$ rpki-client -vvf rpki.apnic.net/member_repository/A91C7F6A/067925007F4211EDB4E78C86C4F9AE02/4z23k7vv5Gy8912zTnCUJ6cu8PM.mft File: 4z23k7vv5Gy8912zTnCUJ6cu8PM.mft (raw, json) Hash identifier: Yl+QUcRiMRSEXvg70DYpqSFWKRtY0fBC0Jsm7CJn3Tc= Subject key identifier: 75:E9:56:12:03:A8:38:BF:E7:0C:46:6A:C4:22:8A:2E:37:C1:26:12 Authority key identifier: E3:3D:B7:93:BB:EF:E4:6C:BC:F7:5D:B3:4E:70:94:27:A7:2E:F0:F3 Certificate issuer: /CN=A91C7F6A/serialNumber=E33DB793BBEFE46CBCF75DB34E709427A72EF0F3 Certificate serial: 01D7 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/4z23k7vv5Gy8912zTnCUJ6cu8PM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C7F6A/067925007F4211EDB4E78C86C4F9AE02/4z23k7vv5Gy8912zTnCUJ6cu8PM.mft Manifest number: 01D3 Signing time: Tue 17 Jun 2025 01:58:36 +0000 Manifest this update: Tue 17 Jun 2025 01:58:36 +0000 Manifest next update: Tue 24 Jun 2025 01:58:36 +0000 Files and hashes: 1: 4z23k7vv5Gy8912zTnCUJ6cu8PM.crl (hash: DvAbWzSpVoVScy3TYATfYmXjR3jNQdvvUrBs1RzEBXQ=) 2: 81D5DEE47F5D11EDB4309B54C4F9AE02.roa (hash: zRdos/o+mb+OSdMpMggoSh17MEeYkJt0eDW/UfdGZq4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C7F6A/067925007F4211EDB4E78C86C4F9AE02/4z23k7vv5Gy8912zTnCUJ6cu8PM.crl rsync://rpki.apnic.net/member_repository/A91C7F6A/067925007F4211EDB4E78C86C4F9AE02/4z23k7vv5Gy8912zTnCUJ6cu8PM.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/4z23k7vv5Gy8912zTnCUJ6cu8PM.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 24 Jun 2025 00:54:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 471 (0x1d7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C7F6A, serialNumber=E33DB793BBEFE46CBCF75DB34E709427A72EF0F3 Validity Not Before: Jun 17 01:58:36 2025 GMT Not After : Jun 24 01:58:36 2025 GMT Subject: CN=6850cbcc-ee64 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:3c:f9:82:71:0d:22:68:85:99:9a:fb:2b:33: b2:fc:37:8c:fb:02:ba:4b:63:9c:c7:e5:15:0d:94: e8:55:bd:eb:90:f4:12:3a:bd:c5:3e:af:46:7a:0a: 7d:52:f7:15:67:5f:70:49:ee:af:4f:b2:9f:37:f2: 7a:9b:b2:14:bb:b5:7d:e5:49:30:a7:1a:e3:11:94: f8:95:98:00:72:4c:2f:d5:0e:3b:a4:16:2f:64:49: b4:e8:14:0e:91:47:a6:70:54:b8:b0:c3:62:64:6f: d7:2e:f1:81:c0:2f:43:7a:da:33:56:48:1d:8a:9a: e6:38:4d:6f:f6:48:36:a0:db:1c:d4:56:10:59:f8: 70:5f:03:9d:fe:e9:27:4a:2d:7a:16:55:07:60:81: bf:52:41:8b:5d:08:29:c7:b3:3a:36:e1:81:58:18: 37:6f:27:75:d6:19:de:cf:96:73:b7:c4:32:6c:40: 09:f9:36:32:43:11:85:1c:04:7f:0d:01:42:18:70: 6d:d0:38:6b:17:5f:5d:88:03:e7:7c:be:e4:61:c2: b0:e8:86:7e:0f:aa:ba:e8:6e:b0:40:e7:d0:64:f5: 7c:69:05:2c:f9:6b:35:1e:25:19:0d:05:09:ca:94: 77:f2:dc:7b:1e:dc:28:18:67:e6:d5:aa:79:54:9d: 3d:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 75:E9:56:12:03:A8:38:BF:E7:0C:46:6A:C4:22:8A:2E:37:C1:26:12 X509v3 Authority Key Identifier: keyid:E3:3D:B7:93:BB:EF:E4:6C:BC:F7:5D:B3:4E:70:94:27:A7:2E:F0:F3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C7F6A/067925007F4211EDB4E78C86C4F9AE02/4z23k7vv5Gy8912zTnCUJ6cu8PM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/4z23k7vv5Gy8912zTnCUJ6cu8PM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C7F6A/067925007F4211EDB4E78C86C4F9AE02/4z23k7vv5Gy8912zTnCUJ6cu8PM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 50:c8:fa:44:31:b8:71:b7:d6:c5:a6:14:7f:8f:93:2a:72:06: d2:0b:c5:ec:49:a0:d4:e7:f4:5a:6d:49:0c:42:dd:b8:89:0b: d8:83:aa:35:16:71:69:1d:24:bf:0a:05:35:38:1b:1c:f3:db: 1e:0b:5b:92:a4:b7:bd:75:da:1d:d3:af:7c:67:39:54:f1:71: 1c:6d:35:87:ec:ed:64:5a:d7:70:13:c4:2d:ea:c3:64:b9:74: 63:44:9a:48:d8:a9:aa:78:59:ba:7b:be:92:ca:b0:7e:53:38: 62:71:03:06:d9:41:1e:a5:65:78:2c:d2:58:dd:2f:50:4d:fd: e0:b0:ef:91:04:73:88:28:d8:64:6c:c5:98:87:c0:80:3e:d9: 7e:8b:09:01:81:91:9a:b5:ed:16:e3:ee:28:ad:01:cd:ff:b2: a9:12:34:ec:aa:80:d5:5b:ae:85:dd:b6:2f:e2:03:c5:6a:40: 92:57:ad:72:1a:e5:56:d3:66:61:66:58:d7:26:5e:e8:e8:99: b4:a6:14:49:50:4a:db:85:f5:57:ca:80:4f:b4:5b:5f:67:6c: 49:f1:36:2c:86:d1:df:b7:fe:ba:4a:c5:a2:31:bc:cd:3b:13: 88:74:20:cd:e6:ae:e7:94:80:e5:67:95:5f:5f:12:da:a8:61: 8d:7a:a0:7e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAdcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzdGNkExMTAvBgNVBAUTKEUzM0RCNzkzQkJFRkU0NkNCQ0Y3NURCMzRFNzA5NDI3 QTcyRUYwRjMwHhcNMjUwNjE3MDE1ODM2WhcNMjUwNjI0MDE1ODM2WjAYMRYwFAYD VQQDEw02ODUwY2JjYy1lZTY0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmDz5gnENImiFmZr7KzOy/DeM+wK6S2Ocx+UVDZToVb3rkPQSOr3FPq9Gegp9 UvcVZ19wSe6vT7KfN/J6m7IUu7V95UkwpxrjEZT4lZgAckwv1Q47pBYvZEm06BQO kUemcFS4sMNiZG/XLvGBwC9DetozVkgdiprmOE1v9kg2oNsc1FYQWfhwXwOd/ukn Si16FlUHYIG/UkGLXQgpx7M6NuGBWBg3byd11hnez5Zzt8QybEAJ+TYyQxGFHAR/ DQFCGHBt0DhrF19diAPnfL7kYcKw6IZ+D6q66G6wQOfQZPV8aQUs+Ws1HiUZDQUJ ypR38tx7HtwoGGfm1ap5VJ09TwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHXpVhID qDi/5wxGasQiii43wSYSMB8GA1UdIwQYMBaAFOM9t5O77+RsvPdds05wlCenLvDz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDN0Y2QS8wNjc5MjUwMDdG NDIxMUVEQjRFNzhDODZDNEY5QUUwMi80ejIzazd2djVHeTg5MTJ6VG5DVUo2Y3U4 UE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzR6MjNrN3Z2NUd5ODkxMnpUbkNVSjZjdThQTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD N0Y2QS8wNjc5MjUwMDdGNDIxMUVEQjRFNzhDODZDNEY5QUUwMi80ejIzazd2djVH eTg5MTJ6VG5DVUo2Y3U4UE0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBQyPpEMbhxt9bFphR/j5MqcgbSC8XsSaDU5/RabUkMQt24iQvYg6o1 FnFpHSS/CgU1OBsc89seC1uSpLe9ddod0698ZzlU8XEcbTWH7O1kWtdwE8Qt6sNk uXRjRJpI2KmqeFm6e76SyrB+UzhicQMG2UEepWV4LNJY3S9QTf3gsO+RBHOIKNhk bMWYh8CAPtl+iwkBgZGate0W4+4orQHN/7KpEjTsqoDVW66F3bYv4gPFakCSV61y GuVW02ZhZljXJl7o6Jm0phRJUErbhfVXyoBPtFtfZ2xJ8TYshtHft/66SsWiMbzN OxOIdCDN5q7nlIDlZ5VfXxLaqGGNeqB+ -----END CERTIFICATE-----Generated at Tue Jun 17 04:36:26 2025 by rpki-client