$ rpki-client -vvf rpki.apnic.net/member_repository/A91C2F8C/5579B9B086E011EF9B6B177EC4F9AE02/AX2NuKeIdKsvmtl95Xr94b4WfUQ.mft File: AX2NuKeIdKsvmtl95Xr94b4WfUQ.mft (raw, json) Hash identifier: EcFOxYVDsQTxY4mR/QF8p6Zd1Q5nH4i7Vn/UeC7TZYI= Subject key identifier: 38:51:90:59:65:F4:56:74:67:8D:8B:A8:C4:F6:26:7C:47:79:8B:00 Authority key identifier: 01:7D:8D:B8:A7:88:74:AB:2F:9A:D9:7D:E5:7A:FD:E1:BE:16:7D:44 Certificate issuer: /CN=A91C2F8C/serialNumber=017D8DB8A78874AB2F9AD97DE57AFDE1BE167D44 Certificate serial: 82 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/AX2NuKeIdKsvmtl95Xr94b4WfUQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C2F8C/5579B9B086E011EF9B6B177EC4F9AE02/AX2NuKeIdKsvmtl95Xr94b4WfUQ.mft Manifest number: 81 Signing time: Tue 17 Jun 2025 05:33:18 +0000 Manifest this update: Tue 17 Jun 2025 05:33:17 +0000 Manifest next update: Tue 24 Jun 2025 05:33:17 +0000 Files and hashes: 1: AX2NuKeIdKsvmtl95Xr94b4WfUQ.crl (hash: Zvbru+X6zzJrbzfX7V3lg+WjImYSzp4X26IyXYEP7gA=) 2: CEB2CA5686E011EF81BE1A7FC4F9AE02.roa (hash: 6Kn2Tc8nx8bkTt0Gnf962Qu64Px5Cncotr8SgT4Ke8I=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C2F8C/5579B9B086E011EF9B6B177EC4F9AE02/AX2NuKeIdKsvmtl95Xr94b4WfUQ.crl rsync://rpki.apnic.net/member_repository/A91C2F8C/5579B9B086E011EF9B6B177EC4F9AE02/AX2NuKeIdKsvmtl95Xr94b4WfUQ.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/AX2NuKeIdKsvmtl95Xr94b4WfUQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 24 Jun 2025 05:33:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 130 (0x82) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C2F8C, serialNumber=017D8DB8A78874AB2F9AD97DE57AFDE1BE167D44 Validity Not Before: Jun 17 05:33:17 2025 GMT Not After : Jun 24 05:33:17 2025 GMT Subject: CN=6850fe1d-39dc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:32:ff:a2:73:54:e7:5f:79:d3:b4:a6:6c:b6: 95:a3:a3:88:40:4d:f0:ea:e6:e9:83:00:f6:e7:34: 55:c8:6a:ce:16:82:53:2e:48:16:9b:49:b7:6a:6d: d2:28:60:e6:98:ea:64:86:6f:0d:ef:84:37:6b:fd: 5f:81:d3:1d:e4:f1:bf:6f:11:4c:f7:5f:e5:32:bc: db:f8:9c:93:e0:ca:ff:0b:e2:9f:bb:49:c8:72:96: ff:28:38:ac:57:47:cb:31:e7:56:3a:c0:46:69:db: 42:8e:58:7c:b5:51:99:da:6b:f4:f2:fc:91:be:21: bc:c6:83:c1:a2:87:55:2e:17:70:f5:13:13:1d:4e: 6c:40:be:f4:88:db:da:86:8b:e9:47:62:f2:3a:e4: 01:fc:cf:ca:a6:2c:5c:c9:fc:81:f8:3e:80:e4:dc: dd:5d:d4:e7:26:d7:d6:99:50:a4:94:b7:18:76:3e: 19:34:33:bd:7c:d8:f1:68:d4:37:69:a8:b3:3c:c4: de:93:3d:8a:62:4d:cd:f0:91:73:8f:9c:84:92:71: 26:be:07:26:cc:71:bf:10:31:e3:44:b9:fc:a4:5a: 53:5a:b2:09:6b:19:35:44:f9:d8:a6:c8:58:25:ec: 9c:e1:9d:f0:33:56:00:41:9c:38:d8:38:0e:0e:7a: ef:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 38:51:90:59:65:F4:56:74:67:8D:8B:A8:C4:F6:26:7C:47:79:8B:00 X509v3 Authority Key Identifier: keyid:01:7D:8D:B8:A7:88:74:AB:2F:9A:D9:7D:E5:7A:FD:E1:BE:16:7D:44 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C2F8C/5579B9B086E011EF9B6B177EC4F9AE02/AX2NuKeIdKsvmtl95Xr94b4WfUQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/AX2NuKeIdKsvmtl95Xr94b4WfUQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C2F8C/5579B9B086E011EF9B6B177EC4F9AE02/AX2NuKeIdKsvmtl95Xr94b4WfUQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 12:39:78:f7:4e:38:c4:30:cc:6d:2d:0c:08:64:63:16:c9:4c: 09:39:00:74:da:5f:e0:ae:99:e3:a0:9f:99:a1:44:39:fb:6b: ac:ec:9f:1b:08:48:0b:be:b9:78:85:02:59:81:30:4f:1b:45: 43:04:e2:6c:50:6c:46:6c:05:f9:fc:9e:09:7f:f0:cd:c3:67: 9e:17:54:9c:fc:8e:db:b4:ac:95:d6:8c:9d:43:32:c4:cd:09: da:f6:89:a1:94:92:3d:8b:e3:5d:9c:8b:a6:3e:ac:41:d5:f3: 21:70:a9:18:f2:6a:5a:d0:e3:cd:72:63:15:d0:25:40:56:14: 44:ad:cd:fa:fd:40:97:c0:2a:f9:f1:c7:ce:76:2b:01:79:6b: f8:1d:51:2a:c2:88:7d:87:64:cd:9f:e9:1f:63:84:e7:f2:13: da:76:cc:8a:69:69:b4:3c:06:54:8c:e4:19:97:c5:0b:b9:b3: 6c:6f:3c:06:db:29:2e:14:1b:ff:5f:47:24:33:66:ee:33:f1: 51:db:40:a0:0c:72:20:2c:c3:c7:c6:f8:aa:ed:d9:09:a6:c3: b5:61:d0:d5:c2:32:ab:76:c4:f2:05:1b:0c:64:ed:45:f1:3d: 40:83:3e:d8:8b:a3:8a:50:36:a0:42:11:b7:12:ba:06:41:7d: ee:34:a9:ec -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAIIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzJGOEMxMTAvBgNVBAUTKDAxN0Q4REI4QTc4ODc0QUIyRjlBRDk3REU1N0FGREUx QkUxNjdENDQwHhcNMjUwNjE3MDUzMzE3WhcNMjUwNjI0MDUzMzE3WjAYMRYwFAYD VQQDEw02ODUwZmUxZC0zOWRjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwTL/onNU519507SmbLaVo6OIQE3w6ubpgwD25zRVyGrOFoJTLkgWm0m3am3S KGDmmOpkhm8N74Q3a/1fgdMd5PG/bxFM91/lMrzb+JyT4Mr/C+Kfu0nIcpb/KDis V0fLMedWOsBGadtCjlh8tVGZ2mv08vyRviG8xoPBoodVLhdw9RMTHU5sQL70iNva hovpR2LyOuQB/M/KpixcyfyB+D6A5NzdXdTnJtfWmVCklLcYdj4ZNDO9fNjxaNQ3 aaizPMTekz2KYk3N8JFzj5yEknEmvgcmzHG/EDHjRLn8pFpTWrIJaxk1RPnYpshY Jeyc4Z3wM1YAQZw42DgODnrvIwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDhRkFll 9FZ0Z42LqMT2JnxHeYsAMB8GA1UdIwQYMBaAFAF9jbiniHSrL5rZfeV6/eG+Fn1E MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMkY4Qy81NTc5QjlCMDg2 RTAxMUVGOUI2QjE3N0VDNEY5QUUwMi9BWDJOdUtlSWRLc3ZtdGw5NVhyOTRiNFdm VVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0FYMk51S2VJZEtzdm10bDk1WHI5NGI0V2ZVUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MkY4Qy81NTc5QjlCMDg2RTAxMUVGOUI2QjE3N0VDNEY5QUUwMi9BWDJOdUtlSWRL c3ZtdGw5NVhyOTRiNFdmVVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQASOXj3TjjEMMxtLQwIZGMWyUwJOQB02l/grpnjoJ+ZoUQ5+2us7J8b CEgLvrl4hQJZgTBPG0VDBOJsUGxGbAX5/J4Jf/DNw2eeF1Sc/I7btKyV1oydQzLE zQna9omhlJI9i+NdnIumPqxB1fMhcKkY8mpa0OPNcmMV0CVAVhRErc36/UCXwCr5 8cfOdisBeWv4HVEqwoh9h2TNn+kfY4Tn8hPadsyKaWm0PAZUjOQZl8ULubNsbzwG 2ykuFBv/X0ckM2buM/FR20CgDHIgLMPHxviq7dkJpsO1YdDVwjKrdsTyBRsMZO1F 8T1Agz7Yi6OKUDagQhG3EroGQX3uNKns -----END CERTIFICATE-----Generated at Wed Jun 18 16:54:28 2025 by rpki-client