$ rpki-client -vvf rpki.apnic.net/member_repository/A91C1C49/C49F75F81D9F11E29EFBA29008B02CD2/MJHb_j66tWY-h63G6ZX4gtOyZMo.mft File: MJHb_j66tWY-h63G6ZX4gtOyZMo.mft (raw, json) Hash identifier: bdqdyS/GJ0WfwZS3Eivc3l6/GYiyikhCd8bqo1k+szE= Subject key identifier: D8:8C:38:E0:E2:6D:FB:F2:F7:49:C9:AE:09:1E:A2:97:96:A4:4E:DB Authority key identifier: 30:91:DB:FE:3E:BA:B5:66:3E:87:AD:C6:E9:95:F8:82:D3:B2:64:CA Certificate issuer: /CN=A91C1C49/serialNumber=3091DBFE3EBAB5663E87ADC6E995F882D3B264CA Certificate serial: 0C21 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MJHb_j66tWY-h63G6ZX4gtOyZMo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C1C49/C49F75F81D9F11E29EFBA29008B02CD2/MJHb_j66tWY-h63G6ZX4gtOyZMo.mft Manifest number: 40AA Signing time: Mon 16 Jun 2025 15:06:12 +0000 Manifest this update: Mon 16 Jun 2025 15:06:11 +0000 Manifest next update: Mon 23 Jun 2025 15:06:11 +0000 Files and hashes: 1: MJHb_j66tWY-h63G6ZX4gtOyZMo.crl (hash: lTqtj9UObS87dS8tUI/eN0E1vOKPcEunY065KO8Ajwo=) 2: 8941689CB44911EA92F1F886C4F9AE02.roa (hash: 4Z25oEXKd2i0RXY7kF9Yj9e1Ufs0rVahsGX9EeBSaFg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C1C49/C49F75F81D9F11E29EFBA29008B02CD2/MJHb_j66tWY-h63G6ZX4gtOyZMo.crl rsync://rpki.apnic.net/member_repository/A91C1C49/C49F75F81D9F11E29EFBA29008B02CD2/MJHb_j66tWY-h63G6ZX4gtOyZMo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MJHb_j66tWY-h63G6ZX4gtOyZMo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 23 Jun 2025 15:06:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3105 (0xc21) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C1C49, serialNumber=3091DBFE3EBAB5663E87ADC6E995F882D3B264CA Validity Not Before: Jun 16 15:06:11 2025 GMT Not After : Jun 23 15:06:11 2025 GMT Subject: CN=685032e3-e84b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:78:e6:b1:2a:5e:de:f3:26:15:9e:f6:02:51: 53:6c:72:32:13:32:dd:58:b3:c5:74:81:6f:7e:5e: fd:f8:b1:d5:fd:ef:4d:e8:3e:21:7d:d5:e3:11:db: 27:3b:88:05:8a:bd:8c:31:17:b9:47:94:bb:58:a4: 5c:00:b1:67:f6:84:87:6b:4d:89:e4:22:5e:de:19: 68:1d:a7:41:26:91:5f:db:cf:ff:a3:4b:db:03:11: f5:78:cf:74:f3:b1:81:ab:1d:52:8c:d7:48:25:f3: c5:ea:8a:20:27:96:26:1c:41:21:ca:7a:66:3b:0d: a7:38:e5:26:42:af:ee:67:9d:f8:ec:dc:8d:a9:73: 07:c8:53:a7:4a:c2:e9:44:01:aa:f2:de:79:33:c7: 51:05:3c:4d:a3:c2:62:c6:db:fe:26:be:44:4d:a2: 29:1b:d0:3f:34:88:f5:7d:9a:78:3d:a2:ad:cf:61: 7a:db:44:f6:c6:eb:ef:18:72:97:24:a0:b2:4d:7f: 98:ff:56:fc:e7:bf:db:25:03:1b:4e:ae:b8:9e:be: 50:9c:40:4b:04:a5:ec:07:30:b2:a8:f2:2b:01:f7: b6:45:65:3a:9a:53:1f:5c:0f:ac:94:cf:b9:2f:09: 8c:bd:da:f1:3a:55:36:e1:d6:fc:c4:41:f2:92:e6: eb:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D8:8C:38:E0:E2:6D:FB:F2:F7:49:C9:AE:09:1E:A2:97:96:A4:4E:DB X509v3 Authority Key Identifier: keyid:30:91:DB:FE:3E:BA:B5:66:3E:87:AD:C6:E9:95:F8:82:D3:B2:64:CA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C1C49/C49F75F81D9F11E29EFBA29008B02CD2/MJHb_j66tWY-h63G6ZX4gtOyZMo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MJHb_j66tWY-h63G6ZX4gtOyZMo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C1C49/C49F75F81D9F11E29EFBA29008B02CD2/MJHb_j66tWY-h63G6ZX4gtOyZMo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7b:ec:9f:c7:f4:95:56:63:a3:83:63:9b:4a:cb:57:15:c3:35: e0:ae:86:78:d2:27:f3:96:9d:3e:cb:c0:be:eb:12:69:b9:9e: b5:23:54:ce:2c:43:ca:68:5a:8a:6d:92:94:52:3d:09:d0:fb: 9b:a6:db:42:86:aa:f2:42:59:5c:ac:80:31:9d:95:43:62:a3: 45:84:84:d5:ea:a5:98:2a:ec:59:c2:82:1f:d4:50:af:a4:5a: a5:cd:47:53:61:c5:fc:96:34:af:50:9e:59:04:ae:b1:d7:4e: e3:26:f3:4c:c8:d7:dc:66:7b:06:60:f6:45:ca:1e:f6:28:7d: 85:b6:9f:f2:42:d7:72:29:68:69:d1:dd:71:4c:73:6e:98:d0: bc:0e:21:42:12:dd:d6:7b:c3:90:ab:9d:92:cb:d8:48:83:6a: e0:e4:ee:29:dc:a0:87:48:12:71:ae:f2:01:9b:80:ea:1b:c8: 5c:41:78:94:f1:a6:61:81:b1:40:4e:6b:98:ec:a8:73:bd:b9: d0:1b:3d:c6:37:f0:4b:8a:9b:b4:94:bb:d2:70:7e:8a:37:84: 44:24:d6:2b:44:f1:be:76:f1:6a:f5:28:ad:b1:e9:d0:a4:4c: 04:5a:1c:dc:db:5f:30:53:b5:3f:1f:a7:13:f9:2d:5b:36:07: c5:be:03:5e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDCEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzFDNDkxMTAvBgNVBAUTKDMwOTFEQkZFM0VCQUI1NjYzRTg3QURDNkU5OTVGODgy RDNCMjY0Q0EwHhcNMjUwNjE2MTUwNjExWhcNMjUwNjIzMTUwNjExWjAYMRYwFAYD VQQDEw02ODUwMzJlMy1lODRiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA53jmsSpe3vMmFZ72AlFTbHIyEzLdWLPFdIFvfl79+LHV/e9N6D4hfdXjEdsn O4gFir2MMRe5R5S7WKRcALFn9oSHa02J5CJe3hloHadBJpFf28//o0vbAxH1eM90 87GBqx1SjNdIJfPF6oogJ5YmHEEhynpmOw2nOOUmQq/uZ5347NyNqXMHyFOnSsLp RAGq8t55M8dRBTxNo8Jixtv+Jr5ETaIpG9A/NIj1fZp4PaKtz2F620T2xuvvGHKX JKCyTX+Y/1b857/bJQMbTq64nr5QnEBLBKXsBzCyqPIrAfe2RWU6mlMfXA+slM+5 LwmMvdrxOlU24db8xEHykubr/QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNiMOODi bfvy90nJrgkeopeWpE7bMB8GA1UdIwQYMBaAFDCR2/4+urVmPoetxumV+ILTsmTK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMUM0OS9DNDlGNzVGODFE OUYxMUUyOUVGQkEyOTAwOEIwMkNEMi9NSkhiX2o2NnRXWS1oNjNHNlpYNGd0T3la TW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL01KSGJfajY2dFdZLWg2M0c2Wlg0Z3RPeVpNby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MUM0OS9DNDlGNzVGODFEOUYxMUUyOUVGQkEyOTAwOEIwMkNEMi9NSkhiX2o2NnRX WS1oNjNHNlpYNGd0T3laTW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB77J/H9JVWY6ODY5tKy1cVwzXgroZ40ifzlp0+y8C+6xJpuZ61I1TO LEPKaFqKbZKUUj0J0PubpttChqryQllcrIAxnZVDYqNFhITV6qWYKuxZwoIf1FCv pFqlzUdTYcX8ljSvUJ5ZBK6x107jJvNMyNfcZnsGYPZFyh72KH2Ftp/yQtdyKWhp 0d1xTHNumNC8DiFCEt3We8OQq52Sy9hIg2rg5O4p3KCHSBJxrvIBm4DqG8hcQXiU 8aZhgbFATmuY7KhzvbnQGz3GN/BLipu0lLvScH6KN4REJNYrRPG+dvFq9SitsenQ pEwEWhzc218wU7U/H6cT+S1bNgfFvgNe -----END CERTIFICATE-----Generated at Mon Jun 16 20:08:16 2025 by rpki-client