$ rpki-client -vvf rpki.apnic.net/member_repository/A91B036A/BBC2F776D1F111EE86051A61C4F9AE02/DxfzfbyUhNluGgq8eKT5ys1e2oo.mft File: DxfzfbyUhNluGgq8eKT5ys1e2oo.mft (raw, json) Hash identifier: wcm5fPZ11FJ56fDQDhrZCe/V0al5wwzGaCKBucF61jM= Subject key identifier: 42:7F:5A:9F:C1:EA:01:A6:5A:4B:8B:6A:A1:31:12:CA:6F:62:93:B6 Authority key identifier: 0F:17:F3:7D:BC:94:84:D9:6E:1A:0A:BC:78:A4:F9:CA:CD:5E:DA:8A Certificate issuer: /CN=A91B036A/serialNumber=0F17F37DBC9484D96E1A0ABC78A4F9CACD5EDA8A Certificate serial: 0141 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DxfzfbyUhNluGgq8eKT5ys1e2oo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B036A/BBC2F776D1F111EE86051A61C4F9AE02/DxfzfbyUhNluGgq8eKT5ys1e2oo.mft Manifest number: 0120 Signing time: Thu 19 Jun 2025 04:36:33 +0000 Manifest this update: Thu 19 Jun 2025 04:36:32 +0000 Manifest next update: Thu 26 Jun 2025 04:36:32 +0000 Files and hashes: 1: DxfzfbyUhNluGgq8eKT5ys1e2oo.crl (hash: HRufBlES9l6P3aZcKryiR/X22XBT1h3WLyEBG+w3Brg=) 2: 860FE244E7F211EEA82C4340C4F9AE02.roa (hash: MOt4/rtczZ2XuWNA4OgwbPaAH6x2sV9WPLPyaiDEfR8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B036A/BBC2F776D1F111EE86051A61C4F9AE02/DxfzfbyUhNluGgq8eKT5ys1e2oo.crl rsync://rpki.apnic.net/member_repository/A91B036A/BBC2F776D1F111EE86051A61C4F9AE02/DxfzfbyUhNluGgq8eKT5ys1e2oo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DxfzfbyUhNluGgq8eKT5ys1e2oo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 26 Jun 2025 04:36:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 321 (0x141) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B036A, serialNumber=0F17F37DBC9484D96E1A0ABC78A4F9CACD5EDA8A Validity Not Before: Jun 19 04:36:32 2025 GMT Not After : Jun 26 04:36:32 2025 GMT Subject: CN=685393d0-9874 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:7a:e4:92:9f:7b:f6:29:c5:05:66:0a:fc:eb: f5:50:e4:51:3c:82:13:74:eb:ec:99:a9:c1:ca:d0: d3:14:59:28:54:45:81:65:2b:c8:6b:43:bc:0b:c0: d8:1e:64:ed:5b:54:b8:0d:68:04:d4:f8:39:f8:c8: 83:0c:9b:11:6d:a5:4d:03:9e:f7:99:b2:ea:68:cb: 0e:84:f8:97:99:51:8a:74:da:2e:85:e3:ca:2a:d7: 82:b6:de:f2:56:26:7e:bd:18:3d:b3:44:75:85:e5: fd:e5:18:f9:e5:13:6f:58:12:28:5c:ec:2d:cc:97: a1:2a:81:e3:39:97:78:6c:33:88:09:07:fc:56:f4: fe:b1:d4:28:77:10:89:b7:63:bc:f2:b7:c9:ba:79: 04:70:fa:18:af:2d:90:ce:d3:6a:4a:2c:cf:dd:52: be:b0:1b:46:67:25:31:e1:38:08:90:d5:4d:b8:b9: dc:2d:b4:d8:79:38:36:7e:1c:72:23:7c:c9:2e:77: b7:6e:c4:14:18:11:d7:f2:73:52:7d:b2:47:2b:8c: 46:c3:a1:6f:2d:b2:d3:78:79:df:4c:2f:e0:83:1c: f7:38:62:cd:3d:42:4a:b6:a2:28:21:8b:ba:2a:3a: d6:e8:07:b9:c9:df:1a:32:27:96:41:09:39:3c:75: 54:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 42:7F:5A:9F:C1:EA:01:A6:5A:4B:8B:6A:A1:31:12:CA:6F:62:93:B6 X509v3 Authority Key Identifier: keyid:0F:17:F3:7D:BC:94:84:D9:6E:1A:0A:BC:78:A4:F9:CA:CD:5E:DA:8A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B036A/BBC2F776D1F111EE86051A61C4F9AE02/DxfzfbyUhNluGgq8eKT5ys1e2oo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DxfzfbyUhNluGgq8eKT5ys1e2oo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B036A/BBC2F776D1F111EE86051A61C4F9AE02/DxfzfbyUhNluGgq8eKT5ys1e2oo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6b:c2:96:55:dc:9a:03:af:5e:b8:d4:3c:55:cb:80:aa:a7:ef: ca:83:c6:6d:75:37:5f:84:d0:9c:ba:75:9d:0f:fe:2f:fd:ad: e5:b8:f8:64:98:a0:b7:a2:ff:f1:a7:1c:ca:92:61:4b:82:f6: ca:94:b8:cb:9b:f2:bd:c0:6f:6f:2e:7c:72:9f:0c:f1:bb:27: f3:5b:b8:d9:97:6c:bf:aa:66:4a:ff:cb:44:e7:45:cd:b0:27: be:70:01:fa:d7:42:b9:a2:81:8c:6b:d2:50:7b:47:2b:9c:20: 43:a8:be:fa:bd:c5:17:c5:f4:8e:e9:44:29:52:71:ba:07:f5: 67:50:18:15:f5:1c:fc:5b:e2:c2:1d:de:21:3a:68:69:69:b3: 2b:d0:67:b7:de:04:64:7d:88:f8:2a:38:52:f1:38:9b:7c:f2: 7f:06:a5:ce:56:67:3b:bd:e6:f2:e6:74:a0:1e:e8:ca:c7:7a: f0:97:12:a5:e8:d2:b9:a5:79:c4:4e:09:e3:25:4a:61:a6:04: 82:ab:d7:9b:02:53:1d:de:e2:88:bb:dd:15:dd:cd:b5:8b:de: 09:6e:52:07:17:12:f5:f9:31:20:b3:52:28:08:ae:64:c6:4b: f1:81:d0:29:ee:d9:8e:91:bf:34:e2:a5:f2:90:e0:07:0b:9c: e7:6f:0b:5c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAUEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjAzNkExMTAvBgNVBAUTKDBGMTdGMzdEQkM5NDg0RDk2RTFBMEFCQzc4QTRGOUNB Q0Q1RURBOEEwHhcNMjUwNjE5MDQzNjMyWhcNMjUwNjI2MDQzNjMyWjAYMRYwFAYD VQQDEw02ODUzOTNkMC05ODc0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzHrkkp979inFBWYK/Ov1UORRPIITdOvsmanBytDTFFkoVEWBZSvIa0O8C8DY HmTtW1S4DWgE1Pg5+MiDDJsRbaVNA573mbLqaMsOhPiXmVGKdNouhePKKteCtt7y ViZ+vRg9s0R1heX95Rj55RNvWBIoXOwtzJehKoHjOZd4bDOICQf8VvT+sdQodxCJ t2O88rfJunkEcPoYry2QztNqSizP3VK+sBtGZyUx4TgIkNVNuLncLbTYeTg2fhxy I3zJLne3bsQUGBHX8nNSfbJHK4xGw6FvLbLTeHnfTC/ggxz3OGLNPUJKtqIoIYu6 KjrW6Ae5yd8aMieWQQk5PHVUEwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEJ/Wp/B 6gGmWkuLaqExEspvYpO2MB8GA1UdIwQYMBaAFA8X8328lITZbhoKvHik+crNXtqK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMDM2QS9CQkMyRjc3NkQx RjExMUVFODYwNTFBNjFDNEY5QUUwMi9EeGZ6ZmJ5VWhObHVHZ3E4ZUtUNXlzMWUy b28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0R4ZnpmYnlVaE5sdUdncThlS1Q1eXMxZTJvby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC MDM2QS9CQkMyRjc3NkQxRjExMUVFODYwNTFBNjFDNEY5QUUwMi9EeGZ6ZmJ5VWhO bHVHZ3E4ZUtUNXlzMWUyb28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBrwpZV3JoDr1641DxVy4Cqp+/Kg8ZtdTdfhNCcunWdD/4v/a3luPhk mKC3ov/xpxzKkmFLgvbKlLjLm/K9wG9vLnxynwzxuyfzW7jZl2y/qmZK/8tE50XN sCe+cAH610K5ooGMa9JQe0crnCBDqL76vcUXxfSO6UQpUnG6B/VnUBgV9Rz8W+LC Hd4hOmhpabMr0Ge33gRkfYj4KjhS8TibfPJ/BqXOVmc7veby5nSgHujKx3rwlxKl 6NK5pXnETgnjJUphpgSCq9ebAlMd3uKIu90V3c21i94JblIHFxL1+TEgs1IoCK5k xkvxgdAp7tmOkb804qXykOAHC5znbwtc -----END CERTIFICATE-----Generated at Thu Jun 19 14:25:08 2025 by rpki-client