$ rpki-client -vvf rpki.apnic.net/member_repository/A91C0372/20A54FC89D8511EE9181C121C4F9AE02/8psj6k4RTNycptN_Xvee9MNccoI.mft File: 8psj6k4RTNycptN_Xvee9MNccoI.mft (raw, json) Hash identifier: iRpBrYjufTxrywPfvj189Cqoe0b3IpXkzcMao6VSTgM= Subject key identifier: A9:86:61:80:C3:8F:DD:43:B9:BC:AA:67:91:2D:82:AE:32:A8:29:04 Authority key identifier: F2:9B:23:EA:4E:11:4C:DC:9C:A6:D3:7F:5E:F7:9E:F4:C3:5C:72:82 Certificate issuer: /CN=A91C0372/serialNumber=F29B23EA4E114CDC9CA6D37F5EF79EF4C35C7282 Certificate serial: 011D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8psj6k4RTNycptN_Xvee9MNccoI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C0372/20A54FC89D8511EE9181C121C4F9AE02/8psj6k4RTNycptN_Xvee9MNccoI.mft Manifest number: 011A Signing time: Tue 17 Jun 2025 03:51:38 +0000 Manifest this update: Tue 17 Jun 2025 03:51:38 +0000 Manifest next update: Tue 24 Jun 2025 03:51:38 +0000 Files and hashes: 1: 8psj6k4RTNycptN_Xvee9MNccoI.crl (hash: ViKRlfNImOhr4PWfG4IP1jThZCzpk7bgi3cLwoBbhC8=) 2: 4B42335C9D8711EEAF2A6E25C4F9AE02.roa (hash: fBtaOlMCOFGQQtGdBagxQGnrYFNg/qX3d4dMpzhuZnA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C0372/20A54FC89D8511EE9181C121C4F9AE02/8psj6k4RTNycptN_Xvee9MNccoI.crl rsync://rpki.apnic.net/member_repository/A91C0372/20A54FC89D8511EE9181C121C4F9AE02/8psj6k4RTNycptN_Xvee9MNccoI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8psj6k4RTNycptN_Xvee9MNccoI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 24 Jun 2025 03:51:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 285 (0x11d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C0372, serialNumber=F29B23EA4E114CDC9CA6D37F5EF79EF4C35C7282 Validity Not Before: Jun 17 03:51:38 2025 GMT Not After : Jun 24 03:51:38 2025 GMT Subject: CN=6850e64a-c333 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ef:bc:d9:de:d6:b3:11:28:ae:b5:91:29:2d:90: 58:8f:c3:79:75:a9:c8:4c:e4:82:3a:ed:dd:da:b9: 2c:63:e2:ed:56:c2:82:16:ea:c9:d2:5e:01:63:82: 91:c1:d9:8f:36:a6:06:3e:9d:8d:eb:50:06:b4:62: 1d:ce:d2:f6:dc:65:83:e4:fb:51:14:fe:07:4d:c0: c0:09:a6:fb:97:81:8c:13:52:29:fe:49:82:79:cb: cd:7a:e9:ff:a5:b9:01:8c:fc:40:82:ab:c3:c9:28: fd:63:4e:87:53:1e:21:52:b6:c3:38:f6:01:50:cf: 03:97:d4:61:96:0d:a5:90:cd:b7:84:4b:3e:34:53: dc:20:b7:75:cd:8d:cd:65:df:d4:dc:9e:15:15:bb: 0f:8c:cd:fa:72:6a:52:d8:09:bd:84:bd:5f:d6:e9: b7:13:7c:cf:e0:6a:ee:97:b3:7e:04:b9:ff:a6:c0: 0d:75:64:fe:5c:0a:0c:b3:91:8f:20:0d:4f:3d:84: 05:cf:04:e6:4f:22:a0:f5:fc:75:ba:69:18:5f:7d: 24:9b:c9:31:41:ec:11:c8:6f:da:0b:83:53:56:77: 5b:79:de:05:35:5d:da:da:a6:e1:5c:52:36:4f:3e: 92:80:c6:98:f3:f6:a0:6f:7e:68:bd:e9:35:7e:af: 74:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A9:86:61:80:C3:8F:DD:43:B9:BC:AA:67:91:2D:82:AE:32:A8:29:04 X509v3 Authority Key Identifier: keyid:F2:9B:23:EA:4E:11:4C:DC:9C:A6:D3:7F:5E:F7:9E:F4:C3:5C:72:82 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C0372/20A54FC89D8511EE9181C121C4F9AE02/8psj6k4RTNycptN_Xvee9MNccoI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8psj6k4RTNycptN_Xvee9MNccoI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C0372/20A54FC89D8511EE9181C121C4F9AE02/8psj6k4RTNycptN_Xvee9MNccoI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 70:0d:7f:48:48:4f:da:28:51:fe:1a:7f:6a:6a:ec:f5:9b:ba: 47:2a:1c:dd:0b:30:6f:15:b1:0f:54:33:5d:09:cf:65:e9:09: 81:5f:50:c6:61:30:4f:4f:a2:ac:58:89:e4:eb:12:d3:a4:ef: 36:54:c2:79:5e:ed:24:df:bb:c5:e3:ac:e8:05:f4:cc:7f:a5: 10:89:94:15:85:e5:53:8d:af:41:92:d9:70:b3:7a:56:74:30: 5e:5a:b6:98:c8:b1:61:62:16:55:7b:bf:5a:fc:81:ae:05:8e: 14:e8:59:1c:ce:43:97:e4:d9:bf:62:74:7a:e8:00:c2:eb:68: 66:c4:f4:53:d5:7a:f5:9b:ec:36:f4:64:df:86:4a:85:e0:5c: f6:59:5e:aa:6a:a2:ad:1a:5b:43:01:18:8d:26:36:1d:c0:a2: f7:31:0a:df:1f:9d:5f:63:7e:aa:a5:6c:17:d0:71:ac:ec:8f: 3f:9c:88:32:47:87:f3:bc:fa:cc:26:14:6f:6e:96:b1:48:cf: 5f:19:27:84:c0:80:10:54:52:a4:57:b0:0d:9e:d9:72:54:06: 26:55:2a:87:1e:78:d0:17:f4:e3:10:2c:7d:2b:eb:41:56:b6: e4:d8:3b:d0:83:09:05:20:c4:48:fe:0a:a4:da:df:db:23:93: 05:2e:7e:14 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAR0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzAzNzIxMTAvBgNVBAUTKEYyOUIyM0VBNEUxMTRDREM5Q0E2RDM3RjVFRjc5RUY0 QzM1QzcyODIwHhcNMjUwNjE3MDM1MTM4WhcNMjUwNjI0MDM1MTM4WjAYMRYwFAYD VQQDEw02ODUwZTY0YS1jMzMzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA77zZ3tazESiutZEpLZBYj8N5danITOSCOu3d2rksY+LtVsKCFurJ0l4BY4KR wdmPNqYGPp2N61AGtGIdztL23GWD5PtRFP4HTcDACab7l4GME1Ip/kmCecvNeun/ pbkBjPxAgqvDySj9Y06HUx4hUrbDOPYBUM8Dl9Rhlg2lkM23hEs+NFPcILd1zY3N Zd/U3J4VFbsPjM36cmpS2Am9hL1f1um3E3zP4Grul7N+BLn/psANdWT+XAoMs5GP IA1PPYQFzwTmTyKg9fx1umkYX30km8kxQewRyG/aC4NTVndbed4FNV3a2qbhXFI2 Tz6SgMaY8/agb35ovek1fq90WwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKmGYYDD j91DubyqZ5Etgq4yqCkEMB8GA1UdIwQYMBaAFPKbI+pOEUzcnKbTf173nvTDXHKC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMDM3Mi8yMEE1NEZDODlE ODUxMUVFOTE4MUMxMjFDNEY5QUUwMi84cHNqNms0UlROeWNwdE5fWHZlZTlNTmNj b0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzhwc2o2azRSVE55Y3B0Tl9YdmVlOU1OY2NvSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MDM3Mi8yMEE1NEZDODlEODUxMUVFOTE4MUMxMjFDNEY5QUUwMi84cHNqNms0UlRO eWNwdE5fWHZlZTlNTmNjb0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBwDX9ISE/aKFH+Gn9qauz1m7pHKhzdCzBvFbEPVDNdCc9l6QmBX1DG YTBPT6KsWInk6xLTpO82VMJ5Xu0k37vF46zoBfTMf6UQiZQVheVTja9Bktlws3pW dDBeWraYyLFhYhZVe79a/IGuBY4U6FkczkOX5Nm/YnR66ADC62hmxPRT1Xr1m+w2 9GTfhkqF4Fz2WV6qaqKtGltDARiNJjYdwKL3MQrfH51fY36qpWwX0HGs7I8/nIgy R4fzvPrMJhRvbpaxSM9fGSeEwIAQVFKkV7ANntlyVAYmVSqHHnjQF/TjECx9K+tB Vrbk2DvQgwkFIMRI/gqk2t/bI5MFLn4U -----END CERTIFICATE-----Generated at Thu Jun 19 06:00:17 2025 by rpki-client