$ rpki-client -vvf rpki.apnic.net/member_repository/A91B53A5/2580A8D64B6511E7B469C07AC4F9AE02/2fwVW2_aEGxpmlabEgOEkJWKoy8.mft File: 2fwVW2_aEGxpmlabEgOEkJWKoy8.mft (raw, json) Hash identifier: 81YogbyV3lYovUW+SMU5Fa0VML6GOzYVNSZq6P6UIVw= Subject key identifier: F7:A6:A8:AF:78:40:10:C9:07:A0:4B:B3:E5:B5:0B:07:5F:8D:5D:10 Authority key identifier: D9:FC:15:5B:6F:DA:10:6C:69:9A:56:9B:12:03:84:90:95:8A:A3:2F Certificate issuer: /CN=A91B53A5/serialNumber=D9FC155B6FDA106C699A569B12038490958AA32F Certificate serial: 1A55 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2fwVW2_aEGxpmlabEgOEkJWKoy8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B53A5/2580A8D64B6511E7B469C07AC4F9AE02/2fwVW2_aEGxpmlabEgOEkJWKoy8.mft Manifest number: 1A3C Signing time: Wed 18 Jun 2025 16:22:13 +0000 Manifest this update: Wed 18 Jun 2025 16:22:13 +0000 Manifest next update: Wed 25 Jun 2025 16:22:13 +0000 Files and hashes: 1: 2fwVW2_aEGxpmlabEgOEkJWKoy8.crl (hash: /YGng065Mdj5fJtkoWdW64bjHZ+pCQhoWXRqGfybhTE=) 2: C443D86A55A311E7896BED09C4F9AE02.roa (hash: RAjaQS5QbqXtrUMbAxpVJSZQfE94i9hS979yM5B3+jI=) 3: A9286C0E6D4411E7AF539270C4F9AE02.roa (hash: CvwZ78Bx6JW2ZSeXfa9JVVvETeg0+qlUbSWAQnUGr1k=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B53A5/2580A8D64B6511E7B469C07AC4F9AE02/2fwVW2_aEGxpmlabEgOEkJWKoy8.crl rsync://rpki.apnic.net/member_repository/A91B53A5/2580A8D64B6511E7B469C07AC4F9AE02/2fwVW2_aEGxpmlabEgOEkJWKoy8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2fwVW2_aEGxpmlabEgOEkJWKoy8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 25 Jun 2025 16:22:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6741 (0x1a55) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B53A5, serialNumber=D9FC155B6FDA106C699A569B12038490958AA32F Validity Not Before: Jun 18 16:22:13 2025 GMT Not After : Jun 25 16:22:13 2025 GMT Subject: CN=6852e7b5-a031 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:3d:70:2b:9c:e9:99:87:5f:90:d5:bf:88:d6: a2:38:fa:43:ac:51:84:dc:62:b6:02:1d:78:f3:ab: 1e:3b:72:d8:69:c4:8b:de:80:49:8c:3d:b8:27:11: e1:6c:3a:25:1a:3d:fd:ce:10:4b:cd:cf:5d:32:45: eb:83:2d:af:97:00:5f:83:5f:c2:ff:bb:6f:94:d2: 78:46:08:2a:77:0a:f5:f7:7b:6d:dd:79:b3:06:92: 39:06:5c:92:09:2b:ce:c6:f2:c8:8f:29:ae:86:26: 1a:d6:4b:b0:1f:c6:f7:3e:78:07:46:61:f2:ba:f9: b3:b9:a3:70:5a:ac:e9:a1:b9:ce:44:db:47:d7:f0: 27:5d:e2:29:5c:95:1a:26:da:85:08:5f:64:ca:70: 2d:3c:a2:83:d1:1c:75:00:7b:d4:63:7d:fa:d7:79: 7c:2f:88:16:0b:c8:fd:3c:e5:66:4e:a4:bb:dd:e0: e0:8e:75:3b:5d:d9:0c:4b:5e:9f:c8:25:27:58:db: a9:5e:9d:31:67:24:48:4b:0e:9e:98:ee:37:72:f0: 90:a1:b2:21:27:61:aa:45:27:dc:6c:f0:cc:81:5f: 8b:01:8c:24:27:d7:df:93:3c:f8:92:05:42:0f:fe: 94:09:50:e1:fb:32:8d:c9:89:c1:df:d1:78:af:77: 54:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F7:A6:A8:AF:78:40:10:C9:07:A0:4B:B3:E5:B5:0B:07:5F:8D:5D:10 X509v3 Authority Key Identifier: keyid:D9:FC:15:5B:6F:DA:10:6C:69:9A:56:9B:12:03:84:90:95:8A:A3:2F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B53A5/2580A8D64B6511E7B469C07AC4F9AE02/2fwVW2_aEGxpmlabEgOEkJWKoy8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2fwVW2_aEGxpmlabEgOEkJWKoy8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B53A5/2580A8D64B6511E7B469C07AC4F9AE02/2fwVW2_aEGxpmlabEgOEkJWKoy8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1b:fb:51:47:8f:fa:93:9f:9b:c7:67:31:bd:f8:1b:f4:cd:de: 3b:cd:04:c3:3a:f9:4a:29:c3:97:31:1a:11:00:ef:71:98:c8: f4:b3:1a:8e:0d:5d:fd:ad:06:72:31:dc:7c:60:50:a3:92:c0: c8:c3:59:1b:5d:28:35:47:29:2b:8f:75:59:27:6b:cf:cd:75: 4f:db:d0:c7:6c:4c:d6:49:fd:67:06:4b:45:1e:f2:0f:37:1b: 9a:29:bd:70:eb:26:4f:74:46:33:6e:ae:cc:46:8c:ec:13:b0: ce:98:9d:c9:09:de:19:4b:c2:fb:d1:9e:dc:c1:c5:29:b3:08: ec:2a:55:93:e5:05:bd:a4:11:52:09:74:1c:8d:74:65:1c:1b: f1:a1:9d:12:52:f3:1e:2b:01:fc:0f:06:36:18:f3:32:d8:7a: 59:b7:50:e4:5a:9a:3f:77:a0:c4:f4:ff:50:ed:51:2d:32:aa: 80:b4:c5:2d:54:6f:9f:70:6b:a7:af:26:b8:2f:dd:c2:81:c9: 41:28:6f:d2:79:69:32:be:b8:a0:c3:9f:e9:a4:b3:47:74:4e: 48:c6:d0:7c:28:6d:12:8f:75:5b:86:34:07:88:4b:ca:4c:e7: 4c:28:50:e2:48:55:05:6f:7e:65:9d:f5:46:46:2c:5f:fc:72: df:9f:fb:5f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICGlUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjUzQTUxMTAvBgNVBAUTKEQ5RkMxNTVCNkZEQTEwNkM2OTlBNTY5QjEyMDM4NDkw OTU4QUEzMkYwHhcNMjUwNjE4MTYyMjEzWhcNMjUwNjI1MTYyMjEzWjAYMRYwFAYD VQQDEw02ODUyZTdiNS1hMDMxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuj1wK5zpmYdfkNW/iNaiOPpDrFGE3GK2Ah1486seO3LYacSL3oBJjD24JxHh bDolGj39zhBLzc9dMkXrgy2vlwBfg1/C/7tvlNJ4Rggqdwr193tt3XmzBpI5BlyS CSvOxvLIjymuhiYa1kuwH8b3PngHRmHyuvmzuaNwWqzpobnORNtH1/AnXeIpXJUa JtqFCF9kynAtPKKD0Rx1AHvUY33613l8L4gWC8j9POVmTqS73eDgjnU7XdkMS16f yCUnWNupXp0xZyRISw6emO43cvCQobIhJ2GqRSfcbPDMgV+LAYwkJ9ffkzz4kgVC D/6UCVDh+zKNyYnB39F4r3dUkQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPemqK94 QBDJB6BLs+W1CwdfjV0QMB8GA1UdIwQYMBaAFNn8FVtv2hBsaZpWmxIDhJCViqMv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNTNBNS8yNTgwQThENjRC NjUxMUU3QjQ2OUMwN0FDNEY5QUUwMi8yZndWVzJfYUVHeHBtbGFiRWdPRWtKV0tv eTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJmd1ZXMl9hRUd4cG1sYWJFZ09Fa0pXS295OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NTNBNS8yNTgwQThENjRCNjUxMUU3QjQ2OUMwN0FDNEY5QUUwMi8yZndWVzJfYUVH eHBtbGFiRWdPRWtKV0tveTgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAb+1FHj/qTn5vHZzG9+Bv0zd47zQTDOvlKKcOXMRoRAO9xmMj0sxqO DV39rQZyMdx8YFCjksDIw1kbXSg1Rykrj3VZJ2vPzXVP29DHbEzWSf1nBktFHvIP NxuaKb1w6yZPdEYzbq7MRozsE7DOmJ3JCd4ZS8L70Z7cwcUpswjsKlWT5QW9pBFS CXQcjXRlHBvxoZ0SUvMeKwH8DwY2GPMy2HpZt1DkWpo/d6DE9P9Q7VEtMqqAtMUt VG+fcGunrya4L93CgclBKG/SeWkyvrigw5/ppLNHdE5IxtB8KG0Sj3VbhjQHiEvK TOdMKFDiSFUFb35lnfVGRixf/HLfn/tf -----END CERTIFICATE-----Generated at Thu Jun 19 14:39:51 2025 by rpki-client