$ rpki-client -vvf rpki.apnic.net/member_repository/A91C6BF0/1491974AAEBB11E98A390B59C4F9AE02/2YRcGequkJIocqDK_QUfFmFPhK8.mft File: 2YRcGequkJIocqDK_QUfFmFPhK8.mft (raw, json) Hash identifier: NBeMnfqD/E4TzD5U+/xHj/tbuLQVFTIiJ2zA2MoIJqU= Subject key identifier: F3:DE:78:89:2D:33:66:B2:53:91:EA:83:4E:BD:DB:48:46:A6:BC:FB Authority key identifier: D9:84:5C:19:EA:AE:90:92:28:72:A0:CA:FD:05:1F:16:61:4F:84:AF Certificate issuer: /CN=A91C6BF0/serialNumber=D9845C19EAAE90922872A0CAFD051F16614F84AF Certificate serial: 0E22 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2YRcGequkJIocqDK_QUfFmFPhK8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C6BF0/1491974AAEBB11E98A390B59C4F9AE02/2YRcGequkJIocqDK_QUfFmFPhK8.mft Manifest number: 0FB0 Signing time: Fri 20 Jun 2025 17:49:22 +0000 Manifest this update: Fri 20 Jun 2025 17:49:21 +0000 Manifest next update: Fri 27 Jun 2025 17:49:21 +0000 Files and hashes: 1: 2YRcGequkJIocqDK_QUfFmFPhK8.crl (hash: a9aF6SQpos+wFjwFkFeX+wED1Ws4Vfq8FFMDPhNiujU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C6BF0/1491974AAEBB11E98A390B59C4F9AE02/2YRcGequkJIocqDK_QUfFmFPhK8.crl rsync://rpki.apnic.net/member_repository/A91C6BF0/1491974AAEBB11E98A390B59C4F9AE02/2YRcGequkJIocqDK_QUfFmFPhK8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2YRcGequkJIocqDK_QUfFmFPhK8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 27 Jun 2025 16:57:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3618 (0xe22) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C6BF0, serialNumber=D9845C19EAAE90922872A0CAFD051F16614F84AF Validity Not Before: Jun 20 17:49:21 2025 GMT Not After : Jun 27 17:49:21 2025 GMT Subject: CN=68559f22-4243 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:f9:2a:42:42:aa:dc:dd:a8:d4:2b:db:47:96: c6:8e:6d:c6:f7:f2:a6:34:91:3e:64:9b:5d:13:27: d5:9c:f3:ac:58:50:a6:6c:a0:3d:86:dd:2b:27:bd: 97:23:56:7f:9e:9b:db:ea:e1:ed:fa:46:82:b6:5e: c7:3a:fd:ec:b0:64:2a:55:f0:3f:91:f0:66:d1:74: 34:b6:3b:f8:4e:06:d8:33:24:cb:93:b8:88:67:04: 97:38:66:53:50:0d:dd:6d:4a:25:22:83:e1:94:8e: 94:ff:26:57:94:8a:16:81:2d:52:4f:dc:d6:dd:bc: ee:44:1c:24:f0:aa:77:cd:f3:a2:6f:51:f4:00:6a: f8:49:2a:2c:d2:fd:ac:26:f7:83:0d:c5:d1:91:e1: 29:f1:51:2f:86:27:98:c9:46:cd:72:90:d8:6b:f1: ca:2c:fc:27:74:59:57:a6:a2:aa:37:61:75:2d:23: 2b:b3:71:11:2b:0f:9c:23:e5:01:56:d7:f1:ad:a3: 5e:7e:e7:62:3e:67:96:e1:6e:cb:b8:17:62:86:93: 2c:88:2e:5f:ff:5a:4b:fd:52:b1:e8:13:fa:30:6d: a9:24:61:54:e5:31:b3:78:b3:64:7f:f4:c4:bc:74: 75:8c:ec:13:80:c1:15:41:b4:6c:96:c4:33:26:81: c9:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F3:DE:78:89:2D:33:66:B2:53:91:EA:83:4E:BD:DB:48:46:A6:BC:FB X509v3 Authority Key Identifier: keyid:D9:84:5C:19:EA:AE:90:92:28:72:A0:CA:FD:05:1F:16:61:4F:84:AF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C6BF0/1491974AAEBB11E98A390B59C4F9AE02/2YRcGequkJIocqDK_QUfFmFPhK8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2YRcGequkJIocqDK_QUfFmFPhK8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C6BF0/1491974AAEBB11E98A390B59C4F9AE02/2YRcGequkJIocqDK_QUfFmFPhK8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 31:61:de:0a:2d:d6:8b:13:5b:06:7f:06:37:35:53:98:fc:94: 81:1a:c0:e9:ca:99:b5:a1:3b:0c:99:ed:39:3f:66:d7:7b:ca: f2:c9:10:42:11:2d:46:b3:b1:65:39:80:89:dd:04:ba:0a:73: a7:36:7d:46:2b:81:a4:ee:eb:2b:73:51:e9:38:2c:31:67:87: 6c:32:6b:79:7b:92:e7:c1:29:f6:d6:d2:a3:f6:eb:5a:61:93: 6f:59:a4:2b:15:b6:a2:be:23:0a:c0:d3:5f:bb:34:cd:72:e4: b5:79:61:01:16:62:1f:0c:1e:11:20:f3:2e:8d:bb:7b:18:2b: 2f:2f:2f:33:62:3a:2e:c6:9c:8e:79:d6:12:0d:c9:19:57:86: 29:77:10:dd:0e:b7:0a:7e:4d:db:b6:e6:03:48:3b:40:a4:f5: 3c:e3:9f:1e:8a:94:2c:3b:19:43:9c:b5:c9:92:79:6e:3b:ab: 1a:30:84:a5:91:e6:ba:d1:4b:45:65:e7:a1:df:11:c6:7d:e0: 75:67:75:42:a9:b4:64:4b:2b:78:84:bd:78:34:32:eb:c8:1b: 51:8b:8a:5a:6c:b7:d6:ac:1c:7b:f4:96:dd:75:89:3d:c1:52: 67:d9:62:9d:a1:19:60:0d:c9:5a:aa:7e:83:07:e8:f9:94:f2: 4e:14:54:f9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDiIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzZCRjAxMTAvBgNVBAUTKEQ5ODQ1QzE5RUFBRTkwOTIyODcyQTBDQUZEMDUxRjE2 NjE0Rjg0QUYwHhcNMjUwNjIwMTc0OTIxWhcNMjUwNjI3MTc0OTIxWjAYMRYwFAYD VQQDEw02ODU1OWYyMi00MjQzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5/kqQkKq3N2o1CvbR5bGjm3G9/KmNJE+ZJtdEyfVnPOsWFCmbKA9ht0rJ72X I1Z/npvb6uHt+kaCtl7HOv3ssGQqVfA/kfBm0XQ0tjv4TgbYMyTLk7iIZwSXOGZT UA3dbUolIoPhlI6U/yZXlIoWgS1ST9zW3bzuRBwk8Kp3zfOib1H0AGr4SSos0v2s JveDDcXRkeEp8VEvhieYyUbNcpDYa/HKLPwndFlXpqKqN2F1LSMrs3ERKw+cI+UB VtfxraNefudiPmeW4W7LuBdihpMsiC5f/1pL/VKx6BP6MG2pJGFU5TGzeLNkf/TE vHR1jOwTgMEVQbRslsQzJoHJuwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPPeeIkt M2ayU5Hqg06920hGprz7MB8GA1UdIwQYMBaAFNmEXBnqrpCSKHKgyv0FHxZhT4Sv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNkJGMC8xNDkxOTc0QUFF QkIxMUU5OEEzOTBCNTlDNEY5QUUwMi8yWVJjR2VxdWtKSW9jcURLX1FVZkZtRlBo SzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJZUmNHZXF1a0pJb2NxREtfUVVmRm1GUGhLOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD NkJGMC8xNDkxOTc0QUFFQkIxMUU5OEEzOTBCNTlDNEY5QUUwMi8yWVJjR2VxdWtK SW9jcURLX1FVZkZtRlBoSzgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAxYd4KLdaLE1sGfwY3NVOY/JSBGsDpypm1oTsMme05P2bXe8ryyRBC ES1Gs7FlOYCJ3QS6CnOnNn1GK4Gk7usrc1HpOCwxZ4dsMmt5e5LnwSn21tKj9uta YZNvWaQrFbaiviMKwNNfuzTNcuS1eWEBFmIfDB4RIPMujbt7GCsvLy8zYjouxpyO edYSDckZV4YpdxDdDrcKfk3btuYDSDtApPU8458eipQsOxlDnLXJknluO6saMISl kea60UtFZeeh3xHGfeB1Z3VCqbRkSyt4hL14NDLryBtRi4pabLfWrBx79JbddYk9 wVJn2WKdoRlgDclaqn6DB+j5lPJOFFT5 -----END CERTIFICATE-----Generated at Fri Jun 20 19:43:24 2025 by rpki-client