$ rpki-client -vvf rpki.apnic.net/member_repository/A91AF317/4FD576808C6F11EBBA819F31C4F9AE02/d5zZIVaek_nSaxOlqn43bPtfBpA.mft File: d5zZIVaek_nSaxOlqn43bPtfBpA.mft (raw, json) Hash identifier: NOQn63DJytEmpcbpnLpaJZrNGclfiW8bywkaXxxKuZM= Subject key identifier: 11:FB:97:CD:46:33:C3:72:8F:C9:06:96:7A:24:6A:AA:D8:6D:A6:45 Authority key identifier: 77:9C:D9:21:56:9E:93:F9:D2:6B:13:A5:AA:7E:37:6C:FB:5F:06:90 Certificate issuer: /CN=A91AF317/serialNumber=779CD921569E93F9D26B13A5AA7E376CFB5F0690 Certificate serial: 065B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/d5zZIVaek_nSaxOlqn43bPtfBpA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AF317/4FD576808C6F11EBBA819F31C4F9AE02/d5zZIVaek_nSaxOlqn43bPtfBpA.mft Manifest number: 0655 Signing time: Wed 18 Jun 2025 22:23:34 +0000 Manifest this update: Wed 18 Jun 2025 22:23:33 +0000 Manifest next update: Wed 25 Jun 2025 22:23:33 +0000 Files and hashes: 1: d5zZIVaek_nSaxOlqn43bPtfBpA.crl (hash: sDIOHSVijZWxFHyPpCvTJIazZUNeDAI7Kv/bmM3k1WY=) 2: 291E55288C7111EBA752313FC4F9AE02.roa (hash: A4h072jPvWuDDgO/u+pRW1SBWKkT2qV8RaMiezxbECY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AF317/4FD576808C6F11EBBA819F31C4F9AE02/d5zZIVaek_nSaxOlqn43bPtfBpA.crl rsync://rpki.apnic.net/member_repository/A91AF317/4FD576808C6F11EBBA819F31C4F9AE02/d5zZIVaek_nSaxOlqn43bPtfBpA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/d5zZIVaek_nSaxOlqn43bPtfBpA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 25 Jun 2025 22:23:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1627 (0x65b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AF317, serialNumber=779CD921569E93F9D26B13A5AA7E376CFB5F0690 Validity Not Before: Jun 18 22:23:33 2025 GMT Not After : Jun 25 22:23:33 2025 GMT Subject: CN=68533c65-ce32 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:fb:cb:25:9c:28:35:42:da:57:27:2b:d3:26: f7:42:ab:d6:71:ee:79:e1:92:0f:8c:3e:8c:2e:d3: 01:b8:02:89:37:a1:b6:e3:5e:92:f9:23:bb:a9:22: ab:63:3c:96:e2:ce:11:1e:f3:79:62:c6:33:18:b9: 04:4b:5d:b5:ce:99:b6:b0:39:5d:bf:19:e3:0a:aa: 9d:0c:5c:84:df:1e:72:06:af:2d:f7:3f:0f:a3:28: 3d:f3:ac:c2:dc:97:51:b2:5f:af:d5:93:f7:b5:cb: d6:0c:ed:07:23:69:c5:85:83:65:1b:c7:b2:72:0b: b6:b4:e4:bc:14:9f:b5:e3:f3:da:d0:fa:07:ce:56: f5:34:3d:bc:6a:65:b4:10:39:7b:55:56:ee:24:8d: cc:fb:11:47:5b:34:e2:ea:6a:cb:c8:37:a1:0b:bc: 2b:b7:1f:a6:ba:88:80:ca:69:cf:a3:46:dc:fa:25: bf:41:df:56:37:bd:db:5e:e5:6a:43:da:89:55:3a: 12:f3:cc:53:7a:4a:81:31:91:13:c3:40:f7:cb:43: 64:66:bf:17:3c:31:c9:d5:ef:1f:9a:be:aa:dc:1d: b0:b4:19:38:4a:c1:5c:4f:75:c3:9e:36:bc:39:88: dc:2a:d6:80:1b:21:01:15:e3:55:3e:af:f3:a5:78: 6a:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 11:FB:97:CD:46:33:C3:72:8F:C9:06:96:7A:24:6A:AA:D8:6D:A6:45 X509v3 Authority Key Identifier: keyid:77:9C:D9:21:56:9E:93:F9:D2:6B:13:A5:AA:7E:37:6C:FB:5F:06:90 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AF317/4FD576808C6F11EBBA819F31C4F9AE02/d5zZIVaek_nSaxOlqn43bPtfBpA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/d5zZIVaek_nSaxOlqn43bPtfBpA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AF317/4FD576808C6F11EBBA819F31C4F9AE02/d5zZIVaek_nSaxOlqn43bPtfBpA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1e:65:63:83:1a:de:f5:3d:d1:05:03:0d:8d:3e:b5:45:fc:86: bd:a8:f9:9e:e8:b3:0f:7c:6b:2d:53:25:03:a6:a3:c3:cf:cb: cb:5f:b7:b4:ae:51:f7:07:ba:ba:45:01:3c:ad:44:78:59:32: 98:fd:78:63:5e:56:2d:e2:aa:ed:bb:b8:b2:7c:1a:8e:3b:ca: c9:28:e5:6c:00:6e:8e:69:b8:6c:d8:4e:1a:75:fd:d9:ea:ad: 6c:c4:c6:ca:93:97:5d:a8:30:9e:6c:cf:b0:8d:8f:dd:40:4c: 9e:f0:fa:c6:3b:30:2a:3f:fe:50:9d:a0:59:8e:0e:70:86:15: e4:c8:80:51:bf:84:d6:aa:15:8f:66:96:1a:8a:5a:d8:e3:0b: 1f:17:06:ed:63:1e:40:52:24:61:89:6b:61:ad:50:0d:52:f7: 8f:5e:f6:0d:b7:89:4a:8e:27:94:dc:55:5b:c6:11:d9:5a:eb: a5:4b:af:25:8b:59:6d:2a:10:13:fb:3c:12:b3:e8:97:c3:ee: 9d:fe:36:f8:65:37:65:d6:9c:c2:d6:83:65:a6:34:39:79:6f: 70:3a:4c:ae:af:68:8d:17:fa:1c:01:6f:3f:e9:0a:d7:6a:d8: 40:3c:ff:f9:12:f7:11:f9:ab:a3:a0:19:50:23:bc:29:43:33: 7d:70:23:f1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBlswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUYzMTcxMTAvBgNVBAUTKDc3OUNEOTIxNTY5RTkzRjlEMjZCMTNBNUFBN0UzNzZD RkI1RjA2OTAwHhcNMjUwNjE4MjIyMzMzWhcNMjUwNjI1MjIyMzMzWjAYMRYwFAYD VQQDEw02ODUzM2M2NS1jZTMyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3vvLJZwoNULaVycr0yb3QqvWce554ZIPjD6MLtMBuAKJN6G2416S+SO7qSKr YzyW4s4RHvN5YsYzGLkES121zpm2sDldvxnjCqqdDFyE3x5yBq8t9z8Poyg986zC 3JdRsl+v1ZP3tcvWDO0HI2nFhYNlG8eycgu2tOS8FJ+14/Pa0PoHzlb1ND28amW0 EDl7VVbuJI3M+xFHWzTi6mrLyDehC7wrtx+muoiAymnPo0bc+iW/Qd9WN73bXuVq Q9qJVToS88xTekqBMZETw0D3y0NkZr8XPDHJ1e8fmr6q3B2wtBk4SsFcT3XDnja8 OYjcKtaAGyEBFeNVPq/zpXhqfwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBH7l81G M8Nyj8kGlnokaqrYbaZFMB8GA1UdIwQYMBaAFHec2SFWnpP50msTpap+N2z7XwaQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBRjMxNy80RkQ1NzY4MDhD NkYxMUVCQkE4MTlGMzFDNEY5QUUwMi9kNXpaSVZhZWtfblNheE9scW40M2JQdGZC cEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2Q1elpJVmFla19uU2F4T2xxbjQzYlB0ZkJwQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB RjMxNy80RkQ1NzY4MDhDNkYxMUVCQkE4MTlGMzFDNEY5QUUwMi9kNXpaSVZhZWtf blNheE9scW40M2JQdGZCcEEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAeZWODGt71PdEFAw2NPrVF/Ia9qPme6LMPfGstUyUDpqPDz8vLX7e0 rlH3B7q6RQE8rUR4WTKY/XhjXlYt4qrtu7iyfBqOO8rJKOVsAG6Oabhs2E4adf3Z 6q1sxMbKk5ddqDCebM+wjY/dQEye8PrGOzAqP/5QnaBZjg5whhXkyIBRv4TWqhWP ZpYailrY4wsfFwbtYx5AUiRhiWthrVANUvePXvYNt4lKjieU3FVbxhHZWuulS68l i1ltKhAT+zwSs+iXw+6d/jb4ZTdl1pzC1oNlpjQ5eW9wOkyur2iNF/ocAW8/6QrX athAPP/5EvcR+aujoBlQI7wpQzN9cCPx -----END CERTIFICATE-----Generated at Thu Jun 19 07:06:48 2025 by rpki-client