$ rpki-client -vvf rpki.apnic.net/member_repository/A91BB1F3/4297D05245AE11EFB6237870C4F9AE02/dQ-le1kVZTnLFuVKYKbO21sQ654.mft File: dQ-le1kVZTnLFuVKYKbO21sQ654.mft (raw, json) Hash identifier: kBVolZR2f2tNTpUqj+xMZ0j6zQ4AU0go710p7DNcG2g= Subject key identifier: 4B:9C:80:AA:A0:A1:3A:DA:86:B0:9B:FA:DC:97:AA:A8:6E:4C:32:35 Authority key identifier: 75:0F:A5:7B:59:15:65:39:CB:16:E5:4A:60:A6:CE:DB:5B:10:EB:9E Certificate issuer: /CN=A91BB1F3/serialNumber=750FA57B59156539CB16E54A60A6CEDB5B10EB9E Certificate serial: AF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dQ-le1kVZTnLFuVKYKbO21sQ654.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BB1F3/4297D05245AE11EFB6237870C4F9AE02/dQ-le1kVZTnLFuVKYKbO21sQ654.mft Manifest number: AD Signing time: Thu 19 Jun 2025 05:25:53 +0000 Manifest this update: Thu 19 Jun 2025 05:25:53 +0000 Manifest next update: Thu 26 Jun 2025 05:25:53 +0000 Files and hashes: 1: dQ-le1kVZTnLFuVKYKbO21sQ654.crl (hash: aHwRRX8ctVS7cVAjMc0En5SnvzWS+9NMvMgdSMWiCt8=) 2: F9E4E14645AE11EF8870C771C4F9AE02.roa (hash: R0ve1rGoHZXsOYQBScXwsDxNaaTbtMNOWotF4DpFkvU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BB1F3/4297D05245AE11EFB6237870C4F9AE02/dQ-le1kVZTnLFuVKYKbO21sQ654.crl rsync://rpki.apnic.net/member_repository/A91BB1F3/4297D05245AE11EFB6237870C4F9AE02/dQ-le1kVZTnLFuVKYKbO21sQ654.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dQ-le1kVZTnLFuVKYKbO21sQ654.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 26 Jun 2025 05:25:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 175 (0xaf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BB1F3, serialNumber=750FA57B59156539CB16E54A60A6CEDB5B10EB9E Validity Not Before: Jun 19 05:25:53 2025 GMT Not After : Jun 26 05:25:53 2025 GMT Subject: CN=68539f61-2099 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:87:8a:f8:06:15:a1:d5:95:9d:63:e4:48:07: 23:72:1a:4a:2f:6d:69:b3:ca:5b:a8:e8:99:42:e2: 2f:ef:e6:9e:22:30:1a:36:d6:95:17:b6:df:44:8d: f9:ee:f5:f1:63:68:ce:64:1c:41:a2:61:c1:d8:be: 71:50:7a:f8:2b:6f:6e:47:7f:d5:ed:fc:8e:e2:f4: a2:51:db:77:75:90:3f:eb:ec:f4:32:7c:e6:be:17: d2:1f:c7:16:37:a0:d7:95:cd:d5:35:e9:39:c4:07: 8d:af:7e:d6:b3:8b:e2:61:39:c3:8c:a8:c4:fb:b0: ae:4f:1a:3c:08:bb:a6:0a:83:77:8b:b6:87:9e:75: e0:1d:74:e3:9b:56:10:93:df:d1:18:35:00:e6:0b: 2b:45:85:8d:7e:89:5d:be:f2:b9:99:23:09:00:7f: 93:f1:d1:29:07:0e:0f:c4:29:c0:92:1c:c6:af:7d: 20:aa:b3:95:50:18:16:9b:6c:8f:26:38:49:1a:58: 6d:2a:e4:e6:4e:0e:5f:c4:b5:db:0e:08:30:67:e9: 5f:52:cf:24:14:5f:c9:55:16:cc:47:1a:87:8f:c2: 99:a1:1c:d5:a6:a0:4b:0b:ea:ad:54:55:80:6a:45: 95:67:79:79:b9:30:2e:54:d1:16:63:bb:cd:33:14: 86:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4B:9C:80:AA:A0:A1:3A:DA:86:B0:9B:FA:DC:97:AA:A8:6E:4C:32:35 X509v3 Authority Key Identifier: keyid:75:0F:A5:7B:59:15:65:39:CB:16:E5:4A:60:A6:CE:DB:5B:10:EB:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BB1F3/4297D05245AE11EFB6237870C4F9AE02/dQ-le1kVZTnLFuVKYKbO21sQ654.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dQ-le1kVZTnLFuVKYKbO21sQ654.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BB1F3/4297D05245AE11EFB6237870C4F9AE02/dQ-le1kVZTnLFuVKYKbO21sQ654.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 35:bd:e3:ae:dc:c0:b7:6f:8f:be:7b:08:f4:29:82:ed:8e:14: d8:5d:aa:32:18:7e:e8:23:78:5f:2d:68:4d:ea:6e:4f:e6:cf: ee:ba:2b:62:87:e1:36:2f:30:3b:20:ae:5f:28:5f:d0:32:71: 4d:ba:5b:a8:1e:70:6c:98:56:0c:48:39:f2:c7:6b:58:84:95: aa:8d:dd:f6:82:f5:14:36:3e:54:5f:f5:c1:39:8b:d6:48:60: 94:a3:6e:57:82:ae:5b:a6:dd:35:a8:7d:91:00:d7:dd:53:03: be:e2:82:8c:a4:b4:d3:a1:f9:c5:71:c4:de:c8:fb:1f:ef:60: 2a:c7:82:e1:cd:89:f6:ad:d2:9a:4c:f3:92:a6:53:55:f3:34: 46:96:26:8b:74:95:7c:1f:78:8e:e8:0b:21:c4:23:40:6e:c3: 22:89:ba:4e:c9:6d:f5:ae:c0:57:21:00:74:7b:2f:8b:30:38: 0d:77:aa:d1:44:c8:20:09:cc:d2:9f:04:f7:e1:d2:f5:3e:1d: 46:06:3c:b3:fd:9d:a0:81:3a:63:d4:9e:e3:1b:07:47:17:7f: 74:f7:b3:32:26:e2:0f:be:96:81:6f:44:31:31:15:fc:a6:3b: d7:a5:43:d3:1c:bf:75:15:6b:3c:12:99:e7:b0:8e:2c:55:59: 8f:ec:28:8d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAK8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkIxRjMxMTAvBgNVBAUTKDc1MEZBNTdCNTkxNTY1MzlDQjE2RTU0QTYwQTZDRURC NUIxMEVCOUUwHhcNMjUwNjE5MDUyNTUzWhcNMjUwNjI2MDUyNTUzWjAYMRYwFAYD VQQDEw02ODUzOWY2MS0yMDk5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzYeK+AYVodWVnWPkSAcjchpKL21ps8pbqOiZQuIv7+aeIjAaNtaVF7bfRI35 7vXxY2jOZBxBomHB2L5xUHr4K29uR3/V7fyO4vSiUdt3dZA/6+z0MnzmvhfSH8cW N6DXlc3VNek5xAeNr37Ws4viYTnDjKjE+7CuTxo8CLumCoN3i7aHnnXgHXTjm1YQ k9/RGDUA5gsrRYWNfoldvvK5mSMJAH+T8dEpBw4PxCnAkhzGr30gqrOVUBgWm2yP JjhJGlhtKuTmTg5fxLXbDggwZ+lfUs8kFF/JVRbMRxqHj8KZoRzVpqBLC+qtVFWA akWVZ3l5uTAuVNEWY7vNMxSGlQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEucgKqg oTrahrCb+tyXqqhuTDI1MB8GA1UdIwQYMBaAFHUPpXtZFWU5yxblSmCmzttbEOue MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQjFGMy80Mjk3RDA1MjQ1 QUUxMUVGQjYyMzc4NzBDNEY5QUUwMi9kUS1sZTFrVlpUbkxGdVZLWUtiTzIxc1E2 NTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2RRLWxlMWtWWlRuTEZ1VktZS2JPMjFzUTY1NC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC QjFGMy80Mjk3RDA1MjQ1QUUxMUVGQjYyMzc4NzBDNEY5QUUwMi9kUS1sZTFrVlpU bkxGdVZLWUtiTzIxc1E2NTQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA1veOu3MC3b4++ewj0KYLtjhTYXaoyGH7oI3hfLWhN6m5P5s/uuiti h+E2LzA7IK5fKF/QMnFNuluoHnBsmFYMSDnyx2tYhJWqjd32gvUUNj5UX/XBOYvW SGCUo25Xgq5bpt01qH2RANfdUwO+4oKMpLTTofnFccTeyPsf72Aqx4LhzYn2rdKa TPOSplNV8zRGliaLdJV8H3iO6AshxCNAbsMiibpOyW31rsBXIQB0ey+LMDgNd6rR RMggCczSnwT34dL1Ph1GBjyz/Z2ggTpj1J7jGwdHF39097MyJuIPvpaBb0QxMRX8 pjvXpUPTHL91FWs8EpnnsI4sVVmP7CiN -----END CERTIFICATE-----Generated at Fri Jun 20 22:43:31 2025 by rpki-client