$ rpki-client -vvf rpki.apnic.net/member_repository/A91C5319/F94D41C88C2C11EF8122EC11C4F9AE02/HdM6aLwLXJMQ__Uq1zlBINECpic.mft File: HdM6aLwLXJMQ__Uq1zlBINECpic.mft (raw, json) Hash identifier: +JcfUy3Lo5wTYDzz/saGXCTs5gnH6bSHrg5kvn0XR7g= Subject key identifier: EA:4F:BA:0E:2D:6C:CB:F2:A7:E0:66:61:30:C7:BF:86:9C:F5:4B:B8 Authority key identifier: 1D:D3:3A:68:BC:0B:5C:93:10:FF:F5:2A:D7:39:41:20:D1:02:A6:27 Certificate issuer: /CN=A91C5319/serialNumber=1DD33A68BC0B5C9310FFF52AD7394120D102A627 Certificate serial: 80 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/HdM6aLwLXJMQ__Uq1zlBINECpic.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C5319/F94D41C88C2C11EF8122EC11C4F9AE02/HdM6aLwLXJMQ__Uq1zlBINECpic.mft Manifest number: 7F Signing time: Thu 19 Jun 2025 06:01:07 +0000 Manifest this update: Thu 19 Jun 2025 06:01:06 +0000 Manifest next update: Thu 26 Jun 2025 06:01:06 +0000 Files and hashes: 1: HdM6aLwLXJMQ__Uq1zlBINECpic.crl (hash: jJ7rhJov1hFfV7WYibOVk6EZLaLvKJrKZgaBW/RT+NY=) 2: C7500EC88C2F11EF82B2F55CC4F9AE02.roa (hash: KqwFgUGGWmZ6w/oc9lE/9i1V2X5VufgZVt2vhykEeNg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C5319/F94D41C88C2C11EF8122EC11C4F9AE02/HdM6aLwLXJMQ__Uq1zlBINECpic.crl rsync://rpki.apnic.net/member_repository/A91C5319/F94D41C88C2C11EF8122EC11C4F9AE02/HdM6aLwLXJMQ__Uq1zlBINECpic.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/HdM6aLwLXJMQ__Uq1zlBINECpic.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 26 Jun 2025 06:01:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 128 (0x80) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C5319, serialNumber=1DD33A68BC0B5C9310FFF52AD7394120D102A627 Validity Not Before: Jun 19 06:01:06 2025 GMT Not After : Jun 26 06:01:06 2025 GMT Subject: CN=6853a7a2-b3ba Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:ab:d2:ff:0c:1e:0b:42:69:dd:57:70:c5:e4: c2:f3:dd:f5:83:fc:da:d3:25:fe:0e:d3:3e:3f:65: 29:64:70:8c:24:e5:8b:6f:a4:a2:70:ca:1a:e7:c9: 63:d9:a5:37:91:e7:6b:2c:d4:cb:14:2e:35:10:fb: b5:69:c8:96:91:8a:cf:14:ef:65:74:c1:d4:bb:26: 1f:1a:dd:0f:a8:38:7f:6b:29:d8:5e:3a:7c:8d:5c: 8c:1a:53:f4:6b:d1:8b:2b:f8:a8:32:44:ce:d0:d7: f8:e9:33:75:ec:40:3c:e5:31:2a:4e:f5:36:59:d3: 01:6c:b9:47:d4:1b:5d:46:c7:19:31:c9:88:92:41: c5:ec:90:40:af:36:dc:db:81:77:e5:06:98:9b:63: 1c:d3:e6:7e:a2:bb:30:c0:0b:83:ee:34:dc:75:d5: 42:1c:21:a8:6d:e9:c5:a7:cd:8e:67:41:94:55:8d: ea:7e:ce:ef:32:25:d4:14:8d:56:5f:be:d1:ad:06: 70:b5:6a:c5:ef:eb:b5:e4:c8:cc:36:c7:d7:e6:5d: 7b:7f:32:60:17:5c:36:76:a2:da:e5:8b:57:54:3e: 0f:59:79:f9:de:ad:08:66:01:f5:06:c0:18:b3:5b: 8d:3f:98:c2:a6:20:5c:3d:f6:76:a8:84:6e:57:d5: b4:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EA:4F:BA:0E:2D:6C:CB:F2:A7:E0:66:61:30:C7:BF:86:9C:F5:4B:B8 X509v3 Authority Key Identifier: keyid:1D:D3:3A:68:BC:0B:5C:93:10:FF:F5:2A:D7:39:41:20:D1:02:A6:27 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C5319/F94D41C88C2C11EF8122EC11C4F9AE02/HdM6aLwLXJMQ__Uq1zlBINECpic.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/HdM6aLwLXJMQ__Uq1zlBINECpic.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C5319/F94D41C88C2C11EF8122EC11C4F9AE02/HdM6aLwLXJMQ__Uq1zlBINECpic.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8a:a2:bc:4e:39:bf:70:dc:a4:d0:fb:5e:c7:38:6d:ce:57:30: 8d:4d:2d:f9:22:82:bc:f9:a5:e3:9f:88:64:73:ec:82:fe:90: 8b:83:4f:f4:c9:19:24:22:37:8a:d8:bf:8a:7a:4c:a4:3a:04: da:5d:26:8b:05:6a:b3:9a:40:41:d6:9d:2d:99:d1:79:3a:82: 5a:78:52:f2:9e:a6:b4:fa:07:22:a7:94:6f:f9:3f:d4:3a:9a: 1d:a6:8c:b9:77:49:e4:dd:fa:27:71:06:ea:65:c6:a2:a2:c1: 55:f7:48:6c:d8:1b:d2:e8:f4:7c:6a:ae:71:70:36:99:7c:18: 92:9f:9e:17:cd:21:12:b2:ea:7b:c1:1f:42:df:2f:58:d6:a2: 94:b9:1a:7c:70:ec:e0:f4:3e:9a:cc:4f:ba:42:7a:fd:34:7b: 85:33:85:90:d4:0f:7e:6d:9a:62:6e:e5:6a:8e:70:47:1c:57: 04:f4:f8:f1:08:c0:e0:7f:8a:37:25:b1:87:fa:29:a2:d3:08: 7c:be:d4:b5:bd:fd:ca:57:63:a3:d5:15:d5:4d:8c:10:2d:44: 01:0f:e2:76:8c:3c:95:4e:70:a2:13:33:f3:b4:c1:dc:d2:7f: db:32:47:35:86:69:4b:4d:13:d4:4b:db:dc:5c:7e:c4:7c:c3: d7:74:1c:a6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAIAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzUzMTkxMTAvBgNVBAUTKDFERDMzQTY4QkMwQjVDOTMxMEZGRjUyQUQ3Mzk0MTIw RDEwMkE2MjcwHhcNMjUwNjE5MDYwMTA2WhcNMjUwNjI2MDYwMTA2WjAYMRYwFAYD VQQDEw02ODUzYTdhMi1iM2JhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwavS/wweC0Jp3VdwxeTC8931g/za0yX+DtM+P2UpZHCMJOWLb6SicMoa58lj 2aU3kedrLNTLFC41EPu1aciWkYrPFO9ldMHUuyYfGt0PqDh/aynYXjp8jVyMGlP0 a9GLK/ioMkTO0Nf46TN17EA85TEqTvU2WdMBbLlH1BtdRscZMcmIkkHF7JBArzbc 24F35QaYm2Mc0+Z+orswwAuD7jTcddVCHCGobenFp82OZ0GUVY3qfs7vMiXUFI1W X77RrQZwtWrF7+u15MjMNsfX5l17fzJgF1w2dqLa5YtXVD4PWXn53q0IZgH1BsAY s1uNP5jCpiBcPfZ2qIRuV9W0vQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOpPug4t bMvyp+BmYTDHv4ac9Uu4MB8GA1UdIwQYMBaAFB3TOmi8C1yTEP/1Ktc5QSDRAqYn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNTMxOS9GOTRENDFDODhD MkMxMUVGODEyMkVDMTFDNEY5QUUwMi9IZE02YUx3TFhKTVFfX1VxMXpsQklORUNw aWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0hkTTZhTHdMWEpNUV9fVXExemxCSU5FQ3BpYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD NTMxOS9GOTRENDFDODhDMkMxMUVGODEyMkVDMTFDNEY5QUUwMi9IZE02YUx3TFhK TVFfX1VxMXpsQklORUNwaWMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCKorxOOb9w3KTQ+17HOG3OVzCNTS35IoK8+aXjn4hkc+yC/pCLg0/0 yRkkIjeK2L+KekykOgTaXSaLBWqzmkBB1p0tmdF5OoJaeFLynqa0+gcip5Rv+T/U Opodpoy5d0nk3foncQbqZcaiosFV90hs2BvS6PR8aq5xcDaZfBiSn54XzSESsup7 wR9C3y9Y1qKUuRp8cOzg9D6azE+6Qnr9NHuFM4WQ1A9+bZpibuVqjnBHHFcE9Pjx CMDgf4o3JbGH+imi0wh8vtS1vf3KV2Oj1RXVTYwQLUQBD+J2jDyVTnCiEzPztMHc 0n/bMkc1hmlLTRPUS9vcXH7EfMPXdBym -----END CERTIFICATE-----Generated at Thu Jun 19 21:31:44 2025 by rpki-client