$ rpki-client -vvf rpki.apnic.net/member_repository/A91B19F8/CAE6B4CEBCA111EDA370780DC4F9AE02/dku4R4v_jMi_8U6PtqrcKO1eSGQ.mft File: dku4R4v_jMi_8U6PtqrcKO1eSGQ.mft (raw, json) Hash identifier: vSAFr8A8Q+/IfqJjzU2AiHINu6uo9C2J+l02JzsitD0= Subject key identifier: 68:88:D5:D1:CF:DA:DF:4A:4C:01:7F:F7:ED:42:A8:E9:E9:1B:74:44 Authority key identifier: 76:4B:B8:47:8B:FF:8C:C8:BF:F1:4E:8F:B6:AA:DC:28:ED:5E:48:64 Certificate issuer: /CN=A91B19F8/serialNumber=764BB8478BFF8CC8BFF14E8FB6AADC28ED5E4864 Certificate serial: 01AD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dku4R4v_jMi_8U6PtqrcKO1eSGQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B19F8/CAE6B4CEBCA111EDA370780DC4F9AE02/dku4R4v_jMi_8U6PtqrcKO1eSGQ.mft Manifest number: 01AA Signing time: Tue 17 Jun 2025 02:20:02 +0000 Manifest this update: Tue 17 Jun 2025 02:20:01 +0000 Manifest next update: Tue 24 Jun 2025 02:20:01 +0000 Files and hashes: 1: dku4R4v_jMi_8U6PtqrcKO1eSGQ.crl (hash: R0bp424cLWfjFNbdVWobmlRhYxGMRcp0eES5GJ/KDuU=) 2: 5E5DF206BCA411EDBD39730EC4F9AE02.roa (hash: ewiUnrO7XAgjqsA1wG//P3KoAbNdOVY4KG59Y9E54Tk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B19F8/CAE6B4CEBCA111EDA370780DC4F9AE02/dku4R4v_jMi_8U6PtqrcKO1eSGQ.crl rsync://rpki.apnic.net/member_repository/A91B19F8/CAE6B4CEBCA111EDA370780DC4F9AE02/dku4R4v_jMi_8U6PtqrcKO1eSGQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dku4R4v_jMi_8U6PtqrcKO1eSGQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 24 Jun 2025 02:20:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 429 (0x1ad) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B19F8, serialNumber=764BB8478BFF8CC8BFF14E8FB6AADC28ED5E4864 Validity Not Before: Jun 17 02:20:01 2025 GMT Not After : Jun 24 02:20:01 2025 GMT Subject: CN=6850d0d1-ba2b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:75:37:01:67:0a:20:e9:64:ed:38:27:67:7a: 1b:7d:08:b2:c9:41:5a:1e:6b:25:85:95:b9:96:fe: 8e:29:98:fb:01:8c:8f:8c:fc:71:8a:be:ae:09:ba: ae:99:e9:c5:b2:81:d2:ad:10:37:33:e6:bd:07:14: 40:0e:3a:85:dd:37:fc:44:c6:96:63:7a:91:49:0f: 00:52:dd:fc:88:bc:31:86:63:1e:7e:db:2b:a0:bc: 21:9c:35:1b:8a:9f:8d:86:a7:cf:c7:89:6a:f2:17: 2e:23:00:a5:3b:78:14:97:a8:6b:96:54:a4:7d:25: f6:19:cb:c1:9f:f3:51:54:af:b6:ba:3b:ab:1c:1b: 35:dd:2f:cb:6d:8b:63:e1:ca:22:2e:06:0f:d9:9d: ee:34:a5:c7:09:36:f1:42:e5:94:62:2f:78:86:bb: 2f:e7:d4:ed:93:58:e2:67:ba:e5:68:ef:c5:33:32: ce:c3:0b:37:6e:52:ce:c2:13:8a:a1:bf:10:24:b6: 6c:f9:6b:b6:ec:46:fc:1e:74:1f:ab:43:62:cb:b7: f2:5a:fe:59:a4:56:45:64:bf:cb:fb:0a:ad:ab:82: 77:6e:f7:da:69:fd:0c:30:c0:6e:ad:d5:fd:69:f6: 0c:9e:3f:c4:8b:f2:04:5d:0e:54:f1:49:98:aa:a0: 3e:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 68:88:D5:D1:CF:DA:DF:4A:4C:01:7F:F7:ED:42:A8:E9:E9:1B:74:44 X509v3 Authority Key Identifier: keyid:76:4B:B8:47:8B:FF:8C:C8:BF:F1:4E:8F:B6:AA:DC:28:ED:5E:48:64 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B19F8/CAE6B4CEBCA111EDA370780DC4F9AE02/dku4R4v_jMi_8U6PtqrcKO1eSGQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dku4R4v_jMi_8U6PtqrcKO1eSGQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B19F8/CAE6B4CEBCA111EDA370780DC4F9AE02/dku4R4v_jMi_8U6PtqrcKO1eSGQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1f:6c:03:05:8a:88:f4:5d:ae:00:56:bc:ce:78:90:08:69:0f: 57:c7:c1:fd:be:66:33:be:d5:30:bf:1c:0e:b1:19:c2:cb:b0: 3c:1b:d3:ce:8d:2f:66:63:d8:43:90:f7:27:ea:45:3e:71:c5: 8c:52:55:14:18:30:27:d1:0f:ac:33:2e:04:7e:c5:b1:6a:13: 4e:64:59:5e:c7:20:2b:ed:04:99:de:2c:aa:67:15:4a:b8:39: b4:ea:3d:57:66:c4:fd:65:21:55:50:3a:54:ad:18:1b:c1:5b: d8:e5:7f:74:a2:ef:cf:4e:ea:31:c0:3c:3a:30:b2:93:c7:55: 03:d3:53:b6:13:ec:59:33:e7:75:3c:d3:40:d9:5f:23:e9:c9: 42:27:d6:5b:1c:ff:3b:38:48:2f:5e:e2:0e:4d:b3:7a:96:eb: c4:76:68:f7:7b:6d:a8:b2:a7:69:25:c8:ef:b3:f3:14:d6:a7: 66:52:84:ff:aa:98:08:52:96:0f:a4:2a:f5:0e:52:6b:87:6b: 63:46:a0:52:5c:c2:e0:f4:0a:1b:56:46:cf:c2:16:58:97:65: c3:41:1f:0e:51:e5:ee:3f:5e:a3:ca:6c:d4:19:da:32:43:77: c8:ac:f5:c3:b3:fd:66:34:ee:22:98:e3:be:e1:07:c5:ab:42: fb:cf:ac:44 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAa0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjE5RjgxMTAvBgNVBAUTKDc2NEJCODQ3OEJGRjhDQzhCRkYxNEU4RkI2QUFEQzI4 RUQ1RTQ4NjQwHhcNMjUwNjE3MDIyMDAxWhcNMjUwNjI0MDIyMDAxWjAYMRYwFAYD VQQDEw02ODUwZDBkMS1iYTJiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6XU3AWcKIOlk7TgnZ3obfQiyyUFaHmslhZW5lv6OKZj7AYyPjPxxir6uCbqu menFsoHSrRA3M+a9BxRADjqF3Tf8RMaWY3qRSQ8AUt38iLwxhmMeftsroLwhnDUb ip+NhqfPx4lq8hcuIwClO3gUl6hrllSkfSX2GcvBn/NRVK+2ujurHBs13S/LbYtj 4coiLgYP2Z3uNKXHCTbxQuWUYi94hrsv59Ttk1jiZ7rlaO/FMzLOwws3blLOwhOK ob8QJLZs+Wu27Eb8HnQfq0Niy7fyWv5ZpFZFZL/L+wqtq4J3bvfaaf0MMMBurdX9 afYMnj/Ei/IEXQ5U8UmYqqA+NwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGiI1dHP 2t9KTAF/9+1CqOnpG3REMB8GA1UdIwQYMBaAFHZLuEeL/4zIv/FOj7aq3CjtXkhk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMTlGOC9DQUU2QjRDRUJD QTExMUVEQTM3MDc4MERDNEY5QUUwMi9ka3U0UjR2X2pNaV84VTZQdHFyY0tPMWVT R1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2RrdTRSNHZfak1pXzhVNlB0cXJjS08xZVNHUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC MTlGOC9DQUU2QjRDRUJDQTExMUVEQTM3MDc4MERDNEY5QUUwMi9ka3U0UjR2X2pN aV84VTZQdHFyY0tPMWVTR1EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAfbAMFioj0Xa4AVrzOeJAIaQ9Xx8H9vmYzvtUwvxwOsRnCy7A8G9PO jS9mY9hDkPcn6kU+ccWMUlUUGDAn0Q+sMy4EfsWxahNOZFlexyAr7QSZ3iyqZxVK uDm06j1XZsT9ZSFVUDpUrRgbwVvY5X90ou/PTuoxwDw6MLKTx1UD01O2E+xZM+d1 PNNA2V8j6clCJ9ZbHP87OEgvXuIOTbN6luvEdmj3e22osqdpJcjvs/MU1qdmUoT/ qpgIUpYPpCr1DlJrh2tjRqBSXMLg9AobVkbPwhZYl2XDQR8OUeXuP16jymzUGdoy Q3fIrPXDs/1mNO4imOO+4QfFq0L7z6xE -----END CERTIFICATE-----Generated at Wed Jun 18 10:18:51 2025 by rpki-client