$ rpki-client -vvf rpki.apnic.net/member_repository/A91CB21D/632CD3E6A7F611EDB9D60C43C4F9AE02/mx6BiM5kOX6LQkHmdY1CnaD_LnA.mft File: mx6BiM5kOX6LQkHmdY1CnaD_LnA.mft (raw, json) Hash identifier: gUTAn6chDl9NcIbh5XxXgxyXdwpkT0iGtcmc3tMkJxU= Subject key identifier: 40:1F:00:E3:D0:8E:1D:F9:FE:1E:2B:84:7A:18:82:26:90:EC:3D:C2 Authority key identifier: 9B:1E:81:88:CE:64:39:7E:8B:42:41:E6:75:8D:42:9D:A0:FF:2E:70 Certificate issuer: /CN=A91CB21D/serialNumber=9B1E8188CE64397E8B4241E6758D429DA0FF2E70 Certificate serial: 01BB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mx6BiM5kOX6LQkHmdY1CnaD_LnA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CB21D/632CD3E6A7F611EDB9D60C43C4F9AE02/mx6BiM5kOX6LQkHmdY1CnaD_LnA.mft Manifest number: 01B7 Signing time: Tue 17 Jun 2025 02:12:44 +0000 Manifest this update: Tue 17 Jun 2025 02:12:44 +0000 Manifest next update: Tue 24 Jun 2025 02:12:44 +0000 Files and hashes: 1: mx6BiM5kOX6LQkHmdY1CnaD_LnA.crl (hash: uWrnK7Zuoa3TR3jCeTYh7adTgWnO3zhrWQu1lOSB4zw=) 2: 11F911FAA8D811ED90192E3CC4F9AE02.roa (hash: 1slDbS6OMsVzRicTRklA2Gp5/wmmSnjZBoyP9DPcUVQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CB21D/632CD3E6A7F611EDB9D60C43C4F9AE02/mx6BiM5kOX6LQkHmdY1CnaD_LnA.crl rsync://rpki.apnic.net/member_repository/A91CB21D/632CD3E6A7F611EDB9D60C43C4F9AE02/mx6BiM5kOX6LQkHmdY1CnaD_LnA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mx6BiM5kOX6LQkHmdY1CnaD_LnA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 24 Jun 2025 02:12:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 443 (0x1bb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CB21D, serialNumber=9B1E8188CE64397E8B4241E6758D429DA0FF2E70 Validity Not Before: Jun 17 02:12:44 2025 GMT Not After : Jun 24 02:12:44 2025 GMT Subject: CN=6850cf1c-d584 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:6d:4b:a6:0a:62:53:25:f0:e6:00:97:4a:ff: 80:43:b3:8e:b7:a6:21:fb:5a:4d:95:1f:a8:a6:57: f3:1a:3f:37:a7:18:ad:52:70:fb:74:4c:2c:8e:97: 20:53:64:9e:37:4c:79:11:81:88:b1:b8:24:46:2d: 15:91:a4:74:d2:92:b8:7a:3e:d4:77:c4:b9:9d:e9: 39:8a:d0:73:b2:0f:32:fd:57:73:f2:b3:1b:8b:73: aa:4b:1e:4d:a8:ef:d3:e5:5c:e1:52:24:a3:81:b4: e3:68:e0:fc:a7:04:33:80:f7:40:f8:0e:0b:f7:a8: a7:e0:be:39:22:cb:19:dc:ed:38:d8:2e:8c:5b:73: b8:73:e6:f0:2c:39:18:74:56:2d:91:24:58:f6:b2: b2:18:ff:7b:bd:ec:f6:f6:4a:5c:ee:58:8d:60:f3: be:2c:7d:39:f3:f4:e2:92:31:0d:30:05:98:32:fe: 6e:e4:22:69:6b:20:a4:f9:53:b8:e0:51:3a:3c:65: e8:b9:56:38:e3:70:f8:4c:24:68:51:19:35:55:8a: 12:f2:0b:be:f4:6c:4b:b9:4e:7d:92:6f:40:e3:18: 80:f9:3d:54:82:3f:9a:7e:21:bd:8f:15:87:b4:50: ca:8f:e9:71:12:92:17:47:7e:0c:db:14:38:68:ec: 94:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 40:1F:00:E3:D0:8E:1D:F9:FE:1E:2B:84:7A:18:82:26:90:EC:3D:C2 X509v3 Authority Key Identifier: keyid:9B:1E:81:88:CE:64:39:7E:8B:42:41:E6:75:8D:42:9D:A0:FF:2E:70 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CB21D/632CD3E6A7F611EDB9D60C43C4F9AE02/mx6BiM5kOX6LQkHmdY1CnaD_LnA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mx6BiM5kOX6LQkHmdY1CnaD_LnA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CB21D/632CD3E6A7F611EDB9D60C43C4F9AE02/mx6BiM5kOX6LQkHmdY1CnaD_LnA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 63:d5:c3:e7:c5:41:fb:2d:9d:37:cb:9c:be:2c:bf:ca:80:2d: 97:46:84:3c:74:47:b5:f3:04:fd:08:5a:e9:75:0f:ee:72:c0: e2:11:af:38:95:31:27:f0:13:9e:af:05:a4:3a:7c:9c:dd:4c: 2a:69:20:2b:46:5a:f0:79:97:3f:2b:aa:2f:c7:22:33:29:fc: c7:d6:0a:96:06:db:bb:44:02:a4:00:b7:7f:4c:42:ef:9a:16: 4d:6b:d3:de:5d:0c:e3:78:0d:f1:9f:8b:b9:bb:ec:26:8d:8c: 5e:c9:c8:a5:48:de:c8:a3:bc:42:39:01:4b:22:d4:90:ec:52: e5:57:e3:cc:be:f2:9b:29:2c:88:68:07:07:5f:fb:e3:44:72: 9e:1a:fa:56:d9:ad:6e:ea:1a:35:d3:ac:0d:d0:ef:e0:1f:27: 0b:43:b6:53:3d:5b:8d:a4:77:9f:cd:15:2b:6f:56:40:e2:52: 24:8d:6a:8c:ca:67:d8:50:a9:c9:b9:f4:0e:6c:3c:e8:14:8d: d0:c9:84:07:55:4e:3e:b1:a1:a3:c7:b1:fb:14:09:88:fd:88: 60:47:54:fb:04:93:fe:bb:8f:4e:84:88:0e:5d:1e:54:2e:82: 08:00:53:90:69:80:8b:12:2e:52:9b:18:2b:58:54:33:72:c6: 2d:4f:27:f4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAbswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0IyMUQxMTAvBgNVBAUTKDlCMUU4MTg4Q0U2NDM5N0U4QjQyNDFFNjc1OEQ0MjlE QTBGRjJFNzAwHhcNMjUwNjE3MDIxMjQ0WhcNMjUwNjI0MDIxMjQ0WjAYMRYwFAYD VQQDEw02ODUwY2YxYy1kNTg0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4m1LpgpiUyXw5gCXSv+AQ7OOt6Yh+1pNlR+oplfzGj83pxitUnD7dEwsjpcg U2SeN0x5EYGIsbgkRi0VkaR00pK4ej7Ud8S5nek5itBzsg8y/Vdz8rMbi3OqSx5N qO/T5VzhUiSjgbTjaOD8pwQzgPdA+A4L96in4L45IssZ3O042C6MW3O4c+bwLDkY dFYtkSRY9rKyGP97vez29kpc7liNYPO+LH058/TikjENMAWYMv5u5CJpayCk+VO4 4FE6PGXouVY443D4TCRoURk1VYoS8gu+9GxLuU59km9A4xiA+T1Ugj+afiG9jxWH tFDKj+lxEpIXR34M2xQ4aOyUNQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEAfAOPQ jh35/h4rhHoYgiaQ7D3CMB8GA1UdIwQYMBaAFJsegYjOZDl+i0JB5nWNQp2g/y5w MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDQjIxRC82MzJDRDNFNkE3 RjYxMUVEQjlENjBDNDNDNEY5QUUwMi9teDZCaU01a09YNkxRa0htZFkxQ25hRF9M bkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL214NkJpTTVrT1g2TFFrSG1kWTFDbmFEX0xuQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD QjIxRC82MzJDRDNFNkE3RjYxMUVEQjlENjBDNDNDNEY5QUUwMi9teDZCaU01a09Y NkxRa0htZFkxQ25hRF9MbkEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBj1cPnxUH7LZ03y5y+LL/KgC2XRoQ8dEe18wT9CFrpdQ/ucsDiEa84 lTEn8BOerwWkOnyc3UwqaSArRlrweZc/K6ovxyIzKfzH1gqWBtu7RAKkALd/TELv mhZNa9PeXQzjeA3xn4u5u+wmjYxeycilSN7Io7xCOQFLItSQ7FLlV+PMvvKbKSyI aAcHX/vjRHKeGvpW2a1u6ho106wN0O/gHycLQ7ZTPVuNpHefzRUrb1ZA4lIkjWqM ymfYUKnJufQObDzoFI3QyYQHVU4+saGjx7H7FAmI/YhgR1T7BJP+u49OhIgOXR5U LoIIAFOQaYCLEi5SmxgrWFQzcsYtTyf0 -----END CERTIFICATE-----Generated at Tue Jun 17 12:21:30 2025 by rpki-client