$ rpki-client -vvf rpki.apnic.net/member_repository/A91B62A9/D77F91421DA111E2BFCB309408B02CD2/sLiO7pE7KqjXtZU3FT782HAKkUA.mft File: sLiO7pE7KqjXtZU3FT782HAKkUA.mft (raw, json) Hash identifier: bVKFng+U5it8JAc5QweSR82GTfh+5Sum/EezDG4kbms= Subject key identifier: A0:6F:58:5A:87:61:F6:08:E8:5B:B7:53:5F:2B:05:FF:D4:C6:16:4A Authority key identifier: B0:B8:8E:EE:91:3B:2A:A8:D7:B5:95:37:15:3E:FC:D8:70:0A:91:40 Certificate issuer: /CN=A91B62A9/serialNumber=B0B88EEE913B2AA8D7B59537153EFCD8700A9140 Certificate serial: 3490 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sLiO7pE7KqjXtZU3FT782HAKkUA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B62A9/D77F91421DA111E2BFCB309408B02CD2/sLiO7pE7KqjXtZU3FT782HAKkUA.mft Manifest number: 348E Signing time: Wed 18 Jun 2025 15:03:25 +0000 Manifest this update: Wed 18 Jun 2025 15:03:24 +0000 Manifest next update: Wed 25 Jun 2025 15:03:24 +0000 Files and hashes: 1: sLiO7pE7KqjXtZU3FT782HAKkUA.crl (hash: D9pz58ZI+W9M5wF91hvMPA6kW2uRvfNjhdmXQXlp7ns=) 2: 8146430A45BE11EF92C29882C4F9AE02.roa (hash: t0r89bYo/YLfBIznDm5VJcksHUIZupXS77KseDePVYw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B62A9/D77F91421DA111E2BFCB309408B02CD2/sLiO7pE7KqjXtZU3FT782HAKkUA.crl rsync://rpki.apnic.net/member_repository/A91B62A9/D77F91421DA111E2BFCB309408B02CD2/sLiO7pE7KqjXtZU3FT782HAKkUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sLiO7pE7KqjXtZU3FT782HAKkUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 25 Jun 2025 15:03:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13456 (0x3490) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B62A9, serialNumber=B0B88EEE913B2AA8D7B59537153EFCD8700A9140 Validity Not Before: Jun 18 15:03:24 2025 GMT Not After : Jun 25 15:03:24 2025 GMT Subject: CN=6852d53c-4617 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:08:6c:c8:e0:45:f5:60:e7:8b:d8:5f:5f:22: bf:7a:b6:cf:84:2d:df:e0:6e:bc:fd:36:91:ae:1a: 4d:8c:55:05:3c:1a:cd:ba:79:fc:7e:fa:ba:59:f9: 14:b2:16:68:ce:ac:88:25:39:ae:72:59:c6:6a:4f: 7b:59:16:df:21:2e:0c:70:0b:63:05:43:6b:9d:68: 32:29:03:98:43:0b:05:b2:f8:8e:d7:ee:8e:62:bc: cb:d8:95:c9:85:ac:f0:d9:95:da:51:36:2b:52:0b: 59:17:fe:e7:33:7f:2b:e5:07:a0:50:ed:52:b0:b8: 2d:81:b6:28:0a:63:97:ab:34:f1:ee:e4:52:17:3b: a0:49:20:49:c2:0f:b3:ea:54:71:dc:9f:e0:d4:c7: c2:3a:36:38:71:ea:77:b8:a9:1a:43:79:f5:c8:75: 63:f4:33:31:5e:ab:18:90:de:67:6b:e3:7b:8b:9f: 64:d0:b1:9a:e9:ff:be:8a:06:98:b4:85:f6:2c:82: b0:b6:01:d0:66:b8:22:73:44:89:c3:12:b6:be:11: 38:22:4d:3e:2e:50:6a:ac:3a:5c:c5:60:98:cf:09: c5:19:9f:b9:e4:f4:63:14:3c:c8:88:25:a2:00:ba: 41:d0:80:82:3e:2d:94:f8:8e:04:52:97:1c:28:b4: 58:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A0:6F:58:5A:87:61:F6:08:E8:5B:B7:53:5F:2B:05:FF:D4:C6:16:4A X509v3 Authority Key Identifier: keyid:B0:B8:8E:EE:91:3B:2A:A8:D7:B5:95:37:15:3E:FC:D8:70:0A:91:40 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B62A9/D77F91421DA111E2BFCB309408B02CD2/sLiO7pE7KqjXtZU3FT782HAKkUA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sLiO7pE7KqjXtZU3FT782HAKkUA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B62A9/D77F91421DA111E2BFCB309408B02CD2/sLiO7pE7KqjXtZU3FT782HAKkUA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 32:6b:68:67:af:27:68:d3:df:b6:ea:e3:1f:f3:89:c5:2e:22: 24:9d:17:c5:d5:b7:c7:48:e5:25:b1:37:83:fb:a3:b9:b4:6c: bf:b1:b6:11:7a:9d:e7:30:50:1f:97:37:2c:85:29:94:19:76: 8c:7f:d4:f0:d3:a5:86:cd:38:8f:79:30:dc:ff:43:89:57:f7: 4f:ec:06:f1:51:17:7b:5e:9c:5a:d2:4a:ba:d9:3e:af:4e:f9: b7:1c:f5:58:79:aa:d4:ba:d0:72:3d:25:40:ec:f9:c8:c3:b9: fa:b1:ca:a0:27:1d:f9:fe:58:9e:a3:85:68:82:e8:1a:9e:b0: a9:6a:e3:a4:97:c3:7d:27:d8:65:f6:1a:50:d1:5b:db:e0:39: 5a:77:e5:a6:82:04:ef:29:1f:7d:93:21:54:22:d7:44:f7:dd: 9e:4f:91:d8:cd:4a:85:7d:0e:6a:6f:5f:30:66:95:14:e8:99: 8c:4b:85:4f:6b:19:91:20:ea:58:ca:27:56:f0:61:99:fc:cc: 1d:26:05:e6:87:90:56:f3:77:fd:50:f8:19:d4:18:f4:62:da: 42:3a:40:52:55:8e:1c:0d:66:d4:b3:f4:de:04:89:63:0b:ba: 06:18:d6:b3:1f:84:f8:76:79:9a:3f:6e:44:11:7b:51:38:cd: b9:81:be:eb -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNJAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjYyQTkxMTAvBgNVBAUTKEIwQjg4RUVFOTEzQjJBQThEN0I1OTUzNzE1M0VGQ0Q4 NzAwQTkxNDAwHhcNMjUwNjE4MTUwMzI0WhcNMjUwNjI1MTUwMzI0WjAYMRYwFAYD VQQDEw02ODUyZDUzYy00NjE3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwghsyOBF9WDni9hfXyK/erbPhC3f4G68/TaRrhpNjFUFPBrNunn8fvq6WfkU shZozqyIJTmuclnGak97WRbfIS4McAtjBUNrnWgyKQOYQwsFsviO1+6OYrzL2JXJ hazw2ZXaUTYrUgtZF/7nM38r5QegUO1SsLgtgbYoCmOXqzTx7uRSFzugSSBJwg+z 6lRx3J/g1MfCOjY4cep3uKkaQ3n1yHVj9DMxXqsYkN5na+N7i59k0LGa6f++igaY tIX2LIKwtgHQZrgic0SJwxK2vhE4Ik0+LlBqrDpcxWCYzwnFGZ+55PRjFDzIiCWi ALpB0ICCPi2U+I4EUpccKLRYuwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKBvWFqH YfYI6Fu3U18rBf/UxhZKMB8GA1UdIwQYMBaAFLC4ju6ROyqo17WVNxU+/NhwCpFA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNjJBOS9ENzdGOTE0MjFE QTExMUUyQkZDQjMwOTQwOEIwMkNEMi9zTGlPN3BFN0txalh0WlUzRlQ3ODJIQUtr VUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3NMaU83cEU3S3FqWHRaVTNGVDc4MkhBS2tVQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NjJBOS9ENzdGOTE0MjFEQTExMUUyQkZDQjMwOTQwOEIwMkNEMi9zTGlPN3BFN0tx alh0WlUzRlQ3ODJIQUtrVUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAya2hnrydo09+26uMf84nFLiIknRfF1bfHSOUlsTeD+6O5tGy/sbYR ep3nMFAflzcshSmUGXaMf9Tw06WGzTiPeTDc/0OJV/dP7AbxURd7Xpxa0kq62T6v Tvm3HPVYearUutByPSVA7PnIw7n6scqgJx35/lieo4VoguganrCpauOkl8N9J9hl 9hpQ0Vvb4Dlad+WmggTvKR99kyFUItdE992eT5HYzUqFfQ5qb18wZpUU6JmMS4VP axmRIOpYyidW8GGZ/MwdJgXmh5BW83f9UPgZ1Bj0YtpCOkBSVY4cDWbUs/TeBIlj C7oGGNazH4T4dnmaP25EEXtROM25gb7r -----END CERTIFICATE-----Generated at Thu Jun 19 03:00:39 2025 by rpki-client