$ rpki-client -vvf rpki.apnic.net/member_repository/A91C7175/F22B9CCA68FD11EFA9500187C4F9AE02/iS3iAjP9DGSOLnuflZUPOpaBfL8.mft File: iS3iAjP9DGSOLnuflZUPOpaBfL8.mft (raw, json) Hash identifier: YRpu2dJ4CAH1EgsqmlYfbwcDnhd+BMJQY7GKsgUmhUs= Subject key identifier: AB:90:8E:E3:0B:65:06:D6:23:4D:6B:7F:F2:41:1A:7B:B5:4F:0B:7B Authority key identifier: 89:2D:E2:02:33:FD:0C:64:8E:2E:7B:9F:95:95:0F:3A:96:81:7C:BF Certificate issuer: /CN=A91C7175/serialNumber=892DE20233FD0C648E2E7B9F95950F3A96817CBF Certificate serial: 95 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iS3iAjP9DGSOLnuflZUPOpaBfL8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C7175/F22B9CCA68FD11EFA9500187C4F9AE02/iS3iAjP9DGSOLnuflZUPOpaBfL8.mft Manifest number: 95 Signing time: Wed 18 Jun 2025 06:24:27 +0000 Manifest this update: Wed 18 Jun 2025 06:24:26 +0000 Manifest next update: Wed 25 Jun 2025 06:24:26 +0000 Files and hashes: 1: iS3iAjP9DGSOLnuflZUPOpaBfL8.crl (hash: ZrpgMx1+zVwWlaI2GVsG13qkNHiD2mRcSHZEL3PvJU4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C7175/F22B9CCA68FD11EFA9500187C4F9AE02/iS3iAjP9DGSOLnuflZUPOpaBfL8.crl rsync://rpki.apnic.net/member_repository/A91C7175/F22B9CCA68FD11EFA9500187C4F9AE02/iS3iAjP9DGSOLnuflZUPOpaBfL8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iS3iAjP9DGSOLnuflZUPOpaBfL8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 25 Jun 2025 06:01:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 149 (0x95) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C7175, serialNumber=892DE20233FD0C648E2E7B9F95950F3A96817CBF Validity Not Before: Jun 18 06:24:26 2025 GMT Not After : Jun 25 06:24:26 2025 GMT Subject: CN=68525b9b-53e5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:64:07:e4:69:0a:8a:60:f3:be:f7:9f:bd:b6: 91:0a:14:51:4f:91:8a:65:a3:1b:e1:d4:d8:e4:bc: 8f:1e:96:96:58:d7:57:e9:2f:6c:51:25:ad:93:81: eb:0c:be:1b:fe:45:cb:ec:26:c1:1b:c3:c0:6d:d8: a0:43:f6:90:a7:27:47:af:7c:a2:63:51:bb:27:5f: 7c:6a:9a:cf:45:50:6b:5e:f6:8c:d2:12:5c:d1:8d: 64:06:bb:29:7e:ec:b6:c0:7e:76:9b:24:c3:64:49: 5d:29:d8:d9:c4:08:f7:97:8c:4a:d9:8e:36:b0:0f: a4:7e:40:89:eb:2e:32:05:24:87:dd:ba:ad:c9:c4: 98:0d:7a:10:29:fe:f7:9c:f3:35:55:f6:30:cf:81: 68:6c:24:61:07:3b:7b:df:72:4d:b5:ff:27:dd:91: 89:51:fb:57:3c:6c:14:27:62:97:c3:f9:25:30:4a: 17:f4:15:a7:1b:5e:55:43:42:81:44:3e:bd:f9:50: 8d:15:64:79:b5:ed:44:b9:76:bd:84:3f:c4:96:62: 62:1b:42:e4:1f:c7:ac:bd:b8:24:af:c1:dc:62:a4: 45:9b:19:85:c1:53:53:07:17:bd:d7:5f:c8:e9:73: 94:69:f0:10:a8:45:50:ac:8b:7f:4b:c2:61:f4:94: 6a:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AB:90:8E:E3:0B:65:06:D6:23:4D:6B:7F:F2:41:1A:7B:B5:4F:0B:7B X509v3 Authority Key Identifier: keyid:89:2D:E2:02:33:FD:0C:64:8E:2E:7B:9F:95:95:0F:3A:96:81:7C:BF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C7175/F22B9CCA68FD11EFA9500187C4F9AE02/iS3iAjP9DGSOLnuflZUPOpaBfL8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iS3iAjP9DGSOLnuflZUPOpaBfL8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C7175/F22B9CCA68FD11EFA9500187C4F9AE02/iS3iAjP9DGSOLnuflZUPOpaBfL8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 15:f8:9f:10:27:2c:ad:f6:62:ea:0b:6e:ff:c0:ef:22:2d:42: a4:8f:f0:49:7a:df:88:40:c8:a3:c1:83:19:94:49:3e:3d:0f: 0b:d9:61:b7:4b:1a:57:bb:c8:90:4f:c8:17:2b:60:9f:61:ae: 1b:ad:76:55:5b:ee:c4:4e:3e:71:cf:be:4e:f6:9f:c4:74:07: f1:9d:c0:1b:8b:55:c6:dc:ae:78:e2:e3:72:a4:6f:93:23:e5: 5a:24:a8:40:7b:51:33:69:d6:3a:98:2d:a7:eb:85:77:d2:e6: f1:de:01:f8:2c:c8:fc:be:63:72:b3:5b:72:6d:11:18:ae:ca: 54:03:6a:4c:7b:f4:35:15:af:c7:d7:b5:b8:2b:4a:4e:58:8a: 79:b9:2e:85:41:d6:8f:3a:a6:0e:46:5c:d7:78:63:3e:b7:34: 3f:f9:75:0f:c9:f2:17:49:06:91:b1:21:01:da:fe:25:c9:1f: 1c:14:41:25:2e:95:e2:8c:d7:74:2e:72:ca:b0:7e:10:9e:29: 87:b1:25:64:4f:02:35:e7:66:f5:19:16:db:57:07:30:22:d3: e1:f7:db:7d:2d:3c:e5:15:c4:ea:2f:7c:17:7b:2c:ab:f1:97: 42:e5:d6:f3:08:34:e9:ce:fc:fd:40:b1:fc:c9:2e:9a:05:f0: ed:60:04:b1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAJUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzcxNzUxMTAvBgNVBAUTKDg5MkRFMjAyMzNGRDBDNjQ4RTJFN0I5Rjk1OTUwRjNB OTY4MTdDQkYwHhcNMjUwNjE4MDYyNDI2WhcNMjUwNjI1MDYyNDI2WjAYMRYwFAYD VQQDEw02ODUyNWI5Yi01M2U1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA32QH5GkKimDzvvefvbaRChRRT5GKZaMb4dTY5LyPHpaWWNdX6S9sUSWtk4Hr DL4b/kXL7CbBG8PAbdigQ/aQpydHr3yiY1G7J198aprPRVBrXvaM0hJc0Y1kBrsp fuy2wH52myTDZEldKdjZxAj3l4xK2Y42sA+kfkCJ6y4yBSSH3bqtycSYDXoQKf73 nPM1VfYwz4FobCRhBzt733JNtf8n3ZGJUftXPGwUJ2KXw/klMEoX9BWnG15VQ0KB RD69+VCNFWR5te1EuXa9hD/ElmJiG0LkH8esvbgkr8HcYqRFmxmFwVNTBxe911/I 6XOUafAQqEVQrIt/S8Jh9JRq5wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKuQjuML ZQbWI01rf/JBGnu1Twt7MB8GA1UdIwQYMBaAFIkt4gIz/Qxkji57n5WVDzqWgXy/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNzE3NS9GMjJCOUNDQTY4 RkQxMUVGQTk1MDAxODdDNEY5QUUwMi9pUzNpQWpQOURHU09MbnVmbFpVUE9wYUJm TDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lTM2lBalA5REdTT0xudWZsWlVQT3BhQmZMOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD NzE3NS9GMjJCOUNDQTY4RkQxMUVGQTk1MDAxODdDNEY5QUUwMi9pUzNpQWpQOURH U09MbnVmbFpVUE9wYUJmTDgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAV+J8QJyyt9mLqC27/wO8iLUKkj/BJet+IQMijwYMZlEk+PQ8L2WG3 SxpXu8iQT8gXK2CfYa4brXZVW+7ETj5xz75O9p/EdAfxncAbi1XG3K544uNypG+T I+VaJKhAe1EzadY6mC2n64V30ubx3gH4LMj8vmNys1tybREYrspUA2pMe/Q1Fa/H 17W4K0pOWIp5uS6FQdaPOqYORlzXeGM+tzQ/+XUPyfIXSQaRsSEB2v4lyR8cFEEl LpXijNd0LnLKsH4QnimHsSVkTwI152b1GRbbVwcwItPh99t9LTzlFcTqL3wXeyyr 8ZdC5dbzCDTpzvz9QLH8yS6aBfDtYASx -----END CERTIFICATE-----Generated at Wed Jun 18 10:08:11 2025 by rpki-client