$ rpki-client -vvf rpki.apnic.net/member_repository/A91C0EDF/3DE39E82CFAD11EEACFA4268C4F9AE02/i2QZaGkRe5m4ebTcuvBCkLwWgQw.mft File: i2QZaGkRe5m4ebTcuvBCkLwWgQw.mft (raw, json) Hash identifier: GBGdUF7w/5Bl+d4H/Td/DfdlnDN2S1tONT5UdFqOcLw= Subject key identifier: 05:DA:F3:A3:3F:6B:78:E4:80:CA:03:E6:59:1C:B1:18:97:D8:0E:DA Authority key identifier: 8B:64:19:68:69:11:7B:99:B8:79:B4:DC:BA:F0:42:90:BC:16:81:0C Certificate issuer: /CN=A91C0EDF/serialNumber=8B64196869117B99B879B4DCBAF04290BC16810C Certificate serial: FB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/i2QZaGkRe5m4ebTcuvBCkLwWgQw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C0EDF/3DE39E82CFAD11EEACFA4268C4F9AE02/i2QZaGkRe5m4ebTcuvBCkLwWgQw.mft Manifest number: F8 Signing time: Sun 15 Jun 2025 04:22:55 +0000 Manifest this update: Sun 15 Jun 2025 04:22:54 +0000 Manifest next update: Sun 22 Jun 2025 04:22:54 +0000 Files and hashes: 1: i2QZaGkRe5m4ebTcuvBCkLwWgQw.crl (hash: D41HAapirntBEvxOncARYaKA/JS0kaUO+DpH4bG8D5M=) 2: 52333EB4CFAE11EEB928CD25C4F9AE02.roa (hash: Ed+WGj4YoSK8RoZY5/E6txkQiwmhNLhgRfvyu7U8cGA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C0EDF/3DE39E82CFAD11EEACFA4268C4F9AE02/i2QZaGkRe5m4ebTcuvBCkLwWgQw.crl rsync://rpki.apnic.net/member_repository/A91C0EDF/3DE39E82CFAD11EEACFA4268C4F9AE02/i2QZaGkRe5m4ebTcuvBCkLwWgQw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/i2QZaGkRe5m4ebTcuvBCkLwWgQw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 22 Jun 2025 04:22:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 251 (0xfb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C0EDF, serialNumber=8B64196869117B99B879B4DCBAF04290BC16810C Validity Not Before: Jun 15 04:22:54 2025 GMT Not After : Jun 22 04:22:54 2025 GMT Subject: CN=684e4a9f-734c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:27:80:01:29:bf:19:0c:c6:b3:38:74:4d:89: ae:41:af:f4:a3:84:32:7b:0d:72:36:9d:7a:a1:78: a8:f7:86:33:d1:76:c4:ae:e8:44:a6:7c:30:ed:e1: 88:fa:7e:a8:ba:52:21:66:10:92:5c:28:82:6c:62: 29:c6:b6:1d:53:23:c3:83:11:54:7b:94:01:70:db: 73:62:c1:1f:08:68:0f:7a:7a:e4:03:42:9d:10:44: 53:f2:7f:5c:20:ca:9e:91:38:b0:09:cf:bf:93:a7: a6:5a:92:c6:5c:95:f7:95:52:bd:80:28:94:3a:b2: 5c:5e:29:c3:a8:fd:10:88:0e:db:3f:62:e1:4b:30: 87:4b:df:d6:4b:6a:24:49:af:73:80:3a:d6:ee:b5: 78:24:a4:2e:48:bd:89:31:e6:68:89:68:b6:05:e2: a6:11:c7:71:88:0d:f4:d7:2a:81:86:66:0f:dc:88: e8:a1:a1:de:eb:ec:50:27:fd:13:0b:27:ae:6b:12: bc:95:57:45:b1:4e:db:20:b6:e3:a1:b9:bc:29:26: c3:c1:7e:ab:f0:ff:a6:90:78:32:00:93:9a:9b:7a: 51:aa:e0:b0:90:0c:97:38:d3:02:cf:4f:b4:3c:a1: 43:7e:40:41:14:b7:dd:ed:34:f2:80:bc:a0:f0:c9: b3:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 05:DA:F3:A3:3F:6B:78:E4:80:CA:03:E6:59:1C:B1:18:97:D8:0E:DA X509v3 Authority Key Identifier: keyid:8B:64:19:68:69:11:7B:99:B8:79:B4:DC:BA:F0:42:90:BC:16:81:0C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C0EDF/3DE39E82CFAD11EEACFA4268C4F9AE02/i2QZaGkRe5m4ebTcuvBCkLwWgQw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/i2QZaGkRe5m4ebTcuvBCkLwWgQw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C0EDF/3DE39E82CFAD11EEACFA4268C4F9AE02/i2QZaGkRe5m4ebTcuvBCkLwWgQw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 52:06:37:c4:9a:14:31:c8:8b:28:6f:23:4f:5c:f9:62:82:8b: fa:9c:82:c1:2f:04:c4:63:f2:87:fa:37:e6:91:1e:7f:f2:cc: b4:a6:d4:14:3c:a9:d7:98:2c:72:eb:17:94:bd:f9:b3:e2:79: 3f:64:a4:e4:71:12:f2:cc:6a:26:fc:c6:1a:70:99:f5:a1:1a: c7:2a:95:2b:c8:8b:db:0f:0c:29:38:92:a3:bc:1b:8b:a2:f1: 11:59:c1:b1:19:8a:74:b8:06:bd:fd:df:6f:e4:31:89:7e:8c: 63:2a:c7:af:5b:28:86:63:2c:42:ee:98:c8:92:8c:e4:ae:1a: c9:e9:e0:0f:02:a5:93:b0:dd:20:0e:5e:d9:23:75:ab:68:87: 6b:ee:ca:d6:ee:5d:40:90:e4:03:8b:e3:22:2b:6a:27:fb:2f: f6:24:73:ba:aa:2b:3f:31:3f:7d:46:34:2f:92:22:f6:2f:dc: 42:6a:43:20:98:ab:5a:d7:dd:07:65:08:c5:cf:6c:82:10:c6: 2b:11:bb:b5:13:86:d1:75:fc:d3:95:d0:03:9a:20:1b:07:65: 74:e8:f9:c0:8c:e9:e8:f9:6f:ba:1c:13:36:92:28:77:8f:52: ab:32:49:44:03:58:21:75:8b:c5:ab:b3:0c:ea:e6:1a:ee:fd: de:e1:20:fc -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAPswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzBFREYxMTAvBgNVBAUTKDhCNjQxOTY4NjkxMTdCOTlCODc5QjREQ0JBRjA0Mjkw QkMxNjgxMEMwHhcNMjUwNjE1MDQyMjU0WhcNMjUwNjIyMDQyMjU0WjAYMRYwFAYD VQQDEw02ODRlNGE5Zi03MzRjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsSeAASm/GQzGszh0TYmuQa/0o4Qyew1yNp16oXio94Yz0XbEruhEpnww7eGI +n6oulIhZhCSXCiCbGIpxrYdUyPDgxFUe5QBcNtzYsEfCGgPenrkA0KdEERT8n9c IMqekTiwCc+/k6emWpLGXJX3lVK9gCiUOrJcXinDqP0QiA7bP2LhSzCHS9/WS2ok Sa9zgDrW7rV4JKQuSL2JMeZoiWi2BeKmEcdxiA301yqBhmYP3IjooaHe6+xQJ/0T CyeuaxK8lVdFsU7bILbjobm8KSbDwX6r8P+mkHgyAJOam3pRquCwkAyXONMCz0+0 PKFDfkBBFLfd7TTygLyg8MmzTQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAXa86M/ a3jkgMoD5lkcsRiX2A7aMB8GA1UdIwQYMBaAFItkGWhpEXuZuHm03LrwQpC8FoEM MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMEVERi8zREUzOUU4MkNG QUQxMUVFQUNGQTQyNjhDNEY5QUUwMi9pMlFaYUdrUmU1bTRlYlRjdXZCQ2tMd1dn UXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2kyUVphR2tSZTVtNGViVGN1dkJDa0x3V2dRdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MEVERi8zREUzOUU4MkNGQUQxMUVFQUNGQTQyNjhDNEY5QUUwMi9pMlFaYUdrUmU1 bTRlYlRjdXZCQ2tMd1dnUXcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBSBjfEmhQxyIsobyNPXPligov6nILBLwTEY/KH+jfmkR5/8sy0ptQU PKnXmCxy6xeUvfmz4nk/ZKTkcRLyzGom/MYacJn1oRrHKpUryIvbDwwpOJKjvBuL ovERWcGxGYp0uAa9/d9v5DGJfoxjKsevWyiGYyxC7pjIkozkrhrJ6eAPAqWTsN0g Dl7ZI3WraIdr7srW7l1AkOQDi+MiK2on+y/2JHO6qis/MT99RjQvkiL2L9xCakMg mKta190HZQjFz2yCEMYrEbu1E4bRdfzTldADmiAbB2V06PnAjOno+W+6HBM2kih3 j1KrMklEA1ghdYvFq7MM6uYa7v3e4SD8 -----END CERTIFICATE-----Generated at Mon Jun 16 05:44:08 2025 by rpki-client