$ rpki-client -vvf rpki.apnic.net/member_repository/A91C6E49/B33AA7A6538111ED8AA98F77C4F9AE02/B7Y7XcFse0rper0AhqMVbV10Rlk.mft File: B7Y7XcFse0rper0AhqMVbV10Rlk.mft (raw, json) Hash identifier: BmNtR9e8YdgTWaztVX6ymQx7oLLESh1kxeVsOc9HKcw= Subject key identifier: DF:2B:20:9F:B2:9A:0A:88:8D:46:DC:CB:AE:E9:CF:71:6C:B1:95:70 Authority key identifier: 07:B6:3B:5D:C1:6C:7B:4A:E9:7A:BD:00:86:A3:15:6D:5D:74:46:59 Certificate issuer: /CN=A91C6E49/serialNumber=07B63B5DC16C7B4AE97ABD0086A3156D5D744659 Certificate serial: 01F5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/B7Y7XcFse0rper0AhqMVbV10Rlk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C6E49/B33AA7A6538111ED8AA98F77C4F9AE02/B7Y7XcFse0rper0AhqMVbV10Rlk.mft Manifest number: 01F1 Signing time: Tue 17 Jun 2025 01:40:37 +0000 Manifest this update: Tue 17 Jun 2025 01:40:37 +0000 Manifest next update: Tue 24 Jun 2025 01:40:37 +0000 Files and hashes: 1: B7Y7XcFse0rper0AhqMVbV10Rlk.crl (hash: +wBMvxgiwWHT23oY8P3PZSl1/9AwQikqKNMqz41X6ic=) 2: 98FD8A0E538411ED8D781C7CC4F9AE02.roa (hash: lJnZtZDQNzdO0qp1p8vNJySg5lDyaZrljj6ja2HApOA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C6E49/B33AA7A6538111ED8AA98F77C4F9AE02/B7Y7XcFse0rper0AhqMVbV10Rlk.crl rsync://rpki.apnic.net/member_repository/A91C6E49/B33AA7A6538111ED8AA98F77C4F9AE02/B7Y7XcFse0rper0AhqMVbV10Rlk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/B7Y7XcFse0rper0AhqMVbV10Rlk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 24 Jun 2025 01:40:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 501 (0x1f5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C6E49, serialNumber=07B63B5DC16C7B4AE97ABD0086A3156D5D744659 Validity Not Before: Jun 17 01:40:37 2025 GMT Not After : Jun 24 01:40:37 2025 GMT Subject: CN=6850c795-1357 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:22:7b:d1:09:5c:70:c5:08:96:42:2c:1a:e4: be:67:ab:a5:4b:8f:30:7c:29:78:54:1f:98:13:38: 51:47:01:91:d0:c9:b2:da:d2:57:84:6d:74:d7:66: 27:5e:91:1d:dc:cd:27:f2:33:63:76:0f:3d:e1:53: 5a:fa:d3:89:90:19:b6:71:d9:17:57:1b:f7:95:44: 18:b4:4b:b6:ec:ee:9b:62:e6:5f:e7:25:52:05:e5: 6b:04:70:85:9d:0e:07:95:34:92:35:3f:3e:18:29: 9d:88:78:2b:92:82:cd:ac:67:64:0b:52:8d:f6:6c: e1:06:8a:ae:7c:18:24:70:e6:83:6d:f2:9f:ed:00: 5f:f9:bc:5e:8c:11:01:a9:41:5f:9e:3b:9d:7f:4a: 77:ed:50:ed:0f:d1:55:b2:41:03:ec:16:2c:b3:ef: 44:8c:8e:ea:60:0d:78:ec:49:db:72:1c:f6:00:db: 70:93:94:66:d1:83:eb:eb:00:29:ad:a9:7e:a2:61: eb:bc:b1:b1:d9:9c:c4:56:f4:1a:2b:2c:81:83:6d: 3d:dd:d2:e4:2b:52:aa:7f:02:13:7a:31:5d:43:05: 25:8b:8a:cd:0d:c5:34:6b:ee:ce:cd:ce:aa:5c:57: 2b:24:6a:44:2e:a7:82:4a:12:99:b4:48:f0:4a:c2: 6d:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DF:2B:20:9F:B2:9A:0A:88:8D:46:DC:CB:AE:E9:CF:71:6C:B1:95:70 X509v3 Authority Key Identifier: keyid:07:B6:3B:5D:C1:6C:7B:4A:E9:7A:BD:00:86:A3:15:6D:5D:74:46:59 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C6E49/B33AA7A6538111ED8AA98F77C4F9AE02/B7Y7XcFse0rper0AhqMVbV10Rlk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/B7Y7XcFse0rper0AhqMVbV10Rlk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C6E49/B33AA7A6538111ED8AA98F77C4F9AE02/B7Y7XcFse0rper0AhqMVbV10Rlk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 88:e5:23:e3:0d:8c:d0:f6:74:08:88:1c:98:58:04:89:e3:7c: f6:d3:44:4b:fb:67:44:28:d6:bc:e7:61:0a:7c:2d:4b:3d:43: 85:0d:64:83:67:53:55:c8:a0:e0:f0:0c:1a:d0:43:33:88:d8: 04:2b:76:f9:5e:f2:f4:40:a8:c3:12:e7:ac:d3:02:c1:e2:9e: 12:1e:f3:fc:ef:cf:05:87:6f:17:91:20:60:68:ff:b9:3c:d1: d6:8c:77:11:c5:a1:91:27:b5:69:fa:68:52:9c:f8:14:18:30: ce:e5:3c:5d:1b:31:45:5c:3e:7d:cd:48:6d:94:ce:ad:96:ed: 62:3f:63:f6:6d:eb:27:51:47:76:ed:d0:0f:74:4c:ee:f3:e6: b1:f0:72:52:39:9a:28:a6:73:8a:5f:d5:04:f3:16:72:7a:1f: a2:b6:f2:49:5d:a5:1f:1b:30:60:3c:93:eb:48:9e:84:d5:f7: f2:15:f8:e8:2c:7f:09:b8:b6:25:a7:0f:04:48:92:6f:0d:a0: 2c:e9:9b:2d:dd:c8:10:66:1d:16:a2:31:29:64:c7:c7:64:aa: d6:86:c6:0c:05:07:9e:da:94:8b:67:32:44:00:e7:31:7d:61: 2c:ba:36:4a:5e:77:e9:f7:c5:54:5e:6e:9d:a7:5c:07:d8:15: 42:15:fc:9b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAfUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzZFNDkxMTAvBgNVBAUTKDA3QjYzQjVEQzE2QzdCNEFFOTdBQkQwMDg2QTMxNTZE NUQ3NDQ2NTkwHhcNMjUwNjE3MDE0MDM3WhcNMjUwNjI0MDE0MDM3WjAYMRYwFAYD VQQDEw02ODUwYzc5NS0xMzU3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArSJ70QlccMUIlkIsGuS+Z6ulS48wfCl4VB+YEzhRRwGR0Mmy2tJXhG1012Yn XpEd3M0n8jNjdg894VNa+tOJkBm2cdkXVxv3lUQYtEu27O6bYuZf5yVSBeVrBHCF nQ4HlTSSNT8+GCmdiHgrkoLNrGdkC1KN9mzhBoqufBgkcOaDbfKf7QBf+bxejBEB qUFfnjudf0p37VDtD9FVskED7BYss+9EjI7qYA147Enbchz2ANtwk5Rm0YPr6wAp ral+omHrvLGx2ZzEVvQaKyyBg2093dLkK1KqfwITejFdQwUli4rNDcU0a+7Ozc6q XFcrJGpELqeCShKZtEjwSsJtQwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFN8rIJ+y mgqIjUbcy67pz3FssZVwMB8GA1UdIwQYMBaAFAe2O13BbHtK6Xq9AIajFW1ddEZZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNkU0OS9CMzNBQTdBNjUz ODExMUVEOEFBOThGNzdDNEY5QUUwMi9CN1k3WGNGc2UwcnBlcjBBaHFNVmJWMTBS bGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0I3WTdYY0ZzZTBycGVyMEFocU1WYlYxMFJsay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD NkU0OS9CMzNBQTdBNjUzODExMUVEOEFBOThGNzdDNEY5QUUwMi9CN1k3WGNGc2Uw cnBlcjBBaHFNVmJWMTBSbGsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCI5SPjDYzQ9nQIiByYWASJ43z200RL+2dEKNa852EKfC1LPUOFDWSD Z1NVyKDg8Awa0EMziNgEK3b5XvL0QKjDEues0wLB4p4SHvP8788Fh28XkSBgaP+5 PNHWjHcRxaGRJ7Vp+mhSnPgUGDDO5TxdGzFFXD59zUhtlM6tlu1iP2P2besnUUd2 7dAPdEzu8+ax8HJSOZoopnOKX9UE8xZyeh+itvJJXaUfGzBgPJPrSJ6E1ffyFfjo LH8JuLYlpw8ESJJvDaAs6Zst3cgQZh0WojEpZMfHZKrWhsYMBQee2pSLZzJEAOcx fWEsujZKXnfp98VUXm6dp1wH2BVCFfyb -----END CERTIFICATE-----Generated at Wed Jun 18 01:30:07 2025 by rpki-client