$ rpki-client -vvf rpki.apnic.net/member_repository/A91CBDC8/669763F018E011EAA0C38E7BC4F9AE02/m2fIchTtmWVAcRkL688LjZ-hr04.mft File: m2fIchTtmWVAcRkL688LjZ-hr04.mft (raw, json) Hash identifier: y1uk7eiCeDQOYMgcRkElfQYs1CjynCCyU6AdujlecEg= Subject key identifier: DE:89:4C:C5:19:6B:51:63:DA:23:97:3A:E4:39:9C:9D:10:11:40:BF Authority key identifier: 9B:67:C8:72:14:ED:99:65:40:71:19:0B:EB:CF:0B:8D:9F:A1:AF:4E Certificate issuer: /CN=A91CBDC8/serialNumber=9B67C87214ED99654071190BEBCF0B8D9FA1AF4E Certificate serial: 0C11 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m2fIchTtmWVAcRkL688LjZ-hr04.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CBDC8/669763F018E011EAA0C38E7BC4F9AE02/m2fIchTtmWVAcRkL688LjZ-hr04.mft Manifest number: 0BFA Signing time: Wed 18 Jun 2025 18:41:25 +0000 Manifest this update: Wed 18 Jun 2025 18:41:24 +0000 Manifest next update: Wed 25 Jun 2025 18:41:24 +0000 Files and hashes: 1: m2fIchTtmWVAcRkL688LjZ-hr04.crl (hash: RFQdsJMimQMBdykmOPcixkTmKpHLfN+JH53dAgXkyDo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CBDC8/669763F018E011EAA0C38E7BC4F9AE02/m2fIchTtmWVAcRkL688LjZ-hr04.crl rsync://rpki.apnic.net/member_repository/A91CBDC8/669763F018E011EAA0C38E7BC4F9AE02/m2fIchTtmWVAcRkL688LjZ-hr04.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m2fIchTtmWVAcRkL688LjZ-hr04.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 25 Jun 2025 18:41:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3089 (0xc11) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CBDC8, serialNumber=9B67C87214ED99654071190BEBCF0B8D9FA1AF4E Validity Not Before: Jun 18 18:41:24 2025 GMT Not After : Jun 25 18:41:24 2025 GMT Subject: CN=68530855-55f7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:4e:39:df:ee:9e:dd:f4:3e:5a:f3:7a:17:4f: 5e:56:c3:47:2c:f9:67:e7:b4:14:88:bc:3c:de:1f: 04:7f:63:d8:45:4b:27:44:2b:8d:3d:e3:f0:7a:9e: a9:8a:39:1c:de:b1:f5:c4:93:fd:f4:17:64:05:07: d9:c7:1d:82:1a:33:df:4b:63:e8:b3:93:54:33:02: 28:72:a9:23:c9:32:03:16:b9:5b:20:f3:d0:40:01: 41:6e:15:01:25:7f:99:32:1d:f0:b4:90:f2:fd:07: e1:23:f3:32:57:17:e3:f9:4d:7a:46:c6:64:34:a9: 91:bf:27:35:90:4c:c9:9c:17:87:84:86:38:12:7a: 33:cc:cb:7e:9c:0c:7e:e4:52:45:74:ae:9b:96:7d: 32:5c:50:54:e9:3d:c2:58:bd:72:3e:07:4d:dc:0f: 32:43:45:fa:1a:14:ef:60:cb:eb:7d:36:da:02:6d: 2f:94:c1:57:09:5d:15:6e:34:25:1f:41:40:ec:7e: 47:6e:12:8f:76:c6:17:4e:d4:e3:f9:a0:6b:52:0b: 97:c9:fb:d4:7e:17:35:a3:3d:76:a2:f9:eb:a4:83: b1:02:66:ed:1f:15:bd:9f:8b:4e:b3:1c:39:8b:fc: 53:73:12:a1:f2:8a:70:da:4b:6c:82:ba:3f:7c:20: 13:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DE:89:4C:C5:19:6B:51:63:DA:23:97:3A:E4:39:9C:9D:10:11:40:BF X509v3 Authority Key Identifier: keyid:9B:67:C8:72:14:ED:99:65:40:71:19:0B:EB:CF:0B:8D:9F:A1:AF:4E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CBDC8/669763F018E011EAA0C38E7BC4F9AE02/m2fIchTtmWVAcRkL688LjZ-hr04.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m2fIchTtmWVAcRkL688LjZ-hr04.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CBDC8/669763F018E011EAA0C38E7BC4F9AE02/m2fIchTtmWVAcRkL688LjZ-hr04.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c1:b0:15:49:21:a3:42:08:ec:1d:6d:a5:22:83:31:39:04:3a: 25:d4:1f:ed:ef:26:8f:7f:55:29:b9:18:91:cd:03:ad:7a:79: 98:64:d9:15:64:d1:1b:93:f3:4b:ec:73:71:f4:5a:84:9f:53: 5c:f7:a9:89:9d:ad:67:12:6e:29:8f:cb:6e:20:8c:ae:02:f5: 42:4c:77:c3:93:5b:fc:d3:c9:ea:ad:39:dc:be:bb:bd:4e:e0: 72:5e:ad:b7:68:1c:58:0f:30:bf:f2:6b:35:03:c9:1c:4b:3c: 30:8e:ed:54:37:6d:c3:32:5b:46:78:72:4e:0a:cc:d7:88:4b: ff:b6:f2:10:a6:03:1a:3a:d2:cd:72:b4:c2:af:20:d8:23:f5: 25:ac:df:25:e3:27:21:f4:50:f8:aa:fb:e9:79:72:bc:a9:40: 16:44:c2:68:00:a7:5c:7c:c3:a1:ba:6b:30:4f:ee:b2:34:ef: fb:40:3f:ac:58:ac:26:f3:d9:e8:3e:fe:c4:cc:aa:94:d5:6b: a2:8c:71:bf:f7:73:97:55:b4:f3:69:e9:7f:eb:a5:d8:87:6f: a8:9a:dc:59:6c:8b:4b:d9:7a:8f:66:c5:1e:94:99:7c:b3:54: 38:a1:c0:13:fa:29:c5:8f:62:2b:d7:dc:df:0d:72:51:f3:ba: 57:a2:ec:bf -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDBEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0JEQzgxMTAvBgNVBAUTKDlCNjdDODcyMTRFRDk5NjU0MDcxMTkwQkVCQ0YwQjhE OUZBMUFGNEUwHhcNMjUwNjE4MTg0MTI0WhcNMjUwNjI1MTg0MTI0WjAYMRYwFAYD VQQDEw02ODUzMDg1NS01NWY3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvE453+6e3fQ+WvN6F09eVsNHLPln57QUiLw83h8Ef2PYRUsnRCuNPePwep6p ijkc3rH1xJP99BdkBQfZxx2CGjPfS2Pos5NUMwIocqkjyTIDFrlbIPPQQAFBbhUB JX+ZMh3wtJDy/QfhI/MyVxfj+U16RsZkNKmRvyc1kEzJnBeHhIY4EnozzMt+nAx+ 5FJFdK6bln0yXFBU6T3CWL1yPgdN3A8yQ0X6GhTvYMvrfTbaAm0vlMFXCV0VbjQl H0FA7H5HbhKPdsYXTtTj+aBrUguXyfvUfhc1oz12ovnrpIOxAmbtHxW9n4tOsxw5 i/xTcxKh8opw2ktsgro/fCATRwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFN6JTMUZ a1Fj2iOXOuQ5nJ0QEUC/MB8GA1UdIwQYMBaAFJtnyHIU7ZllQHEZC+vPC42foa9O MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDQkRDOC82Njk3NjNGMDE4 RTAxMUVBQTBDMzhFN0JDNEY5QUUwMi9tMmZJY2hUdG1XVkFjUmtMNjg4TGpaLWhy MDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL20yZkljaFR0bVdWQWNSa0w2ODhMalotaHIwNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD QkRDOC82Njk3NjNGMDE4RTAxMUVBQTBDMzhFN0JDNEY5QUUwMi9tMmZJY2hUdG1X VkFjUmtMNjg4TGpaLWhyMDQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDBsBVJIaNCCOwdbaUigzE5BDol1B/t7yaPf1UpuRiRzQOtenmYZNkV ZNEbk/NL7HNx9FqEn1Nc96mJna1nEm4pj8tuIIyuAvVCTHfDk1v808nqrTncvru9 TuByXq23aBxYDzC/8ms1A8kcSzwwju1UN23DMltGeHJOCszXiEv/tvIQpgMaOtLN crTCryDYI/UlrN8l4ych9FD4qvvpeXK8qUAWRMJoAKdcfMOhumswT+6yNO/7QD+s WKwm89noPv7EzKqU1WuijHG/93OXVbTzael/66XYh2+omtxZbItL2XqPZsUelJl8 s1Q4ocAT+inFj2Ir19zfDXJR87pXouy/ -----END CERTIFICATE-----Generated at Thu Jun 19 02:26:04 2025 by rpki-client