$ rpki-client -vvf rpki.apnic.net/member_repository/A91BCB3A/9AD6C5B8458411EAA46E7571C4F9AE02/7l7Dfz07xXWZ88c8UiJufuBQv5Y.mft File: 7l7Dfz07xXWZ88c8UiJufuBQv5Y.mft (raw, json) Hash identifier: kLyAWUuOjilXR7WPrOFe44yRu+z4boxvtBhgdjAL3aE= Subject key identifier: 17:00:34:12:66:73:50:19:90:9D:27:30:5E:9A:AE:86:2C:1C:58:78 Authority key identifier: EE:5E:C3:7F:3D:3B:C5:75:99:F3:C7:3C:52:22:6E:7E:E0:50:BF:96 Certificate issuer: /CN=A91BCB3A/serialNumber=EE5EC37F3D3BC57599F3C73C52226E7EE050BF96 Certificate serial: 0B27 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7l7Dfz07xXWZ88c8UiJufuBQv5Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BCB3A/9AD6C5B8458411EAA46E7571C4F9AE02/7l7Dfz07xXWZ88c8UiJufuBQv5Y.mft Manifest number: 0B18 Signing time: Fri 20 Jun 2025 19:15:38 +0000 Manifest this update: Fri 20 Jun 2025 19:15:37 +0000 Manifest next update: Fri 27 Jun 2025 19:15:37 +0000 Files and hashes: 1: 7l7Dfz07xXWZ88c8UiJufuBQv5Y.crl (hash: cQ+bFFWZQ5ZxQaSowOJ1MyXXnT8XEmujsRrePVmwHKw=) 2: 34492F3A13A011F0B2541067C4F9AE02.roa (hash: CB9T3Z9Kr+65LPAMP9ETCGEmFvpN7j5O01tRCMGo/Ss=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BCB3A/9AD6C5B8458411EAA46E7571C4F9AE02/7l7Dfz07xXWZ88c8UiJufuBQv5Y.crl rsync://rpki.apnic.net/member_repository/A91BCB3A/9AD6C5B8458411EAA46E7571C4F9AE02/7l7Dfz07xXWZ88c8UiJufuBQv5Y.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7l7Dfz07xXWZ88c8UiJufuBQv5Y.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 27 Jun 2025 19:15:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2855 (0xb27) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BCB3A, serialNumber=EE5EC37F3D3BC57599F3C73C52226E7EE050BF96 Validity Not Before: Jun 20 19:15:37 2025 GMT Not After : Jun 27 19:15:37 2025 GMT Subject: CN=6855b35a-3f30 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:e8:1a:36:6d:cd:40:6c:4c:d8:58:04:96:98: ee:55:55:1b:24:31:cc:e4:2b:05:a6:e4:eb:dc:53: 9f:8b:89:6c:30:92:32:b4:91:fd:78:34:ef:a4:ed: 46:df:88:36:34:cb:0c:df:c1:e2:97:ba:82:d6:ec: be:3a:9d:75:e9:95:53:e9:91:9b:b8:d4:55:2d:24: 0b:c3:c7:98:a4:77:ab:aa:cb:12:93:c1:86:28:40: d8:23:a4:28:93:17:38:a9:19:ef:ba:20:61:60:01: c4:e5:eb:57:35:82:00:47:7f:a9:38:4a:d0:42:0a: 28:e0:f0:f6:b0:07:84:12:91:10:61:d2:d4:93:7a: 3e:16:de:b1:ef:ea:0a:af:7e:1d:98:5c:c0:d2:d4: 50:bf:49:ec:8e:9e:30:b0:5a:d6:a8:a2:ec:1b:9e: 1d:ec:ec:53:be:f9:07:68:09:33:8b:98:f6:69:06: e5:5a:8c:cc:10:25:cb:85:69:30:dc:6a:e3:23:89: 54:6d:42:04:d0:26:e3:95:50:ea:01:0a:fc:69:3f: 25:ec:24:47:fd:38:0c:c0:17:f2:ab:d2:fe:a9:d4: 4e:6c:90:18:7e:73:53:0b:c5:54:4a:8b:1d:21:07: e3:da:17:e2:a4:86:44:5b:00:94:df:06:f8:3c:81: 89:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 17:00:34:12:66:73:50:19:90:9D:27:30:5E:9A:AE:86:2C:1C:58:78 X509v3 Authority Key Identifier: keyid:EE:5E:C3:7F:3D:3B:C5:75:99:F3:C7:3C:52:22:6E:7E:E0:50:BF:96 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BCB3A/9AD6C5B8458411EAA46E7571C4F9AE02/7l7Dfz07xXWZ88c8UiJufuBQv5Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7l7Dfz07xXWZ88c8UiJufuBQv5Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BCB3A/9AD6C5B8458411EAA46E7571C4F9AE02/7l7Dfz07xXWZ88c8UiJufuBQv5Y.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7a:20:00:35:e7:02:02:21:94:ab:2e:57:62:22:4c:8d:1c:9a: 1f:cb:3b:c3:fa:1e:e2:1e:23:f7:70:ac:de:38:8c:ee:8c:76: 01:fd:45:3f:7a:bf:d1:14:6e:0f:39:01:9c:c2:79:bf:a0:a5: a1:00:04:81:fe:f1:b8:3e:c4:5e:77:e1:bd:ae:86:a1:4d:bc: bd:8e:81:4e:4d:1a:0f:46:b8:fd:28:cd:41:c1:03:63:da:fb: 85:7e:31:0b:4b:6d:b1:96:d3:92:6c:1d:7b:b1:ff:f7:df:f3: c1:88:ae:22:2d:2b:09:5a:1a:da:cc:60:6e:92:66:2f:fb:54: 7e:7d:82:2a:57:b6:b9:3b:bb:2d:be:4a:7c:89:f8:75:b6:2d: ec:38:11:58:c9:d8:48:19:f3:da:e9:d2:30:d0:b7:41:41:c3: 5a:a0:07:a4:0a:05:ca:2d:06:ce:fa:86:bf:33:e2:ca:5c:d3: 80:7e:4f:41:1b:09:93:58:05:5f:0f:0b:15:39:b0:07:cd:b7: ca:b4:64:2d:b6:90:6f:96:f3:79:e9:27:b5:e5:42:25:ca:2c: 3f:a0:20:1a:eb:0c:25:22:ab:fa:68:68:c5:39:13:ab:cc:9c: b0:a2:0e:2c:ff:8b:9f:e2:12:c5:4c:3b:08:72:f3:fb:d1:a0: b2:b8:5f:5d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCycwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkNCM0ExMTAvBgNVBAUTKEVFNUVDMzdGM0QzQkM1NzU5OUYzQzczQzUyMjI2RTdF RTA1MEJGOTYwHhcNMjUwNjIwMTkxNTM3WhcNMjUwNjI3MTkxNTM3WjAYMRYwFAYD VQQDEw02ODU1YjM1YS0zZjMwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2OgaNm3NQGxM2FgElpjuVVUbJDHM5CsFpuTr3FOfi4lsMJIytJH9eDTvpO1G 34g2NMsM38Hil7qC1uy+Op116ZVT6ZGbuNRVLSQLw8eYpHerqssSk8GGKEDYI6Qo kxc4qRnvuiBhYAHE5etXNYIAR3+pOErQQgoo4PD2sAeEEpEQYdLUk3o+Ft6x7+oK r34dmFzA0tRQv0nsjp4wsFrWqKLsG54d7OxTvvkHaAkzi5j2aQblWozMECXLhWkw 3GrjI4lUbUIE0CbjlVDqAQr8aT8l7CRH/TgMwBfyq9L+qdRObJAYfnNTC8VUSosd IQfj2hfipIZEWwCU3wb4PIGJbwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBcANBJm c1AZkJ0nMF6aroYsHFh4MB8GA1UdIwQYMBaAFO5ew389O8V1mfPHPFIibn7gUL+W MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQ0IzQS85QUQ2QzVCODQ1 ODQxMUVBQTQ2RTc1NzFDNEY5QUUwMi83bDdEZnowN3hYV1o4OGM4VWlKdWZ1QlF2 NVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzdsN0RmejA3eFhXWjg4YzhVaUp1ZnVCUXY1WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC Q0IzQS85QUQ2QzVCODQ1ODQxMUVBQTQ2RTc1NzFDNEY5QUUwMi83bDdEZnowN3hY V1o4OGM4VWlKdWZ1QlF2NVkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB6IAA15wICIZSrLldiIkyNHJofyzvD+h7iHiP3cKzeOIzujHYB/UU/ er/RFG4POQGcwnm/oKWhAASB/vG4PsRed+G9roahTby9joFOTRoPRrj9KM1BwQNj 2vuFfjELS22xltOSbB17sf/33/PBiK4iLSsJWhrazGBukmYv+1R+fYIqV7a5O7st vkp8ifh1ti3sOBFYydhIGfPa6dIw0LdBQcNaoAekCgXKLQbO+oa/M+LKXNOAfk9B GwmTWAVfDwsVObAHzbfKtGQttpBvlvN56Se15UIlyiw/oCAa6wwlIqv6aGjFOROr zJywog4s/4uf4hLFTDsIcvP70aCyuF9d -----END CERTIFICATE-----Generated at Sat Jun 21 06:09:53 2025 by rpki-client