$ rpki-client -vvf rpki.apnic.net/member_repository/A91AF9A1/D26015CAD37E11E98A196B67C4F9AE02/p_mvKNJKQySTtLK6m1Vym8CXfMg.mft File: p_mvKNJKQySTtLK6m1Vym8CXfMg.mft (raw, json) Hash identifier: HRMrfkBJ1o753/i4gXEEw2KpK/b3gLi/OTq3I+7sESY= Subject key identifier: 2B:EC:B4:63:91:A2:CB:3F:2D:AA:76:33:C4:AB:6B:07:89:2B:59:32 Authority key identifier: A7:F9:AF:28:D2:4A:43:24:93:B4:B2:BA:9B:55:72:9B:C0:97:7C:C8 Certificate issuer: /CN=A91AF9A1/serialNumber=A7F9AF28D24A432493B4B2BA9B55729BC0977CC8 Certificate serial: 0D59 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/p_mvKNJKQySTtLK6m1Vym8CXfMg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AF9A1/D26015CAD37E11E98A196B67C4F9AE02/p_mvKNJKQySTtLK6m1Vym8CXfMg.mft Manifest number: 0D4E Signing time: Mon 16 Jun 2025 17:57:52 +0000 Manifest this update: Mon 16 Jun 2025 17:57:52 +0000 Manifest next update: Mon 23 Jun 2025 17:57:52 +0000 Files and hashes: 1: p_mvKNJKQySTtLK6m1Vym8CXfMg.crl (hash: fQVS6n3lOVVqSA7gFXtVfVt7ehNBtqZd/tyC7ktpHpw=) 2: 6DDABFB26CD511ED9EC9CF83C4F9AE02.roa (hash: 7fCnTjBep84sk9XgkMrT6eykdpGaMDHQzEZtybjm0AA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AF9A1/D26015CAD37E11E98A196B67C4F9AE02/p_mvKNJKQySTtLK6m1Vym8CXfMg.crl rsync://rpki.apnic.net/member_repository/A91AF9A1/D26015CAD37E11E98A196B67C4F9AE02/p_mvKNJKQySTtLK6m1Vym8CXfMg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/p_mvKNJKQySTtLK6m1Vym8CXfMg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 23 Jun 2025 17:57:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3417 (0xd59) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AF9A1, serialNumber=A7F9AF28D24A432493B4B2BA9B55729BC0977CC8 Validity Not Before: Jun 16 17:57:52 2025 GMT Not After : Jun 23 17:57:52 2025 GMT Subject: CN=68505b20-a6af Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:9c:a0:cc:fd:35:2b:f7:57:16:06:82:7c:2c: cb:6f:44:94:26:94:8c:81:0d:ba:a3:b0:46:e6:a5: 8d:98:1f:c9:7e:ee:bc:62:17:b3:df:34:ba:02:93: 97:c5:d3:35:d6:fc:8a:40:de:ee:3c:45:52:d4:82: 4a:87:ae:fa:85:f3:c6:66:5d:46:92:c6:c9:20:ec: a9:15:b3:8a:ea:ec:dd:7e:e2:85:74:64:98:c4:09: 52:08:14:86:e2:4f:40:b9:f0:5b:73:9d:2c:45:32: b8:28:b0:f6:a3:7c:42:e6:ab:a6:45:15:91:b1:d8: 89:7f:30:1b:0e:85:3e:c5:9a:f3:38:6e:cf:29:b3: 28:61:cf:68:80:15:92:09:a2:d2:15:66:aa:8f:41: a7:00:7a:bd:8c:c8:4e:28:e2:6e:25:55:35:fb:70: 95:d0:e0:bc:e3:d3:4d:a3:37:d0:7c:e4:40:b6:3a: 2e:7d:ef:e7:7e:77:66:ed:09:ec:eb:2b:0b:5d:97: 75:2f:7d:d7:a2:e7:6e:bb:eb:df:3f:67:82:d4:6d: 68:c2:39:d5:84:97:b9:6a:a3:da:1d:60:bc:10:35: 1f:34:40:9f:51:1d:93:de:88:e4:04:7c:6d:22:40: 50:32:ed:f0:b1:fd:08:13:31:e5:32:68:b8:95:b4: 1d:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2B:EC:B4:63:91:A2:CB:3F:2D:AA:76:33:C4:AB:6B:07:89:2B:59:32 X509v3 Authority Key Identifier: keyid:A7:F9:AF:28:D2:4A:43:24:93:B4:B2:BA:9B:55:72:9B:C0:97:7C:C8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AF9A1/D26015CAD37E11E98A196B67C4F9AE02/p_mvKNJKQySTtLK6m1Vym8CXfMg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/p_mvKNJKQySTtLK6m1Vym8CXfMg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AF9A1/D26015CAD37E11E98A196B67C4F9AE02/p_mvKNJKQySTtLK6m1Vym8CXfMg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 10:3b:9a:86:02:dc:15:e1:60:5f:e6:7f:2d:4f:4a:e1:a6:3e: ff:b5:b3:df:49:6f:bf:a1:47:dc:90:e9:d0:e0:73:64:59:6e: 33:70:f7:18:69:ae:f0:92:8e:5c:70:aa:e0:cc:49:ac:46:d5: 9b:6c:34:38:c4:22:7f:c5:bd:e4:f7:3a:39:e2:83:36:e2:81: bd:04:8e:49:9e:f9:15:41:6d:c1:9c:41:b7:17:e9:a5:72:12: 39:78:b5:22:39:77:f8:3b:08:8f:dd:6e:b2:98:25:72:6a:88: 7b:d1:d3:23:c6:79:e3:18:cc:9a:8a:ee:de:5e:24:7e:3a:a6: 91:36:70:48:51:b3:a3:5d:4e:50:4c:a6:9e:d3:cd:44:0a:00: b6:04:7e:34:41:3f:33:d3:08:f2:d9:14:55:bc:ae:13:b4:a0: 04:21:47:b8:23:32:d5:9f:db:4c:bf:c3:1e:fb:2b:f8:8a:bb: 95:10:34:31:82:ee:ed:44:af:f3:cc:95:f3:de:c0:9e:96:cf: 92:56:d8:91:13:6e:ad:32:21:4e:6e:89:51:3f:b9:41:d6:8f: e2:3b:e3:b8:d4:9d:b2:15:dc:c6:00:89:9e:c3:3b:ab:4d:30: 81:70:46:af:fc:12:96:24:56:e2:74:ad:98:9e:8c:a0:8e:af: cf:ad:05:29 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDVkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUY5QTExMTAvBgNVBAUTKEE3RjlBRjI4RDI0QTQzMjQ5M0I0QjJCQTlCNTU3MjlC QzA5NzdDQzgwHhcNMjUwNjE2MTc1NzUyWhcNMjUwNjIzMTc1NzUyWjAYMRYwFAYD VQQDEw02ODUwNWIyMC1hNmFmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7JygzP01K/dXFgaCfCzLb0SUJpSMgQ26o7BG5qWNmB/Jfu68Yhez3zS6ApOX xdM11vyKQN7uPEVS1IJKh676hfPGZl1GksbJIOypFbOK6uzdfuKFdGSYxAlSCBSG 4k9AufBbc50sRTK4KLD2o3xC5qumRRWRsdiJfzAbDoU+xZrzOG7PKbMoYc9ogBWS CaLSFWaqj0GnAHq9jMhOKOJuJVU1+3CV0OC849NNozfQfORAtjoufe/nfndm7Qns 6ysLXZd1L33Xouduu+vfP2eC1G1owjnVhJe5aqPaHWC8EDUfNECfUR2T3ojkBHxt IkBQMu3wsf0IEzHlMmi4lbQdWwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCvstGOR oss/Lap2M8SraweJK1kyMB8GA1UdIwQYMBaAFKf5ryjSSkMkk7SyuptVcpvAl3zI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBRjlBMS9EMjYwMTVDQUQz N0UxMUU5OEExOTZCNjdDNEY5QUUwMi9wX212S05KS1F5U1R0TEs2bTFWeW04Q1hm TWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3BfbXZLTkpLUXlTVHRMSzZtMVZ5bThDWGZNZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB RjlBMS9EMjYwMTVDQUQzN0UxMUU5OEExOTZCNjdDNEY5QUUwMi9wX212S05KS1F5 U1R0TEs2bTFWeW04Q1hmTWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAQO5qGAtwV4WBf5n8tT0rhpj7/tbPfSW+/oUfckOnQ4HNkWW4zcPcY aa7wko5ccKrgzEmsRtWbbDQ4xCJ/xb3k9zo54oM24oG9BI5JnvkVQW3BnEG3F+ml chI5eLUiOXf4OwiP3W6ymCVyaoh70dMjxnnjGMyaiu7eXiR+OqaRNnBIUbOjXU5Q TKae081ECgC2BH40QT8z0wjy2RRVvK4TtKAEIUe4IzLVn9tMv8Me+yv4iruVEDQx gu7tRK/zzJXz3sCels+SVtiRE26tMiFObolRP7lB1o/iO+O41J2yFdzGAImewzur TTCBcEav/BKWJFbidK2Ynoygjq/PrQUp -----END CERTIFICATE-----Generated at Tue Jun 17 21:56:45 2025 by rpki-client