$ rpki-client -vvf rpki.apnic.net/member_repository/A91B04E3/1483BD365BB411EA88D5673BC4F9AE02/7Fi0N4_L_0yxJB-C87zA6HLks5Y.mft File: 7Fi0N4_L_0yxJB-C87zA6HLks5Y.mft (raw, json) Hash identifier: Fo4LfdJ0VSF6Jno5nWTTuwF6oDXa1lJQRK8xLeVQ/kI= Subject key identifier: 83:39:AF:83:5E:75:59:AA:0B:FB:C7:0E:2D:05:5F:67:2B:8A:3B:C4 Authority key identifier: EC:58:B4:37:8F:CB:FF:4C:B1:24:1F:82:F3:BC:C0:E8:72:E4:B3:96 Certificate issuer: /CN=A91B04E3/serialNumber=EC58B4378FCBFF4CB1241F82F3BCC0E872E4B396 Certificate serial: 0A95 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7Fi0N4_L_0yxJB-C87zA6HLks5Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B04E3/1483BD365BB411EA88D5673BC4F9AE02/7Fi0N4_L_0yxJB-C87zA6HLks5Y.mft Manifest number: 0A8F Signing time: Fri 20 Jun 2025 19:29:49 +0000 Manifest this update: Fri 20 Jun 2025 19:29:48 +0000 Manifest next update: Fri 27 Jun 2025 19:29:48 +0000 Files and hashes: 1: 7Fi0N4_L_0yxJB-C87zA6HLks5Y.crl (hash: Iw6mh5ylRFpxacjKQxWqYBrLPWQPUmxZTmA39QU+M+g=) 2: A7D265605BB411EAB5B9A73BC4F9AE02.roa (hash: wRiU0pz+/rk6H4beDLKQQM79S2Mgy7c+Kq9SVKFoW2s=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B04E3/1483BD365BB411EA88D5673BC4F9AE02/7Fi0N4_L_0yxJB-C87zA6HLks5Y.crl rsync://rpki.apnic.net/member_repository/A91B04E3/1483BD365BB411EA88D5673BC4F9AE02/7Fi0N4_L_0yxJB-C87zA6HLks5Y.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7Fi0N4_L_0yxJB-C87zA6HLks5Y.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 27 Jun 2025 19:29:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2709 (0xa95) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B04E3, serialNumber=EC58B4378FCBFF4CB1241F82F3BCC0E872E4B396 Validity Not Before: Jun 20 19:29:48 2025 GMT Not After : Jun 27 19:29:48 2025 GMT Subject: CN=6855b6ad-546a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:92:e8:f1:0f:26:f1:16:76:35:d8:e0:19:be: 1d:b8:54:52:e6:bf:2b:19:6e:a5:31:ce:85:28:47: 3f:62:4f:e9:b0:1c:c6:25:8e:31:06:e9:76:28:6b: 79:90:c4:4c:44:ba:70:53:0d:d9:a8:b0:40:69:5f: e5:fa:b9:12:ab:9e:6a:04:54:e9:6d:98:60:e4:07: 04:f0:77:4a:09:01:b5:ec:37:4e:e0:de:78:a2:23: 38:52:d8:72:3f:e3:73:97:a3:72:af:5d:af:ef:f2: aa:70:1c:69:5e:69:90:7e:5f:ae:f6:24:e9:62:f3: 28:e1:bd:e4:8c:51:75:b8:27:ee:91:4f:58:38:e3: 0e:b6:38:28:ce:b7:8d:fb:e3:8a:ac:61:4f:a1:34: 5e:2f:7d:4c:01:57:f3:8f:14:d0:77:9d:c3:e4:bf: 6b:17:06:0e:fc:c8:62:e2:c5:85:cb:a7:a6:15:50: ed:f5:e5:c2:f3:d3:6d:70:93:26:c1:14:93:c0:8e: 99:cd:05:24:93:0a:c4:0a:ef:fd:89:59:ff:de:bb: 76:eb:c7:4c:18:fa:40:c5:58:65:33:f1:25:97:99: 3c:bc:b7:c1:e5:73:89:bb:97:0b:21:03:7c:e2:75: f9:c3:63:ce:d6:57:a3:7f:cf:11:de:30:5a:4e:b5: 14:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 83:39:AF:83:5E:75:59:AA:0B:FB:C7:0E:2D:05:5F:67:2B:8A:3B:C4 X509v3 Authority Key Identifier: keyid:EC:58:B4:37:8F:CB:FF:4C:B1:24:1F:82:F3:BC:C0:E8:72:E4:B3:96 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B04E3/1483BD365BB411EA88D5673BC4F9AE02/7Fi0N4_L_0yxJB-C87zA6HLks5Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7Fi0N4_L_0yxJB-C87zA6HLks5Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B04E3/1483BD365BB411EA88D5673BC4F9AE02/7Fi0N4_L_0yxJB-C87zA6HLks5Y.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 53:8b:f6:11:a5:4a:e0:58:7e:35:20:0e:15:f1:b7:bc:b1:cc: 06:71:c6:54:57:84:14:fa:a1:93:34:4e:31:c2:d4:92:d0:51: 19:97:c1:e0:01:fc:ed:60:37:df:4a:01:bd:a6:4a:55:f1:ee: 16:84:4c:06:0c:3e:b2:d4:e2:22:cb:dd:b3:52:69:95:1f:be: b1:71:7f:d8:ac:d3:08:54:3a:74:2a:2d:75:03:52:94:6c:d3: b9:86:68:17:cb:20:45:fa:b6:ae:bf:d4:d7:ff:b4:c9:d8:b2: c2:3e:0d:13:42:f3:61:34:91:da:79:f0:1a:9d:cf:77:88:89: 85:49:28:24:9c:e7:22:4c:9c:82:83:f3:b4:e0:96:be:b0:e1: 46:2d:79:60:5d:61:5b:dc:fc:a0:f2:37:a8:50:7c:a7:60:ce: b4:93:57:64:9a:9c:a8:0a:ad:ed:62:d0:c5:33:d4:19:fe:d9: bd:10:ea:af:94:00:ff:9a:ed:f3:7b:62:2b:fc:00:9a:af:bf: 39:be:1f:c5:ee:56:3f:a9:e2:83:c9:74:7c:25:3b:8f:4a:51: e7:16:fd:7d:db:c6:51:b3:09:f6:b3:1a:26:85:c4:84:81:cd: 7d:c4:1d:56:67:ce:51:39:1d:45:42:4b:c3:34:af:ad:44:a8: e8:a3:6f:21 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCpUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjA0RTMxMTAvBgNVBAUTKEVDNThCNDM3OEZDQkZGNENCMTI0MUY4MkYzQkNDMEU4 NzJFNEIzOTYwHhcNMjUwNjIwMTkyOTQ4WhcNMjUwNjI3MTkyOTQ4WjAYMRYwFAYD VQQDEw02ODU1YjZhZC01NDZhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqZLo8Q8m8RZ2NdjgGb4duFRS5r8rGW6lMc6FKEc/Yk/psBzGJY4xBul2KGt5 kMRMRLpwUw3ZqLBAaV/l+rkSq55qBFTpbZhg5AcE8HdKCQG17DdO4N54oiM4Uthy P+Nzl6Nyr12v7/KqcBxpXmmQfl+u9iTpYvMo4b3kjFF1uCfukU9YOOMOtjgozreN ++OKrGFPoTReL31MAVfzjxTQd53D5L9rFwYO/Mhi4sWFy6emFVDt9eXC89NtcJMm wRSTwI6ZzQUkkwrECu/9iVn/3rt268dMGPpAxVhlM/Ell5k8vLfB5XOJu5cLIQN8 4nX5w2PO1lejf88R3jBaTrUUOwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIM5r4Ne dVmqC/vHDi0FX2crijvEMB8GA1UdIwQYMBaAFOxYtDePy/9MsSQfgvO8wOhy5LOW MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMDRFMy8xNDgzQkQzNjVC QjQxMUVBODhENTY3M0JDNEY5QUUwMi83RmkwTjRfTF8weXhKQi1DODd6QTZITGtz NVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzdGaTBONF9MXzB5eEpCLUM4N3pBNkhMa3M1WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC MDRFMy8xNDgzQkQzNjVCQjQxMUVBODhENTY3M0JDNEY5QUUwMi83RmkwTjRfTF8w eXhKQi1DODd6QTZITGtzNVkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBTi/YRpUrgWH41IA4V8be8scwGccZUV4QU+qGTNE4xwtSS0FEZl8Hg AfztYDffSgG9pkpV8e4WhEwGDD6y1OIiy92zUmmVH76xcX/YrNMIVDp0Ki11A1KU bNO5hmgXyyBF+rauv9TX/7TJ2LLCPg0TQvNhNJHaefAanc93iImFSSgknOciTJyC g/O04Ja+sOFGLXlgXWFb3Pyg8jeoUHynYM60k1dkmpyoCq3tYtDFM9QZ/tm9EOqv lAD/mu3ze2Ir/ACar785vh/F7lY/qeKDyXR8JTuPSlHnFv1928ZRswn2sxomhcSE gc19xB1WZ85ROR1FQkvDNK+tRKjoo28h -----END CERTIFICATE-----Generated at Sat Jun 21 02:12:32 2025 by rpki-client