$ rpki-client -vvf rpki.apnic.net/member_repository/A91B2472/E62B735A481911EFB8BE4534C4F9AE02/nlE6zE17kAFKhn-1KviSKeALpKw.mft File: nlE6zE17kAFKhn-1KviSKeALpKw.mft (raw, json) Hash identifier: 7lUnV6DjLJEfOZMJCFL7XevdutJ/0jgRLd8Ea+UCcy0= Subject key identifier: 18:8E:99:56:0E:7A:EF:21:67:CB:1A:51:52:58:05:7A:41:7A:A7:C1 Authority key identifier: 9E:51:3A:CC:4D:7B:90:01:4A:86:7F:B5:2A:F8:92:29:E0:0B:A4:AC Certificate issuer: /CN=A91B2472/serialNumber=9E513ACC4D7B90014A867FB52AF89229E00BA4AC Certificate serial: AF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nlE6zE17kAFKhn-1KviSKeALpKw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B2472/E62B735A481911EFB8BE4534C4F9AE02/nlE6zE17kAFKhn-1KviSKeALpKw.mft Manifest number: AC Signing time: Thu 19 Jun 2025 05:27:53 +0000 Manifest this update: Thu 19 Jun 2025 05:27:52 +0000 Manifest next update: Thu 26 Jun 2025 05:27:52 +0000 Files and hashes: 1: nlE6zE17kAFKhn-1KviSKeALpKw.crl (hash: yr+XehIt4a8bcBSComJUdhC7v4k+do5pynPIlSEna2M=) 2: 1B4BDA5C48B011EF9D34415EC4F9AE02.roa (hash: /fW0UzdpOpiVi/4bzpgP5X5TzlzFOgXdGZfbyGjzbdE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B2472/E62B735A481911EFB8BE4534C4F9AE02/nlE6zE17kAFKhn-1KviSKeALpKw.crl rsync://rpki.apnic.net/member_repository/A91B2472/E62B735A481911EFB8BE4534C4F9AE02/nlE6zE17kAFKhn-1KviSKeALpKw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nlE6zE17kAFKhn-1KviSKeALpKw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 26 Jun 2025 05:27:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 175 (0xaf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B2472, serialNumber=9E513ACC4D7B90014A867FB52AF89229E00BA4AC Validity Not Before: Jun 19 05:27:52 2025 GMT Not After : Jun 26 05:27:52 2025 GMT Subject: CN=68539fd8-f38b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:01:a4:9b:3b:71:c8:86:57:09:de:3e:ef:f5: 04:e4:55:59:e1:89:79:ed:cf:3b:2b:9d:aa:bf:cf: b2:9c:94:48:54:6e:c0:91:b0:c5:57:68:a7:35:e5: db:b3:95:88:35:dd:d1:d1:af:ac:df:9e:09:b2:ed: 57:78:fc:e9:7d:78:6a:98:b5:de:b8:ef:7b:a3:bf: ee:63:27:26:f1:85:f6:51:2e:98:32:64:e9:ca:50: 6c:58:e0:52:5e:a3:78:2d:99:9f:c7:30:0b:fb:ce: 62:71:36:4c:c8:8a:10:34:2f:57:0d:12:77:ff:8d: fd:a6:09:05:33:be:d6:55:61:a5:55:36:6b:af:fd: e1:3d:8f:b1:39:8e:ac:24:cc:3b:37:87:b3:8f:89: 3d:07:8e:6b:6e:4c:6c:2f:1e:2c:b1:54:35:73:7f: 85:56:50:6b:a4:74:57:5d:02:82:13:6b:d4:13:66: 82:ff:92:03:7d:d8:f2:6d:b6:34:40:53:e5:0f:eb: a9:b9:28:5c:92:af:23:db:cc:f1:a0:dc:f8:7c:2b: 7d:af:be:08:e4:2d:05:c5:d3:92:a6:7a:2b:65:72: bb:50:86:6d:30:63:cf:42:a9:90:f8:3b:64:9f:da: 82:a5:5c:a9:52:e0:a7:24:2b:20:38:0d:18:0d:f2: 9a:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 18:8E:99:56:0E:7A:EF:21:67:CB:1A:51:52:58:05:7A:41:7A:A7:C1 X509v3 Authority Key Identifier: keyid:9E:51:3A:CC:4D:7B:90:01:4A:86:7F:B5:2A:F8:92:29:E0:0B:A4:AC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B2472/E62B735A481911EFB8BE4534C4F9AE02/nlE6zE17kAFKhn-1KviSKeALpKw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nlE6zE17kAFKhn-1KviSKeALpKw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B2472/E62B735A481911EFB8BE4534C4F9AE02/nlE6zE17kAFKhn-1KviSKeALpKw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 29:f2:91:d8:72:33:c2:0f:d6:65:30:07:ef:a5:9d:77:b3:21: bc:7f:0b:4e:f7:07:8c:49:ee:79:f4:89:87:13:03:2a:96:d1: 89:2e:08:fe:b8:b6:9f:b0:a2:60:46:29:11:0e:84:e0:2f:e5: c1:14:0b:0b:08:94:72:d8:0f:70:8d:5b:7d:44:b6:ef:e4:45: bf:6a:02:e7:23:d2:0d:97:97:9e:ff:70:1b:13:04:64:72:90: 91:50:7a:1a:de:08:da:00:65:90:00:02:32:8f:6c:18:a9:64: 8a:13:ba:50:6a:9a:96:0b:81:e9:ef:7b:df:70:f3:f5:96:b9: a6:6d:94:0a:84:da:40:c5:01:aa:1c:ed:57:ab:5f:53:44:9f: 69:b2:95:83:7b:7a:64:04:83:34:32:44:8c:8d:e9:36:06:23: d8:77:a4:ac:f4:8e:08:42:19:f1:4b:67:5c:3c:fa:d9:c3:ef: a2:15:a2:40:79:10:8e:95:65:60:cb:48:c0:ee:cd:c8:99:06: 9d:c2:91:9c:5f:bc:87:0a:87:88:87:fd:0f:98:f8:43:55:f1: 9a:a6:1e:e7:66:65:b2:e0:a6:f5:16:aa:9d:9c:c5:e3:6c:24: 0b:4e:cd:b8:ec:be:3e:cc:dd:3e:ba:48:df:56:a1:ff:0d:7e: b6:24:2a:8c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAK8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjI0NzIxMTAvBgNVBAUTKDlFNTEzQUNDNEQ3QjkwMDE0QTg2N0ZCNTJBRjg5MjI5 RTAwQkE0QUMwHhcNMjUwNjE5MDUyNzUyWhcNMjUwNjI2MDUyNzUyWjAYMRYwFAYD VQQDEw02ODUzOWZkOC1mMzhiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4QGkmztxyIZXCd4+7/UE5FVZ4Yl57c87K52qv8+ynJRIVG7AkbDFV2inNeXb s5WINd3R0a+s354Jsu1XePzpfXhqmLXeuO97o7/uYycm8YX2US6YMmTpylBsWOBS XqN4LZmfxzAL+85icTZMyIoQNC9XDRJ3/439pgkFM77WVWGlVTZrr/3hPY+xOY6s JMw7N4ezj4k9B45rbkxsLx4ssVQ1c3+FVlBrpHRXXQKCE2vUE2aC/5IDfdjybbY0 QFPlD+upuShckq8j28zxoNz4fCt9r74I5C0FxdOSpnorZXK7UIZtMGPPQqmQ+Dtk n9qCpVypUuCnJCsgOA0YDfKaTQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBiOmVYO eu8hZ8saUVJYBXpBeqfBMB8GA1UdIwQYMBaAFJ5ROsxNe5ABSoZ/tSr4kingC6Ss MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMjQ3Mi9FNjJCNzM1QTQ4 MTkxMUVGQjhCRTQ1MzRDNEY5QUUwMi9ubEU2ekUxN2tBRktobi0xS3ZpU0tlQUxw S3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL25sRTZ6RTE3a0FGS2huLTFLdmlTS2VBTHBLdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC MjQ3Mi9FNjJCNzM1QTQ4MTkxMUVGQjhCRTQ1MzRDNEY5QUUwMi9ubEU2ekUxN2tB Rktobi0xS3ZpU0tlQUxwS3cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAp8pHYcjPCD9ZlMAfvpZ13syG8fwtO9weMSe559ImHEwMqltGJLgj+ uLafsKJgRikRDoTgL+XBFAsLCJRy2A9wjVt9RLbv5EW/agLnI9INl5ee/3AbEwRk cpCRUHoa3gjaAGWQAAIyj2wYqWSKE7pQapqWC4Hp73vfcPP1lrmmbZQKhNpAxQGq HO1Xq19TRJ9pspWDe3pkBIM0MkSMjek2BiPYd6Ss9I4IQhnxS2dcPPrZw++iFaJA eRCOlWVgy0jA7s3ImQadwpGcX7yHCoeIh/0PmPhDVfGaph7nZmWy4Kb1FqqdnMXj bCQLTs247L4+zN0+ukjfVqH/DX62JCqM -----END CERTIFICATE-----Generated at Thu Jun 19 18:16:40 2025 by rpki-client