$ rpki-client -vvf rpki.apnic.net/member_repository/A91C02B3/2C8242AEBED211EB9F409076C4F9AE02/G9yKnBE9vfM_vPHBQblLu31wEno.mft File: G9yKnBE9vfM_vPHBQblLu31wEno.mft (raw, json) Hash identifier: 4Pi8KmaaZ387QhAtr0ktlOFWzlo+m9jtfMZy6ZeSUHk= Subject key identifier: AB:2E:96:35:04:9D:6B:97:81:79:23:ED:CD:5D:B5:E8:96:95:0A:74 Authority key identifier: 1B:DC:8A:9C:11:3D:BD:F3:3F:BC:F1:C1:41:B9:4B:BB:7D:70:12:7A Certificate issuer: /CN=A91C02B3/serialNumber=1BDC8A9C113DBDF33FBCF1C141B94BBB7D70127A Certificate serial: 05D7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G9yKnBE9vfM_vPHBQblLu31wEno.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C02B3/2C8242AEBED211EB9F409076C4F9AE02/G9yKnBE9vfM_vPHBQblLu31wEno.mft Manifest number: 05D2 Signing time: Mon 16 Jun 2025 22:42:17 +0000 Manifest this update: Mon 16 Jun 2025 22:42:17 +0000 Manifest next update: Mon 23 Jun 2025 22:42:17 +0000 Files and hashes: 1: G9yKnBE9vfM_vPHBQblLu31wEno.crl (hash: 0AVSJoZJsNTIF32scUHqhdCQ8m6HxZ4ngXdH5yb7zZo=) 2: 7F17B380BED411EBA325CC76C4F9AE02.roa (hash: XDIx2Mu+3w+iq57LYXThCAlha4BzO8LkP4nQjVrOfjc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C02B3/2C8242AEBED211EB9F409076C4F9AE02/G9yKnBE9vfM_vPHBQblLu31wEno.crl rsync://rpki.apnic.net/member_repository/A91C02B3/2C8242AEBED211EB9F409076C4F9AE02/G9yKnBE9vfM_vPHBQblLu31wEno.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G9yKnBE9vfM_vPHBQblLu31wEno.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 23 Jun 2025 22:42:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1495 (0x5d7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C02B3, serialNumber=1BDC8A9C113DBDF33FBCF1C141B94BBB7D70127A Validity Not Before: Jun 16 22:42:17 2025 GMT Not After : Jun 23 22:42:17 2025 GMT Subject: CN=68509dc9-b02e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:00:5a:75:13:65:0e:cf:bf:1c:5a:0c:72:0f: 11:65:5a:ca:e1:2e:c7:c9:95:22:9a:5c:37:e2:c7: 5a:95:63:5e:31:35:0a:2d:03:08:8a:1b:cd:5c:ef: c8:7c:37:02:8f:62:c0:5b:74:e2:45:36:26:69:48: 40:4a:48:ce:a0:16:51:6d:9c:3d:67:1e:e7:95:e3: 97:55:6f:54:62:c2:ec:f7:f0:dc:d1:69:19:7e:ac: f3:3d:3f:be:1a:6d:74:aa:0c:36:28:bb:46:bc:04: a8:12:2a:fe:2c:27:b4:c9:40:ce:b4:99:1a:d1:52: 01:e9:74:8c:66:ca:ea:2a:81:41:53:1a:51:68:0e: 1e:d0:d8:29:d2:28:be:89:35:35:07:87:ee:49:ed: 86:74:12:9b:26:cf:38:80:cc:c4:ad:b2:33:f7:33: 2c:41:02:fb:14:27:db:54:7d:40:1d:73:9c:8f:58: e4:0e:d3:ae:02:0a:30:72:6a:b7:a8:50:bb:b4:6d: 80:d5:4d:67:c3:26:a5:04:8d:02:e8:80:90:40:77: c9:47:ce:d0:52:df:41:ca:47:7a:2a:88:c6:5a:13: 2b:50:e5:8c:3d:f2:bf:6a:dc:7d:7c:ac:b0:6f:d5: 29:d0:e9:9e:de:c0:29:7f:b5:d5:87:cd:65:f3:08: 68:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AB:2E:96:35:04:9D:6B:97:81:79:23:ED:CD:5D:B5:E8:96:95:0A:74 X509v3 Authority Key Identifier: keyid:1B:DC:8A:9C:11:3D:BD:F3:3F:BC:F1:C1:41:B9:4B:BB:7D:70:12:7A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C02B3/2C8242AEBED211EB9F409076C4F9AE02/G9yKnBE9vfM_vPHBQblLu31wEno.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G9yKnBE9vfM_vPHBQblLu31wEno.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C02B3/2C8242AEBED211EB9F409076C4F9AE02/G9yKnBE9vfM_vPHBQblLu31wEno.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 62:b5:c7:ab:bb:50:6f:75:f2:c8:c3:3b:fe:68:35:8c:d8:86: fd:1f:e1:c1:0f:fa:c6:4c:70:5a:59:a7:0d:2d:17:c4:17:b8: ea:1c:e7:17:16:9c:fb:af:a9:61:02:bd:dc:b9:6a:eb:f8:5a: c9:36:9e:7b:7f:96:64:f8:86:5c:34:9e:5f:cd:33:d4:5d:88: 59:8e:39:72:9b:55:3c:7b:7a:30:80:62:83:de:5e:ed:bf:29: e8:a1:23:6a:a9:24:e3:15:1b:e9:b1:6f:fd:c3:73:25:39:78: f1:b8:a3:32:d7:91:25:45:b3:b1:ee:02:6e:59:11:15:ec:60: bc:91:74:3c:6f:73:c5:be:24:bf:fa:32:ac:2d:d7:51:e8:b9: aa:da:36:81:48:3f:bd:85:99:cd:c9:3a:05:08:eb:af:f6:77: 55:f4:27:a3:a5:22:23:7b:76:db:03:c7:e8:bf:a7:c3:87:e7: 5c:3b:be:f2:bc:74:60:8a:94:2c:65:5f:5e:fc:67:ed:bd:76: 6e:c1:8d:df:55:d1:5c:40:0d:2f:0c:35:e7:13:23:64:f6:b6: be:3f:e2:5d:12:da:58:fa:2a:15:f7:e8:03:36:6c:6c:41:53: 6f:1c:35:11:22:db:05:d4:bc:75:d8:d2:46:9e:f8:a0:ae:80: d7:1d:3e:d9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBdcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzAyQjMxMTAvBgNVBAUTKDFCREM4QTlDMTEzREJERjMzRkJDRjFDMTQxQjk0QkJC N0Q3MDEyN0EwHhcNMjUwNjE2MjI0MjE3WhcNMjUwNjIzMjI0MjE3WjAYMRYwFAYD VQQDEw02ODUwOWRjOS1iMDJlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqABadRNlDs+/HFoMcg8RZVrK4S7HyZUimlw34sdalWNeMTUKLQMIihvNXO/I fDcCj2LAW3TiRTYmaUhASkjOoBZRbZw9Zx7nleOXVW9UYsLs9/Dc0WkZfqzzPT++ Gm10qgw2KLtGvASoEir+LCe0yUDOtJka0VIB6XSMZsrqKoFBUxpRaA4e0Ngp0ii+ iTU1B4fuSe2GdBKbJs84gMzErbIz9zMsQQL7FCfbVH1AHXOcj1jkDtOuAgowcmq3 qFC7tG2A1U1nwyalBI0C6ICQQHfJR87QUt9Bykd6KojGWhMrUOWMPfK/atx9fKyw b9Up0Ome3sApf7XVh81l8whovwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKsuljUE nWuXgXkj7c1dteiWlQp0MB8GA1UdIwQYMBaAFBvcipwRPb3zP7zxwUG5S7t9cBJ6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMDJCMy8yQzgyNDJBRUJF RDIxMUVCOUY0MDkwNzZDNEY5QUUwMi9HOXlLbkJFOXZmTV92UEhCUWJsTHUzMXdF bm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0c5eUtuQkU5dmZNX3ZQSEJRYmxMdTMxd0Vuby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MDJCMy8yQzgyNDJBRUJFRDIxMUVCOUY0MDkwNzZDNEY5QUUwMi9HOXlLbkJFOXZm TV92UEhCUWJsTHUzMXdFbm8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBitceru1BvdfLIwzv+aDWM2Ib9H+HBD/rGTHBaWacNLRfEF7jqHOcX Fpz7r6lhAr3cuWrr+FrJNp57f5Zk+IZcNJ5fzTPUXYhZjjlym1U8e3owgGKD3l7t vynooSNqqSTjFRvpsW/9w3MlOXjxuKMy15ElRbOx7gJuWREV7GC8kXQ8b3PFviS/ +jKsLddR6Lmq2jaBSD+9hZnNyToFCOuv9ndV9CejpSIje3bbA8fov6fDh+dcO77y vHRgipQsZV9e/GftvXZuwY3fVdFcQA0vDDXnEyNk9ra+P+JdEtpY+ioV9+gDNmxs QVNvHDURItsF1Lx12NJGnvigroDXHT7Z -----END CERTIFICATE-----Generated at Tue Jun 17 20:01:48 2025 by rpki-client