:3a:43:05:c0:aa:5b:9b: 08:55:d7:ab:1f:8d:75:dd:24:98:94:fa:d8:e0:d9: 65:f3:59:90:26:e8:74:0b:b7:4b:38:1c:f0:d4:53: 42:bc:3c:80:41:1b:db:08:14:35:f4:c6:8a:06:57: 39:6c:fd:22:01:c0:0b:ea:72:8e:21:7f:a0:50:29: 4b:89:90:07:be:f4:85:3f:a8:08:82:71:f5:9c:2c: 31:bc:56:b9:a0:f3:2a:b8:43:3e:7e:cf:73:7f:23: 63:91:a9:2c:52:8d:ef:cd:e5:31:87:62:b9:d4:be: 47:d4:7a:5f:8e:3c:b1:e5:e8:c5:d5:10:79:b0:32: 78:85:b7:a8:18:75:3f:c2:f7:37:02:2d:24:28:a9: 4c:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A3:ED:8D:AA:35:D8:96:23:16:60:B6:EE:6C:85:E0:8B:A5:28:0F:B9 X509v3 Authority Key Identifier: keyid:AC:AA:6E:26:A5:F2:DC:AA:14:CD:FC:9E:CC:8E:9C:F6:82:9A:40:21 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AEF45/5D8B9B829F2A11ECA7CFAD0AC4F9AE02/rKpuJqXy3KoUzfyezI6c9oKaQCE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rKpuJqXy3KoUzfyezI6c9oKaQCE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AEF45/5D8B9B829F2A11ECA7CFAD0AC4F9AE02/rKpuJqXy3KoUzfyezI6c9oKaQCE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 79:10:75:9d:4b:ac:cc:74:aa:21:7f:9f:f1:88:a2:be:b9:25: 34:74:16:5b:23:55:d1:42:10:20:f9:9a:53:e8:bc:63:60:3d: bf:1e:45:22:6f:7b:4f:c5:e4:ab:8a:ee:aa:7f:4a:61:db:f5: 65:54:fb:fa:b5:f0:ef:f6:79:9b:c0:91:a8:28:ea:6d:58:f8: 72:f8:ef:e9:94:84:af:2b:8b:82:b0:7f:cd:0b:dc:55:3f:58: 56:e4:67:6f:41:39:a9:81:79:70:4c:bd:d8:0a:85:aa:c5:17: 94:c1:ad:30:ee:b3:d0:61:d5:61:49:a2:e3:fa:a9:d8:90:f2: 44:7e:5f:b6:6b:41:b9:f2:11:94:1e:ee:c4:3d:c2:90:ba:87: 7b:2f:f4:83:d6:cf:a6:29:57:16:b9:a5:e4:2b:81:40:56:67: 2a:9f:7f:70:eb:d3:5d:98:ff:7f:38:b6:00:e8:60:74:9f:c2: 67:5c:c5:e6:1c:ab:4f:8d:7a:c4:8c:38:3a:8f:fd:1e:c5:e1: 4c:f1:40:4b:24:ce:be:a2:cd:c3:c7:64:8d:6b:76:0f:50:77: 34:44:ee:94:b3:23:a6:2c:bd:2b:06:aa:a3:43:3e:0c:01:45: 35:d2:0b:23:d3:ae:af:f1:ff:e3:28:ec:89:7f:17:ef:05:f9: 03:81:fc:d3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA50wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUVGNDUxMTAvBgNVBAUTKEFDQUE2RTI2QTVGMkRDQUExNENERkM5RUNDOEU5Q0Y2 ODI5QTQwMjEwHhcNMjUwNjE5MDAzNzQzWhcNMjUwNjI2MDAzNzQzWjAYMRYwFAYD VQQDEw02ODUzNWJkNy04ZTg5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApqmbypARoXejxOeIlae2Y4APKNKvdN+bzXQZ0z/wvD7zccaU75L0+9SoKScP rAJS1X10fKiNHpLMJf0rRGXNx1E+MsFJfTVjumsLQ4px39SQIyJ/eVCPliwk4BsS gxC3tj7KeB+1yaKLdGI4AvY4lDpDBcCqW5sIVderH4113SSYlPrY4Nll81mQJuh0 C7dLOBzw1FNCvDyAQRvbCBQ19MaKBlc5bP0iAcAL6nKOIX+gUClLiZAHvvSFP6gI gnH1nCwxvFa5oPMquEM+fs9zfyNjkaksUo3vzeUxh2K51L5H1Hpfjjyx5ejF1RB5 sDJ4hbeoGHU/wvc3Ai0kKKlMOQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKPtjao1 2JYjFmC27myF4IulKA+5MB8GA1UdIwQYMBaAFKyqbial8tyqFM38nsyOnPaCmkAh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBRUY0NS81RDhCOUI4MjlG MkExMUVDQTdDRkFEMEFDNEY5QUUwMi9yS3B1SnFYeTNLb1V6Znllekk2YzlvS2FR Q0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JLcHVKcVh5M0tvVXpmeWV6STZjOW9LYVFDRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB RUY0NS81RDhCOUI4MjlGMkExMUVDQTdDRkFEMEFDNEY5QUUwMi9yS3B1SnFYeTNL b1V6Znllekk2YzlvS2FRQ0UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB5EHWdS6zMdKohf5/xiKK+uSU0dBZbI1XRQhAg+ZpT6LxjYD2/HkUi b3tPxeSriu6qf0ph2/VlVPv6tfDv9nmbwJGoKOptWPhy+O/plISvK4uCsH/NC9xV P1hW5GdvQTmpgXlwTL3YCoWqxReUwa0w7rPQYdVhSaLj+qnYkPJEfl+2a0G58hGU Hu7EPcKQuod7L/SD1s+mKVcWuaXkK4FAVmcqn39w69NdmP9/OLYA6GB0n8JnXMXm HKtPjXrEjDg6j/0exeFM8UBLJM6+os3Dx2SNa3YPUHc0RO6UsyOmLL0rBqqjQz4M AUU10gsj066v8f/jKOyJfxfvBfkDgfzT -----END CERTIFICATE-----Generated at Thu Jun 19 18:57:17 2025 by rpki-client