$ rpki-client -vvf rpki.apnic.net/member_repository/A91B65AC/CB74F8BEE1E011EEAF6E1E68C4F9AE02/oQ9Xg8j5ptlNKbSqkMVuAWu1FFY.mft File: oQ9Xg8j5ptlNKbSqkMVuAWu1FFY.mft (raw, json) Hash identifier: +L5oywgo09SJL6WfVPo+uWKQNDq2bN8/ryDA9FaiawU= Subject key identifier: 14:1E:DA:AA:87:EB:32:0E:8E:49:33:EA:2D:4A:A3:03:16:93:14:64 Authority key identifier: A1:0F:57:83:C8:F9:A6:D9:4D:29:B4:AA:90:C5:6E:01:6B:B5:14:56 Certificate issuer: /CN=A91B65AC/serialNumber=A10F5783C8F9A6D94D29B4AA90C56E016BB51456 Certificate serial: F3 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/oQ9Xg8j5ptlNKbSqkMVuAWu1FFY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B65AC/CB74F8BEE1E011EEAF6E1E68C4F9AE02/oQ9Xg8j5ptlNKbSqkMVuAWu1FFY.mft Manifest number: F0 Signing time: Thu 19 Jun 2025 04:42:01 +0000 Manifest this update: Thu 19 Jun 2025 04:42:00 +0000 Manifest next update: Thu 26 Jun 2025 04:42:00 +0000 Files and hashes: 1: oQ9Xg8j5ptlNKbSqkMVuAWu1FFY.crl (hash: zrer/7w4gTOFgJh2Lr0svbNMnzLuwqHqqF7ziincIJE=) 2: 48005D9EE5AE11EE9ECE4023C4F9AE02.roa (hash: WtIZQ/bC/mTF3o0eFavcTapTDeJCSmKxEjU8nMbUVMA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B65AC/CB74F8BEE1E011EEAF6E1E68C4F9AE02/oQ9Xg8j5ptlNKbSqkMVuAWu1FFY.crl rsync://rpki.apnic.net/member_repository/A91B65AC/CB74F8BEE1E011EEAF6E1E68C4F9AE02/oQ9Xg8j5ptlNKbSqkMVuAWu1FFY.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/oQ9Xg8j5ptlNKbSqkMVuAWu1FFY.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 26 Jun 2025 04:42:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 243 (0xf3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B65AC, serialNumber=A10F5783C8F9A6D94D29B4AA90C56E016BB51456 Validity Not Before: Jun 19 04:42:00 2025 GMT Not After : Jun 26 04:42:00 2025 GMT Subject: CN=68539519-fc61 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:7c:84:c1:ec:99:83:ab:83:f9:da:82:b6:99: 47:be:05:2f:65:12:0b:66:b5:15:e2:9e:1c:84:8d: bf:92:be:fd:e5:01:20:bc:06:e8:28:01:89:5d:56: 61:c4:20:33:74:a5:70:99:6e:19:28:d1:c9:fa:a5: b6:1a:1f:50:3d:09:73:33:45:82:d6:27:6d:6e:ec: fe:b4:28:1f:64:5d:ab:a3:5b:7f:1a:0d:80:7a:11: cc:c7:78:c5:93:61:7a:cf:bc:b1:f7:4f:1a:63:44: e3:21:8f:bd:82:94:11:93:66:fc:a3:3a:dd:a3:ff: 4c:3a:d5:a1:73:13:82:2f:4b:56:55:69:97:9d:a4: 35:77:5d:25:b8:61:9f:d2:fb:4c:e9:67:13:36:02: c6:75:9a:51:3f:3b:47:f5:c5:5a:3c:76:a7:a6:05: 4c:b2:d5:4a:bc:c6:86:7a:40:bd:cf:be:07:4f:7c: 88:13:5c:7b:c6:d3:76:c8:31:cb:3e:71:75:bc:be: a7:9c:8e:45:22:51:7c:a2:e3:68:8f:3e:aa:70:9b: 4c:e3:f7:01:00:8c:4b:7f:d1:a2:46:00:85:38:97: 85:91:fc:f3:6b:95:62:41:ba:2f:1c:71:44:1a:9a: 6d:22:b5:88:23:de:24:fd:57:57:f5:61:47:9f:79: 30:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 14:1E:DA:AA:87:EB:32:0E:8E:49:33:EA:2D:4A:A3:03:16:93:14:64 X509v3 Authority Key Identifier: keyid:A1:0F:57:83:C8:F9:A6:D9:4D:29:B4:AA:90:C5:6E:01:6B:B5:14:56 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B65AC/CB74F8BEE1E011EEAF6E1E68C4F9AE02/oQ9Xg8j5ptlNKbSqkMVuAWu1FFY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/oQ9Xg8j5ptlNKbSqkMVuAWu1FFY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B65AC/CB74F8BEE1E011EEAF6E1E68C4F9AE02/oQ9Xg8j5ptlNKbSqkMVuAWu1FFY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption d4:b5:04:57:65:6d:4f:cf:72:70:12:f5:a6:1d:7f:51:77:4a: 04:51:06:f4:60:10:51:69:84:9a:cc:68:c3:2f:6e:93:1c:ce: f4:a7:b8:af:eb:e3:b0:36:6d:fc:bb:cd:c9:41:b1:9c:51:5a: af:07:2e:dc:bf:e7:01:e4:41:2b:3f:d9:25:71:a7:1e:aa:82: fa:c6:8d:ab:85:c3:52:88:a0:c9:79:58:06:fa:94:31:8a:b6: 33:e0:dd:26:7d:ae:71:e9:f2:9f:27:f3:cf:2f:1b:0d:bb:dc: d1:c9:4b:15:1b:7f:aa:33:3f:78:7d:2b:6b:68:09:01:09:ee: 0d:ac:2c:d9:51:3c:a6:29:82:ed:a4:64:49:68:74:fe:eb:83: 79:70:69:e8:2a:0a:0c:b5:53:9f:3c:6e:af:b3:8a:48:5f:34: 70:22:3d:1f:1d:5a:98:10:f4:43:f0:a1:4f:68:b4:a8:21:ec: 8b:2f:3b:19:33:9f:96:34:d0:18:54:d9:80:ef:bc:fd:a4:a7: e3:13:0b:7b:0f:0e:bc:2f:76:46:f4:42:4f:2d:f6:0b:8e:ed: 11:f0:3d:e5:ef:a4:b0:1f:59:f3:d2:c2:50:b2:0f:be:10:b4: a4:51:71:68:b0:89:12:3c:a2:dc:1b:02:1d:ab:de:0d:11:37: cb:9d:d2:7f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAPMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjY1QUMxMTAvBgNVBAUTKEExMEY1NzgzQzhGOUE2RDk0RDI5QjRBQTkwQzU2RTAx NkJCNTE0NTYwHhcNMjUwNjE5MDQ0MjAwWhcNMjUwNjI2MDQ0MjAwWjAYMRYwFAYD VQQDEw02ODUzOTUxOS1mYzYxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv3yEweyZg6uD+dqCtplHvgUvZRILZrUV4p4chI2/kr795QEgvAboKAGJXVZh xCAzdKVwmW4ZKNHJ+qW2Gh9QPQlzM0WC1idtbuz+tCgfZF2ro1t/Gg2AehHMx3jF k2F6z7yx908aY0TjIY+9gpQRk2b8ozrdo/9MOtWhcxOCL0tWVWmXnaQ1d10luGGf 0vtM6WcTNgLGdZpRPztH9cVaPHanpgVMstVKvMaGekC9z74HT3yIE1x7xtN2yDHL PnF1vL6nnI5FIlF8ouNojz6qcJtM4/cBAIxLf9GiRgCFOJeFkfzza5ViQbovHHFE GpptIrWII94k/VdX9WFHn3kwwQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBQe2qqH 6zIOjkkz6i1KowMWkxRkMB8GA1UdIwQYMBaAFKEPV4PI+abZTSm0qpDFbgFrtRRW MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNjVBQy9DQjc0RjhCRUUx RTAxMUVFQUY2RTFFNjhDNEY5QUUwMi9vUTlYZzhqNXB0bE5LYlNxa01WdUFXdTFG RlkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL29ROVhnOGo1cHRsTktiU3FrTVZ1QVd1MUZGWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NjVBQy9DQjc0RjhCRUUxRTAxMUVFQUY2RTFFNjhDNEY5QUUwMi9vUTlYZzhqNXB0 bE5LYlNxa01WdUFXdTFGRlkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDUtQRXZW1Pz3JwEvWmHX9Rd0oEUQb0YBBRaYSazGjDL26THM70p7iv 6+OwNm38u83JQbGcUVqvBy7cv+cB5EErP9klcaceqoL6xo2rhcNSiKDJeVgG+pQx irYz4N0mfa5x6fKfJ/PPLxsNu9zRyUsVG3+qMz94fStraAkBCe4NrCzZUTymKYLt pGRJaHT+64N5cGnoKgoMtVOfPG6vs4pIXzRwIj0fHVqYEPRD8KFPaLSoIeyLLzsZ M5+WNNAYVNmA77z9pKfjEwt7Dw68L3ZG9EJPLfYLju0R8D3l76SwH1nz0sJQsg++ ELSkUXFosIkSPKLcGwIdq94NETfLndJ/ -----END CERTIFICATE-----Generated at Thu Jun 19 22:05:44 2025 by rpki-client