$ rpki-client -vvf rpki.apnic.net/member_repository/A91CB063/6C0F9610D6ED11EF9D9BF36AC4F9AE02/bLOCDaWkqEstlAm98H8lRf5tCxE.mft File: bLOCDaWkqEstlAm98H8lRf5tCxE.mft (raw, json) Hash identifier: KbOfeDoo/KxCI1sTxRcdNR1oIedMKxXbMDvWX61Vilk= Subject key identifier: 21:05:A3:6E:D8:CB:64:18:A6:A3:67:64:52:45:0A:F1:4F:2E:D9:A8 Authority key identifier: 6C:B3:82:0D:A5:A4:A8:4B:2D:94:09:BD:F0:7F:25:45:FE:6D:0B:11 Certificate issuer: /CN=A91CB063/serialNumber=6CB3820DA5A4A84B2D9409BDF07F2545FE6D0B11 Certificate serial: 4F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bLOCDaWkqEstlAm98H8lRf5tCxE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CB063/6C0F9610D6ED11EF9D9BF36AC4F9AE02/bLOCDaWkqEstlAm98H8lRf5tCxE.mft Manifest number: 4E Signing time: Thu 19 Jun 2025 06:40:54 +0000 Manifest this update: Thu 19 Jun 2025 06:40:53 +0000 Manifest next update: Thu 26 Jun 2025 06:40:53 +0000 Files and hashes: 1: bLOCDaWkqEstlAm98H8lRf5tCxE.crl (hash: eknx3aCumo9hWPdAhB/flwmixC4uCdZLtLyuLnmLNvU=) 2: 3D3827F2D6EE11EFB955866CC4F9AE02.roa (hash: 4d4Ou4cSb0acdXH9Bn2waQ4IMkbvtakYfcIPMGQdXao=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CB063/6C0F9610D6ED11EF9D9BF36AC4F9AE02/bLOCDaWkqEstlAm98H8lRf5tCxE.crl rsync://rpki.apnic.net/member_repository/A91CB063/6C0F9610D6ED11EF9D9BF36AC4F9AE02/bLOCDaWkqEstlAm98H8lRf5tCxE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bLOCDaWkqEstlAm98H8lRf5tCxE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 26 Jun 2025 06:40:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 79 (0x4f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CB063, serialNumber=6CB3820DA5A4A84B2D9409BDF07F2545FE6D0B11 Validity Not Before: Jun 19 06:40:53 2025 GMT Not After : Jun 26 06:40:53 2025 GMT Subject: CN=6853b0f6-d026 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:b5:39:1b:c5:1a:ef:2d:96:34:1c:53:e4:b8: b7:1d:20:85:9c:de:56:91:b4:cc:31:c6:f3:57:e1: 61:b1:d1:62:d2:f9:da:a0:15:20:3c:3f:ce:e5:7e: 5a:7a:14:84:b1:5b:cc:ac:2d:2f:a7:e4:71:6e:e6: a0:4b:b0:08:2f:ed:44:3a:cb:e1:7f:7d:85:c5:fb: 23:f2:43:62:1d:98:86:1f:66:db:64:fb:45:a6:c5: af:88:26:fd:56:2e:21:4b:69:4a:c2:27:62:f2:cf: 34:88:46:a4:48:a2:60:67:c6:38:80:7c:1c:e9:bb: 6f:62:c5:f2:72:05:2d:6b:a3:5e:6d:4f:91:24:4c: 24:91:f7:51:f1:3f:3c:a8:8f:81:fb:f1:47:9e:0a: d8:6f:89:bf:51:69:9a:a7:e0:cb:d0:4f:a8:4f:3d: cf:07:41:7e:74:0f:a5:56:41:27:a0:d4:98:fb:8a: 07:14:ae:df:5c:0a:a4:72:7c:ad:ec:15:aa:51:a5: b7:7c:45:b5:bd:4a:5b:3c:20:e1:12:5d:2f:c4:a0: 5c:76:7b:72:c9:96:74:e6:66:aa:5b:ee:1a:df:6b: d6:c5:06:84:ea:2b:e9:0d:a8:2d:ef:ca:51:4b:9d: 84:aa:1a:79:dc:b1:4a:3e:20:f4:1d:7d:ba:5d:9c: 93:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 21:05:A3:6E:D8:CB:64:18:A6:A3:67:64:52:45:0A:F1:4F:2E:D9:A8 X509v3 Authority Key Identifier: keyid:6C:B3:82:0D:A5:A4:A8:4B:2D:94:09:BD:F0:7F:25:45:FE:6D:0B:11 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CB063/6C0F9610D6ED11EF9D9BF36AC4F9AE02/bLOCDaWkqEstlAm98H8lRf5tCxE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bLOCDaWkqEstlAm98H8lRf5tCxE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CB063/6C0F9610D6ED11EF9D9BF36AC4F9AE02/bLOCDaWkqEstlAm98H8lRf5tCxE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8a:ef:88:da:2f:85:af:ce:88:e1:8b:08:39:ee:c4:9e:c0:1b: e8:17:77:03:8d:28:23:d5:51:1c:7c:fa:33:64:1c:0f:03:0c: 58:68:ed:fb:3f:2e:19:ca:0d:28:7b:0b:87:8a:1d:8b:1f:fd: cc:ff:17:9a:c0:2f:52:70:7c:7c:9e:61:32:d6:1f:b8:53:d2: 64:6d:2a:dd:b8:3a:ce:73:15:76:28:e6:c9:9c:9b:11:24:a7: 2d:9c:18:4a:00:ee:1c:85:74:6b:16:8e:8c:2a:d1:5a:09:65: 9a:3b:3b:9e:31:3d:74:48:89:84:17:18:cf:b9:10:20:c1:92: 7b:d2:85:c4:d0:c4:cf:de:70:84:c2:b2:13:17:0f:b3:10:c2: 05:ce:06:2e:bc:23:00:e2:eb:a4:cd:df:1c:0e:86:aa:f9:9f: a1:25:ac:a3:bc:7f:ce:34:e5:6c:0a:2a:01:b4:83:2d:f8:3e: ca:eb:fa:c8:1e:e7:51:92:99:db:5a:d9:6f:0e:09:64:66:34: 02:08:9c:16:c2:7c:f8:4c:38:e5:72:10:9b:22:7b:34:a7:06: c7:c9:40:63:fa:f3:ca:5c:29:52:be:ea:68:fa:ed:13:61:de: 02:2c:4b:ce:18:8c:7c:46:f1:9b:43:b1:66:94:a9:ef:98:b1: 80:4d:54:52 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBTzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFD QjA2MzExMC8GA1UEBRMoNkNCMzgyMERBNUE0QTg0QjJEOTQwOUJERjA3RjI1NDVG RTZEMEIxMTAeFw0yNTA2MTkwNjQwNTNaFw0yNTA2MjYwNjQwNTNaMBgxFjAUBgNV BAMTDTY4NTNiMGY2LWQwMjYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCrtTkbxRrvLZY0HFPkuLcdIIWc3laRtMwxxvNX4WGx0WLS+dqgFSA8P87lflp6 FISxW8ysLS+n5HFu5qBLsAgv7UQ6y+F/fYXF+yPyQ2IdmIYfZttk+0Wmxa+IJv1W LiFLaUrCJ2LyzzSIRqRIomBnxjiAfBzpu29ixfJyBS1ro15tT5EkTCSR91HxPzyo j4H78UeeCthvib9RaZqn4MvQT6hPPc8HQX50D6VWQSeg1Jj7igcUrt9cCqRyfK3s FapRpbd8RbW9Sls8IOESXS/EoFx2e3LJlnTmZqpb7hrfa9bFBoTqK+kNqC3vylFL nYSqGnncsUo+IPQdfbpdnJOjAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUIQWjbtjL ZBimo2dkUkUK8U8u2agwHwYDVR0jBBgwFoAUbLOCDaWkqEstlAm98H8lRf5tCxEw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUNCMDYzLzZDMEY5NjEwRDZF RDExRUY5RDlCRjM2QUM0RjlBRTAyL2JMT0NEYVdrcUVzdGxBbTk4SDhsUmY1dEN4 RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvYkxPQ0RhV2txRXN0bEFtOThIOGxSZjV0Q3hFLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUNC MDYzLzZDMEY5NjEwRDZFRDExRUY5RDlCRjM2QUM0RjlBRTAyL2JMT0NEYVdrcUVz dGxBbTk4SDhsUmY1dEN4RS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAIrviNovha/OiOGLCDnuxJ7AG+gXdwONKCPVURx8+jNkHA8DDFho7fs/ LhnKDSh7C4eKHYsf/cz/F5rAL1JwfHyeYTLWH7hT0mRtKt24Os5zFXYo5smcmxEk py2cGEoA7hyFdGsWjowq0VoJZZo7O54xPXRIiYQXGM+5ECDBknvShcTQxM/ecITC shMXD7MQwgXOBi68IwDi66TN3xwOhqr5n6ElrKO8f8405WwKKgG0gy34Psrr+sge 51GSmdta2W8OCWRmNAIInBbCfPhMOOVyEJsiezSnBsfJQGP688pcKVK+6mj67RNh 3gIsS84YjHxG8ZtDsWaUqe+YsYBNVFI= -----END CERTIFICATE-----Generated at Thu Jun 19 16:10:28 2025 by rpki-client