$ rpki-client -vvf rpki.apnic.net/member_repository/A91B268A/84FB4C9CDDA111E8A2E78A69C4F9AE02/-O7OfTwM9ZIuo9gDVTY4gj-u6gg.mft File: -O7OfTwM9ZIuo9gDVTY4gj-u6gg.mft (raw, json) Hash identifier: gIC8yRnz9/MytTdMAOTeYpOhtIktRomtCh7FfxX2lPI= Subject key identifier: A1:D0:77:0B:58:72:C2:03:B2:41:46:F5:8F:9D:C4:80:BC:11:F5:03 Authority key identifier: F8:EE:CE:7D:3C:0C:F5:92:2E:A3:D8:03:55:36:38:82:3F:AE:EA:08 Certificate issuer: /CN=A91B268A/serialNumber=F8EECE7D3C0CF5922EA3D803553638823FAEEA08 Certificate serial: 124C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-O7OfTwM9ZIuo9gDVTY4gj-u6gg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B268A/84FB4C9CDDA111E8A2E78A69C4F9AE02/-O7OfTwM9ZIuo9gDVTY4gj-u6gg.mft Manifest number: 1236 Signing time: Mon 16 Jun 2025 17:09:57 +0000 Manifest this update: Mon 16 Jun 2025 17:09:56 +0000 Manifest next update: Mon 23 Jun 2025 17:09:56 +0000 Files and hashes: 1: -O7OfTwM9ZIuo9gDVTY4gj-u6gg.crl (hash: +mRMnDR9PHzgvwD30fNugtgNi9ZxltjZkIyRjESvAA8=) 2: 0AF12B12DDA411E88E25E96FC4F9AE02.roa (hash: VilJgVER7BycZHaWd4URO4KYACwZnY/x/nNDEK5obqE=) 3: 801B5CA0D49711EFBF7D3414C4F9AE02.roa (hash: OeaX4Y36BcWO+hpCFTJVXRa1o/dq7PQS00iGf5uCP9s=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B268A/84FB4C9CDDA111E8A2E78A69C4F9AE02/-O7OfTwM9ZIuo9gDVTY4gj-u6gg.crl rsync://rpki.apnic.net/member_repository/A91B268A/84FB4C9CDDA111E8A2E78A69C4F9AE02/-O7OfTwM9ZIuo9gDVTY4gj-u6gg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-O7OfTwM9ZIuo9gDVTY4gj-u6gg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 23 Jun 2025 17:09:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4684 (0x124c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B268A, serialNumber=F8EECE7D3C0CF5922EA3D803553638823FAEEA08 Validity Not Before: Jun 16 17:09:56 2025 GMT Not After : Jun 23 17:09:56 2025 GMT Subject: CN=68504fe5-4a34 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:bc:34:1b:a1:3a:dc:5a:6b:03:94:b6:5c:cf: aa:af:d6:b8:b3:b5:f5:4e:69:f2:74:a4:5a:6a:20: ae:13:ea:15:4e:75:0e:7a:6e:3e:db:09:04:9c:5b: ad:b3:64:e3:3c:b1:d8:eb:4b:8a:a6:89:5f:3d:ea: 1d:35:38:00:a6:6c:33:d6:8b:ad:e5:e1:c9:c7:cd: 8b:89:b8:0a:28:be:e9:69:bb:d8:d3:e0:a3:30:34: 84:f6:e9:54:f6:62:8c:f6:1e:27:a8:03:5f:b8:89: 93:fb:ad:d2:06:0a:fd:1a:99:8d:cf:f0:58:bd:2c: 61:1e:85:5d:f0:b6:ab:ec:d5:3d:42:94:d7:c4:70: c7:97:ba:b5:a9:e0:a4:6c:87:d0:2a:cf:ee:24:96: a7:fa:a0:a5:cd:9b:7f:fe:79:fc:3f:ab:e3:4b:a0: 08:e6:79:ff:ff:cd:7a:7b:71:c2:a3:ad:52:d6:1f: ab:9c:f1:5b:1f:52:f8:c2:30:e3:7c:be:79:c0:40: 4a:73:72:a1:a1:45:1b:52:d2:2a:ae:42:30:26:40: 44:1c:8c:1b:3a:b7:f0:10:f8:74:91:7f:f1:90:b0: 43:94:3b:a5:a4:52:d3:69:73:64:f7:f4:c8:ad:73: 70:e3:8c:62:ed:c9:d7:09:f7:33:24:cf:53:96:dd: cb:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A1:D0:77:0B:58:72:C2:03:B2:41:46:F5:8F:9D:C4:80:BC:11:F5:03 X509v3 Authority Key Identifier: keyid:F8:EE:CE:7D:3C:0C:F5:92:2E:A3:D8:03:55:36:38:82:3F:AE:EA:08 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B268A/84FB4C9CDDA111E8A2E78A69C4F9AE02/-O7OfTwM9ZIuo9gDVTY4gj-u6gg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-O7OfTwM9ZIuo9gDVTY4gj-u6gg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B268A/84FB4C9CDDA111E8A2E78A69C4F9AE02/-O7OfTwM9ZIuo9gDVTY4gj-u6gg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 91:99:58:cf:9c:53:23:2a:cb:51:1a:34:e7:a7:0c:1f:4f:64: a0:ff:d0:4e:f5:4e:26:7e:15:f3:5b:31:26:e4:21:61:87:b3: b9:29:31:fd:27:8e:15:a4:c0:3c:60:1c:26:4e:90:d7:7c:9b: 4f:57:59:62:85:e0:1a:d7:ed:a6:e8:b8:ff:a9:2e:ae:46:ad: 84:60:b1:8c:d0:27:90:68:f7:68:0b:04:fc:4c:bc:3f:2d:f4: 2f:08:4e:c6:15:b3:15:a0:2a:e3:53:e8:f4:0f:36:1f:90:7f: 15:2d:c5:4a:0f:5e:7d:53:c1:1b:46:8a:63:7a:c6:d1:38:ef: 2d:9d:59:85:8a:3d:99:5e:9a:62:a7:5e:a2:06:95:5c:60:de: c2:65:97:8d:a4:77:cd:98:28:a5:83:2c:7b:ab:fe:96:af:d2: 98:8e:8a:dd:85:2d:a1:07:8c:64:19:94:02:94:32:e0:ec:bb: 5d:65:2f:3b:17:63:65:55:b8:7f:fb:7f:31:9c:a8:88:86:b0: 47:19:7b:90:f3:58:c7:38:7b:48:69:34:49:e0:1b:80:63:44: 50:61:db:56:ad:16:ec:d9:e7:38:47:a9:e0:64:b9:a7:ee:ee: 7f:51:c7:c8:40:29:c3:17:89:77:32:cc:72:21:af:e9:1c:38: df:58:7a:e8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEkwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjI2OEExMTAvBgNVBAUTKEY4RUVDRTdEM0MwQ0Y1OTIyRUEzRDgwMzU1MzYzODgy M0ZBRUVBMDgwHhcNMjUwNjE2MTcwOTU2WhcNMjUwNjIzMTcwOTU2WjAYMRYwFAYD VQQDEw02ODUwNGZlNS00YTM0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1rw0G6E63FprA5S2XM+qr9a4s7X1TmnydKRaaiCuE+oVTnUOem4+2wkEnFut s2TjPLHY60uKpolfPeodNTgApmwz1out5eHJx82LibgKKL7pabvY0+CjMDSE9ulU 9mKM9h4nqANfuImT+63SBgr9GpmNz/BYvSxhHoVd8Lar7NU9QpTXxHDHl7q1qeCk bIfQKs/uJJan+qClzZt//nn8P6vjS6AI5nn//816e3HCo61S1h+rnPFbH1L4wjDj fL55wEBKc3KhoUUbUtIqrkIwJkBEHIwbOrfwEPh0kX/xkLBDlDulpFLTaXNk9/TI rXNw44xi7cnXCfczJM9Tlt3LkwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKHQdwtY csIDskFG9Y+dxIC8EfUDMB8GA1UdIwQYMBaAFPjuzn08DPWSLqPYA1U2OII/ruoI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMjY4QS84NEZCNEM5Q0RE QTExMUU4QTJFNzhBNjlDNEY5QUUwMi8tTzdPZlR3TTlaSXVvOWdEVlRZNGdqLXU2 Z2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy1PN09mVHdNOVpJdW85Z0RWVFk0Z2otdTZnZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC MjY4QS84NEZCNEM5Q0REQTExMUU4QTJFNzhBNjlDNEY5QUUwMi8tTzdPZlR3TTla SXVvOWdEVlRZNGdqLXU2Z2cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCRmVjPnFMjKstRGjTnpwwfT2Sg/9BO9U4mfhXzWzEm5CFhh7O5KTH9 J44VpMA8YBwmTpDXfJtPV1liheAa1+2m6Lj/qS6uRq2EYLGM0CeQaPdoCwT8TLw/ LfQvCE7GFbMVoCrjU+j0DzYfkH8VLcVKD159U8EbRopjesbROO8tnVmFij2ZXppi p16iBpVcYN7CZZeNpHfNmCilgyx7q/6Wr9KYjordhS2hB4xkGZQClDLg7LtdZS87 F2NlVbh/+38xnKiIhrBHGXuQ81jHOHtIaTRJ4BuAY0RQYdtWrRbs2ec4R6ngZLmn 7u5/UcfIQCnDF4l3MsxyIa/pHDjfWHro -----END CERTIFICATE-----Generated at Tue Jun 17 01:36:22 2025 by rpki-client