$ rpki-client -vvf rpki.apnic.net/member_repository/A91B5CEA/1F63A56864EE11EDA4A34513C4F9AE02/RITQfaaNUwUM3PaxPAwFReZFfOU.mft File: RITQfaaNUwUM3PaxPAwFReZFfOU.mft (raw, json) Hash identifier: L62/1z2I16ykaUr2C8XIZQm2iHKQrO5yv1Y7tfAQeSs= Subject key identifier: 13:A7:D9:FE:C1:81:8A:85:AC:B2:35:84:85:1E:E4:E5:88:35:18:76 Authority key identifier: 44:84:D0:7D:A6:8D:53:05:0C:DC:F6:B1:3C:0C:05:45:E6:45:7C:E5 Certificate issuer: /CN=A91B5CEA/serialNumber=4484D07DA68D53050CDCF6B13C0C0545E6457CE5 Certificate serial: 01E7 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/RITQfaaNUwUM3PaxPAwFReZFfOU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B5CEA/1F63A56864EE11EDA4A34513C4F9AE02/RITQfaaNUwUM3PaxPAwFReZFfOU.mft Manifest number: 01E4 Signing time: Sun 15 Jun 2025 01:55:07 +0000 Manifest this update: Sun 15 Jun 2025 01:55:07 +0000 Manifest next update: Sun 22 Jun 2025 01:55:07 +0000 Files and hashes: 1: RITQfaaNUwUM3PaxPAwFReZFfOU.crl (hash: vSGEKiGLJEvQ0M9kwE2IJ9Ww3OuiZpuptI4XiFjmxuU=) 2: B3795CBC64F211ED9AEC046FC4F9AE02.roa (hash: EdWi73Mh5xQLy3TivA4ubB2nlEznz8QrqPnUKcwGaiM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B5CEA/1F63A56864EE11EDA4A34513C4F9AE02/RITQfaaNUwUM3PaxPAwFReZFfOU.crl rsync://rpki.apnic.net/member_repository/A91B5CEA/1F63A56864EE11EDA4A34513C4F9AE02/RITQfaaNUwUM3PaxPAwFReZFfOU.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/RITQfaaNUwUM3PaxPAwFReZFfOU.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 22 Jun 2025 01:55:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 487 (0x1e7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B5CEA, serialNumber=4484D07DA68D53050CDCF6B13C0C0545E6457CE5 Validity Not Before: Jun 15 01:55:07 2025 GMT Not After : Jun 22 01:55:07 2025 GMT Subject: CN=684e27fb-d565 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:64:d1:6c:8b:80:5a:96:3c:51:72:e7:a7:71: f8:1a:26:b4:42:84:81:85:06:c2:5a:b3:4c:0c:f6: 70:d1:b4:c8:25:29:6e:50:d6:08:d7:59:a1:1c:4a: ab:a8:bf:f7:4a:de:0a:e3:05:ff:58:ae:a6:3d:20: 6c:1a:1b:b9:32:78:30:d3:1c:db:9f:c0:37:e5:d6: 5b:53:fa:25:62:15:82:51:46:8b:c3:9a:78:cf:d6: 7f:1d:7c:56:ad:7b:2c:66:d6:0f:ee:17:8e:b5:be: e9:8d:fb:75:35:59:6c:92:d3:44:59:1a:5d:b5:24: bf:80:c6:0d:5c:d5:e5:d0:03:c4:38:99:df:3d:79: 38:e1:6a:0b:10:1d:59:51:f1:1c:30:9d:6c:6b:39: 63:0a:d3:ad:0c:72:15:82:4f:0b:2a:d5:16:c6:8f: e5:68:4e:f2:71:ec:5e:dd:70:5e:75:14:cb:c7:7b: e9:c2:fc:c6:30:c3:42:e1:44:f7:1a:21:8a:fd:27: ea:54:5c:1d:2e:4c:bf:0e:5b:59:cc:16:49:a7:1e: 2a:79:a3:df:ff:e9:97:b1:bc:00:ed:10:62:fc:5f: ee:c8:05:b6:6a:17:33:b1:ad:68:9d:9f:b8:55:17: 3b:4c:87:02:f5:87:5c:04:ea:99:72:61:b2:6b:60: d6:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 13:A7:D9:FE:C1:81:8A:85:AC:B2:35:84:85:1E:E4:E5:88:35:18:76 X509v3 Authority Key Identifier: keyid:44:84:D0:7D:A6:8D:53:05:0C:DC:F6:B1:3C:0C:05:45:E6:45:7C:E5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B5CEA/1F63A56864EE11EDA4A34513C4F9AE02/RITQfaaNUwUM3PaxPAwFReZFfOU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/RITQfaaNUwUM3PaxPAwFReZFfOU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B5CEA/1F63A56864EE11EDA4A34513C4F9AE02/RITQfaaNUwUM3PaxPAwFReZFfOU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b0:c7:cf:b2:e0:e2:3c:c5:03:73:81:d5:d4:84:0d:a3:21:5c: af:69:51:86:b3:db:0c:e9:27:70:7a:0b:11:db:92:ec:1f:7b: e7:f9:5c:5b:ab:ce:4c:d0:a3:30:79:aa:e2:fd:d5:2e:d6:23: 57:c5:8a:ef:72:22:e3:8f:ed:9f:b2:10:63:8b:2d:0a:49:65: ec:ad:36:37:58:c3:c7:19:88:f8:b9:4a:d4:77:a5:08:7f:e6: ee:06:fd:e7:a3:5d:f3:0b:89:bf:be:22:41:04:39:6b:d1:f5: 9e:84:07:de:c5:15:0f:27:13:28:3f:08:49:37:29:0b:1f:75: e7:11:32:7e:6a:65:d6:8d:1a:19:86:93:45:6b:79:ad:e7:bc: 81:74:38:cf:08:da:da:f9:24:73:51:9f:06:86:29:82:79:8f: 39:26:a5:ba:01:52:e8:bd:a7:f2:57:45:8b:7e:ce:ad:37:c2: 92:06:c8:f9:ff:0c:df:77:9d:b9:fb:38:f6:3c:98:5c:98:5c: 7c:7e:18:47:cb:e0:4b:71:2f:8c:33:9c:c2:de:30:1b:12:ac: 7b:ee:e8:95:85:1d:13:8c:7d:bf:71:8f:ec:2b:e5:bd:9c:1a: 10:31:27:85:69:13:e0:66:cc:9d:d0:ab:26:a3:ac:d0:c4:c9: ed:ed:72:dd -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAecwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjVDRUExMTAvBgNVBAUTKDQ0ODREMDdEQTY4RDUzMDUwQ0RDRjZCMTNDMEMwNTQ1 RTY0NTdDRTUwHhcNMjUwNjE1MDE1NTA3WhcNMjUwNjIyMDE1NTA3WjAYMRYwFAYD VQQDEw02ODRlMjdmYi1kNTY1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAn2TRbIuAWpY8UXLnp3H4Gia0QoSBhQbCWrNMDPZw0bTIJSluUNYI11mhHEqr qL/3St4K4wX/WK6mPSBsGhu5Mngw0xzbn8A35dZbU/olYhWCUUaLw5p4z9Z/HXxW rXssZtYP7heOtb7pjft1NVlsktNEWRpdtSS/gMYNXNXl0APEOJnfPXk44WoLEB1Z UfEcMJ1sazljCtOtDHIVgk8LKtUWxo/laE7ycexe3XBedRTLx3vpwvzGMMNC4UT3 GiGK/SfqVFwdLky/DltZzBZJpx4qeaPf/+mXsbwA7RBi/F/uyAW2ahczsa1onZ+4 VRc7TIcC9YdcBOqZcmGya2DWyQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBOn2f7B gYqFrLI1hIUe5OWINRh2MB8GA1UdIwQYMBaAFESE0H2mjVMFDNz2sTwMBUXmRXzl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNUNFQS8xRjYzQTU2ODY0 RUUxMUVEQTRBMzQ1MTNDNEY5QUUwMi9SSVRRZmFhTlV3VU0zUGF4UEF3RlJlWkZm T1UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL1JJVFFmYWFOVXdVTTNQYXhQQXdGUmVaRmZPVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NUNFQS8xRjYzQTU2ODY0RUUxMUVEQTRBMzQ1MTNDNEY5QUUwMi9SSVRRZmFhTlV3 VU0zUGF4UEF3RlJlWkZmT1UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCwx8+y4OI8xQNzgdXUhA2jIVyvaVGGs9sM6SdwegsR25LsH3vn+Vxb q85M0KMweari/dUu1iNXxYrvciLjj+2fshBjiy0KSWXsrTY3WMPHGYj4uUrUd6UI f+buBv3no13zC4m/viJBBDlr0fWehAfexRUPJxMoPwhJNykLH3XnETJ+amXWjRoZ hpNFa3mt57yBdDjPCNra+SRzUZ8GhimCeY85JqW6AVLovafyV0WLfs6tN8KSBsj5 /wzfd525+zj2PJhcmFx8fhhHy+BLcS+MM5zC3jAbEqx77uiVhR0TjH2/cY/sK+W9 nBoQMSeFaRPgZsyd0Ksmo6zQxMnt7XLd -----END CERTIFICATE-----Generated at Mon Jun 16 04:05:36 2025 by rpki-client