$ rpki-client -vvf rpki.apnic.net/member_repository/A91B7DCB/F83AC494294411F0AE1ABC74C4F9AE02/tU-K0c7KwTb8r0eS6_0A5o6h02g.mft File: tU-K0c7KwTb8r0eS6_0A5o6h02g.mft (raw, json) Hash identifier: aedCILnHc1yKXGo87C4TfdsKkkBCRrUzqfHX1Z4tj0k= Subject key identifier: ED:7B:3C:72:A4:7B:ED:6B:90:7E:9F:86:68:1D:BF:AC:D2:A0:CD:90 Authority key identifier: B5:4F:8A:D1:CE:CA:C1:36:FC:AF:47:92:EB:FD:00:E6:8E:A1:D3:68 Certificate issuer: /CN=A91B7DCB/serialNumber=B54F8AD1CECAC136FCAF4792EBFD00E68EA1D368 Certificate serial: 18 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/tU-K0c7KwTb8r0eS6_0A5o6h02g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B7DCB/F83AC494294411F0AE1ABC74C4F9AE02/tU-K0c7KwTb8r0eS6_0A5o6h02g.mft Manifest number: 17 Signing time: Thu 19 Jun 2025 07:19:00 +0000 Manifest this update: Thu 19 Jun 2025 07:18:59 +0000 Manifest next update: Thu 26 Jun 2025 07:18:59 +0000 Files and hashes: 1: tU-K0c7KwTb8r0eS6_0A5o6h02g.crl (hash: XxZ2XBW8EiWwFPZlgQkxSfleEySplRRrFguip7FxKPg=) 2: D470A60E294511F0B1412377C4F9AE02.roa (hash: R5e5Pbe0gCRILBx2wr55E5wPwG2ILhIOGtJI6e+r29g=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B7DCB/F83AC494294411F0AE1ABC74C4F9AE02/tU-K0c7KwTb8r0eS6_0A5o6h02g.crl rsync://rpki.apnic.net/member_repository/A91B7DCB/F83AC494294411F0AE1ABC74C4F9AE02/tU-K0c7KwTb8r0eS6_0A5o6h02g.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/tU-K0c7KwTb8r0eS6_0A5o6h02g.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 26 Jun 2025 07:18:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 24 (0x18) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B7DCB, serialNumber=B54F8AD1CECAC136FCAF4792EBFD00E68EA1D368 Validity Not Before: Jun 19 07:18:59 2025 GMT Not After : Jun 26 07:18:59 2025 GMT Subject: CN=6853b9e3-edc7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:b4:bb:b5:33:97:74:f3:4e:d6:dd:3a:9f:9a: 1c:37:d5:46:f4:e1:5c:09:ba:b9:e6:30:d3:dd:2b: 69:f7:55:fd:b7:22:d2:f4:ea:ad:b8:81:3e:32:1f: 6c:59:8e:52:37:35:79:d7:58:7a:e3:ee:4b:d9:70: fd:36:ae:be:f5:2a:de:4a:b1:88:fb:89:d3:bb:b5: a4:48:13:c1:9b:24:56:66:8c:66:ec:0f:63:8e:75: 09:dd:6d:be:03:5f:4e:5e:63:40:85:0b:d6:3a:7d: cc:32:98:21:70:b7:6c:a7:47:92:18:73:81:27:36: 20:43:40:6a:89:2f:95:a9:5a:ac:f4:10:35:97:43: 7c:fd:50:05:5b:72:0d:d5:32:75:db:f1:b6:1a:82: 26:f0:08:f2:30:4a:f4:e1:34:68:47:fb:fc:c4:d8: b5:da:96:ab:7f:58:e6:f1:9f:1b:33:02:cf:35:3e: 38:eb:bd:a7:ef:97:64:bf:d3:bb:ff:c7:f2:2a:96: a7:12:ec:d0:49:84:a6:5c:99:d4:ef:60:8d:c5:0f: ba:5e:a3:23:ba:3e:2d:92:4b:2f:47:d8:9c:7f:3b: c3:fa:32:82:c1:95:37:6f:79:63:90:37:3e:0d:0a: 14:65:9f:a6:ab:1d:db:02:da:cd:ab:58:1f:61:6c: e9:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: ED:7B:3C:72:A4:7B:ED:6B:90:7E:9F:86:68:1D:BF:AC:D2:A0:CD:90 X509v3 Authority Key Identifier: keyid:B5:4F:8A:D1:CE:CA:C1:36:FC:AF:47:92:EB:FD:00:E6:8E:A1:D3:68 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B7DCB/F83AC494294411F0AE1ABC74C4F9AE02/tU-K0c7KwTb8r0eS6_0A5o6h02g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/tU-K0c7KwTb8r0eS6_0A5o6h02g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B7DCB/F83AC494294411F0AE1ABC74C4F9AE02/tU-K0c7KwTb8r0eS6_0A5o6h02g.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4a:a8:59:cb:0d:cb:cf:75:b9:4c:79:75:88:0f:d8:97:6b:62: f9:09:af:48:44:5e:54:6d:d3:5e:68:de:a6:39:32:2d:41:b5: 3b:25:01:97:5e:f3:41:9c:51:b7:ad:eb:61:88:f4:2f:7c:75: d8:8e:38:b5:15:4b:e6:27:a7:ee:74:9a:13:01:ec:a7:f2:5e: 1f:89:7d:ec:67:20:25:af:a4:d5:4d:69:25:a3:2c:55:d3:a5: 52:83:29:f2:b5:07:20:b0:bd:1f:ea:33:de:26:50:3f:25:18: 6f:44:a2:bd:13:4c:a3:83:eb:3f:8c:cf:12:0b:57:f0:a3:7f: 8d:f5:8d:64:21:23:df:7e:7f:05:44:ef:4d:8c:f2:73:57:69: e4:08:7b:ee:b6:12:a7:ed:a3:0e:5c:27:bc:18:73:c5:f6:a0: 52:32:b2:f8:37:c6:1c:f3:8b:e1:41:5e:04:89:63:33:c9:bc: 51:b7:48:6c:93:02:e8:80:f8:b5:07:e9:85:d6:0c:ef:24:62: d6:d6:5f:66:47:da:45:0d:e2:b0:a9:a6:ca:f4:a6:fe:71:62: d4:40:b0:80:a8:fb:5d:b8:2c:3f:89:41:d5:dc:96:6d:6a:37: 78:f5:73:84:3b:ef:0d:cf:29:8e:aa:b7:17:96:2c:55:b8:e3: 47:7b:3a:ca -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBGDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC N0RDQjExMC8GA1UEBRMoQjU0RjhBRDFDRUNBQzEzNkZDQUY0NzkyRUJGRDAwRTY4 RUExRDM2ODAeFw0yNTA2MTkwNzE4NTlaFw0yNTA2MjYwNzE4NTlaMBgxFjAUBgNV BAMTDTY4NTNiOWUzLWVkYzcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDatLu1M5d0807W3Tqfmhw31Ub04VwJurnmMNPdK2n3Vf23ItL06q24gT4yH2xZ jlI3NXnXWHrj7kvZcP02rr71Kt5KsYj7idO7taRIE8GbJFZmjGbsD2OOdQndbb4D X05eY0CFC9Y6fcwymCFwt2ynR5IYc4EnNiBDQGqJL5WpWqz0EDWXQ3z9UAVbcg3V MnXb8bYagibwCPIwSvThNGhH+/zE2LXalqt/WObxnxszAs81Pjjrvafvl2S/07v/ x/IqlqcS7NBJhKZcmdTvYI3FD7peoyO6Pi2SSy9H2Jx/O8P6MoLBlTdveWOQNz4N ChRln6arHdsC2s2rWB9hbOmhAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU7Xs8cqR7 7WuQfp+GaB2/rNKgzZAwHwYDVR0jBBgwFoAUtU+K0c7KwTb8r0eS6/0A5o6h02gw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUI3RENCL0Y4M0FDNDk0Mjk0 NDExRjBBRTFBQkM3NEM0RjlBRTAyL3RVLUswYzdLd1RiOHIwZVM2XzBBNW82aDAy Zy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvdFUtSzBjN0t3VGI4cjBlUzZfMEE1bzZoMDJnLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUI3 RENCL0Y4M0FDNDk0Mjk0NDExRjBBRTFBQkM3NEM0RjlBRTAyL3RVLUswYzdLd1Ri OHIwZVM2XzBBNW82aDAyZy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAEqoWcsNy891uUx5dYgP2JdrYvkJr0hEXlRt015o3qY5Mi1BtTslAZde 80GcUbet62GI9C98ddiOOLUVS+Ynp+50mhMB7KfyXh+JfexnICWvpNVNaSWjLFXT pVKDKfK1ByCwvR/qM94mUD8lGG9Eor0TTKOD6z+MzxILV/Cjf431jWQhI99+fwVE 702M8nNXaeQIe+62Eqftow5cJ7wYc8X2oFIysvg3xhzzi+FBXgSJYzPJvFG3SGyT AuiA+LUH6YXWDO8kYtbWX2ZH2kUN4rCppsr0pv5xYtRAsICo+124LD+JQdXclm1q N3j1c4Q77w3PKY6qtxeWLFW440d7Oso= -----END CERTIFICATE-----Generated at Thu Jun 19 22:36:04 2025 by rpki-client